Bugtraq: by thread

Bugtraq: by thread

368 messages starting Mar 01 04 and ending Mar 31 04
Date index | Thread index | Author index

Clients broadcast buffer overflow in Red Faction <= 1.20 Luigi Auriemma (Mar 01)
YabbSE (3 on 1) backspace (Mar 01)
- <Possible follow-ups>
- Re: YabbSE (3 on 1) David (Mar 17)
[SECURITY] [DSA 452-1] New libapache-mod-python packages fix denial of service Matt Zimmerman (Mar 01)
mremap(2) full details available Paul Starzetz (Mar 01)
Motorola T720 cell phone DoS vulnerability. Shaun Colley (Mar 01)
- Re: Motorola T720 cell phone DoS vulnerability. John T. Larkin (Mar 02)
Re: New phpBB ViewTopic.php Cross Site Scripting Vulnerability t4c [Founder of GHCIF] (Mar 01)
The Cult of a Cardinal Number Phantasmal Phantasmagoria (Mar 02)
- <Possible follow-ups>
- Re: The Cult of a Cardinal Number Phantasmal Phantasmagoria (Mar 04)
SonicWall VPN/Firewall Appliance - DoS, ARP Flood, Network mapping vulnerability xeno (Mar 02)
- RE: SonicWall VPN/Firewall Appliance - DoS, ARP Flood, Network mapping vulnerability Dennis M. Callan (Mar 02)
- <Possible follow-ups>
- RE: SonicWall VPN/Firewall Appliance - DoS, ARP Flood, Network mapping vulnerability xeno (Mar 03)
Format String vuln in Inktomi Search4.0 Blurred Vision (Mar 02)
OpenLinux: Integer overflow may allow local users to cause a denial of service or possibly execute arbitrary code please_reply_to_security (Mar 02)
[SECURITY] [DSA 454-1] New Linux 2.2.22 packages fix local root exploit (alpha) Martin Schulze (Mar 02)
[FLSA-2004:1284] Updated kernel resolves security vulnerabilities Jesse Keating (Mar 02)
03-02-04 XSS Bug in NetScreen-SA 5000 Series of SSL VPN appliance Lachniet, Mark (Mar 02)
New Internet Explorer Cross Zone/Site Scripting Vulnerability Cheng Peng Su (Mar 03)
- <Possible follow-ups>
- RE: New Internet Explorer Cross Zone/Site Scripting Vulnerability Thor Larholm (Mar 03)
Spider Sales shopping cart software multiple security vulnerabilities S-Quadra Security Research (Mar 03)
Wftpd stat Command Remote Vulnerability Exploit security team 0seen (Mar 03)
- RE: Wftpd stat Command Remote Vulnerability Exploit Alun Jones (Mar 04)
The non-apreciated world of full-disclosure Davide Del Vecchio (Mar 03)
directory traversal in GWeb 0.6 Donato Ferrante (Mar 03)
OpenLinux: rsync heap based overflow please_reply_to_security (Mar 03)
OpenLinux: screen buffer overflow please_reply_to_security (Mar 03)
OpenLinux: Gnupg (gpg) severe bug could compromise almost all ElGamal keys please_reply_to_security (Mar 03)
Coreutils 'dir' integer overflow vulnerability. Shaun Colley (Mar 03)
RE: SonicWall Firewall DoS, ARP Flood, Network Mapping Robert C. Auch (Mar 03)
SGI Advanced Linux Environment security update #13 SGI Security Coordinator (Mar 03)
Cisco Security Advisory: Cisco CSS 11000 Series Content Services Switches Malformed UDP Packet Vulnerability Cisco Systems Product Security Incident Response Team (Mar 04)
A new white paper by Sanctum: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Amit Klein (Mar 04)
[SECURITY] [DSA 455-1] New libxml packages fix arbitrary code execution Martin Schulze (Mar 04)
MDKSA-2004:018 - Updated libxml2 packages fix vulnerability Mandrake Linux Security Team (Mar 04)
Serv-U Real Target and Search ASM Code Tool for Overflow Exploit. lion (Mar 04)
MDKSA-2004:017 - Updated pwlib packages fix vulnerability Mandrake Linux Security Team (Mar 04)
SHOUTcast v1.9.2 remote connect back exploit 0seen security team (Mar 04)
Re: Multiple issues with Mac OS X AFP client Marukka (Mar 04)
Nokia 3410 cell phones software flaw David Arranz (Mar 04)
- Re: [bugtraq] Nokia 3410 cell phones software flaw Erwann Abalea (Mar 04)
