[bugtraq] Thread Index

• Chronological Index · RSS feed

• [ GLSA 200501-09 ] xzgv: Multiple overflows, Thierry Carrez   (January 06, 2005)
• [ GLSA 200501-10 ] Vilistextum: Buffer overflow vulnerability, Thierry Carrez   (January 06, 2005)
• WinAc AND WinHKI ZIP File Directory Transversal, Rafel Ivgi, The-Insider   (January 06, 2005)
• Santy and SSL, Ofer Shezaf   (January 06, 2005)
• grsecurity 2.1.0 release / 5 Linux kernel advisories, Brad Spengler   (January 07, 2005)
  • <Possible follow-ups>
  • grsecurity 2.1.0 release / 5 Linux kernel advisories, Brad Spengler   (January 07, 2005)  
   
• Linux kernel sys_uselib local root vulnerability, Paul Starzetz   (January 07, 2005)
• Mozilla XBM Image Vulnerability, Luca Ercoli   (January 07, 2005)
• Simple PHP Blog directory traversal vulnerability, Madelman   (January 07, 2005)
• [SECURITY] [DSA 629-1] New kerberos packages fix arbitrary code execution, Martin Schulze   (January 07, 2005)
• Linux kernel uselib() privilege elevation, corrected, Paul Starzetz   (January 07, 2005)
• iDEFENSE Security Advisory [IDEF0725] Exim host_aton() Buffer Overflow Vulnerability, customer service mailbox   (January 07, 2005)
• Troj/Winser-A malware analysis, Steve Friedl   (January 08, 2005)
• iDEFENSE Security Advisory [IDEF0731] Exim auth_spa_server() Buffer Overflow Vulnerability, customer service mailbox   (January 08, 2005)
• Security Advisory: Woltlab Burning Board Lite formmail.php XSS, Martin Heistermann   (January 10, 2005)
• [ GLSA 200501-12 ] TikiWiki: Arbitrary command execution, Matthias Geerdsen   (January 10, 2005)
• [SECURITY] [DSA 630-1] New lintian packages fix insecure temporary directory, Martin Schulze   (January 10, 2005)
• SUSE Security Announcement: libtiff/tiff (SUSE-SA:2005:001), Thomas Biege   (January 10, 2005)
• [SECURITY] [DSA 632-1] New linpopup packages fix arbitrary code execution, Martin Schulze   (January 10, 2005)
• [SECURITY] [DSA 631-1] New kdlibs packages fix arbitrary FTP command execution, Martin Schulze   (January 10, 2005)
• SQL Injection Vulnerability in Invision Community Blog, darkhawk matrix   (January 10, 2005)
• [ GLSA 200501-17 ] KPdf, KOffice: More vulnerabilities in included Xpdf, Sune Kloppenborg Jeppesen   (January 11, 2005)
• [ GLSA 200501-16 ] Konqueror: Java sandbox vulnerabilities, Sune Kloppenborg Jeppesen   (January 11, 2005)
• [SECURITY] [DSA 634-1] New hylafax packages fix unauthorised access, Martin Schulze   (January 11, 2005)
• Multi-vendor AV gateway image inspection bypass vulnerability, Darren Bounds   (January 11, 2005)
• UPDATED: the insider exploit( = the latest ie 0day which involves SHOWMODALDIALOG), Liu Die Yu   (January 11, 2005)
• The Misuse of RC4 in Microsoft Word and Excel, Hongjun Wu   (January 11, 2005)
  • Re: The Misuse of RC4 in Microsoft Word and Excel, Brendan Dolan-Gavitt   (January 12, 2005)  
   
• HylaFAX hfaxd unauthorized login vulnerability, Lee Howard   (January 11, 2005)
• applicable exploit for winxp-sp2-uptodate Internet Explorer, Liu Die Yu   (January 11, 2005)