Bugtraq: by thread
368 messages
starting Mar 01 04 and
ending Mar 31 04
Date index |
Thread index |
Author index
- Clients broadcast buffer overflow in Red Faction <= 1.20 Luigi Auriemma (Mar 01)
- YabbSE (3 on 1) backspace (Mar 01)
- <Possible follow-ups>
- Re: YabbSE (3 on 1) David (Mar 17)
- [SECURITY] [DSA 452-1] New libapache-mod-python packages fix denial of service Matt Zimmerman (Mar 01)
- mremap(2) full details available Paul Starzetz (Mar 01)
- Motorola T720 cell phone DoS vulnerability. Shaun Colley (Mar 01)
- Re: Motorola T720 cell phone DoS vulnerability. John T. Larkin (Mar 02)
- Re: New phpBB ViewTopic.php Cross Site Scripting Vulnerability t4c [Founder of GHCIF] (Mar 01)
- The Cult of a Cardinal Number Phantasmal Phantasmagoria (Mar 02)
- <Possible follow-ups>
- Re: The Cult of a Cardinal Number Phantasmal Phantasmagoria (Mar 04)
- SonicWall VPN/Firewall Appliance - DoS, ARP Flood, Network mapping vulnerability xeno (Mar 02)
- RE: SonicWall VPN/Firewall Appliance - DoS, ARP Flood, Network mapping vulnerability Dennis M. Callan (Mar 02)
- <Possible follow-ups>
- RE: SonicWall VPN/Firewall Appliance - DoS, ARP Flood, Network mapping vulnerability xeno (Mar 03)
- Format String vuln in Inktomi Search4.0 Blurred Vision (Mar 02)
- OpenLinux: Integer overflow may allow local users to cause a denial of service or possibly execute arbitrary code please_reply_to_security (Mar 02)
- [SECURITY] [DSA 454-1] New Linux 2.2.22 packages fix local root exploit (alpha) Martin Schulze (Mar 02)
- [FLSA-2004:1284] Updated kernel resolves security vulnerabilities Jesse Keating (Mar 02)
- 03-02-04 XSS Bug in NetScreen-SA 5000 Series of SSL VPN appliance Lachniet, Mark (Mar 02)
- New Internet Explorer Cross Zone/Site Scripting Vulnerability Cheng Peng Su (Mar 03)
- <Possible follow-ups>
- RE: New Internet Explorer Cross Zone/Site Scripting Vulnerability Thor Larholm (Mar 03)
- Spider Sales shopping cart software multiple security vulnerabilities S-Quadra Security Research (Mar 03)
- Wftpd stat Command Remote Vulnerability Exploit security team 0seen (Mar 03)
- RE: Wftpd stat Command Remote Vulnerability Exploit Alun Jones (Mar 04)
- The non-apreciated world of full-disclosure Davide Del Vecchio (Mar 03)
- directory traversal in GWeb 0.6 Donato Ferrante (Mar 03)
- OpenLinux: rsync heap based overflow please_reply_to_security (Mar 03)
- OpenLinux: screen buffer overflow please_reply_to_security (Mar 03)
- OpenLinux: Gnupg (gpg) severe bug could compromise almost all ElGamal keys please_reply_to_security (Mar 03)
- Coreutils 'dir' integer overflow vulnerability. Shaun Colley (Mar 03)
- RE: SonicWall Firewall DoS, ARP Flood, Network Mapping Robert C. Auch (Mar 03)
- SGI Advanced Linux Environment security update #13 SGI Security Coordinator (Mar 03)
- Cisco Security Advisory: Cisco CSS 11000 Series Content Services Switches Malformed UDP Packet Vulnerability Cisco Systems Product Security Incident Response Team (Mar 04)
- A new white paper by Sanctum: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Amit Klein (Mar 04)
- [SECURITY] [DSA 455-1] New libxml packages fix arbitrary code execution Martin Schulze (Mar 04)
- MDKSA-2004:018 - Updated libxml2 packages fix vulnerability Mandrake Linux Security Team (Mar 04)
- Serv-U Real Target and Search ASM Code Tool for Overflow Exploit. lion (Mar 04)
- MDKSA-2004:017 - Updated pwlib packages fix vulnerability Mandrake Linux Security Team (Mar 04)
- SHOUTcast v1.9.2 remote connect back exploit 0seen security team (Mar 04)
- Re: Multiple issues with Mac OS X AFP client Marukka (Mar 04)
- Nokia 3410 cell phones software flaw David Arranz (Mar 04)
- Re: [bugtraq] Nokia 3410 cell phones software flaw Erwann Abalea (Mar 04)
- OpenLinux: cups denial of service vulnerability please_reply_to_security (Mar 04)
