[bugtraq] Thread Index

• Chronological Index · RSS feed

• Players overflow in Serious engine UDP (was Alpha Black Zero, 29 Sep 2004), Luigi Auriemma   (November 30, 2004)
• [SHK-001]Payflow Link Default Config may lead to Hidden Field Modification, M. Shirk   (November 30, 2004)
• MDKSA-2004:137-1 - Updated libxpm4 packages correct issues with previous update, Mandrake Linux Security Team   (November 30, 2004)
• CuteFTP 6.0 Professional Remote Buffer Overflow Vulnerability, Hongzhen Zhou   (November 30, 2004)
• Endless loops in the http-server and pna-proxy modules of Jana server 2.4.4, Luigi Auriemma   (November 30, 2004)
• Disclosure of file system information in Mozilla Firefox and Opera Browser:, Giovanni Delvecchio   (December 01, 2004)
  • Re: Disclosure of file system information in Mozilla Firefox and Opera Browser:, Liu Die Yu   (December 03, 2004)  
  • <Possible follow-ups>
  • RE: Disclosure of file system information in Mozilla Firefox and Opera Browser:, Thor Larholm   (December 07, 2004)  
   
• SUSE Security Announcement: various kernel problems (SUSE-SA:2004:042), Marcus Meissner   (December 01, 2004)
• Invision Power Board 'Allow auto login' setting override, Hillel Himovich   (December 01, 2004)
• Re: Pi3Web/2.0.0 File-Disclosure/Path Disclosure vuln, Holger Zimmermann   (December 01, 2004)
• [CLA-2004:904] Conectiva Security Announcement - cyrus-imapd, Conectiva Updates   (December 01, 2004)
• Multiple buffer overflows exist in Mercury/32, v4.01a, Dec 8 2003., Reed Arvin   (December 01, 2004)
• [USN-35-1] imagemagick vulnerabilities, Martin Pitt   (December 02, 2004)
• [USN-36-1] NFS statd vulnerability, Martin Pitt   (December 02, 2004)
• [SECURITY] [DSA 603-1] New openssl packages fix insecure temporary file creation, Martin Schulze   (December 02, 2004)
• [USN-33-1] libgd vulnerabilities, Martin Pitt   (December 02, 2004)
• [ GLSA 200411-37 ] Open DC Hub: Remote code execution, Luke Macken   (December 02, 2004)
• [CLA-2004:902] Conectiva Security Announcement - abiword, Conectiva Updates   (December 02, 2004)
• [USN-34-1] OpenSSH information leakage, Martin Pitt   (December 02, 2004)
• [KA Advisory 0411291] IPCop Cross Site Scripting Vulnerability in "proxylog.dat", Kurczaba Associates advisories   (December 02, 2004)
• Blog Torrent preview 0.8 - arbitary file download, Steve Kemp   (December 02, 2004)
• Cisco Security Advisory: Cisco CNS Network Registrar Denial of Service Vulnerability, Cisco Systems Product Security Incident Response Team   (December 02, 2004)
• Official IFRAME patch - make sure it installs correctly, Berend-Jan Wever   (December 02, 2004)
• Multiple vulnerabilities in Kreed 1.05, Luigi Auriemma   (December 02, 2004)
• rssh and scponly arbitrary command execution, Jason Wies   (December 02, 2004)
  • Re: rssh and scponly arbitrary command execution, Derek Martin   (January 15, 2005)  
   
• [USN-37-1] cyrus21-imapd vulnerability, Martin Pitt   (December 02, 2004)
• Remote Mercury32 Imap exploit, JohnH   (December 03, 2004)
• [CLA-2004:905] Conectiva Security Announcement - squirrelmail, Conectiva Updates   (December 03, 2004)