Bugtraq: by author
RSS Feed
About List
All Lists
Previous period
302 messages
starting May 21 02 and
ending May 27 02
Date index |
Thread index |
Author index
2c79cbe14ac7d0b8472d3f129fa1df55
YoungZSoft CMailServer overflow, PATCH + WAREZ!@#! 2c79cbe14ac7d0b8472d3f129fa1df55 (May 21)
3APA3A
Re[2]: dH team & SECURITY.NNOV: special device access, information leakage and DoS in Outlook Express 3APA3A (May 17)
Re: Fwd: GOBBLES RESPONSE TO THE BLUE BOAR ("fixed version") 3APA3A (May 14)
Re: Nearly undocumented NT security feature - the solution to executable attachments? 3APA3A (May 10)
Adam [wp-ckkl]
IE/OE6.0 cannot handle malformed XBM files Adam [wp-ckkl] (Apr 30)
Alun Jones
Re: Problems with various windows FTP servers Alun Jones (May 31)
Re: Unfortunate interaction between EZMLM and MessageLabs virus scanning Alun Jones (May 10)
Anders Nordby
Trojan/backdoor in fragroute 1.2 source distribution Anders Nordby (May 31)
Andreas Sandblad
IE dot bug - Sandblad advisory #7 Andreas Sandblad (May 20)
Opera javascript protocoll vulnerability [Sandblad advisory #6] Andreas Sandblad (May 15)
Andrew Clover
Re: GOBBLES SECURITY ADVISORY #33 Andrew Clover (May 11)
Re: Update and comments on the MS02-023 patch, holes still remain Andrew Clover (May 17)
Andrew Hintz (Drew)
SafeWeb Vulnerability - Fingerprinting Websites Using Traffic Analysis Andrew Hintz (Drew) (May 10)
Andrew . Lopacki
Cisco IDS Device Manager 3.1.1 Advisory Andrew . Lopacki (May 24)
awacs
2 security problem Quantum SNAP server awacs (May 30)
Bao Dai Nhan
Another vulnerability in hosting controller Bao Dai Nhan (May 20)
Beck Mr . R
Re: Misformated message header causes msn messenger to crash Beck Mr . R (May 24)
Ben Bucksch
Beonex Communicator 0.8-pre based on Mozilla 1.0-branch released Ben Bucksch (May 03)
Benjamin Keller
FW: New Macromedia Security Zone Bulletins Posted Benjamin Keller (May 10)
Ben Laurie
Re: Yahoo Messenger - Multiple Vulnerabilities Ben Laurie (May 27)
Unfortunate interaction between EZMLM and MessageLabs virus scanning Ben Laurie (May 08)
big bon
Re: Logitech Keyboard Insecurity big bon (May 03)
Binken, Rens
KPMG-2002018: Pointsec for PalmOS PIN disclosure Binken, Rens (May 07)
blackshell
ldap vulnerabilities blackshell (May 06)
Blue Boar
Re: GOBBLES SECURITY ADVISORY #33 Blue Boar (May 10)
Boyce, Nick
FW: HP-UX security bulletins digest Boyce, Nick (May 30)
BrainRawt .
