|
|
Colapse all |
Post message
Socket unreacheable in the Lithtech engine (new protocol) 2004-12-13 Luigi Auriemma (aluigi autistici org) iDEFENSE Security Advisory 12.13.04 - Multiple Vendor xzgv PRF Parsing Integer Overflow Vulnerability 2004-12-13 customer service mailbox (customerservice idefense com) Multiple Vendor xzgv PRF Parsing Integer Overflow Vulnerability iDEFENSE Security Advisory 12.13.04 http://www.idefense.com/application/poi/display?id=160&type=vulnerabilit ies December 13, 2004 I. BACKGROUND xzgv is a picture viewer for X, with a thumbnail-based file selector. It uses GTK+ and [ more ] [ reply ] MS IE User's Authentication Details (userid/password) Sharing Issue 2004-12-12 Debasis Mohanty (mail hackingspirits com) I would like to highlight an issue with IE which I have verified with Microsoft before posting it here. This issue of IE has got very limited security implications. I have also included the reply from Microsoft in this post for reference. The details of this IE issue can be found below: Microsof [ more ] [ reply ] KDE Security Advisory: Konqueror Window Injection Vulnerability 2004-12-13 Waldo Bastian (bastian kde org) KDE Security Advisory: Konqueror Window Injection Vulnerability Original Release Date: 2004-12-13 URL: http://www.kde.org/info/security/advisory-20041213-1.txt 0. References http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1158 http://secunia.com/advisories/13254/ http://secun [ more ] [ reply ] Citadel/UX <= v6.27 Remote Format String Vulnerability 2004-12-13 CoKi (coki nosystem com ar) ------------------------------------------------- No System Group - Advisory #09 - 12/12/04 ------------------------------------------------- Program: Citadel/UX Homepage: http://www.citadel.org Operating System: Linux and Unix-Compatible Vulnerable Versions: Citadel/UX v6.27 and prior Risk [ more ] [ reply ] Local off-by-one in mtr versions 0.55 to 0.65 2004-12-11 venglin freebsd lublin pl -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Local off-by-one in mtr versions 0.55 to 0.65 - ---------------------------------------------- Przemys³aw Frasunek <venglin (at) freebsd.lublin (dot) pl [email concealed]> / 11th December 2004 1. Background mtr combines the functionality of the 'traceroute' and 'ping' programs in [ more ] [ reply ] HOW TO BREAK XP SP2 POPUP BLOCKER: kick it in the nut ! 2004-12-10 http-equiv (at) excite (dot) com [email concealed] (1 malware com) Friday, December 10, 2004 Internet Explorer 6 on the gadget commonly known as Windows XP SP2 enjoys a fairly robust "popup blocker". This little 'thing' has been a major irritation to date. Nothing gets past it until now. Chatter exists that some sites have defeated it on the causal defau [ more ] [ reply ] In-game buffer-overflow in the Gamespy cd-key validation SDK 2004-12-10 Luigi Auriemma (aluigi autistici org) wget: Arbitrary file overwriting/appending/creating and other vulnerabilities 2004-12-09 Jan Minar (jjminar FastMail FM) ------------------------------------------------------------------------ Summary ------------------------------------------------------------------------ Product: wget Versions: 1.8.x Versions: 1.9.x (to lesser extent) Versions: Versions < 1.8 are probably vulnerable too Platforms: Linux, proba [ more ] [ reply ] CodeCon CFP deadline nearing 2004-12-10 Len Sassaman (rabbi abditum com) CodeCon 4.0 February 11-13, 2005 San Francisco CA, USA www.codecon.org Call For Papers CodeCon is the premier showcase of cutting edge software development. It is an excellent opportunity for programmers to demonstrate their work and keep abreast of what's going on in their community. All present [ more ] [ reply ] F-Secure Policy Manager - physical path disclosure 2004-12-09 oliver greyhat de F-Secure Policy Manager - Management Agent - physical path disclosure vulnerability ======================================================================== ============= Version: ======== FSMSH Version 5.11.2810 - on Win32 (not tested on other platforms) Vuln: ===== A webserver is running on P [ more ] [ reply ] |
|
Privacy Statement |
#######################################################################
Luigi Auriemma
Application: Lithtech engine (new network protocol)
http://www.lithtech.com
Games: Contract Jack <= 1.1
No o
[ more ] [ reply ]