- Abobe Reader 5.1 XFDF Buffer Overflow Vulnerability NGSSoftware Insight Security Research (Mar 04)
- LNSA-#2004-0004: libxml2 buffer overflow Vincenzo Ciaglia (Mar 04)
- GNU Anubis buffer overflows and format string bugs Ulf Härnhammar (Mar 04)
- SLWebMail Multiple Buffer Overflow Vulnerabilities (#NISR05022004b) NGSSoftware Insight Security Research (Mar 05)
- SLMail Pro Supervisor Report Center Buffer Overflow (#NISR05022004a) NGSSoftware Insight Security Research (Mar 05)
- Invision Power Board 1.3 Final Path Disclosure Vulnerability Shaun Colley (Mar 05)
- <Possible follow-ups>
- Re: Invision Power Board 1.3 Final Path Disclosure Vulnerability JeiAr (Mar 05)
- [FLSA-2004:1256] Updated util-linux resolves security vulnerability Jesse Keating (Mar 05)
- IEEE Security & Privacy CFP Sharif Torpis (Mar 05)
- NetScreen Advisory 58412: XSS Bug in NetScreen-SA SSL VPN NetScreen Security Response Team (Mar 05)
- Desert Rats vs. Afrika Korps (Haegemonia bug) Luigi Auriemma (Mar 05)
- <Possible follow-ups>
- RE: Desert Rats vs. Afrika Korps (Haegemonia bug) Drew Copley (Mar 08)
- VirtuaNews Admin Panel 1.0.3 Pro Cross Site Scripting Vulnerabillity Rafel Ivgi, The-Insider (Mar 05)
- Re: A new Sanctum white paper: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Jeremiah Grossman (Mar 05)
- Re: "Divide and Conquer" - cross site response header tampering, cookie manipulation, and session fixation Peter Watkins (Mar 08)
- <Possible follow-ups>
- RE: A new Sanctum white paper: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Amit Klein (Mar 08)
- Infosecdaily.net: Expanding our blogging community. Ejovi Nuwere (Mar 05)
- Invision Power Board v1.3 Final Cross Site Scripting Vulnerabillity Rafel Ivgi, The-Insider (Mar 05)
- [OpenPKG-SA-2004.003] OpenPKG Security Advisory (libxml) OpenPKG (Mar 05)
- Norton Antivirus 2002 fails to scan files with special character(s) properly. Bipin Gautam . (Mar 05)
- Re: Norton Antivirus 2002 fails to scan files with special character(s) properly. Marco Marabelli (Mar 06)
- O-088: Sun passwd(1) Command Vulnerability Cy Schubert (Mar 05)
- Re: Norton Antivirus 2002 fails to scan files with ... [2'nd... UPDATED] Bipin Gautam . (Mar 06)
- [SECURITY] [DSA 456-1] New Linux 2.2.19 packages fix local root exploit (arm) Martin Schulze (Mar 06)
- TSLSA-2004-0009 - nfs-utils Trustix Security Advisor (Mar 06)
- TSLSA-2004-0010 - libxml2 Trustix Security Advisor (Mar 06)
- Safari javascript array overflow kang (Mar 06)
- Symlink Vulnerability in GNU automake <1.8.3 Stefan Nordhausen (Mar 08)
- [OpenPKG-SA-2004.004] OpenPKG Security Advisory (libtool) OpenPKG (Mar 08)
- directory traversal in PWebServer 0.3.3 Donato Ferrante (Mar 08)
- [ GLSA 200403-01 ] Libxml2 URI Parsing Buffer Overflow Vulnerabilities Tim Yamin (Mar 08)
- [ GLSA 200403-02 ] Linux kernel do_mremap local privilege escalation vulnerability Tim Yamin (Mar 08)
- Z***ING EMAILS ! http-equiv () excite com (Mar 08)
- Antivir for Freebsd doesn't work on 5.X George Swentek (Mar 08)
- RE: "Divide and Conquer" - cross site response header tampering, cookie manipulation, and session fixation Amit Klein (Mar 08)
- Re: Invision Power Board v1.3 Final Cross Site Scripting Vulnerabillity JeiAr (Mar 08)
- [OpenPKG-SA-2004.005] OpenPKG Security Advisory (mutt) OpenPKG (Mar 09)
- Invision Power Board v1.3 Final Cross Site Scripting 2 - Addon Rafel Ivgi, The-Insider (Mar 09)
- IBM DB2 Remote Command Execution Privilege Upgrade (#NISR09032004) NGSSoftware Insight Security Research (Mar 09)
- Re: IBM DB2 Remote Command Execution Privilege Upgrade (#NISR09032004) Marc Bejarano (Mar 10)
- [SECURITY] [DSA 457-1] New wu-ftpd packages fix multiple vulnerabilities Matt Zimmerman (Mar 09)
- Establishing contact with Nullsoft Peter Winter-Smith (Mar 09)
- Ghost users in Chat Anywhere 2.72 Luigi Auriemma (Mar 09)
