Hosting Provided By

Mailing List Archive For bugtraq@securityfocus.com By Date

29 Jun 2007
- iPhone Security Settings John Smith
30 Jun 2007
- Re: Light Blog 4.1 XSS Vulnerability prodigy.zero(at)gmail.com
29 Jun 2007
- akocomment SQL INJECTION (all version) Emanuele Gentili
30 Jun 2007
- WheatBlog 1.1 RFI/SQL Injection underwater(at)itdefence.ru
29 Jun 2007
- Re: Re: Progress Webspeed exploit for all releases suresync(at)gmail.com
- Airscanner Advisory #07062901: FlexiSPY Victim/User Database Exposure (Full world readable access to ALL SMS/Emails/Voice data from victims/users) Airscanner Corp.
- Re: eTicket version 1.5.5 XSS Attack Vulnerability sf(at)hm2k.org
- [USN-479-1] MadWifi vulnerabilities Kees Cook
- SQL Injection In Script VBZooM V1.12 RaeD(at)BsdMail.Com
28 Jun 2007
- flac123 0.0.9 - Stack overflow in comment parsing David Thiel
29 Jun 2007
- [SECURITY] [DSA 1325-1] New evolution packages fix arbitrary code execution Moritz Muehlenhoff
- TSLSA-2007-0021 - kerberos5 Trustix Security Advisor
28 Jun 2007
- [SECURITY] [DSA 1323-1] New krb5 packages fix several vulnerabilities Moritz Muehlenhoff
- [SECURITY] [DSA 1324-1] New hiki packages fix missing input sanitising Steve Kemp
- FLEA-2007-0030-1: avahi avahi-glib avahi-sharp Foresight Linux Essential Announcement Service
- [security bulletin] HPSBTU02232 SSRT071429 rev.1 - Secure Web Server for HP Tru64 UNIX Powered by Apache (SWS) or HP Internet Express for Tru64 UNIX running PHP, Remote Arbitrary Code Execution, Unauthorized Disclosure of Information, or Denial of Service (DoS) security-alert(at)hp.com
- Secunia Research: KVIrc irc:// URI Handler Command Execution Vulnerability Secunia Research
- Secunia Research: Symantec Mail Security for SMTP Boundary Errors Secunia Research
- [SecurInfos] PCSoft WinDEV .wdp Project File Handling Buffer Overflow Jerome Athias
27 Jun 2007
- XEForum Cookie Modification Privilege Escalation Vulnerability Firewall1954(at)hotmail.com
- FLEA-2007-0029-1: krb5 krb5-workstation Foresight Linux Essential Announcement Service
- rPSA-2007-0136-1 httpd mod_ssl rPath Update Announcements
- eTicket version 1.5.5 XSS Attack Vulnerability securityresearch(at)netvigilance.com
- eTicket version 1.5.5 Path Disclosure Vulnerability securityresearch(at)netvigilance.com
- [SECURITY] [DSA 1322-1] New wireshark packages fix denial of service Moritz Muehlenhoff
- [GOODFELLAS - VULN] hpqxml.dll 2.0.0.133 from HP Digital Imaging Arbitary Data Write. Goodfellas SRT
- rPSA-2007-0135-1 krb5 krb5-server krb5-services krb5-test krb5-workstation rPath Update Announcements
26 Jun 2007
- CheckPoint VPN-1 UTM Edge Cross Site Request Forgery vulnerability Henri Lindberg - Louhi Networks Oy
27 Jun 2007
- Juniper SBR V 6.0.1 CRL-Checking problem USprotte(at)web.de
- Contact request - nVidia john-lindsay(at)ngssoftware.com
- HPSBTU02207 SSRT061239 rev.2 - HP Tru64 UNIX OpenSSL and BIND Remote Arbitrary Code Execution or Denial of Service (DoS) security-alert(at)hp.com
26 Jun 2007
- [ MDKSA-2007:136 ] - Updated evolution packages fix vulnerability security(at)mandriva.com
27 Jun 2007
- Openedge _mprosrv buffer overflow suresync(at)gmail.com
26 Jun 2007
- Conti FTP Server v1.0 DoS esc6(at)hush.com
27 Jun 2007
- Re: Apple Safari: idn urlbar spoofing Robert Swiecki
- SAP Internet Communication Framework (BC-MID-ICF) Vulnerability Ivan Buetler
26 Jun 2007
