Bugtraq: by thread

Re: single-DES phase 1 Anton Rager (Feb 28 2001)
DOS Vulnerability in SlimServe HTTPd joetesta_at_HUSHMAIL.COM (Feb 28 2001)
Nortel Networks response to Contivity Extranet switch security co ncern David Passamonte (Feb 28 2001)
SurgeFTP Denial of Service SNS Research (Feb 28 2001)
Vulnerability in SlimServe FTPd joetesta_at_HUSHMAIL.COM (Feb 28 2001)
Vulnerability in FtpXQ Server joetesta_at_HUSHMAIL.COM (Feb 28 2001)
Vulnerability in TYPSoft FTP Server joetesta_at_HUSHMAIL.COM (Feb 28 2001)
Re: Nortel CES (3DES version) offers false sense of securitywhen usi ng IPSEC der Mouse (Feb 28 2001)
Re: Nortel CES (3DES version) offers false sense of securitywhenusi ng IPSEC Crist Clark (Feb 28 2001)
- Re: Nortel CES (3DES version) offers false sense of securitywhenusi ng IPSEC Valdis Kletnieks (Feb 28 2001)
- Re: Nortel CES (3DES version) offers false sense of securitywhenusi ng IPSEC Ben Greenbaum (Mar 01 2001)
Cisco Security Advisory: Cisco IOS Software TCP Initial Sequence NumberRandomization Improvements Cisco Systems Product Security Incident Response Team (Feb 28 2001)
Re: /N grouped concurrency limits for network services Solar Designer (Mar 01 2001)
- Re: /N grouped concurrency limits for network services Solar Designer (Mar 05 2001)
security bulletins digest (fwd) Ben Greenbaum (Mar 01 2001)
Microsoft Security Bulletin MS01-014 Microsoft Product Security (Mar 01 2001)
Re: ratelimiting/concurrency limits both inadequate to stop TCP/IP DoS Pavel Kankovsky (Mar 01 2001)
student full disclosure survey Tami Goens (Mar 01 2001)
Sunftp build9(1) - ftp server Vulnerability se00020_at_LION.CC (Mar 02 2001)
PHPNUKE4.4.1a Advisory venomous (Mar 02 2001)
def-2001-09: Winzip32 zipandemail Buffer Overflow Peter Gründl (Mar 02 2001)
[CLA-2001:382] Conectiva Linux Security Announcement - Zope secure_at_CONECTIVA.COM.BR (Mar 02 2001)
[TL-Security-Announce] Updated Public Key Manuel Parayo (Mar 01 2001)
Security Update: buffer overflow in /bin/mail CSSA-2001-010.0 Caldera Support Info (Mar 02 2001)
Administrivia Ben Greenbaum (Mar 02 2001)
Option to VERITAS Cluster Server (VCS) lltstat command will panic system. paul_at_HESSELS.CA (Mar 02 2001)
[RHSA-2001:024-03] Updated joe packages are available for Red Hat Linux 5.2, 6.x and 7. redhat-watch-list-admin_at_redhat.com (Mar 02 2001)
Broker Ftp Server 5.0 Vulnerability se00020_at_LION.CC (Mar 03 2001)
WFTPD Pro 3.00 R1 Buffer Overflow se00020_at_LION.CC (Mar 03 2001)
trojaned Reality Fusion app J Edgar Hoover (Mar 02 2001)
- Re: trojaned Reality Fusion app Henrik Nordstrom (Mar 04 2001)
- Re: trojaned Reality Fusion app Mike Adams (Mar 04 2001)
SlimServe HTTPd ver. 1.1a Directory Traversal se00020_at_LION.CC (Mar 03 2001)
Re: /usr/bin/Mail buffer 0verfl0w Blue Boar (Mar 02 2001)
- Re: /usr/bin/Mail buffer 0verfl0w Marcus Meissner (Mar 05 2001)
Faststream FTP++ Client 2 Beta 11 (build in server) Vulnerability se00020_at_LION.CC (Mar 04 2001)
- Re: Faststream FTP++ Client 2 Beta 11 (build in server) Vulnerability SNS Research (Mar 04 2001)
Re: Security hole in kicq Bill Soudan (Mar 03 2001)
Remote buffer overflow, remote DoS and format string bug in current IRCd's tkserv Paul Starzetz (Mar 05 2001)
- Re: Remote buffer overflow, remote DoS and format string bug in current IRCd's tkserv Piotr Kucharski (Mar 05 2001)
Remote buffer overflow condition in post-query (CGI). proton (Mar 05 2001)
SuSE Security Announcement: cups Sebastian Krahmer (Mar 05 2001)
[GSA2001-01] PHP IMAP overflow fix problems pre (Mar 05 2001)
- Re: [GSA2001-01] PHP IMAP overflow fix problems Anil Madhavapeddy (Mar 06 2001)
Loopback and multi-homed routing flaw in TCP/IP stack. Woody (Mar 05 2001)
- Re: Loopback and multi-homed routing flaw in TCP/IP stack. Elias Levy (Mar 05 2001)
  - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Neil W Rickert (Mar 05 2001)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Ben Laurie (Mar 06 2001)
      - Re: Loopback and multi-homed routing flaw in TCP/IP stack. David Litchfield (Mar 06 2001)
      - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Robert Collins (Mar 06 2001)
      - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Lincoln Yeoh (Mar 06 2001)
  - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Dan Harkless (Mar 06 2001)
  - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Lars Mathiesen (Mar 06 2001)
- Re: Loopback and multi-homed routing flaw in TCP/IP stack. Perry Harrington (Mar 05 2001)
  - Re: Loopback and multi-homed routing flaw in TCP/IP stack. ddowney_at_MAIL.HISLINUXBOX.NET (Mar 05 2001)
  - Re: Loopback and multi-homed routing flaw in TCP/IP stack. John Cronin (Mar 05 2001)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Ben Laurie (Mar 06 2001)
  - Re: Loopback and multi-homed routing flaw in TCP/IP stack. ddowney_at_MAIL.HISLINUXBOX.NET (Mar 05 2001)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Perry Harrington (Mar 05 2001)
      - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Ben Laurie (Mar 06 2001)
      - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Perry Harrington (Mar 06 2001)
      - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Ben Laurie (Mar 06 2001)
- Re: Loopback and multi-homed routing flaw in TCP/IP stack. Kyle Sparger (Mar 05 2001)
  - Re: Loopback and multi-homed routing flaw in TCP/IP stack. MaD dUCK (Mar 05 2001)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. J. Bol (Mar 06 2001)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Kyle Sparger (Mar 06 2001)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Kurt Seifried (Mar 05 2001)