- MDKSA-2004:019 - Updated python packages fix buffer overflow vulnerability Mandrake Linux Security Team (Mar 10)
- Outlook mailto: URL argument injection vulnerability Jouko Pynnonen (Mar 10)
- <Possible follow-ups>
- RE: Outlook mailto: URL argument injection vulnerability Shaun Colley (Mar 11)
- [SECURITY] [DSA 458-1] New python2.2 packages fix buffer overflow Matt Zimmerman (Mar 10)
- MDKSA-2004:021 - Updated mozilla packages fix multiple vulnerabilities Mandrake Linux Security Team (Mar 10)
- Format string bug in EpicGames Unreal engine Luigi Auriemma (Mar 10)
- <Possible follow-ups>
- Re: Format string bug in EpicGames Unreal engine Käppler (Mar 11)
- MDKSA-2004:022 - Updated kdelibs packages fix cookie theft vulnerability Mandrake Linux Security Team (Mar 10)
- MDKSA-2004:020 - Updated gdk-pixbuf packages fix BMP-handling vulnerability Mandrake Linux Security Team (Mar 10)
- GNU Anubis 3.6.2 remote root exploit Claes M Nyberg (Mar 10)
- DoS in wMCam server 2.1.348 Donato Ferrante (Mar 10)
- [RHSA-2004:075-01] Updated kdelibs packages resolve cookie security issue bugzilla (Mar 10)
- [RHSA-2004:102-01] Updated gdk-pixbuf packages fix denial of service vulnerability bugzilla (Mar 10)
- With regards to the Adobe Acrobat Reader advisory (#NISR03022004) NGSSoftware Insight Security Research (Mar 10)
- Re: LAN SUITE Web Mail 602Pro Multiple Vulnerabilities Brandon Sturgeon (Mar 10)
- Re: HP printers and currency anti-copying measures Dan Harkless (Mar 10)
- Re: HP printers and currency anti-copying measures Dana Hudes (Mar 10)
- [SECURITY] [DSA 459-1] New kdelibs, kdelibs-crypto packages fix cookie traversal bug Matt Zimmerman (Mar 10)
- [SECURITY] [DSA 460-1] New sysstat packages fix insecure temporary file creation Matt Zimmerman (Mar 10)
- [RHSA-2004:093-01] Updated sysstat packages fix security vulnerabilities bugzilla (Mar 10)
- Unreal engine updates and Battle Mages advisory Luigi Auriemma (Mar 11)
- Re: Unreal engine updates and Battle Mages advisory Todd Chapman (Mar 11)
- Multiple Vulnerabilities in PWS 0.2.2 Donato Ferrante (Mar 11)
- Re: Multiple Vulnerabilities in PWS 0.2.2 Jan De Luyck (Mar 15)
- XSS in MyProxy 20030629 Donato Ferrante (Mar 11)
- [SECURITY] [DSA 461-1] New calife packages fix buffer overflow Matt Zimmerman (Mar 11)
- Re: Outlook mailto: URL argument injection vulnerability MS04-009 (Now CRITICAL) ! K-OTiK Security (Mar 11)
- Re: Norton AntiVirus 2002 fails to scan files with ... [2'nd... UPDATED] Message-ID: 20040306040833.28300 Sym Security (Mar 11)
- Cpanel 8.*.* have a problem ? Arab VieruZ (Mar 11)
- Announcing full functional adore-ng rootkit for 2.6 Kernel stealth (Mar 11)
- Multiple vulnerabilities in Hushmail.com Calum Power (Mar 11)
- cPanel Secuirty Advisory CPANEL-2004:01-01 J. Nick Koston (Mar 11)
- [OpenPKG-SA-2004.006] OpenPKG Security Advisory (uudeview) OpenPKG (Mar 12)
- Metamail 'extcompose' script Symlink Vulnerability Shaun Colley (Mar 12)
- MS Security Response is a bunch of half-witted morons Nick FitzGerald (Mar 12)
- Re: MS Security Response is a bunch of half-witted morons Walter Wart (Mar 12)
- Re: MS Security Response is a bunch of half-witted morons Kim Scarborough (Mar 12)
- Cpanel Request Lets Authenticated Users Conduct Cross-Site Scripting Attacks Fable (Mar 12)
- Dogpatch Software CFWebstore 5.0 shopping cart software multiple security vulnerabilities S-Quadra Security Research (Mar 12)
- Cpanel 9.1.0 have a problem ? Arab VieruZ (Mar 12)
- SGI Advanced Linux Environment security update #14 SGI Security Coordinator (Mar 12)
- PLAXO: is that a cure or a disease? http-equiv () excite com (Mar 12)
- <Possible follow-ups>
- Re: PLAXO: is that a cure or a disease? Stacy Martin (Mar 18)
- [SECURITY] [DSA 463-1] New samba packages fix privilege escalation in smbmnt Matt Zimmerman (Mar 13)
- phpBB 2.0.6d && Earlier Security Issues JeiAr (Mar 13)
