BugTraq Mode:
(Page 1329 of 1748)  < Prev  1324 1325 1326 1327 1328 1329 1330 1331 1332 1333 1334  Next >
[FLSA-2005:152768] Updated ruby package fixes security issues 2005-05-13
Marc Deslauriers (marcdeslauriers videotron ca)
---------------------------------------------------------------------
Fedora Legacy Update Advisory

Synopsis: Updated ruby package fixes security issues
Advisory ID: FLSA:152768
Issue date: 2005-05-12
Product: Red Hat Linux, Fedora Core
Keywords:

[ more ]  [ reply ]
[FLSA-2005:152763] Updated qt packages fixes security issues 2005-05-13
Marc Deslauriers (marcdeslauriers videotron ca)
---------------------------------------------------------------------
Fedora Legacy Update Advisory

Synopsis: Updated qt packages fixes security issues
Advisory ID: FLSA:152763
Issue date: 2005-05-12
Product: Red Hat Linux
Keywords: Bugfix
CVE

[ more ]  [ reply ]
[USN-126-1] GNU TLS library vulnerability 2005-05-13
Martin Pitt (martin pitt canonical com)
===========================================================
Ubuntu Security Notice USN-126-1 May 13, 2005
gnutls11, gnutls10 vulnerability
CAN-2005-1431
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty War

[ more ]  [ reply ]
Gaim 1.2.1 -- PoC Stack Overflow 2005-05-14
Ron (iago valhallalegends com)
Product: Gaim
Version: 1.2.1
Remote: Yes
Effect: DoS, potential arbitrary code execution
Date: May 13, 2005

I was looking at the stack overflow reported in Gaim 1.2.1. It's
actually pretty trivial to find. The line that contains it looks like
this:

strcpy(url_buf, gurl_buf->str);

url_buf is

[ more ]  [ reply ]
[ GLSA 200505-10 ] phpBB: Cross-Site Scripting Vulnerability 2005-05-14
Sune Kloppenborg Jeppesen (jaervosz gentoo org)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200505-10
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - -

[ more ]  [ reply ]
Yahoo! Chat Add Buddy Without Consent Privacy Issue 2005-05-14
Torseq Tech. (bindshell gmail com)


Title: Yahoo! Chat Add Buddy Without Consent Privacy Issue
Discovered By: Torseq Tech. <bindshell (at) gmail (dot) com [email concealed]>
Date: Friday, May 13, 2005
Services affected: ALL of Yahoo! Chat
Vendor: Yahoo! Inc.
Proof-of-Concept included: Yes
Fix Available: No (needs fixed server-side)
Description: A vulnerability

[ more ]  [ reply ]
PHPHeaven PHPMyChat Cross-site Scripting Vulnerablitiy 2005-05-14
Megasky (magasky hotmail com)


www.phpheaven.net/

Vulnerable versions: PHPMyChat 0.14.5

Proof of concept:
http://www.example.com/chat/config/start-page.css.php3?Charset=iso-8859-
1&medium=10&FontName=<script>var%20test=1;alert(test);</script&
gt;

http://www.example.com/chat/config/style.css.php3?Charset=iso-8859-1&m

[ more ]  [ reply ]
Yahoo! Messenger URL Handler Remote DoS Vulnerability 2005-05-14
Torseq Tech. (bindshell gmail com)


Title: Yahoo! Messenger URL Handler Remote DoS Vulnerability
Discovered By: Torseq Tech. <bindshell (at) gmail (dot) com [email concealed]>
Date: Friday, May 13, 2005
Application affected: Yahoo! Messenger ver. 5.x - 6.0 Windows (all builds), *Nix/Mac ? (not tested)
Vendor: Yahoo! Inc.
Proof-of-Concept included: Yes
Fix Avail

[ more ]  [ reply ]
OpenBB SQL Injection & Cross-site Scripting Vulnerability 2005-05-13
Megasky (magasky hotmail com)


Open Bulletin Board
www.openbb.com

Vulnerable versions: 1.0.8

* OpenBB read.php SQL Injection Vulnerability

Proof of concept:
http://www.example.com/openbb/read.php?action=lastpost&TID='
http://www.example.com/openbb/read.php?TID='

* OpenBB member.php Cross-Site Scripti

[ more ]  [ reply ]
cross-domain cookie theft: who's to blame? 2005-05-13
Tim Tompkins (timt spiderlinks org)
Before disclosing the specifics, I'm just wondering wherein the fault lies:

I visited a site, say abc.foo.com that loaded javascript from an
external (marketing statistics) site, say xyz.bar.com. The script from
xyz.bar.com read the cookies set by abc.foo.com and posted them in a
subsequent ima

[ more ]  [ reply ]
Windows image size crash 2005-05-13
RSnake (rsnake shocking com) (3 replies)

I've tried this on two different versions of Windows: 2000 and XP
Pro SP1 and SP2 with IE6.0 and Firefox 1.0.3 and 1.0.4, and at minimum
it causes the tab that holds the content in Firefox to freeze and at the
worst it causes a blue screen after a few seconds for both IE and
Firefox. All but on

[ more ]  [ reply ]
Re: Windows image size crash 2005-05-14
Bernhard Mitterer (admin bmitt com)
Re: Windows image size crash 2005-05-13
Oliver J. Morais (oliver morais chello at)
Re: Windows image size crash 2005-05-13
Giuseppe `lan` Marocchio (giuseppe lanweb org)
Willings WebCam - Password Disclosure Issue 2005-05-13
SecuBox fRoGGz (unsecure writeme com)


