SecurityFocus

TSL-2004-0063 - multi 2004-11-29
Trustix Security Advisor (tsl trustix org)

Password Disclosure for SMB Shares in KDE's Konqueror 2004-11-29
Daniel Fabian (df sec-consult com)

Privilege escalation flaw in MDaemon 7.2. 2004-11-29
Reed Arvin (reedarvin gmail com)

[SECURITY] [DSA 602-1] New libgd2 packages fix arbitrary code execution 2004-11-29
joey infodrom org (Martin Schulze)

[ GLSA 200411-38 ] Sun and Blackdown Java: Applet privilege escalation 2004-11-29
Sune Kloppenborg Jeppesen (jaervosz gentoo org)

Multiple buffer overlows in WS_FTP Server Version 5.03, 2004.10.14. 2004-11-29
Reed Arvin (reedarvin gmail com)

[SECURITY] [DSA 601-1] New libgd1 packages fix arbitrary code execution 2004-11-29
joey infodrom org (Martin Schulze)

Macromedia provided wrong "Solution" in mpsb02-08 2004-11-28
Liu Die Yu (liudieyu umbrella name)

ncpfs buffer overflow 2004-11-29
Karol Wiêsek (appelast drumnbass art pl)

Address Bar Spoofing on Double Byte Character Set Locale Vulnerability (CAN-2004-0844) Patched in MS04-038 2004-11-29
Liu Die Yu (liudieyu umbrella name)

Buffer-overflow in Orbz 2.10 2004-11-29
Luigi Auriemma (aluigi autistici org)

Players overflow in Serious engine UDP (was Alpha Black Zero, 29 Sep 2004) 2004-11-28
Luigi Auriemma (aluigi autistici org)

[OpenPKG-SA-2004.051] OpenPKG Security Advisory (imapd) 2004-11-29
OpenPKG (openpkg openpkg org)

Microsoft Help ActiveX Control Related Topics Local Content Accessing Vulnerability 2004-11-27
Paul (paul greyhats cjb net)

[ GLSA 200411-36 ] phpMyAdmin: Multiple XSS vulnerabilities 2004-11-27
Luke Macken (lewk gentoo org)

Setiri + Invisible browsers != browsers 2004-11-27
Haroon Meer (haroon sensepost com)

[CLA-2004:900] Conectiva Security Announcement - sun-jre 2004-11-26
Conectiva Updates (secure conectiva com br)

[ GLSA 200411-35 ] phpWebSite: HTTP response splitting vulnerability 2004-11-26
Matthias Geerdsen (vorlon gentoo org)

Immunity, Inc Advisor 2004-11-26
Nicolas Waisman (nicolas waisman immunitysec com)

Java version downgrading proof-of-concept 2004-11-26
auto333584 hushmail com

Re: Winamp - Buffer Overflow In IN_CDDA.dll [Unpatched] 2004-11-27
K-OTiK Security (Special-Alerts k-otik com)

Phpbb id: 10701 update and Attachmodule add-on Directory Traversal 2004-11-26
zee psybnc it

PnTresMailer code browser 6.03 Vulnerabilities 2004-11-26
John Cobb (johnc nobytes com)

php 4.3.7 memory limit POC exploit 2004-11-26
Gyan chawdhary (gunnu45 hotmail com)

FluxBox crash vulnerability 2004-11-26
Quith (quith linux-hell net)

phpCMS <= 1.2.1 Xss Vulnerability, Information disclosure 2004-11-26
Cyrille Barthelemy (cb-lse ifrance com)

Re: STG Security Advisory: [SSA-20041122-12] Zwiki XSS vulnerability 2004-11-26
Chris Withers (chris simplistix co uk)

Re: MSIE flaws: nested array sort() loop Stack overflow exception 2004-11-26
isno (isno xfocus org)

MDKSA-2004:141 - Updated zip packages fix vulnerability 2004-11-25
Mandrake Linux Security Team (security linux-mandrake com)

Re: Atari800 - local root. (fwd) 2004-11-26
Petr Stehlik (pstehlik sophics cz)

RE: Winamp - Buffer Overflow In IN_CDDA.dll [Unpatched] 2004-11-26
alex cottle (eddie5659 hotmail com)

MDKSA-2004:140 - Updated a2ps packages fix vulnerability 2004-11-25
Mandrake Linux Security Team (security linux-mandrake com)