- Multiple Vendor SOAP server array DoS Amit Klein (Mar 15)
- VocalTec Gateway 8 Reverse Directory Transversal + Authorization Bypass Rafel Ivgi, The-Insider (Mar 15)
- spamblocker turns into mail denial of service Dana Hudes (Mar 15)
- Re: spamblocker turns into mail denial of service Chris Fuhrman (Mar 15)
- spamblocker turns into mail denial of service Dana Hudes (Mar 15)
- Rosiello Security's exploit for MDaemon Angelo Rosiello (Mar 15)
- ws_ftp overflow john layman (Mar 15)
- Re: ws_ftp overflow nesumin (Mar 16)
- Re[2]: ws_ftp overflow (WS_FTP Pro 8.0.3 is vulnerable) nesumin (Mar 19)
- Re: ws_ftp overflow nesumin (Mar 16)
- Multiple Immunity Advisories Dave Aitel (Mar 15)
- [SCAN Associates Sdn Bhd Security Advisory] phpBB 2.0.6 and below sql injection pokley (Mar 15)
- YaBB/YaBBse Cross Site Scripting Vulnerability Cheng Peng Su (Mar 15)
- <Possible follow-ups>
- RE: YaBB/YaBBse Cross Site Scripting Vulnerability Frog Man (Mar 16)
- Opera Array Allocation Managment Exploit d3thStaR (Mar 15)
- [waraxe-2004-SA#007 - XSS and SQL injection bugs in 4nguestbook module for PhpNuke] Janek Vind (Mar 15)
- [waraxe-2004-SA#005 - XSS in Php-Nuke 7.1.0 - part 2] Janek Vind (Mar 15)
- [waraxe-2004-SA#006 - Multiple vulnerabilities in 4nalbum module for PhpNuke] Janek Vind (Mar 15)
- Follow-up: Major hack attack on the U.S. Senate eric (Mar 15)
- Phorum 5.0.3 Beta && Earlier XSS Issues JeiAr (Mar 15)
- [SECURITY] [DSA 464-1] New gdk-pixbuf packages fix denial of service Martin Schulze (Mar 16)
- JelSoft vBulletin Multiple XSS Vulnerabilities JeiAr (Mar 16)
- Mambo Open Source Multiple Vulnerabilities JeiAr (Mar 16)
- ModSecurity 1.7.4 for Apache 2.x remote off-by-one overflow S-Quadra Security Research (Mar 16)
- Crafty Game Stack Overflow & Exploit Angelo Rosiello (Mar 16)
- Fw: Bilbao Method Exposed FraMe (Mar 16)
- <Possible follow-ups>
- Re: Fw: Bilbao Method Exposed Mark J Cox (Mar 16)
- new security alert #66 issued in Oracle web cache Pete Finnigan (Mar 16)
- PHPX 2.x - 3.2.4 gdayworld (Mar 16)
- New OpenSSL releases fix denial of service attacks [17 March 2004] Mark J Cox (Mar 17)
- Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Marc Bejarano (Mar 17)
- Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Mark J Cox (Mar 17)
- Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Marc Bejarano (Mar 17)
- Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Mark J Cox (Mar 17)
- Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Dave Markham (Mar 17)
- Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Marc Bejarano (Mar 17)
- Cisco Security Advisory: Cisco OpenSSL Implementation Vulnerability Cisco Systems Product Security Incident Response Team (Mar 17)
- SUSE Security Announcement: openssl (SuSE-SA:2004:007) Thomas Biege (Mar 17)
- MDKSA-2004:023 - Updated openssl packages fix multiple vulnerabilities Mandrake Linux Security Team (Mar 17)
- [ESA-20040317-003] 'openssl' Denial of Service vulnerabilities. EnGarde Secure Linux (Mar 17)
- FreeBSD Security Advisory FreeBSD-SA-04:05.openssl FreeBSD Security Advisories (Mar 17)
- [SECURITY] [DSA 465-1] New openssl packages fix multiple vulnerabilities Matt Zimmerman (Mar 17)
- [RHSA-2004:121-01] Updated OpenSSL packages fix vulnerabilities bugzilla (Mar 17)
- Vcard 2.8 uninstall script problem saudi linux (Mar 17)
- [RHSA-2004:112-01] Updated Mozilla packages fix security issues bugzilla (Mar 18)
- [SECURITY] [DSA 466-1] New Linux 2.2.10 packages fix local root exploit (powerpc/apus) Martin Schulze (Mar 18)
- RE: [RHSA-2004:112-01] Updated Mozilla packages fix security issu es John . Airey (Mar 18)
- [OpenPKG-SA-2004.007] OpenPKG Security Advisory (openssl) OpenPKG (Mar 18)
- ptl-2004-02: RealNetworks Helix Server 9 Administration Server Buffer Overflow Pentest Security Alerts (Mar 18)
- [waraxe-2004-SA#010 - Multiple vulnerabilities in Error Manager v2.1 for PhpNuke] Janek Vind (Mar 18)
