[bugtraq] Thread Index

• Chronological Index · RSS feed

• Centra 7 XSS Exploit, Clorox   (April 13, 2005)
• IRM 011: Sygate,Security Agent (Sygate Secure Enterprise) Fail Open DoS, IRM Advisories   (April 13, 2005)
• eGroupWare Leaks Files, Gerald Quakenbush   (April 13, 2005)
• Remote Buffer Overflow in Lotus Domino, Next Generation Insight Security Research (NGS Software)   (April 13, 2005)
• Re: Sql injection, xss and path disclosure vulnerabilities in PostNuke 0.760-RC3, Dionysios G. Synodinos   (April 13, 2005)
• QuickTime for Windows malformed GIF DoS, liquid   (April 13, 2005)
• [ GLSA 200504-09 ] Axel: Vulnerability in HTTP redirection handling, vorlon   (April 13, 2005)
• JavaMail allows directory traversal in attachments, Rafael San Miguel Carrasco   (April 13, 2005)
• DoKuWiki file-upload vulnerabilities, kreon   (April 13, 2005)
• Window Washer 6.0: False Sense of Security, WBG Links   (April 13, 2005)
• WordPress XSS and HTML injection, Nicolas Montoza   (April 13, 2005)
• GLD (Greylisting daemon for Postfix) multiple vulnerabilities., dong-hun you   (April 13, 2005)
• 'Widcomm BTW (Microsoft Windows BT stack) Directory Transversal', KF (lists)   (April 13, 2005)
• zOOM Media Gallery - Simple SQL Injection discovery, Andreas Constantinides   (April 13, 2005)
• Patch available for critical Veritas i3 Server vulnerability, NGSSoftware Insight Security Research   (April 13, 2005)
• Gld 1.5 released (security fix), Salim Gasmi   (April 13, 2005)
• Multiple medium risk flaws fixed in new version of PHP (late advisory), NGSSoftware Insight Security Research   (April 13, 2005)
• Multiple High Risk flaws fixed in Oracle, NGSSoftware Insight Security Research   (April 13, 2005)
• IBM WebSphere Widespread configuration JSP disclosure, SPI Labs   (April 13, 2005)
• cpio TOCTOU file-permissions vulnerability, Imran Ghory   (April 13, 2005)
  • <Possible follow-ups>
  • Re: cpio TOCTOU file-permissions vulnerability, Steve G   (April 19, 2005)  
   
• [SECURITY] [DSA 707-1] New mysql packages fix several vulnerabilities, Martin Schulze   (April 13, 2005)
• NetManage RUMBA 7.4 Profile Handling Multiple Buffer Overflow Vulnerabilities, Bahaa Naamneh   (April 13, 2005)
• [SECURITY] [DSA 706-1] New axel packages fix arbitrary code execution, Martin Schulze   (April 13, 2005)
• MDKSA-2005:070 - Updated MySQL packages fix vulnerability, Mandrakelinux Security Team   (April 13, 2005)
• ms05016 POC, zwell zwell   (April 13, 2005)
• [ GLSA 200504-10 ] Gld: Remote execution of arbitrary code, Sune Kloppenborg Jeppesen   (April 13, 2005)
• HTTP RESPONSE SPLITTING by Diabolic Crab, dcrab   (April 13, 2005)
  • Re: HTTP RESPONSE SPLITTING by Diabolic Crab, Amit Klein (AKsecurity)   (April 18, 2005)  
   
• LG U8120 Mobile Phone Denial of Service, Luca Ercoli   (April 13, 2005)