- Re: Loopback and multi-homed routing flaw in TCP/IP stack. BrandonButterworth (Mar 05 2001)
- Re: Loopback and multi-homed routing flaw in TCP/IP stack. Lothar Beta (Mar 05 2001)
  - Re: Loopback and multi-homed routing flaw in TCP/IP stack. David Damerell (Mar 06 2001)
- Re: Loopback and multi-homed routing flaw in TCP/IP stack. 3APA3A (Mar 06 2001)
  - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Martin Macok (Mar 06 2001)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. 3APA3A (Mar 07 2001)
  - Re: Loopback and multi-homed routing flaw in TCP/IP stack. bert hubert (Mar 06 2001)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Crist Clark (Mar 06 2001)
- Re: Loopback and multi-homed routing flaw in TCP/IP stack. Darren Reed (Mar 06 2001)
  - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Woody (Mar 06 2001)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Lupe Christoph (Mar 06 2001)
- Re: Loopback and multi-homed routing flaw in TCP/IP stack. Adam Laurie (Mar 07 2001)
Remote buffer overflow, remote DoS and format string bug in current IRCd's tkserv - correction Paul Starzetz (Mar 05 2001)
Re: Faststream FTP++ Client 2 Beta 11 (build in server) Vulnerability - company response: se00020_at_LION.CC (Mar 05 2001)
Call For Papers - RAID'2001 - Deadline is March 30th Giovanni Vigna (Mar 05 2001)
[SECURITY] [DSA 011-2] New mgetty packages for m68k and powerpc available debian-security-announce_at_LISTS.DEBIAN.ORG (Mar 05 2001)
[SECURITY] [DSA 029-2] New proftpd packages for m68k available debian-security-announce_at_LISTS.DEBIAN.ORG (Mar 05 2001)
[SECURITY] [DSA 031-2] New sudo packages for powerpc available debian-security-announce_at_LISTS.DEBIAN.ORG (Mar 05 2001)
announcement: Hacker's conference "HAL 2001" Gerrit Hiddink (Mar 06 2001)
[Mailman-Announce] ANNOUNCE Mailman 2.0.2 (important privacy patch) Soos Peter (Mar 05 2001)
Warftp 1.67b04 Directory Traversal se00020_at_LION.CC (Mar 06 2001)
Immunix OS Security update for joe Greg KH (Mar 06 2001)
Re: [Fwd: Re: Loopback and multi-homed routing flaw in TCP/IP stack.] Ben Laurie (Mar 06 2001)
- Re: [Fwd: Re: Loopback and multi-homed routing flaw in TCP/IP Darren Reed (Mar 07 2001)
MDKSA-2001:026 - joe update Linux Mandrake Security Team (Mar 06 2001)
Passwords in Net.Commerce/WebSphere decryptable, any version Rasmus Petersen (Mar 06 2001)
- Re: Passwords in Net.Commerce/WebSphere decryptable, any version IBM MSS Advisory Service (Mar 07 2001)
[SECURITY] [DSA-032-1] proftp runs as root, /var symlink removal debian-security-announce_at_LISTS.DEBIAN.ORG (Mar 06 2001)
Microsoft Security Bulletin MS01-015 Microsoft Product Security (Mar 06 2001)
Administrivia: Strong ES Model vs Weak ES Model Elias Levy (Mar 07 2001)
[SECURITY] [DSA 033-1] New versions of analog available debian-security-announce_at_LISTS.DEBIAN.ORG (Mar 07 2001)
def-2001-02: IBM HTTP Server Kernel Leak DoS (re-release) Peter Gründl (Mar 07 2001)
[SECURITY] [DSA 034-1] New version of ePerl packages available debian-security-announce_at_LISTS.DEBIAN.ORG (Mar 07 2001)
Broadcast and multi-homed routing condition in TCP/IP stack. Kenny Jansson (Mar 07 2001)
- Re: Broadcast and multi-homed routing condition in TCP/IP stack. Charles M. Hannum (Mar 07 2001)
(no subject) Nomen Nescio (Mar 06 2001)
- Re: your mail Przemyslaw Frasunek (Mar 07 2001)
- (no subject) predator (Mar 07 2001)
- Re: Wu 2.6.1 exploit John (Mar 07 2001)
Cisco Security Advisory: Access to the Cisco Aironet 340 Series Wireless Bridge via Web Interface Cisco Systems Product Security Incident Response Team (Mar 07 2001)
[SECURITY] [DSA 035-1] New version of man2html available debian-security-announce_at_LISTS.DEBIAN.ORG (Mar 07 2001)
[SECURITY] [DSA 037-1] New versions of Athena Widget replacement libraries available debian-security-announce_at_LISTS.DEBIAN.ORG (Mar 07 2001)
INDEXU Authentication By-Pass Sp4rK (Mar 07 2001)
[SECURITY] [DSA 036-1] New version of Midnight Commander available debian-security-announce_at_LISTS.DEBIAN.ORG (Mar 07 2001)
[SECURITY] [DSA 038-1] New version of sgml-tools available debian-security-announce_at_LISTS.DEBIAN.ORG (Mar 07 2001)
MDKSA-2001:027 - eperl update Linux Mandrake Security Team (Mar 07 2001)
Security advisory: Unsafe temporary file handling in krb4 Tom Yu (Mar 07 2001)
Re: wu2.6.1 exploit Jogchem de Groot (Mar 07 2001)
IIS 5.0 PROPFIND DOS Georgi Guninski (Mar 08 2001)
- Re: IIS 5.0 PROPFIND DOS Tiago Halm (Mar 08 2001)
- Re: IIS 5.0 PROPFIND DOS Johansen, Eric (Mar 09 2001)
- Re: IIS 5.0 PROPFIND DOS Tiago Halm (Mar 09 2001)
def-2001-10: Websweeper Infinite HTTP Request DoS Peter Gründl (Mar 08 2001)
- Re: def-2001-10: Websweeper Infinite HTTP Request DoS Derek Kwan (Mar 08 2001)
  - Re: def-2001-10: Websweeper Infinite HTTP Request DoS van der Kooij, Hugo (Mar 11 2001)
ascdc Buffer Overflow Vulnerability advisories_at_WKIT.COM (Mar 08 2001)
- Re: ascdc Buffer Overflow Vulnerability The Itch (Mar 09 2001)
HP-UX 11 elm -s possible local egid mail compromise Flatline (Mar 08 2001)
security bulletins digest Oonk, Patrick (Mar 08 2001)
NIPC Advisory Regarding Recent Attacks Against E-commerce Sites Microsoft Security Response Center (Mar 08 2001)
[SECURITY] [DSA-041-1] joe local attack via joerc debian-security-announce_at_LISTS.DEBIAN.ORG (Mar 08 2001)
SuDo Program Barry Russell (Mar 08 2001)
[SECURITY] [DSA-039-1] glibc local file overwrite problems debian-security-announce_at_LISTS.DEBIAN.ORG (Mar 08 2001)
Microsoft opening its source to selected parties Dan Harkless (Mar 08 2001)
- Re: Microsoft opening its source to selected parties Tobias Haustein (Mar 09 2001)
  - Re: Microsoft opening its source to selected parties Crispin Cowan (Mar 09 2001)