- HOTMAIL / PASSPORT: phishing expedition http-equiv () excite com (Mar 18)
- Chrome 1.2.0.0 server crash Luigi Auriemma (Mar 18)
- TSLSA-2004-0012 - openssl Trustix Security Advisor (Mar 18)
- TSLSA-2004-0011 - sysstat Trustix Security Advisor (Mar 18)
- mac osx- admin service buffer overflow programming_rocks1 (Mar 18)
- <Possible follow-ups>
- Re: mac osx- admin service buffer overflow programming_rocks1 (Mar 19)
- Re: mac osx- admin service buffer overflow Mathias Wegner (Mar 19)
- EEYE: Internet Security Systems PAM ICQ Server Response Processing Vulnerability Marc Maiffret (Mar 18)
- Norton AntiSpam Remote Buffer Overrun (#NISR19042004a) NGSSoftware Insight Security Research (Mar 19)
- Norton Internet Security Remote Command Execution (#NISR19042004b) NGSSoftware Insight Security Research (Mar 19)
- Eudora 6.0.3 attachment spoof, LaunchProtect Paul Szabo (Mar 19)
- Winamp 5.02 Long Filename Buffer Overflow Vulnerability Tobias Welter (Mar 19)
- <Possible follow-ups>
- Re: Winamp 5.02 Long Filename Buffer Overflow Vulnerability b0f www . b0f . net (Mar 20)
- Internet Explorer Causing Explorer.exe - Null Pointer Crash Rafel Ivgi, The-Insider (Mar 19)
- Samba 'smbprint' script tmpfile vulnerability. Shaun Colley (Mar 19)
- <Possible follow-ups>
- Re: Samba 'smbprint' script tmpfile vulnerability. Gerald (Jerry) Carter (Mar 20)
- [ANNOUNCE] Apache HTTP Server 2.0.49 Released (fwd) je (Mar 19)
- [Full-Disclosure] iDEFENSE Security Advisory 03.19.04: Borland Interbase admin.ib Administrative Access Vulnerability idlabs-advisories (Mar 19)
- XP SP2 is out Gadi Evron (Mar 19)
- Ref: NGSSoftware Advisories NISR19042004a and NISR19042004b Sym Security (Mar 20)
- Any dissasemblies of the Witty worm yet? Nicholas Weaver (Mar 20)
- Re: Any dissasemblies of the Witty worm yet? Kostya Kortchinsky (Mar 20)
- Concerning The Recent Invision power Board Issues GulfTech Security (Mar 20)
- The witty worm Gadi Evron (Mar 20)
- Re: The witty worm Gadi Evron (Mar 20)
- Re: The witty worm Gadi Evron (Mar 20)
- Apache mod_disk_cache stores client authentication credentials on disk Andreas Steinmetz (Mar 20)
- phpBB profile.php Cross Site Scripting Vulnerability Cheng Peng Su (Mar 22)
- <Possible follow-ups>
- RE: Fw: phpBB profile.php Cross Site Scripting Vulnerability micheal () michealcottingham com (Mar 22)
- DSL Modem Ericsson HM220dp Exploit Roberto Dapino (Mar 22)
- Phpbb 2.0.7a And Earlier Secuity Issues JeiAr (Mar 22)
- <Possible follow-ups>
- Re: Phpbb 2.0.7a And Earlier Secuity Issues JeiAr (Mar 25)
- Invision Gallery SQL Injection Vulnerabilities JeiAr (Mar 22)
- xine-check/xine-bugreport symlink vulnerability. Shaun Colley (Mar 22)
- Invision Power Top Site List SQL Injection Vulnerability JeiAr (Mar 22)
- directory traversal in xweb 1.0 Donato Ferrante (Mar 22)
- Mod_Survey security advisory: Script injection bug Joel Palmius (Mar 22)
- Vulnerabilities in Member Management System 2.1 Manuel Lopez (Mar 22)
- Vulnerabilities in News Manager Lite 2.5 & News Manager Lite administration Manuel Lopez (Mar 22)
- [waraxe-2004-SA#009 - Non-critical Sql injection and XSS bug in PhpBB 2.0.6c] Janek Vind (Mar 23)
- [waraxe-2004-SA#008 - easy way to get superadmin rights in PhpNuke 6.x-7.1.0] Janek Vind (Mar 23)
- [waraxe-2004-SA#011 - Multiple vulnerabilities in MS Analysis v2.0 module for PhpNuke] Janek Vind (Mar 23)
- Sarca rainbow tables on-line cracking service Inode (Mar 23)
- Remotely Exploitable Cross-Site Scripting in Hotmail and Yahoo (GM#005-MC) GreyMagic Software (Mar 23)
- ALLO ALLO WS_FTP Server Hugh Mann (Mar 23)
- Open the WS_FTP Server backdoor to SYSTEM Hugh Mann (Mar 23)
- Re: Open the WS_FTP Server backdoor to SYSTEM Todd C. Campbell (Mar 23)
- More Cpanel Vuls (cross site scripting) Fable (Mar 23)
- Server freeze in The Rage 1.01 Luigi Auriemma (Mar 23)