LevCGI.coms NetPad 1.0.2 multiple vulnerabilities BrainRawt . (May 14)
Brian Eckman
Re: cqure.net.20020408.netware_nwftpd.a Brian Eckman (May 08)
bugzilla
[RHSA-2002:094-08] Updated tcpdump packages fix buffer overflow bugzilla (May 30)
[RHSA-2002:070-06] Updated mod_python packages available bugzilla (May 02)
[RHSA-2002:070-08] Updated mod_python packages available bugzilla (May 08)
[RHSA-2002:064-12] Updated Nautilus for symlink vulnerability writing metadata files bugzilla (May 02)
[RHSA-2002:065-13] Updated sharutils package fixes uudecode issue bugzilla (May 14)
[RHSA-2002:092-11] Buffer overflow in UW imap daemon bugzilla (May 24)
[RHSA-2002:047-10] Updated fetchmail packages available bugzilla (May 21)
[RHSA-2002:086-05] Netfilter information leak bugzilla (May 09)
[RHSA-2002:079-13] Updated Mozilla packages fix a security issue bugzilla (May 15)
[RHSA-2002:081-06] perl-Digest-MD5 UTF8 bug results in incorrect MD5 sums bugzilla (May 10)
[RHSA-2002:078-04] Updated mpg321 packages available bugzilla (May 16)
[RHSA-2002:062-08] Insecure DocBook stylesheet option bugzilla (May 01)
[RHSA-2002:084-17] Updated nss_ldap packages fix pam_ldap vulnerability bugzilla (May 27)
Burc Yildirim
1st Linux and Free Software Festival - Ankara 2002 Burc Yildirim (May 10)
ByteRage
Re: Problems with various windows FTP servers ByteRage (May 28)
capzlock
CAPZLOCK SECURITY ADVISORY NO. 1 capzlock (May 20)
CERT Advisory
CERT Advisory CA-2002-13 Buffer Overflow in Microsoft's MSN Chat ActiveX CERT Advisory (May 10)
CERT Advisory CA-2002-12 Format String Vulnerability in ISC DHCPD CERT Advisory (May 08)
CERT Advisory CA-2002-10 Format String Vulnerability in rpc.rwalld CERT Advisory (May 01)
CERT Advisory CA-2002-11 Heap Overflow in Cachefs Daemon (cachefsd) CERT Advisory (May 06)
Chad Loder
Re: dH team & SECURITY.NNOV: special device access, information leakage and DoS in Outlook Express Chad Loder (May 17)
Charles M. Richmond
Re: eSecurityOnline Security Advisory 3761 - Sun Solaris lbxproxy dis play name buffer overflow vulnerability Charles M. Richmond (May 01)
CHINANSL Security Team
Windows 2000 Server IIS 5.0 .ASP Overflow Exploit CHINANSL Security Team (May 04)
Christian decoder Holler
Flaw caused by default rulesets in many desktop firewalls under windows Christian decoder Holler (May 10)
Re: Flaw caused by default rulesets in many desktop firewalls under windows Christian decoder Holler (May 11)
Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Multiple Vulnerabilities in Cisco IP Telephones Cisco Systems Product Security Incident Response Team (May 22)
Cisco Security Advisory: ATA-186 Password Disclosure Vulnerability Cisco Systems Product Security Incident Response Team (May 23)
Cisco Security Advisory: NTP vulnerability Cisco Systems Product Security Incident Response Team (May 08)
Cisco Security Advisory: Content Service Switch HTTP Processing Vulnerabilities Cisco Systems Product Security Incident Response Team (May 15)
Cisco Security Advisory: CBOS - Improving Resilience to DoS Attacks Cisco Systems Product Security Incident Response Team (May 23)
Cisco Security Advisory: Transparent Cache Engine and Content Engine TCP Relay Vulnerability Cisco Systems Product Security Incident Response Team (May 15)
Coppage, Ross
ATMSNMPD Vulnerable but not Addressed Coppage, Ross (May 13)
Corey J. Steele
Re: cqure.net.20020412.bordermanager_36_mv1.a Corey J. Steele (May 10)
COULOMBE, TROY
Catalyst 4000 COULOMBE, TROY (May 21)
Crist J. Clark
Re: ps under FreeBSD Crist J. Clark (May 20)
Re: ps under FreeBSD Crist J. Clark (May 20)
CSICONdotNET
[CSICON] - Registration is now open for CSICON CSICONdotNET (May 20)
.-=D3FC0N/=-.
Re: MS02-023 does not patch actual issue! .-=D3FC0N/=-. (May 16)
Damir Rajnovic
Cisco IOS ICMP redirect DoS - Cisco's response Damir Rajnovic (May 21)
Daniel Nyström
[[ TH 026 Inc. ]] SA #3 - Shambala Server 4.5, Directory Traversal and DoS Daniel Nyström (May 31)
Darren W. MacDonald
RE: Xerox DocuTech problems Darren W. MacDonald (May 18)
Dave Ahmad
Foundstone Advisory - Buffer Overflow in Ipswitch Imail 7.1 and prior (fwd) Dave Ahmad (May 20)
GOBBLES SECURITY ADVISORY #33 Dave Ahmad (May 10)
(SSRT0822) Security Bulletin - Compaq & Java Proxy/VM Potential Security Vulnerabilities (fwd) Dave Ahmad (May 14)
Re: OpenBSD local DoS and root exploit Dave Ahmad (May 09)
Administrivia Dave Ahmad (May 05)
FW: Fscan advisory (fwd) Dave Ahmad (May 01)
Dave Oliver
Re: Intel D845HV/WN/PT series motherboard vulnerability Dave Oliver (May 03)
David Endler
US TurboLinux Security Severely Out of Date David Endler (May 30)
Evolution of Cross-Site Scripting Attacks David Endler (May 21)
david evlis reign
[DER Adv #7] - Multiple Vulnerabilities in solaris in.rarpd david evlis reign (May 22)
[DER ADV#8] - Local off by one in CVSD david evlis reign (May 25)
David Litchfield
To Provide a Patch or to Service Pack? David Litchfield (May 29)
David McKenzie
RE: MS02-023 does not patch actual issue! David McKenzie (May 16)
Dax Kelson
Re: Linux kernel 2.4 "weak end host" issue (previously discussed here as "arp problem") Dax Kelson (May 11)
der Mouse
Re: Unfortunate interaction between EZMLM and MessageLabs virus scanning der Mouse (May 11)
Dug Song
Re: Trojan/backdoor in fragroute 1.2 source distribution Dug Song (May 31)
ellipse
Re: To Provide a Patch or to Service Pack? ellipse (May 30)
E M
Sonicwall SOHO Content Blocking Script Injection, LogFile Denial of Service E M (May 17)
Emre Yildirim
Re: ATMSNMPD Vulnerable but not Addressed Emre Yildirim (May 13)
ERRor
dH team & SECURITY.NNOV: special device access, information leakage and DoS in Outlook Express ERRor (May 15)
dH team & SECURITY.NNOV: A variant of "Word Mail Merge" vulnerability ERRor (May 14)
Felix von Leitner
Linux kernel 2.4 "weak end host" issue (previously discussed here as "arp problem") Felix von Leitner (May 10)
Florian Hobelsberger / BlueScreen
Lysias Lidik Webserver suffers from a Directory Traversal Vulnerability Florian Hobelsberger / BlueScreen (May 07)
Florian Weimer
Re: [RHSA-2002:047-10] Updated fetchmail packages available Florian Weimer (May 31)
fozzy
OpenBSD local DoS and root exploit fozzy (May 09)
Frank
b2 php remote command execution Frank (May 06)
Frank Hecker
Fix for Mozilla XMLHttpRequest file disclosure vulnerability Frank Hecker (May 03)
Frank Knobbe
Re: Flaw caused by default rulesets in many desktop firewalls under windows Frank Knobbe (May 11)
FreeBSD Security Advisories
FreeBSD Security Advisory FreeBSD-SA-02:26.accept FreeBSD Security Advisories (May 29)
FreeBSD Security Advisory FreeBSD-SA-02:25.bzip2 FreeBSD Security Advisories (May 20)
FreeBSD Security Advisory FreeBSD-SA-02:27.rc FreeBSD Security Advisories (May 29)
FreeBSD Security Advisory FreeBSD-SA-02:24.k5su FreeBSD Security Advisories (May 20)
FX
Cisco IOS ICMP redirect DoS FX (May 21)
Gabriel A. Maggiotti
Re: Phorum 3.3.2a remote command execution Gabriel A. Maggiotti (May 18)
George Capehart
Re: Verisign PKI: anyone to subordinate CA George Capehart (May 20)
George Staikos
Re: route of #phrack is a funny man! George Staikos (May 24)
Georgi Guninski
Re: Fwd: GOBBLES RESPONSE TO THE BLUE BOAR ("fixed version") Georgi Guninski (May 14)
Re: To Provide a Patch or to Service Pack? Georgi Guninski (May 30)
gobbles
Fwd: GOBBLES RESPONSE TO THE BLUE BOAR ("fixed version") gobbles (May 11)
[GOBBLES] reflections on talkd hole gobbles (May 24)
route of #phrack is a funny man! gobbles (May 21)
Gregory Neil Shapiro
File Locking Local Denial of Service; Impact on sendmail Gregory Neil Shapiro (May 24)
GreyMagic Software
MS02-023 does not patch actual issue! GreyMagic Software (May 16)
UPDATE (1-May-2002): Reading local files in Netscape 6 and Mozilla (GM#001-NS) GreyMagic Software (May 04)
Reading ANY local file in Opera (GM#001-OP) GreyMagic Software (May 27)
Guillaume PELAT
Grsecurity problem - modifying "read-only kernel" Guillaume PELAT (May 17)
Re: ps under FreeBSD Guillaume PELAT (May 20)
Guy Van Sanden
SECURITY vulnerability in ECS-K7S5A(L) boards Guy Van Sanden (May 30)
hdlkha
Hosting Controller still have dangerous bugs! hdlkha (May 17)
hkvrg thdftghr
VP-ASP shopping cart software. hkvrg thdftghr (May 27)
http-equiv () excite com
Classic Cross Site Scripting: Gibson Research Corporation http-equiv () excite com (May 01)
Information Anarchy 2K01
Two (2) Critical Path inJoin V4.0 Directory Server Issues Information Anarchy 2K01 (May 10)
InterWN Labs
Hole in AOL Instant Messenger InterWN Labs (May 10)
Ismael Briones
Vulnerability in 3Com® OfficeConnect® Remote 812 ADSL Router Ismael Briones (May 27)
isox
Information Disclosure Vulnerability in IDS 0.8x isox (May 28)
Plain Text Password Vulnerability in Winamp 2.80 isox (May 20)
Jakub Filonik
ps under FreeBSD Jakub Filonik (May 18)
J Edgar Hoover
Xerox DocuTech problems J Edgar Hoover (May 17)
Jeff Franklin
Re: wu-imap buffer overflow condition Jeff Franklin (May 11)
Joe Testa
R7-0003: Nautilus Symlink Vulnerability Joe Testa (May 02)
John . Airey
RE: MS02-023 does not patch actual issue! John . Airey (May 17)
RE: MS02-023 does not patch actual issue! John . Airey (May 17)
Johnathan Nightingale
Multiple Vulnerabilities in CISCO VoIP Phones Johnathan Nightingale (May 22)
John Howie
RE: Verisign PKI: anyone to subordinate CA John Howie (May 20)
Jonas Eriksson
OpenSSH 3.2.2 released (fwd) Jonas Eriksson (May 17)
Potential security issues in Ethereal Jonas Eriksson (May 29)
Re: OpenBSD local DoS and root exploit Jonas Eriksson (May 10)
OpenSSH 3.2.3 released (fwd) Jonas Eriksson (May 27)
Jonas Ländin
iXsecurity.20020404.4d_webserver.a Jonas Ländin (May 02)
Jonathan Lamberson
Microsoft Active Directory security vulnerability Jonathan Lamberson (May 23)
Julien Vanegue
Re: More ELF buggery... Julien Vanegue (May 31)
Kanatoko
MatuFtpServer Remote Buffer Overflow and Possible DoS Kanatoko (May 22)
Keary Suska
Re: Nearly undocumented NT security feature - the solution to executable attachments? Keary Suska (May 10)
Ken Weaverling
Re: Xerox DocuTech problems Ken Weaverling (May 20)
Ken . Williams
Re: eSecurityOnline Security Advisory 3761 - Sun Solaris lbxproxy dis play name buffer overflow vulnerability Ken . Williams (May 01)
keyboardhacker
Logitech Keyboard Insecurity keyboardhacker (May 02)
KF
