Vulnwatch: by author

• RSS Feed
• About List
• All Lists

Previous period

Next period

71 messages starting Feb 10 04 and ending Mar 04 04
Date index | Thread index | Author index

Advisories

Microsoft Virtual PC Services Insecure Temporary File Creation Advisories (Feb 10)
Mac OS X pppd format string vulnerability Advisories (Feb 23)
Corsaire Security Advisory: Multiple vendor HTTP user agent cookie path traversal issue advisories (Mar 10)

advisory

[SCSA-027] PHP-Nuke 6.9 SQL Injection Vulnerability advisory (Feb 01)
R7-0017: TCPDUMP ISAKMP payload handling denial-of-service vulnerabilities advisory (Mar 30)
[SCSA-025] Invision Power Board SQL Injection Vulnerability advisory (Jan 03)
[SCSA-026] DUWARE Products Admin Access and Arbitrary File Upload Vulnerability advisory (Jan 20)
R7-0018: OpenBSD isakmpd payload handling denial-of-service vulnerabilities advisory (Mar 23)

Andrey Smirnov

Extremail Security Problem Andrey Smirnov (Feb 27)

Aviram Jenik

Broker FTP DoS (Message Server) Aviram Jenik (Feb 17)

bkbll

[vulnwatch] Serv-U MDTM Command Buffer Overflow Vulnerability bkbll (Feb 26)

Carsten H. Eiram

Secunia Research: IBM Net.Data Macro Name Cross-Site Scripting Vulnerability Carsten H. Eiram (Jan 26)

Cesar

Oracle Database 9ir2 Interval Conversion Functions Buffer Overflow Cesar (Feb 05)

Chris Wysopal

3 new Microsoft security bulletins Chris Wysopal (Jan 13)
Checkpoint VPN-1/SecureClient ISAKMP Buffer Overflow Chris Wysopal (Feb 04)
Immunity Advisory: Compaq Web Management vulnerability Chris Wysopal (Mar 12)
Immunity Advisory: Computer Associates Unicenter TNG Chris Wysopal (Mar 15)
Vulnerability Issues in Implementations of the H.323 Protocol Chris Wysopal (Jan 13)
2 new Microsoft Windows bulletins Chris Wysopal (Feb 10)
Checkpoint Firewall-1 HTTP Parsing Format String Vulnerabilities Chris Wysopal (Feb 04)
Sun passwd(1) Command Vulnerability Chris Wysopal (Mar 05)

Dave Aitel

Immunity Advisory: Solaris kernel loading fun Dave Aitel (Mar 23)
how much fun can you have with UDP? Dave Aitel (Mar 23)

ECHU.ORG

ECHU.ORG Alert # 5 - FreeBB.com ECHU.ORG (Feb 29)

exocet

Gallery v1.3x, v1.4.1x Remote Exploit exocet (Feb 17)

fbr

Open Source Vulnerability Database Opens for Public Access fbr (Mar 31)

Ferruh Mavituna

Blogger XSS Vulnerability Ferruh Mavituna (Mar 26)
Brinskter Multiple Vulnerabilities Ferruh Mavituna (Feb 09)

GreyMagic Software

Remotely Exploitable Cross-Site Scripting in Hotmail and Yahoo (GM#005-MC) GreyMagic Software (Mar 23)

Ian Vitek

Dell TrueMobile Wireless Help Privilege Escalation Vulnerability Ian Vitek (Feb 22)

KF

SRT2004-01-18-0747 - IBM Informix IDS 9.4 contains multiple vulnerabilities KF (Jan 27)
SRT2004-01-9-1022 - Symantec LiveUpdate allows local users to become SYSTEM KF (Jan 12)
SRT2004-01-17-0227 - BlackICE allows local users to become SYSTEM KF (Jan 28)
Happy belated Personal Firewall day - SRT2004-01-17-0628 - Agnitum Optpost firewall allows Local SYSTEM access KF (Jan 18)
SRT2004-01-17-0425 - Ultr@VNC local SYSTEM access. KF (Jan 18)