- Think of the buffers! Won't somebody think of the buffers?! Hugh Mann (Mar 23)
- How to crash a harddisk - the Ipswitch WS_FTP Server way Hugh Mann (Mar 23)
- Advisory 03/2004: Multiple (13) Ethereal remote overflows Stefan Esser (Mar 23)
- Immunity Advisory: dtlogin remote root Dave Aitel (Mar 23)
- Re: Immunity Advisory: dtlogin remote root Johan A . van Zanten (Mar 24)
- Re: Immunity Advisory: dtlogin remote root Dave Aitel (Mar 24)
- Re: Immunity Advisory: dtlogin remote root Johan A . van Zanten (Mar 24)
- R7-0018: OpenBSD isakmpd payload handling denial-of-service vulnerabilities advisory (Mar 23)
- Immunity Advisory: Solaris local kernel root Dave Aitel (Mar 23)
- Re: Immunity Advisory: Solaris local kernel root Casper Dik (Mar 24)
- Re: Immunity Advisory: Solaris local kernel root Dave Aitel (Mar 25)
- Re: Immunity Advisory: Solaris local kernel root Casper Dik (Mar 25)
- Re: Immunity Advisory: Solaris local kernel root Dave Aitel (Mar 25)
- Re: Immunity Advisory: Solaris local kernel root Dave Aitel (Mar 25)
- Re: Immunity Advisory: Solaris local kernel root Casper Dik (Mar 24)
- [SECURITY] [DSA 467-1] New ecartis packages fix several vulnerabilities Matt Zimmerman (Mar 24)
- TrendMacro Interscan Viruswall Directory Traversal Tri Huynh (Mar 24)
- Re: TrendMacro Interscan Viruswall Directory Traversal Brian Keefer (Mar 25)
- Re: TrendMicro (not Macro) Interscan Viruswall Directory Traversal Tri Huynh (Mar 25)
- Re: TrendMacro Interscan Viruswall Directory Traversal Brian Keefer (Mar 25)
- HP Web JetAdmin vulnerabilities. wirepair (Mar 24)
- Re: HP Web JetAdmin vulnerabilities. H D Moore (Mar 24)
- Buffer overflow in PicoPhone 1.63 Luigi Auriemma (Mar 24)
- Broadcast client buffer-overflow in Terminator 3 1.0 Luigi Auriemma (Mar 24)
- Dameware Passes Weak File Encryption Key in the Clear ax09001h (Mar 24)
- Dark Age of Camelot login client vulnerability to man in the middle attack Todd Chapman (Mar 24)
- mysqlbug tmpfile/symlink vulnerability. Shaun Colley (Mar 25)
- Check Point SmartDashboard Buffer Overflow Andreas Constantinides (MegaHz) (Mar 25)
- [SECURITY] [DSA 468-1] New emil packages fix multiple vulnerabilities Matt Zimmerman (Mar 25)
- <Possible follow-ups>
- Re: [SECURITY] [DSA 468-1] New emil packages fix multiple vulnerabilities Ulf Härnhammar (Mar 25)
- New Adventures In Phishing Jim Halfpenny (Mar 25)
- GLSA200403-04 Multiple security vulnerabilities in Apache 2 Aida Escriva-Sammer (Mar 25)
- Remote crash in Etherlords I 1.07 and II 1.03 Luigi Auriemma (Mar 25)
- UPDATED: MS Word - password protection vulnerabilty Andrew W Barkley (Mar 25)
- R: UPDATED: MS Word - password protection vulnerabilty s . zdrojewski (Mar 26)
- <Possible follow-ups>
- UPDATED: MS Word - password protection vulnerabilty Andrew Barkley (Mar 25)
- eSignal v7 remote buffer overflow (exploit) Vizzy (Mar 25)
- OpenLinux: mutt remote buffer overflow please_reply_to_security (Mar 26)
- OpenLinux: mc Updated packages resolve local buffer overflow vulnerability please_reply_to_security (Mar 26)
- SGI Advanced Linux Environment security update #15 SGI Security Coordinator (Mar 26)
- SGI Advanced Linux Environment security update #16 SGI Security Coordinator (Mar 26)
- NetSupport School Pro: Password Encryption Weaknesses spiffomatic 64 (Mar 26)
- Tomcat 5.0.14: remote DoS WU Fei Liang (Mar 26)
- [waraxe-2004-SA#012 - Multiple vulnerabilities in XMB Forum 1.8 SP3 and 1.9 beta] Janek Vind (Mar 26)
- [waraxe-2004-SA#013 - Critical sql injection bug in PhpBB 2.0.8 and in older versions] Janek Vind (Mar 26)
- Blogger XSS Vulnerability Ferruh Mavituna (Mar 26)
- RE: MS Word - password protection vulnerabilty C Ryll (Mar 26)
- MS Outlook/Outlook Express Preview Pane Security Issue Jeff Uslan (Mar 26)
- Re: MS Outlook/Outlook Express Preview Pane Security Issue Nexus (Mar 26)
