[bugtraq] Thread Index

• Chronological Index · RSS feed

• DMA[2005-0614a] - 'Global Hauri ViRobot Server cookie overflow', KF (lists)   (June 15, 2005)
• MADSHEEP-05SA (security advisory): WebHints <= v1.03 Remote Command Execution Vulnerability, Emanuele \"MadSheep\" Gentili   (June 15, 2005)
• eEye Advisory - EEYEB-20050316 - HTML Help File Parsing Buffer Overflow, Steve Manzuik   (June 15, 2005)
• MDKSA-2005:101 - Updated tcpdump packages fix vulnerability, Mandriva Security Team   (June 16, 2005)
• MDKSA-2005:102 - Updated gedit packages fix format string vulnerability, Mandriva Security Team   (June 16, 2005)
• M4DR007-06SA (security advisory): Multiple vulnerabilities in UPB 1.9.6 GOLD, Alberto Trivero   (June 16, 2005)
  • <Possible follow-ups>
  • Re: M4DR007-06SA (security advisory): Multiple vulnerabilities in UPB 1.9.6 GOLD, fraser   (June 20, 2005)  
   
• [SM-ANNOUNCE] Patch fixes SquirrelMail cross site scripting vulnerabilities [CAN-2005-1769], Jonathan Angliss   (June 16, 2005)
• SquirrelMail "vendor" notification feeler, Jonathan Angliss   (June 16, 2005)
• Adobe Reader 7: XML External Entity (XXE) Attack, Sverre H. Huseby   (June 16, 2005)
  • Re: Adobe Reader 7: XML External Entity (XXE) Attack, Slawek   (June 20, 2005)  
   
• e107 v0.617 several new and old vulnerabilities, Marc Ruef   (June 16, 2005)
• Passwords Decrypter for UPB <= 1.9.6, Alberto Trivero   (June 16, 2005)
• [ GLSA 200506-13 ] webapp-config: Insecure temporary file handling, Sune Kloppenborg Jeppesen   (June 17, 2005)
• JBOSS 3.2.2-3.2.7 / 4.0.2 installation path disclosure / config disclosure / version fingerprinting, Marc Schoenefeld   (June 18, 2005)
• Source Code Disclosure in Yaws Webserver <1.56, Daniel Fabian   (June 20, 2005)
• Sudo version 1.6.8p9 now available, fixes security issue., Todd C. Miller   (June 20, 2005)
• Another tcpdump BGP infinite loop vulnerability (CAN-2005-1267), Simon L. Nielsen   (June 20, 2005)
• [ GLSA 200506-14 ] Sun and Blackdown Java: Applet privilege escalation, Sune Kloppenborg Jeppesen   (June 20, 2005)
• [ECHO_ADV_18$2005] Multiple SQL INJECTION in Ublog Reload 1.0.5, the_day   (June 20, 2005)
• Cisco VPN Concentrator Groupname Enumeration Vulnerability, Roy Hills   (June 20, 2005)
  • <Possible follow-ups>
  • RE: Cisco VPN Concentrator Groupname Enumeration Vulnerability, Dario Ciccarone (dciccaro)   (June 29, 2005)  
   
• paFaq Multiple Vulnerabilities, GulfTech Security Research   (June 20, 2005)
• [ GLSA 200506-15 ] PeerCast: Format string vulnerability, Thierry Carrez   (June 20, 2005)
• Black Hat Briefings Announcements, Jeff Moss   (June 20, 2005)
• [ GLSA 200506-16 ] cpio: Directory traversal vulnerability, Luke Macken   (June 20, 2005)
• Novell GroupWise Plain Text Password Vulnerability., Security Team   (June 20, 2005)
• Advisory 01/2005: Fileupload/download vulnerability in Trac, Stefan Esser   (June 20, 2005)
• [Hat-Squad] i-Gallery directory traversal, Hat-Squad Security Team   (June 21, 2005)
• Anti-Fraud Method?, Sumy   (June 21, 2005)