|
|
Colapse all |
Post message
[ GLSA 200411-01 ] ppp: Remote denial of service vulnerability 2004-11-01 Luke Macken (lewk gentoo org) p h i s h i n g p h o r p h u n p h o r p h u q u e s a k e 2004-11-01 http-equiv (at) excite (dot) com [email concealed] (1 malware com) Re: Critical Vulnerability in Altiris Deployment Server architecture 2004-10-30 Brian Gallagher (bugtraq diamondsea com) In-Reply-To: <771B638360252E4E8C31ED28FBA45803030855@OLCCEX01> Greetings, (I tried posting this to the list last week but it didn't seem to make it so I'm posting it again.) Let me say up front that I actually like this product. I want to use it with my own clients, but I need to get this pr [ more ] [ reply ] XDICT Buffer OverRun Vulnerability,funny :-) 2004-11-01 Sowhat . (smaillist gmail com) XDICT Buffer OverRun Vulnerability by Sowhat DATE:2004.10.26 CN:http://secway.org/Advisory/Ad20041026CN.txt EN:http://secway.org/Advisory/Ad20041026EN.txt VENDOR: KingSOFT Inc. www.kingsoft.com AFFECTED: XDICT 2002 XDICT 2003 XDICT 2004 XDICT 2005 BACKGROUD: XDICT is a very popular transla [ more ] [ reply ] [SECURITY] [DSA 579-1] New abiword packages fix arbitrary code execution 2004-11-01 joey infodrom org (Martin Schulze) [SECURITY] [DSA 578-1] New mpg123 packages fix arbitrary code execution 2004-11-01 joey infodrom org (Martin Schulze) New Whitepaper - "Second-order Code Injection Attacks" 2004-11-01 Gunter Ollmann (gunter ngssoftware com) Hi list, NGS Software is pleased to make available a new whitepaper about second-order code injection attacks. Abstract: "Many forms of code injection targeted at web-based applications (for instance cross-site scripting and SQL injection) rely upon the instantaneous execution of the embedded code [ more ] [ reply ] Re: New URL spoofing bug in Microsoft Internet Explorer 2004-10-30 http-equiv (at) excite (dot) com [email concealed] (1 malware com) I also want to play <base href="http://www.microsoft.com"> <a href=><form action="http://www.malware.com" method="get"><INPUT style="BORDER-RIGHT: 0pt; BORDER-TOP: 0pt; FONT-SIZE: 10pt; BORDER-LEFT: 0pt; CURSOR: hand; COLOR: blue; BORDER-BOTTOM: 0pt; BACKGROUND-COLOR: transparent;TEXT-DECORAT [ more ] [ reply ] [OpenPKG-SA-2004.048] OpenPKG Security Advisory (squid) 2004-10-29 OpenPKG (openpkg openpkg org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ________________________________________________________________________ OpenPKG Security Advisory The OpenPKG Project http://www.openpkg.org/security.html http://www.openpkg.org openpkg-security (at) openpkg (dot) org [email concealed] [ more ] [ reply ] [USN-12-1] ppp Denial of Service 2004-10-29 Martin Pitt (martin pitt canonical com) =========================================================== Ubuntu Security Notice USN-12-1 October 29, 2004 ppp Denial of Service http://www.securityfocus.com/archive/1/379450 =========================================================== A security issue affects the following Ubuntu relea [ more ] [ reply ] Re: New URL spoofing bug in Microsoft Internet Explorer 2004-10-30 Jérôme ATHIAS (jerome athias caramail com) RE: Update: Web browsers - a mini-farce (MSIE gives in) 2004-10-29 David Brodbeck (DavidB mail interclean com) (2 replies) > -----Original Message----- > From: Tim Newsham [mailto:newsham (at) lava (dot) net [email concealed]] > But lets assume that a good programmer is writing software and > it comes to his attention that there is a buffer overflow, or > that user input is not being filtered, or that user input is being > passed to a printf type [ more ] [ reply ] Re: Update: Web browsers - a mini-farce (MSIE gives in) 2004-10-29 Valdis Kletnieks vt edu (1 replies) Re: New URL spoofing bug in Microsoft Internet Explorer 2004-10-29 0-1-2-3 gmx de Hi, I'm running Windows 98 and see "http://www.microsoft.com/" in status bar. ONLY if I press tabulator-key twice (to jump to next link) or click on the link, then I can see correct info ("http://www.google.com/") in status bar. My DLL versions: MSHTML.DLL: 6.00.2800.1477 BROWSEUI.DLL: 6.00.2800. [ more ] [ reply ] |
|
Privacy Statement |
Ubuntu Security Notice USN-10-1 October 28, 2004
XML library vulnerabilities
CAN-2004-0981
===========================================================
A security issue affects the following Ubuntu releases:
Ubuntu 4.10 (Warty W
[ more ] [ reply ]