Bugtraq: by date
RSS Feed
About List
All Lists
Previous period
329 messages
starting Jan 01 04 and
ending Jan 30 04
Date index |
Thread index |
Author index
Thursday, 01 January
MDKSA-2003:095-1 - Updated proftpd packages fix remote root vulnerability Mandrake Linux Security Team
multiple payload handling flaws in isakmpd, again Thomas Walpuski
Announcing Userland Exec the grugq
Re: multiple payload handling flaws in isakmpd, again Thomas Walpuski
Re: Gallery v1.3.3 Cross Site Scripting Vulnerabillity Matt Zimmerman
Possible XSS vuln in VCard4J Just1n T1mberlake
Friday, 02 January
Self-Executing HTML: Internet Explorer 5.5 and 6.0 Part IV http-equiv () excite com
Re: Switch Off Multiple Vulnerabilities Peter Winter-Smith
xsok local games exploit c0wboy@0x333
DoS in GoodTech Telnet Server 4.0.103 Donato Ferrante
Switch Off Multiple Vulnerabilities Peter Winter-Smith
Microsoft Word Protection Bypass Thorsten Delbrouck-Konetzko
include() vuln in EasyDynamicPages v.2.0 Vietnamese Security Group
RE: Self-Executing HTML: Internet Explorer 5.5 and 6.0 Part IV tlarholm
Monday, 05 January
PostNuke Issues (0.726 && Possibly Older) JeiAr
Webcam Watchdog Stack Overflow Vulnerability Peter Winter-Smith
[SCSA-025] Invision Power Board SQL Injection Vulnerability advisory
xsok local games exploit (2) c0wboy@0x333
newsPHP v216 patch Dariusz 'Officerrr' Kolasinski
HotNews arbitary file inclusion Dariusz 'Officerrr' Kolasinski
[SECURITY] [DSA 406-1] New lftp packages fix arbitrary code execution Martin Schulze
Re: Linux kernel mremap vulnerability Paul Starzetz
Announcing adore-ng 0.31 Stealth
[CLA-2004:799] Conectiva Security Announcement - kernel Conectiva Updates
[SECURITY] [DSA 407-1] New ethereal packages fix several vulnerabilities Martin Schulze
TSLSA-2004-01 - kernel Trustix Security Advisor
[ESA-20040105-001] 'kernel' bug and security fixes. EnGarde Secure Linux
Linux kernel mremap vulnerability Paul Starzetz
[SECURITY] [DSA 408-1] New screen packages fix group utmp exploit Martin Schulze
[RHSA-2003:417-01] Updated kernel resolves security vulnerability bugzilla
SUSE Security Announcement: Linux Kernel (SuSE-SA:2004:001) Thomas Biege
Tuesday, 06 January
vBulletin Forum 2.3.xx calendar.php SQL Injection Qianwei Hu
[SECURITY] [DSA 409-1] New bind packages fix denial of service Matt Zimmerman
Immunix Secured OS 7.3 kernel update Immunix Security Team
[SECURITY] [DSA 411-1] New mpg321 packages fix format string vulnerability Matt Zimmerman
[SECURITY] [DSA 412-1] New nd packages fix buffer overflows Matt Zimmerman
Multiple Vulnerabilities in Phorum 3.4.5 Calum Power
[CLA-2004:800] Conectiva Security Announcement - lftp Conectiva Updates
[SECURITY] [DSA 410-1] New libnids packages fix buffer overflow Matt Zimmerman
Linux kernel do_mremap() proof-of-concept exploit code Christophe Devine
Linux mremap bug correction Paul Starzetz
Vuln in PHPGEDVIEW 2.61 Multi-Problem Vietnamese Security Group
[SECURITY] [DSA 413-1] New Linux 2.4.18 packages fix locate root exploit Martin Schulze
Lotus Notes Domino 6.0.2 (linux) faulty default permissions Rene
Re: Linux kernel do_mremap() proof-of-concept exploit code Bruno Lustosa
RE: Microsoft Word Protection Bypass Jerry Shenk
FirstClass Client 7.1: Command Execution via Email Web Link Richard Maudsley
RE: Linux kernel do_mremap() proof-of-concept exploit code tlarholm
