[bugtraq] Thread Index

• Chronological Index · RSS feed

• [ GLSA 200701-22 ] Squid: Multiple Denial of Service vulnerabilities, Matthias Geerdsen   (January 25, 2007)
• Buffer overflow in VSAPI library of Trend Micro VirusWall 3.81 for Linux, Sebastian Wolfgarten   (January 25, 2007)
• high5 Review script Security Risk, anon   (January 25, 2007)
• The certification password of Internet Explorer 7 and operation of auto complete, support   (January 25, 2007)
• Vulnerability disclosure comments, Shawna McAlearney   (January 25, 2007)
• Omniture SiteCatalyst Multiple Cross-Site Scripting Vulnerabilities, DoZ   (January 25, 2007)
• RubyGems 0.9.0 and earlier installation exploit, Eric Hodel   (January 25, 2007)
• Medium Risk Vulnerability in PGP Desktop, NGSSoftware Insight Security Research   (January 26, 2007)
• [USN-410-2] teTeX vulnerability, Kees Cook   (January 26, 2007)
• [ GLSA 200701-24 ] VLC media player: Format string vulnerability, Matthias Geerdsen   (January 26, 2007)
• [OPENADS-SA-2007-002] Max Media Manager v0.1.29 and v0.3.30 vulnerability fixed, Matteo Beccati   (January 26, 2007)
  • Re: [OPENADS-SA-2007-002] Max Media Manager v0.1.29 and v0.3.30 vulnerability fixed, Matteo Beccati   (January 27, 2007)  
   
• Movable Type <= 3.33 XSS Exploit, teracci2002   (January 26, 2007)
• [ MDKSA-2007:027 ] - Updated xine-ui packages fix vulnerabilities, security   (January 26, 2007)
• [ GLSA 200701-23 ] Cacti: Command execution and SQL injection, Matthias Geerdsen   (January 26, 2007)
• Cross-site Scripting with Local Privilege Vulnerability in Yahoo Messenger, hainamluke   (January 26, 2007)
  • RE: Cross-site Scripting with Local Privilege Vulnerability in Yahoo Messenger, Ahmed Sheipani   (January 27, 2007)
    • Re: Cross-site Scripting with Local Privilege Vulnerability in Yahoo Messenger, 3B.Security Researcher   (January 30, 2007)  
     
  • <Possible follow-ups>
  • Re: Cross-site Scripting with Local Privilege Vulnerability in Yahoo Messenger, Outlaw   (January 27, 2007)  
   
• PHP Membership Manager Cross-Site Scripting Vulnerability, DoZ   (January 26, 2007)
• FdScript <= v1.3.2 Remote File Disclosure Vulnerability, ajannhwt   (January 26, 2007)
• S21sec-034-en: Cisco VTP DoS vulnerability, S21sec Labs   (January 26, 2007)
  • Re: [Full-disclosure] S21sec-034-en: Cisco VTP DoS vulnerability, Clay Seaman-Kossmeyer   (January 30, 2007)  
   
• iDefense Security Advisory 01.26.07: Multiple Vendor libchm Page Block Length Memory Corruption Vulnerability, iDefense Labs   (January 26, 2007)
• rPSA-2007-0021-1 bind bind-utils, rPath Update Announcements   (January 26, 2007)
• rPSA-2007-0020-1 rmake, rPath Update Announcements   (January 26, 2007)
• Dexia website security alert, Jos Kirps   (January 26, 2007)
  • Re: Dexia website security alert, Thierry Zoller   (January 29, 2007)  
   
• WS_FTP 2007 Professional SCP handling format string vulnerability, Michal Bucko   (January 27, 2007)
• [ MDKSA-2007:029 ] - Updated libsoup packages fix DoS vulnerability, security   (January 27, 2007)