    - Re: Microsoft opening its source to selected parties Matthew Keller (Mar 11 2001)
  - Re: Microsoft opening its source to selected parties Dirk Bhagat (Mar 10 2001)
- Re: Microsoft opening its source to selected parties Dan Harkless (Mar 12 2001)
- Re: Microsoft opening its source to selected parties Matthew S. Hamrick (Mar 12 2001)
Vulnerability in Novell Netware Vulnerability Help (Mar 08 2001)
- Re: Vulnerability in Novell Netware Derek Wilson (Mar 09 2001)
  - Re: Vulnerability in Novell Netware Brad Bendily (Mar 11 2001)
    - Re: Vulnerability in Novell Netware David Howe (Mar 12 2001)
  - Re: Vulnerability in Novell Netware hhoogend (Mar 12 2001)
    - Re: Vulnerability in Novell Netware Thomas M. Payerle (Mar 12 2001)
      - Re: Vulnerability in Novell Netware Jacek Lipkowski (Mar 13 2001)
      - Re: Vulnerability in Novell Netware Jon Miner (Mar 13 2001)
- Re: Vulnerability in Novell Netware Mike Glassman - Admin (Mar 11 2001)
- Re: Vulnerability in Novell Netware Ben Ponting (Mar 11 2001)
  - Re: Vulnerability in Novell Netware Scott Smith (Mar 13 2001)
- Re: Vulnerability in Novell Netware Matthew Firth (Mar 12 2001)
- Re: Vulnerability in Novell Netware - Yeah, it's a user. So what? Kain (Mar 12 2001)
  - Re: Vulnerability in Novell Netware - Yeah, it's a user. So what? Adrian Bolzan (Mar 12 2001)
- Re: Vulnerability in Novell Netware Simple Nomad (Mar 13 2001)
- Re: FW: Vulnerability in Novell Netware Jeffrey Seaton (Mar 14 2001)
  - Re: FW: Vulnerability in Novell Netware Jacek Lipkowski (Mar 15 2001)
- Re: FW: Vulnerability in Novell Netware Krzysztof Halasa (Mar 16 2001)
[SECURITY] [DSA-040-1] slrn buffer overflow debian-security-announce_at_LISTS.DEBIAN.ORG (Mar 08 2001)
[SECURITY] [DSA 042-1] New XEmacs and gnuserv packages available debian-security-announce_at_LISTS.DEBIAN.ORG (Mar 09 2001)
[SECURITY] [DSA 043-1] New Zope packages available debian-security-announce_at_LISTS.DEBIAN.ORG (Mar 09 2001)
Microsoft Security Bulletin MS01-016 Microsoft Product Security (Mar 08 2001)
Savant 3.0 web server vulnerability Phiber (Mar 08 2001)
Correction for BUGTRAQ Digest - 5 Mar 2001 to 6 Mar 2001 (#2001-49) Soos Peter (Mar 10 2001)
MDKSA-2001:028 - slrn update Linux Mandrake Security Team (Mar 09 2001)
Revival of the SUQ.DIQ homepage Kim Vanvaeck (Mar 09 2001)
- Re: Revival of the SUQ.DIQ homepage Laurent LEVIER (Mar 11 2001)
- Re: Revival of the SUQ.DIQ homepage [suqdiq attached] Emil Popov (Mar 12 2001)
Administrivia: Mailing List Software Elias Levy (Mar 10 2001)
Re: severe error in SSH session key recovery patch Steve Watt (Mar 10 2001)
Advisory: Half-life server buffer overflows and formatting vulnerabilities Stanley G. Bubrouski (Mar 09 2001)
CORRECTION to CODE: FormMail.pl can be used to send anonymous email Michael Rawls (Mar 10 2001)
- Re: CORRECTION to CODE: FormMail.pl can be used to send anonymous email Palmans Pepijn (Mar 11 2001)
  - Re: CORRECTION to CODE: FormMail.pl can be used to send anonymous email Peter W (Mar 12 2001)
- Re: CORRECTION to CODE: FormMail.pl can be used to send anonymous email Joel Sing (Mar 11 2001)
  - Re: CORRECTION to CODE: FormMail.pl can be used to send anonymous email Steffen Dettmer (Mar 12 2001)
  - Re: CORRECTION to CODE: FormMail.pl can be used to send anonymous email Steve Reid (Mar 12 2001)
- Re: CORRECTION to CODE: FormMail.pl can be used to send anonymousemail Scott Buchanan (Mar 11 2001)
  - Re: CORRECTION to CODE: FormMail.pl can be used to send anonymousemail Scott Buchanan (Mar 12 2001)
- Re: CORRECTION to CODE: FormMail.pl can be used to send anonymous email Steve Reid (Mar 12 2001)
Cisco PIX Security Notes Fabio Pietrosanti (naif) (Mar 09 2001)
- Re: Cisco PIX Security Notes Curt Wilson (Mar 12 2001)
- Re: Cisco PIX Security Notes Lisa Napier (Mar 12 2001)
  - Re: Cisco PIX Security Notes Laurent LEVIER (Mar 14 2001)
  - Re: Cisco PIX Security Notes Curt Wilson (Mar 14 2001)
- Re: Cisco PIX Security Notes *Vendor Response* Lisa Napier (Mar 15 2001)
Cgisecurity.com advisory #4 The Free On-line Dictionary of Computing admin_at_cgisecurity.com (Mar 09 2001)
Ikonboard v2.1.7b "show files" vulnerability Martin J. Muench (Mar 11 2001)
- Re: Ikonboard v2.1.7b "show files" vulnerability Darren Mobley (Mar 12 2001)
An informal analysis of vendor acknowledgement of vulnerabilities Steven M. Christey (Mar 11 2001)
Icecast / Libshout remote vulnerabilities John Viega (Mar 11 2001)
Exploit: pqx.c -- post-query (CGI) remote buffer overflow proton (Mar 12 2001)
tcp/ip DoS vulnerability - possibly what Guardent is talking about bert hubert (Mar 12 2001)
- Re: tcp/ip DoS vulnerability - possibly what Guardent is talking about David LaPorte (Mar 14 2001)
Security Update: several buffer overflows in imap, ipop2d and ipop3d CSSA-2001-011.0 Caldera Support Info (Mar 12 2001)
FreeBSD Ports Security Advisory FreeBSD-SA-01:26.interbase FreeBSD Security Advisories (Mar 12 2001)
FreeBSD Ports Security Advisory FreeBSD-SA-01:23.icecast FreeBSD Security Advisories (Mar 12 2001)
FreeBSD Security Advisory FreeBSD-SA-01:28.timed FreeBSD Security Advisories (Mar 12 2001)
TCP Timestamping and Remotely gathering uptime information Bret (Mar 12 2001)
- Re: TCP Timestamping and Remotely gathering uptime information Fyodor (Mar 14 2001)
- Re: TCP Timestamping and Remotely gathering uptime information Bret (Mar 14 2001)
  - Re: TCP Timestamping and Remotely gathering uptime information Ted U (Mar 15 2001)
  - Re: TCP Timestamping and Remotely gathering uptime information Darren Reed (Mar 15 2001)
    - Re: TCP Timestamping and Remotely gathering uptime information Valdis Kletnieks (Mar 17 2001)
