Buqtraq Archiv Dezember 2002
Thread Index
RE: User downgraded from Administrator to User retains the ability to list other user's running tasks
From
: John Tolmachofft
RE: User downgraded from Administrator to User retains the ability to list other user's running tasks
From
: Eitan Caspi
Advisory: Webster HTTP Server
From
: Matthew Murphy
Thatware (PHP)
From
: Frog Man
Multiple pServ Remote Buffer Overflow Vulnerabilities
From
: Matthew Murphy
Cross-site Scripting Vulnerability in YaBB 1 Gold - SP1!
From
: Fabricio Angeletti
Re: [Full-Disclosure] Netscape Problems.
From
: Ben Bucksch
Re: CAIS-ALERT: Vulnerability in the sending requests control of BIND
From
: Robert Tracz
RE: CAIS-ALERT: Vulnerability in the sending requests control ofBIND
From
: Vagner Sacramento
[SECURITY] [DSA 201-1] New Free/SWan packages fix denial of service
From
: Martin Schulze
RE: Kerberos login sniffer and cracker for Windows 2000/XP
From
: Jason Coombs
Lag Security Advisory - Com21 cable modem configuration file feedingvulnerability
From
: David Laganière
GLSA: pine
From
: Daniel Ahlberg
Potential Vuln in McAfee VirusScan 451
From
: jari.helenius
Advisory: Lawson Financials RDBMS Insecurity
From
: John Eisenschmidt
Re: Solaris priocntl exploit
From
: Jay Beale
RE: Exploit for traceroute-nanog overflow
From
: Carl Livitt
Cyrus Sieve / libSieve buffer overflow
From
: Timo Sirainen
possible virus break in german exchange option of Inoculate IT 6.0
From
: tigerblue
ShopFactory shopping cart price manipulation
From
: Richard van den Berg
pre-login buffer overflow in Cyrus IMAP server
From
: Timo Sirainen
[VU#317417] Denial of Service condition in vxworks ftpd/3com nbx
From
: Michael S. Scheidell
Bypassing Integrity Protection Driver (time vulnerability)
From
: Jan Rutkowski
[RHSA-2002:196-19] Updated xinetd packages fix denial of service vulnerability
From
: bugzilla
CORE-20021005: Vulnerability Report For Linksys Devices
From
: Carlos Sarraute
MDKSA-2002:085 - Updated WindowMaker packages fix buffer overflow vulnerability
From
: Mandrake Linux Security Team
[SNS Advisory No.59] Buffalo Wireless LAN Access Point Denial of Service Vulnerability (was Re: Buffalo AP Denial of Service)
From
: snsadv
Re: Local Netfilter / IPTables IP Queue PID Wrap Flaw
From
: James Morris
[SECURITY] [DSA 202-1] New IM packages fix insecure temporary file creation
From
: Martin Schulze
SquirrelMail v1.2.9 XSS bugs
From
: euronymous
Poisonous Style for Dialog window turns the zone off.
From
: Liu Die Yu
Zeroo Webserver remote directory traversal exploit
From
: Mike Cramp
Fw: CERT Advisory CA-2002-34 Buffer Overflow in Solaris X Window Font Service
From
: Muhammad Faisal Rauf Danka
MDKSA-2002:084 - Updated pine packages fix buffer overflow vulnerability
From
: Mandrake Linux Security Team
Local Netfilter / IPTables IP Queue PID Wrap Flaw
From
: James Morris
[CLA-2002:551] Conectiva Linux Security Announcement - pine
From
: secure
Local root vulnerability found in exim 4.x (and 3.x)
From
: Wana Thomas
Security Update: [CSSA-2002-054.0] Linux: exploitable memory leak in ypserv
From
: security
[RHSA-2002:220-40] Updated KDE packages fix security issues
From
: bugzilla
SAP database local root via symlink
From
: KF
[RHSA-2002:254-05] Updated Webalizer packages fix vulnerability
From
: bugzilla
[SECURITY] [DSA 203-1] New smb2www packages fix arbitrary command execution
From
: Martin Schulze
Windows XP Disclosure of Registered AP Information
From
: snsadv
Security Update: [CSSA-2002-055.0] Linux: RPC XDR buffer overflow
From
: security
Multiple Vulnerabilities in BIND Name Service Daemon on IRIX
From
: SGI Security Coordinator
Buffer Overflow Vulnerability in X Font Server on IRIX
From
: SGI Security Coordinator
Sygate Personal Firewall can be shut down without a need to supply a password - although one is required
From
: Eitan Caspi
Apache/Tomcat Denial Of Service And Information Leakage Vulnerability
From
: alias
[SECURITY] [DSA 204-1] New kdlibs packages fix arbitrary program execution
From
: Martin Schulze
Notes on MS02-068, extensive downplaying of severity
From
: Thor Larholm
Re: Local root vulnerability found in exim 4.x (and 3.x)
From
: Tabor J. Wells
Re: Fw: CERT Advisory CA-2002-34 Buffer Overflow in Solaris X Window Font Service
From
: Jim Knoble
Re: Local root vulnerability found in exim 4.x (and 3.x)
From
: Tabor J. Wells
[Fwd: [RHSA-2002:196-09] Updated xinetd packages fix denial of service vulnerability]
From
: Dan Rowles
Re: TracerouteNG - never ending story
From
: Thomas Biege
Cross-site Scripting Vulnerability in phpBB 2.0.3
From
: Fabricio Angeletti
Proxy vulnerability in TrendMicro InterScan-VirusWall V3.6
From
: Volker Tanger
BIND Name Server DNS Spoofing Vulnerability on IRIX
From
: SGI Security Coordinator
Re: SquirrelMail v1.2.9 XSS bugs
From
: Jonathan Angliss
Samba Security Vulnerability on IRIX
From
: SGI Security Coordinator
Multiple vulnerabilities in akfingerd
From
: Gianni Tedesco
Cobalt RaQ4 Remote root exploit
From
: grazer
Re: [Fwd: [RHSA-2002:196-09] Updated xinetd packages fix denial of service vulnerability]
From
: Ryan Cleary
RE: Sygate Personal Firewall can be shut down without a need to supply
From
: Eitan Caspi
Sygate Personal Firewall can be shut down without a need to suppl y
From
: Seth Knox
RE: Sygate Personal Firewall can be shut down without a need to supply a password - although one is required
From
: Russ
Security Update: [CSSA-2002-056.0] Linux: apache vulnerabilities in shared memory, DNS, and ApacheBench
From
: security
WebReflex Directory Traversal Vulnerability
From
: luca.ercoli@xxxxxxxxx
[SECURITY] [DSA 192-2] New html2ps packages correct fix against arbitrary code execution
From
: Martin Schulze
[SECURITY] [DSA 202-2] New IM packages correct hidden architecture dependency
From
: Martin Schulze
SuSE Security Announcement: OpenLDAP2 (SuSE-SA:2002:047)
From
: Sebastian Krahmer
APBoard-Bug
From
: DNA ESC
Security Update: [CSSA-2002-057.0] Linux: groff pic buffer overflow
From
: security
XSS and Path Disclosure in UPB
From
: euronymous
Re: Proxy vulnerability in TrendMicro InterScan-VirusWall V3.6 - and 3.7 Build 1190
From
: Dr. Peter Bieringer
SECURITY.NNOV: more Ikonboard 3.1.1 crossite scriptings
From
: 3APA3A
[SecurityOffice] Enceladus Server Suite v3.9 Buffer Overflow Vulnerability
From
: Tamer Sahin
[RHSA-2002:196-19] Updated xinetd packages fix denial of service vulnerability
From
: Derek Luce
Cyrus SASL library buffer overflows
From
: Timo Sirainen
Security Update: [CSSA-2002-SCO.43] UnixWare 7.1.1 Open UNIX 8.0.0 : closed file descriptor race vulnerability
From
: security
[RHSA-2002:246-18] Updated Canna packages fix vulnerabilities
From
: bugzilla
[RHSA-2002:229-10] Updated wget packages fix directory traversal bug
From
: bugzilla
Unchecked buffer in PC-cillin
From
: advisories@xxxxxxxxxxx
Remote multiple vulnerability in apt-www-proxy.
