Bugtraq: by author
RSS Feed
About List
All Lists
Previous period
368 messages
starting Mar 04 04 and
ending Mar 30 04
Date index |
Thread index |
Author index
0seen security team
SHOUTcast v1.9.2 remote connect back exploit 0seen security team (Mar 04)
advisories
Problem with customized login pages for Oracle SSO advisories (Mar 30)
advisory
R7-0017: TCPDUMP ISAKMP payload handling denial-of-service vulnerabilities advisory (Mar 30)
R7-0018: OpenBSD isakmpd payload handling denial-of-service vulnerabilities advisory (Mar 23)
Aida Escriva-Sammer
[ GLSA 200403-14 ] Multiple Security Vulnerabilities in Monit Aida Escriva-Sammer (Mar 31)
GLSA200403-04 Multiple security vulnerabilities in Apache 2 Aida Escriva-Sammer (Mar 25)
Alun Jones
RE: Wftpd stat Command Remote Vulnerability Exploit Alun Jones (Mar 04)
Amir Mohammadkhani-Aminabadi
Re: security enforcement - new monitor for winnt Amir Mohammadkhani-Aminabadi (Mar 30)
Amit Klein
Multiple Vendor SOAP server array DoS Amit Klein (Mar 15)
RE: "Divide and Conquer" - cross site response header tampering, cookie manipulation, and session fixation Amit Klein (Mar 08)
RE: A new Sanctum white paper: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Amit Klein (Mar 08)
A new white paper by Sanctum: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Amit Klein (Mar 04)
Andreas Constantinides (MegaHz)
Check Point SmartDashboard Buffer Overflow Andreas Constantinides (MegaHz) (Mar 25)
Andreas Steinmetz
Apache mod_disk_cache stores client authentication credentials on disk Andreas Steinmetz (Mar 20)
Andrew Barkley
UPDATED: MS Word - password protection vulnerabilty Andrew Barkley (Mar 25)
Andrew W Barkley
UPDATED: MS Word - password protection vulnerabilty Andrew W Barkley (Mar 25)
Angelo Rosiello
Rosiello Security's exploit for MDaemon Angelo Rosiello (Mar 15)
Crafty Game Stack Overflow & Exploit Angelo Rosiello (Mar 16)
Arab VieruZ
Cpanel 9.1.0 have a problem ? Arab VieruZ (Mar 12)
Cpanel 8.*.* have a problem ? Arab VieruZ (Mar 11)
ax09001h
Dameware Passes Weak File Encryption Key in the Clear ax09001h (Mar 24)
b0f www . b0f . net
Re: Winamp 5.02 Long Filename Buffer Overflow Vulnerability b0f www . b0f . net (Mar 20)
backspace
YabbSE (3 on 1) backspace (Mar 01)
Benjamin Tolman
Re: [waraxe-2004-SA#013 - Critical sql injection bug in PhpBB 2.0.8 and in older versions] Benjamin Tolman (Mar 29)
Berend-Jan Wever
Re: new internet explorer exploit (was new worm) Berend-Jan Wever (Mar 30)
Bipin Gautam .
Norton Antivirus 2002 fails to scan files with special character(s) properly. Bipin Gautam . (Mar 05)
Re: Norton Antivirus 2002 fails to scan files with ... [2'nd... UPDATED] Bipin Gautam . (Mar 06)
blexim
Heap overflow in MPlayer blexim (Mar 30)
Blurred Vision
Format String vuln in Inktomi Search4.0 Blurred Vision (Mar 02)
Brandon Sturgeon
Re: LAN SUITE Web Mail 602Pro Multiple Vulnerabilities Brandon Sturgeon (Mar 10)
Brian Keefer
Re: TrendMacro Interscan Viruswall Directory Traversal Brian Keefer (Mar 25)
bugzilla
[RHSA-2004:093-01] Updated sysstat packages fix security vulnerabilities bugzilla (Mar 10)
[RHSA-2004:112-01] Updated Mozilla packages fix security issues bugzilla (Mar 18)
[RHSA-2004:137-01] Updated Ethereal packages fix security issues bugzilla (Mar 31)
[RHSA-2004:121-01] Updated OpenSSL packages fix vulnerabilities bugzilla (Mar 17)
[RHSA-2004:102-01] Updated gdk-pixbuf packages fix denial of service vulnerability bugzilla (Mar 10)
[RHSA-2004:134-01] Updated squid package fixes security vulnerability bugzilla (Mar 29)
[RHSA-2004:075-01] Updated kdelibs packages resolve cookie security issue bugzilla (Mar 10)
Calum Power
Multiple vulnerabilities in Hushmail.com Calum Power (Mar 11)
Casper Dik
Re: Immunity Advisory: Solaris local kernel root Casper Dik (Mar 25)
Re: Immunity Advisory: Solaris local kernel root Casper Dik (Mar 24)
Charles Hamby
Re: New worm? Charles Hamby (Mar 29)
Cheng Peng Su
New Internet Explorer Cross Zone/Site Scripting Vulnerability Cheng Peng Su (Mar 03)
YaBB/YaBBse Cross Site Scripting Vulnerability Cheng Peng Su (Mar 15)
phpBB profile.php Cross Site Scripting Vulnerability Cheng Peng Su (Mar 22)
Chris Fuhrman
Re: spamblocker turns into mail denial of service Chris Fuhrman (Mar 15)
Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Cisco OpenSSL Implementation Vulnerability Cisco Systems Product Security Incident Response Team (Mar 17)
Cisco Security Advisory: Cisco CSS 11000 Series Content Services Switches Malformed UDP Packet Vulnerability Cisco Systems Product Security Incident Response Team (Mar 04)
Claes M Nyberg
GNU Anubis 3.6.2 remote root exploit Claes M Nyberg (Mar 10)
Clayton Kossmeyer
Re: Addressing Cisco Security Issues Clayton Kossmeyer (Mar 30)
Conectiva Updates
[CLA-2004:835] Conectiva Security Announcement - ethereal Conectiva Updates (Mar 31)
[CLA-2004:834] Conectiva Security Announcement - openssl Conectiva Updates (Mar 31)
[CLA-2004:833] Conectiva Security Announcement - mc Conectiva Updates (Mar 31)
C Ryll
RE: MS Word - password protection vulnerabilty C Ryll (Mar 26)
Cy Schubert
O-088: Sun passwd(1) Command Vulnerability Cy Schubert (Mar 05)
d3thStaR
Opera Array Allocation Managment Exploit d3thStaR (Mar 15)
Dana Hudes
spamblocker turns into mail denial of service Dana Hudes (Mar 15)
Re: HP printers and currency anti-copying measures Dana Hudes (Mar 10)
Dan Harkless
Re: HP printers and currency anti-copying measures Dan Harkless (Mar 10)
Dave Aitel
Re: Immunity Advisory: Solaris local kernel root Dave Aitel (Mar 25)
Re: Immunity Advisory: Solaris local kernel root Dave Aitel (Mar 25)
Multiple Immunity Advisories Dave Aitel (Mar 15)
Immunity Advisory: Solaris local kernel root Dave Aitel (Mar 23)
Re: Immunity Advisory: dtlogin remote root Dave Aitel (Mar 24)
Immunity Advisory: dtlogin remote root Dave Aitel (Mar 23)
Dave Markham
Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Dave Markham (Mar 17)
David
Re: YabbSE (3 on 1) David (Mar 17)
David Arranz
Nokia 3410 cell phones software flaw David Arranz (Mar 04)
Davide Del Vecchio
The non-apreciated world of full-disclosure Davide Del Vecchio (Mar 03)
Dennis M. Callan
RE: SonicWall VPN/Firewall Appliance - DoS, ARP Flood, Network mapping vulnerability Dennis M. Callan (Mar 02)
Donato Ferrante
directory traversal in GWeb 0.6 Donato Ferrante (Mar 03)
directory traversal in PWebServer 0.3.3 Donato Ferrante (Mar 08)
Multiple Vulnerabilities in PWS 0.2.2 Donato Ferrante (Mar 11)
XSS in MyProxy 20030629 Donato Ferrante (Mar 11)
DoS in wMCam server 2.1.348 Donato Ferrante (Mar 10)
directory traversal in xweb 1.0 Donato Ferrante (Mar 22)
Dotho
Multiple Vulnerabilities in Cloisterblog web blog/journal Dotho (Mar 29)
Drew Copley
Bugfinder Being Indicted As Criminal ("Counterfeiter") in France Drew Copley (Mar 31)
RE: new internet explorer exploit (was new worm) Drew Copley (Mar 29)
RE: Desert Rats vs. Afrika Korps (Haegemonia bug) Drew Copley (Mar 08)
RE: Followup: vuln in WinBlox monitor for winnt Drew Copley (Mar 31)
RE: MS Outlook/Outlook Express Preview Pane Security Issue Drew Copley (Mar 26)
Ejovi Nuwere
Infosecdaily.net: Expanding our blogging community. Ejovi Nuwere (Mar 05)
EnGarde Secure Linux
[ESA-20040317-003] 'openssl' Denial of Service vulnerabilities. EnGarde Secure Linux (Mar 17)
eric
Follow-up: Major hack attack on the U.S. Senate eric (Mar 15)
Erwann Abalea
Re: [bugtraq] Nokia 3410 cell phones software flaw Erwann Abalea (Mar 04)
Eye on Security India
Ethereal(v0.10.0-0.10.2) IGAP Dissector Message Overflow Exploit Eye on Security India (Mar 29)
Fable
Cpanel Request Lets Authenticated Users Conduct Cross-Site Scripting Attacks Fable (Mar 12)
More Cpanel Vuls (cross site scripting) Fable (Mar 23)
fbr
Open Source Vulnerability Database Opens for Public Access fbr (Mar 31)
Ferruh Mavituna
Blogger XSS Vulnerability Ferruh Mavituna (Mar 26)
FraMe
Fw: Bilbao Method Exposed FraMe (Mar 16)
FreeBSD Security Advisories
FreeBSD Security Advisory FreeBSD-SA-04:05.openssl FreeBSD Security Advisories (Mar 17)
FreeBSD Security Advisory FreeBSD-SA-04:06.ipv6 FreeBSD Security Advisories (Mar 29)
Frog Man
RE: YaBB/YaBBse Cross Site Scripting Vulnerability Frog Man (Mar 16)
Gabucino
MPlayer Security Advisory #002 - HTTP parsing vulnerability Gabucino (Mar 30)
Gadi Evron
Re: The witty worm Gadi Evron (Mar 20)
XP SP2 is out Gadi Evron (Mar 19)
Re: New worm? Gadi Evron (Mar 29)
Re: The witty worm Gadi Evron (Mar 20)
The witty worm Gadi Evron (Mar 20)
gandalf
IPv4 fragmentation --> The Rose Attack gandalf (Mar 31)
gdayworld
PHPX 2.x - 3.2.4 gdayworld (Mar 16)
Geo.