    - Re: TCP Timestamping and Remotely gathering uptime information Saint skullY the Dazed (Mar 16 2001)
    - Re: TCP Timestamping and Remotely gathering uptime information arivanov_at_SIGSEGV.CX (Mar 16 2001)
  - Re: TCP Timestamping and Remotely gathering uptime information Stephen White (Mar 16 2001)
    - Re: TCP Timestamping and Remotely gathering uptime information bert hubert (Mar 19 2001)
    - Remote fingerprinting/uptime (was Re: TCP Timestamping ...) Darren Reed (Mar 20 2001)
      - Re: Remote fingerprinting/uptime (was Re: TCP Timestamping ...) Jason R Thorpe (Mar 21 2001)
- Re: TCP Timestamping and Remotely gathering uptime information Chris Tobkin (Mar 16 2001)
- Re: TCP Timestamping and Remotely gathering uptime information Ted U (Mar 16 2001)
- Re: TCP Timestamping and Remotely gathering uptime information Matt Lewis (Mar 16 2001)
  - Re: TCP Timestamping and Remotely gathering uptime information Theo de Raadt (Mar 19 2001)
- Re: TCP Timestamping and Remotely gathering uptime information Darren Reed (Mar 16 2001)
  - Re: TCP Timestamping and Remotely gathering uptime information van der Kooij, Hugo (Mar 19 2001)
FORW: [ANNOUNCE] Apache 1.3.19 Released Dan Harkless (Mar 12 2001)
FreeBSD Ports Security Advisory FreeBSD-SA-01:27.cfengine FreeBSD Security Advisories (Mar 12 2001)
FreeBSD Security Advisory FreeBSD-SA-01:29.rwhod FreeBSD Security Advisories (Mar 12 2001)
Solaris 5.8 snmpd Vulnerability Pablo Sor (Mar 13 2001)
- Re: Solaris 5.8 snmpd Vulnerability Darren Moffat (Mar 14 2001)
- Re: Solaris 5.8 snmpd Vulnerability Rob Bartlett - HES CTE (Mar 15 2001)
FORW: Re: [ANNOUNCE] Apache 1.3.19 Released Dan Harkless (Mar 13 2001)
debian/suse man exploit fish stiqz (Mar 13 2001)
Internet Explorer and Services for Unix 2.0 Telnet Client Oliver Friedrichs (Mar 13 2001)
2001 FIRST Conference Roger Safian (Mar 13 2001)
MDKSA-2001:024-1 - sudo update Linux Mandrake Security Team (Mar 13 2001)
Trustix Security Advisory - sudo Trustix Secure Linux Team (Feb 26 2001)
MDKSA-2001:029 - Mesa update Linux Mandrake Security Team (Mar 13 2001)
More Icecast remote vulnerabilities John Viega (Mar 13 2001)
[SECURITY] [DSA-044-1] mailx local exploit debian-security-announce_at_LISTS.DEBIAN.ORG (Mar 13 2001)
Buffer oveflow in FTPFS (linux kernel module) Frank DENIS (Jedi/Sector One) (Mar 13 2001)
Microsoft Security Bulletin MS01-016 (version 2.0) Microsoft Product Security (Mar 13 2001)
Not so random TCP initial sequence numbers Elias Levy (Mar 14 2001)
- Re: Not so random TCP initial sequence numbers Florian Weimer (Mar 16 2001)
[RHSA-2001:028-02] buffer overflow in slrn bugzilla_at_REDHAT.COM (Mar 14 2001)
Solaris /usr/lib/dmi/snmpXdmid vulnerability Job de Haas (Mar 14 2001)
[RHSA-2001:027-02] Updated sgml-tools packages fix insecure temporary file handling bugzilla_at_REDHAT.COM (Mar 14 2001)
[RHSA-2001:029-02] New mutt packages fix IMAP vulnerability/incompatibility bugzilla_at_REDHAT.COM (Mar 14 2001)
vBulletin allows arbitrary code execution Jouko Pynnonen (Mar 15 2001)
Unicode C Nu Omega Tau (Mar 14 2001)
def-2001-11: MDaemon 3.5.4 Dos-Device DoS Peter Gründl (Mar 15 2001)
- Re: def-2001-11: MDaemon 3.5.4 Dos-Device DoS Nelson Brito (Mar 15 2001)
  - Re: def-2001-11: MDaemon 3.5.4 Dos-Device DoS Peter Gründl (Mar 15 2001)
Remote DoS attack against SSH Secure Shell for Windows Servers Vulnerability USSR Labs (Mar 15 2001)
- Re: Remote DoS attack against SSH Secure Shell for Windows Servers Vulnerability Kirsi Niskanen (Mar 16 2001)
Multiple vendors FTP denial of service Frank DENIS (Jedi/Sector One) (Mar 15 2001)
- Re: Multiple vendors FTP denial of service Jeff Dafoe (Mar 15 2001)
  - Re: Multiple vendors FTP denial of service jedi_at_CLARANET.FR (Mar 15 2001)
- Re: Multiple vendors FTP denial of service Daniel Roesen (Mar 15 2001)
- Re: Multiple vendors FTP denial of service Elias Levy (Mar 16 2001)
  - Re: Multiple vendors FTP denial of service Elias Levy (Mar 19 2001)
    - Bash memory exhaustion (was Re: Multiple vendors FTP denial of service) Nick Lamb (Mar 19 2001)
    - Re: Multiple vendors FTP denial of service The Flying Hamster (Mar 20 2001)
- Re: Multiple vendors FTP denial of service Mike Gleason (Mar 15 2001)
  - Re: Multiple vendors FTP denial of service Crist Clark (Mar 16 2001)
- Re: Multiple vendors FTP denial of service JT (Mar 16 2001)
- Re: Multiple vendors FTP denial of service D. J. Bernstein (Mar 17 2001)
  - Re: Multiple vendors FTP denial of service jedi_at_CLARANET.FR (Mar 19 2001)
- Re: Multiple vendors FTP denial of service Pawel Wilk (Mar 20 2001)
- Re: Multiple vendors FTP denial of service Interstellar Overdrive (Mar 22 2001)
[Bug 1066] Changed - Globbing bug - denial of service (fwd) jedi_at_CLARANET.FR (Mar 15 2001)
Immunix OS Security update for slrn Greg KH (Mar 15 2001)
Immunix OS Security update for sgml-tools Greg KH (Mar 15 2001)
Immunix OS Security update for mutt Greg KH (Mar 15 2001)
[SECURITY] DoS vulnerability in ProFTPD The Flying Hamster (Mar 15 2001)
MDKSA-2001:030 - sgml-tools update Linux Mandrake Security Team (Mar 15 2001)
Bug in German Hotfix for MS00-070 Frank Heyne (Mar 16 2001)
IIS 5.0 SEARCH method overflow Georgi Guninski (Mar 16 2001)
- Re: IIS 5.0 SEARCH method overflow Microsoft Security Response Center (Mar 16 2001)
oops, previous message broken Stefan Laudat (Mar 17 2001)
- Re: oops, previous message broken £ukasz Grochal (Mar 19 2001)
Aspseek Buffer Overflow Neil K (Mar 18 2001)
[CLA-2001:386] Conectiva Linux Security Announcement - cups secure_at_CONECTIVA.COM.BR (Mar 16 2001)