From
: dong-h0un U
Re: [VulnWatch] proftpd <=1.2.7rc3 DoS
From
: Kurt Seifried
Re: Cyrus SASL library buffer overflows
From
: Matthias Andree
TFTP32 DOS
From
: securma massine
[SECURITY] [DSA-205-1] gtetrinet buffer overflows
From
: Wichert Akkerman
[SECURITY] [DSA-206-1] tcpdump BGP decoding error
From
: Wichert Akkerman
KunaniFTP-Server v.1.0.10 allows dictionary traversal
From
: Zero-X www.lobnan.de Team
MDKSA-2002:082-1 - Updated python packages fix local arbitrary code execution vulnerability
From
: Mandrake Linux Security Team
Re: XSS and Path Disclosure in UPB
From
: Frog Man
RE: Sygate Personal Firewall can be shut down without a need to s upply a password - although one is required
From
: Seth Knox
RE: Sygate Personal Firewall can be shut down without a need to supply a password - although one is required
From
: Eitan Caspi
Directory traversing bug in 'myServer' webserver.
From
: dong-h0un U
Cisco Security Advisory: OSM Line Card Header Corruption Vulnerability
From
: Cisco Systems Product Security Incident Response Team
[SECURITY] [DSA 207-1] New tetex-lib packages fix arbitrary command execution
From
: Martin Schulze
Directory Traversal Vulnerabilities in FTP Clients
From
: Steven M. Christey
Security Update: [CSSA-2002-058.0] Linux: buffer overflow in nss_ldap DNS SRV
From
: security
Re: Zeus Admin Server v4.1r2 index.fcgi XSS bug
From
: Colin Watson
Input Validation Error in vbulletin 2.2.x
From
: Dorin Balanica
Remote multiple vulnerability in apt-www-proxy.
From
: dong-h0un U
proftpd <=1.2.7rc3 DoS
From
: Rob klein Gunnewiek
Re: [VulnWatch] proftpd <=1.2.7rc3 DoS
From
: Rob klein Gunnewiek
Enceladus Server Suite traversal directory vulnerability
From
: luca.ercoli@xxxxxxxxx
Re: KunaniFTP-Server v.1.0.10 allows dictionary traversal
From
: Alun Jones
MTPSR1-120 Firewall Proxy configuration software
From
: UkR security team™
Denial of Service vulnerability in VisNetic Website
From
: Peter Kruse
Security Update: [CSSA-2002-SCO.44] UnixWare 7.1.1 Open UNIX 8.0.0 : uudecode performs inadequate checks on user-specified output files
From
: security
CERT Advisory CA-2002-35 Vulnerability in RaQ 4 Servers (fwd)
From
: Muhammad Faisal Rauf Danka
MDKSA-2002:086 - Updated wget packages fix directory traversal vulnerability
From
: Mandrake Linux Security Team
PNG (Portable Network Graphics) Deflate Heap Corruption Vulnerability
From
: Marc Maiffret
Multiple Mambo Site Server sec-weaknesses
From
: euronymous
[SECURITY] [DSA 208-1] New Perl packages correct Safe handling
From
: Martin Schulze
VisNetic WebSite XSS vulnerability through HTTP referer header
From
: Ory Segal
Advisory 04/2002: Multiple MySQL vulnerabilities
From
: Stefan Esser
[RHSA-2002:222-21] Updated apache, httpd, and mod_ssl packages available
From
: bugzilla
Re: Directory Traversal Vulnerabilities in FTP Clients
From
: Stephen Samuel
Password Hole Found In Webshots
From
: Brian Carpenter
[SECURITY] [DSA-209-1] two wget problems
From
: Wichert Akkerman
Adelphia Powerlink service vulnerable to man in the middle attacks by cable modem users.