Addressing Cisco Security Issues Geo. (Mar 29)
George Swentek
Antivir for Freebsd doesn't work on 5.X George Swentek (Mar 08)
Gerald (Jerry) Carter
Re: Samba 'smbprint' script tmpfile vulnerability. Gerald (Jerry) Carter (Mar 20)
GreyMagic Software
Remotely Exploitable Cross-Site Scripting in Hotmail and Yahoo (GM#005-MC) GreyMagic Software (Mar 23)
GulfTech Security
Concerning The Recent Invision power Board Issues GulfTech Security (Mar 20)
H D Moore
Re: HP Web JetAdmin vulnerabilities. H D Moore (Mar 24)
http-equiv () excite com
HOTMAIL / PASSPORT: phishing expedition http-equiv () excite com (Mar 18)
Z***ING EMAILS ! http-equiv () excite com (Mar 08)
NOT GOOD: Outlook Express 6 + Internet Explorer 6 http-equiv () excite com (Mar 31)
PLAXO: is that a cure or a disease? http-equiv () excite com (Mar 12)
re: New worm? http-equiv () excite com (Mar 29)
Re: security enforcement - new monitor for winnt http-equiv () excite com (Mar 30)
Hugh Mann
Think of the buffers! Won't somebody think of the buffers?! Hugh Mann (Mar 23)
Open the WS_FTP Server backdoor to SYSTEM Hugh Mann (Mar 23)
ALLO ALLO WS_FTP Server Hugh Mann (Mar 23)
How to crash a harddisk - the Ipswitch WS_FTP Server way Hugh Mann (Mar 23)
idlabs-advisories
[Full-Disclosure] iDEFENSE Security Advisory 03.19.04: Borland Interbase admin.ib Administrative Access Vulnerability idlabs-advisories (Mar 19)
Imperva Application Defense Center
White Paper - Web Application Worms: Myth or Reality? Imperva Application Defense Center (Mar 30)
Inode
Sarca rainbow tables on-line cracking service Inode (Mar 23)
Jan De Luyck
Re: Multiple Vulnerabilities in PWS 0.2.2 Jan De Luyck (Mar 15)
Janek Vind
[waraxe-2004-SA#006 - Multiple vulnerabilities in 4nalbum module for PhpNuke] Janek Vind (Mar 15)
[waraxe-2004-SA#013 - Critical sql injection bug in PhpBB 2.0.8 and in older versions] Janek Vind (Mar 26)
[waraxe-2004-SA#009 - Non-critical Sql injection and XSS bug in PhpBB 2.0.6c] Janek Vind (Mar 23)
[waraxe-2004-SA#005 - XSS in Php-Nuke 7.1.0 - part 2] Janek Vind (Mar 15)
[waraxe-2004-SA#010 - Multiple vulnerabilities in Error Manager v2.1 for PhpNuke] Janek Vind (Mar 18)
[waraxe-2004-SA#008 - easy way to get superadmin rights in PhpNuke 6.x-7.1.0] Janek Vind (Mar 23)
[waraxe-2004-SA#007 - XSS and SQL injection bugs in 4nguestbook module for PhpNuke] Janek Vind (Mar 15)
[waraxe-2004-SA#011 - Multiple vulnerabilities in MS Analysis v2.0 module for PhpNuke] Janek Vind (Mar 23)
[waraxe-2004-SA#012 - Multiple vulnerabilities in XMB Forum 1.8 SP3 and 1.9 beta] Janek Vind (Mar 26)
Jason Dodson
Re: Addressing Cisco Security Issues Jason Dodson (Mar 29)
je
[ANNOUNCE] Apache HTTP Server 2.0.49 Released (fwd) je (Mar 19)
Jeff
Another ISS BlackIce & RealSecure Update ? Jeff (Mar 27)
Jeff Uslan
MS Outlook/Outlook Express Preview Pane Security Issue Jeff Uslan (Mar 26)
JeiAr
Re: Invision Power Board v1.3 Final Cross Site Scripting Vulnerabillity JeiAr (Mar 08)
Re: [waraxe-2004-SA#013 - Critical sql injection bug in PhpBB 2.0.8 and in older versions] JeiAr (Mar 26)
phpBB 2.0.8 Exploit JeiAr (Mar 29)
Mambo Open Source Multiple Vulnerabilities JeiAr (Mar 16)
Re: Phpbb 2.0.7a And Earlier Secuity Issues JeiAr (Mar 25)
JelSoft vBulletin Multiple XSS Vulnerabilities JeiAr (Mar 16)
Invision Gallery SQL Injection Vulnerabilities JeiAr (Mar 22)
PhotoPost PHP Pro Multiple Vulnerabilities JeiAr (Mar 29)
Phpbb 2.0.7a And Earlier Secuity Issues JeiAr (Mar 22)
Invision Power Top Site List SQL Injection Vulnerability JeiAr (Mar 22)
Phorum 5.0.3 Beta && Earlier XSS Issues JeiAr (Mar 15)
Re: Invision Power Board 1.3 Final Path Disclosure Vulnerability JeiAr (Mar 05)
phpBB 2.0.6d && Earlier Security Issues JeiAr (Mar 13)
Jelmer
new internet explorer exploit (was new worm) Jelmer (Mar 29)
