SecurityFocus

SGI Advanced Linux Environment security update #3 2003-10-27
SGI Security Coordinator (agent99 sgi com)

SGI Advanced Linux Environment security update #4 2003-10-27
SGI Security Coordinator (agent99 sgi com)

Libnids <= 1.17 buffer overflow 2003-10-27
rafal wojtczuk 7bulls com (Rafal Wojtczuk)

Re: Internet Explorer and Opera local zone restriction bypass 2003-10-27
Heikki Toivonen (hjtoi comcast net)

Re: a dangerous fast spreading (yet simple) trojan horse. 2003-10-27
K-OTiK Security (Special-Alerts k-otik com)

Re: [LSD] Security vulnerability in SUN's Java Virtual Machine implementation 2003-10-28
Alla Bezroutchko (alla scanit be)

Advanced Poll : PHP Code Injection, File Include, Phpinfo 2003-10-25
Frog Man (leseulfrog hotmail com)

MDKSA-2003:096-1 - Updated apache2 packages fix CGI scripting deadlock 2003-10-25
Mandrake Linux Security Team (security linux-mandrake com)

Java 1.4.2_02 InsecurityManager JVM crash 2003-10-26
Marc Schoenefeld (schonef uni-muenster de)

Some serious security holes in 'The Bat!' 2003-10-25
Bipin Gautam hUNT3R (door_hunt3r blackcodemail com)

Dansie Shopping Cart Discloses Installation Path to Remote Users 2003-10-26
Dr`Ponidi Haryanto (drponidi hackermail com)

Re: Internet Explorer and Opera local zone restriction bypass 2003-10-26
Mohsen Hariri (mohsen_hariri yahoo com)

Re: XLS Attack on AES (Rijndael) 2003-10-25
Christian Ruediger Bahls (christian bahls gmx de)

a dangerous fast spreading (yet simple) trojan horse. 2003-10-28
Gadi Evron (ge egotistical reprehensible net)

Musicqueue multiple local vulnerabilities 2003-10-27
dong-h0un U (xploit hackermail com)

New Vulnerability 2003-10-26
Joshua P. Miller (jpmiller tds net)

RE: Internet Explorer and Opera local zone restriction bypass 2003-10-25
Mindwarper * (mindwarper linuxmail org)

sh-httpd `wildcard character' vulnerability 2003-10-27
dong-h0un U (xploit hackermail com)

Buffer Overflow in Yahoo messenger Client 2003-10-26
Hat-Squad Security Team (service hat-squad com)

Re: Internet Explorer and Opera local zone restriction bypass 2003-10-25
jelmer (jkuperus planet nl)

Re: Internet Explorer and Opera local zone restriction bypass 2003-10-25
psz maths usyd edu au (Paul Szabo)

RE: Internet Explorer and Opera local zone restriction bypass 2003-10-25
Thor Larholm (thor pivx com)

Re: SiteKiosk terminal software 2003-10-25
Godwin Stewart (gstewart spamcop net)

SiteKiosk terminal software 2003-10-24
Zrekam (zrekam badsystems com)

Re: Internet Explorer and Opera local zone restriction bypass 2003-10-24
Jort Slobbe (jortslobbe hetnet nl)

Re: XLS Attack on AES (Rijndael) 2003-10-24
Michael Sierchio (kudzu tenebras com)

XLS Attack on AES (Rijndael) 2003-10-24
latte1 hushmail com

[CLA-2003:771] Conectiva Security Announcement - anonftp 2003-10-24
Conectiva Updates (secure conectiva com br)

Internet Explorer and Opera local zone restriction bypass 2003-10-24
Mindwarper * (mindwarper linuxmail org)

HTML Help API - Privilege Escalation 2003-10-24
Brett Moore (brett moore security-assessment com)

Re: "Local" and "Remote" considered insufficient 2003-10-23
Florian Weimer (fw deneb enyo de)

Re: "Local" and "Remote" considered insufficient 2003-10-23
Eric Knight (eric swordsoft com)

(Fw) : mIRC 6.12 (latest) DCC Exploit 2003-10-23
K-OTiK Security (Special-Alerts k-otik com)

Shatter XP 2003-10-23
xenophi1e (oliver lavery sympatico ca)

CensorNet: Cross Site Scripting Vulnerability 2003-10-22
Richard Maudsley (maudr001 rbwm org)

Re: "Local" and "Remote" considered insufficient 2003-10-23
Ejovi Nuwere (ejovi ejovi net)

[LSD] Security vulnerability in SUN's Java Virtual Machine implementation 2003-10-23
Last Stage of Delirium (contact lsd-pl net)

"Local" and "Remote" considered insufficient 2003-10-22
Steven M. Christey (coley mitre org)

[CLA-2003:769] Conectiva Security Announcement - sane 2003-10-22
Conectiva Updates (secure conectiva com br)

Re: Web Wiz Forums ver. 7.01 2003-10-22
bruce webwizguide info

[CLA-2003:768] Conectiva Security Announcement - fileutils 2003-10-22
Conectiva Updates (secure conectiva com br)

Re: IE6 CSS-Crash 2003-10-22
xenophi1e (oliver lavery sympatico ca)

IE6 CSS-Crash 2003-10-22
Andreas Boeckler (abo netlands de)

mah-jong[v1.4]: server/client remote buffer overflow exploit. 2003-10-22
Vade 79 (v9 fakehalo deadpig org)

MS03-046 Microsoft Exchange 2000 Heap Overflow 2003-10-22
H D Moore (sflist digitaloffense net)

Web Wiz Forums ver. 7.01 2003-10-21
HEX (hex hex net ru)

IE6 & Java 1.4.2_02 applet: Hardware stress on floppy drive 2003-10-21
Marc Schoenefeld (schonef uni-muenster de)

OpenServer 5.0.5 : Insecure creation of files in /tmp 2003-10-21
security sco com

SQL Injection Vulnerability in FuzzyMonkey MyClassifieds SQL Version 2003-10-21
Sintelli SINTRAQ (sintraq sintelli com)

Immunix Secured OS 7+ fetchmail update 2003-10-20
Immunix Security Team (security immunix com)

RE: IE remote code execution 2003-10-20
Thor Larholm (thor pivx com)

Gast Arbeiter Privilege Escalation 2003-10-20
natok hush com

Cross Site Java applets 2003-10-20
Marc Schoenefeld (schonef uni-muenster de)

Re: Gaim festival plugin exploit 2003-10-20
merlyn stonehenge com (Randal L Schwartz)

Re: IE remote code execution 2003-10-20
Jouko Pynnonen (jouko iki fi)

Multiple SQL Injection Vulnerabilities in DeskPRO 2003-10-20
Aviram Jenik (aviram beyondsecurity com)

[ANNOUNCE] mod_security 1.7 released 2003-10-18
Ivan Ristic (ivanr webkreator com)

Re: IE remote code execution 2003-10-20
K-OTiK Security (Special-Alerts k-otik com)

Get admin level on Goldlink script v3.0 2003-10-18
Weke (weke programas-hacker com)

Unpatched Internet Explorer Bugs 2003-10-20
Liu Die Yu (liudieyuinchina yahoo com cn)

ZH2003-31SA (security advisory): file inclusion vulnerability in cpCommerce 2003-10-19
Astharot (secfoc email it)

Re: Multiple Heap Overflows in FTP Desktop 2003-10-17
Vlad M (v_lion_77 mail ru)

[OpenPKG-SA-2003.045] OpenPKG Security Advisory (ircd) 2003-10-19
OpenPKG (openpkg openpkg org)

eMule 2.2 [0.29c] - Web Control Panel - DOS(Denial Of Service) 2003-10-19
The-Insider (nuritrv18 bezeqint net)

Geeklog exploit 2003-10-19
Jouko Pynnonen (jouko iki fi)

Origo ASR-8100 ADSL router remote factory reset 2003-10-12
Theo Markettos (theo markettos org uk)

Re: Gaim festival plugin exploit 2003-10-18
HCTITS Security Division (security humancentrictech com)

@stake tool announcement: RedFang 2.5: The Bluetooth Hunter 2003-10-20
Ollie Whitehouse (ollie atstake com)

Re: [Full-Disclosure] Re: Gaim festival plugin exploit 2003-10-18
Cael Abal (lists onryou com)