MDKSA-2004:139 - Updated cyrus-imapd packages fix multiple vulnerabilities 2004-11-25
Mandrake Linux Security Team (security linux-mandrake com)

[SECURITY] [DSA 597-1] New cyrus-imapd packages fix arbitrary code execution 2004-11-25
joey infodrom org (Martin Schulze)

Winamp - Buffer Overflow In IN_CDDA.dll [Unpatched] 2004-11-24
Brett Moore (brett moore security-assessment com)

[CLA-2004:899] Conectiva Security Announcement - samba 2004-11-25
Conectiva Updates (secure conectiva com br)

[SECURITY] [DSA 599-1] New tetex-bin packages fix arbitrary code execution 2004-11-25
joey infodrom org (Martin Schulze)

Re: [Full-Disclosure] FIREFOX flaws: nested array sort() loop Stack overflow exception 2004-11-25
Heikki Toivonen (heikki osafoundation org)

Rumours about Opera 2004-11-25
Marc Schoenefeld (schonef uni-muenster de)

Re: Sun Java Plugin arbitrary package access vulnerability 2004-11-25
Alla Bezroutchko (alla scanit be)

Re: Sun Java Plugin arbitrary package access vulnerability 2004-11-25
Peter Greenwood (peterg reel demon co uk)

Re: Liferay Cross Site Scripting Flaw 2004-11-25
michael young (myoung liferay com)

Re: [Full-Disclosure] Re: Sun Java Plugin arbitrary package access vulnerability 2004-11-25
Exchange (pauls utdallas edu)

[USN-32-1] mysql vulnerabilities 2004-11-25
Martin Pitt (martin pitt canonical com)

[ GLSA 200411-34 ] Cyrus IMAP Server: Multiple remote vulnerabilities 2004-11-25
Thierry Carrez (koon gentoo org)

Remote buffer overflow in MailEnable IMAP service [Hat-Squad Advisory] 2004-11-25
Jerome ATHIAS (jerome athias free fr)

EZshopper is still vulnerable against Directory Traversal. 2004-11-25
Zero_X www.lobnan.de Team (zero-x linuxmail org)

FIREFOX flaws: nested array sort() loop Stack overflow exception 2004-11-25
Berend-Jan Wever (skylined edup tudelft nl)

[SECURITY] [DSA 598-1] New yardradius packages fix arbitrary code execution 2004-11-25
joey infodrom org (Martin Schulze)

Atari800 - local root. 2004-11-25
Adam Zabrocki (pi3ki31ny wp pl)

Re: Sun Java Plugin arbitrary package access vulnerability 2004-11-25
Ken S (ken securitylist gmail com)

MSIE flaws: nested array sort() loop Stack overflow exception 2004-11-25
Berend-Jan Wever (skylined edup tudelft nl)

XSS in Brazilian Insite products 2004-11-24
Carlos Ulver (carlos ulver gmail com)

Buffer Overflow in Open Dc Hub 0.7.14 2004-11-24
Donato Ferrante (fdonato autistici org)

Jabberd2.x remote BuffJabberd2.x remote Buffer Overflowser Overflows 2004-11-24
icbm (icbm 0x557 org)

[ GLSA 200411-32 ] phpBB: Remote command execution 2004-11-24
Sune Kloppenborg Jeppesen (jaervosz gentoo org)

Re: Changes to the filesystem while find is running - comments? 2004-11-24
James Youngman (bugtraq excession spiral-arm org)

Re: Router ZyXEL Prestige 650 HW http remote admin. 2004-11-24
Laurent Papier (papier sdv fr)

STG Security Advisory: [SSA-20041122-12] Zwiki XSS vulnerability 2004-11-24
advisory stgsecurity com

Re: [SIG^2 G-TEC] Prevx Home v1.0 Instrusion Prevention Features Can Be Disabled by Direct Service Table Restoration 2004-11-24
Ralph Harvey (ralph harvey prevx com)

[SIG^2 G-TEC] CMailServer WebMail v5.2 Multiple Vulnerabilities 2004-11-24
chewkeong security org sg

[ GLSA 200411-33 ] TWiki: Arbitrary command execution 2004-11-24
Sune Kloppenborg Jeppesen (jaervosz gentoo org)

Prozilla Remote Exploit 2004-11-24
Serkan Akpolat (sakpolat gmx net)

STG Security Advisory: [SSA-20041122-11] JSPWiki XSS vulnerability 2004-11-24
advisory stgsecurity com

Re: Changes to the filesystem while find is running - comments? 2004-11-24
Casper Dik Sun COM