[CLA-2001:387] Conectiva Linux Security Announcement - icecast secure_at_CONECTIVA.COM.BR (Mar 19 2001)
nmap and linux 2.4 (was Re: TCP Timestamping ...) Bret (Mar 18 2001)
- Re: nmap and linux 2.4 (was Re: TCP Timestamping ...) Stephen A. Zarkos (Mar 19 2001)
Passive Analysis of SSH (Secure Shell) Traffic Solar Designer (Mar 18 2001)
Microsoft - Personal Web Server Extended UNICODE Directory Traversal Vulnerability Dinos Pastos (Mar 18 2001)
- Re: Microsoft - Personal Web Server Extended UNICODE Directory Traversal Vulnerability Microsoft Security Response Center (Mar 19 2001)
  - Re: Microsoft - Personal Web Server Extended UNICODE Directory Traversal Vulnerability Dinos Pastos (Mar 19 2001)
  - Re: Microsoft - Personal Web Server Extended UNICODE Directory Traversal Vulnerability David F. Skoll (Mar 20 2001)
  - Re: Microsoft - Personal Web Server Extended UNICODE Directory Traversal Vulnerability Michael Brennen (Mar 21 2001)
- Re: Microsoft - Personal Web Server Extended UNICODE Directory Traversal Vulnerability Robert Bihlmeyer (Mar 21 2001)
[CLA-2000:365] Conectiva Linux Security Announcement - Zope secure_at_CONECTIVA.COM.BR (Dec 20 2000)
[CLA-2001:385] Conectiva Linux Security Announcement - mutt secure_at_CONECTIVA.COM.BR (Mar 16 2001)
[CLA-2001:383] Conectiva Linux Security Announcement - slrn secure_at_CONECTIVA.COM.BR (Mar 14 2001)
[CLA-2001:384] Conectiva Linux Security Announcement - cups secure_at_CONECTIVA.COM.BR (Mar 16 2001)
feeble.you!dora.exploit http-equiv_at_excite.com (Mar 18 2001)
- Re: feeble.you!dora.exploit Jeff Beckley (Mar 19 2001)
- Re: feeble.you!dora.exploit http-equiv_at_excite.com (Mar 20 2001)
- Re: feeble.you!dora.exploit http-equiv_at_excite.com (Mar 21 2001)
  - Re: feeble.you!dora.exploit Jeff Beckley (Mar 21 2001)
potential vulnerability of mysqld running with root privileges (can be used as good DoS or r00t expoloit) Pavlov, Lesha (Mar 18 2001)
- Re: potential vulnerability of mysqld running with root privileges Sergei Golubchik (Mar 20 2001)
  - Re: potential vulnerability of mysqld running with root privileges Ryan W. Maple (Mar 20 2001)
- Re: potential vulnerability of mysqld running with root privileges (can be used as good DoS or r00t expoloit) Trond Eivind Glomsrød (Mar 20 2001)
HPUX Security Bulletin HPSBUX0103-146 - How Bad ? Boyce, Nick (Mar 19 2001)
- Re: HPUX Security Bulletin HPSBUX0103-146 - How Bad ? Joe Carnahan (Mar 20 2001)
WebServer Pro All Version Vulnerability Roberto Moreno (Mar 16 2001)
- Re: WebServer Pro All Version Vulnerability Fab Siciliano (Mar 20 2001)
- Re: WebServer Pro All Version Vulnerability Eric D. Williams (Mar 22 2001)
[CLA-2001:388] Conectiva Linux Security Announcement - imap secure_at_CONECTIVA.COM.BR (Mar 19 2001)
def-2001-13: NTMail Web Services DoS Peter Gründl (Mar 20 2001)
RPM building races Ian Lynagh (Mar 19 2001)
- Re: RPM building races Jim Knoble (Mar 20 2001)
  - Re: RPM building races Jim Knoble (Mar 21 2001)
Trustix Security Advisory - mutt tsl_at_TRUSTIX.COM (Mar 20 2001)
Have they found a serious PGP vulnerability?! Pavel Kankovsky (Mar 19 2001)
- Re: Have they found a serious PGP vulnerability?! Peter Hanecak (Mar 21 2001)
MDKSA-2001:031 - mutt update Linux Mandrake Security Team (Mar 19 2001)
DGUX lpsched buffer overflow Luciano Miguel Ferreira Rocha (Mar 19 2001)
def-2001-12: Hursley Software Laboratories Consumer Transaction Framework DoS Peter Gründl (Mar 20 2001)
Honeynet Project Forensic Challenge results challenge_at_HONEYNET.ORG (Mar 19 2001)
Re: potential vulnerability of mysqld running with root privileges(can be used as good DoS or r00t expoloit) Scott Fagg (Mar 19 2001)
- Re: potential vulnerability of mysqld running with root privileges(can be used as good DoS or r00t expoloit) Sergei Golubchik (Mar 21 2001)
- Re: potential vulnerability of mysqld running with root privileges(can be used as good DoS or r00t expoloit) JT (Mar 21 2001)
Re: Microsoft - Personal Web Server Extended UNICODE Directory Tr aversal Vulnerability Shane Youhouse (Mar 20 2001)
MDKSA-2001:030-1 - sgml-tools update Linux Mandrake Security Team (Mar 20 2001)
MDKSA-2001:032 - licq update Linux Mandrake Security Team (Mar 20 2001)
Fwd: Re: Microsoft - Personal Web Server Extended UNICODE Directory Traversal Vulnerability Zack Link (Mar 20 2001)
SurfControl Bypass Vulnerability Witter, Franklin (Mar 20 2001)
- Re: SurfControl Bypass Vulnerability skelly (Mar 21 2001)
- Re: SurfControl Bypass Vulnerability Don Weber (Mar 21 2001)
- Re: SurfControl Bypass Vulnerability Witter, Franklin (Mar 22 2001)
- Re: SurfControl Bypass Vulnerability Chris St. Clair (Mar 22 2001)
  - Re: SurfControl Bypass Vulnerability Darren Reed (Mar 22 2001)
    - Re: SurfControl Bypass Vulnerability Paul Cardon (Mar 23 2001)
  - Re: SurfControl Bypass Vulnerability Andrew Moran (Mar 22 2001)
  - Re: SurfControl Bypass Vulnerability Riad S. Wahby (Mar 22 2001)
- Re: SurfControl Bypass Vulnerability King, John (Mar 22 2001)
- Re: SurfControl Bypass Vulnerability ASMDood (Mar 23 2001)
- Re: SurfControl Bypass Vulnerability Dag-Erling Smorgrav (Mar 23 2001)
- Re: SurfControl Bypass Vulnerability Dan Harkless (Mar 23 2001)
  - Re: SurfControl Bypass Vulnerability Ben Ford (Mar 26 2001)
    - Re: SurfControl Bypass Vulnerability Valdis Kletnieks (Mar 26 2001)
  - Re: SurfControl Bypass Vulnerability c0ncept (Mar 26 2001)
  - Re: SurfControl Bypass Vulnerability Ryan Russell (Mar 26 2001)
Password stored in clear text vulnerability in real time stock trading program Doug Nakatomi (Mar 20 2001)
(ai) Another Instance of the Importance of Safeguarding Private Crypto Keys David Kennedy CISSP (by way of David Kennedy CISSP (Mar 20 2001)

