SecurityFocus

Re: CVS woes: .cvspass 2004-08-04
Greg A. Woods (woods weird com)

Re: New MyDoom variant 2004-08-04
Paul Kurczaba (paul myipis com)

Multiple Vulnerabilities in Free Web Chat 2004-08-04
Donato Ferrante (fdonato autistici org)

Linux kernel file offset pointer races 2004-08-04
Paul Starzetz (ihaquer isec pl)

Multiple vulnerabilities in eNdonesia CMS 2004-08-04
ahmad muammar (y3dips echo or id)

GoScript Remote Command Execution 2004-08-04
Francisco Alisson (dominusvis click21 com br)

CESA-2004-001: libpng 2004-08-04
chris scary beasts org

vulnerabilities in JetboxOne CMS 2004-08-04
ahmad muammar (y3dips echo or id)

Clear text password exposure in Datakey's tokens and smartcards 2004-08-04
vuln hexview com

Bug@thttpd 2004-08-04
CoolICE (CoolICE China com)

Re: [Full-Disclosure] Clear text password exposure in Datakey's tokens and smartcards 2004-08-04
Lionel Ferette (lionel ferette belnet be)

[ GLSA 200408-02 ] Courier: Cross-site scripting vulnerability in SqWebMail 2004-08-04
Thierry Carrez (koon gentoo org)

SUSE Security Announcement: libpng (SUSE-SA:2004:023) 2004-08-04
Thomas Biege (thomas suse de)

[OpenPKG-SA-2004.035] OpenPKG Security Advisory (png) 2004-08-04
OpenPKG (openpkg openpkg org)

New MyDoom variant 2004-08-04
albatross tim it

Re: New possible scam method : forged websites using XUL (Firefox) 2004-08-03
Michael Reilly (michaelr cisco com)

CDE libDtHelp and dtlogin vulnerabilities on IRIX 2004-08-03
SGI Security Coordinator (agent99 sgi com)

Re: New possible scam method : forged websites using XUL (Firefox) 2004-08-03
Kim Scarborough (kjs uchicago edu)

DoS in Webbsyte Chat 0.9.0 2004-08-03
Donato Ferrante (fdonato autistici org)

Re: Fwd: New possible scam method : forged websites using XUL (Firefox) 2004-08-03
Barry Fitzgerald (bkfsec sdf lonestar org)

Re: Fwd: New possible scam method : forged websites using XUL (Firefox) 2004-08-03
Peter J. Holzer (hjp wsr ac at)

Re: New possible scam method : forged websites using XUL (Firefox) 2004-08-03
Peter J. Holzer (hjp wsr ac at)

EXPLOIT for Re: [VSA0402] OpenFTPD format string vulnerability 2004-08-03
infamous41md hotpop com

[SECURITY] [DSA 535-1] New squirrelmail packages fix multiple vulnerabilities 2004-08-03
Matt Zimmerman (mdz debian org)

Re: New possible scam method : forged websites using XUL (Firefox) 2004-08-02
Marc (md nomensa com)

RE: SideFind 2004-08-02
Polazzo Justin (Justin Polazzo facilities gatech edu)

RE: Sonicwall diag tool includes VPN credentlials 2004-08-02
Jody McCluggage (jody ashlandmhrb org)

OPEN3S - Local Privilege Elevation through Oracle products (Unix Platform) 2004-08-02
Juan Manuel Pascual (jmpascual open3s com)

Re: New possible scam method : forged websites using XUL (Firefox) 2004-08-01
Nicholas Knight (nknight runawaynet com)

SideFind 2004-08-02
aborg mca org mt

Comersus 5.098 XSS Vulnerable 2004-08-02
Abdul Azis (az001 plasa com)

RE: Sonicwall diag tool includes VPN credentlials 2004-08-02
Stephan Sachweh (Stephan Sachweh pallas com)

DOS@MEHTTPS 2004-08-02
CoolICE (CoolICE China com)

SA-20040802 GnuTLS certificate chain verification bug 2004-08-02
Patrik Hornik (patrik hornik sk)

7a69Adv#13 - USRobotics AP Wireless Denial of Service 2004-08-02
Albert Puigsech Galicia (ripe 7a69ezine org)

Security contact for RSA Security 2004-08-01
Amit Klein (amit klein sanctuminc com)

Re[2]: Aladdin response regarding eSafe 2004-08-01
3APA3A (3APA3A SECURITY NNOV RU)

Re: New possible scam method : forged websites using XUL (Firefox) 2004-08-02
Peter J. Holzer (hjp wsr ac at)

Re: Sonicwall diag tool includes VPN credentlials 2004-08-01
neil gardner (neil gardner alliedtelesyn co nz)

RE: New possible scam method : forged websites using XUL (Firefox) 2004-08-02
Thomas T. Evans, III (ttevans hawkcorp net)

RE: Sonicwall diag tool includes VPN credentlials 2004-08-02
Eric McCarty (eric lawmpd com)

Re: Fwd: New possible scam method : forged websites using XUL (Firefox) 2004-08-02
Justin Polazzo (jo ojjo net)

SoX Exploiter by Rosiello Security 2004-08-02
Angelo Rosiello (angelo rosiello org)

[ GLSA 200408-01 ] MPlayer: GUI filename handling overflow 2004-08-01
Thierry Carrez (koon gentoo org)

Re: Citadel/UX Remote DoS Vulnerability 2004-07-31
error citadel org (IO ERROR)

[EXPL] (MS04-022) Microsoft Windows XP Task Scheduler (.job) Universal Exploit 2004-07-31
houseofdabus HOD (houseofdabus inbox ru)

Sonicwall diag tool includes VPN credentlials 2004-07-30
Milton Lopez (mlopez iattc org)

Re: [Full-Disclosure] Re: Mozilla Firefox Certificate Spoofing 2004-07-31
Juan Carlos Navea (loconet gmail com)

Re: New possible scam method : forged websites using XUL (Firefox) 2004-07-31
Marc (md nomensa com)

OpenServer 5.0.6 OpenServer 5.0.7 : Xsco contains a buffer overflow that could be exploited to gain root privileges. 2004-07-30
please_reply_to_security sco com

[VSA0402] OpenFTPD format string vulnerability 2004-07-29
VOID.AT Security (crew void at)

OpenServer 5.0.6 OpenServer 5.0.7 : uudecode does not check for symlink or pipe 2004-07-30
please_reply_to_security sco com

OpenServer 5.0.6 OpenServer 5.0.7 : OpenSSL Multiple Vulnerabilities 2004-07-30
please_reply_to_security sco com

UnixWare 7.1.3 Open UNIX 8.0.0 : Xsco contains a buffer overflow that could be exploited to gain root privileges. 2004-07-30
please_reply_to_security sco com

Re: eSafe: Could this be exploited? 2004-07-30
Nick FitzGerald (nick virus-l demon co uk)

Fwd: New possible scam method : forged websites using XUL (Firefox) 2004-07-30
David Ahmad (da securityfocus com)

Re: CVS woes: .cvspass 2004-07-29
Delian Krustev (krustev krustev net)

[ GLSA 200407-23 ] SoX: Multiple buffer overflows 2004-07-30
Thierry Carrez (koon gentoo org)

Fusion News Yet Another Unauthorized Account Addition Vulnerability 2004-07-29
Joseph Moniz (r3d_5pik3 yahoo com)

[CLA-2004:855] Conectiva Security Announcement - sox 2004-07-30
Conectiva Updates (secure conectiva com br)

WpQuiz Gain Admin Rightd Exploit found 2004-07-30
jonathan tough (j eyeimpressions com)

Re: File downloads in Opera at known locations 2004-07-30
Josh Tolley (josh raintreeinc com)

Citadel/UX Remote DoS Vulnerability 2004-07-29
CoKi (coki nosystem com ar)

Re: Aladdin response regarding eSafe 2004-07-30
Aleksandar Milivojevic (amilivojevic pbl ca)

MDKSA-2004:077 - Updated wv packages fix vulnerability 2004-07-30
Mandrake Linux Security Team (security linux-mandrake com)

[CLA-2004:854] Conectiva Security Announcement - samba 2004-07-30
Conectiva Updates (secure conectiva com br)

Re: OpenServer 5.0.6 OpenServer 5.0.7 : Multiple Vulnerabilities in Sendmail 2004-07-29
George Capehart (gwc acm org)

[ GLSA 200407-22 ] phpMyAdmin: Multiple vulnerabilities 2004-07-29
Thierry Carrez (koon gentoo org)

Re: Aladdin response regarding eSafe 2004-07-28
3APA3A (3APA3A SECURITY NNOV RU)

Jaws 0.4: authentication bypass 2004-07-29
Rubén Molina (ruben udea edu co)

File downloads in Opera at known locations 2004-07-29
Rohit Dube (rohit kritikalsolutions com)

RE: Forward:FullDisclosure/IE - Possible Address Spoofing 2004-07-28
Chenghuai Lu (luchenghuai yahoo com)

MDKSA-2004:076 - Updated sox packages fix buffer overflows with malicious .wav files 2004-07-28
Mandrake Linux Security Team (security linux-mandrake com)

RE: Forward:FullDisclosure/IE - Possible Address Spoofing 2004-07-28
Michael Silk (michaels phg com au)

lostBook v1.1 Javascript Execution 2004-07-29
Joseph Moniz (r3d_5pik3 yahoo com)

Linpha 0.9.4: authentication bypass 2004-07-29
Rubén Molina (ruben udea edu co)

[ GLSA 200407-21 ] Samba: Multiple buffer overflows 2004-07-29
Kurt Lieber (klieber gentoo org)

ERRATA: [ GLSA 200407-21 ] Samba: Multiple buffer overflows 2004-07-29
Thierry Carrez (koon gentoo org)

DansGuardian Hex Encoding URL Banned Extension Filter Bypass Vulnerability 2004-07-29
Rubén Molina (ruben udea edu co)

OpenServer 5.0.6 OpenServer 5.0.7 : Multiple Vulnerabilities in Sendmail 2004-07-28
please_reply_to_security sco com

MDKSA-2004:074 - Updated webmin packages correct remote attacker vulnerabilities 2004-07-28
Mandrake Linux Security Team (security linux-mandrake com)

Re: [Full-Disclosure] Crash IE with 11 bytes ;) 2004-07-28
Berend-Jan Wever (skylined edup tudelft nl)

Re: eSafe: Could this be exploited? 2004-07-28
Kev Ford (kev frod co uk)

AntiBoard <= 0.7.2 XSS/SQL Injection 2004-07-28
Josh Gilmour (gilmourj gmail com)

UnixWare 7.1.3up : tcpdump several vulnerabilities in tcpdump. 2004-07-28
please_reply_to_security sco com

MDKSA-2004:073 - Updated XFree86 packages fix issue with xdm opening random sockets 2004-07-28
Mandrake Linux Security Team (security linux-mandrake com)

Re: [Full-Disclosure] Internet Explorer Remote Null Pointer Crash(mshtml.dll) 2004-07-28
Berend-Jan Wever (skylined edup tudelft nl)

Pavuk Digest Authentication Buffer Overflow 2004-07-28
mattmurphy@kc.rr.com (mattmurphy kc rr com)

MDKSA-2004:072 - Updated postgresql packages fix buffer overflow in odbc driver 2004-07-28
Mandrake Linux Security Team (security linux-mandrake com)

Re: [ GLSA 200407-20 ] Subversion: Vulnerability in mod_authz_svn 2004-07-27
Jack Repenning (jrepenning collab net)

Aladdin response regarding eSafe 2004-07-28
Ofer Elzam (ofere hotmail com)

MDKSA-2004:075 - Updated mod_ssl packages fix potential vulnerabilities 2004-07-28
Mandrake Linux Security Team (security linux-mandrake com)

[Paper] Small XSS Paper 2004-07-28
Ferruh Mavituna (ferruh mavituna com)

[CLA-2004:852] Conectiva Security Announcement - kernel 2004-07-28
Conectiva Updates (secure conectiva com br)

WASC Releases Web Security Threat Classification 2004-07-28
Jeremiah Grossman (jeremiah whitehatsec com)

Re: CVS woes: .cvspass 2004-07-28
Andreas Beck (becka-list-bugtraq bedatec de)

Re: CVS woes: .cvspass 2004-07-27
Greg A. Woods (woods weird com)

Re: eSafe: Could this be exploited? 2004-07-26
Hugo van der Kooij (hvdkooij vanderkooij org)

RE: Forward:FullDisclosure/IE - Possible Address Spoofing 2004-07-26
Chenghuai Lu (luchenghuai yahoo com)

Re: QUESTION 2004-07-17
Viktor Larionov (viktor esknet ee)