Re: new internet explorer exploit (was new worm) Jelmer (Mar 30)
Jeremiah Grossman
Re: A new Sanctum white paper: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Jeremiah Grossman (Mar 05)
Jesse Keating
[FLSA-2004:1284] Updated kernel resolves security vulnerabilities Jesse Keating (Mar 02)
[FLSA-2004:1256] Updated util-linux resolves security vulnerability Jesse Keating (Mar 05)
Jim Halfpenny
New Adventures In Phishing Jim Halfpenny (Mar 25)
J. Nick Koston
cPanel Secuirty Advisory CPANEL-2004:01-01 J. Nick Koston (Mar 11)
Joel Palmius
Mod_Survey security advisory: Script injection bug Joel Palmius (Mar 22)
Joe Stewart
Re: NetSky.q Virus. Looking for more detailed information on how the DOS will be performed. Joe Stewart (Mar 30)
Johan A . van Zanten
Re: Immunity Advisory: dtlogin remote root Johan A . van Zanten (Mar 24)
John . Airey
RE: [RHSA-2004:112-01] Updated Mozilla packages fix security issu es John . Airey (Mar 18)
john layman
ws_ftp overflow john layman (Mar 15)
John T. Larkin
Re: Motorola T720 cell phone DoS vulnerability. John T. Larkin (Mar 02)
Joshua J. Berry
[ GLSA 200403-12 ] OpenLDAP DoS Vulnerability Joshua J. Berry (Mar 31)
Jouko Pynnonen
Outlook mailto: URL argument injection vulnerability Jouko Pynnonen (Mar 10)
kang
Safari javascript array overflow kang (Mar 06)
Karousel
New worm? Karousel (Mar 27)
Kim Scarborough
Re: MS Security Response is a bunch of half-witted morons Kim Scarborough (Mar 12)
Kostya Kortchinsky
Re: Any dissasemblies of the Witty worm yet? Kostya Kortchinsky (Mar 20)
K-OTiK Security
Another ISS BlackIce & RealSecure Update ? K-OTiK Security (Mar 27)
Re: Outlook mailto: URL argument injection vulnerability MS04-009 (Now CRITICAL) ! K-OTiK Security (Mar 11)
Käppler
Re: Format string bug in EpicGames Unreal engine Käppler (Mar 11)
Kurt Lieber
[ GLSA 200403-06 ] Multiple remote buffer overflow vulnerabilities in Courier Kurt Lieber (Mar 29)
[ GLSA 200403-11 ] Squid ACL [url_regex] bypass vulnerability Kurt Lieber (Mar 31)
[ GLSA 200403-13 ] Remote buffer overflow in MPlayer Kurt Lieber (Mar 31)
[ GLSA 200403-09 ] Buffer overflow in Midnight Commander Kurt Lieber (Mar 29)
[ GLSA 200403-10 ] Fetchmail 6.2.5 fixes a remote DoS Kurt Lieber (Mar 31)
[ GLSA 200403-08 ] oftpd DoS vulnerability Kurt Lieber (Mar 29)
[ GLSA 200403-07 ] Multiple remote overflows and vulnerabilities in Ethereal Kurt Lieber (Mar 29)
Lachniet, Mark
03-02-04 XSS Bug in NetScreen-SA 5000 Series of SSL VPN appliance Lachniet, Mark (Mar 02)
laurent oudot
Nstxd vulnerability laurent oudot (Mar 26)
lion
Serv-U Real Target and Search ASM Code Tool for Overflow Exploit. lion (Mar 04)
Lise Moorveld
Re: IE ms-its: and mk:@MSITStore: vulnerability Lise Moorveld (Mar 30)
Liu Die Yu
RE: security enforcement - new monitor for winnt Liu Die Yu (Mar 31)
Re: security enforcement - new monitor for winnt Liu Die Yu (Mar 31)
security enforcement - new monitor for winnt Liu Die Yu (Mar 30)
Luigi Auriemma
Broadcast client buffer-overflow in Terminator 3 1.0 Luigi Auriemma (Mar 24)
Ghost users in Chat Anywhere 2.72 Luigi Auriemma (Mar 09)
Desert Rats vs. Afrika Korps (Haegemonia bug) Luigi Auriemma (Mar 05)
Buffer overflow in PicoPhone 1.63 Luigi Auriemma (Mar 24)
RogerWilco: new funny bugs Luigi Auriemma (Mar 31)
Unreal engine updates and Battle Mages advisory Luigi Auriemma (Mar 11)
Server freeze in The Rage 1.01 Luigi Auriemma (Mar 23)
Chrome 1.2.0.0 server crash Luigi Auriemma (Mar 18)
Format string bug in EpicGames Unreal engine Luigi Auriemma (Mar 10)
Clients broadcast buffer overflow in Red Faction <= 1.20 Luigi Auriemma (Mar 01)
Remote crash in Etherlords I 1.07 and II 1.03 Luigi Auriemma (Mar 25)
Mandrake Linux Security Team
MDKSA-2004:021 - Updated mozilla packages fix multiple vulnerabilities Mandrake Linux Security Team (Mar 10)
MDKSA-2004:022 - Updated kdelibs packages fix cookie theft vulnerability Mandrake Linux Security Team (Mar 10)
MDKSA-2004:025 - Updated squid packages fix vulnerability Mandrake Linux Security Team (Mar 31)
MDKSA-2004:020 - Updated gdk-pixbuf packages fix BMP-handling vulnerability Mandrake Linux Security Team (Mar 10)
MDKSA-2004:018 - Updated libxml2 packages fix vulnerability Mandrake Linux Security Team (Mar 04)
MDKSA-2004:017 - Updated pwlib packages fix vulnerability Mandrake Linux Security Team (Mar 04)
MDKSA-2004:019 - Updated python packages fix buffer overflow vulnerability Mandrake Linux Security Team (Mar 10)
MDKSA-2004:023 - Updated openssl packages fix multiple vulnerabilities Mandrake Linux Security Team (Mar 17)
MDKSA-2004:024 - Updated ethereal packages fix multiple vulnerabilities Mandrake Linux Security Team (Mar 31)
Manuel Lopez
Vulnerabilities in Member Management System 2.1 Manuel Lopez (Mar 22)
Vulnerabilities in News Manager Lite 2.5 & News Manager Lite administration Manuel Lopez (Mar 22)
A-CART Pro & A-CART 2.0 Input Validation Holes Manuel Lopez (Mar 29)
Marc Bejarano
Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Marc Bejarano (Mar 17)
Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Marc Bejarano (Mar 17)
Re: IBM DB2 Remote Command Execution Privilege Upgrade (#NISR09032004) Marc Bejarano (Mar 10)
Marc Maiffret
EEYE: Internet Security Systems PAM ICQ Server Response Processing Vulnerability Marc Maiffret (Mar 18)
Marco Marabelli
Re: Norton Antivirus 2002 fails to scan files with special character(s) properly. Marco Marabelli (Mar 06)
Mark J Cox
Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Mark J Cox (Mar 17)
Re: Fw: Bilbao Method Exposed Mark J Cox (Mar 16)
New OpenSSL releases fix denial of service attacks [17 March 2004] Mark J Cox (Mar 17)
Martin Eiszner
Linbit linbox Multiple Vulnerabilities Martin Eiszner (Mar 30)
Martin Schulze
[SECURITY] [DSA 455-1] New libxml packages fix arbitrary code execution Martin Schulze (Mar 04)
[SECURITY] [DSA 466-1] New Linux 2.2.10 packages fix local root exploit (powerpc/apus) Martin Schulze (Mar 18)
[SECURITY] [DSA 454-1] New Linux 2.2.22 packages fix local root exploit (alpha) Martin Schulze (Mar 02)
[SECURITY] [DSA 464-1] New gdk-pixbuf packages fix denial of service Martin Schulze (Mar 16)
[SECURITY] [DSA 456-1] New Linux 2.2.19 packages fix local root exploit (arm) Martin Schulze (Mar 06)
[SECURITY] [DSA 469-1] New libpam-pgsql packages fix SQL injection Martin Schulze (Mar 29)
Marukka
Re: Multiple issues with Mac OS X AFP client Marukka (Mar 04)
Mathias Wegner
Re: mac osx- admin service buffer overflow Mathias Wegner (Mar 19)
Matthew S. Hamrick
Google using Expired Cert and SSLv2 Matthew S. Hamrick (Mar 31)
Matt Zimmerman
[SECURITY] [DSA 461-1] New calife packages fix buffer overflow Matt Zimmerman (Mar 11)
[SECURITY] [DSA 468-1] New emil packages fix multiple vulnerabilities Matt Zimmerman (Mar 25)
[SECURITY] [DSA 459-1] New kdelibs, kdelibs-crypto packages fix cookie traversal bug Matt Zimmerman (Mar 10)
[SECURITY] [DSA 457-1] New wu-ftpd packages fix multiple vulnerabilities Matt Zimmerman (Mar 09)
[SECURITY] [DSA 458-1] New python2.2 packages fix buffer overflow Matt Zimmerman (Mar 10)
[SECURITY] [DSA 460-1] New sysstat packages fix insecure temporary file creation Matt Zimmerman (Mar 10)
[SECURITY] [DSA 452-1] New libapache-mod-python packages fix denial of service Matt Zimmerman (Mar 01)
[SECURITY] [DSA 463-1] New samba packages fix privilege escalation in smbmnt Matt Zimmerman (Mar 13)
[SECURITY] [DSA 465-1] New openssl packages fix multiple vulnerabilities Matt Zimmerman (Mar 17)
[SECURITY] [DSA 467-1] New ecartis packages fix several vulnerabilities Matt Zimmerman (Mar 24)
mgotts
Re: new internet explorer exploit (was new worm) mgotts (Mar 31)
micheal () michealcottingham com
RE: Fw: phpBB profile.php Cross Site Scripting Vulnerability micheal () michealcottingham com (Mar 22)
nesumin
Re: ws_ftp overflow nesumin (Mar 16)
Re[2]: ws_ftp overflow (WS_FTP Pro 8.0.3 is vulnerable) nesumin (Mar 19)
NetScreen Security Response Team
NetScreen Advisory 58412: XSS Bug in NetScreen-SA SSL VPN NetScreen Security Response Team (Mar 05)
Nexus
Re: MS Outlook/Outlook Express Preview Pane Security Issue Nexus (Mar 26)
NGSSoftware Insight Security Research
Norton Internet Security Remote Command Execution (#NISR19042004b) NGSSoftware Insight Security Research (Mar 19)
SLWebMail Multiple Buffer Overflow Vulnerabilities (#NISR05022004b) NGSSoftware Insight Security Research (Mar 05)
Norton AntiSpam Remote Buffer Overrun (#NISR19042004a) NGSSoftware Insight Security Research (Mar 19)
Abobe Reader 5.1 XFDF Buffer Overflow Vulnerability NGSSoftware Insight Security Research (Mar 04)
SLMail Pro Supervisor Report Center Buffer Overflow (#NISR05022004a) NGSSoftware Insight Security Research (Mar 05)
With regards to the Adobe Acrobat Reader advisory (#NISR03022004) NGSSoftware Insight Security Research (Mar 10)
IBM DB2 Remote Command Execution Privilege Upgrade (#NISR09032004) NGSSoftware Insight Security Research (Mar 09)
Nicholas Weaver
Any dissasemblies of the Witty worm yet? Nicholas Weaver (Mar 20)
Re: White Paper - Web Application Worms: Myth or Reality? Nicholas Weaver (Mar 30)
Nick FitzGerald
MS Security Response is a bunch of half-witted morons Nick FitzGerald (Mar 12)
Re: new internet explorer exploit (was new worm) Nick FitzGerald (Mar 30)
Oliver Lavery
RE: Followup: vuln in WinBlox monitor for winnt Oliver Lavery (Mar 31)
RE: security enforcement - new monitor for winnt Oliver Lavery (Mar 31)
Followup: vuln in WinBlox monitor for winnt Oliver Lavery (Mar 31)
TOOL: Adder - runtime patching in python Oliver Lavery (Mar 31)
OpenPKG
[OpenPKG-SA-2004.007] OpenPKG Security Advisory (openssl) OpenPKG (Mar 18)
[OpenPKG-SA-2004.004] OpenPKG Security Advisory (libtool) OpenPKG (Mar 08)
[OpenPKG-SA-2004.006] OpenPKG Security Advisory (uudeview) OpenPKG (Mar 12)
[OpenPKG-SA-2004.003] OpenPKG Security Advisory (libxml) OpenPKG (Mar 05)
[OpenPKG-SA-2004.005] OpenPKG Security Advisory (mutt) OpenPKG (Mar 09)
Paul
NetSky.q Virus. Looking for more detailed information on how the DOS will be performed. Paul (Mar 30)
Paul Starzetz
mremap(2) full details available Paul Starzetz (Mar 01)
Paul Szabo
Eudora 6.0.3 attachment spoof, LaunchProtect Paul Szabo (Mar 19)
penfold
bblog 0.7.2 cross site scripting penfold (Mar 26)
Pentest Security Alerts
ptl-2004-02: RealNetworks Helix Server 9 Administration Server Buffer Overflow Pentest Security Alerts (Mar 18)
Pete Finnigan
new security alert #66 issued in Oracle web cache Pete Finnigan (Mar 16)
Peter Watkins
Re: "Divide and Conquer" - cross site response header tampering, cookie manipulation, and session fixation Peter Watkins (Mar 08)
Peter Winter-Smith
Establishing contact with Nullsoft Peter Winter-Smith (Mar 09)
Phantasmal Phantasmagoria
Re: The Cult of a Cardinal Number Phantasmal Phantasmagoria (Mar 04)
The Cult of a Cardinal Number Phantasmal Phantasmagoria (Mar 02)
please_reply_to_security
OpenLinux: rsync heap based overflow please_reply_to_security (Mar 03)
OpenLinux: mutt remote buffer overflow please_reply_to_security (Mar 26)
OpenLinux: screen buffer overflow please_reply_to_security (Mar 03)
OpenLinux: Gnupg (gpg) severe bug could compromise almost all ElGamal keys please_reply_to_security (Mar 03)
OpenLinux: mc Updated packages resolve local buffer overflow vulnerability please_reply_to_security (Mar 26)
OpenLinux: Integer overflow may allow local users to cause a denial of service or possibly execute arbitrary code please_reply_to_security (Mar 02)
OpenLinux: util-linux could leak sensitive data please_reply_to_security (Mar 31)
OpenLinux: cups denial of service vulnerability please_reply_to_security (Mar 04)
pokley
[SCAN Associates Sdn Bhd Security Advisory] phpBB 2.0.6 and below sql injection pokley (Mar 15)
programming_rocks1
Re: mac osx- admin service buffer overflow programming_rocks1 (Mar 19)
mac osx- admin service buffer overflow programming_rocks1 (Mar 18)
Rafel Ivgi, The-Insider
Invision Power Board v1.3 Final Cross Site Scripting 2 - Addon Rafel Ivgi, The-Insider (Mar 09)
Internet Explorer Causing Explorer.exe - Null Pointer Crash Rafel Ivgi, The-Insider (Mar 19)
VirtuaNews Admin Panel 1.0.3 Pro Cross Site Scripting Vulnerabillity Rafel Ivgi, The-Insider (Mar 05)
Invision Power Board v1.3 Final Cross Site Scripting Vulnerabillity Rafel Ivgi, The-Insider (Mar 05)
VocalTec Gateway 8 Reverse Directory Transversal + Authorization Bypass Rafel Ivgi, The-Insider (Mar 15)
Ravish
RE: VirtuaNews Admin Panel 1.0.3 Pro Cross Site Scripting Vulnerabillity Ravish (Mar 08)
Rene
clamd - NEVER use "%f" in your "VirusEvent" Rene (Mar 30)
Robert C. Auch
RE: SonicWall Firewall DoS, ARP Flood, Network Mapping Robert C. Auch (Mar 03)
Roberto Dapino
DSL Modem Ericsson HM220dp Exploit Roberto Dapino (Mar 22)
roozbeh afrasiabi
Re: IE ms-its: and mk:@MSITStore: vulnerability roozbeh afrasiabi (Mar 31)
Re: new internet explorer exploit (was new worm) roozbeh afrasiabi (Mar 31)
IE ms-its: and mk:@MSITStore: vulnerability roozbeh afrasiabi (Mar 29)
Sam
iss_pam1.dll remote exploits Sam (Mar 29)
saudi linux
Vcard 2.8 uninstall script problem saudi linux (Mar 17)
security team 0seen
Wftpd stat Command Remote Vulnerability Exploit security team 0seen (Mar 03)
SGI Security Coordinator
SGI Advanced Linux Environment security update #16 SGI Security Coordinator (Mar 26)
SGI Advanced Linux Environment security update #15 SGI Security Coordinator (Mar 26)
SGI Advanced Linux Environment security update #13 SGI Security Coordinator (Mar 03)
SGI Advanced Linux Environment security update #14 SGI Security Coordinator (Mar 12)
Sharif Torpis
IEEE Security & Privacy CFP Sharif Torpis (Mar 05)
Shaun Colley
Samba 'smbprint' script tmpfile vulnerability. Shaun Colley (Mar 19)
cdp buffer overflow vulnerability Shaun Colley (Mar 31)
Metamail 'extcompose' script Symlink Vulnerability Shaun Colley (Mar 12)
RE: Outlook mailto: URL argument injection vulnerability Shaun Colley (Mar 11)
xine-check/xine-bugreport symlink vulnerability. Shaun Colley (Mar 22)
Invision Power Board 1.3 Final Path Disclosure Vulnerability Shaun Colley (Mar 05)
phpBB2 2.0.8 privmsg.php SQL injection patch (critical). Shaun Colley (Mar 26)
mysqlbug tmpfile/symlink vulnerability. Shaun Colley (Mar 25)
Coreutils 'dir' integer overflow vulnerability. Shaun Colley (Mar 03)
Motorola T720 cell phone DoS vulnerability. Shaun Colley (Mar 01)
Re: cdp buffer overflow vulnerability - updated details Shaun Colley (Mar 31)
ShelzZ
vuln ShelzZ (Mar 29)
Simon Boulet
WebCT Campus Edition 4.1 - Cross site scripting using CSS @import Simon Boulet (Mar 29)
spender
systrace silently patches full local bypass vulnerability on Linux spender (Mar 29)
spiffomatic 64
NetSupport School Pro: Password Encryption Weaknesses spiffomatic 64 (Mar 26)
S-Quadra Security Research
Spider Sales shopping cart software multiple security vulnerabilities S-Quadra Security Research (Mar 03)
ModSecurity 1.7.4 for Apache 2.x remote off-by-one overflow S-Quadra Security Research (Mar 16)
CactuSoft CactuShop v5.x shopping cart software multiple security vulnerabilities S-Quadra Security Research (Mar 31)
Dogpatch Software CFWebstore 5.0 shopping cart software multiple security vulnerabilities S-Quadra Security Research (Mar 12)
Stacy Martin
Re: PLAXO: is that a cure or a disease? Stacy Martin (Mar 18)
