|
|
Colapse all |
Post message
[security bulletin] SSRT4696 rev. 0 HP ProCurve Routing Switches TCP Denial of Service (DoS) 2004-05-20 Boren, Rich (SSRT) (rich boren hp com) SGI ProPack 3: Kernel Update #1 - Security and other fixes 2004-05-19 SGI Security Coordinator (agent99 sgi com) [slackware-security] cvs (SSA:2004-140-01) 2004-05-20 Slackware Security Team (security slackware com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] cvs (SSA:2004-140-01) New cvs packages are available for Slackware 8.1, 9.0, 9.1, and -current to fix a buffer overflow vulnerability which could allow an attacker to run arbitrary programs on the CVS server. Sites running a CVS [ more ] [ reply ] SGI ProPack v2.4: Kernel Update #4 - Security and other fixes 2004-05-19 SGI Security Coordinator (agent99 sgi com) [OpenPKG-SA-2004.024] OpenPKG Security Advisory (neon) 2004-05-19 OpenPKG (openpkg openpkg org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ________________________________________________________________________ OpenPKG Security Advisory The OpenPKG Project http://www.openpkg.org/security.html http://www.openpkg.org openpkg-security (at) openpkg (dot) org [email concealed] [ more ] [ reply ] [OpenPKG-SA-2004.022] OpenPKG Security Advisory (cvs) 2004-05-19 OpenPKG (openpkg openpkg org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ________________________________________________________________________ OpenPKG Security Advisory The OpenPKG Project http://www.openpkg.org/security.html http://www.openpkg.org openpkg-security (at) openpkg (dot) org [email concealed] [ more ] [ reply ] [OpenPKG-SA-2004.023] OpenPKG Security Advisory (subversion) 2004-05-19 OpenPKG (openpkg openpkg org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ________________________________________________________________________ OpenPKG Security Advisory The OpenPKG Project http://www.openpkg.org/security.html http://www.openpkg.org openpkg-security (at) openpkg (dot) org [email concealed] [ more ] [ reply ] MDKSA-2004:049 - Updated libneon packages fix heap variable overflow issues 2004-05-19 Mandrake Linux Security Team (security linux-mandrake com) MDKSA-2004:048 - Updated cvs packages fix remotely exploitable vulnerability 2004-05-19 Mandrake Linux Security Team (security linux-mandrake com) Reporting a Security Vulnerability in a Microsoft Product 2004-05-19 Microsoft Security Response Center (secure microsoft com) Hello! The Microsoft Security Response Center investigates all reports of security vulnerabilities sent to us that affect Microsoft products. If you believe you have found a security vulnerability affecting a Microsoft product, we would like to work with you to investigate it. We are concerned th [ more ] [ reply ] [ GLSA 200405-10 ] Icecast denial of service vulnerability 2004-05-19 Thierry Carrez (koon gentoo org) [SECURITY] [DSA 507-1] New cadaver packages fix buffer overflow 2004-05-19 joey infodrom org (Martin Schulze) Non-logged Brute Force Attack Vulnerability for Fantastico-Created Databases on cPanel Based Hosts 2004-05-19 Michael Curtis (email curto us) Advisory: cPanel/Fantastico/mysql local vulnerability Date: 5/19/04 By: Michael Curtis (email [at] curto [dot] us) System: Redhat Enterprise 3 ES / cPanel 9.3.0-R5 (most likely all redhat versions with all cpanel versions) Severity: High, full compromise of local databases, password retrieval Backg [ more ] [ reply ] Idea for proactive worm protection 2004-05-19 Peter Surda (shurdeek routehat org) Hello guys, first of all, let me describe my situation. I live in a pretty big dorm, it features a LAN with about 1200 computers, of course, most of them run Windows and their users don't know how to update the system. Various worms (most notably Blaster, Welchia, Sasser and Agobot) regularly flood [ more ] [ reply ] A new Sanctum paper: "Blind XPath Injection" 2004-05-19 Amit Klein (amit klein sanctuminc com) I'm happy to announce a new paper from Sanctum, titled "Blind XPath Injection", written by yours truly. The paper can be downloaded here: http://www.sanctuminc.com/pdfc/WhitePaper_Blind_XPath_Injection_20040518 Below I copy the paper abstract: This paper describes a Blind XPath Injection atta [ more ] [ reply ] [SECURITY] [DSA 505-1] New cvs packages fix remote exploit 2004-05-19 joey infodrom org (Martin Schulze) [SECURITY] [DSA 506-1] New neon packages fix buffer overflow 2004-05-19 joey infodrom org (Martin Schulze) FreeBSD Security Advisory FreeBSD-SA-04:10.cvs 2004-05-19 FreeBSD Security Advisories (security-advisories freebsd org) |
|
Privacy Statement |
I have sat on 2 vulnerabilities for a shopping cart for over a year and
nothing has changed. Now I have found a 3rd with new services added to this
shopping cart.
I have emailed support several times but NEVER get a response.
As a security professional and not to be Unethical what would be a
rec
[ more ] [ reply ]