Re: Linux kernel do_mremap() proof-of-concept exploit code Alexandre Hautequest
Wednesday, 07 January
Re: Linux kernel do_mremap() proof-of-concept exploit code Angelo Dell'Aera
Re: Microsoft Word Protection Bypass Thorsten Delbrouck-Konetzko
[SECURITY] [DSA 417-1] New Linux 2.4.18 packages fix local root exploit (powerpc+alpha) Martin Schulze
[SECURITY] [DSA 416-1] New fsp packages fix buffer overflow, directory traversal Matt Zimmerman
ZyXEL10 OF ZyWALL Series Router Cross Site Scripting Vulnerabillity Rafel Ivgi
SnapStream PVS LITE Cross Site Scripting Vulnerabillity Rafel Ivgi
[SECURITY] [DSA 415-1] New zebra packages fix denial of service Matt Zimmerman
[slackware-security] Kernel security update (SSA:2004-006-01) Slackware Security Team
EDIMAX AR-6004 Full Rate ADSL Router Cross Site Scripting Vulnerabillity Rafel Ivgi
RealNetworks fails to address Cross-Site Scripting in RealOne Player Arman Nayyeri
[SECURITY] [DSA 414-1] New jabber packages fix denial of service Matt Zimmerman
RE: Microsoft Word Protection Bypass Eric Lawrence
Re: Linux kernel do_mremap() proof-of-concept exploit code D Lambrou
[RHSA-2004:001-01] Updated Ethereal packages fix security issues bugzilla
[CLA-2004:801] Conectiva Security Announcement - ethereal Conectiva Updates
Thursday, 08 January
[OpenPKG-SA-2004.001] OpenPKG Security Advisory (inn) OpenPKG
Cisco Security Advisory: Cisco Personal Assistant User Password Bypass Vulnerability Cisco Systems Product Security Incident Response Team
[SECURITY] [DSA 418-1] New vbox3 packages fix privilege leak Matt Zimmerman
Re: Microsoft Word Protection Bypass Vladimir Katalov
Yahoo Instant Messenger Long Filename Downloading Buffer Overflow Tri Huynh
[SECURITY] INN: Buffer overflow in control message handling Russ Allbery
SGI Advanced Linux Environment security update #8 SGI Security Coordinator
MDKSA-2004:001 - Updated kernel packages fix local root vulnerability Mandrake Linux Security Team
Openssl proof of concept code? Lachniet, Mark
Friday, 09 January
[SECURITY] [DSA 417-2] New Linux 2.4.18 packages fix local root exploit (alpha) Martin Schulze
[SECURITY] [DSA 419-1] New phpgroupware packages fix unintended PHP execution and SQL injection Martin Schulze
[slackware-security] Slackware 8.1 kernel security update (SSA:2004-008-01) Slackware Security Team
Windows FTP Server Format String Vulnerability Peter Winter-Smith
bzip2 bombs still causes problems in antivirus-software Dr. Peter Bieringer
Monday, 12 January
Directory Traversal in Accipiter Direct Server 6.0 Bassett, Mark
[RHSA-2004:003-01] Updated CVS packages fix minor security issue bugzilla
Remote Code Execution in ezContents Zero_X www . lobnan . de Team
[Fwd: [TH-research] OT: Israeli Post Office break-in] Gadi Evron
[SECURITY] [DSA 420-1] New jitterbug packages fix arbitrary command execution Martin Schulze
DameWare Mini Remote Control < v3.73 remote exploit by kralor] Iván Rodriguez Almuiña
Abuse report email for CitiBank/CitiCards? winstrel
PHP Manpage lookup directory transversal / file disclosing Cabezon Aurélien
SRT2004-01-9-1022 - Symantec LiveUpdate allows local users to become SYSTEM KF
Re: SRT2004-01-9-1022 - Symantec LiveUpdate allows local users to become SYSTEM Sym Security
[SECURITY] [DSA 421-1] New mod-auth-shadow packages fix password expiration checking Matt Zimmerman
