[bugtraq] Thread Index

• Chronological Index · RSS feed

• [SECURITY] [DSA 600-1] New samba packages fix arbitrary file access, Martin Schulze   (October 07, 2004)
• [SECURITY] [DSA 560-1] New lesstif packages fix several vulnerabilities, Martin Schulze   (October 07, 2004)
• [ GLSA 200410-05 ] Cyrus-SASL: Buffer overflow and SASL_PATH vulnerabilities, Kurt Lieber   (October 07, 2004)
• Server crash in Flash Messaging 5.2.0g, Luigi Auriemma   (October 07, 2004)
• MDKSA-2004:106 - Updated cyrus-sasl packages fix local vulnerability, Mandrake Linux Security Team   (October 08, 2004)
• TSLSA-2004-0053 - cyrus-sasl, Trustix Security Advisor   (October 08, 2004)
• Limited \secure\ buffer-overflow in some old Monolith games, Luigi Auriemma   (October 09, 2004)
• ASP.NET cannonicalization issue, Evans, Arian   (October 09, 2004)
• [ GLSA 200410-06 ] CUPS: Leakage of sensitive information, Kurt Lieber   (October 09, 2004)
• [SECURITY] [DSA 562-1] New mysql packages fix several vulnerabilities, Martin Schulze   (October 11, 2004)
• Multiple vulnerabilities in ZanfiCmsLite, Lin Xiaofeng   (October 11, 2004)
• [MAxpatrol Security Advisory] Multiple vulnerabilities in GoSmart Message Board, Alexander Antipov   (October 11, 2004)
• [SECURITY] [DSA 458-3] New python2.2 packages really fix buffer overflow and restore functionality, Martin Schulze   (October 11, 2004)
• Microsoft cabarc directory traversal, Jelmer   (October 12, 2004)
• MonkeyShell: using XML-RPC for access to a remote shell, Abe Usher   (October 12, 2004)
• Regression in IE: Accessing remote/local content in IE (GM#009-IE), GreyMagic Security   (October 12, 2004)
  • Re: Regression in IE: Accessing remote/local content in IE (GM#009-IE), Nick FitzGerald   (October 12, 2004)  
   
• UnixWare 7.1.3up UnixWare 7.1.4 : CUPS before 1.1.21 allows remote attackers to cause a denial of service, please_reply_to_security   (October 12, 2004)
• Microsoft Internet Explorer Install Engine Control Buffer Overflow, NGSSoftware Insight Security Research   (October 12, 2004)
• [SECURITY] [DSA 563-2] New cyrus-sasl packages really fix arbitrary code execution, Martin Schulze   (October 12, 2004)
• Micronet wireless broadband router SP916BM admin password reset when power off, MrJoe   (October 12, 2004)
• UnixWare 7.1.4 : Multiple Vulnerabilities in libpng, please_reply_to_security   (October 12, 2004)
• CORE-2004-0802: IIS NNTP Service XPAT Command Vulnerabilities, CORE Security Technologies Advisories   (October 12, 2004)
  • Re: [VulnWatch] CORE-2004-0802: IIS NNTP Service XPAT Command Vulnerabilities, wirepair   (October 15, 2004)  
   
• Insecure Default Service DACL's in Windows 2003, Ziots, Edward   (October 12, 2004)
  • Re: Insecure Default Service DACL's in Windows 2003, Jean-Baptiste Marchand   (October 15, 2004)  
  • <Possible follow-ups>
  • RE: Insecure Default Service DACL's in Windows 2003, Kurt Dillard   (October 12, 2004)  
   
• Reverse Engineering the First Pocket PC Trojan, kers0r   (October 13, 2004)
• Microsoft IIS 5.x/6.0 WebDAV (XML parser) attribute blowup DoS, Amit Klein (AKsecurity)   (October 13, 2004)
• MS October Security bulletins, albatross   (October 13, 2004)