Bugtraq: by thread

DMA[2005-0501a] - 'ARPUS/Ce setuid buffer overflow and file overwrite' KF (lists) (Apr 30 2005)
Multiple Vulnerabilities in Video Cam Server 1.0.0 Donato Ferrante (May 02 2005)
[ GLSA 200505-01 ] Horde Framework: Multiple XSS vulnerabilities Luke Macken (May 01 2005)
Clients format string and server crash in Mtp-Target 1.2.2 Luigi Auriemma (May 01 2005)
Insecure pty permissions in OS X < 10.4 Matt Johnston (May 01 2005)
Re: Apache hacks (./atac, d0s.txt) a.list.address_at_gmail.com (Apr 30 2005)
- Re: Apache hacks (./atac, d0s.txt) Chris Umphress (Apr 30 2005)
- Re: Apache hacks (./atac, d0s.txt) Sagiko (Apr 30 2005)
- Re: Apache hacks (./atac, d0s.txt) Daniel Cid (Apr 29 2005)
- Re: Apache hacks (./atac, d0s.txt) Luiz Henrique (Apr 29 2005)
- Re: Apache hacks (./atac, d0s.txt) Skip Carter (Apr 29 2005)
- Re: Apache hacks (./atac, d0s.txt) Robert Zilbauer (Apr 29 2005)
- Re: Apache hacks (./atac, d0s.txt) KF (lists) (Apr 29 2005)
- Re: Apache hacks (./atac, d0s.txt) Jay D. Dyson (Apr 29 2005)
- Re: Apache hacks (./atac, d0s.txt) Steve Kemp (Apr 29 2005)
- Re: Apache hacks (./atac, d0s.txt) Nick Bright (May 02 2005)
Microsoft WINS Vulnerability + OS/SP Scanner class (Apr 30 2005)
Defcon Capture the Flag registration is open Kenshoto (Apr 30 2005)
[ GLSA 200504-30 ] phpMyAdmin: Insecure SQL script installation Sune Kloppenborg Jeppesen (Apr 30 2005)
Golden FTP Server Pro Remote Buffer Overflow Exploit mohamed amhemed (Apr 30 2005)
JGS-Portal 3.0.1 SQL-Injection admin_at_batznet.com (Apr 30 2005)
Regions bank phishing scam Ryan S (Apr 29 2005)
Can't trust COMODO Gunter Ollmann (NGS) (May 02 2005)
Re: Privilege escalation in BulletProof FTP Server v2.4.0.31 [PoC] Jerome ATHIAS (Apr 29 2005)
Directory Traversal Vuln - RaidenFTPD 2.4 < Build 2241 Lachlan. H (May 02 2005)
[CLA-2005:952] Conectiva Security Announcement - kernel Conectiva Updates (May 02 2005)
tHorK FrameWork Beta v0.1::: another exploit framework gilbert nzeka (May 02 2005)
ASP.NET __VIEWSTATE crypto validation prone to replay attacks Michal Zalewski (May 03 2005)
- RE: ASP.NET __VIEWSTATE crypto validation prone to replay attacks Tim Farley (May 03 2005)
- Re: ASP.NET __VIEWSTATE crypto validation prone to replay attacks Michal Zalewski (May 05 2005)
  - Re: ASP.NET __VIEWSTATE crypto validation prone to replay attacks Michal Zalewski (May 05 2005)
    - Re: ASP.NET __VIEWSTATE crypto validation prone to replay attacks Anton Ivanov (May 12 2005)
- Re: ASP.NET __VIEWSTATE crypto validation prone to replay attacks H D Moore (May 03 2005)
[SECURITY] [DSA 720-1] New smartlist packages fix unauthorised un/subscription Martin Schulze (May 03 2005)
[HSC Security Group] ASP Inline Corporate Calendar SQL injection Zinho (May 03 2005)
Advisories for 4 vulnerabilities addressed by Apple SU 2005-005 David Remahl (May 03 2005)
Multiple SQL injections and XSS in FishCart 3.1 dcrab (May 03 2005)
Golden Ftp Server Pro - Directory Traversal Vuln Lachlan. H (May 03 2005)
Authentication bypass, sql injections and xss in ArticleLive 2005 dcrab (May 03 2005)
- Re: Authentication bypass, sql injections and xss in ArticleLive 2005 Steven M. Christey (May 10 2005)
iDEFENSE Security Advisory 05.03.05: Mac OS X Server NeST -target Buffer Overflow Vulnerability iDEFENSE Labs (May 03 2005)
Multiple vulnerabilities in Merak Mail Server 8.0.3 with Icewarp Web Mail 5.4.2 ShineShadow (May 03 2005)
Gossamer Threads Links SQL login XSS Vulnerability Nathan House (May 04 2005)
leafnode security announcement leafnode-SA-2005-01 Matthias Andree (May 04 2005)
Local file detection bug found through Adobe SVG Viewer Hyperdose Security (May 04 2005)
iDEFENSE Security Advisory 05.04.05: Apple Mac OS X vpnd Server_id Buffer Overflow Vulnerability iDEFENSE Labs (May 04 2005)
directory traversal in SimpleCam 1.2 Donato Ferrante (May 04 2005)
MRO Maximo v4 & v5 Felix (May 05 2005)
