Bugtraq: by date
RSS Feed
About List
All Lists
Previous period
368 messages
starting Mar 01 04 and
ending Mar 31 04
Date index |
Thread index |
Author index
Monday, 01 March
Clients broadcast buffer overflow in Red Faction <= 1.20 Luigi Auriemma
YabbSE (3 on 1) backspace
[SECURITY] [DSA 452-1] New libapache-mod-python packages fix denial of service Matt Zimmerman
mremap(2) full details available Paul Starzetz
Motorola T720 cell phone DoS vulnerability. Shaun Colley
Re: New phpBB ViewTopic.php Cross Site Scripting Vulnerability t4c [Founder of GHCIF]
Tuesday, 02 March
Re: Motorola T720 cell phone DoS vulnerability. John T. Larkin
The Cult of a Cardinal Number Phantasmal Phantasmagoria
SonicWall VPN/Firewall Appliance - DoS, ARP Flood, Network mapping vulnerability xeno
Format String vuln in Inktomi Search4.0 Blurred Vision
OpenLinux: Integer overflow may allow local users to cause a denial of service or possibly execute arbitrary code please_reply_to_security
[SECURITY] [DSA 454-1] New Linux 2.2.22 packages fix local root exploit (alpha) Martin Schulze
[FLSA-2004:1284] Updated kernel resolves security vulnerabilities Jesse Keating
03-02-04 XSS Bug in NetScreen-SA 5000 Series of SSL VPN appliance Lachniet, Mark
RE: SonicWall VPN/Firewall Appliance - DoS, ARP Flood, Network mapping vulnerability Dennis M. Callan
Wednesday, 03 March
New Internet Explorer Cross Zone/Site Scripting Vulnerability Cheng Peng Su
Spider Sales shopping cart software multiple security vulnerabilities S-Quadra Security Research
Wftpd stat Command Remote Vulnerability Exploit security team 0seen
The non-apreciated world of full-disclosure Davide Del Vecchio
directory traversal in GWeb 0.6 Donato Ferrante
OpenLinux: rsync heap based overflow please_reply_to_security
OpenLinux: screen buffer overflow please_reply_to_security
RE: SonicWall VPN/Firewall Appliance - DoS, ARP Flood, Network mapping vulnerability xeno
OpenLinux: Gnupg (gpg) severe bug could compromise almost all ElGamal keys please_reply_to_security
Coreutils 'dir' integer overflow vulnerability. Shaun Colley
RE: New Internet Explorer Cross Zone/Site Scripting Vulnerability Thor Larholm
RE: SonicWall Firewall DoS, ARP Flood, Network Mapping Robert C. Auch
SGI Advanced Linux Environment security update #13 SGI Security Coordinator
Thursday, 04 March
Cisco Security Advisory: Cisco CSS 11000 Series Content Services Switches Malformed UDP Packet Vulnerability Cisco Systems Product Security Incident Response Team
A new white paper by Sanctum: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Amit Klein
[SECURITY] [DSA 455-1] New libxml packages fix arbitrary code execution Martin Schulze
Re: The Cult of a Cardinal Number Phantasmal Phantasmagoria
MDKSA-2004:018 - Updated libxml2 packages fix vulnerability Mandrake Linux Security Team
Serv-U Real Target and Search ASM Code Tool for Overflow Exploit. lion
MDKSA-2004:017 - Updated pwlib packages fix vulnerability Mandrake Linux Security Team
SHOUTcast v1.9.2 remote connect back exploit 0seen security team
Re: Multiple issues with Mac OS X AFP client Marukka
Nokia 3410 cell phones software flaw David Arranz