Re: [PGP-USERS] (ai) Another Instance of the Importance of Safeguarding Private Crypto Keys L. Sassaman (Mar 20 2001)

Re: [PGP-USERS] (ai) Another Instance of the Importance ofSafeguarding Private Crypto Keys Craig Ruefenacht (Mar 21 2001)

Yes, they have found a serious PGP vulnerability...sort of Pavel Kankovsky (Mar 20 2001)

Re: Yes, they have found a serious PGP vulnerability...sort of Florian Weimer (Mar 22 2001)

Re: Yes, they have found a serious PGP vulnerability...sort of Pavel Kankovsky (Mar 22 2001)

Re: Yes, they have found a serious PGP vulnerability...sort of Florian Weimer (Mar 22 2001)

Re: Yes, they have found a serious PGP vulnerability...sort of Lutz Donnerhacke (Mar 22 2001)

Re: Yes, they have found a serious PGP vulnerability...sort of Pavel Kankovsky (Mar 24 2001)

Multiple vendors FTP denial of service Peter Timothey Hessler (Mar 20 2001)

Re: Multiple vendors FTP denial of service Stefan Laudat (Mar 20 2001)

Re: Multiple vendors FTP denial of service Nate Eldredge (Mar 21 2001)

Re: Multiple vendors FTP denial of service peterw_at_usa.net (Mar 21 2001)

Re: Multiple vendors FTP denial of service Markku Savela (Mar 21 2001)

fcheck prior to 2.07.59 - vulnerability - improper use of perl 'magic open' btrq (Mar 20 2001)

[RHSA-2001:019-02] Updated sudo packages fixing buffer overrun available bugzilla_at_REDHAT.COM (Mar 21 2001)

[RHSA-2001:022-03] Updated licq packages fixing security problems available bugzilla_at_REDHAT.COM (Mar 21 2001)