MegaBook V2.0 - Cross Site Scripting Exploit Spy Hat (May 05 2005)
- Re: MegaBook V2.0 - Cross Site Scripting Exploit Morning Wood (May 06 2005)
- Re: MegaBook V2.0 - Cross Site Scripting Exploit Spy Hat (May 08 2005)
Oracle 9i / 10g Fine Grained Auditing Issue Alexander Kornbrust (May 05 2005)
Oracle 10g DBMS_SCHEDULER SESSION_USER issue Alexander Kornbrust (May 05 2005)
dSMTP - SMTP Mail Server 3.1b Linux Remote Root Format String Exploit cybertronic_at_gmx.net (May 05 2005)
Multiple vulnerabilities in myBloggie 2.1.1 Alberto Trivero (May 05 2005)
[USN-113-1] libnet-ssleay-perl vulnerability Martin Pitt (May 03 2005)
Multiple Vulnerabilities In SitePanel2 GulfTech Security Research (May 02 2005)
Multiple Vulnerabilities In osTicket GulfTech Security Research (May 02 2005)
Local root vuln in VPN daemon on MacOS X Pieter de Boer (May 04 2005)
Re: AWStats <= 6.4 Multiple vulnerabilities Laurent Destailleur (May 03 2005)
[USN-116-1] gzip vulnerabilities Martin Pitt (May 04 2005)
[USN-118-1] PostgreSQL vulnerabilities Martin Pitt (May 04 2005)
DMA[2005-0502a] - 'Apple OSX multiple Bluetooth vulnerabilities' Kevin Finisterre (May 03 2005)
[hackgen-2005-#004] - Multiple bugs in MidiCart PHP Shopping Cart Exoduks (May 05 2005)
[USN-114-1] kimgio vulnerability Martin Pitt (May 03 2005)
[USN-117-1] cvs vulnerability Martin Pitt (May 04 2005)
[USN-115-1] Kommander vulnerability Martin Pitt (May 03 2005)
Gamespy cd-key validation system: Cd-key never in use Luigi Auriemma (May 04 2005)
Mac OS 10.4: new-account-wizzard in Mail 2.0 sends clear-text passwords Markus W�rle (May 04 2005)
Multiple vulnearabilities in e107 cms hennoj_at_gmail.com (May 03 2005)
[ GLSA 200505-02 ] Oops!: Remote code execution Luke Macken (May 05 2005)
Sql Injection in CJ Ultra Plus v1.0.3-1.0.4 Kold (May 05 2005)
MDKSA-2005:082 - Updated OpenOffice.org packages fix heap overflow vulnerability Mandriva Security Team (May 06 2005)
Multiple Vulnerabilities In Invision Power Board GulfTech Security Research (May 05 2005)
MDKSA-2005:081 - Updated XFree86/XOrg packages fix libXpm vulnerabilities Mandriva Security Team (May 05 2005)
FreeBSD Security Advisory FreeBSD-SA-05:06.iir FreeBSD Security Advisories (May 05 2005)
FreeBSD Security Advisory FreeBSD-SA-05:07.ldt FreeBSD Security Advisories (May 05 2005)
FreeBSD Security Advisory FreeBSD-SA-05:08.kmem FreeBSD Security Advisories (May 05 2005)
PHP Advanced Transfer Manager v1.21 tjomi4_at_gmail.com (May 06 2005)
[SEC-1 LTD] RSA SecurID Web Agent Heap Overflow Gary O'leary-Steele (May 06 2005)
[SECURITY] [DSA 721-1] New squid packages fix ACL bypass Martin Schulze (May 06 2005)
[USN-119-1] tcpdump vulnerabilities Martin Pitt (May 06 2005)
[USN-122-1] Squid vulnerability Martin Pitt (May 06 2005)
[USN-121-1] OpenOffice.org vulnerability Martin Pitt (May 06 2005)
[USN-120-1] Apache 2 vulnerability Martin Pitt (May 06 2005)
Secure Science Corporation Advisory CSA-056 SSC Advisory Notice (May 02 2005)
[USN-123-1] Xine library vulnerabilities Martin Pitt (May 06 2005)
[ GLSA 200505-03 ] Ethereal: Numerous vulnerabilities Sune Kloppenborg Jeppesen (May 06 2005)
4d WebSTAR 5.x Web Server Mac OS X Buffer Overflow Braden Thomas (May 06 2005)
firefox 1.0.3 spoof+auto dl john smith (May 07 2005)
- Re: firefox 1.0.3 spoof+auto dl Paul (May 08 2005)
PwsPHP v1.2.2 Final - Multiples vulnerabilities SecuBox fRoGGz (May 07 2005)
[ GLSA 200505-04 ] GnuTLS: Denial of Service vulnerability Matthias Geerdsen (May 09 2005)
[SECURITY] [DSA 723-1] New XFree86 packages fix arbitrary code execution Martin Schulze (May 09 2005)
Firefox Remote Compromise Leaked Paul (May 08 2005)
Firefox Remote Compromise Technical Details Paul (May 08 2005)
[SECURITY] [DSA 722-1] New smail packages fix arbitrary code execution Martin Schulze (May 09 2005)
NISCC Vulnerability Advisory IPSEC - 004033 albatross_at_tim.it (May 09 2005)
