[bugtraq] Thread Index

• Chronological Index · RSS feed

• Advisory 06/2008: PHP ZipArchive::extractTo() Directory Traversal Vulnerability, Stefan Esser   (December 04, 2008)
• DDIVRT-2008-18 Orb Denial of Service, DDI . VulnerabilityAlert   (December 04, 2008)
• CVE-2008-2086: Java Web Start File Inclusion via System Properties Override, VSR Advisories   (December 04, 2008)
• [SECURITY] [DSA 1680-1] New clamav packages fix potential code execution, Florian Weimer   (December 04, 2008)
• [UPRSN] Ubuntu Privacy Remix 8.04r1 fixes security issues, Ubuntu Privacy Remix Team   (December 04, 2008)
• [SECURITY] [DSA 1681-1] New Linux 2.6.24 packages fix several vulnerabilities, dann frazier   (December 04, 2008)
• iDefense Security Advisory 12.04.08: Sun Java JRE TrueType Font Parsing Heap Overflow Vulnerability, iDefense Labs   (December 04, 2008)
• Joomla Component mydyngallery, r3d . w0rm   (December 04, 2008)
• iDefense Security Advisory 12.04.08: Sun Java Web Start GIF Decoding Memory Corruption Vulnerability, iDefense Labs   (December 04, 2008)
• iDefense Security Advisory 12.04.08: Sun Java JRE Pack200 Decompression Integer Overflow Vulnerability, iDefense Labs   (December 04, 2008)
• [ MDVSA-2008:237 ] apache2, security   (December 04, 2008)
• [USN-687-1] nfs-utils vulnerability, Marc Deslauriers   (December 04, 2008)
• iDefense Security Advisory 12.04.08: Sun Java JRE TrueType Font Parsing Integer Overflow Vulnerability, iDefense Labs   (December 04, 2008)
• ZDI-08-077: Trillian AIM IMG Tag Parsing Stack Overflow Vulnerability, zdi-disclosures   (December 05, 2008)
• ZDI-08-078: Trillian IMG SRC ID Memory Corruption Vulnerability, zdi-disclosures   (December 05, 2008)
• ZDI-08-079: Trillian AIM Plugin Malformed XML Tag Heap Overflow Vulnerability, zdi-disclosures   (December 05, 2008)
• ZDI-08-080: Sun Java AWT Library Sandbox Violation Vulnerability, zdi-disclosures   (December 05, 2008)
• ZDI-08-081: Sun Java Web Start and Applet Multiple Sandbox Bypass Vulnerabilities, zdi-disclosures   (December 05, 2008)
• [ MDVSA-2008:238 ] libsamplerate, security   (December 05, 2008)
• CVE-2008-5079: multiple listen()s on same socket corrupts the vcc table, Hugo Dias   (December 05, 2008)
• RE: DDIVRT-DDIVRT-2008-15 iPhone Configuration Web Utility 1.0 for Windows Directory Traversal, VulnerabilityAlert   (December 05, 2008)
• [ MDVSA-2008:239 ] clamav, security   (December 06, 2008)
• [ GLSA 200812-08 ] Mgetty: Insecure temporary file usage, Pierre-Yves Rofes   (December 06, 2008)
• SecurityReason: PHP 5.2.6 SAPI php_getuid() overload, cxib   (December 06, 2008)
  • Re: SecurityReason: PHP 5.2.6 SAPI php_getuid() overload, Eygene Ryabinkin   (December 08, 2008)
    • Re: SecurityReason: PHP 5.2.6 SAPI php_getuid() overload, Maksymilian Arciemowicz   (December 08, 2008)
      • Re: SecurityReason: PHP 5.2.6 SAPI php_getuid() overload, Eygene Ryabinkin   (December 08, 2008)  
       
     
   
• [SECURITY] [DSA 1682-1] New squirrelmail packages fix cross site scripting, Thijs Kinkhorst   (December 08, 2008)
• Two XSS Flaws in PrestaShop 1.1.0.3, th3 . r00k . ieatpork   (December 08, 2008)
• XSS in PHPepperShop v 1.4, th3 . r00k . ieatpork   (December 08, 2008)