New Kismet Packages available - SayText() and suid kismet_server issues KF (May 29)
cURL remote PoC for Linux KF (May 06)
cURL remote PoC for FBSD KF (May 06)
Sendmail file locking - PoC KF (May 24)
latest Progress patch has suid issues AGAIN. KF (May 02)
Xandros based linux autorun -c KF (May 29)
kikaiju
Re: Xerox DocuTech problems kikaiju (May 18)
KJK::Hyperion
Re: Logitech Keyboard Insecurity KJK::Hyperion (May 03)
Nearly undocumented NT security feature - the solution to executable attachments? KJK::Hyperion (May 08)
Lance Spitzner
Reverse Challenge - Binary released Lance Spitzner (May 05)
Honeynet Project -> The Reverse Challenge Lance Spitzner (May 02)
Larry Jones
Re: [DER ADV#8] - Local off by one in CVSD Larry Jones (May 27)
Last Stage of Delirium
[LSD] Solaris cachefsd remote buffer overflow vulnerability Last Stage of Delirium (May 05)
Lupe Christoph
Re: Netstd 3.07-17 multiple remote buffer overflows Lupe Christoph (May 25)
Mandrake Linux Security Team
MDKSA-2002:037-1 - dhcp update Mandrake Linux Security Team (May 30)
MDKSA-2002:032 - tcpdump update Mandrake Linux Security Team (May 16)
MDKSA-2002:033 - webmin update Mandrake Linux Security Team (May 22)
MDKSA-2002:036 - fetchmail update Mandrake Linux Security Team (May 28)
MDKSA-2002:035 - perl-Digest-MD5 update Mandrake Linux Security Team (May 28)
MDKSA-2002:030 - temporary fix for netfilter information leak Mandrake Linux Security Team (May 10)
MDKSA-2002:031 - fileutils update Mandrake Linux Security Team (May 16)
MDKSA-2002:034 - imap update Mandrake Linux Security Team (May 30)
MDKSA-2002:037 - dhcp update Mandrake Linux Security Team (May 29)
Marcell Fodor
wu-imap buffer overflow condition Marcell Fodor (May 10)
Marc Maiffret
Macromedia Flash Activex Buffer overflow Marc Maiffret (May 02)
ADVISORY: MSN Messenger OCX Buffer Overflow Marc Maiffret (May 08)
Markus Arndt
Possible Buffer Overflow in ACDSee 4.0 Markus Arndt (May 10)
Phorum 3.3.2a remote command execution Markus Arndt (May 17)
Phorum 3.3.2a has another bug for remote command execution Markus Arndt (May 18)
Martijn Boerwinkel
Cross Site Scripting Vulnerability in phpBB2's [IMG] tag and remote avatar Martijn Boerwinkel (May 27)
Martin Östlund
irssi backdoored. Martin Östlund (May 25)
Matt Conover
w00w00 on AOL Instant Messenger remote overflow #2 Matt Conover (May 06)
Matthew G. Marsh
Re: Linux kernel 2.4 "weak end host" issue Explained Matthew G. Marsh (May 14)
Matt Moore
Multiple vulnerabilities in NewAtlanta ServletExec ISAPI 4.1 Matt Moore (May 22)
Max
pks public key server DOS and remote execution Max (May 24)
Michael Metz [SpeedPartner]
Security-risk on gridscan.com Michael Metz [SpeedPartner] (May 24)
Mike Crane
Re: Patrol security bugs Mike Crane (May 08)
Muhammad Faisal Rauf Danka
Re: Plain Text Password Vulnerability in Winamp 2.80 Muhammad Faisal Rauf Danka (May 21)
Muller Zsolt
Re: Verisign PKI: anyone to subordinate CA Muller Zsolt (May 20)
Nate Eldredge
Re: [RHSA-2002:047-10] Updated fetchmail packages available Nate Eldredge (May 31)
nCipher Support
nCipher Security Advisory #3: MSCAPI CSP Install Wizard nCipher Support (May 13)
nexus-mail
Fwd: [EXPL] Remote Exploit for UW-IMAPd Capability (IMAP4) nexus-mail (May 30)
NGSEC Research Team
[NGSEC-2002-2] ISC DHCPDv3, remote root compromise NGSEC Research Team (May 08)
NGSSoftware Insight Security Research
Macromedia JRUN Buffer overflow vulnerability (#NISR29052002) NGSSoftware Insight Security Research (May 29)
Addendum to advisory #NISR29052002 (JRun buffer overflow) NGSSoftware Insight Security Research (May 29)
Noam Rathaus
Re: VP-ASP shopping cart software. Noam Rathaus (May 27)
Obscure
Multiple Vulnerabilities in MDaemon + WorldClient Obscure (May 07)
office
cross-site scripting bug of ViewCVS office (May 19)
Olaf Kirch
Re: [RHSA-2002:047-10] Updated fetchmail packages available Olaf Kirch (May 31)
Ory Segal
Multiple vendors web server source code disclosure (8.3 name form at vulnerability - take II) Ory Segal (May 20)
pask
Informix SE-7.25 /lib/sqlexec Vulnerability pask (May 30)
Patrick Michael Kane
Cisco ATA-186 admin password can be trivially circumvented Patrick Michael Kane (May 10)
Patrik Karlsson
cqure.net.20020412.netware_client.a Patrik Karlsson (May 08)
cqure.net.20020412.netware_sdmr.a Patrik Karlsson (May 08)
cqure.net.20020412.bordermanager_36_mv1.a Patrik Karlsson (May 08)
cqure.net.20020408.netware_nwftpd.a Patrik Karlsson (May 08)
Paul Cardon
Re: Logitech Keyboard Insecurity Paul Cardon (May 02)
Paul Starzetz
GNU rm fileutils race condition problems on SuSE Paul Starzetz (May 16)
Re: trusting user-supplied data (was Re: FreeBSD Security Advisory FreeBSD-SA-02:23.stdio) Paul Starzetz (May 03)
Pedram Amini
AIM+ SpyWare Pedram Amini (May 31)
Pedro Paulo Ferreira Bueno
Re: Efficient Networks Contact info Pedro Paulo Ferreira Bueno (May 23)
Pedro Quintanilha
TrendMicro Interscan VirusWall security problem Pedro Quintanilha (May 25)
RE: TrendMicro Interscan VirusWall security problem Pedro Quintanilha (May 27)
Peter Gründl
KPMG-2002017: Snapgear Lite+ Firewall Denial of Service Peter Gründl (May 02)
Philippe Biondi
[CARTSA-20020402] Linux Netfilter NAT/ICMP code information leak Philippe Biondi (May 08)
Philippe de Brito
Opty-Way Enterprise includes MSDE with sa <blank> Philippe de Brito (May 22)
Phuong Nguyen
Yahoo Messenger - Multiple Vulnerabilities Phuong Nguyen (May 27)
Pidgorny, Slav
Verisign PKI: anyone to subordinate CA Pidgorny, Slav (May 19)
ppp-design
NOCC: cross-site-scripting bug ppp-design (May 14)
qitest1
Bug in mnogosearch-3.1.19 qitest1 (May 11)
quentyn
Netscreen 25 unauthorised reboot issue quentyn (May 27)
REAVA, JEFFREY [IT/0200]
RE: Honeynet Project -> The Reverse Challenge REAVA, JEFFREY [IT/0200] (May 02)
researchteam
eSecurityOnline advisory 5063 - Sun AnswerBook2 gettransbitmap buffer overflow vulnerability researchteam (May 21)
richard . fuser
Re: Logitech Keyboard Insecurity richard . fuser (May 02)
Richard Stanway
Remote quake 2 3.2x server cvar leak Richard Stanway (May 15)
Roger Safian
FIRST 2002 reminder Roger Safian (May 10)
rogersk
Re: eSecurityOnline Security Advisory 3761 - Sun Solaris lbxproxy dis play name buffer overflow vulnerability rogersk (May 01)
Ross Coppage
ATMSNMPD Vulnerable but not Addressed Ross Coppage (May 13)
Ry Jones
NTFS and PGP interact to expose EFS encrypted data Ry Jones (May 08)
Scott Mackenzie
Gaim abritary Email Reading Scott Mackenzie (May 13)
SeazoN
wbbboard 1.1.1 registration _new_users_vulnerability_ SeazoN (May 27)
Sebastian Krahmer
SuSE Security Announcement: shadow (SuSE-SA:2002:017) Sebastian Krahmer (May 16)
