SecurityFocus

[RHSA-2004:006-01] Updated kdepim packages resolve security vulnerability 2004-01-14
bugzilla redhat com

exploit for HD Soft Windows FTP Server 1.6 2004-01-13
mandrag mandragore solidshells com

How to track a Phisher... Re: FW: Abuse report email for CitiBank/CitiCards? 2004-01-12
Nicholas Weaver (nweaver CS berkeley edu)

symlink vul for Antivir / Linux Version 2.0.9-9 (maybe lower) 2004-01-13
Rene (l0om excluded org)

PhpDig 1.6.x: remote command execution 2004-01-14
FraMe (frame hispalab com)

SRT2004-01-9-1022 - Symantec LiveUpdate allows local users to become SYSTEM 2004-01-12
KF (dotslash snosoft com)

RE: [Fwd: [TH-research] OT: Israeli Post Office break-in] 2004-01-13
John Airey rnib org uk

[SECURITY] [DSA 423-1] New Linux 2.4.17 packages fix several problems (ia64) 2004-01-15
joey infodrom org (Martin Schulze)

Linux kernel mremap() bug update 2004-01-15
Paul Starzetz (ihaquer isec pl)

RapidCache Multiple Vulnerabilities 2004-01-15
Peter Winter-Smith (peter4020 hotmail com)

January 15 is Personal Firewall Day, help the cause 2004-01-15
tlarholm pivx com

CERT Advisory CA-2004-01 Multiple H.323 Message Vulnerabilities 2004-01-14
CERT Advisory (cert-advisory cert org)

[slackware-security] INN security update (SSA:2004-014-02) 2004-01-15
Slackware Security Team (security slackware com)

SuSE linux 9.0 YaST config Skribt [exploit] 2004-01-13
Rene (l0om excluded org)

[SECURITY] [DSA-422-1] multiple CVS improvements 2004-01-13
Wichert Akkerman (wichert wiggy net)

FW: Abuse report email for CitiBank/CitiCards? 2004-01-12
Sullivan, Barbra A (barbra a sullivan citigroup com)

[slackware-security] kdepim security update (SSA:2004-014-01) 2004-01-15
Slackware Security Team (security slackware com)

MDKSA-2004:003 - Updated kdepim packages fix vulnerability 2004-01-15
Mandrake Linux Security Team (security linux-mandrake com)

SUSE Security Announcement: Linux Kernel (SuSE-SA:2004:003) 2004-01-15
thomas suse de (Thomas Biege)

[RHSA-2004:003-01] Updated CVS packages fix minor security issue 2004-01-12
bugzilla redhat com

Remote Code Execution in ezContents 2004-01-10
Zero_X www.lobnan.de Team (zero-x linuxmail org)

DameWare Mini Remote Control < v3.73 remote exploit by kralor] 2004-01-10
Iván Rodriguez Almuiña (kralor coromputer net)

Directory Traversal in Accipiter Direct Server 6.0 2004-01-09
Bassett, Mark (mbassett omaha com)

Abuse report email for CitiBank/CitiCards? 2004-01-10
winstrel (winstrel ewall org)

PHP Manpage lookup directory transversal / file disclosing 2004-01-10
Cabezon Aurélien (aurelien cabezon isecurelabs com)

[SECURITY] [DSA 420-1] New jitterbug packages fix arbitrary command execution 2004-01-12
joey infodrom org (Martin Schulze)

[Fwd: [TH-research] OT: Israeli Post Office break-in] 2004-01-11
Gadi Evron (ge egotistical reprehensible net)

bzip2 bombs still causes problems in antivirus-software 2004-01-09
Dr. Peter Bieringer (pbieringer aerasec de)

[slackware-security] Slackware 8.1 kernel security update (SSA:2004-008-01) 2004-01-09
Slackware Security Team (security slackware com)

Windows FTP Server Format String Vulnerability 2004-01-08
Peter Winter-Smith (peter4020 hotmail com)

[SECURITY] [DSA 417-2] New Linux 2.4.18 packages fix local root exploit (alpha) 2004-01-09
joey infodrom org (Martin Schulze)

[SECURITY] [DSA 419-1] New phpgroupware packages fix unintended PHP execution and SQL injection 2004-01-09
joey infodrom org (Martin Schulze)

Openssl proof of concept code? 2004-01-08
Lachniet, Mark (mlachniet sequoianet com)

