[bugtraq] Thread Index

• Chronological Index · RSS feed

• SUSE Security Announcement: sendmail remote code execution (SUSE-SA:2006:017), Thomas Biege   (March 22, 2006)
• [OpenPKG-SA-2006.007] OpenPKG Security Advisory (sendmail), OpenPKG   (March 22, 2006)
• sendmail vuln advisories (CVE-2006-0058), Marc Bejarano   (March 23, 2006)
  • Re: sendmail vuln advisories (CVE-2006-0058), Michal Zalewski   (March 23, 2006)  
   
• [ MDKSA-2006:058 ] - Updated sendmail packages fix remote vulnerability, security   (March 23, 2006)
• [SECURITY] [DSA 1014-1] New firebird2 packages fix denial of service, Martin Schulze   (March 23, 2006)
• [USN-265-1] cairo/Evolution library vulnerability, Martin Pitt   (March 23, 2006)
• Advisory 03/2006: KisMAC Cisco Vendor Tag Encapsulated SSID Overflow, Stefan Esser   (March 23, 2006)
• [ MDKSA-2006:059 ] - Updated kernel packages fix multiple vulnerabilities, security   (March 23, 2006)
• [ GLSA 200603-22 ] PHP: Format string and XSS vulnerabilities, Sune Kloppenborg Jeppesen   (March 23, 2006)
• [SECURITY] [DSA 1016-1] New evolution packages fix arbitrary code execution, Martin Schulze   (March 23, 2006)
• [SECURITY] [DSA 1015-1] New sendmail packages fix arbitrary code execution, Martin Schulze   (March 23, 2006)
• [ GLSA 200603-21 ] Sendmail: Race condition in the handling of asynchronous signals, Sune Kloppenborg Jeppesen   (March 23, 2006)
• [KAPDA::#37] - CoMoblog XSS, farhadkey   (March 23, 2006)
• PasswordSafe 3.0 weak random number generator allows key recovery attack, info   (March 23, 2006)
  • Re: PasswordSafe 3.0 weak random number generator allows key recovery attack, Dave Korn   (March 24, 2006)  
  • <Possible follow-ups>
  • Re: PasswordSafe 3.0 weak random number generator allows key recovery attack, ronys   (March 27, 2006)  
  • Re: PasswordSafe 3.0 weak random number generator allows key recovery attack, ronys   (September 07, 2006)  
   
• Vulnerability Alert Services - Independent List, Andy Cuff   (March 23, 2006)
  • <Possible follow-ups>
  • Re: Vulnerability Alert Services - Independent List, Juha-Matti Laurio   (March 24, 2006)  
   
• [SECURITY] [DSA 1017-1] New Linux kernel 2.6.8 packages fix several vulnerabilities, Moritz Muehlenhoff   (March 23, 2006)
• Microsoft Internet Explorer (mshtml.dll) - Remote Code Execution, advisories   (March 23, 2006)
• iDefense Security Advisory 03.23.05: ISS Multiple Products Local Privilege Escalation Vulnerability, labs-no-reply   (March 24, 2006)
• iDefense Security Advisory 03.23.06: RealNetworks RealPlayer and Helix Player Invalid Chunk Size Heap Overflow Vulnerability, labs-no-reply   (March 24, 2006)
• [ GLSA 200603-23 ] NetHack, Slash'EM, Falcon's Eye: Local privilege escalation, Sune Kloppenborg Jeppesen   (March 24, 2006)
  • Re: [ GLSA 200603-23 ] NetHack, Slash'EM, Falcon's Eye: Local privilege escalation, neeko   (March 24, 2006)
    • Re: [ GLSA 200603-23 ] NetHack, Slash'EM, Falcon's Eye: Local privilege escalation, Chris Gianelloni   (March 24, 2006)  
    • Re: [ GLSA 200603-23 ] NetHack, Slash'EM, Falcon's Eye: Local privilege escalation, Tavis Ormandy   (March 24, 2006)  
     
   
• Secunia Research: Microsoft Internet Explorer "createTextRange()" Code Execution, Secunia Research   (March 24, 2006)
• Secunia Research: Orion Application Server JSP Source Disclosure Vulnerability, Secunia Research   (March 24, 2006)