|
|
Colapse all |
Post message
[SECURITY] [DSA 594-1] New Apache packages fix arbitrary code execution 2004-11-17 joey infodrom org (Martin Schulze) [ GLSA 200411-25 ] SquirrelMail: Encoded text XSS vulnerability 2004-11-17 Sune Kloppenborg Jeppesen (jaervosz gentoo org) [waraxe-2004-SA#038 - Multiple vulnerabilities in Event Calendar module for PhpNuke] 2004-11-17 Janek Vind (come2waraxe yahoo com) Flaws in SP2 security features, part II 2004-11-16 Juergen Schmidt (ju heisec de) Date: 16.11.2005 Author: Juergen Schmidt, heise Security Original article: http://www.heise.de/security/artikel/53297 German version: http://www.heise.de/security/news/meldung/53306 Flaws in SP2 security features, part II With Service Pack 2 Microsoft introduced a couple of new security features. [ more ] [ reply ] Airport x-ray software creating images of phantom weapons? 2004-11-16 Jason Coombs (jasonc science org) My flight into Midway airport, Chicago, just sat on the runway for nearly two hours tonight because of a potential security breach in the terminal, described here: http://www.nbc5.com/news/3921217/detail.html?z=dp&dpswid=2265994&dppid=6 5194 A Transportation Security Administration representative a [ more ] [ reply ] [ GLSA 200411-24 ] BNC: Buffer overflow vulnerability 2004-11-16 Sune Kloppenborg Jeppesen (jaervosz gentoo org) [SECURITY] [DSA 593-1] New imagemagick packages fix arbitrary code execution 2004-11-16 joey infodrom org (Martin Schulze) Skype callto:// BoF technical details 2004-11-16 Berend-Jan Wever (skylined edup tudelft nl) (1 replies) Skype reported they've found a remotely exploitable BoF in the callto:// URI handler. New version has been released. http://www.skype.com/products/skype/windows/changelog.html http://secunia.com/advisories/13191/ Technical details: The bufferoverflow happens when a skype user clicks on a "callto:/ [ more ] [ reply ] Google Desktop Search ignores Preferences 2004-11-14 Elliott Bäck (ecb29 cornell edu) Overview: ----------------------------------------- Product: Google Desktop Search Versions: Beta 100504 (Current version) Date: 11-13-2004 Risk: Low (Local disclosure) Product Information: ----------------------------------------- From the application, "Google Desktop Search application [ more ] [ reply ] [USN-25-1] libgd2 vulnerability 2004-11-15 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-25-1 November 15, 2004 libgd2 vulnerability CAN-2004-0941 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty Warthog) The f [ more ] [ reply ] [SAMBA] CAN-2004-0882: Possiebl Buffer Overrun in smbd 2004-11-15 Gerald (Jerry) Carter (jerry samba org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Subject: Possible Buffer Overrun in smbd CVE #: CAN-2004-0882 Affected Versions: Samba 3.0.x <= 3.0.7 Summary: A possible buffer overrun in smbd could lead to code execution by a remote user Patch Availability - - ------------------ A patch for [ more ] [ reply ] iDEFENSE Security Advisory 11.15.04: Multiple Security Vulnerabilities in Fcron 2004-11-15 customer service mailbox (customerservice idefense com) Multiple Security Vulnerabilities in Fcron iDEFENSE Security Advisory 11.15.04 www.idefense.com/application/poi/display?id=157&type=vulnerabilities November 15, 2004 I. BACKGROUND Fcron is a periodical command scheduler which aims at replacing Vixie Cron, and implements most of its functionalitie [ more ] [ reply ] Multiple vulnerabilities in Hired Team: Trial (Shine engine) 2004-11-15 Luigi Auriemma (aluigi autistici org) Re: 04WebServer Three Vulnerabilities 2004-11-15 chewkeong security org sg In-Reply-To: <20041110172001.17019.qmail (at) www.securityfocus (dot) com [email concealed]> Author has released version 1.50 on 14 Nov 2004, which fixes these vulnerabilities. See updated SIG^2 Vulnerability Research Advisory http://www.security.org.sg/vuln/04webserver142.html >Received: (qmail 9787 invoked from netw [ more ] [ reply ] Advisory 13/2004: Samba 3.x QFILEPATHINFO unicode filename buffer overflow 2004-11-15 Stefan Esser (s esser e-matters de) [SNS Advisory No.79] A Possibility of Cookie Overwrite in Microsoft Internet Explorer 2004-11-15 Jérôme ATHIAS (jerome athias fr) ---------------------------------------------------------------------- SNS Advisory No.79 A Possibility of Cookie Overwrite in Microsoft Internet Explorer Problem first discovered on: Mon, 01 Sept 2003 Published on: Mon, 15 Nov 2004 ---------------------------------------------------------- [ more ] [ reply ] |
|
Privacy Statement |
Hash: SHA1
- ------------------------------------------------------------------------
--
Debian Security Advisory DSA 594-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Martin Schulze
November 17th, 2004
[ more ] [ reply ]