RE: Wftpd stat Command Remote Vulnerability Exploit Alun Jones
OpenLinux: cups denial of service vulnerability please_reply_to_security
Abobe Reader 5.1 XFDF Buffer Overflow Vulnerability NGSSoftware Insight Security Research
Re: [bugtraq] Nokia 3410 cell phones software flaw Erwann Abalea
LNSA-#2004-0004: libxml2 buffer overflow Vincenzo Ciaglia
GNU Anubis buffer overflows and format string bugs Ulf Härnhammar
Friday, 05 March
SLWebMail Multiple Buffer Overflow Vulnerabilities (#NISR05022004b) NGSSoftware Insight Security Research
SLMail Pro Supervisor Report Center Buffer Overflow (#NISR05022004a) NGSSoftware Insight Security Research
Invision Power Board 1.3 Final Path Disclosure Vulnerability Shaun Colley
[FLSA-2004:1256] Updated util-linux resolves security vulnerability Jesse Keating
IEEE Security & Privacy CFP Sharif Torpis
NetScreen Advisory 58412: XSS Bug in NetScreen-SA SSL VPN NetScreen Security Response Team
Desert Rats vs. Afrika Korps (Haegemonia bug) Luigi Auriemma
Re: Invision Power Board 1.3 Final Path Disclosure Vulnerability JeiAr
VirtuaNews Admin Panel 1.0.3 Pro Cross Site Scripting Vulnerabillity Rafel Ivgi, The-Insider
Re: A new Sanctum white paper: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Jeremiah Grossman
Infosecdaily.net: Expanding our blogging community. Ejovi Nuwere
Invision Power Board v1.3 Final Cross Site Scripting Vulnerabillity Rafel Ivgi, The-Insider
[OpenPKG-SA-2004.003] OpenPKG Security Advisory (libxml) OpenPKG
Norton Antivirus 2002 fails to scan files with special character(s) properly. Bipin Gautam .
O-088: Sun passwd(1) Command Vulnerability Cy Schubert
Saturday, 06 March
Re: Norton Antivirus 2002 fails to scan files with special character(s) properly. Marco Marabelli
Re: Norton Antivirus 2002 fails to scan files with ... [2'nd... UPDATED] Bipin Gautam .
[SECURITY] [DSA 456-1] New Linux 2.2.19 packages fix local root exploit (arm) Martin Schulze
TSLSA-2004-0009 - nfs-utils Trustix Security Advisor
TSLSA-2004-0010 - libxml2 Trustix Security Advisor
Safari javascript array overflow kang
Monday, 08 March
Symlink Vulnerability in GNU automake <1.8.3 Stefan Nordhausen
[OpenPKG-SA-2004.004] OpenPKG Security Advisory (libtool) OpenPKG
directory traversal in PWebServer 0.3.3 Donato Ferrante
RE: VirtuaNews Admin Panel 1.0.3 Pro Cross Site Scripting Vulnerabillity Ravish
RE: A new Sanctum white paper: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Amit Klein
[ GLSA 200403-01 ] Libxml2 URI Parsing Buffer Overflow Vulnerabilities Tim Yamin
[ GLSA 200403-02 ] Linux kernel do_mremap local privilege escalation vulnerability Tim Yamin
Z***ING EMAILS ! http-equiv () excite com
Re: "Divide and Conquer" - cross site response header tampering, cookie manipulation, and session fixation Peter Watkins
Antivir for Freebsd doesn't work on 5.X George Swentek
RE: "Divide and Conquer" - cross site response header tampering, cookie manipulation, and session fixation Amit Klein
RE: Desert Rats vs. Afrika Korps (Haegemonia bug) Drew Copley
Re: Invision Power Board v1.3 Final Cross Site Scripting Vulnerabillity JeiAr
Tuesday, 09 March