- <Possible follow-ups>
- RE: MS Outlook/Outlook Express Preview Pane Security Issue Drew Copley (Mar 26)
- phpBB2 2.0.8 privmsg.php SQL injection patch (critical). Shaun Colley (Mar 26)
- LNSA-#2004-0006: bug workaround for Apache 2.0.48 Vincenzo Ciaglia (Mar 26)
- freshmeat.net: XSS Attack due to improper comment filtering. Steve Kemp (Mar 26)
- bblog 0.7.2 cross site scripting penfold (Mar 26)
- Nstxd vulnerability laurent oudot (Mar 26)
- Re: [waraxe-2004-SA#013 - Critical sql injection bug in PhpBB 2.0.8 and in older versions] JeiAr (Mar 26)
- <Possible follow-ups>
- Re: [waraxe-2004-SA#013 - Critical sql injection bug in PhpBB 2.0.8 and in older versions] Benjamin Tolman (Mar 29)
- Strange traffic - Outgoing TCP 3127/3198 (Not mydoom) New worm? Steve Browning (Mar 27)
- Another ISS BlackIce & RealSecure Update ? K-OTiK Security (Mar 27)
- <Possible follow-ups>
- Another ISS BlackIce & RealSecure Update ? Jeff (Mar 27)
- New worm? Karousel (Mar 27)
- Re: New worm? Gadi Evron (Mar 29)
- Re: New worm? Charles Hamby (Mar 29)
- <Possible follow-ups>
- re: New worm? http-equiv () excite com (Mar 29)
- systrace silently patches full local bypass vulnerability on Linux spender (Mar 29)
- Ethereal(v0.10.0-0.10.2) IGAP Dissector Message Overflow Exploit Eye on Security India (Mar 29)
- iss_pam1.dll remote exploits Sam (Mar 29)
- [ GLSA 200403-05 ] Linux kernel do_mremap local privilege escalation vulnerability Tim Yamin (Mar 29)
- phpBB 2.0.8 Exploit JeiAr (Mar 29)
- PhotoPost PHP Pro Multiple Vulnerabilities JeiAr (Mar 29)
- Multiple Vulnerabilities in Cloisterblog web blog/journal Dotho (Mar 29)
- [RHSA-2004:134-01] Updated squid package fixes security vulnerability bugzilla (Mar 29)
- A-CART Pro & A-CART 2.0 Input Validation Holes Manuel Lopez (Mar 29)
- [ GLSA 200403-05 ] UUDeview MIME Buffer Overflow Tim Yamin (Mar 29)
- WebCT Campus Edition 4.1 - Cross site scripting using CSS @import Simon Boulet (Mar 29)
- FreeBSD Security Advisory FreeBSD-SA-04:06.ipv6 FreeBSD Security Advisories (Mar 29)
- vuln ShelzZ (Mar 29)
- [ GLSA 200403-08 ] oftpd DoS vulnerability Kurt Lieber (Mar 29)
- LNSA-#2004-0007: Multiple security problems in Ethereal Vincenzo Ciaglia (Mar 29)
- [ GLSA 200403-07 ] Multiple remote overflows and vulnerabilities in Ethereal Kurt Lieber (Mar 29)
- [SECURITY] [DSA 469-1] New libpam-pgsql packages fix SQL injection Martin Schulze (Mar 29)
- [ GLSA 200403-06 ] Multiple remote buffer overflow vulnerabilities in Courier Kurt Lieber (Mar 29)
- new internet explorer exploit (was new worm) Jelmer (Mar 29)
- Addressing Cisco Security Issues Geo. (Mar 29)
- Re: Addressing Cisco Security Issues Jason Dodson (Mar 29)
- Re: Addressing Cisco Security Issues Clayton Kossmeyer (Mar 30)
- Re: new internet explorer exploit (was new worm) Void (Mar 29)
- Re: new internet explorer exploit (was new worm) Jelmer (Mar 30)
- Re: new internet explorer exploit (was new worm) Nick FitzGerald (Mar 30)
- <Possible follow-ups>
- RE: new internet explorer exploit (was new worm) Drew Copley (Mar 29)
- Re: new internet explorer exploit (was new worm) Berend-Jan Wever (Mar 30)
- RE: new internet explorer exploit (was new worm) Thor Larholm (Mar 30)
- Addressing Cisco Security Issues Geo. (Mar 29)
- [ GLSA 200403-09 ] Buffer overflow in Midnight Commander Kurt Lieber (Mar 29)
- IE ms-its: and mk:@MSITStore: vulnerability roozbeh afrasiabi (Mar 29)
- <Possible follow-ups>
- Re: IE ms-its: and mk:@MSITStore: vulnerability Lise Moorveld (Mar 30)
- Re: IE ms-its: and mk:@MSITStore: vulnerability roozbeh afrasiabi (Mar 31)
- Exensive cPanel Cross Site Scripting sullo (Mar 30)
- security enforcement - new monitor for winnt Liu Die Yu (Mar 30)
- Re: security enforcement - new monitor for winnt Amir Mohammadkhani-Aminabadi (Mar 30)
- Re: security enforcement - new monitor for winnt Liu Die Yu (Mar 31)
