[bugtraq] Thread Index

• Chronological Index · RSS feed

• SUSE Security Announcement: cups (SUSE-SA:2004:031), Sebastian Krahmer   (September 16, 2004)
• [SECURITY] [DSA 545-1] New cupsys packages fix denial of service, Martin Schulze   (September 16, 2004)
• MDKSA-2004:093 - Updated squid packages fix DoS vulnerability, Mandrake Linux Security Team   (September 16, 2004)
• SUSE Security Announcement: apache2 (SUSE-SA:2004:032), Ludwig Nussel   (September 16, 2004)
• MDKSA-2004:094 - Updated printer-drivers packages fix vulnerability in foomatic, Mandrake Linux Security Team   (September 16, 2004)
• Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access, Michael Scheidell   (September 17, 2004)
  • Re: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access, Chris Norton   (September 17, 2004)
    • RE: Vulnerability in IBM Windows XP: default hidden Administrator account allows local Administrator access, Michael Wilson, Contractor   (September 18, 2004)  
     
   
• Re: [Bugtraq] McAfee VirusScan Privilege Escalation Vulnerability [iDEFENSE], bashis   (September 17, 2004)
• MDKSA-2004:096 - Updated apache2 packages fix multiple vulnerabilities, Mandrake Linux Security Team   (September 17, 2004)
• [ANNOUNCE] Apache HTTP Server 2.0.51 Released, Sander Striker   (September 17, 2004)
• RE: Microsoft GDIPlus.DLL JPEG Parsing Engine Buffer Overflow, Polazzo Justin   (September 17, 2004)
  • Re: Microsoft GDIPlus.DLL JPEG Parsing Engine Buffer Overflow, Gary Warner   (September 18, 2004)  
  • <Possible follow-ups>
  • RE: Microsoft GDIPlus.DLL JPEG Parsing Engine Buffer Overflow, Polazzo Justin   (September 17, 2004)  
  • RE: Microsoft GDIPlus.DLL JPEG Parsing Engine Buffer Overflow, Angelidis, Fotis(NSASOUDABAY)   (September 17, 2004)  
  • Microsoft GDIPlus.DLL JPEG Parsing Engine Buffer Overflow, Nick D.   (September 18, 2004)  
   
• XSA-2004-4: multiple string overflows, Michael Roitzsch   (September 17, 2004)
• wp-04-0001: Multiple Browser Cookie Injection Vulnerabilities, Paul Johnston   (September 17, 2004)
  • <Possible follow-ups>
  • wp-04-0001: Multiple Browser Cookie Injection Vulnerabilities, Paul Johnston   (September 20, 2004)  
   
• CESA-2004-004: libXpm, chris   (September 17, 2004)
• XSA-2004-5: heap overflow in DVD subpicture decoder, Michael Roitzsch   (September 17, 2004)
• FreeBSD kernel buffer overflow, gerarra   (September 17, 2004)
  • Re: FreeBSD kernel buffer overflow, Wesley Shields   (September 18, 2004)  
  • Re: FreeBSD kernel buffer overflow, Tim Newsham   (September 18, 2004)  
   
• Microsoft WordPerfect 5.x Converter Heap Overflow, NGSSoftware Insight Security Research   (September 18, 2004)
  • <Possible follow-ups>
  • Microsoft WordPerfect 5.x Converter Heap Overflow, NGSSoftware Insight Security Research Advisory   (September 20, 2004)  
   
• RsyncX vulnerabilities, Matt Johnston   (September 18, 2004)
• [exploitwatch.org] ALERT: Windows XP JPEG Buffer Overflow POC Exploit, admin   (September 18, 2004)
• MDKSA-2004:095-1 - Updated gdk-pixbuf and gtk+2 packages fix image loading vulnerabilities, Mandrake Linux Security Team   (September 18, 2004)
• [RLSA_04-2004] QNX crrtrap possible race condition vulnerability, Julio Cesar Fort   (September 18, 2004)