-----------------------------
Software: Willings WebCam
Corporation: Illustrate
Revision Date: May 09, 2005
Version: 2.8
Tested on: Windows 2000 SP4
Vulnerability: Local Password Disclosure Issue
----------------------------------------------

BACKGROUND
----------
Willing Webcam is a simple, yet

[ more ]  [ reply ]
[FLSA-2005:154988] Updated openoffice.org packages fix security issues 2005-05-13
Marc Deslauriers (marcdeslauriers videotron ca)
---------------------------------------------------------------------
Fedora Legacy Update Advisory

Synopsis: Updated openoffice.org packages fix security issues
Advisory ID: FLSA:154988
Issue date: 2005-05-12
Product: Red Hat Linux, Fedora Core
Keywor

[ more ]  [ reply ]
[FLSA-2005:155508] Updated cvs package fixes security issues 2005-05-13
Marc Deslauriers (marcdeslauriers videotron ca)
---------------------------------------------------------------------
Fedora Legacy Update Advisory

Synopsis: Updated cvs package fixes security issues
Advisory ID: FLSA:155508
Issue date: 2005-05-12
Product: Red Hat Linux, Fedora Core
Keywords:

[ more ]  [ reply ]
Netvault Remote Heap Overflow (another one) 2005-05-12
nolimit bugtraq (nolimit bugtraq gmail com)
Here is another remote heap overflow for the Bakbone Netvault software.
The code is attached.

[ more ]  [ reply ]
OpenServer 5.0.7 UnixWare 7.1.4 UnixWare 7.1.3 : Hyper-Threading information leakage 2005-05-13
please_reply_to_security sco com

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

________________________________________________________________________
______

SCO Security Advisory

Subject: OpenServer 5.0.7 UnixWare 7.1.4 UnixWare 7.1.3 : Hyper-Threading information leakage
Advisory number: SCOSA-2005.24
Issue date: 2005

[ more ]  [ reply ]
Ultimate PHP Board (UPB) Security Advisory 2005-05-13
Morinex Eneco (m0r1n3x gmail com)


# Ultimate PHP Board (UPB) Security Advisory
# By : Morinex
# e-mail : morinex[at]marocmafia com
# date : 13-05-2k5
# shoutz : w00pie.nl - Woopie

>Target : Ultimate PHP Board (UPB)
>Vulnerable Versions: v. 1.8 until v 1.9.6
>URL : http://www.myupb.com - http://www.myupb.com/forum/

Tested

[ more ]  [ reply ]
ITU 2005 Call For Papers 2005-05-13
Michal Szymanski (ms hakinglab org)
Dear Bugtraq Readers,

I'd like to announce the call for papers for the IT UNDERGROUND 2005, a
two-day conference organized by Softwareâ??Conferences and hakin9.lab team
in 12-13 October 2005, Warsaw, Poland.

IT UNDERGROUND 2005 is a third edition of conference dedicated to IT
security issues, wher

[ more ]  [ reply ]
OllyDbg "INT3 AT" Format String Vulnerability 2005-05-13
Piotr Bania (bania piotr gmail com)


OllyDbg "INT3 AT" Format String Vulnerability
by Piotr Bania <bania.piotr (at) gmail (dot) com [email concealed]>
http://pb.specialised.info

Original location:
http://pb.specialised.info/all/adv/olly-int3-adv.txt

Severity: High / Medium - code execution.
Version affected: Pr

[ more ]  [ reply ]
32-bit qmail fun (qmail-pop3d) (fwd) 2005-05-12
Lars Olsson (jlo ludd luth se)


---------- Forwarded message ----------
Date: Sat, 7 May 2005 16:37:22 +0200 (CEST)
From: Lars Olsson <jlo (at) ludd.luth (dot) se [email concealed]>
To: full-disclosure (at) lists.grok.org (dot) uk [email concealed]
Cc: bugtraq (at) securityfocus (dot) com [email concealed], djb (at) cr.yp (dot) to [email concealed]
Subject: 32-bit qmail fun (qmail-pop3d)

As noted in my previous mail, there's a potential prob

[ more ]  [ reply ]
FreeBSD Security Advisory FreeBSD-SA-05:09.htt [REVISED] 2005-05-13
FreeBSD Security Advisories (security-advisories freebsd org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

========================================================================
=====
FreeBSD-SA-05:09.htt Security Advisory
The FreeBSD Project

Topic: in

[ more ]  [ reply ]
[USN-124-2] Fixed packages for USN-124-1 2005-05-12
Martin Pitt (martin pitt canonical com)
===========================================================
Ubuntu Security Notice USN-124-2 May 12, 2005
mozilla-firefox bug fix
https://bugzilla.ubuntu.com/show_bug.cgi?id=10643
===========================================================

A security issue affects the following Ubuntu releas

[ more ]  [ reply ]
[USN-124-1] Mozilla and Firefox vulnerabilities 2005-05-11
Martin Pitt (martin pitt canonical com)
===========================================================
Ubuntu Security Notice USN-124-1 May 11, 2005
mozilla-firefox, mozilla vulnerabilities
CAN-2005-1153, CAN-2005-1154, CAN-2005-1155, CAN-2005-1156,
CAN-2005-1157, CAN-2005-1158, CAN-2005-1160
==========================================

[ more ]  [ reply ]
(Page 1329 of 1748)  < Prev  1324 1325 1326 1327 1328 1329 1330 1331 1332 1333 1334  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus