|
|
Colapse all |
Post message
RE: Internet Explorer - Multiple Vulnerabilities 2004-01-21 Thor Larholm (thor pivx com) (1 replies) Re: [Full-Disclosure] RE: Internet Explorer - Multiple Vulnerabilities 2004-01-21 Berend-Jan Wever (SkyLined edup tudelft nl) WebcamXP v1.06.945 Cross Site Scripting Vulnerabillity 2004-01-21 Rafel Ivgi, The-Insider (theinsider 012 net il) Honeyd Security Advisory 2004-001: Remote Detection Via Simple Probe Packet 2004-01-21 Niels Provos (provos citi umich edu) -----BEGIN PGP SIGNED MESSAGE----- Honeyd Security Advisory 2004-001 ================================= Topic: Remote Detection Via Simple Probe Packet Version: All versions prior to Honeyd 0.8 Severity: Identification of Honeyd installations allows an adversary to launch attacks specifica [ more ] [ reply ] [RHSA-2004:034-01] Updated mc packages resolve buffer overflow vulnerability 2004-01-21 bugzilla redhat com [Fwd: [TH-research] Bagle remote uninstall] 2004-01-22 Gadi Evron (ge egotistical reprehensible net) Good morning. The following forwarded message is from Joe Stewart to TH-Research (The Trojan Horses Research Mailing List). In it Joe explains of a way for admins (or anybody really) to easily and massively remove Bagle infections from their networks. There are other ways to do this, but this is t [ more ] [ reply ] Cisco Security Advisory: Voice Product Vulnerabilities on IBM Servers 2004-01-21 Cisco Systems Product Security Incident Response Team (psirt cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Voice Product Vulnerabilities on IBM Servers Revision 1.0 - FINAL For Public Release 2004 January 21 UTC 1700 (GMT) ======================================================================== Contents Summary Affected Pro [ more ] [ reply ] Internet Explorer - Multiple Vulnerabilities 2004-01-20 Rafel Ivgi, The-Insider (theinsider 012 net il) Internet Explorer - Multiple Vulnerabilities Discovered by Rafel Ivgi, The-Insider. http://theinsider.deep-ice.com Every time i Read about a Vulnerability concerning I.E i believe more and more and I.E is the biggest backdoor ever. After the CONTENT-TYPE: bug that allowed to download exe's as audi [ more ] [ reply ] OwnServer 1.0 Directory Transversal Vulnerability 2004-01-20 Rafel Ivgi, The-Insider (theinsider 012 net il) 2Wire-Gateway Cross Site Scripting and Directory Transversal bug in SSL Form 2004-01-20 Rafel Ivgi, The-Insider (theinsider 012 net il) WebTrends Reporting Center Path Disclosure vulnerability 2004-01-20 Oliver Karow (Oliver Karow gmx de) WebTrends Reporting Center Path Disclosure vulnerability ======================================================== Problem: ======== WebTrends Reporting Center is administrated via a web interface. It seems to be possible to disclose the physical path to the application. This information could be [ more ] [ reply ] [SCSA-026] DUWARE Products Admin Access and Arbitrary File Upload Vulnerability 2004-01-20 advisory security-corporation com ====================================================================== Security Corporation Security Advisory [SCSA-026] DUWARE Products Admin Access and Arbitrary File Upload Vulnerability ====================================================================== PROGRAM: DUWARE Products HOMEPAGE: ht [ more ] [ reply ] [SECURITY] [DSA 428-1] New slocate packages fix buffer overflow 2004-01-20 Matt Zimmerman (mdz debian org) vBulletin Security Vulnerability 2004-01-20 gcf hush com (1 replies) [CLA-2004:808] Conectiva Security Announcement - cvs 2004-01-20 Conectiva Updates (secure conectiva com br) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ -- CONECTIVA LINUX SECURITY ANNOUNCEMENT - ------------------------------------------------------------------------ -- PACKAGE : cvs SUMMARY : Fix for remote vulnerability DA [ more ] [ reply ] [CLA-2004:810] Conectiva Security Announcement - kdepim 2004-01-20 Conectiva Updates (secure conectiva com br) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ -- CONECTIVA LINUX SECURITY ANNOUNCEMENT - ------------------------------------------------------------------------ -- PACKAGE : kdepim SUMMARY : Fix for buffer overflow vuln [ more ] [ reply ] [CLA-2004:809] Conectiva Security Announcement - screen 2004-01-20 Conectiva Updates (secure conectiva com br) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ -- CONECTIVA LINUX SECURITY ANNOUNCEMENT - ------------------------------------------------------------------------ -- PACKAGE : screen SUMMARY : Fix for screen vulnerability [ more ] [ reply ] Re: Lame crash in qmail-smtpd and memory overwrite according to gdb, yet still qmail much better than windows 2004-01-20 Scott Gifford (sgifford suspectclass com) Serafino Sorrenti <ml (at) ssorrenti (dot) com [email concealed]> writes: > http://www.guninski.com/qmailcrash.html > > > Georgi Guninski security advisory #65, 2004 > > Lame crash in qmail-smtpd and memory overwrite according to gdb, yet > still qmail much better than windows > > Systems affected: > qmail 1.03 on linux, d [ more ] [ reply ] [SuSE 9.0] possible symlink attacks in some scripts 2004-01-20 Rene (l0om excluded org) Product: some scripts shipped with suse 9.0 Date: 20.01.2004 Author: l0om <l0om (at) excluded (dot) org [email concealed]> greetings, i have done a litte reseach on a SuSE linux 9.0 box for possible symlink attacks. i have checked nearly every script i could found on the system. i havent found much and nothin [ more ] [ reply ] |
|
Privacy Statement |
In all, you have described several ways to do some basic ressource
exhaustion by using Internet Explorer as well as an abnomaly in the Apache
server and a possible exploitable buffer overflow in Outlook Express. The
latter is definitely interesting, provided it is
[ more ] [ reply ]