OpenLinux: cups denial of service vulnerability please_reply_to_security (Mar 04)
Abobe Reader 5.1 XFDF Buffer Overflow Vulnerability NGSSoftware Insight Security Research (Mar 04)
LNSA-#2004-0004: libxml2 buffer overflow Vincenzo Ciaglia (Mar 04)
GNU Anubis buffer overflows and format string bugs Ulf Härnhammar (Mar 04)
SLWebMail Multiple Buffer Overflow Vulnerabilities (#NISR05022004b) NGSSoftware Insight Security Research (Mar 05)
SLMail Pro Supervisor Report Center Buffer Overflow (#NISR05022004a) NGSSoftware Insight Security Research (Mar 05)
Invision Power Board 1.3 Final Path Disclosure Vulnerability Shaun Colley (Mar 05)
- <Possible follow-ups>
- Re: Invision Power Board 1.3 Final Path Disclosure Vulnerability JeiAr (Mar 05)
[FLSA-2004:1256] Updated util-linux resolves security vulnerability Jesse Keating (Mar 05)
IEEE Security & Privacy CFP Sharif Torpis (Mar 05)
NetScreen Advisory 58412: XSS Bug in NetScreen-SA SSL VPN NetScreen Security Response Team (Mar 05)
Desert Rats vs. Afrika Korps (Haegemonia bug) Luigi Auriemma (Mar 05)
- <Possible follow-ups>
- RE: Desert Rats vs. Afrika Korps (Haegemonia bug) Drew Copley (Mar 08)
VirtuaNews Admin Panel 1.0.3 Pro Cross Site Scripting Vulnerabillity Rafel Ivgi, The-Insider (Mar 05)
- RE: VirtuaNews Admin Panel 1.0.3 Pro Cross Site Scripting Vulnerabillity Ravish (Mar 08)
Re: A new Sanctum white paper: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Jeremiah Grossman (Mar 05)
- Re: "Divide and Conquer" - cross site response header tampering, cookie manipulation, and session fixation Peter Watkins (Mar 08)
- <Possible follow-ups>
- RE: A new Sanctum white paper: "Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics" Amit Klein (Mar 08)
Infosecdaily.net: Expanding our blogging community. Ejovi Nuwere (Mar 05)
Invision Power Board v1.3 Final Cross Site Scripting Vulnerabillity Rafel Ivgi, The-Insider (Mar 05)
[OpenPKG-SA-2004.003] OpenPKG Security Advisory (libxml) OpenPKG (Mar 05)
Norton Antivirus 2002 fails to scan files with special character(s) properly. Bipin Gautam . (Mar 05)
- Re: Norton Antivirus 2002 fails to scan files with special character(s) properly. Marco Marabelli (Mar 06)
O-088: Sun passwd(1) Command Vulnerability Cy Schubert (Mar 05)
Re: Norton Antivirus 2002 fails to scan files with ... [2'nd... UPDATED] Bipin Gautam . (Mar 06)
[SECURITY] [DSA 456-1] New Linux 2.2.19 packages fix local root exploit (arm) Martin Schulze (Mar 06)
TSLSA-2004-0009 - nfs-utils Trustix Security Advisor (Mar 06)
TSLSA-2004-0010 - libxml2 Trustix Security Advisor (Mar 06)
Safari javascript array overflow kang (Mar 07)
Symlink Vulnerability in GNU automake <1.8.3 Stefan Nordhausen (Mar 08)
[OpenPKG-SA-2004.004] OpenPKG Security Advisory (libtool) OpenPKG (Mar 08)
directory traversal in PWebServer 0.3.3 Donato Ferrante (Mar 08)
[ GLSA 200403-01 ] Libxml2 URI Parsing Buffer Overflow Vulnerabilities Tim Yamin (Mar 08)
[ GLSA 200403-02 ] Linux kernel do_mremap local privilege escalation vulnerability Tim Yamin (Mar 08)
Z***ING EMAILS ! http-equiv () excite com (Mar 08)
Antivir for Freebsd doesn't work on 5.X George Swentek (Mar 08)
RE: "Divide and Conquer" - cross site response header tampering, cookie manipulation, and session fixation Amit Klein (Mar 08)
Re: Invision Power Board v1.3 Final Cross Site Scripting Vulnerabillity JeiAr (Mar 08)
[OpenPKG-SA-2004.005] OpenPKG Security Advisory (mutt) OpenPKG (Mar 09)
Invision Power Board v1.3 Final Cross Site Scripting 2 - Addon Rafel Ivgi, The-Insider (Mar 09)
IBM DB2 Remote Command Execution Privilege Upgrade (#NISR09032004) NGSSoftware Insight Security Research (Mar 09)
- Re: IBM DB2 Remote Command Execution Privilege Upgrade (#NISR09032004) Marc Bejarano (Mar 10)