MDKSA-2004:001 - Updated kernel packages fix local root vulnerability 2004-01-08
Mandrake Linux Security Team (security linux-mandrake com)

SGI Advanced Linux Environment security update #8 2004-01-07
SGI Security Coordinator (agent99 sgi com)

[SECURITY] INN: Buffer overflow in control message handling 2004-01-08
Russ Allbery (rra isc org)

Yahoo Instant Messenger Long Filename Downloading Buffer Overflow 2004-01-08
Tri Huynh (trihuynh zeeup com)

[SECURITY] [DSA 418-1] New vbox3 packages fix privilege leak 2004-01-08
Matt Zimmerman (mdz debian org)

Re: Microsoft Word Protection Bypass 2004-01-08
Vladimir Katalov (vkatalov elcomsoft com)

[OpenPKG-SA-2004.001] OpenPKG Security Advisory (inn) 2004-01-08
OpenPKG (openpkg openpkg org)

Cisco Security Advisory: Cisco Personal Assistant User Password Bypass Vulnerability 2004-01-08
Cisco Systems Product Security Incident Response Team (psirt cisco com)

[RHSA-2004:001-01] Updated Ethereal packages fix security issues 2004-01-07
bugzilla redhat com

Re: Linux kernel do_mremap() proof-of-concept exploit code 2004-01-07
D Lambrou (dlambrou crazylinux net)

[CLA-2004:801] Conectiva Security Announcement - ethereal 2004-01-07
Conectiva Updates (secure conectiva com br)

RE: Microsoft Word Protection Bypass 2004-01-07
Eric Lawrence (ericlaw bayden com)

[slackware-security] Kernel security update (SSA:2004-006-01) 2004-01-07
Slackware Security Team (security slackware com)

EDIMAX AR-6004 Full Rate ADSL Router Cross Site Scripting Vulnerabillity 2004-01-06
Rafel Ivgi (theinsider 012 net il)

[SECURITY] [DSA 415-1] New zebra packages fix denial of service 2004-01-07
Matt Zimmerman (mdz debian org)

SnapStream PVS LITE Cross Site Scripting Vulnerabillity 2004-01-06
Rafel Ivgi (theinsider 012 net il)

RealNetworks fails to address Cross-Site Scripting in RealOne Player 2004-01-07
Arman Nayyeri (arman-n Phreaker net)

ZyXEL10 OF ZyWALL Series Router Cross Site Scripting Vulnerabillity 2004-01-06
Rafel Ivgi (theinsider 012 net il)

[SECURITY] [DSA 414-1] New jabber packages fix denial of service 2004-01-07
Matt Zimmerman (mdz debian org)

[SECURITY] [DSA 416-1] New fsp packages fix buffer overflow, directory traversal 2004-01-07
Matt Zimmerman (mdz debian org)

Re: Microsoft Word Protection Bypass 2004-01-07
Thorsten Delbrouck-Konetzko (Thorsten Delbrouck guardeonic com)

[SECURITY] [DSA 417-1] New Linux 2.4.18 packages fix local root exploit (powerpc+alpha) 2004-01-07
joey infodrom org (Martin Schulze)

Re: Linux kernel do_mremap() proof-of-concept exploit code 2004-01-07
Angelo Dell'Aera (buffer antifork org)

RE: Linux kernel do_mremap() proof-of-concept exploit code 2004-01-06
tlarholm pivx com

FirstClass Client 7.1: Command Execution via Email Web Link 2004-01-05
Richard Maudsley (r_i_c_h btopenworld com)

RE: Microsoft Word Protection Bypass 2004-01-03
Jerry Shenk (jshenk decommunications com)

Lotus Notes Domino 6.0.2 (linux) faulty default permissions 2004-01-06
Rene (l0om excluded org)

Re: Linux kernel do_mremap() proof-of-concept exploit code 2004-01-06
Bruno Lustosa (bruno lustosa net)

[SECURITY] [DSA 413-1] New Linux 2.4.18 packages fix locate root exploit 2004-01-06
joey infodrom org (Martin Schulze)

Re: Linux kernel do_mremap() proof-of-concept exploit code 2004-01-06
Alexandre Hautequest (hquest ondacorp com br)

Vuln in PHPGEDVIEW 2.61 Multi-Problem 2004-01-06
Vietnamese Security Group (security security com vn)

Linux mremap bug correction 2004-01-06
Paul Starzetz (ihaquer isec pl)