[OpenPKG-SA-2004.005] OpenPKG Security Advisory (mutt) OpenPKG
Invision Power Board v1.3 Final Cross Site Scripting 2 - Addon Rafel Ivgi, The-Insider
IBM DB2 Remote Command Execution Privilege Upgrade (#NISR09032004) NGSSoftware Insight Security Research
[SECURITY] [DSA 457-1] New wu-ftpd packages fix multiple vulnerabilities Matt Zimmerman
Establishing contact with Nullsoft Peter Winter-Smith
Ghost users in Chat Anywhere 2.72 Luigi Auriemma
Wednesday, 10 March
Re: IBM DB2 Remote Command Execution Privilege Upgrade (#NISR09032004) Marc Bejarano
MDKSA-2004:019 - Updated python packages fix buffer overflow vulnerability Mandrake Linux Security Team
Outlook mailto: URL argument injection vulnerability Jouko Pynnonen
[SECURITY] [DSA 458-1] New python2.2 packages fix buffer overflow Matt Zimmerman
MDKSA-2004:021 - Updated mozilla packages fix multiple vulnerabilities Mandrake Linux Security Team
Format string bug in EpicGames Unreal engine Luigi Auriemma
MDKSA-2004:022 - Updated kdelibs packages fix cookie theft vulnerability Mandrake Linux Security Team
MDKSA-2004:020 - Updated gdk-pixbuf packages fix BMP-handling vulnerability Mandrake Linux Security Team
GNU Anubis 3.6.2 remote root exploit Claes M Nyberg
DoS in wMCam server 2.1.348 Donato Ferrante
[RHSA-2004:075-01] Updated kdelibs packages resolve cookie security issue bugzilla
[RHSA-2004:102-01] Updated gdk-pixbuf packages fix denial of service vulnerability bugzilla
With regards to the Adobe Acrobat Reader advisory (#NISR03022004) NGSSoftware Insight Security Research
Re: LAN SUITE Web Mail 602Pro Multiple Vulnerabilities Brandon Sturgeon
Re: HP printers and currency anti-copying measures Dan Harkless
[SECURITY] [DSA 459-1] New kdelibs, kdelibs-crypto packages fix cookie traversal bug Matt Zimmerman
Re: HP printers and currency anti-copying measures Dana Hudes
[SECURITY] [DSA 460-1] New sysstat packages fix insecure temporary file creation Matt Zimmerman
[RHSA-2004:093-01] Updated sysstat packages fix security vulnerabilities bugzilla
Thursday, 11 March
Unreal engine updates and Battle Mages advisory Luigi Auriemma
Multiple Vulnerabilities in PWS 0.2.2 Donato Ferrante
RE: Outlook mailto: URL argument injection vulnerability Shaun Colley
XSS in MyProxy 20030629 Donato Ferrante
[SECURITY] [DSA 461-1] New calife packages fix buffer overflow Matt Zimmerman
Re: Outlook mailto: URL argument injection vulnerability MS04-009 (Now CRITICAL) ! K-OTiK Security
Re: Norton AntiVirus 2002 fails to scan files with ... [2'nd... UPDATED] Message-ID: 20040306040833.28300 Sym Security
Cpanel 8.*.* have a problem ? Arab VieruZ
Announcing full functional adore-ng rootkit for 2.6 Kernel stealth
Re: Format string bug in EpicGames Unreal engine Käppler
Multiple vulnerabilities in Hushmail.com Calum Power
Re: Unreal engine updates and Battle Mages advisory Todd Chapman
cPanel Secuirty Advisory CPANEL-2004:01-01 J. Nick Koston
Friday, 12 March
[OpenPKG-SA-2004.006] OpenPKG Security Advisory (uudeview) OpenPKG
Metamail 'extcompose' script Symlink Vulnerability Shaun Colley
MS Security Response is a bunch of half-witted morons Nick FitzGerald