From
: 0x90
XSS flaw found at "https://www.e-gold.com"
From
: Liu Die Yu
iDefense Security Advisory
From
: gobbles
Re: [VulnWatch] proftpd <=1.2.7rc3 DoS
From
: Kurt Seifried
[SECURITY] [DSA-210-1] lynx CRLF injection
From
: Wichert Akkerman
Re: Password Hole Found In Webshots
From
: Ian Nguyen
[SECURITY] [DSA 211-1] New mICQ packages fix denial of service
From
: Martin Schulze
Eserv remote denial of service
From
: securma massine
Advisory 05/2002: Another Fetchmail Remote Vulnerability
From
: Stefan Esser
Advisory Title: iASP Remote Console Applet Allows Remote
From
: ph33r
Anyone can read all XOOPS private messages
From
: Val Deux
[ESA-20021213-033] Several MySQL vulnerabilities.
From
: EnGarde Secure Linux
RE: iDefense Security Advisory
From
: David Endler
Directory Traversal Vulnerability in FTP Client on IRIX
From
: SGI Security Coordinator
[CLA-2002:552] Conectiva Linux Security Announcement - wget
From
: secure
FW: SQL Injection Solved
From
: Louie Conceicao
MyPHPLinks (PHP) : SQL Injection
From
: Frog Man
GLSA: mysql
From
: Daniel Ahlberg
GLSA: fetchmail
From
: Daniel Ahlberg
GLSA: squirrelmail
From
: Daniel Ahlberg
GLSA: mysql
From
: Daniel Ahlberg
Password Disclosure in Cryptainer
From
: K. K. Mookhey
Multiple vendors XML parser (and SOAP/WebServices server) Denial of Service attack using DTD
From
: Amit Klein
[OpenPKG-SA-2002.013] OpenPKG Security Advisory (mysql)
From
: OpenPKG
[OpenPKG-SA-2002.014] OpenPKG Security Advisory (perl)
From
: OpenPKG
[OpenPKG-SA-2002.015] OpenPKG Security Advisory (tetex)
From
: OpenPKG
PHP-Nuke 6.0 : Path Disclosure & Cross Site Scripting
From
: Frog Man
R7-0009: Vulnerabilities in SSH2 Implementations from Multiple Vendors
From
: Rapid 7 Security Advisories
GLSA: exim
From
: Daniel Ahlberg
PHP-Nuke code execution and XSS vulnerabilities
From
: Ulf Harnhammar
Cross-site scripting vulnerability in CF 5.0
From
: KiLL CoLe
RE: Cross-site scripting vulnerability in CF 5.0
From
: CORREIA, PATRICK
Re: Cross-site scripting vulnerability in CF 5.0
From
: SecurityFocus
PFinger 0.7.8 format string vulnerability (#NISR16122002B)
From
: NGSSoftware Insight Security Research
zkfingerd 0.9.1 format string vulnerabilities (#NISR16122002A)
From
: NGSSoftware Insight Security Research
RE: PFinger 0.7.8 format string vulnerability (#NISR16122002B)
From
: Stefan Esser
[CLA-2002:554] Conectiva Linux Security Announcement - fetchmail
From
: secure
[CLA-2002:553] Conectiva Linux Security Announcement - kernel 2.4
From
: secure
Security Patchs for PHP Products
From
: Frog Man
Captaris (Infinite) WebMail XSS
From
: Pedram Amini
Macromedia Shockwave Flash Malformed Header Overflow #2
From
: Marc Maiffret
[CLA-2002:555] Conectiva Linux Security Announcement - MySQL
From
: secure
[SECURITY] [DSA-212-1] Multiple MySQL vulnerabilities
From
: Wichert Akkerman
[RHSA-2002:228-11] Updated Net-SNMP packages fix security and other bugs
From
: bugzilla
[RHSA-2002:293-09] Updated Fetchmail packages fix security vulnerability
