[bugtraq] Thread Index

• Chronological Index · RSS feed

• [ MDVSA-2008:019 ] - Updated cairo packages fix vulnerability, security   (January 22, 2008)
• PacerCMS Multiple Vulnerabilities (XSS/SQL), db   (January 22, 2008)
• DeluxeBB 1.1 XSS Vulnerabilitie, nbbn   (January 22, 2008)
• Belong Site Builder 0.1b Bypass Admincp, رومانسي هكر   (January 22, 2008)
• XSRF under Dean’s Permalinks Migration 1.0, g30rg3_x   (January 22, 2008)
• Apache mod_negotiation Xss and Http Response Splitting, Minded Security Research Labs   (January 22, 2008)
• SDL_Image 1.2.6 and prior GIF handling buffer overflow, Gynvael Coldwind   (January 23, 2008)
• PHP 5.2.5 cURL safe_mode bypass, cxib   (January 23, 2008)
• [security bulletin] HPSBUX02306 SSRT071463 rev.1 - HP-UX Running ARPA Transport, Remote Denial of Service (DoS), security-alert   (January 23, 2008)
• UPDATED VMSA-2008-0001.1 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages, VMware Security team   (January 23, 2008)
• Web Wiz Forums Directory traversal, admin   (January 23, 2008)
• Web Wiz Rich Text Editor Directory traversal + HTM/HTML file creation on the server, admin   (January 23, 2008)
• Web Wiz NewsPad Directory traversal, admin   (January 23, 2008)
• [ MDVSA-2008:020 ] - Updated xine-lib packages fix remote code execution vulnerabilities, security   (January 23, 2008)
• Cisco Security Advisory: Cisco PIX and ASA Time-to-Live Vulnerability, Cisco Systems Product Security Incident Response Team   (January 23, 2008)
  • RE: Cisco Security Advisory: Cisco PIX and ASA Time-to-Live Vulnerability, Eric Davis   (January 23, 2008)  
   
• Cisco Security Advisory: Default Passwords in the Application Velocity System, Cisco Systems Product Security Incident Response Team   (January 23, 2008)
• Syhunt: HFS (HTTP File Server) Template Cross-Site Scripting and Information Disclosure Vulnerabilities, Felipe M. Aragon   (January 23, 2008)
• Syhunt: HFS (HTTP File Server) Log Arbitrary File/Directory Manipulation and Denial-of-Service Vulnerabilities, Felipe M. Aragon   (January 23, 2008)
• Syhunt: HFS (HTTP File Server) Username Spoofing and Log Forging/Injection Vulnerability, Felipe M. Aragon   (January 23, 2008)
• Woltlab Burning Board 2.3.6 PL2 Remote Delete Thread XSRF Vulnerability, nbbn   (January 23, 2008)
• [SECURITY] [DSA 1474-1] New exiv2 packages fix arbitrary code execution, Moritz Muehlenhoff   (January 24, 2008)
• [ GLSA 200801-10 ] TikiWiki: Multiple vulnerabilities, Raphaël Marichez   (January 24, 2008)
• [SECURITY] [DSA 1444-2] New php5 packages fix regression, Moritz Muehlenhoff   (January 24, 2008)
• PIX Privilege Escalation Vulnerability, tbbunn   (January 24, 2008)
  • Re: PIX Privilege Escalation Vulnerability, Eloy Paris   (January 24, 2008)  
  • <Possible follow-ups>
  • Re: Re: PIX Privilege Escalation Vulnerability, tbbunn   (January 25, 2008)
    • Re: PIX Privilege Escalation Vulnerability, Aaron Collins   (January 25, 2008)  
     
  • Re: Re: PIX Privilege Escalation Vulnerability, rvandenbrink   (February 05, 2008)  
   
• [ MDVSA-2008:025 ] - Updated x11-server-xgl packages fix multiple vulnerabilities, security   (January 24, 2008)