|
|
Colapse all |
Post message
ArbitroWeb v0.6 Javascript injection vulnerability 2004-06-22 Josh Gilmour (joshg conqwest com) vendor: ArbitroWeb about: An anonymous web surfing proxy written in PHP. ArbitroWeb will redirect all web requests thru it's set of scripts, all URL's contained will be adjusted/mangled to it's own scripts. date: june 22nd, 2004 vendor status: ? problem: javascript can be injected into the /?r [ more ] [ reply ] Administrivia: Technical difficulties 2004-06-22 David Ahmad (da securityfocus com) Hey all, We have been having some technical issues with the servers hosting the list. Please bear with us, the messages are being delivered. My apologies for the late approvals, many messages have not come through until late yesterday and today. Please contact me if your post didn't make it. I [ more ] [ reply ] linux kernel IEEE1394(Firewire) driver integer overflow vulnerabilities 2004-06-22 infamous41md hotpop com Linux kernel IEEE 1394(Firewire) driver - integer overflows ----------------------------------------------------------- Link: http://www.linux1394.org/index.php Driver Description: IEEE 1394 is a standard defining a high speed serial bus. This bus is also named FireWire by Apple or i.Link by Son [ more ] [ reply ] [CLA-2004:845] Conectiva Security Announcement - kernel 2004-06-22 Conectiva Updates (secure conectiva com br) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ -- CONECTIVA LINUX SECURITY ANNOUNCEMENT - ------------------------------------------------------------------------ -- PACKAGE : kernel SUMMARY : Fixes for kernel vulnerabili [ more ] [ reply ] Re: [Full-Disclosure] [SECURITY] [DSA 139-1] New super packages fix local root exploit 2004-06-21 gobbles hushmail com -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi list!@ hehehehe ;PPpPPPPPp It appear Max Vozeler who wrap he packages for he debian friends did travel back in time with he timemachine of many speed. Friend GOBBLES not buy into whole space/time discussion ;PPpPPPP But anyways here is friend GOBBLE [ more ] [ reply ] RE: COELACANTH: Phreak Phishing Expedition] 2004-06-21 Drew Copley (dcopley eEye com) > -----Original Message----- > From: Jelmer [mailto:jkuperus (at) planet (dot) nl [email concealed]] > Sent: Friday, June 11, 2004 3:22 PM > To: 'Thor Larholm'; Drew Copley; > full-disclosure (at) lists.netsys (dot) com [email concealed]; bugtraq (at) securityfocus (dot) com [email concealed] > Cc: ntbugtraq (at) listserv.ntbugtraq (dot) com [email concealed] > Subject: RE: COELACANTH: Phreak Phishing Expedi [ more ] [ reply ] Antivirus/Trojan/Spyware scanners DoS! 2004-06-21 No Spam (NoSpam porach com) Hello All, Norton CE found five instances of the Eicar_test_file in roughly 8 seconds. It quarantined the .zip file. Hello, Here is what I have from TrendMicro IWSS v1 A virus (Compressed_Huge_File, Eicar_test_file, Eicar_test_file, Eicar_test_file, Eicar_test_file, Eicar_test_file, Eicar_t [ more ] [ reply ] SGI Advanced Linux Environment 2.4 security update #22 2004-06-21 SGI Security Coordinator (agent99 sgi com) [ESA-20040621-005] 'kernel' Several vulnerabilities 2004-06-21 EnGarde Secure Linux (security guardiandigital com) SGI Advanced Linux Environment 3 Security Update #4 2004-06-21 SGI Security Coordinator (agent99 sgi com) [SECURITY] [DSA 522-1] New super packages fix format string vulnerability 2004-06-19 Matt Zimmerman (mdz debian org) Security flaw in rssh 2004-06-19 Derek Martin (code pizzashack org) rssh is a small shell whose purpose is to restrict users to using scp or sftp, and also provides the facilities to place users in a chroot jail. It can also be used to lock users out of a system completely. William F. McCaw identified a minor security flaw in rssh when used with chroot jails. The [ more ] [ reply ] Multiple osTicket exploits! 2004-06-21 Guy Pearce (dt_student hotmail com) ATTENTION ALL SITES USING OSTICKET. PLEASE DISABLE UPLOADS. June 17 2004. Multiple Problems with osTicket Software Data: OSTICKET, http://www.osticket.com/ "Need to test the system before you install? Then try our demo version of the latest release of osTicket. DEMO DISABLED" Note: W [ more ] [ reply ] IE/0DAY -> Insider Prototype 2004-06-21 liudieyu umbrella name [tested] Internet Explorer 6 SP1 running on Windows XP(Home Edition) Service Pack 1a Updated on 2004/07/21 GMT+800 [intro] "the-insider" exploit was first noticed by the-insider: http://umbrella.name/iebug.com/display-singlemessage.php?readmsg:fulldis closure_message-2004060050 and then documented [ more ] [ reply ] Unusual Activity in Ad-aware 6 Personal, Build 6.181 2004-06-20 fedhead (fedhead rogers com) (1 replies) Sorry about my previous post, Norton picked up the html code an filtered my e-mail. Here is the original post without the html flags Hello, My apologise if I am posting in the wrong list but I am not sure if this is a known issue in Ad-aware or if this even is an issue with Ad-aware. I have writt [ more ] [ reply ] Re: Unusual Activity in Ad-aware 6 Personal, Build 6.181 2004-06-22 Steve Ryan (sirsteve internetcds com) DLINK 614+, script injection vulnerability 2004-06-21 c3rb3r (c3rb3r sympatico ca) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 TITLE: Security flaw in DLINK 614+ - SOHO routers (http://www.dlink.com) TYPE: Script injection over DHCP QUOTE from DLINK: The AirPlus DI-614+ combines the latest advancements in 802.11b silicon chip design from Texas Instruments, utilizing their p [ more ] [ reply ] Code execution in the Unreal Engine through \secure\ packet 2004-06-18 Luigi Auriemma (aluigi autistici org) ZoneAlarm Pro 'Mobile Code' Bypass Vulnerability 2004-06-21 Kurczaba Associates advisories (advisories kurczaba com) ZoneAlarm Pro 'Mobile Code' Bypass Vulnerability http://www.kurczaba.com/securityadvisories/0406214.htm ------------------------------------------------------------- Vulnerability ID Number: 0406214 Overview: A vulnerability has been found in the 'Mobile Code' filter in ZoneAlarm Pro Vendor: Zon [ more ] [ reply ] NETGEAR FVS318 Web-Based Administration DoS 2004-06-21 Kurczaba Associates advisories (advisories kurczaba com) NETGEAR FVS318 Web-Based Administration DoS http://www.kurczaba.com/securityadvisories/0406211.htm ------------------------------------------------------------- Vulnerability ID Number: 0406211 Overview: A vulnerability has been found in the Netgear FVS318 VPN Router Web-Based Administration. [ more ] [ reply ] XSS vulnerability in Sqwebmail 4.0.4 2004-06-21 Luca Legato (luca legato mediaservice net) Hello Bugtraq, Sqwebmail (http://www.inter7.com/sqwebmail/) is a web cgi client for sending and receiving email using Maildir mailboxes. During a web application security evaluation on Sqwebmail 4.0.4.20040524 we have found a XSS (Cross Site Scripting) vulnerability inside the print_header_uc() fu [ more ] [ reply ] |
|
Privacy Statement |
engine for McAfee products isn't compatible with the 4367 DATs. In order
to use these DATs you have to update your scan engine, which probably
requires disabling WebShield and running the SuperDAT updater--this is
what I had to do
[ more ] [ reply ]