From
: bugzilla
[OpenPKG-SA-2002.016] OpenPKG Security Advisory (fetchmail)
From
: OpenPKG
Re: adelphia vulnerability within subnets
From
: 0x90
Re: PFinger 0.7.8 format string vulnerability (#NISR16122002B)
From
: Stefan Esser
Directory traversal vulnerabilities in several archivers processing .tar
From
: Florian Schafferhans
Re: [VulnWatch] Password Disclosure in Cryptainer
From
: Kurt Seifried
Re: PFinger 0.7.8 format string vulnerability (#NISR16122002B)
From
: der Mouse
Re: PFinger 0.7.8 format string vulnerability (#NISR16122002B)
From
: der Mouse
Re: PFinger 0.7.8 format string vulnerability (#NISR16122002B)
From
: Valdis . Kletnieks
Re: Directory traversal vulnerabilities in several archivers processing .tar
From
: der Mouse
Fwd: CERT Advisory CA-2002-36 Multiple Vulnerabilities in SSH Implementations
From
: Muhammad Faisal Rauf Danka
export LD_LIBRARY_PATH in /etc/profile.d/* files
From
: rich
RAZOR advisory: Linux 2.2.xx /proc/<pid>/mem mmap() vulnerability
From
: Michal Zalewski
Re: export LD_LIBRARY_PATH in /etc/profile.d/* files
From
: mlh
Missing admin sql password in Okena StormWatch
From
: Marc Ruef
Security Paper: Session Fixation Vulnerability in Web-based Applications
From
: Mitja Kolsek (ACROS Lists)
gfxboot allows boot password circumvention, SuSE 8.1 GRUB
From
: Matthias Andree
[securitydigest.org]: Changes for December 2002
From
: Curator at Security Digest Archives
MDKSA-2002:087 - Updated MySQL packages fix multiple vulnerabilities
From
: Mandrake Linux Security Team
MDKSA-2002:068-1 - Updated apache packages fix multiple vulnerabilities
From
: Mandrake Linux Security Team
RE: Directory traversal vulnerabilities in several archivers processing .tar
From
: Andrew Kopp
Re: export LD_LIBRARY_PATH in /etc/profile.d/* files
From
: Antonomasia
Re: PFinger 0.7.8 format string vulnerability (#NISR16122002B)
From
: Andreas Borchert
Historic blackhat archives exposed
From
: Pry
Foundstone Research Labs Advisory - Exploitable Windows XP Media Files (fwd)
From
: Dave Ahmad
Foundstone Research Labs Advisory - Multiple Exploitable Buffer Overflows in Winamp (fwd)
From
: Dave Ahmad
RE: Missing admin sql password in Okena StormWatch
From
: Marcus Gavel
[SECURITY] [DSA 213-1] New libpng packages fix buffer overflow
From
: Martin Schulze
[CLA-2002:556] Conectiva Linux Security Announcement - openldap
From
: secure
WAnewsletter (PHP)
From
: Frog Man
Multiple vulnerability in Enceladus Server
From
: securma massine
Openwebmail 1.71 remote root compromise
From
: Dmitry Guyvoronsky
RE: Password Hole Found In Webshots - (Webshots Confirmed)
From
: Shutters, Mike
iDEFENSE Security Advisory 12.19.02: Multiple Security Vulnerabilities in Common Unix Printing System (CUPS)
From
: iDEFENSE Labs
Cisco IOS EIGRP Network DoS
From
: FX
[Fix] Openwebmail 1.71 remote root compromise
From
: Dmitry Guyvoronsky
Re: Cisco IOS EIGRP Network DoS
From
: Damir Rajnovic
Re: Foundstone Research Labs Advisory - Multiple Exploitable Buffer Overflows in Winamp (fwd)