Announcement: The Web Security Mailing List contact_at_webappsec.org (May 08 2005)
[SecurityLab] Ethereal 0.10.10 SIP Dissector Overflow Ejovi Nuwere (May 07 2005)
phpbb 2.0.15 released - patches high critical vuln Paul Laudanski (May 07 2005)
- Re: phpbb 2.0.15 released - patches high critical vuln Paul Laudanski (May 12 2005)
Re: Can't trust COMODO - An Update Gunter Ollmann (May 09 2005)
Advanced Guestbook 2.3.1 Spy Hat (May 07 2005)
Easy Message Board Directory Traversal and Remote Command SoulBlack Group (May 08 2005)
Viruses can evade Sophos Anti-Virus xerces8 (May 09 2005)
[ GLSA 200505-05 ] gzip: Multiple vulnerabilities Sune Kloppenborg Jeppesen (May 09 2005)
[ GLSA 200505-06 ] TCPDump: Decoding routines Denial of Service vulnerability Sune Kloppenborg Jeppesen (May 09 2005)
Esqo advisory: GeoVision Digital Video Surveillance System - Multiple authentication issues Tirath Rai (May 09 2005)
Crash in Zoidcom 1.0 beta 4 Luigi Auriemma (May 10 2005)
New Macromedia Security Zone Bulletin Posted Macromedia Security Zone (May 10 2005)
TSLSA-2005-0021 - squid Trustix Security Advisor (May 10 2005)
TCP/IP implementations do not adequately validate ICMP error messages Alok Menghrajani - Ilion Security SA (May 10 2005)
- Re: TCP/IP implementations do not adequately validate ICMP error messages Peter Keel (May 11 2005)
- Re: TCP/IP implementations do not adequately validate ICMP error messages Maciej Soltysiak (May 11 2005)
- Re: SPAM-HIGH: TCP/IP implementations do not adequately validate ICMP error messages David Nichols (May 11 2005)
- RE: TCP/IP implementations do not adequately validate ICMP error messages David Schwartz (May 10 2005)
Firefox Crash?? orebla Orebla (May 10 2005)
- Re: Firefox Crash?? Joxean Koret (May 10 2005)
- Re: Firefox Crash?? Christophe Lucas (May 11 2005)
- Re: Firefox Crash?? Jeremy Kelley (May 11 2005)
[ GLSA 200505-08 ] HT Editor: Multiple buffer overflows Sune Kloppenborg Jeppesen (May 10 2005)
CAIF 1.2 released Oliver Goebel (May 10 2005)
WowBB view_user.php SQL Injection Vulnerability Megasky (May 10 2005)
Gamespy cd-key validation system: "Cd-key in use" DoS versus many games Luigi Auriemma (May 10 2005)
[ GLSA 200505-07 ] libTIFF: Buffer overflow Sune Kloppenborg Jeppesen (May 10 2005)
remote root security bug in ethereal 0.9.13 >= and <= 0.10.10 suresec advisories (May 09 2005)
Linux kernel ELF core dump privilege elevation Paul Starzetz (May 11 2005)
- Re: Linux kernel ELF core dump privilege elevation Bruno Lustosa (May 11 2005)
  - Re: Linux kernel ELF core dump privilege elevation codeQ (May 12 2005)
- Re: Linux kernel ELF core dump privilege elevation Greg KH (May 11 2005)
  - Re: Linux kernel ELF core dump privilege elevation Greg KH (May 11 2005)
  - Re: Linux kernel ELF core dump privilege elevation Paul Starzetz (May 11 2005)
- Re: Linux kernel ELF core dump privilege elevation (kernel module workaround) Andrew Griffiths (May 11 2005)
  - Re: Linux kernel ELF core dump privilege elevation (kernel module workaround) chris (May 12 2005)
- Re: Linux kernel ELF core dump privilege elevation antoine (May 11 2005)
  - Re: Linux kernel ELF core dump privilege elevation Pedro Venda (May 13 2005)
MDKSA-2005:083 - Updated ethereal packages fix multiple vulnerabilities Mandriva Security Team (May 10 2005)
Metasploit Framework v2.4 H D Moore (May 11 2005)
Cisco Security Advisory: FWSM URL Filtering Solution TCP ACL Bypass Vulnerability Cisco Systems Product Security Incident Response Team (May 11 2005)
[HSC Security Group] MaxWebPortal - Multiple SQL injection/XSS Zinho (May 11 2005)
[Scan Associates Advisory] Neteyes Nexusway multiple vulnerability pokley (May 10 2005)
Commonly used disk imaging and wiping tools can be tricked to miss parts of a disk Arne Vidstr�m (May 11 2005)
- Re: Commonly used disk imaging and wiping tools can be tricked to miss parts of a disk Thor Arne Johansen (May 12 2005)