SuSE Security Announcement: impad Thomas Biege (Mar 22 2001)

[RHSA-2001:023-03] Updated licq packages fixing security problems available bugzilla_at_REDHAT.COM (Mar 22 2001)

[TL-Security-Announce] New public key Manuel Parayo (Mar 21 2001)

[RHSA-2001:008-02] Updated vim packages available bugzilla_at_REDHAT.COM (Mar 21 2001)

OpenSSH-2.5.2 (fwd) Jonas Eriksson (Mar 22 2001)

otp - the next generation Lukasz Luzar (Mar 21 2001)

Re: otp - the next generation Szilveszter Adam (Mar 22 2001)

Re: otp - the next generation Casper Dik (Mar 23 2001)

Re: otp - the next generation Denis A. Doroshenko (Mar 23 2001)

Re: otp - the next generation Gregory Steuck (Mar 22 2001)

Re: otp - the next generation Tollef Fog Heen (Mar 23 2001)

Re: otp - the next generation Ben Laurie (Mar 23 2001)

Re: otp - the next generation Elias Levy (Mar 23 2001)

Re: otp - the next generation Tristam Fenton-May (Mar 23 2001)

Re: otp - the next generation Dag-Erling Smorgrav (Mar 23 2001)

Windows Sharing Allows Internet Tracking Preston W Chang (Mar 21 2001)

Re: Windows Sharing Allows Internet Tracking 3APA3A (Mar 23 2001)

Re: Windows Sharing Allows Internet Tracking Marc Maiffret (Mar 23 2001)

Microsoft Security Bulletin MS01-017 Microsoft Product Security (Mar 22 2001)

SuSE Security Announcement: nkitb/nkitserv (SuSE-SA:2001:07) Thomas Biege (Mar 22 2001)

SuSE Security Announcement: pop (SuSE-SA:2001:06) Thomas Biege (Mar 22 2001)

ADVISORY SSRT0715 Compaq Management Software Potential Security Vulnerability (fwd) Ben Greenbaum (Mar 22 2001)

MDKSA-2001:033 - openssh update Linux Mandrake Security Team (Mar 22 2001)

ANNOUNCE; CryptoHack 1.0 for PalmOS Iván Arce (Mar 22 2001)

FreeBSD Security Advisory FreeBSD-SA-01:30.ufs-ext2fs FreeBSD Security Advisories (Mar 22 2001)

Compaq Insight Manager Proxy Vuln Brewis, Mark (Mar 22 2001)

FW: Compaq Insight Manager Proxy Vuln Christopher Curtiss (Mar 23 2001)

Czech PGP Flaw Tech Details David Kennedy CISSP (Mar 22 2001)

MDKSA-2001:034 - timed update Linux Mandrake Security Team (Mar 22 2001)

[ Hackerslab bug_paper ] SunOS application perfmon vulnerability ±è¿ëÁØ KimYongJun (Mar 23 2001)

Microsoft KB# to Advisory name mapping Desmond Irvine (Mar 22 2001)

Re: Microsoft KB# to Advisory name mapping Mark Maher (Mar 23 2001)

Re: Microsoft KB# to Advisory name mapping Michael C. Bazarewsky (Mar 23 2001)

Websweeper Infinite HTTP Request DoS by honoriak from [Helisec] honoriak (Mar 22 2001)

Verisign certificates problem Sinclair, Roy (Mar 23 2001)

Re: Verisign certificates problem Elias Levy (Mar 23 2001)

CRLs (was Re: Verisign certificates problem j eric townsend (Mar 23 2001)

Re: CRLs (was Re: Verisign certificates problem Patrick Patterson (Mar 26 2001)

Re: Verisign certificates problem Peter Gutmann (Mar 25 2001)

Re: Verisign certificates problem Peter Gutmann (Mar 25 2001)

Re: Verisign certificates problem Ogle Ron (Rennes) (Mar 25 2001)

Re: Verisign certificates problem Michael Reilly (Mar 26 2001)

Re: Verisign certificates problem Wham Bang (Mar 27 2001)

NT crash dump files insecure by default Craig Boston (Mar 23 2001)

Relative Vulnerability in Phpnuke XML parser tobozo (Mar 23 2001)

FW: Akopia Interchange E-commerce Package Demo Files Vulnerability David Kennedy CISSP (Mar 23 2001)

another format string bug Wojtek Pawlikowski (Mar 23 2001)

Elron IM Products Vulnerability Erik Tayler (Mar 23 2001)

Raptor 6.5 http vulnerability Lysel Christian Emre (Mar 24 2001)

Re: Raptor 6.5 http vulnerability Alexander Bochmann (Mar 26 2001)

Re: Raptor 6.5 http vulnerability Erik Groennerud (Mar 26 2001)

Re: Raptor 6.5 http vulnerability Lysel Christian Emre (Mar 26 2001)

Re: Raptor 6.5 http vulnerability Alexander Bochmann (Mar 26 2001)

Re: Raptor 6.5 http vulnerability Alexander Bochmann (Mar 27 2001)

BeroList 2.5.9 Code Quality Is A Disaster Matthias Andree (Mar 24 2001)

MDKSA-2001:032-1 - licq update Linux Mandrake Security Team (Mar 23 2001)

ILMI community in olicom/crosscomm routers Jacek Lipkowski (Mar 25 2001)

MDKSA-2001:033-1 - openssh update Linux Mandrake Security Team (Mar 23 2001)

MDaemon IMAP Denial Of Service nitr0s_at_HOTMAIL.COM (Mar 24 2001)

Windows Sharing Allows Internet Tracking Bill Sobel (Mar 26 2001)

Re: Windows Sharing Allows Internet Tracking Adam Carter (Mar 25 2001)

def-2001-14: Bea Weblogic Unicode Directory Browsing Peter Gründl (Mar 25 2001)

Re: def-2001-14: Bea Weblogic Unicode Directory Browsing Adam Boileau (Mar 26 2001)

Re: def-2001-14: Bea Weblogic Unicode Directory Browsing Mikhail Iakovlev (Mar 27 2001)

Re: def-2001-14: Bea Weblogic Unicode Directory Browsing Przemyslaw Maciuszko (Mar 28 2001)

602Pro Lansuite Denial Of Service 1.0.34 nitr0s_at_HOTMAIL.COM (Mar 26 2001)