FW: Abuse report email for CitiBank/CitiCards? Sullivan, Barbra A
SmoothWall Project Security Advisory SWP-2004:001 William Anderson
Re: Abuse report email for CitiBank/CitiCards? Nicholas Weaver
Re: FW: Abuse report email for CitiBank/CitiCards? Nicholas Weaver
More phpGedView Vulnerabilities JeiAr
Tuesday, 13 January
Cisco Security Advisory: Vulnerabilities in H.323 Message Processing Cisco Systems Product Security Incident Response Team
[SECURITY] [DSA-422-1] multiple CVS improvements Wichert Akkerman
RE: [Fwd: [TH-research] OT: Israeli Post Office break-in] John . Airey
RE: Abuse report email for CitiBank/CitiCards? Lance James
exploit for HD Soft Windows FTP Server 1.6 mandrag
How to track a Phisher... Re: FW: Abuse report email for CitiBank/CitiCards? Nicholas Weaver
Re: FW: Abuse report email for CitiBank/CitiCards? Jim Gonzalez
MDKSA-2004:002 - Updated ethereal packages fix vulnerabilities Mandrake Linux Security Team
symlink vul for Antivir / Linux Version 2.0.9-9 (maybe lower) Rene
SuSE linux 9.0 YaST config Skribt [exploit] Rene
unauthorized deletion of IPsec (and ISAKMP) SAs in racoon Thomas Walpuski
Snort-inline Federico Petronio
Wednesday, 14 January
Re: unauthorized deletion of IPsec (and ISAKMP) SAs in racoon itojun
Multiple vulnerabilities in WWW Fileshare Pro <= 2.42 Luigi Auriemma
an article on the Israeli Post Office break-in Gadi Evron
nCipher Advisory #8: payShield library may verify bad requests nCipher Support
FishCart Integer Overflow / Rounding Error Michael Brennen
[RHSA-2004:007-01] Updated tcpdump packages fix various vulnerabilities bugzilla
Network Associates Product Security Contact Matt Moore
[RHSA-2004:006-01] Updated kdepim packages resolve security vulnerability bugzilla
KDE Security Advisory: VCF file information reader vulnerability Dirk Mueller
PhpDig 1.6.x: remote command execution FraMe
SUSE Security Announcement: tcpdump (SuSE-SA:2004:002) Sebastian Krahmer
Thursday, 15 January
Linux kernel mremap() bug update Paul Starzetz
[SECURITY] [DSA 423-1] New Linux 2.4.17 packages fix several problems (ia64) Martin Schulze
SUSE Security Announcement: Linux Kernel (SuSE-SA:2004:003) Thomas Biege
[slackware-security] kdepim security update (SSA:2004-014-01) Slackware Security Team
January 15 is Personal Firewall Day, help the cause tlarholm
RapidCache Multiple Vulnerabilities Peter Winter-Smith
MDKSA-2004:003 - Updated kdepim packages fix vulnerability Mandrake Linux Security Team
[slackware-security] INN security update (SSA:2004-014-02) Slackware Security Team
OpenSSL ASN.1 parsing bugs PoC / brute forcer Bram Matthys (Syzop)
Friday, 16 January
Re: Security bug in Xerox Document Centre K . Schleede
[OpenCA Advisory] Vulnerability in signature verification Michael Bell
The Bat! 2.01 memory corruption 3APA3A
[OpenPKG-SA-2004.002] OpenPKG Security Advisory (tcpdump) OpenPKG
Re: unauthorized deletion of IPsec (and ISAKMP) SAs in racoon itojun
phpShop Vulnerabilities JeiAr
Xtreme ASP Photo Gallery posidron
Multiple MetaDot Vulnerabilities [ All Versions ] JeiAr
[SECURITY] [DSA 424-1] New mc packages fix buffer overflow Matt Zimmerman
Saturday, 17 January
HP printers and currency anti-copying measures Richard M. Smith
SRT2004-01-17-0425 - Ultr@VNC local SYSTEM access. KF
Monday, 19 January