- Re: Commonly used disk imaging and wiping tools can be tricked to miss parts of a disk Arne Vidstr�m (May 25 2005)
Guesbook Pro XSS & HTML Injection SoulBlack Group (May 10 2005)
Ethereal <= 0.10.10 SIP dissector stack overflow DoS exploit Shaun Colley (May 11 2005)
BakBone NetVault last warning class (May 11 2005)
OpenServer 5.0.6 OpenServer 5.0.7 : chroot A known exploit can break a chroot prison. please_reply_to_security_at_sco.com (May 11 2005)
Yappa-NG Multiple Vulnerabilities GulfTech Security Research (May 11 2005)
[DR018] Quartz Composer / QuickTime 7 information leakage David Remahl (May 11 2005)
Firefox 1.0.4 released. Several vulnerabilities fixed Paul (May 12 2005)
Security Advisory for Bugzilla 2.18, 2.19.2, and 2.16.8 Max Kanat-Alexander (May 12 2005)
Directtopics Multiple Vulnerabilities (Security Advisory) Morinex Eneco (May 12 2005)
Acrowave AAP-3100AR authetication bypass Martin Tornwall (May 12 2005)
MDKSA-2005:087 - Updated tcpdump packages fix multiple vulnerabilities Mandriva Security Team (May 12 2005)
MDKSA-2005:086 - Updated gaim packages fix multiple vulnerabilities Mandriva Security Team (May 12 2005)
MDKSA-2005:085 - Updated kdelibs packages fix vulnerabilities Mandriva Security Team (May 12 2005)
MDKSA-2005:084 - Updated gnutls packages fix vulnerabilities Mandriva Security Team (May 12 2005)
[ GLSA 200505-09 ] Gaim: Denial of Service and buffer overflow vulnerabilties Sune Kloppenborg Jeppesen (May 11 2005)
[USN-125-1] Gaim vulnerabilities Martin Pitt (May 12 2005)
htdigest exploit code [bid 13537] K sPecial (May 12 2005)
[USN-124-1] Mozilla and Firefox vulnerabilities Martin Pitt (May 10 2005)
[USN-124-2] Fixed packages for USN-124-1 Martin Pitt (May 12 2005)
FreeBSD Security Advisory FreeBSD-SA-05:09.htt [REVISED] FreeBSD Security Advisories (May 13 2005)
OllyDbg "INT3 AT" Format String Vulnerability Piotr Bania (May 13 2005)
ITU 2005 Call For Papers Michal Szymanski (May 13 2005)
32-bit qmail fun (qmail-pop3d) (fwd) Lars Olsson (May 11 2005)
Ultimate PHP Board (UPB) Security Advisory Morinex Eneco (May 13 2005)
OpenServer 5.0.7 UnixWare 7.1.4 UnixWare 7.1.3 : Hyper-Threading information leakage please_reply_to_security_at_sco.com (May 13 2005)
Netvault Remote Heap Overflow (another one) nolimit bugtraq (May 12 2005)
[FLSA-2005:155508] Updated cvs package fixes security issues Marc Deslauriers (May 12 2005)
[FLSA-2005:154988] Updated openoffice.org packages fix security issues Marc Deslauriers (May 12 2005)
Willings WebCam - Password Disclosure Issue SecuBox fRoGGz (May 13 2005)
Windows image size crash RSnake (May 12 2005)
- Re: Windows image size crash Giuseppe `lan` Marocchio (May 13 2005)
- Re: Windows image size crash Oliver J. Morais (May 13 2005)
- Re: Windows image size crash Bernhard Mitterer (May 14 2005)
- Re: Windows image size crash cmthemc_at_yahoo.com (May 17 2005)
cross-domain cookie theft: who's to blame? Tim Tompkins (May 12 2005)
OpenBB SQL Injection & Cross-site Scripting Vulnerability Megasky (May 12 2005)
Yahoo! Messenger URL Handler Remote DoS Vulnerability Torseq Tech. (May 13 2005)
PHPHeaven PHPMyChat Cross-site Scripting Vulnerablitiy Megasky (May 13 2005)
Yahoo! Chat Add Buddy Without Consent Privacy Issue Torseq Tech. (May 13 2005)
[ GLSA 200505-10 ] phpBB: Cross-Site Scripting Vulnerability Sune Kloppenborg Jeppesen (May 14 2005)
Gaim 1.2.1 -- PoC Stack Overflow Ron (May 13 2005)
[FLSA-2005:152763] Updated qt packages fixes security issues Marc Deslauriers (May 12 2005)
[USN-126-1] GNU TLS library vulnerability Martin Pitt (May 13 2005)
[FLSA-2005:152768] Updated ruby package fixes security issues Marc Deslauriers (May 12 2005)
Skull-Splitter's Guestbook Multiple XXS/HTML injection Morinex Eneco (May 14 2005)
[FLSA-2005:152804] Updated openmotif packages fix image vulnerability Marc Deslauriers (May 12 2005)