[SECURITY] [DSA 457-1] New wu-ftpd packages fix multiple vulnerabilities Matt Zimmerman (Mar 09)
Establishing contact with Nullsoft Peter Winter-Smith (Mar 09)
Ghost users in Chat Anywhere 2.72 Luigi Auriemma (Mar 09)
MDKSA-2004:019 - Updated python packages fix buffer overflow vulnerability Mandrake Linux Security Team (Mar 10)
Outlook mailto: URL argument injection vulnerability Jouko Pynnonen (Mar 10)
- <Possible follow-ups>
- RE: Outlook mailto: URL argument injection vulnerability Shaun Colley (Mar 11)
[SECURITY] [DSA 458-1] New python2.2 packages fix buffer overflow Matt Zimmerman (Mar 10)
MDKSA-2004:021 - Updated mozilla packages fix multiple vulnerabilities Mandrake Linux Security Team (Mar 10)
Format string bug in EpicGames Unreal engine Luigi Auriemma (Mar 10)
- <Possible follow-ups>
- Re: Format string bug in EpicGames Unreal engine K�ppler (Mar 11)
MDKSA-2004:022 - Updated kdelibs packages fix cookie theft vulnerability Mandrake Linux Security Team (Mar 10)
MDKSA-2004:020 - Updated gdk-pixbuf packages fix BMP-handling vulnerability Mandrake Linux Security Team (Mar 10)
GNU Anubis 3.6.2 remote root exploit Claes M Nyberg (Mar 10)
DoS in wMCam server 2.1.348 Donato Ferrante (Mar 10)
[RHSA-2004:075-01] Updated kdelibs packages resolve cookie security issue bugzilla (Mar 10)
[RHSA-2004:102-01] Updated gdk-pixbuf packages fix denial of service vulnerability bugzilla (Mar 10)
With regards to the Adobe Acrobat Reader advisory (#NISR03022004) NGSSoftware Insight Security Research (Mar 10)
Re: LAN SUITE Web Mail 602Pro Multiple Vulnerabilities Brandon Sturgeon (Mar 10)
Re: HP printers and currency anti-copying measures Dan Harkless (Mar 10)
- Re: HP printers and currency anti-copying measures Dana Hudes (Mar 10)
[SECURITY] [DSA 459-1] New kdelibs, kdelibs-crypto packages fix cookie traversal bug Matt Zimmerman (Mar 10)
[SECURITY] [DSA 460-1] New sysstat packages fix insecure temporary file creation Matt Zimmerman (Mar 10)
[RHSA-2004:093-01] Updated sysstat packages fix security vulnerabilities bugzilla (Mar 11)
Unreal engine updates and Battle Mages advisory Luigi Auriemma (Mar 11)
- Re: Unreal engine updates and Battle Mages advisory Todd Chapman (Mar 11)
Multiple Vulnerabilities in PWS 0.2.2 Donato Ferrante (Mar 11)
- Re: Multiple Vulnerabilities in PWS 0.2.2 Jan De Luyck (Mar 15)
XSS in MyProxy 20030629 Donato Ferrante (Mar 11)
[SECURITY] [DSA 461-1] New calife packages fix buffer overflow Matt Zimmerman (Mar 11)
Re: Outlook mailto: URL argument injection vulnerability MS04-009 (Now CRITICAL) ! K-OTiK Security (Mar 11)
Re: Norton AntiVirus 2002 fails to scan files with ... [2'nd... UPDATED] Message-ID: 20040306040833.28300 Sym Security (Mar 11)
Cpanel 8.*.* have a problem ? Arab VieruZ (Mar 11)
Announcing full functional adore-ng rootkit for 2.6 Kernel stealth (Mar 11)
Multiple vulnerabilities in Hushmail.com Calum Power (Mar 11)
cPanel Secuirty Advisory CPANEL-2004:01-01 J. Nick Koston (Mar 11)
[OpenPKG-SA-2004.006] OpenPKG Security Advisory (uudeview) OpenPKG (Mar 12)
Metamail 'extcompose' script Symlink Vulnerability Shaun Colley (Mar 12)
MS Security Response is a bunch of half-witted morons Nick FitzGerald (Mar 12)
- Re: MS Security Response is a bunch of half-witted morons Walter Wart (Mar 12)
- Re: MS Security Response is a bunch of half-witted morons Kim Scarborough (Mar 12)
Cpanel Request Lets Authenticated Users Conduct Cross-Site Scripting Attacks Fable (Mar 12)
Dogpatch Software CFWebstore 5.0 shopping cart software multiple security vulnerabilities S-Quadra Security Research (Mar 12)
Cpanel 9.1.0 have a problem ? Arab VieruZ (Mar 12)
SGI Advanced Linux Environment security update #14 SGI Security Coordinator (Mar 12)
