|
|
Colapse all |
Post message
RE: [RHSA-2004:112-01] Updated Mozilla packages fix security issues 2004-03-18 John Airey rnib org uk [SECURITY] [DSA 466-1] New Linux 2.2.10 packages fix local root exploit (powerpc/apus) 2004-03-18 joey infodrom org (Martin Schulze) Re: PLAXO: is that a cure or a disease? 2004-03-18 Stacy Martin (trust plaxo com) In-Reply-To: <200403121752.i2CHqK8A028679 (at) web187.megawebservers (dot) com [email concealed]> Thanks for the report. This problem was fixed within hours of the original post on 3/12/04. While not diminishing the seriousness of the report, the impact of this vulnerability required the malicious user to already be in t [ more ] [ reply ] Vcard 2.8 uninstall script problem 2004-03-17 saudi linux (ksa2ksa yahoo com) Informations : °°°°°°°°°°°°°° Procduct: Vcard Version : 2.9 may other VER Problems : File uninstall & delete the table PHP Code/Location : °°°°°°°°°°°°°°°°°°° /admin/uninstall.php : ------------------------------------------------------------------------ [...] <? $step = $HTTP_GET_V [ more ] [ reply ] [SECURITY] [DSA 465-1] New openssl packages fix multiple vulnerabilities 2004-03-17 Matt Zimmerman (mdz debian org) FreeBSD Security Advisory FreeBSD-SA-04:05.openssl 2004-03-17 FreeBSD Security Advisories (security-advisories freebsd org) Re: YabbSE (3 on 1) 2004-03-17 David (david simplemachines org) In-Reply-To: <001701c3ff72$1270c1c0$461e5a0a@desanet69> Hi, Developers were never contacted regarding this vulnerability. Currently the solution would be for users to upgrade to SMF version 1.0 Public Beta 4. YaBB SE development has ended and a fix will not be released. We consider SMF a [ more ] [ reply ] [ESA-20040317-003] 'openssl' Denial of Service vulnerabilities. 2004-03-17 EnGarde Secure Linux (security guardiandigital com) MDKSA-2004:023 - Updated openssl packages fix multiple vulnerabilities 2004-03-17 Mandrake Linux Security Team (security linux-mandrake com) Cisco Security Advisory: Cisco OpenSSL Implementation Vulnerability 2004-03-17 Cisco Systems Product Security Incident Response Team (psirt cisco com) New OpenSSL releases fix denial of service attacks [17 March 2004] 2004-03-17 Mark J Cox (mark awe com) (2 replies) -----BEGIN PGP SIGNED MESSAGE----- OpenSSL Security Advisory [17 March 2004] Updated versions of OpenSSL are now available which correct two security issues: 1. Null-pointer assignment during SSL handshake =============================================== Testing performed by the OpenSSL group u [ more ] [ reply ] Re: New OpenSSL releases fix denial of service attacks [17 March 2004] 2004-03-17 Dave Markham (dave markham fjserv net) Re: New OpenSSL releases fix denial of service attacks [17 March 2004] 2004-03-17 Marc Bejarano (bugtraq beej org) (1 replies) Re: New OpenSSL releases fix denial of service attacks [17 March 2004] 2004-03-17 Mark J Cox (mark awe com) (1 replies) Re: New OpenSSL releases fix denial of service attacks [17 March 2004] 2004-03-17 Marc Bejarano (bugtraq beej org) RE: YaBB/YaBBse Cross Site Scripting Vulnerability 2004-03-16 Frog Man (leseulfrog hotmail com) Hello, this hole was discovered on 29/02/04 and published in french here : http://www.phpsecure.info/v2/tutos/frog/YaBBSE-XSSPermanent.txt We were waiting an official security fix by the YabbSE team (since 1 month) to published the hole on some mailing-lists but they always didn't make anything. A [ more ] [ reply ] PHPX 2.x - 3.2.4 2004-03-16 gdayworld hotmail com ~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~ PHPX 3.2.4 (http://www.phpx.org) ~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~ Versions Affected: PHPX 2.x - 3.2.4 Type of bug: Session Hi-jacking/Admin Access (via Cookies) Impact: Ability to steal another users account Found-by: HelloWorld (Ryan Wray) Vendor: Notif [ more ] [ reply ] Re: Fw: Bilbao Method Exposed 2004-03-16 Mark J Cox (mark awe com) > - English Version: http://www.kernelpanik.org/docs/kernelpanik/bme.eng.pdf > - Spanish Version: http://www.kernelpanik.org/docs/kernelpanik/bme.esp.pdf > > This paper explains a brief form to avoid .htaccess authentification in > Apache, configured according to criteria of multiple references. h [ more ] [ reply ] new security alert #66 issued in Oracle web cache 2004-03-16 Pete Finnigan (plsql petefinnigan com) Hi everyone, Oracle have recently released a new Oracle security advisory on Oracle application server web cache. Details of the versions and platforms affected are available in Oracles advisory. This issue is reported as severity 1. For the issue to be exploited Web Cache must be running and lis [ more ] [ reply ] Fw: Bilbao Method Exposed 2004-03-16 FraMe (frame hispalab com) ----- Original Message ----- From: "FraMe" <frame (at) hispalab (dot) com [email concealed]> To: <bugtraq (at) securityfocus (dot) com [email concealed]> Sent: Sunday, March 14, 2004 10:04 PM Subject: [14-M Kernelpanik Release] Bilbao Method Exposed > Hi! > > A brief study about <LIMIT> directive in .htaccess can be downloaded from > following URL´s: > [ more ] [ reply ] ModSecurity 1.7.4 for Apache 2.x remote off-by-one overflow 2004-03-16 S-Quadra Security Research (research s-quadra com) S-Quadra Advisory #2004-03-15 Topic: ModSecurity 1.7.4 for Apache 2.x remote off-by-one overflow Severity: Average Vendor URL: http://www.modsecurity.org Advisory URL: http://www.s-quadra.com/advisories/Adv-20040315.txt Release date: 15 Mar 2004 1. DESCRIPTION ModSecurity is an open source intr [ more ] [ reply ] [SECURITY] [DSA 464-1] New gdk-pixbuf packages fix denial of service 2004-03-16 joey infodrom org (Martin Schulze) |
|
Privacy Statement |
the files still aren't on the advertised server. (I've tried from two
different locations, in case it was a weird location based problem). What
gives guys?
Also, where's the mozilla-psm package?
-
John Airey, BSc (Jt Hons
[ more ] [ reply ]