MDKSA-2005:088 - Updated mozilla packages fix multiple vulnerabilities Mandriva Security Team (May 13 2005)
[FLSA-2005:152856] Updated sudo packages fix security issue Marc Deslauriers (May 12 2005)
[FLSA-2005:152912] Updated imap packages fix security issues Marc Deslauriers (May 12 2005)
[FLSA-2005:152871] Updated nfs-utils package fixes security issue Marc Deslauriers (May 12 2005)
[ GLSA 200505-11 ] Mozilla Suite, Mozilla Firefox: Remote compromise Sune Kloppenborg Jeppesen (May 15 2005)
[ GLSA 200505-12 ] PostgreSQL: Multiple vulnerabilities Sune Kloppenborg Jeppesen (May 15 2005)
Multiple Vulnerabilities in MetaCart e-Shop dedi dwianto (May 16 2005)
Postnuke 0.750 - 0.760rc4 local file inclusion pokley (May 15 2005)
DotNetNuke (Multiple XSS) Mark Woan (May 16 2005)
Woltlab Burning Board SQL Injection Vulnerability GulfTech Security Research (May 16 2005)
Pico Server (pServ) Local Information Disclosure Claus R. F. Overbeck (May 16 2005)
Pico Server (pServ) Information Disclosure Of CGI Sources Claus R. F. Overbeck (May 16 2005)
Pico Server (pServ) Remote Command Injection Claus R. F. Overbeck (May 16 2005)
Mac OS X - Adobe Version Cue local root exploit [c version exploit] ali reza AcTiOnSpIdEr (May 16 2005)
- Re: Mac OS X - Adobe Version Cue local root exploit [c version exploit] Vade 79 (May 17 2005)
[SePro Bugtraq] WBB Portal - JGS-Portal <= 3.0.2 - Multiple Vulnerabilities (09.05.05) deluxe_at_security-project.org (May 16 2005)
- Re: [SePro Bugtraq] WBB Portal - JGS-Portal <= 3.0.2 - Multiple Vulnerabilities (09.05.05) Steven M. Christey (May 17 2005)
- Re: [SePro Bugtraq] WBB Portal - JGS-Portal <= 3.0.2 - Multiple Vulnerabilities (09.05.05) deluxe_at_security-project.org (May 19 2005)
cdrdao exploit for mandrake 10.2 ( Mandriva 2005) newbug Tseng (May 15 2005)
Linux kernel pktcdvd and rawdevice ioctl break user space limit vulnerability alert7 (May 16 2005)
[CLA-2005:953] Conectiva Security Announcement - kde Conectiva Updates (May 17 2005)
[ GLSA 200505-13 ] FreeRADIUS: Buffer overflow and SQL injection vulnerability Sune Kloppenborg Jeppesen (May 17 2005)
OpenServer 5.0.6 OpenServer 5.0.7 : telnet client multiple issues please_reply_to_security_at_sco.com (May 17 2005)
MDKSA-2005:088-1 - Updated mozilla-firefox packages re-enable extensions Mandriva Security Team (May 17 2005)
Linux kernel pktcdvd ioctl break user space limit vulnerability [corrected] bugs (May 17 2005)
Yahoo! Messenger may be storing all session data 'Unencoded' on the local machine Torseq Tech. (May 18 2005)
Help Center Live Vulnerabilities GulfTech Security Research (May 17 2005)
[SECURITY] [DSA 724-1] New phpsysinfo packages fix cross site scripting Martin Schulze (May 18 2005)
[USN-127-1] bzip2 vulnerabilities Martin Pitt (May 17 2005)
[USN-128-1] nasm vulnerability Martin Pitt (May 17 2005)
Windows (XP, 2k3, Longhorn) is vulnerable to IpV6 Land attack. Konrad Malewski (May 17 2005)
[USN-129-1] Squid vulnerability Martin Pitt (May 18 2005)
Re: Yahoo! Messenger may be storing all session data 'Unencoded' on the local machine Torseq Tech. (May 18 2005)
NOVELL ZENWORKS MULTIPLE REMØTE STACK & HEAP OVERFLOWS list_at_rem0te.com (May 18 2005)
[FLSA-2005:152883] Updated mozilla packages fix security issues Marc Deslauriers (May 18 2005)
[FLSA-2005:152771] Updated pam packages fix security issue Marc Deslauriers (May 18 2005)
Security issue in Microsoft Outlook Bakchodiya (May 18 2005)
- RE: Security issue in Microsoft Outlook Scovetta, Michael V (May 18 2005)
UnixWare 7.1.4 : Updated mozilla fixes many security issues please_reply_to_security_at_sco.com (May 18 2005)
MDKSA-2005:089 - Updated cdrdao packages fix local root vulnerability Mandriva Security Team (May 18 2005)
MDKSA-2005:090 - Updated nasm packages fix vulnerability Mandriva Security Team (May 18 2005)
MDKSA-2005:091 - Updated bzip2 packages fix multiple vulnerabilities Mandriva Security Team (May 18 2005)