Happy belated Personal Firewall day - SRT2004-01-17-0628 - Agnitum Optpost firewall allows Local SYSTEM access KF
Mambo OS v4.5/v4.6: remote command execution FraMe
Pablo Sofware Solutions FTP server can detect if a file exists outside the FTP root directory scrap
new outbreak warning - Bagle Gadi Evron
Lame crash in qmail-smtpd and memory overwrite according to gdb, yet still qmail much better than windows Serafino Sorrenti
[SECURITY] [DSA 426-1] New netpbm-free packages fix insecure temporary file creation Matt Zimmerman
[SECURITY] [DSA 427-1] New Linux 2.4.17 packages fix local root exploit (mips+mipsel) Martin Schulze
Proof-Of-Concept Denial-Of-Service Pointbase 4.6 Java SQL-DB Marc Schoenefeld
Directories management bypassing in Goahead webserver <= 2.1.8 Luigi Auriemma
New release of Patchfinder2 (windows rootkit detector) Joanna Rutkowska
Resources consumption in Goahead webserver <= 2.1.8 Luigi Auriemma
Denial of service in Getware's built-in webserver (Webcam Live and Photohost) Luigi Auriemma
Networker 6.0 - possible symlink attack Rene
[ESA-20040119-002] 'tcpdump' multiple vulnerabilities. EnGarde Secure Linux
Re: Get admin rights using Doro (pdf creator) the_sz
Bagle worm status + more blocking information Gadi Evron
Yabb SE SQL Injection backspace
RE: Bagle worm status + more blocking information David Brodbeck
Re: HP printers and currency anti-copying measures Andre Oppermann
a method for bypassing cookie restrictions in web browsers Michal Zalewski
RE: HP printers and currency anti-copying measures Larry Seltzer
RE: ISA Server 2000 - Vulnerability in H.323 Filter Can Cause Rem ote Code Execution (816458) Alan Monaghan
What is the point here? Alun Jones
[SECURITY] [DSA 425-1] New tcpdump packages fix multiple vulnerabilities Matt Zimmerman
More info on blocking the Bagle worm Gadi Evron
RE: HP printers and currency anti-copying measures Kevin E. Casey
Re: a method for bypassing cookie restrictions in web browsers Dave McKinney
RE: What is the point here? Andrew Hintz ( Drew )
RE: What is the point here? ken kousky
RE: What is the point here? PM Systems - Rick Woehler
Re: What is the point here? Systems Administrator
Tuesday, 20 January
NETCam webserver Directory traversal bug Rafel Ivgi, The-Insider
Re: What is the point here? Adam Shostack
Re: What is the point here? Mariusz Woloszyn
[SuSE 9.0] possible symlink attacks in some scripts Rene
Re: Lame crash in qmail-smtpd and memory overwrite according to gdb, yet still qmail much better than windows Scott Gifford
Re: a method for bypassing cookie restrictions in web browsers Michal Zalewski
Re: What is the point here? Damian Menscher
Re: HP printers and currency anti-copying measures mightye[removethis]
[CLA-2004:809] Conectiva Security Announcement - screen Conectiva Updates
[CLA-2004:810] Conectiva Security Announcement - kdepim Conectiva Updates
[CLA-2004:808] Conectiva Security Announcement - cvs Conectiva Updates
vBulletin Security Vulnerability gcf
[SECURITY] [DSA 428-1] New slocate packages fix buffer overflow Matt Zimmerman
[SCSA-026] DUWARE Products Admin Access and Arbitrary File Upload Vulnerability advisory
WebTrends Reporting Center Path Disclosure vulnerability Oliver Karow
2Wire-Gateway Cross Site Scripting and Directory Transversal bug in SSL Form Rafel Ivgi, The-Insider
OwnServer 1.0 Directory Transversal Vulnerability Rafel Ivgi, The-Insider
RE: vBulletin Security Vulnerability Ferruh Mavituna
Internet Explorer - Multiple Vulnerabilities Rafel Ivgi, The-Insider
Wednesday, 21 January
Mephistoles Httpd 0.6.0final XSS Donato Ferrante
TSLSA-2004-0005 - slocate Trustix Security Advisor
Cisco Security Advisory: Voice Product Vulnerabilities on IBM Servers Cisco Systems Product Security Incident Response Team
Re: [Full-Disclosure] RE: Internet Explorer - Multiple Vulnerabilities Berend-Jan Wever
Re: What is the point here? Jason Coombs
[Fwd: [TH-research] Bagle remote uninstall] Gadi Evron
Re: HP printers and currency anti-copying measures Sami Haahtinen
[RHSA-2004:034-01] Updated mc packages resolve buffer overflow vulnerability bugzilla
Honeyd Security Advisory 2004-001: Remote Detection Via Simple Probe Packet Niels Provos
WebcamXP v1.06.945 Cross Site Scripting Vulnerabillity Rafel Ivgi, The-Insider
Re: HP printers and currency anti-copying measures Sasha
RE: Internet Explorer - Multiple Vulnerabilities Thor Larholm
Paper announcement: Is finding security holes a good idea? Eric Rescorla
[ GLSA 200401-02 ] Honeyd remote detection vulnerability via a probe packet Tim Yamin
Hijacking Apache 2 via mod_perl Steve Grubb
Thursday, 22 January
RE: Paper announcement: Is finding security holes a good idea? Daniel Whelan
Re: Paper announcement: Is finding security holes a good idea? Oliver Friedrichs
Re: Paper announcement: Is finding security holes a good idea? Benjamin Franz
yet another new phising scam Gadi Evron
Re: Paper announcement: Is finding security holes a good idea? Kurt Seifried
Re: [SuSE 9.0] possible symlink attacks in some scripts Thomas Biege
Re: HP printers and currency anti-copying measures Darren Reed
Re: Hijacking Apache 2 via mod_perl Ben Laurie
TBE - the banner engine server-side script execution vulnerability Ed J. Aivazian
AV products vulnerability [Fwd: [TH-research] Upx hack tool] Gadi Evron
Need for Speed Hot pursuit 2 <= 242 client's buffer overflow Luigi Auriemma
Re: Hijacking Apache 2 via mod_perl Lupe Christoph
Major hack attack on the U.S. Senate Richard M. Smith
vulnerabilities of postscript printers Bob Kryger
NetBus Pro Web Server Direcory Listing And Remote File Upload Rafel Ivgi, The-Insider
Re: Paper announcement: Is finding security holes a good idea? Robert Lemos
Re[2]: Hijacking Apache 2 via mod_perl 3APA3A
Re: Hijacking Apache 2 via mod_perl Ben Laurie
Re: Hijacking Apache 2 via mod_perl André Malo
GeoHttpServer Authentification Bypass Vulnerability & D.O.S (Denial Of Service) Rafel Ivgi, The-Insider
Re: Re[2]: Hijacking Apache 2 via mod_perl Steve G
Re: Paper announcement: Is finding security holes a good idea? Christopher E. Cramer
FREESCO public http server - Cross Site Scripting Vulnerabillity Rafel Ivgi, The-Insider
Re: Hijacking Apache 2 via mod_perl Steve G
Friday, 23 January
NetWare-Enterprise-Web-Server/5.1/6.0 Multiple Vulnerabilities Rafel Ivgi, The-Insider
Re: vulnerabilities of postscript printers Darren Reed
Re: Major hack attack on the U.S. Senate ~Kevin Davis³
Re: Major hack attack on the U.S. Senate Brian C. Lane
Multiple Vulnerabilities in Phorum 3.4.5 Fredrik Björk
Finjan SurfinGate Vulnerability David Byrne
Re: vulnerabilities of postscript printers der Mouse
Re: Hijacking Apache 2 via mod_perl jon schatz