PLAXO: is that a cure or a disease? http-equiv () excite com (Mar 12)
- <Possible follow-ups>
- Re: PLAXO: is that a cure or a disease? Stacy Martin (Mar 18)
[SECURITY] [DSA 463-1] New samba packages fix privilege escalation in smbmnt Matt Zimmerman (Mar 13)
phpBB 2.0.6d && Earlier Security Issues JeiAr (Mar 13)
Multiple Vendor SOAP server array DoS Amit Klein (Mar 15)
VocalTec Gateway 8 Reverse Directory Transversal + Authorization Bypass Rafel Ivgi, The-Insider (Mar 15)
- spamblocker turns into mail denial of service Dana Hudes (Mar 15)
  - Re: spamblocker turns into mail denial of service Chris Fuhrman (Mar 15)
Rosiello Security's exploit for MDaemon Angelo Rosiello (Mar 15)
ws_ftp overflow john layman (Mar 15)
- Re: ws_ftp overflow nesumin (Mar 16)
  - Re[2]: ws_ftp overflow (WS_FTP Pro 8.0.3 is vulnerable) nesumin (Mar 19)
Multiple Immunity Advisories Dave Aitel (Mar 15)
[SCAN Associates Sdn Bhd Security Advisory] phpBB 2.0.6 and below sql injection pokley (Mar 15)
YaBB/YaBBse Cross Site Scripting Vulnerability Cheng Peng Su (Mar 15)
- <Possible follow-ups>
- RE: YaBB/YaBBse Cross Site Scripting Vulnerability Frog Man (Mar 16)
Opera Array Allocation Managment Exploit d3thStaR (Mar 15)
[waraxe-2004-SA#007 - XSS and SQL injection bugs in 4nguestbook module for PhpNuke] Janek Vind (Mar 15)
[waraxe-2004-SA#005 - XSS in Php-Nuke 7.1.0 - part 2] Janek Vind (Mar 15)
[waraxe-2004-SA#006 - Multiple vulnerabilities in 4nalbum module for PhpNuke] Janek Vind (Mar 15)
Follow-up: Major hack attack on the U.S. Senate eric (Mar 15)
Phorum 5.0.3 Beta && Earlier XSS Issues JeiAr (Mar 15)
[SECURITY] [DSA 464-1] New gdk-pixbuf packages fix denial of service Martin Schulze (Mar 16)
JelSoft vBulletin Multiple XSS Vulnerabilities JeiAr (Mar 16)
Mambo Open Source Multiple Vulnerabilities JeiAr (Mar 16)
ModSecurity 1.7.4 for Apache 2.x remote off-by-one overflow S-Quadra Security Research (Mar 16)
Crafty Game Stack Overflow & Exploit Angelo Rosiello (Mar 16)
Fw: Bilbao Method Exposed FraMe (Mar 16)
- <Possible follow-ups>
- Re: Fw: Bilbao Method Exposed Mark J Cox (Mar 16)
new security alert #66 issued in Oracle web cache Pete Finnigan (Mar 16)
PHPX 2.x - 3.2.4 gdayworld (Mar 16)
New OpenSSL releases fix denial of service attacks [17 March 2004] Mark J Cox (Mar 17)
- Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Marc Bejarano (Mar 17)
  - Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Mark J Cox (Mar 17)
    - Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Marc Bejarano (Mar 17)
- Re: New OpenSSL releases fix denial of service attacks [17 March 2004] Dave Markham (Mar 17)
Cisco Security Advisory: Cisco OpenSSL Implementation Vulnerability Cisco Systems Product Security Incident Response Team (Mar 17)
SUSE Security Announcement: openssl (SuSE-SA:2004:007) Thomas Biege (Mar 17)
MDKSA-2004:023 - Updated openssl packages fix multiple vulnerabilities Mandrake Linux Security Team (Mar 17)
[ESA-20040317-003] 'openssl' Denial of Service vulnerabilities. EnGarde Secure Linux (Mar 17)
FreeBSD Security Advisory FreeBSD-SA-04:05.openssl FreeBSD Security Advisories (Mar 17)
[SECURITY] [DSA 465-1] New openssl packages fix multiple vulnerabilities Matt Zimmerman (Mar 17)
[RHSA-2004:121-01] Updated OpenSSL packages fix vulnerabilities bugzilla (Mar 17)
Vcard 2.8 uninstall script problem saudi linux (Mar 18)
[RHSA-2004:112-01] Updated Mozilla packages fix security issues bugzilla (Mar 18)
[SECURITY] [DSA 466-1] New Linux 2.2.10 packages fix local root exploit (powerpc/apus) Martin Schulze (Mar 18)
RE: [RHSA-2004:112-01] Updated Mozilla packages fix security issu es John . Airey (Mar 18)
[OpenPKG-SA-2004.007] OpenPKG Security Advisory (openssl) OpenPKG (Mar 18)
