BugTraq Mode:
(Page 1274 of 1748)  < Prev  1269 1270 1271 1272 1273 1274 1275 1276 1277 1278 1279  Next >
Greyhats Security back online 2005-09-16
pvnick gmail com
It's been a while, but I have decided that because a lot of valuable information is hosted on greyhatsecurity.org, that it is within everyone's best interest to share the material.

Some things that have changed:
- The layout. The navigation system looks a lot cooler now (IMHO) and is easier to fol

[ more ]  [ reply ]
Re: [Full-disclosure] FireFox Host: Buffer Overflow is not just exploitable on FireFox 2005-09-16
Juha-Matti Laurio (juha-matti laurio netti fi)
> This problem also effects Thunderbird (tested) and im guessing
> Netscape's Mail client (untested) which it really can't do much except
> cause Thunderbird/Netscape to crash without javascript.
>
> Include the linked source in an email for your testing.
>
> http://www.milw0rm.com/down.php?id=120

[ more ]  [ reply ]
RE: [Full-disclosure] FireFox Host: Buffer Overflow is not justexploitable on FireFox 2005-09-15
Juha-Matti Laurio (juha-matti laurio netti fi)
> Hi Juha!
>
> > I have informed the vendor Netscape being affected on 9th
> > September 2005.
>
> I did the same on the 10th of September - still no reply nor official
> statement from Netscape which makes me a little worried.

Good to know. It seems that's their way to act.
They had a coverage

[ more ]  [ reply ]
CDMA1X Security 2005-09-16
pen-test securityfocus com
Hi,

Does anybody knows well known threats and vulnerabilities in the CDMA1X
system? Which technology is most security between CDMA1X and GRPS.

Thank you very much for your help me.

Carlos

[ more ]  [ reply ]
Re: PHP Nuke <= 7.8 Multiple SQL Injections 2005-09-15
Matthias Jim Knopf (jim users de)
What do you gain from that? In what way would you think your advice did
ANYTHING GOOD?
You did neither issue a "addslashes()" as appropriate for SQL-commands,
nor did you explain, why a variable set by a POST or a COOKIE could be
worse than anything you could give any URL by appending '?name=...' o

[ more ]  [ reply ]
Re: PHP Nuke <= 7.8 Multiple SQL Injections 2005-09-15
Paul Laudanski (zx castlecops com)
On Fri, 16 Sep 2005, Matthias Jim Knopf wrote:

> What do you gain from that? In what way would you think your advice did
> ANYTHING GOOD?
> You did neither issue a "addslashes()" as appropriate for SQL-commands,
> nor did you explain, why a variable set by a POST or a COOKIE could be
> worse than

[ more ]  [ reply ]
TSLSA-2005-0049 - multi 2005-09-16
Trustix Security Advisor (tsl trustix org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
Trustix Secure Linux Security Advisory #2005-0049

Package names: kernel, util-linux, xorg-x11
Summary: Multiple vulnerabilities
Date: 2005-09-16
A

[ more ]  [ reply ]
[FLSA-2005:152919] Updated grip package fixes security issue 2005-09-16
Marc Deslauriers (marcdeslauriers videotron ca)
---------------------------------------------------------------------
Fedora Legacy Update Advisory

Synopsis: Updated grip package fixes security issue
Advisory ID: FLSA:152919
Issue date: 2005-09-15
Product: Red Hat Linux, Fedora Core
Keywords:

[ more ]  [ reply ]
(TOOL) TAPiON ver 0.1c 2005-09-16
Piotr Bania (bania piotr gmail com)
Hi,

For those who are interrested, new version (0.1c) of TAPiON (polymorphic
decryptor generator) is now available. The package can be downloaded at:

http://pb.specialised.info/all/tapion/

- the list of changes in 0.1c version is also stored at this url.

best regards,
Piotr Bania

--
--------

[ more ]  [ reply ]
[SECURITY] [DSA 815-1] New kdebase packages fix local root vulnerability 2005-09-16
joey infodrom org (Martin Schulze)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
Debian Security Advisory DSA 815-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Martin Schulze
September 16th, 2005

[ more ]  [ reply ]
gwcc insecure temporary file creation 2005-09-16
ZATAZ Audits (exploits zataz net)
#########################################################

gwcc insecure temporary file creation

Vendor: http://gwcc.sourceforge.net/
Advisory: http://www.zataz.net/adviso/gwcc-09052005.txt
Vendor informed: yes
Exploit available: yes
Impact : low
Exploitation : low

################################

[ more ]  [ reply ]
PHP SESSION MODIFICATION 2005-09-16
unknow uw-team org (1 replies)
-- == -- == -- == -- == -- == -- == -- == -- == -- == --
Name: PHP SESSION
Version: tested on 3.x and 4.x
Homepage: http://php.net/

Authors: unknow (from uw-team) and adam_i
Date: 16 September 2005
-- == -- == -- == -- == -- == -- == -- == -- == -- == --

In PHP You can define a session variable by

[ more ]  [ reply ]
Re: PHP SESSION MODIFICATION 2005-09-16
David N Murray (dmurray jsbsystems com)
SUSE Security Announcement: evolution (SUSE-SA:2005:054) 2005-09-16
Ludwig Nussel (ludwig nussel suse de)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