[teso-announce] new release: formatstring-1.1.tar.gz (fwd) Jonas Eriksson (Mar 23 2001)

Netscreen: DMZ Network Receives Some "Denied" Traffic Erik Parker (Mar 26 2001)

http://archives.neohapsis.com/archives/bugtraq/2001-03/0345.html Justin Fry (Mar 26 2001)

security bulletins digest Oonk, Patrick (Mar 26 2001)

Immunix OS Security update for openssh Greg KH (Mar 26 2001)

Windows XP Beta Ingenius (Mar 26 2001)

Re: Windows XP Beta Andrew G. Tereschenko (Mar 27 2001)

ptrace/execve race condition exploit (non brute-force) Wojciech Purczynski (Mar 27 2001)

Re: ptrace/execve race condition exploit (non brute-force) Wouter de Jong (Mar 27 2001)

Re: ptrace/execve race condition exploit (non brute-force) Solar Designer (Mar 27 2001)

Re: ptrace/execve race condition exploit (non brute-force) Mariusz Woloszyn (Mar 27 2001)

Re: ptrace/execve race condition exploit (non brute-force) Solar Designer (Mar 28 2001)

Re: Raptor 6.5 http vulnerability (fwd) Peter Robinson (Mar 27 2001)

Re: Raptor 6.5 http vulnerability (fwd) Alexander Bochmann (Mar 27 2001)

Re: Raptor 6.5 http vulnerability (fwd) Lincoln Yeoh (Mar 27 2001)

advisory UkR hacking team (Mar 27 2001)

def-2001-14: Bea Weblogic Directory Browsing (re-release) Peter Gründl (Mar 27 2001)

Re: def-2001-14: Bea Weblogic Directory Browsing (re-release) Adam Boileau (Mar 27 2001)

Re: def-2001-14: Bea Weblogic Directory Browsing (re-release) Adam Boileau (Mar 28 2001)

Solaris /usr/bin/tip Vulnerability Pablo Sor (Mar 27 2001)

MailSweeper for SMTP Security Problem Russ Hayward (Mar 26 2001)

Re: MailSweeper for SMTP Security Problem Hugo van der Kooij (Mar 27 2001)

Re: MailSweeper for SMTP Security Problem Martin O'Neal (Mar 27 2001)

Re: MailSweeper for SMTP Security Problem Gordon, Paul (Mar 28 2001)

MySQL 3.23.36 is relased (fwd) Jonas Eriksson (Mar 27 2001)

[RHSA-2001:033-04] Updated openssh packages available bugzilla_at_REDHAT.COM (Mar 27 2001)

Immunix OS Security update for kernel Greg KH (Mar 27 2001)

MDKSA-2001:035 - vim update Linux Mandrake Security Team (Mar 27 2001)

[CLA-2001:389] Conectiva Linux Security Announcement - licq secure_at_CONECTIVA.COM.BR (Mar 27 2001)

SonicWall IKE pre-shared key length bug and security concern Steven Griffin (Mar 27 2001)

Re: SonicWall IKE pre-shared key length bug and security concern Ben Nagy (Mar 27 2001)

CRLs (was Re: Verisign certificates problem Michael Reilly (Mar 27 2001)

Remote buffer overflow in DCOM VB T-SQL debugger BindView Security Advisory (Mar 27 2001)

SCO 5.0.6 issues (recon) Secure Network Operations , Inc. (Mar 27 2001)

SCO 5.0.6 issues (lpusers) Secure Network Operations , Inc. (Mar 27 2001)

SCO 5.0.6 issues (lpshut) Secure Network Operations , Inc. (Mar 27 2001)

SCO 5.0.6 issues (lpadmin) Secure Network Operations , Inc. (Mar 27 2001)

[RHSA-2001:025-14] Updated Kerberos 5 and pam_krb5 packages available bugzilla_at_REDHAT.COM (Mar 27 2001)

SCO 5.0.6 issues (lpforms) Secure Network Operations , Inc. (Mar 27 2001)

SCO 5.0.6 MMDF issues (sendmail 8.9.3) Secure Network Operations , Inc. (Mar 27 2001)

Re: SCO 5.0.6 MMDF issues (sendmail 8.9.3) Valdis Kletnieks (Mar 28 2001)

Re: [rapt] RE: Raptor 6.5 http vulnerability William Aguilar (Mar 27 2001)

[CLA-2001:390] Conectiva Linux Security Announcement - sgml-tools secure_at_CONECTIVA.COM.BR (Mar 27 2001)

Microsoft Security Bulletin MS01-018 Microsoft Product Security (Mar 27 2001)

Re: Microsoft Security Bulletin MS01-018 -- BAD SIGNATURE? Caskey (Mar 28 2001)

SCO 5.0.6 MMDF issues (deliver) Secure Network Operations , Inc. (Mar 27 2001)

def-2001-15: Website Pro Remote Manager DoS Peter Gründl (Mar 28 2001)

Security bugs in interactions between IE 5.x, IIS 5.0 and Exchange 2000 Georgi Guninski (Mar 28 2001)

SuSE Security Announcement: joe (SuSE-SA:2001:09) Thomas Biege (Mar 28 2001)

Inframail Denial of Service Vulnerability SNS Research (Mar 27 2001)

Cisco Security Advisory: Cisco Catalyst SSH Protocol Mismatch Vulnerability Cisco Systems Product Security Incident Response Team (Mar 28 2001)

SuSE Security Announcement: eperl (SuSE-SA:2001:08) Thomas Biege (Mar 28 2001)

[CLA-2001:391] Conectiva Linux Security Announcement - openssh secure_at_CONECTIVA.COM.BR (Mar 28 2001)

Microsoft Security Bulletin MS01-019 Microsoft Product Security (Mar 28 2001)

CHINANSL Security Advisory(CSA-200105) lovehacker (Mar 27 2001)

CHINANSL Security Advisory(CSA-200106) lovehacker (Mar 27 2001)

CHINANSL Security Advisory(CSA-200107) lovehacker (Mar 27 2001)

The April Fools 2001 bug in Windows Richard M. Smith (Mar 28 2001)

Microsoft Security Bulletin MS01-017 (version 2.0) Microsoft Product Security (Mar 28 2001)

CCC\Havest exploit r1ccard0 (Mar 28 2001)