ptl-2004-02: RealNetworks Helix Server 9 Administration Server Buffer Overflow Pentest Security Alerts (Mar 18)
[waraxe-2004-SA#010 - Multiple vulnerabilities in Error Manager v2.1 for PhpNuke] Janek Vind (Mar 18)
HOTMAIL / PASSPORT: phishing expedition http-equiv () excite com (Mar 18)
Chrome 1.2.0.0 server crash Luigi Auriemma (Mar 18)
TSLSA-2004-0012 - openssl Trustix Security Advisor (Mar 18)
TSLSA-2004-0011 - sysstat Trustix Security Advisor (Mar 18)
mac osx- admin service buffer overflow programming_rocks1 (Mar 19)
- <Possible follow-ups>
- Re: mac osx- admin service buffer overflow programming_rocks1 (Mar 19)
  - Re: mac osx- admin service buffer overflow Mathias Wegner (Mar 19)
EEYE: Internet Security Systems PAM ICQ Server Response Processing Vulnerability Marc Maiffret (Mar 19)
Norton AntiSpam Remote Buffer Overrun (#NISR19042004a) NGSSoftware Insight Security Research (Mar 19)
Norton Internet Security Remote Command Execution (#NISR19042004b) NGSSoftware Insight Security Research (Mar 19)
Eudora 6.0.3 attachment spoof, LaunchProtect Paul Szabo (Mar 19)
Winamp 5.02 Long Filename Buffer Overflow Vulnerability Tobias Welter (Mar 19)
- <Possible follow-ups>
- Re: Winamp 5.02 Long Filename Buffer Overflow Vulnerability b0f www . b0f . net (Mar 20)
Internet Explorer Causing Explorer.exe - Null Pointer Crash Rafel Ivgi, The-Insider (Mar 19)
Samba 'smbprint' script tmpfile vulnerability. Shaun Colley (Mar 19)
- <Possible follow-ups>
- Re: Samba 'smbprint' script tmpfile vulnerability. Gerald (Jerry) Carter (Mar 20)
[ANNOUNCE] Apache HTTP Server 2.0.49 Released (fwd) je (Mar 19)
[Full-Disclosure] iDEFENSE Security Advisory 03.19.04: Borland Interbase admin.ib Administrative Access Vulnerability idlabs-advisories (Mar 20)
XP SP2 is out Gadi Evron (Mar 20)
Ref: NGSSoftware Advisories NISR19042004a and NISR19042004b Sym Security (Mar 20)
Any dissasemblies of the Witty worm yet? Nicholas Weaver (Mar 20)
- Re: Any dissasemblies of the Witty worm yet? Kostya Kortchinsky (Mar 20)
Concerning The Recent Invision power Board Issues GulfTech Security (Mar 20)
The witty worm Gadi Evron (Mar 20)
- Re: The witty worm Gadi Evron (Mar 20)
- Re: The witty worm Gadi Evron (Mar 20)
Apache mod_disk_cache stores client authentication credentials on disk Andreas Steinmetz (Mar 20)
phpBB profile.php Cross Site Scripting Vulnerability Cheng Peng Su (Mar 22)
- <Possible follow-ups>
- RE: Fw: phpBB profile.php Cross Site Scripting Vulnerability micheal () michealcottingham com (Mar 22)
DSL Modem Ericsson HM220dp Exploit Roberto Dapino (Mar 22)
Phpbb 2.0.7a And Earlier Secuity Issues JeiAr (Mar 22)
- <Possible follow-ups>
- Re: Phpbb 2.0.7a And Earlier Secuity Issues JeiAr (Mar 25)
Invision Gallery SQL Injection Vulnerabilities JeiAr (Mar 22)
xine-check/xine-bugreport symlink vulnerability. Shaun Colley (Mar 22)
Invision Power Top Site List SQL Injection Vulnerability JeiAr (Mar 22)
directory traversal in xweb 1.0 Donato Ferrante (Mar 22)
Mod_Survey security advisory: Script injection bug Joel Palmius (Mar 22)
Vulnerabilities in Member Management System 2.1 Manuel Lopez (Mar 22)
Vulnerabilities in News Manager Lite 2.5 & News Manager Lite administration Manuel Lopez (Mar 22)
[waraxe-2004-SA#009 - Non-critical Sql injection and XSS bug in PhpBB 2.0.6c] Janek Vind (Mar 23)
[waraxe-2004-SA#008 - easy way to get superadmin rights in PhpNuke 6.x-7.1.0] Janek Vind (Mar 23)
[waraxe-2004-SA#011 - Multiple vulnerabilities in MS Analysis v2.0 module for PhpNuke] Janek Vind (Mar 23)
Sarca rainbow tables on-line cracking service Inode (Mar 23)
Remotely Exploitable Cross-Site Scripting in Hotmail and Yahoo (GM#005-MC) GreyMagic Software (Mar 23)
ALLO ALLO WS_FTP Server Hugh Mann (Mar 23)
Open the WS_FTP Server backdoor to SYSTEM Hugh Mann (Mar 23)
- Re: Open the WS_FTP Server backdoor to SYSTEM Todd C. Campbell (Mar 23)
More Cpanel Vuls (cross site scripting) Fable (Mar 23)
Server freeze in The Rage 1.01 Luigi Auriemma (Mar 23)
Think of the buffers! Won't somebody think of the buffers?! Hugh Mann (Mar 23)
How to crash a harddisk - the Ipswitch WS_FTP Server way Hugh Mann (Mar 23)
Advisory 03/2004: Multiple (13) Ethereal remote overflows Stefan Esser (Mar 23)
Immunity Advisory: dtlogin remote root Dave Aitel (Mar 23)
- Re: Immunity Advisory: dtlogin remote root Johan A . van Zanten (Mar 24)
  - Re: Immunity Advisory: dtlogin remote root Dave Aitel (Mar 24)
R7-0018: OpenBSD isakmpd payload handling denial-of-service vulnerabilities advisory (Mar 23)
Immunity Advisory: Solaris local kernel root Dave Aitel (Mar 23)
- Re: Immunity Advisory: Solaris local kernel root Casper Dik (Mar 24)
  - Re: Immunity Advisory: Solaris local kernel root Dave Aitel (Mar 25)
    - Re: Immunity Advisory: Solaris local kernel root Casper Dik (Mar 25)
    - Re: Immunity Advisory: Solaris local kernel root Dave Aitel (Mar 26)
[SECURITY] [DSA 467-1] New ecartis packages fix several vulnerabilities Matt Zimmerman (Mar 24)
TrendMacro Interscan Viruswall Directory Traversal Tri Huynh (Mar 24)
- Re: TrendMacro Interscan Viruswall Directory Traversal Brian Keefer (Mar 25)
  - Re: TrendMicro (not Macro) Interscan Viruswall Directory Traversal Tri Huynh (Mar 25)
HP Web JetAdmin vulnerabilities. wirepair (Mar 24)
- Re: HP Web JetAdmin vulnerabilities. H D Moore (Mar 24)
Buffer overflow in PicoPhone 1.63 Luigi Auriemma (Mar 24)
Broadcast client buffer-overflow in Terminator 3 1.0 Luigi Auriemma (Mar 24)
Dameware Passes Weak File Encryption Key in the Clear ax09001h (Mar 24)
Dark Age of Camelot login client vulnerability to man in the middle attack Todd Chapman (Mar 24)
mysqlbug tmpfile/symlink vulnerability. Shaun Colley (Mar 25)
Check Point SmartDashboard Buffer Overflow Andreas Constantinides (MegaHz) (Mar 25)
[SECURITY] [DSA 468-1] New emil packages fix multiple vulnerabilities Matt Zimmerman (Mar 25)
- <Possible follow-ups>
- Re: [SECURITY] [DSA 468-1] New emil packages fix multiple vulnerabilities Ulf Härnhammar (Mar 25)
New Adventures In Phishing Jim Halfpenny (Mar 25)
GLSA200403-04 Multiple security vulnerabilities in Apache 2 Aida Escriva-Sammer (Mar 25)
Remote crash in Etherlords I 1.07 and II 1.03 Luigi Auriemma (Mar 25)
UPDATED: MS Word - password protection vulnerabilty Andrew W Barkley (Mar 25)
- R: UPDATED: MS Word - password protection vulnerabilty s . zdrojewski (Mar 26)
- <Possible follow-ups>
- UPDATED: MS Word - password protection vulnerabilty Andrew Barkley (Mar 25)
eSignal v7 remote buffer overflow (exploit) Vizzy (Mar 25)
OpenLinux: mutt remote buffer overflow please_reply_to_security (Mar 26)
OpenLinux: mc Updated packages resolve local buffer overflow vulnerability please_reply_to_security (Mar 26)
SGI Advanced Linux Environment security update #15 SGI Security Coordinator (Mar 26)
SGI Advanced Linux Environment security update #16 SGI Security Coordinator (Mar 26)
NetSupport School Pro: Password Encryption Weaknesses spiffomatic 64 (Mar 26)
Tomcat 5.0.14: remote DoS WU Fei Liang (Mar 26)
[waraxe-2004-SA#012 - Multiple vulnerabilities in XMB Forum 1.8 SP3 and 1.9 beta] Janek Vind (Mar 26)
[waraxe-2004-SA#013 - Critical sql injection bug in PhpBB 2.0.8 and in older versions] Janek Vind (Mar 26)
Blogger XSS Vulnerability Ferruh Mavituna (Mar 26)
RE: MS Word - password protection vulnerabilty C Ryll (Mar 26)
MS Outlook/Outlook Express Preview Pane Security Issue Jeff Uslan (Mar 26)
- Re: MS Outlook/Outlook Express Preview Pane Security Issue Nexus (Mar 26)
- <Possible follow-ups>
- RE: MS Outlook/Outlook Express Preview Pane Security Issue Drew Copley (Mar 26)
phpBB2 2.0.8 privmsg.php SQL injection patch (critical). Shaun Colley (Mar 26)
LNSA-#2004-0006: bug workaround for Apache 2.0.48 Vincenzo Ciaglia (Mar 26)
freshmeat.net: XSS Attack due to improper comment filtering. Steve Kemp (Mar 26)
bblog 0.7.2 cross site scripting penfold (Mar 26)
Nstxd vulnerability laurent oudot (Mar 26)
Re: [waraxe-2004-SA#013 - Critical sql injection bug in PhpBB 2.0.8 and in older versions] JeiAr (Mar 26)
- <Possible follow-ups>
- Re: [waraxe-2004-SA#013 - Critical sql injection bug in PhpBB 2.0.8 and in older versions] Benjamin Tolman (Mar 29)
Strange traffic - Outgoing TCP 3127/3198 (Not mydoom) New worm? Steve Browning (Mar 27)
Another ISS BlackIce & RealSecure Update ? K-OTiK Security (Mar 27)
- <Possible follow-ups>
- Another ISS BlackIce & RealSecure Update ? Jeff (Mar 27)
New worm? Karousel (Mar 27)
- Re: New worm? Gadi Evron (Mar 29)
- Re: New worm? Charles Hamby (Mar 29)
- <Possible follow-ups>
- re: New worm? http-equiv () excite com (Mar 29)
systrace silently patches full local bypass vulnerability on Linux spender (Mar 29)
- Re: systrace silently patches full local bypass vulnerability on Linux stealth (Mar 29)
Ethereal(v0.10.0-0.10.2) IGAP Dissector Message Overflow Exploit Eye on Security India (Mar 29)
iss_pam1.dll remote exploits Sam (Mar 29)
[ GLSA 200403-05 ] Linux kernel do_mremap local privilege escalation vulnerability Tim Yamin (Mar 29)
phpBB 2.0.8 Exploit JeiAr (Mar 29)
PhotoPost PHP Pro Multiple Vulnerabilities JeiAr (Mar 29)
Multiple Vulnerabilities in Cloisterblog web blog/journal Dotho (Mar 29)
[RHSA-2004:134-01] Updated squid package fixes security vulnerability bugzilla (Mar 29)
A-CART Pro & A-CART 2.0 Input Validation Holes Manuel Lopez (Mar 29)
[ GLSA 200403-05 ] UUDeview MIME Buffer Overflow Tim Yamin (Mar 29)
WebCT Campus Edition 4.1 - Cross site scripting using CSS @import Simon Boulet (Mar 29)
FreeBSD Security Advisory FreeBSD-SA-04:06.ipv6 FreeBSD Security Advisories (Mar 29)
vuln ShelzZ (Mar 29)
[ GLSA 200403-08 ] oftpd DoS vulnerability Kurt Lieber (Mar 29)
LNSA-#2004-0007: Multiple security problems in Ethereal Vincenzo Ciaglia (Mar 29)
[ GLSA 200403-07 ] Multiple remote overflows and vulnerabilities in Ethereal Kurt Lieber (Mar 29)
[SECURITY] [DSA 469-1] New libpam-pgsql packages fix SQL injection Martin Schulze (Mar 29)
[ GLSA 200403-06 ] Multiple remote buffer overflow vulnerabilities in Courier Kurt Lieber (Mar 29)
new internet explorer exploit (was new worm) Jelmer (Mar 29)
- Addressing Cisco Security Issues Geo. (Mar 29)
  - Re: Addressing Cisco Security Issues Jason Dodson (Mar 29)
  - Re: Addressing Cisco Security Issues Clayton Kossmeyer (Mar 30)
- Re: new internet explorer exploit (was new worm) Void (Mar 29)
  - Re: new internet explorer exploit (was new worm) Jelmer (Mar 30)
  - Re: new internet explorer exploit (was new worm) Nick FitzGerald (Mar 30)
- <Possible follow-ups>
- RE: new internet explorer exploit (was new worm) Drew Copley (Mar 29)
  - Re: new internet explorer exploit (was new worm) Berend-Jan Wever (Mar 30)
- RE: new internet explorer exploit (was new worm) Thor Larholm (Mar 30)
[ GLSA 200403-09 ] Buffer overflow in Midnight Commander Kurt Lieber (Mar 29)
IE ms-its: and mk:@MSITStore: vulnerability roozbeh afrasiabi (Mar 29)
- <Possible follow-ups>
- Re: IE ms-its: and mk:@MSITStore: vulnerability Lise Moorveld (Mar 30)
- Re: IE ms-its: and mk:@MSITStore: vulnerability roozbeh afrasiabi (Mar 31)
Exensive cPanel Cross Site Scripting sullo (Mar 30)
security enforcement - new monitor for winnt Liu Die Yu (Mar 30)
- Re: security enforcement - new monitor for winnt Amir Mohammadkhani-Aminabadi (Mar 30)
  - Re: security enforcement - new monitor for winnt Liu Die Yu (Mar 31)
- RE: security enforcement - new monitor for winnt Oliver Lavery (Mar 31)
  - RE: security enforcement - new monitor for winnt Liu Die Yu (Mar 31)
- <Possible follow-ups>
- Re: security enforcement - new monitor for winnt http-equiv () excite com (Mar 30)
TSLSA-2004-0015 - tcpdump Trustix Security Advisor (Mar 30)
clamd - NEVER use "%f" in your "VirusEvent" Rene (Mar 30)
TSLSA-2004-0017 - apache Trustix Security Advisor (Mar 30)
Heap overflow in MPlayer blexim (Mar 30)
MPlayer Security Advisory #002 - HTTP parsing vulnerability Gabucino (Mar 30)
Problem with customized login pages for Oracle SSO advisories (Mar 30)
Linbit linbox Multiple Vulnerabilities Martin Eiszner (Mar 30)
R7-0017: TCPDUMP ISAKMP payload handling denial-of-service vulnerabilities advisory (Mar 30)
NetSky.q Virus. Looking for more detailed information on how the DOS will be performed. Paul (Mar 30)
- Re: NetSky.q Virus. Looking for more detailed information on how the DOS will be performed. Joe Stewart (Mar 30)
  - IPv4 fragmentation --> The Rose Attack gandalf (Mar 31)
    - Re: IPv4 fragmentation --> The Rose Attack stanislav shalunov (Mar 31)
phpkit suffers (reale stupid) XSS vuln. Yanosz (Mar 30)
White Paper - Web Application Worms: Myth or Reality? Imperva Application Defense Center (Mar 30)
- Re: White Paper - Web Application Worms: Myth or Reality? Nicholas Weaver (Mar 30)
MDKSA-2004:024 - Updated ethereal packages fix multiple vulnerabilities Mandrake Linux Security Team (Mar 31)
MDKSA-2004:025 - Updated squid packages fix vulnerability Mandrake Linux Security Team (Mar 31)
CactuSoft CactuShop v5.x shopping cart software multiple security vulnerabilities S-Quadra Security Research (Mar 31)
[ GLSA 200403-14 ] Multiple Security Vulnerabilities in Monit Aida Escriva-Sammer (Mar 31)
[ GLSA 200403-12 ] OpenLDAP DoS Vulnerability Joshua J. Berry (Mar 31)
[ GLSA 200403-10 ] Fetchmail 6.2.5 fixes a remote DoS Kurt Lieber (Mar 31)
[ GLSA 200403-13 ] Remote buffer overflow in MPlayer Kurt Lieber (Mar 31)
[RHSA-2004:137-01] Updated Ethereal packages fix security issues bugzilla (Mar 31)
cdp buffer overflow vulnerability Shaun Colley (Mar 31)
- <Possible follow-ups>
- Re: cdp buffer overflow vulnerability Vade 79 (Mar 31)
[ GLSA 200403-11 ] Squid ACL [url_regex] bypass vulnerability Kurt Lieber (Mar 31)
Re: new internet explorer exploit (was new worm) roozbeh afrasiabi (Mar 31)
- Re: new internet explorer exploit (was new worm) mgotts (Mar 31)
Followup: vuln in WinBlox monitor for winnt Oliver Lavery (Mar 31)
- <Possible follow-ups>
- RE: Followup: vuln in WinBlox monitor for winnt Drew Copley (Mar 31)
  - RE: Followup: vuln in WinBlox monitor for winnt Oliver Lavery (Mar 31)
NOT GOOD: Outlook Express 6 + Internet Explorer 6 http-equiv () excite com (Mar 31)
RogerWilco: new funny bugs Luigi Auriemma (Mar 31)
[CLA-2004:833] Conectiva Security Announcement - mc Conectiva Updates (Mar 31)
Re: cdp buffer overflow vulnerability - updated details Shaun Colley (Mar 31)
[CLA-2004:834] Conectiva Security Announcement - openssl Conectiva Updates (Mar 31)
[CLA-2004:835] Conectiva Security Announcement - ethereal Conectiva Updates (Mar 31)
Bugfinder Being Indicted As Criminal ("Counterfeiter") in France Drew Copley (Mar 31)
Open Source Vulnerability Database Opens for Public Access fbr (Mar 31)
TOOL: Adder - runtime patching in python Oliver Lavery (Mar 31)
OpenLinux: util-linux could leak sensitive data please_reply_to_security (Mar 31)
Google using Expired Cert and SSLv2 Matthew S. Hamrick (Mar 31)

Previous period

Next period