________________________________________________________________________
______

SUSE Security Announcement

Package: evolution
Announcement ID: SUSE-SA:2005:054
Date:

[ more ]  [ reply ]
ncompress insecure temporary file creation 2005-09-16
ZATAZ Audits (exploits zataz net)
#########################################################

ncompress insecure temporary file creation

Vendor: ftp://ftp.leo.org/pub/comp/os/unix/linux/sunsite/utils/compress/
Advisory: http://www.zataz.net/adviso/ncompress-09052005.txt
Vendor informed: yes
Exploit available: yes
Impact : low
Exploi

[ more ]  [ reply ]
SUSE Security Announcement: squid (SUSE-SA:2005:053) 2005-09-16
Thomas Biege (thomas suse de)

-----BEGIN PGP SIGNED MESSAGE-----

________________________________________________________________________
______

SUSE Security Announcement

Package: squid
Announcement ID: SUSE-SA:2005:053
Date: Fri, 16 Sep

[ more ]  [ reply ]
arc insecure temporary file creation 2005-09-16
ZATAZ Audits (exploits zataz net)
#########################################################

arc insecure temporary file creation

Vendor: http://arc.sourceforge.net/
Advisory: http://www.zataz.net/adviso/arc-09052005.txt
Vendor informed: yes
Exploit available: yes
Impact : low
Exploitation : low

##################################

[ more ]  [ reply ]
Re: CastleCops ramps up fight against CoolWebSearch/HomeSearch 2005-09-16
Paul Laudanski (zx castlecops com)
Microsoft has a research team that seeks out new spyware threats for the
MSAS database. They write up their own analysis so the threats listed in
our database most likely have a different name and method for identifying
malware BHOs. The experts here at CCSP do share information on new
threats

[ more ]  [ reply ]
worring about YaST in SuSE 9.3 and maybe lower 2005-09-16
innate gmx de (1 replies)
author: l0om
email: email:l0om | a7 | excluded d07 org
page: www.excluded.org

worring about YaST in SuSE 9.3 and maybe lower

iam wondering about the installation routine from SuSE linux 9.3 and maybe some lower verisons.
YaST is creating a directory named "/var/adm/YaST/InstSrcManager/IS_CACH

[ more ]  [ reply ]
Re: worring about YaST in SuSE 9.3 and maybe lower 2005-09-16
Marcus Meissner (meissner suse de)
FF IDN buffer overflow workaround works in Netscape too 2005-09-15
Juha-Matti Laurio (juha-matti laurio netti fi)
Summary about Firefox IDN buffer overflow vulnerability workarounds in
Netscape Browser

[a new, more informative title used]

Instructions and methods described at Mozilla Foundation Security
Advisory "What Firefox and Mozilla users should know about the IDN
buffer overflow security issue"
https

[ more ]  [ reply ]
[FLSA-2005:163274] Updated CUPS packages fix security issue 2005-09-15
Marc Deslauriers (marcdeslauriers videotron ca)
---------------------------------------------------------------------
Fedora Legacy Update Advisory

Synopsis: Updated CUPS packages fix security issue
Advisory ID: FLSA:163274
Issue date: 2005-09-14
Product: Red Hat Linux, Fedora Core
Keywords:

[ more ]  [ reply ]
[FLSA-2005:163047] Updated squirrelmail package fixes security issues 2005-09-15
Marc Deslauriers (marcdeslauriers videotron ca)
---------------------------------------------------------------------
Fedora Legacy Update Advisory

Synopsis: Updated squirrelmail package fixes security issues
Advisory ID: FLSA:163047
Issue date: 2005-09-14
Product: Red Hat Linux, Fedora Core
Keyword

[ more ]  [ reply ]
[FLSA-2005:162680] Updated Zlib packagea fix security issues 2005-09-15
Marc Deslauriers (marcdeslauriers videotron ca)
---------------------------------------------------------------------
Fedora Legacy Update Advisory

Synopsis: Updated Zlib packagea fix security issues
Advisory ID: FLSA:162680
Issue date: 2005-09-14
Product: Fedora Core
Keywords: Bugfix
CVE N

[ more ]  [ reply ]
[FLSA-2005:160202] Updated mozilla packages fix security issues 2005-09-15
Marc Deslauriers (marcdeslauriers videotron ca)
---------------------------------------------------------------------
Fedora Legacy Update Advisory

Synopsis: Updated mozilla packages fix security issues
Advisory ID: FLSA:160202
Issue date: 2005-09-14
Product: Red Hat Linux, Fedora Core
Keywords:

[ more ]  [ reply ]
PTL Advisory 050825 - HP LaserJet Network Username and Information Enumeration 2005-09-15
Pinion Lab (lab pinion se)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --
Pinion Security Consulting AB
Tegeluddsvägen 92
115 28 Stockholm
Tel. +46 8 54591350
Fax. +46 8 54591369

PGP: B57F 2C79 1D8C 0F84 00D5 4076 7FF5 7413 697A 2DD0

- --

This e-mail is confidential to the named recipient and any
unauthorised

[ more ]  [ reply ]
(Page 1274 of 1748)  < Prev  1269 1270 1271 1272 1273 1274 1275 1276 1277 1278 1279  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus