|
|
Colapse all |
Post message
Macromedia Products Not Affected by MS JPEG/GDIPlus Issue 2004-09-22 securityzone macromedia com (Macromedia Security Zone) [CLA-2004:866] Conectiva Security Announcement - qt3 2004-09-22 Conectiva Updates (secure conectiva com br) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ -- CONECTIVA LINUX SECURITY ANNOUNCEMENT - ------------------------------------------------------------------------ -- PACKAGE : qt3 SUMMARY : Fixes for image loader vulnerab [ more ] [ reply ] [ GLSA 200409-29 ] FreeRADIUS: Multiple Denial of Service vulnerabilities 2004-09-22 Sune Kloppenborg Jeppesen (jaervosz gentoo org) Pinnacle ShowCenter 1.51 possible DoS 2004-09-22 Jérôme ATHIAS (jerome athias caramail com) Dear ladies and gentlemen, I am a proud user of the Pinnacle ShowCenter 1.51. When I was playing around with the system, it seems I have found a denial of service attack against the web interface. First I did manually a HTTP GET request that selects a non-existent skin: http://192.168. [ more ] [ reply ] [CLA-2004:867] Conectiva Security Announcement - spamassassin 2004-09-22 Conectiva Updates (secure conectiva com br) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ -- CONECTIVA LINUX SECURITY ANNOUNCEMENT - ------------------------------------------------------------------------ -- PACKAGE : spamassassin SUMMARY : Fix for denial of serv [ more ] [ reply ] Multiple Vulnerabilities in Symantec Enterprise Firewall/Gateway Security Products 2004-09-22 Mike Sues (msues rigelksecurity com) RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes 2004-09-22 Polazzo Justin (Justin Polazzo facilities gatech edu) (1 replies) If we don't have any data, then we are making decisions based on propaganda, no matter what side you listen to. Of course California suing then does raise questions :) Any state that implements voting technology that has not been verified by independent means needs rethink their approach. Any sta [ more ] [ reply ] Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes 2004-09-22 Gene Cronk (gcronk trsg net) iDEFENSE Security Advisory 09.22.04 - Sophos Small Business Suite Reserved Device Name Handling Vulnerability 2004-09-22 customer service mailbox (customerservice idefense com) Sophos Small Business Suite Reserved Device Name Handling Vulnerability iDEFENSE Security Advisory 09.22.04 www.idefense.com/application/poi/display?id=143&type=vulnerabilities September 22, 2004 I. BACKGROUND Sophos Small Business Suite includes the Sophos PureMessage Small Business Edition, com [ more ] [ reply ] [SECURITY] [DSA 552-1] New imlib2 packages fix potential arbitrary code execution 2004-09-22 joey infodrom org (Martin Schulze) Pinnacle ShowCenter Skin Denial of Service 2004-09-21 Marc Ruef (marc ruef computec ch) Dear ladies and gentlemen, I am a proud user of the Pinnacle ShowCenter 1.51. When I was playing around with the system, it seems I have found a denial of service attack against the web interface. First I did manually a HTTP GET request that selects a non-existent skin: http://192.168.0.11:8000 [ more ] [ reply ] New whitepaper "The Phishing Guide" 2004-09-22 Gunter Ollmann (NGS) (gunter ngssoftware com) Hi List, I'd like to point out that NGS have just released a new whitepaper. The whitepaper "The Phishing Guide" can be downloaded from: http://www.ngssoftware.com/papers/NISR-WP-Phishing.pdf Abstract Phishing is the new 21st century crime. The global media runs stories on an almost daily basi [ more ] [ reply ] RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes 2004-09-22 Polazzo Justin (Justin Polazzo facilities gatech edu) (2 replies) Can we get some source code to verify/disprove this? I notice there was no technical documentation/information from either side. Anyone else for coding Election Management Systems software under the Open Software License? :) Jp -----Original Message----- From: pressinfo (at) diebold (dot) com [email concealed] [mailto:press [ more ] [ reply ] Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes 2004-09-22 steve menard (smenard nbnet nb ca) Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes 2004-09-22 Gene Cronk (gcronk trsg net) [ GLSA 200409-27 ] glFTPd: Local buffer overflow vulnerability 2004-09-21 Thierry Carrez (koon gentoo org) And More Advanced SQL Injection... 2004-09-20 Stefano Di Paola (stefano dipaola wisec it) Good morning, I'm proud to announce that a new White Paper has been released. English version can be downloaded on : http://www.wisec.it/docs.php Title: "...and More Advanced Sql Injection SiXSS, SiHRS and the Client Side SQL Injection" Abstract: How much a Sql Injection is a hard vulnerability? I [ more ] [ reply ] Possible DoS attack against jabberd 1.4.3 and jadc2s 0.9.0 2004-09-20 Matthias Wimmer (m tthias net) jabberd up to and including version 1.4.3 and jadc2s up to and including version 0.9.0 are vulnerable against a DoS attack reported by Jose Antonio Calvo yesterday on the jabberd mailing list. (http://jabberstudio.org/pipermail/jabberd/2004-September/002004.html) An attacker can crash a running jab [ more ] [ reply ] Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes 2004-09-21 pressinfo diebold com (6 replies) In-Reply-To: <20040831203815.13871.qmail (at) www.securityfocus (dot) com [email concealed]> Diebold strongly refutes the existence of any "back doors" or "hidden codes" in its GEMS software. These inaccurate allegations appear to stem from those not familiar with the product, misunderstanding the purpose of legitimate struct [ more ] [ reply ] Re: Diebold Global Election Management System (GEMS) BackdoorAccount Allows Authenticated Users to Modify Votes 2004-09-22 Mike Ely (me taupehat com) Re: Diebold Global Election Management System (GEMS) BackdoorAccount Allows Authenticated Users to Modify Votes 2004-09-22 Rainer Duffner (rainer ultra-secure de) Re: Diebold Global Election Management System (GEMS) BackdoorAccount Allows Authenticated Users to Modify Votes 2004-09-22 Homer (hparker homershut net) (1 replies) Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes 2004-09-22 Hollis Johnson (hollis cisco com) Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes 2004-09-22 Jay Hennigan (jay west net) RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes 2004-09-22 Jaeson Schultz (jaeson jaeson net) (1 replies) RE: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes 2004-09-22 Lorne J. Leitman (leitman cs pitt edu) Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes 2004-09-22 Craig Paterson (craigp tippett com) Netscape NSS Library Vulnerability Affects Sun Java Enterprise System 2004-09-21 Jérôme ATHIAS (jerome athias caramail com) Sun Alert ID: 57643 Synopsis: Netscape NSS Library Vulnerability Affects Sun Java Enterprise System Category: Security Product: Sun Java Enterprise System (JES), Network Security Services (NSS) BugIDs: 5069683 Avoidance: Patch State: Resolved Date Released: 16-Sep-2004 Date Closed: [ more ] [ reply ] Broadcast crash in Popmessenger 1.60 (before 20 Sep 2004) 2004-09-21 Luigi Auriemma (aluigi autistici org) |
|
Privacy Statement |
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Macromedia Products Not Affected by Microsoft JPEG/GDIPlus
Vulnerability
Originally posted: September 20, 2004
http://www.macromedia.com/go/security_mpsb04-07
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Summar
[ more ] [ reply ]