QuadComm Q-Shop ASP Shopping Cart Software multiple security vulnerabilities S-Quadra Security Research
Saturday, 24 January
Tiny Server 1.1 (1.0.5) Multiple Vulnerabilities Donato Ferrante
Oracle HTTP Server Cross Site Scripting Vulnerabillity Rafel Ivgi, The-Insider
Re: vulnerabilities of postscript printers Jim Knoble
Re: vulnerabilities of postscript printers Michael Zimmermann
Re: vulnerabilities of postscript printers der Mouse
Re: vulnerabilities of postscript printers Michael Zimmermann
Re: vulnerabilities of postscript printers Michael Zimmermann
Re: vulnerabilities of postscript printers Thomas M. Payerle
MDKSA-2004:004 - Updated slocate packages fix vulnerability Mandrake Linux Security Team
Re: vulnerabilities of postscript printers Elizabeth Zwicky
Re: Major hack attack on the U.S. Senate rsh
Re: vulnerabilities of postscript printers Glynn Clements
Re: Hijacking Apache 2 via mod_perl Matthew Wakeling
Re: vulnerabilities of postscript printers Darren Reed
[SST]ServU MDTM command remote buffero verflow adv icbm
MDKSA-2004:005 - Updated jabber packages fix DoS vulnerability Mandrake Linux Security Team
Re: vulnerabilities of postscript printers der Mouse
Re: Major hack attack on the U.S. Senate Kirk Spencer
RE: Major hack attack on the U.S. Senate B. Kinney
Re: vulnerabilities of postscript printers Nate Eldredge
Re: Major hack attack on the U.S. Senate Kevin Reardon
Re: Major hack attack on the U.S. Senate Daniel . Capo
Re: vulnerabilities of postscript printers Stephen Samuel
Re: vulnerabilities of postscript printers der Mouse
Re: Major hack attack on the U.S. Senate Dinesh Nair
Resources consumption in Reptile webserver daily version Donato Ferrante
Re: [work] Re: Major hack attack on the U.S. Senate opticfiber
BWS v1.0b3 Directory Transversal Vulnerability Rafel Ivgi, The-Insider
Inrtra Forum Cross Site Scripting Vulnerabillity Rafel Ivgi, The-Insider
Re: Major hack attack on the U.S. Senate ed
RE: Major hack attack on the U.S. Senate bugtraq
Re: [work] Re: Major hack attack on the U.S. Senate Jonathan A. Zdziarski
Re: vulnerabilities of postscript printers Bob Beck
Re: vulnerabilities of postscript printers Theo de Raadt
Monday, 26 January
NextPlace.com E-Commerce ASP Engine Rafel Ivgi, The-Insider
Serv-U ftp 4.2 site chmod long_file_name exploit Qianwei Hu
Self-Executing FOLDERS: Windows XP Explorer Part V http-equiv () excite com
Advisory 01/2004: 12 x Gaim remote overflows Stefan Esser
Re: Major hack attack on the U.S. Senate Crispin Cowan
Directory traversal and XSS in BremsServer 1.2.4 Donato Ferrante
[RHSA-2004:032-01] Updated Gaim packages fix various vulnerabiliies bugzilla
Re: QuadComm Q-Shop ASP Shopping Cart Software multiple security vulnerabilities S-Quadra Security Research
Re: Self-Executing FOLDERS: Windows XP Explorer Part V mightye[removethis]
RE: Self-Executing FOLDERS: Windows XP Explorer Part V Thor Larholm
Re: Windows XP Explorer Executes Arbitrary Code in Folders Stuart Moore
ProxyNow! 2.x Multiple Overflow Vulnerabilities Peter Winter-Smith
Tuesday, 27 January
RE: Finjan SurfinGate Vulnerability Menashe Eliezer
New MiMail variant is DDoS'ing SCO.com tlarholm
MDKSA-2004:006 - Updated gaim packages fix multiple vulnerabilities Mandrake Linux Security Team
[HUC] Serv-U FTPD 3.x/4.x "SITE CHMOD" Command remote exploit V1.0 lion