MDKSA-2005:092 - Updated gzip packages fix several vulnerabilities Mandriva Security Team (May 18 2005)
D-Link DSL routers authentication bypass Francesco Orro (May 19 2005)
[SECURITY] [DSA 725-1] New ppxp packages fix local root exploit Martin Schulze (May 19 2005)
[ GLSA 200505-14 ] Cheetah: Untrusted module search path Sune Kloppenborg Jeppesen (May 19 2005)
JavaMail Information Disclosure (msgno) Ricky Latt (May 19 2005)
UNICODE BUFFER OVERFLOW IN MS-WORD Bahaa Naamneh (May 19 2005)
phpATM arbitrary PHP code inclusion Ingvar Gilbert (May 19 2005)
[FLSA-2005:152815] Updated libtiff packages fix security issues Marc Deslauriers (May 18 2005)
[USN-130-1] TIFF library vulnerability Martin Pitt (May 19 2005)
[SECURITY] [DSA 726-1] New oops packages fix format string vulnerability Martin Schulze (May 20 2005)
UPDATE: [ GLSA 200504-23 ] Kommander: Insecure remote script execution Sune Kloppenborg Jeppesen (May 20 2005)
ERRATA: [ GLSA 200505-13 ] FreeRADIUS: SQL injection and Denial of Service vulnerability Sune Kloppenborg Jeppesen (May 20 2005)
[ GLSA 200505-15 ] gdb: Multiple vulnerabilities Sune Kloppenborg Jeppesen (May 20 2005)
pst.advisory: gedit fun. opensource is god .lol windows yan feng (May 20 2005)
[SECURITY] [DSA 727-1] New libconvert-uulib-perl packages fix arbitrary code execution Martin Schulze (May 20 2005)
picasm error handling stack overflow vulnerability Shaun Colley (May 20 2005)
worm "postcard" e-mail issue M. Perri (May 19 2005)
episodex guestbook security bypass & html injection farhad koosha (May 19 2005)
Security contact for Trillian Suramya Tomar (May 19 2005)
[BuHa Security] Wordpress SQL-Injection Thomas Waldegger (May 19 2005)
[UPDATE] UNICODE BUFFER OVERFLOW IN MS-WORD Bahaa Naamneh (May 20 2005)
[SECURITYREASON.COM] PostNuke XSS 0.760{RC2,RC3} Maksymilian Arciemowicz (May 21 2005)
[SECURITYREASON.COM] PostNuke XSS and Full path disclosure 0.760RC3=>x Maksymilian Arciemowicz (May 21 2005)
[SECURITYREASON.COM] PostNuke Non Critical SQL Injection and Include 0.760-RC3=>x Maksymilian Arciemowicz (May 21 2005)
pst.advisory 2005-21: gxine remote exploitable . opensource is god .lol windows yan feng (May 21 2005)
[SECURITYREASON.COM] PostNuke SQL Injection 0.750=>x Maksymilian Arciemowicz (May 21 2005)
Computer Associates Vet Antivirus Library Remote Heap Overflow list_at_rem0te.com (May 23 2005)
SQL injections in PortailPHP CENSORED (May 21 2005)
Cookie Cart Default Installation Multiple Vulnerabilities SoulBlack Group (May 21 2005)
Format string and crash in Warrior Kings 1.3 and Battles 1.23 Luigi Auriemma (May 23 2005)
Meteor FTP Server v1.5 Buffer Overflow Auston J (May 23 2005)
[ GLSA 200505-17 ] Qpopper: Multiple Vulnerabilities Sune Kloppenborg Jeppesen (May 23 2005)
[ GLSA 200505-18 ] Net-SNMP: fixproc insecure temporary file creation Sune Kloppenborg Jeppesen (May 23 2005)
CAID 32896 - Computer Associates Vet Antivirus engine heap overflow vulnerability Williams, James K (May 23 2005)
- RE: CAID 32896 - Computer Associates Vet Antivirus engine heap overflow vulnerability Williams, James K (May 27 2005)
Blue Coat Reporter multiple remote vulnerabilities Oliver Karow (May 24 2005)
Gforge - viewFile.php security flaw Filippo Spike Morelli (May 24 2005)
ACROS Security: HTML Injection in BEA WebLogic Server Console (2) ACROS Security (May 24 2005)
- Re: ACROS Security: HTML Injection in BEA WebLogic Server Console (2) Will Schroeder (May 25 2005)
  - RE: ACROS Security: HTML Injection in BEA WebLogic Server Console (2) ACROS Security (May 27 2005)
ACROS Security: HTML Injection in BEA WebLogic Server Console (1) ACROS Security (May 24 2005)
Endless loop in Halo 1.06 Luigi Auriemma (May 24 2005)
iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP STATUS Remote Buffer Overflow Vulnerability iDEFENSE Labs (May 24 2005)
iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP LSUB DoS Vulnerability iDEFENSE Labs (May 24 2005)
iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP LOGIN Remote Buffer Overflow Vulnerabilities iDEFENSE Labs (May 24 2005)
iDEFENSE Security Advisory 05.24.05: Ipswitch IMail Web Calendaring Arbitrary File Read Vulnerability iDEFENSE Labs (May 24 2005)
iDEFENSE Security Advisory 05.24.05: Ipswitch IMail IMAP SELECT Command DoS Vulnerability iDEFENSE Labs (May 24 2005)
Javamail Multiple Information Disclosure Vulnerabilities Ricky Latt (May 24 2005)
[ GLSA 200505-16 ] ImageMagick, GraphicsMagick: Denial of Service vulnerability Thierry Carrez (May 21 2005)
[USN-131-1] Linux kernel vulnerabilities Martin Pitt (May 23 2005)
[USN-132-1] ImageMagick vulnerabilities Martin Pitt (May 23 2005)
[SECURITY] [DSA 728-1] New qpopper packages fix arbitrary file overwriting Martin Schulze (May 25 2005)
exim 4.40 exploit plugger (May 24 2005)
iDEFENSE Security Advisory 05.25.05: GNU Mailutils 0.6 imap4d Format String Vulnerability iDEFENSE Labs (May 25 2005)
iDEFENSE Security Advisory 05.25.05: GNU Mailutils 0.6 mail header_get_field_name() Buffer Overflow Vulnerability iDEFENSE Labs (May 25 2005)
iDEFENSE Security Advisory 05.25.05: GNU Mailutils 0.6 imap4d fetch_io Heap overflow Vulnerability iDEFENSE Labs (May 25 2005)
iDEFENSE Security Advisory 05.25.05: GNU Mailutils 0.6 imap4d FETCH Command Resource Consumption DoS Vulnerability iDEFENSE Labs (May 25 2005)
PHP Injection in PHP Poll Creator rash ilusion (May 24 2005)
- Re: PHP Injection in PHP Poll Creator Michael Cordover (May 26 2005)
shtool insecure temporary file creation ZATAZ.net (May 25 2005)
High Risk Vulnerability in L-Soft's LISTSERV Server NGSSoftware Insight Security Research (May 25 2005)
OpenServer 5.0.6 OpenServer 5.0.7 : nwprint privilege escalation please_reply_to_security_at_sco.com (May 25 2005)
Zone Labs ZoneAlarm Vet anti-virus engine OLE processing vulnerability Zone Labs Product Security (May 25 2005)
davfs2 does not honour Unix permissions martin f krafft (May 25 2005)
[SECURITY] [DSA 728-2] New qpopper packages fix arbitrary file overwriting Martin Schulze (May 25 2005)
[SECURITY] [DSA 729-1] New PHP4 packages fix denial of service Martin Schulze (May 26 2005)
- Re: [SECURITY] [DSA 729-1] New PHP4 packages fix denial of service John GALLET (May 27 2005)
Alwil Software Avast Antivirus Device Driver Memory Overwrite Vulnerability Piotr Bania (May 26 2005)
Invision Power Board 1.* and 2.* Exploit (BID 13529) Petey Beege (May 26 2005)
[ GLSA 200505-19 ] gxine: Format string vulnerability Thierry Carrez (May 26 2005)
[USN-133-1] Apache utility vulnerability Martin Pitt (May 26 2005)
[USN-134-1] Firefox vulnerabilities Martin Pitt (May 26 2005)
Re: PowerLink WAN Aggregator - Vunerability preasoner_at_astrocorp.com (May 24 2005)
[security bulletin] SSRT4884 rev.0 - HP-UX TCP/IP Remote Denial of Service (DoS) Boren, Rich (SSRT) (May 26 2005)
[security bulletin] SSRT5954 rev.1 - HP-UX TCP/IP Remote Denial of Service (DoS) Boren, Rich (SSRT) (May 26 2005)
Re: Multiple Sql injection and XSS vulnerabilities in phpBB Plus v.1.52 and below and some of its modules. security curmudgeon (May 22 2005)
Meteor FTP Server: PoC Exploit Dim K0r0l (May 23 2005)
Re: [Full-disclosure] iDEFENSE Security Advisory 05.24.05: Ipswitch IMail Web Calendaring Arbitrary File Read Vulnerability jamesbug_at_gmx.net (May 25 2005)
[security bulletin] SSRT5899 rev.0 - HP-UX trusted system remote unauthorized access Boren, Rich (SSRT) (May 26 2005)
Buffer-overflow and crash in Terminator 3: War of the Machines 1.16 Luigi Auriemma (May 26 2005)
Buffer-overflow in C'Nedra 0.4.0 Luigi Auriemma (May 26 2005)
PHP Stat Administrative User Authentication Bypass SoulBlack Group (May 26 2005)
PostNuke Critical SQL Injection and XSS 0.750=>x sp3x (May 27 2005)
[USN-114-2] Fixed packages for USN-114-1 Martin Pitt (May 27 2005)
[USN-135-1] gdb vulnerabilities Martin Pitt (May 27 2005)