Matthias Andree

Security Announcement: untrusted ELF library path in some cvsup binary RPMs Matthias Andree (Jan 29)
leafnode -1.9.47 security announcement SA-2004-01 Matthias Andree (Jan 08)

NGSoftware Insight Security Research

Multiple File Format Vulnerabilities (Overruns) in REALOne & RealPlayer NGSoftware Insight Security Research (Feb 04)

NGSSoftware Insight Security Research

With regards to the Adobe Acrobat Reader advisory (#NISR03022004) NGSSoftware Insight Security Research (Mar 10)
Norton Internet Security Remote Command Execution (#NISR19042004b) NGSSoftware Insight Security Research (Mar 19)
IBM DB2 Remote Command Execution Privilege Upgrade (#NISR09032004) NGSSoftware Insight Security Research (Mar 09)
Abobe Reader 5.1 XFDF Buffer Overflow Vulnerability NGSSoftware Insight Security Research (Mar 03)
Norton AntiSpam Remote Buffer Overrun (#NISR19042004a) NGSSoftware Insight Security Research (Mar 19)

Paul Starzetz

Linux kernel mremap vulnerability Paul Starzetz (Jan 05)
Linux mremap bug correction Paul Starzetz (Jan 06)
Re: Linux kernel mremap vulnerability Paul Starzetz (Jan 05)
Linux kernel mremap() bug update Paul Starzetz (Jan 15)
Second critical mremap() bug found in all Linux kernels Paul Starzetz (Feb 18)

Pentest Security Advisories

ptl-2004-01: Multiple vulnerabilities in Nokia phones Pentest Security Advisories (Feb 09)

Pentest Security Alerts

ptl-2004-02: RealNetworks Helix Server 9 Administration Server Buffer Overflow Pentest Security Alerts (Mar 18)

Peter Winter-Smith

Switch Off Multiple Vulnerabilities Peter Winter-Smith (Jan 02)
Web Crossing 4.x/5.x Denial of Service Vulnerability (FIX) Peter Winter-Smith (Feb 23)
Windows FTP Server Format String Vulnerability Peter Winter-Smith (Jan 08)
Re: Switch Off Multiple Vulnerabilities Peter Winter-Smith (Jan 02)
Webcam Watchdog Stack Overflow Vulnerability Peter Winter-Smith (Jan 03)
ProxyNow! 2.x Multiple Overflow Vulnerabilities Peter Winter-Smith (Jan 26)
The Palace 3.x (Client) Stack Overflow Vulnerability Peter Winter-Smith (Feb 07)
RapidCache Multiple Vulnerabilities Peter Winter-Smith (Jan 15)
Web Crossing 4.x/5.x Denial of Service Vulnerability Peter Winter-Smith (Feb 03)

scrap

Pablo Sofware Solutions FTP server can detect if a file exists outside the FTP root directory scrap (Jan 18)

@stake advisories

MacOS X TruBlueEnvironment Buffer Overflow @stake advisories (Jan 27)

Steve W. Manzuik

FW: SmoothWall Project Security Advisory SWP-2004:001 Steve W. Manzuik (Jan 12)
FW: Multiple WinXP kernel vulns can give user mode programs kernel mode privileges Steve W. Manzuik (Feb 18)

sullo

Exensive cPanel Cross Site Scripting sullo (Mar 29)

Thor Larholm

OpenBSD IPv6 remote kernel crash Thor Larholm (Feb 05)

Todd Chapman

Dark Age of Camelot login client vulnerability to man in the middle attack Todd Chapman (Mar 23)

Tomasz Grabowski

Lam3rZ Security Advisory #1/2004: LSF eauth vulnerability leads to remote code execution Tomasz Grabowski (Feb 23)
Lam3rZ Security Advisory #2/2004: LSF eauth vulnerability leads to a possibility of controlling cluster jobs on behalf of other users Tomasz Grabowski (Feb 23)
Lam3rZ Security Advisory #3/2004: A bug in Confirm leads to remote command execution Tomasz Grabowski (Feb 23)

Ulf Härnhammar

metamail format string bugs and buffer overflows Ulf Härnhammar (Feb 18)
GNU Anubis buffer overflows and format string bugs Ulf Härnhammar (Mar 04)

Previous period

Next period