- RE: security enforcement - new monitor for winnt Oliver Lavery (Mar 31)
- RE: security enforcement - new monitor for winnt Liu Die Yu (Mar 31)
- <Possible follow-ups>
- Re: security enforcement - new monitor for winnt http-equiv () excite com (Mar 30)
- Re: security enforcement - new monitor for winnt Amir Mohammadkhani-Aminabadi (Mar 30)
- TSLSA-2004-0015 - tcpdump Trustix Security Advisor (Mar 30)
- clamd - NEVER use "%f" in your "VirusEvent" Rene (Mar 30)
- TSLSA-2004-0017 - apache Trustix Security Advisor (Mar 30)
- Heap overflow in MPlayer blexim (Mar 30)
- MPlayer Security Advisory #002 - HTTP parsing vulnerability Gabucino (Mar 30)
- Problem with customized login pages for Oracle SSO advisories (Mar 30)
- Linbit linbox Multiple Vulnerabilities Martin Eiszner (Mar 30)
- R7-0017: TCPDUMP ISAKMP payload handling denial-of-service vulnerabilities advisory (Mar 30)
- NetSky.q Virus. Looking for more detailed information on how the DOS will be performed. Paul (Mar 30)
- Re: NetSky.q Virus. Looking for more detailed information on how the DOS will be performed. Joe Stewart (Mar 30)
- IPv4 fragmentation --> The Rose Attack gandalf (Mar 31)
- Re: IPv4 fragmentation --> The Rose Attack stanislav shalunov (Mar 31)
- IPv4 fragmentation --> The Rose Attack gandalf (Mar 31)
- Re: NetSky.q Virus. Looking for more detailed information on how the DOS will be performed. Joe Stewart (Mar 30)
- phpkit suffers (reale stupid) XSS vuln. Yanosz (Mar 30)
- White Paper - Web Application Worms: Myth or Reality? Imperva Application Defense Center (Mar 30)
- Re: White Paper - Web Application Worms: Myth or Reality? Nicholas Weaver (Mar 30)
- MDKSA-2004:024 - Updated ethereal packages fix multiple vulnerabilities Mandrake Linux Security Team (Mar 31)
- MDKSA-2004:025 - Updated squid packages fix vulnerability Mandrake Linux Security Team (Mar 31)
- CactuSoft CactuShop v5.x shopping cart software multiple security vulnerabilities S-Quadra Security Research (Mar 31)
- [ GLSA 200403-14 ] Multiple Security Vulnerabilities in Monit Aida Escriva-Sammer (Mar 31)
- [ GLSA 200403-12 ] OpenLDAP DoS Vulnerability Joshua J. Berry (Mar 31)
- [ GLSA 200403-10 ] Fetchmail 6.2.5 fixes a remote DoS Kurt Lieber (Mar 31)
- [ GLSA 200403-13 ] Remote buffer overflow in MPlayer Kurt Lieber (Mar 31)
- [RHSA-2004:137-01] Updated Ethereal packages fix security issues bugzilla (Mar 31)
- cdp buffer overflow vulnerability Shaun Colley (Mar 31)
- <Possible follow-ups>
- Re: cdp buffer overflow vulnerability Vade 79 (Mar 31)
- [ GLSA 200403-11 ] Squid ACL [url_regex] bypass vulnerability Kurt Lieber (Mar 31)
- Re: new internet explorer exploit (was new worm) roozbeh afrasiabi (Mar 31)
- Re: new internet explorer exploit (was new worm) mgotts (Mar 31)
- Followup: vuln in WinBlox monitor for winnt Oliver Lavery (Mar 31)
- <Possible follow-ups>
- RE: Followup: vuln in WinBlox monitor for winnt Drew Copley (Mar 31)
- RE: Followup: vuln in WinBlox monitor for winnt Oliver Lavery (Mar 31)
- NOT GOOD: Outlook Express 6 + Internet Explorer 6 http-equiv () excite com (Mar 31)
- RogerWilco: new funny bugs Luigi Auriemma (Mar 31)
- [CLA-2004:833] Conectiva Security Announcement - mc Conectiva Updates (Mar 31)
- Re: cdp buffer overflow vulnerability - updated details Shaun Colley (Mar 31)
- [CLA-2004:834] Conectiva Security Announcement - openssl Conectiva Updates (Mar 31)
- [CLA-2004:835] Conectiva Security Announcement - ethereal Conectiva Updates (Mar 31)
- Bugfinder Being Indicted As Criminal ("Counterfeiter") in France Drew Copley (Mar 31)
- Open Source Vulnerability Database Opens for Public Access fbr (Mar 31)
- TOOL: Adder - runtime patching in python Oliver Lavery (Mar 31)
- OpenLinux: util-linux could leak sensitive data please_reply_to_security (Mar 31)
- Google using Expired Cert and SSLv2 Matthew S. Hamrick (Mar 31)