[SECURITY] [DSA 410-1] New libnids packages fix buffer overflow 2004-01-06
Matt Zimmerman (mdz debian org)

[CLA-2004:800] Conectiva Security Announcement - lftp 2004-01-06
Conectiva Updates (secure conectiva com br)

Multiple Vulnerabilities in Phorum 3.4.5 2004-01-05
Calum Power (enune fribble net)

[SECURITY] [DSA 412-1] New nd packages fix buffer overflows 2004-01-06
Matt Zimmerman (mdz debian org)

[SECURITY] [DSA 411-1] New mpg321 packages fix format string vulnerability 2004-01-06
Matt Zimmerman (mdz debian org)

Immunix Secured OS 7.3 kernel update 2004-01-06
Immunix Security Team (security immunix com)

[SECURITY] [DSA 409-1] New bind packages fix denial of service 2004-01-06
Matt Zimmerman (mdz debian org)

Linux kernel do_mremap() proof-of-concept exploit code 2004-01-05
Christophe Devine (devine iie cnam fr)

vBulletin Forum 2.3.xx calendar.php SQL Injection 2004-01-05
Qianwei Hu (a1476854 hotmail com)

SUSE Security Announcement: Linux Kernel (SuSE-SA:2004:001) 2004-01-05
thomas suse de (Thomas Biege)

[RHSA-2003:417-01] Updated kernel resolves security vulnerability 2004-01-05
bugzilla redhat com

[SECURITY] [DSA 408-1] New screen packages fix group utmp exploit 2004-01-05
joey infodrom org (Martin Schulze)

Linux kernel mremap vulnerability 2004-01-05
Paul Starzetz (ihaquer isec pl)

[ESA-20040105-001] 'kernel' bug and security fixes. 2004-01-05
EnGarde Secure Linux (security guardiandigital com)

TSLSA-2004-01 - kernel 2004-01-05
Trustix Security Advisor (tsl trustix org)

[SECURITY] [DSA 407-1] New ethereal packages fix several vulnerabilities 2004-01-05
joey infodrom org (Martin Schulze)

[CLA-2004:799] Conectiva Security Announcement - kernel 2004-01-05
Conectiva Updates (secure conectiva com br)

Announcing adore-ng 0.31 2004-01-04
Stealth (stealth team-teso net)

Re: Linux kernel mremap vulnerability 2004-01-05
Paul Starzetz (ihaquer isec pl)

[SECURITY] [DSA 406-1] New lftp packages fix arbitrary code execution 2004-01-05
joey infodrom org (Martin Schulze)

HotNews arbitary file inclusion 2004-01-04
Dariusz 'Officerrr' Kolasinski (officerrr poligon com pl)

newsPHP v216 patch 2004-01-04
Dariusz 'Officerrr' Kolasinski (officerrr poligon com pl)

[SCSA-025] Invision Power Board SQL Injection Vulnerability 2004-01-03
advisory security-corporation com

xsok local games exploit (2) 2004-01-03
c0wboy@0x333 (c0wboy tiscali it)

Webcam Watchdog Stack Overflow Vulnerability 2004-01-03
Peter Winter-Smith (peter4020 hotmail com)

PostNuke Issues (0.726 && Possibly Older) 2004-01-02
JeiAr (security gulftech org)

RE: Self-Executing HTML: Internet Explorer 5.5 and 6.0 Part IV 2004-01-02
tlarholm pivx com

include() vuln in EasyDynamicPages v.2.0 2004-01-02
Vietnamese Security Group (security security com vn)

Switch Off Multiple Vulnerabilities 2004-01-02
Peter Winter-Smith (peter4020 hotmail com)

Microsoft Word Protection Bypass 2004-01-02
Thorsten Delbrouck-Konetzko (Thorsten Delbrouck guardeonic com)

DoS in GoodTech Telnet Server 4.0.103 2004-01-02
Donato Ferrante (fdonato autistici org)

xsok local games exploit 2004-01-02
c0wboy@0x333 (c0wboy tiscali it)

Re: Switch Off Multiple Vulnerabilities 2004-01-02
Peter Winter-Smith (peter4020 hotmail com)

Self-Executing HTML: Internet Explorer 5.5 and 6.0 Part IV 2004-01-01
http-equiv@excite.com (1 malware com)

Re: Gallery v1.3.3 Cross Site Scripting Vulnerabillity 2004-01-01
Matt Zimmerman (mdz debian org)