MDKSA-2004:007 - Updated mc packages fix buffer overflow vulnerability Mandrake Linux Security Team
[slackware-security] GAIM security update (SSA:2004-026-01) Slackware Security Team
Re: Self-Executing FOLDERS: Windows XP Explorer Part V Jelmer
[SECURITY] [DSA 429-1] New gnupg packages fix cryptographic weakness in ElGamal signing keys Matt Zimmerman
Chaosreader: Trace TCP/UDP from snoop/tcpdump logs Brendan Gregg
MDKSA-2004:008 - Updated tcpdump packages fix several vulnerabilities Mandrake Linux Security Team
Re: symlink vul for Antivir / Linux Version 2.0.9-9 (maybe lower) AntiVir Support
Ultramagnetic Advisory #001: Multiple vulnerabilities in Gaim code lowhalo
Re: Self-Executing FOLDERS: Windows XP Explorer Part V Liu Die Yu
[FLSA-2004:1187] Updated screen resolves security vulnerability Jesse Keating
Elevated scanning: TCP port 135 (RPC) AND 445 (Domain Services) Nicholas Weaver
GOOROO CROSSING: File Spoofing Internet Explorer 6 http-equiv () excite com
[ GLSA 200401-03 ] Apache mod_python Denial of Service vulnerability Tim Yamin
RE: GOOROO CROSSING: File Spoofing Internet Explorer 6 Oliver Lavery
SRT2004-01-18-0747 - IBM Informix IDS 9.4 contains multiple vulnerabilities KF
Remote exploit in Gallery 1.3.1, 1.3.2, 1.3.3, 1.4 and 1.4.1 Bharat Mediratta
Re: vulnerabilities of postscript printers Ian Farquhar - Network Security Group
GAIM Patch update Stefan Esser
[ GLSA 200401-04 ] GAIM 0.75 Remote overflows Tim Yamin
RE: GOOROO CROSSING: File Spoofing Internet Explorer 6 tlarholm
information and reverse engineering bits of the Mydoom worm Gadi Evron
Wednesday, 28 January
[SECURITY] [DSA 430-1] New trr19 packages fix local games exploit Martin Schulze
RFC: virus handling Thomas Zehetbauer
Denial Of Service in SurfNOW 2.2 Donato Ferrante
phpBB privmsg.php XSS vulnerability patch. Shaun Colley
Re: New MiMail variant is DDoS'ing SCO.com Bob Toxen
SRT2004-01-17-0227 - BlackICE allows local users to become SYSTEM KF
BRS WebWeaver Webserver Cross Site Scripting Vulnerability Oliver Karow
Oracle toplink mapping workbench password algorithm Pete Finnigan
ZH2004-01SA (security advisory): Web Blog 1.1 Remote arbitrary files retrieving ZetaLabs
Thursday, 29 January
SGI Advanced Linux Environment security update #9 SGI Security Coordinator
new WIN virus? Atom 'Smasher'
Security Announcement: untrusted ELF library path in some cvsup binary RPMs Matthias Andree
ZH2004-02SA (security advisory): PJ CGI Neo review (NeoBoard review) Remote arbitrary file retrieving ZetaLabs
MacOS X TruBlueEnvironment Buffer Overflow @stake Advisories
----------========== OPEN3S-2003-08-08-eng-informix-ontape ==========---------- pask
----------========== OPEN3S-2003-08-08-eng-informix-onshowaudit ==========---------- pask
SUSE Security Announcement: gaim (SuSE-SA:2004:004) Thomas Biege
----------========== OPEN3S-2003-08-08-eng-informix-onedcu ==========---------- pask
[FLSA-2004:1207] Updated cvs resolves security vulnerability Jesse Keating
userland binary vulnerabilities on IRIX SGI Security Coordinator
Cisco Security Advisory: Buffer Overrun in Microsoft Windows 2000 Workstation Service (MS03-049) Cisco Systems Product Security Incident Response Team
Friday, 30 January
Serv-U exploit Berend-Jan Wever
FreeBSD Security Advisory FreeBSD-SA-04:01.mksnap_ffs FreeBSD Security Advisories