Cpanel Request Lets Authenticated Users Conduct Cross-Site Scripting Attacks Fable
Dogpatch Software CFWebstore 5.0 shopping cart software multiple security vulnerabilities S-Quadra Security Research
Re: MS Security Response is a bunch of half-witted morons Walter Wart
Cpanel 9.1.0 have a problem ? Arab VieruZ
Re: MS Security Response is a bunch of half-witted morons Kim Scarborough
SGI Advanced Linux Environment security update #14 SGI Security Coordinator
PLAXO: is that a cure or a disease? http-equiv () excite com
Saturday, 13 March
[SECURITY] [DSA 463-1] New samba packages fix privilege escalation in smbmnt Matt Zimmerman
phpBB 2.0.6d && Earlier Security Issues JeiAr
Monday, 15 March
Multiple Vendor SOAP server array DoS Amit Klein
VocalTec Gateway 8 Reverse Directory Transversal + Authorization Bypass Rafel Ivgi, The-Insider
Rosiello Security's exploit for MDaemon Angelo Rosiello
ws_ftp overflow john layman
Re: Multiple Vulnerabilities in PWS 0.2.2 Jan De Luyck
Multiple Immunity Advisories Dave Aitel
[SCAN Associates Sdn Bhd Security Advisory] phpBB 2.0.6 and below sql injection pokley
YaBB/YaBBse Cross Site Scripting Vulnerability Cheng Peng Su
Opera Array Allocation Managment Exploit d3thStaR
spamblocker turns into mail denial of service Dana Hudes
Re: spamblocker turns into mail denial of service Chris Fuhrman
[waraxe-2004-SA#007 - XSS and SQL injection bugs in 4nguestbook module for PhpNuke] Janek Vind
[waraxe-2004-SA#005 - XSS in Php-Nuke 7.1.0 - part 2] Janek Vind
[waraxe-2004-SA#006 - Multiple vulnerabilities in 4nalbum module for PhpNuke] Janek Vind
Follow-up: Major hack attack on the U.S. Senate eric
Phorum 5.0.3 Beta && Earlier XSS Issues JeiAr
Tuesday, 16 March
Re: ws_ftp overflow nesumin
[SECURITY] [DSA 464-1] New gdk-pixbuf packages fix denial of service Martin Schulze
JelSoft vBulletin Multiple XSS Vulnerabilities JeiAr
Mambo Open Source Multiple Vulnerabilities JeiAr
ModSecurity 1.7.4 for Apache 2.x remote off-by-one overflow S-Quadra Security Research
Crafty Game Stack Overflow & Exploit Angelo Rosiello
Fw: Bilbao Method Exposed FraMe
new security alert #66 issued in Oracle web cache Pete Finnigan
Re: Fw: Bilbao Method Exposed Mark J Cox
PHPX 2.x - 3.2.4 gdayworld
RE: YaBB/YaBBse Cross Site Scripting Vulnerability Frog Man
Wednesday, 17 March
New OpenSSL releases fix denial of service attacks [17 March 2004] Mark J Cox
Cisco Security Advisory: Cisco OpenSSL Implementation Vulnerability Cisco Systems Product Security Incident Response Team
SUSE Security Announcement: openssl (SuSE-SA:2004:007) Thomas Biege
Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Marc Bejarano
MDKSA-2004:023 - Updated openssl packages fix multiple vulnerabilities Mandrake Linux Security Team
[ESA-20040317-003] 'openssl' Denial of Service vulnerabilities. EnGarde Secure Linux
Re: YabbSE (3 on 1) David
Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Marc Bejarano
FreeBSD Security Advisory FreeBSD-SA-04:05.openssl FreeBSD Security Advisories
Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Mark J Cox
Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Dave Markham