[ GLSA 200505-20 ] Mailutils: Multiple vulnerabilities in imap4d and mail Thierry Carrez (May 27 2005)
[USN-136-1] binutils vulnerability Martin Pitt (May 27 2005)
[USN-136-2] Fixed packages for USN-136-1 Martin Pitt (May 27 2005)
User32.dll Icon Size Crash - k - (May 25 2005)
- Re: User32.dll Icon Size Crash Daniel Souza (May 27 2005)
[AppSecInc Advisory BEA05-V0100] BEA WebLogic Administration Console error page cross-site scripting vulnerability Team SHATTER (May 27 2005)
[AppSecInc Advisory BEA05-V0101] BEA WebLogic Administration Console login page cross-site scripting vulnerability Team SHATTER (May 27 2005)
DSL-504T (and maybe many other) remote access without password bug alessandro (May 26 2005)
Citrix security contact Eyal Udassin (May 26 2005)
- Re: Citrix security contact security curmudgeon (May 27 2005)
[SECURITY] [DSA 730-1] New bzip2 packages fix file unauthorised permissions modification Martin Schulze (May 27 2005)
SQL Injection Exploit for myBloggie 2.1.1 - 2.1.2 Alberto Trivero (May 27 2005)
Microsoft Internet Explorer - Crash on adding sites to restricted zone (05/28/2005) Benjamin Tobias Franz (May 28 2005)
Microsoft Internet Explorer - Crash on JavaScript "window()"-calling (05/28/2005) Benjamin Tobias Franz (May 28 2005)
- Re: Microsoft Internet Explorer - Crash on JavaScript "window()"-calling (05/28/2005) - k - (May 30 2005)
- Re: Microsoft Internet Explorer - Crash on JavaScript "window()"-calling (05/28/2005) Benton Lam (May 30 2005)
Microsoft Internet Explorer - Crash on processing embedded files with endless loop (05/28/2005) Benjamin Tobias Franz (May 28 2005)
Microsoft Internet Explorer - Crash on to many stack overflows (05/28/2005) Benjamin Tobias Franz (May 28 2005)
PicoWebServer Remote Unicode Stack Overflow Dennis Elser (May 28 2005)
Format String Vulnerability In Peercast 0.1211 And Earlier GulfTech Security Research (May 28 2005)
Compuware Softice (DbgMsg driver) Local Denial Of Service Piotr Bania (May 29 2005)
Crash in Stronghold 2 1.2 Luigi Auriemma (May 30 2005)
CYBSEC - PHPMailer Infinite Loop Denial of Service Mariano Nu�ez Di Croce (May 30 2005)
MyBB 1.0 RC4 XSS Bug August Christopher (May 30 2005)
Multiple vulnerabilities in x-cart Gold CENSORED (May 30 2005)
MDKSA-2005:095 - Updated gdb packages fix vulnerabilities Mandriva Security Team (May 30 2005)
TSL-2005-0026 - multi Trustix Security Advisor (May 31 2005)
Spam exploiting MS05-016 Nick FitzGerald (May 29 2005)
TSL-2005-0025 - binutils Trustix Security Advisor (May 31 2005)
RE: Microsoft Internet Explorer - Crash on adding sites to restri cted zone (05/28/2005) Hohn, Joerg (May 31 2005)
Nortel VPN Router Malformed Packet DoS Vulnerability Roy Hills (May 31 2005)
[XNUXER-SECURITY] Root Privilige Escalation in Sudo version 1.6.8p7 without Password, SuSE 9.3 Xnuxer Security (May 30 2005)
- Re: [security@suse.de] [XNUXER-SECURITY] Root Privilige Escalation in Sudo version 1.6.8p7 without Password, SuSE 9.3 Marcus Meissner (May 31 2005)
  - Re: [security@suse.de] [XNUXER-SECURITY] Root Privilige Escalation in Sudo version 1.6.8p7 without Password, SuSE 9.3 Todd C. Miller (May 31 2005)
  - Re: [security@suse.de] [XNUXER-SECURITY] Root Privilige Escalation in Sudo version 1.6.8p7 without Password, SuSE 9.3 Justin (May 31 2005)
- Re: [XNUXER-SECURITY] Root Privilige Escalation in Sudo version 1.6.8p7 without Password, SuSE 9.3 Ow Mun Heng (May 31 2005)
PowerDownload Remote File Inclusion SoulBlack Group (May 30 2005)
SyScAN'05 organiser_at_syscan.org (May 30 2005)
[Argeniss] MS05-012 Exploit Cesar (May 30 2005)
Wide-scale industrial espionage using Trojan horses in Israel Gadi Evron (May 29 2005)
multiple vulnerability Calendarix Advanced DarkBicho (May 31 2005)
Multiple vulnerabilities in MyBulletinBoard (MyBB) 1.00 RC4 Alberto Trivero (May 31 2005)
504T and now also 604T remote access. alessandro (May 28 2005)