- PHP 4/5 htaccess safemode and open_basedir Bypass cxib(at)securityreason.com
27 Jun 2007
- SAP Web Dynpro Java (BC-WD-JAV) Vulnerability Ivan Buetler
26 Jun 2007
- [USN-478-1] libexif vulnerability Kees Cook
- [ MDKSA-2007:137 ] - Updated krb5 packages fix vulnerabilities security(at)mandriva.com
- [USN-477-1] krb5 vulnerabilities Kees Cook
- [ GLSA 200706-08 ] emul-linux-x86-java: Multiple vulnerabilities Raphael Marichez
- [ GLSA 200706-09 ] libexif: Buffer overflow Raphael Marichez
- [GOODFELLAS - VULN ] Avaxswf.dll v.1.0.0.1 from Avax Vector software ActiveX Arbitrary Data Write GOODFELLAS SRT
- iDefense Security Advisory 06.26.07: RealNetworks RealPlayer/HelixPlayer SMIL wallclock Stack Overflow Vulnerability iDefense Labs
- Calyptix Security Advisory CX-2007-04 - Cross-Site Request Forgery Attack Against Check Point Safe@Office Device Calyptix Security
- iDefense Security Advisory 06.26.07: Multiple Vendor Kerberos kadmind Rename Principal Buffer Overflow Vulnerability iDefense Labs
- MITKRB5-SA-2007-005: kadmind vulnerable to buffer overflow Tom Yu
- MITKRB5-SA-2007-004: kadmind multiple RPC lib vulnerabilities Tom Yu
- RE: "run as" local denial-of-service enables administrative account processes to be killed James C. Slora Jr.
- Re: KF Web Server 3.1.0 admin console XSS support(at)keyfocus.net
22 Jun 2007
- SYMSA-2007-004: Multiple Vulnerabilities in Xythos Server Products research(at)symantec.com
25 Jun 2007
- rPSA-2007-0133-1 emacs emacs-leim rPath Update Announcements
26 Jun 2007
- CFP: ISOI III (a DA workshop) Gadi Evron
25 Jun 2007
- [ISR] :: Infobyte Security Research :: release (ISR-sqlget.pl) v1.0.0 Francisco Amato
- RE: [Full-disclosure] Apple Safari: idn urlbar spoofing Larry Seltzer
- Re: [Full-disclosure] Apple Safari: idn urlbar spoofing Michal Zalewski
- Re: Apple Safari: idn urlbar spoofing Robert Swiecki
- Calendarix version 0.7. 20070307 Multiple SQL Injection Vulnerabilities securityresearch(at)netvigilance.com
- MyNews version 0.10 SQL Injection Vulnerability securityresearch(at)netvigilance.com
- [security bulletin] HPSBUX02225 SSRT071295 rev.1 - HP-UX Running Xserver, Local Denial of Service (DoS) security-alert(at)hp.com
- rPSA-2007-0131-1 libexif rPath Update Announcements
23 Jun 2007
- "run as" local denial-of-service enables administrative account processes to be killed Eitan Caspi
25 Jun 2007
- Safari XMLHttpRequest HTTP header injection Richard Moore
- Re: Re: [MajorSecurity Advisory #47]Simple Machines Forum (SMF) - Session fixation Issue motokochan(at)simplemachines.org
23 Jun 2007
- KF Web Server 3.1.0 admin console XSS imprili(at)gmail.com
25 Jun 2007
- Calendarix version 0.7. 20070307 Multiple XSS Attacks securityresearch(at)netvigilance.com
24 Jun 2007
- Papoo CMS 3.6 - Access Restriction Bypass Nico Leidecker
25 Jun 2007
- Calendarix version 0.7. 20070307 Multiple Path Disclosure Vulnerabilities securityresearch(at)netvigilance.com
24 Jun 2007
- phpTrafficA < 1.4.2 laurent.gaffie(at)gmail.com
- Safari Bookmarks Buffer Overflow Vulnerability azizov(at)itdefence.ru
25 Jun 2007
- Calendarix version 0.7. 20070307 Multiple Path Disclosure Vulnerabilities securityresearch(at)netvigilance.com
24 Jun 2007
- Pluxml 0.3.1 Remote Code Execution Exploit gmdarkfig(at)gmail.com
23 Jun 2007
- LiteWEB 2.7 404 Denial of Services imprili(at)gmail.com
25 Jun 2007
- Ingres wakeup setuid(ingres) file truncation NGSSoftware Insight Security Research
- Ingres stack overflow in uuid_from_char function NGSSoftware Insight Security Research
- POWER PHLOGGER v.2.2.5 (username) SQL Injection darkz.gsa(at)gmail.com
- Ingres Unauthenticated Pointer Overwrite 1 NGSSoftware Insight Security Research
24 Jun 2007
- Papoo CMS 3.6 - SQL Injection Nico Leidecker
25 Jun 2007
- Ingres verifydb local stack overflow NGSSoftware Insight Security Research
- Ingres Unauthenticated Pointer Overwrite 2 NGSSoftware Insight Security Research
23 Jun 2007
- SHTTPD V1.38 server source code disclosure imprili(at)gmail.com
- [GOODFELLAS - VULN] BarCodeAx.dll v. 4.9 ActiveX Control Remote Stack Buffer Overflow GOODFELLAS SRT
- [SECURITY] [DSA 1320-1] New clamav packages fix several vulnerabilities Moritz Muehlenhoff
- [SECURITY] [DSA 1321-1] New evolution-data-server packages fix arbitrary code execution Moritz Muehlenhoff
- [SECURITY] [DSA 1319-1] New maradns packages fix denial of service Moritz Muehlenhoff
22 Jun 2007
- [SECURITY] [DSA 1318-1] New ekg packages fix denial of service Moritz Muehlenhoff
- Re: Re: PHPMyDesk Beta Release 1.0b ==> RFI no-spam(at)brierley.com
- [SECURITY] [DSA 1317-1] New tinymux packages fix buffer overflow Steve Kemp
- [ MDKSA-2007:135 ] - Updated webmin packages fix XSS vulnerability security(at)mandriva.com
- FLEA-2007-0028-1: libexif Foresight Linux Essential Announcement Service
- [USN-476-1] redhat-cluster-suite vulnerability Kees Cook
- eNdonesia 8.4 [multiple injection sql] laurent.gaffie(at)gmail.com
- Re: Re: New Include Redirect Bug XSS All vBulletin v 3.x.x scott-REMOTE-(at)vbulletin.com
- [CAID 35450, 35451, 35452, 35453]: CA Products That Embed Ingres Multiple Vulnerabilities Williams, James K
- All Of the Mambo & Joomla Script Remote File Inclussion Bugs.. spymeta(at)yahoo.com
- Re: Re: New Include Redirect Bug XSS All vBulletin(r) v 3.x.x scott-REMOVE-(at)vbulletin.com
21 Jun 2007
- [USN-475-1] evolution-data-server vulnerability Kees Cook
- MS07-034: Executing arbitrary script with mhtml: protocol handler HASEGAWA Yosuke
- [ MDKSA-2007:134 ] - Updated xfsdump packages fix unsafe temporary directory creation issue security(at)mandriva.com
- [ MDKSA-2007:133 ] - Updated emacs packages fix DoS vulnerability security(at)mandriva.com
- iDefense Security Advisory 06.21.07: Ingres Database Multiple Heap Corruption Vulnerabilities iDefense Labs
- Re: New Include Redirect Bug XSS All vBulletin(r) v 3.x.x Steven M. Christey
- HPSBST02231 SSRT071438 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS07-030 to MS07-035 security-alert(at)hp.com
- [security bulletin] HPSBGN02199 SSRT071312 rev.3 - Mercury Quality Center ActiveX, Remote Unauthorized Arbitrary Code Executio security-alert(at)hp.com
- NetClassifieds [multiple vulnerabilities] laurent.gaffie(at)gmail.com
- [ MDKSA-2007:132 ] - Updated madwifi-source, wpa_supplicant packages fix vulnerabilities security(at)mandriva.com
- Re: New Include Redirect Bug XSS All vBulletin v 3.x.x kaneda(at)bohater.net
01 Jun 2007
- Outpost Enforcing system reboot with 'outpost_ipc_hdr' mutex Vulnerability Matousec - Transparent security Research
- phpreactor <===1.2.7 remote file include pito pito

Last message date: 29 Jun 2007
Archived on: 26 Sep 2008 EDT

110 messages sort by: [ thread ] [ author ] [ subject ] [ attachment ]
Other periods:[ Next, Date view ]

This archive was generated by hypermail 2.1.8 : 26 Sep 2008 EDT