SuSE Security Announcement: sysconfig (SuSE-SA:2002:016) Sebastian Krahmer (May 08)
SuSE Security Announcement: tcpdump/libpcap (SuSE-SA:2002:020) Sebastian Krahmer (May 29)
secure
[CLA-2002:489] Conectiva Linux Security Announcement - mailman secure (May 24)
[CLA-2002:487] Conectiva Linux Security Announcement - imap secure (May 24)
[CLA-2002:477] Conectiva Linux Security Announcement - mod_python secure (May 03)
[CLA-2002:483] Conectiva Linux Security Announcement - dhcp secure (May 09)
[CLA-2002:490] Conectiva Linux Security Announcement - mozilla secure (May 29)
[CLA-2002:481] Conectiva Linux Security Announcement - imlib secure (May 08)
[CLA-2002:480] Conectiva Linux Security Announcement - tcpdump secure (May 07)
security
Security Update: [CSSA-2002-022.0] Linux: OpenSSH ticket and token passing buffer overflow security (May 15)
Security Update: [CSSA-2002-SCO.19] OpenServer 5.0.5 OpenServer 5.0.6 : yppasswdd remotely exploitable buffer overflow security (May 21)
Security Update: [CSSA-2002-SCO.23] Open UNIX 8.0.0 UnixWare 7.1.1 : ftpd allows data connection hijacking via PASV mode security (May 30)
Security Update: [CSSA-2002-SCO.20] OpenServer 5.0.5 OpenServer 5.0.6 : popper buffer overflow and denial-of-service security (May 24)
Security Update: [CSSA-2002-023.0] Linux: PHP multipart/form-data vulnerabilities security (May 17)
Security Update: [CSSA-2002-SCO.18] Open UNIX 8.0.0 UnixWare 7.1.1 : CDE /var/dt and subdirectories are writable by world security (May 08)
Security Update: [CSSA-2002-018.1] Linux: REVISED: Race condition in fileutils security (May 14)
Security Update: [CSSA-2002-SCO.17] OpenServer 5.0.5 : sar -o buffer overflow security (May 02)
Security Update: [CSSA-2002-021.0] Linux: imapd buffer overflow when fetching partial mailbox attributes security (May 15)
Security Update: [CSSA-2002-SCO.22] OpenServer 5.0.5 OpenServer 5.0.6 : scoadmin command creates temporary files insecurely security (May 29)
Security Update: [CSSA-2002-020.0] Linux: icecast buffer overflows and denial-of-service security (May 13)
Security Update: [CSSA-2002-SCO.21] OpenServer 5.0.5 OpenServer 5.0.6 : sort command creates temporary files insecurely security (May 29)
SGI Security Coordinator
IRIX netstat vulnerability SGI Security Coordinator (May 07)
IRIX Xlib vulnerability SGI Security Coordinator (May 02)
IRIX fsr_xfs vulnerability SGI Security Coordinator (May 08)
IRIX nsd symlink vulnerability SGI Security Coordinator (May 01)
Shea, Tim
Efficient Networks Contact info Shea, Tim (May 23)
Simon Ouellette
Multiple vulnerabilities in QNX Simon Ouellette (May 31)
SnakeByte / Eric Sesterhenn
Problems with various windows FTP servers SnakeByte / Eric Sesterhenn (May 27)
snsadv () lac co jp
[SNS Advisory No.52] Webmin/Usermin Cross-site Scripting Vulnerability snsadv () lac co jp (May 08)
[SNS Advisory No.53] Webmin/Usermin Session ID Spoofing Vulnerability snsadv () lac co jp (May 08)
[SNS Advisory No.48] Microsoft Internet Explorer Still Download And Execute ANY Program Automatically snsadv () lac co jp (May 16)
Spybreak
Netstd 3.07-17 multiple remote buffer overflows Spybreak (May 24)
Stephanie Schiebert
[Fwd: Updated version of SSH Secure Shell available] Stephanie Schiebert (May 23)
Stephen Cope