Re: Changes to the filesystem while find is running - comments? 2004-11-24
devnull Rodents Montreal QC CA

[USN-31-1] cyrus21-imapd vulnerabilities 2004-11-23
Martin Pitt (martin pitt canonical com)

Limited buffer-overflow and arbitrary memory access in Star Wars Battlefront 1.11 2004-11-24
Luigi Auriemma (aluigi autistici org)

Re: Changes to the filesystem while find is running - comments? 2004-11-24
Casper Dik Sun COM

Re: Changes to the filesystem while find is running - comments? 2004-11-24
Martin Buchholz (Martin Buchholz Sun COM)

[SECURITY] [DSA 596-2] New sudo packages removes debug output 2004-11-24
joey infodrom org (Martin Schulze)

Re: Incorrect reporting of the Bofra/The Register exploit 2004-11-24
Florian Laws (florian void s bawue de)

[SECURITY] [DSA 596-1] New sudo packages fix privilege escalation 2004-11-24
joey infodrom org (Martin Schulze)

[SECURITY] [DSA 595-1] New bnc packages arbitrary code execution 2004-11-24
joey infodrom org (Martin Schulze)

STG Security Advisory: [SSA-20041122-09] cscope insecure temp file creation vulnerability 2004-11-24
advisory stgsecurity com

STG Security Advisory: [SSA-20041122-10] KorWeblog directory traversal vulnerability 2004-11-24
advisory stgsecurity com

Re: Router ZyXEL Prestige 650 HW http remote admin. 2004-11-24
Steve Clement (steve ion lu)

Re: [SIG^2 G-TEC] Prevx Home v1.0 Instrusion Prevention Features Can Be Disabled by Direct Service Table Restoration 2004-11-23
dullien gmx de

[CLA-2004:896] Conectiva Security Announcement - bugzilla 2004-11-23
Conectiva Updates (secure conectiva com br)

SecureCRT - Remote Command Execution 2004-11-23
Brett Moore (brett moore security-assessment com)

MDKSA-2004:138 - Updated XFree86 packages fix libXpm vulnerabilities 2004-11-23
Mandrake Linux Security Team (security linux-mandrake com)

Re: Changes to the filesystem while find is running - comments? 2004-11-23
James Youngman (bugtraq excession spiral-arm org)

Windows Mobile Pocket PC Security 2004-11-23
kers0r (root asylum-nz com)

Re: Router ZyXEL Prestige 650 HW http remote admin. 2004-11-23
Hugo van der Kooij (hvdkooij vanderkooij org)

Re: Changes to the filesystem while find is running - comments? 2004-11-22
James Youngman (bugtraq excession spiral-arm org)

Incorrect reporting of the Bofra/The Register exploit 2004-11-22
matt welho com

Re: Sun Java Plugin arbitrary package access vulnerability 2004-11-23
Ken S (ken securitylist gmail com)

Re: Changes to the filesystem while find is running - comments? 2004-11-23
Martin Buchholz (Martin Buchholz Sun COM)

[CLA-2004:894] Conectiva Security Announcement - shadow-utils 2004-11-23
Conectiva Updates (secure conectiva com br)

Sun Java Plugin arbitrary package access vulnerability 2004-11-23
Jouko Pynnonen (jouko iki fi)

Re: Changes to the filesystem while find is running - comments? 2004-11-23
Martin Buchholz (Martin Buchholz Sun COM)

Re: Changes to the filesystem while find is running - comments? 2004-11-23
psz maths usyd edu au (Paul Szabo)

Broadcast memory corruption in Soldier of Fortune II 1.03 2004-11-23
Luigi Auriemma (aluigi autistici org)

Re: Changes to the filesystem while find is running - comments? 2004-11-23
James Youngman (bugtraq excession spiral-arm org)

RE: iDEFENSE Security Advisory 11.22.04: Sun Java Plugin Arbitrary Package Access Vulnerability 2004-11-23
Sherlock, Nathan (Nathan Sherlock aimtrimark com)

IPFront - Release 2004-11-23
Hernan Racciatti (hracciatti gmail com)

Re: Changes to the filesystem while find is running - comments? 2004-11-23
psz maths usyd edu au (Paul Szabo)

echalk vuln 2004-11-23
kevin anonymous (undergroundwars gmail com)

Re: Changes to the filesystem while find is running - comments? 2004-11-22
psz maths usyd edu au (Paul Szabo)