[bugtraq] Thread Index

• Chronological Index · RSS feed

• [SECURITY] [DSA 669-1] New php3 packages fix several vulnerabilities, Martin Schulze   (February 07, 2005)
• XSS Vulnerability at thefacebook.com, Jonathan Rockway   (February 07, 2005)
• VOIPSEC, VoIP Security Aliance   (February 07, 2005)
• New version of ike-scan (IPsec IKE scanner) available - v1.7, Roy Hills   (February 07, 2005)
• [OSX Finder] DS_Store arbitrary file overwrite vulnerability., Vade 79   (February 07, 2005)
• DMA[2005-0131a] - 'Setuid Perl PERLIO_DEBUG root owned file creation', KF (lists)   (February 07, 2005)
• Vulnerability in 3Com 3CServer v1.1, mandragore   (February 07, 2005)
• DMA[2005-0131b] - 'Setuid Perl PERLIO_DEBUG buffer overflow', KF (lists)   (February 07, 2005)
• [USN-76-1] Emacs vulnerability, Martin Pitt   (February 07, 2005)
• [ GLSA 200502-07 ] OpenMotif: Multiple vulnerabilities in libXpm, Thierry Carrez   (February 07, 2005)
• [USN-77-1] Squid vulnerabilities, Martin Pitt   (February 07, 2005)
• [ GLSA 200502-06 ] LessTif: Multiple vulnerabilities in libXpm, Thierry Carrez   (February 07, 2005)
• [Security Bulletin] HP Tru64 Unix Mozilla Application Suite 1.7.3 Remote Denial of Service (DoS), Boren, Rich (SSRT)   (February 07, 2005)
• Firedragging [Firefox 1.0], mikx   (February 07, 2005)
• Fireflashing [Firefox 1.0], mikx   (February 07, 2005)
  • Re: [Full-Disclosure] Fireflashing [Firefox 1.0], Jelmer Kuperus   (February 12, 2005)  
   
• OpenServer 5.0.6 OpenServer 5.0.7 : Vulnerabilities in long-lived TCP connections / Rose attack, please_reply_to_security   (February 07, 2005)
• Firetabbing [Firefox 1.0], mikx   (February 07, 2005)
• [ GLSA 200502-08 ] PostgreSQL: Local privilege escalation, Luke Macken   (February 07, 2005)
• iDEFENSE Security Advisory 02.07.05: SquirrelMail S/MIME Plugin Command Injection Vulnerability, iDefense Customer Service   (February 07, 2005)
• GMail / Google Groups ESMTP software b0f, Michal Zalewski   (February 07, 2005)
  • <Possible follow-ups>
  • Re: GMail / Google Groups ESMTP software b0f, Heather Adkins   (February 10, 2005)  
   
• [SePro Bugtraq] SQL-Injection in PerlDesk 1.x, deluxe   (February 08, 2005)
• UnixWare 7.1.4 : racoon multilple security issues, please_reply_to_security   (February 08, 2005)
• International Domain Name [IDN] support in modern browsers allows attackers to spoof domain name URLs + SSL certs., Brandon Kovacs   (February 08, 2005)
  • Re: International Domain Name [IDN] support in modern browsers allows attackers to spoof domain name URLs + SSL certs., Simon Østengaard   (February 10, 2005)  
  • Re: International Domain Name [IDN] support in modern browsers allows attackers to spoof domain name URLs + SSL certs., Will Kamishlian   (February 10, 2005)
    • Re: International Domain Name [IDN] support in modern browsers allows attackers to spoof domain name URLs + SSL certs., Peter J. Holzer   (February 11, 2005)
      • Re: International Domain Name [IDN] support in modern browsers allows attackers to spoof domain name URLs + SSL certs., Scott Gifford   (February 11, 2005)  
      • Re: International Domain Name [IDN] support in modern browsers allows attackers to spoof domain name URLs + SSL certs., Neil W Rickert   (February 12, 2005)