[SECURITY] [DSA 465-1] New openssl packages fix multiple vulnerabilities Matt Zimmerman
[RHSA-2004:121-01] Updated OpenSSL packages fix vulnerabilities bugzilla
Vcard 2.8 uninstall script problem saudi linux
Thursday, 18 March
Re: PLAXO: is that a cure or a disease? Stacy Martin
[RHSA-2004:112-01] Updated Mozilla packages fix security issues bugzilla
[SECURITY] [DSA 466-1] New Linux 2.2.10 packages fix local root exploit (powerpc/apus) Martin Schulze
RE: [RHSA-2004:112-01] Updated Mozilla packages fix security issu es John . Airey
[OpenPKG-SA-2004.007] OpenPKG Security Advisory (openssl) OpenPKG
ptl-2004-02: RealNetworks Helix Server 9 Administration Server Buffer Overflow Pentest Security Alerts
[waraxe-2004-SA#010 - Multiple vulnerabilities in Error Manager v2.1 for PhpNuke] Janek Vind
HOTMAIL / PASSPORT: phishing expedition http-equiv () excite com
Chrome 1.2.0.0 server crash Luigi Auriemma
TSLSA-2004-0012 - openssl Trustix Security Advisor
TSLSA-2004-0011 - sysstat Trustix Security Advisor
mac osx- admin service buffer overflow programming_rocks1
EEYE: Internet Security Systems PAM ICQ Server Response Processing Vulnerability Marc Maiffret
Friday, 19 March
Norton AntiSpam Remote Buffer Overrun (#NISR19042004a) NGSSoftware Insight Security Research
Norton Internet Security Remote Command Execution (#NISR19042004b) NGSSoftware Insight Security Research
Re: mac osx- admin service buffer overflow programming_rocks1
Eudora 6.0.3 attachment spoof, LaunchProtect Paul Szabo
Re: mac osx- admin service buffer overflow Mathias Wegner
Winamp 5.02 Long Filename Buffer Overflow Vulnerability Tobias Welter
Internet Explorer Causing Explorer.exe - Null Pointer Crash Rafel Ivgi, The-Insider
Samba 'smbprint' script tmpfile vulnerability. Shaun Colley
Re[2]: ws_ftp overflow (WS_FTP Pro 8.0.3 is vulnerable) nesumin
[ANNOUNCE] Apache HTTP Server 2.0.49 Released (fwd) je
[Full-Disclosure] iDEFENSE Security Advisory 03.19.04: Borland Interbase admin.ib Administrative Access Vulnerability idlabs-advisories
XP SP2 is out Gadi Evron
Saturday, 20 March
Ref: NGSSoftware Advisories NISR19042004a and NISR19042004b Sym Security
Re: Samba 'smbprint' script tmpfile vulnerability. Gerald (Jerry) Carter
Any dissasemblies of the Witty worm yet? Nicholas Weaver
Concerning The Recent Invision power Board Issues GulfTech Security
Re: Any dissasemblies of the Witty worm yet? Kostya Kortchinsky
Re: The witty worm Gadi Evron
Re: The witty worm Gadi Evron
Re: Winamp 5.02 Long Filename Buffer Overflow Vulnerability b0f www . b0f . net
The witty worm Gadi Evron
Apache mod_disk_cache stores client authentication credentials on disk Andreas Steinmetz
Monday, 22 March
phpBB profile.php Cross Site Scripting Vulnerability Cheng Peng Su
DSL Modem Ericsson HM220dp Exploit Roberto Dapino
Phpbb 2.0.7a And Earlier Secuity Issues JeiAr
Invision Gallery SQL Injection Vulnerabilities JeiAr
xine-check/xine-bugreport symlink vulnerability. Shaun Colley
Invision Power Top Site List SQL Injection Vulnerability JeiAr
directory traversal in xweb 1.0 Donato Ferrante
Mod_Survey security advisory: Script injection bug Joel Palmius
Vulnerabilities in Member Management System 2.1 Manuel Lopez
Vulnerabilities in News Manager Lite 2.5 & News Manager Lite administration Manuel Lopez
RE: Fw: phpBB profile.php Cross Site Scripting Vulnerability micheal () michealcottingham com
Tuesday, 23 March
[waraxe-2004-SA#009 - Non-critical Sql injection and XSS bug in PhpBB 2.0.6c] Janek Vind
[waraxe-2004-SA#008 - easy way to get superadmin rights in PhpNuke 6.x-7.1.0] Janek Vind
[waraxe-2004-SA#011 - Multiple vulnerabilities in MS Analysis v2.0 module for PhpNuke] Janek Vind
Sarca rainbow tables on-line cracking service Inode
Remotely Exploitable Cross-Site Scripting in Hotmail and Yahoo (GM#005-MC) GreyMagic Software
ALLO ALLO WS_FTP Server Hugh Mann
Open the WS_FTP Server backdoor to SYSTEM Hugh Mann
More Cpanel Vuls (cross site scripting) Fable
Server freeze in The Rage 1.01 Luigi Auriemma
Think of the buffers! Won't somebody think of the buffers?! Hugh Mann
How to crash a harddisk - the Ipswitch WS_FTP Server way Hugh Mann
Advisory 03/2004: Multiple (13) Ethereal remote overflows Stefan Esser
Re: Open the WS_FTP Server backdoor to SYSTEM Todd C. Campbell
Immunity Advisory: dtlogin remote root Dave Aitel
R7-0018: OpenBSD isakmpd payload handling denial-of-service vulnerabilities advisory
Immunity Advisory: Solaris local kernel root Dave Aitel
Wednesday, 24 March
[SECURITY] [DSA 467-1] New ecartis packages fix several vulnerabilities Matt Zimmerman
Re: Immunity Advisory: dtlogin remote root Johan A . van Zanten
Re: Immunity Advisory: dtlogin remote root Dave Aitel
Re: Immunity Advisory: Solaris local kernel root Casper Dik
TrendMacro Interscan Viruswall Directory Traversal Tri Huynh
HP Web JetAdmin vulnerabilities. wirepair
Buffer overflow in PicoPhone 1.63 Luigi Auriemma
Broadcast client buffer-overflow in Terminator 3 1.0 Luigi Auriemma
Dameware Passes Weak File Encryption Key in the Clear ax09001h
Dark Age of Camelot login client vulnerability to man in the middle attack Todd Chapman
Re: HP Web JetAdmin vulnerabilities. H D Moore
Thursday, 25 March
mysqlbug tmpfile/symlink vulnerability. Shaun Colley
Re: Immunity Advisory: Solaris local kernel root Dave Aitel
Check Point SmartDashboard Buffer Overflow Andreas Constantinides (MegaHz)
[SECURITY] [DSA 468-1] New emil packages fix multiple vulnerabilities Matt Zimmerman
Re: TrendMacro Interscan Viruswall Directory Traversal Brian Keefer
Re: Phpbb 2.0.7a And Earlier Secuity Issues JeiAr
New Adventures In Phishing Jim Halfpenny
Re: TrendMicro (not Macro) Interscan Viruswall Directory Traversal Tri Huynh
Re: Immunity Advisory: Solaris local kernel root Casper Dik
GLSA200403-04 Multiple security vulnerabilities in Apache 2 Aida Escriva-Sammer
Remote crash in Etherlords I 1.07 and II 1.03 Luigi Auriemma
UPDATED: MS Word - password protection vulnerabilty Andrew W Barkley
UPDATED: MS Word - password protection vulnerabilty Andrew Barkley
Re: [SECURITY] [DSA 468-1] New emil packages fix multiple vulnerabilities Ulf Härnhammar
eSignal v7 remote buffer overflow (exploit) Vizzy
Re: Immunity Advisory: Solaris local kernel root Dave Aitel
Friday, 26 March
OpenLinux: mutt remote buffer overflow please_reply_to_security
OpenLinux: mc Updated packages resolve local buffer overflow vulnerability please_reply_to_security
SGI Advanced Linux Environment security update #15 SGI Security Coordinator
SGI Advanced Linux Environment security update #16 SGI Security Coordinator
R: UPDATED: MS Word - password protection vulnerabilty s . zdrojewski
NetSupport School Pro: Password Encryption Weaknesses spiffomatic 64
Tomcat 5.0.14: remote DoS WU Fei Liang
[waraxe-2004-SA#012 - Multiple vulnerabilities in XMB Forum 1.8 SP3 and 1.9 beta] Janek Vind
[waraxe-2004-SA#013 - Critical sql injection bug in PhpBB 2.0.8 and in older versions] Janek Vind
Blogger XSS Vulnerability Ferruh Mavituna
RE: MS Word - password protection vulnerabilty C Ryll
MS Outlook/Outlook Express Preview Pane Security Issue Jeff Uslan
phpBB2 2.0.8 privmsg.php SQL injection patch (critical). Shaun Colley
RE: MS Outlook/Outlook Express Preview Pane Security Issue Drew Copley
LNSA-#2004-0006: bug workaround for Apache 2.0.48 Vincenzo Ciaglia
freshmeat.net: XSS Attack due to improper comment filtering. Steve Kemp
Re: MS Outlook/Outlook Express Preview Pane Security Issue Nexus
bblog 0.7.2 cross site scripting penfold
Nstxd vulnerability laurent oudot
Re: [waraxe-2004-SA#013 - Critical sql injection bug in PhpBB 2.0.8 and in older versions] JeiAr
Saturday, 27 March
Strange traffic - Outgoing TCP 3127/3198 (Not mydoom) New worm? Steve Browning
Another ISS BlackIce & RealSecure Update ? K-OTiK Security
Another ISS BlackIce & RealSecure Update ? Jeff
New worm? Karousel
Monday, 29 March
systrace silently patches full local bypass vulnerability on Linux spender
Re: New worm? Gadi Evron
Re: New worm? Charles Hamby
Re: [waraxe-2004-SA#013 - Critical sql injection bug in PhpBB 2.0.8 and in older versions] Benjamin Tolman
Ethereal(v0.10.0-0.10.2) IGAP Dissector Message Overflow Exploit Eye on Security India
iss_pam1.dll remote exploits Sam
[ GLSA 200403-05 ] Linux kernel do_mremap local privilege escalation vulnerability Tim Yamin
phpBB 2.0.8 Exploit JeiAr
PhotoPost PHP Pro Multiple Vulnerabilities JeiAr
Multiple Vulnerabilities in Cloisterblog web blog/journal Dotho
re: New worm? http-equiv () excite com
[RHSA-2004:134-01] Updated squid package fixes security vulnerability bugzilla
A-CART Pro & A-CART 2.0 Input Validation Holes Manuel Lopez
[ GLSA 200403-05 ] UUDeview MIME Buffer Overflow Tim Yamin
WebCT Campus Edition 4.1 - Cross site scripting using CSS @import Simon Boulet
FreeBSD Security Advisory FreeBSD-SA-04:06.ipv6 FreeBSD Security Advisories
vuln ShelzZ
[ GLSA 200403-08 ] oftpd DoS vulnerability Kurt Lieber
LNSA-#2004-0007: Multiple security problems in Ethereal Vincenzo Ciaglia
[ GLSA 200403-07 ] Multiple remote overflows and vulnerabilities in Ethereal Kurt Lieber
[SECURITY] [DSA 469-1] New libpam-pgsql packages fix SQL injection Martin Schulze
[ GLSA 200403-06 ] Multiple remote buffer overflow vulnerabilities in Courier Kurt Lieber
new internet explorer exploit (was new worm) Jelmer
[ GLSA 200403-09 ] Buffer overflow in Midnight Commander Kurt Lieber
Addressing Cisco Security Issues Geo.