Re: Unfortunate interaction between EZMLM and MessageLabs virus scanning Stephen Cope (May 11)
Re: Problems with various windows FTP servers Stephen Cope (May 28)
Steve Gustin
CGIscript.net - csPassword.cgi - Multiple Vulnerabilities Steve Gustin (May 30)
14+ CGIscript.net scripts - Path Disclosure Steve Gustin (May 17)
steven . sporen
Security Implications of Novell eDirectory. steven . sporen (May 30)
Stuart Moore
Fix available for Sgdynamo Stuart Moore (May 10)
Summercon Admin
Summercon 2002 Announce Summercon Admin (May 08)
superpetz
NetPad eq MALWARE, was: LevCGI.coms NetPad 1.0.2 multiple vulnerabilities superpetz (May 14)
SUZUKI Yasuhiro
swatch bug in throttle SUZUKI Yasuhiro (May 15)
Tamer Sahin
[SecurityOffice] LocalWeb2000 Web Server Protected File Access Vulnerability Tamer Sahin (May 24)
[SecurityOffice] Falcon Web Server Unauthorized File Disclosure Vulnerability #2 Tamer Sahin (May 27)
[SecurityOffice] Falcon Web Server Unauthorized File Disclosure Vulnerability Tamer Sahin (May 27)
[SecurityOffice] Stronghold Secure Webserver Sample Script Path Disclosure Vulnerability Tamer Sahin (May 21)
Terry Lavoie
RE: Multiple Vulnerabilities in MDaemon + WorldClient Terry Lavoie (May 08)
The Dark Tangent
Announcing DEF CON 10! The Dark Tangent (May 03)
the grugq
More ELF buggery... the grugq (May 27)
Thomas Biege
SuSE Security Announcement: dhcp/dhcp-server (SuSE-SA:2002:019) Thomas Biege (May 22)
Re: [security-intern] [security () suse de] FWD - GNU rm fileutils race condition problems on SuSE Thomas Biege (May 16)
SuSE Security Announcement: lukemftp, nkitb, nkitserv (SuSE-SA:2002:018) Thomas Biege (May 16)
SuSE Security Announcement: imlib (SuSE-SA:2002:015) Thomas Biege (May 07)
Thomas Seifert
Re: Phorum 3.3.2a remote command execution Thomas Seifert (May 20)
Thor Larholm
Update and comments on the MS02-023 patch, holes still remain Thor Larholm (May 16)
RE: Update and comments on the MS02-023 patch, holes still remain Thor Larholm (May 17)
Tina Bird
Re: Cisco Security Advisory: NTP vulnerability (fwd) Tina Bird (May 09)
Tom Gilder
Re: MS02-023 does not patch actual issue! Tom Gilder (May 16)
Torbjorn Kristoffersen
Re: ps under FreeBSD Torbjorn Kristoffersen (May 20)
uid0
Re: Trojan/backdoor in fragroute 1.2 source distribution uid0 (May 31)
Re: Xerox DocuTech problems uid0 (May 18)
Ulf Harnhammar
CRLF Injection Ulf Harnhammar (May 08)
underdoc
Misformated message header causes msn messenger to crash underdoc (May 06)
Vanja Hrustic
Re: Nearly undocumented NT security feature - the solution to executable attachments? Vanja Hrustic (May 10)
webmaster
Vulnerability in Novell Netware 5.0 (part1) webmaster (May 29)
Vulnerability in Apache Tomcat v3.23 & v3.24 (part 2) webmaster (May 29)
Vulnerability in Apache Tomcat v3.23 & v3.24 (part 3) webmaster (May 29)
Gafware's CFXImage vulnerability webmaster (May 29)
Vulnerability in Apache Tomcat v3.23 & v3.24 webmaster (May 29)
Vulnerability in Novell Netware 5.0 (part 2) webmaster (May 29)
X-Force
ISS Alert: Microsoft SQL Spida Worm Propagation X-Force (May 21)
Yuri A. Kabaenkov
Re: ps under FreeBSD Yuri A. Kabaenkov (May 18)
zeno
"The Cross Site Scripting FAQ" zeno (May 21)
zillion
SRT Security Advisory (SRT2002-04-31-1159): Mnews zillion (May 31)
AMANDA security issues zillion (May 27)