stanislav shalunov
Re: IPv4 fragmentation --> The Rose Attack stanislav shalunov (Mar 31)
stealth
Announcing full functional adore-ng rootkit for 2.6 Kernel stealth (Mar 11)
Re: systrace silently patches full local bypass vulnerability on Linux stealth (Mar 29)
Stefan Esser
Advisory 03/2004: Multiple (13) Ethereal remote overflows Stefan Esser (Mar 23)
Stefan Nordhausen
Symlink Vulnerability in GNU automake <1.8.3 Stefan Nordhausen (Mar 08)
Steve Browning
Strange traffic - Outgoing TCP 3127/3198 (Not mydoom) New worm? Steve Browning (Mar 27)
Steve Kemp
freshmeat.net: XSS Attack due to improper comment filtering. Steve Kemp (Mar 26)
sullo
Exensive cPanel Cross Site Scripting sullo (Mar 30)
Sym Security
Ref: NGSSoftware Advisories NISR19042004a and NISR19042004b Sym Security (Mar 20)
Re: Norton AntiVirus 2002 fails to scan files with ... [2'nd... UPDATED] Message-ID: 20040306040833.28300 Sym Security (Mar 11)
s . zdrojewski
R: UPDATED: MS Word - password protection vulnerabilty s . zdrojewski (Mar 26)
t4c [Founder of GHCIF]
Re: New phpBB ViewTopic.php Cross Site Scripting Vulnerability t4c [Founder of GHCIF] (Mar 01)
Thomas Biege
SUSE Security Announcement: openssl (SuSE-SA:2004:007) Thomas Biege (Mar 17)
Thor Larholm
RE: New Internet Explorer Cross Zone/Site Scripting Vulnerability Thor Larholm (Mar 03)
RE: new internet explorer exploit (was new worm) Thor Larholm (Mar 30)
Tim Yamin
[ GLSA 200403-01 ] Libxml2 URI Parsing Buffer Overflow Vulnerabilities Tim Yamin (Mar 08)
[ GLSA 200403-02 ] Linux kernel do_mremap local privilege escalation vulnerability Tim Yamin (Mar 08)
[ GLSA 200403-05 ] Linux kernel do_mremap local privilege escalation vulnerability Tim Yamin (Mar 29)
[ GLSA 200403-05 ] UUDeview MIME Buffer Overflow Tim Yamin (Mar 29)
Tobias Welter
Winamp 5.02 Long Filename Buffer Overflow Vulnerability Tobias Welter (Mar 19)
Todd C. Campbell
Re: Open the WS_FTP Server backdoor to SYSTEM Todd C. Campbell (Mar 23)
Todd Chapman
Dark Age of Camelot login client vulnerability to man in the middle attack Todd Chapman (Mar 24)
Re: Unreal engine updates and Battle Mages advisory Todd Chapman (Mar 11)
Tri Huynh
TrendMacro Interscan Viruswall Directory Traversal Tri Huynh (Mar 24)
Re: TrendMicro (not Macro) Interscan Viruswall Directory Traversal Tri Huynh (Mar 25)
Trustix Security Advisor
TSLSA-2004-0009 - nfs-utils Trustix Security Advisor (Mar 06)
TSLSA-2004-0017 - apache Trustix Security Advisor (Mar 30)
TSLSA-2004-0015 - tcpdump Trustix Security Advisor (Mar 30)
TSLSA-2004-0012 - openssl Trustix Security Advisor (Mar 18)
TSLSA-2004-0010 - libxml2 Trustix Security Advisor (Mar 06)
TSLSA-2004-0011 - sysstat Trustix Security Advisor (Mar 18)
Ulf Härnhammar
Re: [SECURITY] [DSA 468-1] New emil packages fix multiple vulnerabilities Ulf Härnhammar (Mar 25)
GNU Anubis buffer overflows and format string bugs Ulf Härnhammar (Mar 04)
Vade 79
Re: cdp buffer overflow vulnerability Vade 79 (Mar 31)
Vincenzo Ciaglia
LNSA-#2004-0006: bug workaround for Apache 2.0.48 Vincenzo Ciaglia (Mar 26)
LNSA-#2004-0004: libxml2 buffer overflow Vincenzo Ciaglia (Mar 04)
LNSA-#2004-0007: Multiple security problems in Ethereal Vincenzo Ciaglia (Mar 29)
Vizzy
eSignal v7 remote buffer overflow (exploit) Vizzy (Mar 25)
Void
Re: new internet explorer exploit (was new worm) Void (Mar 29)
Walter Wart
Re: MS Security Response is a bunch of half-witted morons Walter Wart (Mar 12)
wirepair
HP Web JetAdmin vulnerabilities. wirepair (Mar 24)
WU Fei Liang
Tomcat 5.0.14: remote DoS WU Fei Liang (Mar 26)
xeno
SonicWall VPN/Firewall Appliance - DoS, ARP Flood, Network mapping vulnerability xeno (Mar 02)
RE: SonicWall VPN/Firewall Appliance - DoS, ARP Flood, Network mapping vulnerability xeno (Mar 03)
Yanosz
phpkit suffers (reale stupid) XSS vuln. Yanosz (Mar 30)