From
: David Howe
TSLSA-2002-0084 - tcpdump
From
: Trustix Secure Linux Advisor
TSLSA-2002-0089 - wget
From
: Trustix Secure Linux Advisor
TSLSA-2002-0083 - kernel
From
: Trustix Secure Linux Advisor
Re: Directory traversal vulnerabilities in several archivers processing .tar
From
: Stephen Samuel
TSLSA-2002-0087 - perl
From
: Trustix Secure Linux Advisor
TSLSA-2002-0086 - mysql
From
: Trustix Secure Linux Advisor
TSLSA-2002-0085 - lynx-ssl
From
: Trustix Secure Linux Advisor
GLSA: perl
From
: Daniel Ahlberg
RE: Foundstone Research Labs Advisory - Multiple Exploitable Buff er Overflows in Winamp (fwd)
From
: Shutters, Mike
[SecurityOffice] Polycom Video Conference System Management Server Authentication Bypass Vulnerability
From
: Tamer Sahin
PHP-Nuke mail CRLF Injection vulnerabilities
From
: Ulf Harnhammar
Cisco Security Advisory: Cisco Security Advisory: SSH Malformed Packet Vulnerabilities
From
: Cisco Systems Product Security Incident Response Team
SPGpartenaires (PHP)
From
: Frog Man
nCipher Advisory #6: Access control defects in PKCS#11 keys
From
: nCipher Support
GLSA: wget
From
: Daniel Ahlberg
Re: Foundstone Research Labs Advisory - Multiple Exploitable Buff er Overflows in Winamp (fwd)
From
: Mischa Krilov
[SECURITY] [DSA 214-1] New kdentwork packages fix buffer overflows
From
: Martin Schulze
Web server vulnerability in Axis Network Cameras, Video Servers and DVRs
From
: Axis Product Security
[RAZOR] Problems with mkstemp()
From
: Michal Zalewski
RE: Directory traversal vulnerabilities in several archivers processing .tar
From
: konto mailingowe
GLSA: canna
From
: Daniel Ahlberg
SuSE Security Announcement: cyrus-imapd (SuSE-SA:2002:048)
From
: Sebastian Krahmer
RealNetworks HELIX Server Buffer Overflow Vulnerabilities (#NISR20122002)
From
: NGSSoftware Insight Security Research
Re: XSS and PHP include bug in W-Agora
From
: Marc Druilhe
Security Update: [CSSA-2002-059.0] Linux: multiple vulnerabilities in BIND (CERT CA-2002-31)
From
: security
XSS and PHP include bug in W-Agora
From
: xatr0z
KDE Security Advisory: Multiple vulnerabilities in KDE
From
: Dirk Mueller
RE: Foundstone Research Labs Advisory - Multiple Exploitable Buffer Overflows in Winamp (fwd)
From
: Richard Stanway
RE: Foundstone Research Labs Advisory - Multiple Exploitable Buffer Overflows in Winamp (fwd)
From
: Russell Garrett
Re: iDEFENSE Security Advisory 12.19.02: Multiple Security Vulnerabilities in Common Unix Printing System (CUPS)
From
: Joe Testa
Re: iDEFENSE Security Advisory 12.19.02: Multiple Security Vulnerabilities in Common Unix Printing System (CUPS)
From
: zen-parse
Matlab /tmp usage
From
: Paul Szabo
Re: KDE Security Advisory: Multiple vulnerabilities in KDE
From
: fozzy
'printenv' XSS vulnerability
From
: Dr . Tek
[SECURITY] [DSA 215-1] New cyrus-imapd packages fix remote command execution
From
: Martin Schulze
zkfingerd remote exploit
From
: security
Re: Foundstone Research Labs Advisory - Multiple Exploitable Buffer Overflows in Winamp (fwd)