IE ms-its: and mk:@MSITStore: vulnerability roozbeh afrasiabi
RE: new internet explorer exploit (was new worm) Drew Copley
Re: systrace silently patches full local bypass vulnerability on Linux stealth
Re: Addressing Cisco Security Issues Jason Dodson
Re: new internet explorer exploit (was new worm) Void
Tuesday, 30 March
RE: new internet explorer exploit (was new worm) Thor Larholm
Re: new internet explorer exploit (was new worm) Berend-Jan Wever
Re: Addressing Cisco Security Issues Clayton Kossmeyer
Exensive cPanel Cross Site Scripting sullo
security enforcement - new monitor for winnt Liu Die Yu
TSLSA-2004-0015 - tcpdump Trustix Security Advisor
clamd - NEVER use "%f" in your "VirusEvent" Rene
TSLSA-2004-0017 - apache Trustix Security Advisor
Re: IE ms-its: and mk:@MSITStore: vulnerability Lise Moorveld
Re: security enforcement - new monitor for winnt Amir Mohammadkhani-Aminabadi
Re: new internet explorer exploit (was new worm) Jelmer
Heap overflow in MPlayer blexim
Re: security enforcement - new monitor for winnt http-equiv () excite com
Re: new internet explorer exploit (was new worm) Nick FitzGerald
MPlayer Security Advisory #002 - HTTP parsing vulnerability Gabucino
Problem with customized login pages for Oracle SSO advisories
Linbit linbox Multiple Vulnerabilities Martin Eiszner
R7-0017: TCPDUMP ISAKMP payload handling denial-of-service vulnerabilities advisory
NetSky.q Virus. Looking for more detailed information on how the DOS will be performed. Paul
phpkit suffers (reale stupid) XSS vuln. Yanosz
White Paper - Web Application Worms: Myth or Reality? Imperva Application Defense Center
Re: White Paper - Web Application Worms: Myth or Reality? Nicholas Weaver
Re: NetSky.q Virus. Looking for more detailed information on how the DOS will be performed. Joe Stewart
Wednesday, 31 March
MDKSA-2004:024 - Updated ethereal packages fix multiple vulnerabilities Mandrake Linux Security Team
MDKSA-2004:025 - Updated squid packages fix vulnerability Mandrake Linux Security Team
CactuSoft CactuShop v5.x shopping cart software multiple security vulnerabilities S-Quadra Security Research
[ GLSA 200403-14 ] Multiple Security Vulnerabilities in Monit Aida Escriva-Sammer
[ GLSA 200403-12 ] OpenLDAP DoS Vulnerability Joshua J. Berry
[ GLSA 200403-10 ] Fetchmail 6.2.5 fixes a remote DoS Kurt Lieber
[ GLSA 200403-13 ] Remote buffer overflow in MPlayer Kurt Lieber
[RHSA-2004:137-01] Updated Ethereal packages fix security issues bugzilla
cdp buffer overflow vulnerability Shaun Colley
[ GLSA 200403-11 ] Squid ACL [url_regex] bypass vulnerability Kurt Lieber
Re: new internet explorer exploit (was new worm) roozbeh afrasiabi
Re: IE ms-its: and mk:@MSITStore: vulnerability roozbeh afrasiabi
Re: security enforcement - new monitor for winnt Liu Die Yu
RE: security enforcement - new monitor for winnt Liu Die Yu
Followup: vuln in WinBlox monitor for winnt Oliver Lavery
NOT GOOD: Outlook Express 6 + Internet Explorer 6 http-equiv () excite com
IPv4 fragmentation --> The Rose Attack gandalf
RogerWilco: new funny bugs Luigi Auriemma
[CLA-2004:833] Conectiva Security Announcement - mc Conectiva Updates
RE: Followup: vuln in WinBlox monitor for winnt Drew Copley
RE: security enforcement - new monitor for winnt Oliver Lavery
Re: cdp buffer overflow vulnerability - updated details Shaun Colley
Re: IPv4 fragmentation --> The Rose Attack stanislav shalunov
[CLA-2004:834] Conectiva Security Announcement - openssl Conectiva Updates
[CLA-2004:835] Conectiva Security Announcement - ethereal Conectiva Updates
Bugfinder Being Indicted As Criminal ("Counterfeiter") in France Drew Copley
Open Source Vulnerability Database Opens for Public Access fbr
TOOL: Adder - runtime patching in python Oliver Lavery
Re: cdp buffer overflow vulnerability Vade 79
RE: Followup: vuln in WinBlox monitor for winnt Oliver Lavery
OpenLinux: util-linux could leak sensitive data please_reply_to_security
Re: new internet explorer exploit (was new worm) mgotts
Google using Expired Cert and SSLv2 Matthew S. Hamrick