JAP Wins Court Victory 2003-10-20
Tarapia Tapioco (comesefosse ntani firenze linux it)

Opera HREF escaped server name overflow 2003-10-20
@stake Advisories (advisories atstake com)

ByteHoard Directory Traversal Vulnerability 2003-10-19
Sintelli SINTRAQ (sintraq sintelli com)

IE remote code execution 2003-10-18
Marcin Ulikowski (r3b00t tx pl)

PHP-Nuke Path Disclosure Vulnerability 2003-10-18
Bahaa Naamneh (b_naamneh hotmail com)

Proof of concept for Windows Messenger Service overflow 2003-10-18
"Hanabishi Recca" (recca mail ru)

Re: [CLA-2003:765] Conectiva Security Announcement - ircd 2003-10-17
Florian Weimer (fw deneb enyo de)

[CLA-2003:765] Conectiva Security Announcement - ircd 2003-10-17
Conectiva Updates (secure conectiva com br)

[CLA-2003:766] Conectiva Security Announcement - gdm 2003-10-17
Conectiva Updates (secure conectiva com br)

MDKSA-2003:101 - Updated fetchmail packages fix DoS vulnerability 2003-10-16
Mandrake Linux Security Team (security linux-mandrake com)

MDKSA-2003:100 - Updated gdm packages fix local vulnerabilities 2003-10-16
Mandrake Linux Security Team (security linux-mandrake com)

CERT Advisory CA-2003-27 Multiple Vulnerabilities in Microsoft Windows and Exchange 2003-10-16
CERT Advisory (cert-advisory cert org)

Re: Microsoft got it wrong 2003-10-16
T.A. Adjuster (adjuster peeved org)

Cross-Site Scripting Vulnerability in Wrensoft Zoom Search Engine 2003-10-14
Sintelli SINTRAQ (sintraq sintelli com)

OpenServer 5.0.7 OpenServer 5.0.6 OpenServer 5.0.5 : Multiple security vulnerabilities in Xsco 2003-10-16
security sco com

Listbox And Combobox Control Buffer Overflow 2003-10-16
Brett Moore (brett moore security-assessment com)

RE: Microsoft Windows Security Bulletin Summary October 2003-10-15
Thor Larholm (thor pivx com)

CSS Vulnerability in Bajie HTTP JServer 2003-10-16
Oliver Karow (Oliver Karow gmx de)

Vulnerability in Exchange Server 5.5 Outlook Web Access Could Allow Cross-Site Scripting Attack (Microsoft Security Bulletin MS03-047) 2003-10-16
Ory Segal (ory segal sanctuminc com)

Microsoft PCHealth 2003/XP Buffer Overflow (#NISR15102003) 2003-10-16
NGSSoftware Insight Security Research (nisr nextgenss com)

ColdFusion SQL Error Pages XSS 2003-10-15
Lorenzo Hernandez Garcia-Hierro (lorenzohgh nsrg-security com)

Microsoft got it wrong 2003-10-15
Richard M. Smith (rms computerbytesman com)

Microsoft Windows Security Bulletin Summary October 2003-10-15
Giovanni Campagnoli (bioia yahoo com)

New CERT Coordination Center (CERT/CC) PGP Key 2003-10-15
CERT Advisory (cert-advisory cert org)

Gaim festival plugin exploit 2003-10-15
error (error lostinthenoise net)

Few issues previously unpublished in English 2003-10-15
3APA3A (3APA3A SECURITY NNOV RU)

Re: What software breaks because of this DNS feature? 2003-10-14
Kevin George (kevin-bugtraq raindrop net)

[CLA-2003:762] Conectiva Security Announcement - glibc 2003-10-14
Conectiva Updates (secure conectiva com br)

[SECURITY] [DSA 395-1] New tomcat4 packages fix denial of service 2003-10-15
joey infodrom org (Martin Schulze)

LinkSys EtherFast Router Denial of Service Attack 2003-10-15
DigitalPranksters (secteam digitalpranksters com)

Finjan Software Discovers a New Critical Vulnerability In Microsoft Hotmail 2003-10-15
Menashe Eliezer (menashe finjan com)