From
: Hacknisty
Hyperion FTP Server buffer overflow
From
: securma massine
PHPNuke 6.0 path disclosure [again]
From
: Ing. Bernardo Lopez
GLSA: kde-3.0.x
From
: Daniel Ahlberg
junkbuster 2.0-1 proxy relaying spam
From
: Andrew Daviel
Re: 'printenv' XSS vulnerability
From
: Marc Slemko
Antwort: Openwebmail 1.71 remote root compromise
From
: Stephan Sachweh
Proxy vulnerability in TrendMicro InterScan-VirusWall V3.6
From
: jrodriga
Re: KDE Security Advisory: Multiple vulnerabilities in KDE
From
: Florian Weimer
iDEFENSE Security Advisory 12.23.02: Integer Overflow in pdftops
From
: iDEFENSE Labs
Re: Solaris priocntl exploit
From
: Pavel Kankovsky
[SNS Advisory No.60 rev.2] Windows XP Disclosure of Registered AP Information
From
: snsadv@xxxxxxxxx
[SECURITY] [DSA 216-1] New fetchmail packages fix buffer overflow
From
: Martin Schulze
Full Disclosure: Windows File Protection Arbitrary Certificate Chain Vulnerability
From
: FORENSICS.ORG Security Coordinator
Full Disclosure: Windows File Protection Old Security Catalog Vulnerability
From
: FORENSICS.ORG Security Coordinator
(MSIE)A rather old trick for web server is now played on MSIE.
From
: Liu Die Yu
Re: Solaris priocntl exploit - Sol8 patches available
From
: Scott Howard
Re: PFinger 0.7.8 format string vulnerability (#NISR16122002B)
From
: Andreas Tscharner
[SECURITY] [DSA 217-1] New typespeed packages fix buffer overflow
From
: Martin Schulze
[GIS 2002101601] SkyStream Admin Shell Privilege Escalation.
From
: Global InterSec Research
[CLA-2002:557] Conectiva Linux Security Announcement - cyrus-imapd
From
: secure
Buffer overflow in PHP "wordwrap" function
From
: David F. Skoll
GLSA: cyrus-sasl
From
: Daniel Ahlberg
[IPS] PUTTY SSH-Client Exploit
From
: Daniel Alcántara de la Hoz
PHRACK #60 HAS BEEN RELEASED
From
: phrackstaff
Gallery v1.3.2 allows remote exploit (fixed in 1.3.3)
From
: Bharat Mediratta
Telindus 112x ADSL Router - Weak Password Encryption
From
: eflorio
GLSA: openldap
From
: Daniel Ahlberg
GLSA: cups
From
: Daniel Ahlberg
Potential DOS attack with Web-CyrAdm.
From
: Casper Aleva
[SECURITY] [DSA 218-1] New bugzilla packages fix cross site scripting problem
From
: Martin Schulze
Leafnode security announcement SA:2002:01
From
: Matthias Andree
Multiple vulnerabilities found in PlatinumFTPserver V1.0.6
From
: Dennis Rand
CITIBANK [CANADA]: INTERNET EXPLORER BROWSERS
From
: http-equiv@xxxxxxxxxx
Visual SourceSafe - Preliminary Observations
From
: Joel Maslak
Wired.com: So Many Holes, So Few Hacks
From
: Richard M. Smith
Updated "Secure Programming for Linux and Unix HOWTO" now available.
From
: David Wheeler
[SECURITY] [DSA 219-1] New dhcpcd packages fix remote command execution vulnerability
From
: Martin Schulze
Re: CITIBANK [CANADA]: INTERNET EXPLORER BROWSERS
From
: Ben Laurie
PEEL (PHP)
From
: Frog Man
BDT_AV200212140001: Insecure default: Using pam_xauth for su from sh-utils package
From
: Andreas Beck
Mail converted by
MHonArc