SecurityFocus

[security (at) slackware (dot) com [email concealed]: [slackware-security] Samba buffer overflow fixed] 2003-03-29
White Vampire (whitevampire mindless com)

CGI-City's CCLOG Script Injection Vulns 2003-03-29
BrainRawt . (brainrawt hotmail com)

CGI-City's CCGuestBook Script Injection Vulns 2003-03-29
BrainRawt . (brainrawt hotmail com)

sendmail 8.12.9 available 2003-03-29
Claus Assmann ca+announce@sendmail.org (ca+announce sendmail org)

ScozBook BETA 1.1 vulnerabilities 2003-03-29
euronymous (just-a-user yandex ru)

Justice Guestbook 1.3 vulnerabilities 2003-03-29
euronymous (just-a-user yandex ru)

Beanwebb Guestbook v1.0 vulnerabilities 2003-03-29
euronymous (just-a-user yandex ru)

Re: Netscape and Opera crash via java 2003-03-28
Mischa Krilov (mischa irev2 com)

Re: Netscape and Opera crash via java 2003-03-28
Wayne D. Hoxsie Jr. (wayne hoxnet com)

Netscape and Opera crash via java 2003-03-28
Marc Schoenefeld (schonef uni-muenster de)

Re: PostNuke Sensitive Information Disclosure 2003-03-28
Kilmarac Jarov - (kilmarac phreaker net)

Clearswift MAILsweeper hotfix 2003-03-28
fwegwg dfbndebndebner (erwin_lists hotmail com)

Re: [SCSA-011] Path Disclosure Vulnerability in XOOPS 2003-03-28
Grégory Le Bras (gregory lebras security-corporation com)

CORE-2003-0306: RealPlayer PNG deflate heap corruption vulnerability 2003-03-28
CORE Security Technologies Advisories (advisories coresecurity com)

Re: SNMP security issues in D-Link DSL Broadband Modem/Router 2003-03-28
Maslov, Snowy (Snowy Maslov fujitsu com au)

Mod_Survey ENV tag vulnerability 2003-03-28
Joel Palmius (joel palmius mh se)

Re: Fate Research Labs Presents: Analysis of the NTDLL.DLL Exploit 2003-03-28
Dave Aitel (dave immunitysec com)

MDKSA-2003:039 - Updated kernel22 packages fix multiple vulnerabilities 2003-03-28
Mandrake Linux Security Team (security linux-mandrake com)

[SECURITY] [DSA 272-1] New dietlibc packages fix arbitrary code execution 2003-03-28
joey infodrom org (Martin Schulze)

[SECURITY] [DSA 273-1] New krb4 packages fix authentication failure 2003-03-28
joey infodrom org (Martin Schulze)

Fate Research Labs Presents: Analysis of the NTDLL.DLL Exploit 2003-03-28
Eric Hines (eric hines fatelabs com)

RE: FUD-ALARM: @(#)Mordred Labs advisory - Integer overflow in PHP memory allocator 2003-03-28
sir mordred hushmail com

Re: D-Link DI-614 wiresless router crash/reboots 2003-03-28
Thierry Zoller (thierry sniff-em com)

Re: D-Link DI-614 wiresless router crash/reboots 2003-03-28
Pez Mohr (boredMDer74 comcast net)

MDKSA-2003:038 - Updated 2,4 kernel packages fix ptrace vulnerability 2003-03-28
Mandrake Linux Security Team (security linux-mandrake com)

GLSA: zlib (200303-25) 2003-03-28
Daniel Ahlberg (aliz gentoo org)

CORE-2003-0304-03: Vulnerability in GNOME's Eye of Gnome 2003-03-28
CORE Security Technologies Advisories (advisories coresecurity com)

RE: D-Link DI-614 wiresless router crash/reboots 2003-03-28
Rick Koenig (rk4028 exchange concordia edu)

[SECURITY] [DSA 274-1] New mutt packages fix arbitrary code execution 2003-03-28
joey infodrom org (Martin Schulze)

Problems with Snort-1.9.1 2003-03-27
Toby Miller (toby_miller adelphia net)

Re: PHPNuke viewpage.php allows Remote File retrieving 2003-03-26
admin gaylenandmargie com

PostNuke Sensitive Information Disclosure 2003-03-26
rkc (rkc uncompiled com)

Re: @(#)Mordred Labs advisory - Integer overflow in PHP memory allocator 2003-03-27
Dullien gmx de

Re: Vulnerability (critical): Digital signature for Adobe Acrobat/Reader plug-in can be forged 2003-03-26
Dan Harkless (bugtraq harkless org)

Re: Check Point FW-1: attack against syslog daemon possible 2003-03-27
Dr. Peter Bieringer (pbieringer aerasec de)

[SCSA-012] Multiple vulnerabilities in Sambar Server 2003-03-27
Grégory Le Bras (gregory lebras security-corporation com)

Re: PHPNuke viewpage.php allows Remote File retrieving 2003-03-27
Kevin (lists phantox com)

D-Link DI-614 wiresless router crash/reboots 2003-03-26
Thomas Reinke (reinke e-softinc com)

Re: @(#)Mordred Labs advisory - PHP for Win32: buffer overflow in openlog() function 2003-03-27
Jason Brooke (jason ausgamers com)

Immunix Secured OS 7+ openssl update 2003-03-27
Immunix Security Team (security wirex com)

RE: WebDav Exploit ffs 2003-03-27
Exurity Debugs (exbugs rogers com)

Vulnerability in my guest book 2003-03-27
Over_G (overg mail ru)

Re: Security Advisory - MyTaxexpress 2003 2003-03-27
HCTITS Security Division (security humancentrictech com)

TSLSA-2003-0013 - openssl 2003-03-27
Trustix Secure Linux Advisor (tsl trustix com)

Re: WebDAV exploit: using wide character decoder scheme 2003-03-27
Roman Medina (roman rs-labs com)

RE: FUD-ALARM: @(#)Mordred Labs advisory - Integer overflow in PHP memory allocator 2003-03-27
Stefan Esser (s esser e-matters de)

[SECURITY] [DSA 271-1] New ecartis and listar packages fix password change vulnerability 2003-03-27
joey infodrom org (Martin Schulze)

Re: SNMP security issues in D-Link DSL Broadband Modem/Router 2003-03-27
m singh tesco net

[SECURITY] [DSA 270-1] New Linux kernel packages (mips + mipsel) fix local root exploit 2003-03-27
joey infodrom org (Martin Schulze)

[SCSA-013] Cross Site Scripting vulnerability in testcgi.exe 2003-03-27
Grégory Le Bras (gregory lebras security-corporation com)

TSLSA-2003-0014 - glibc 2003-03-27
Trustix Secure Linux Advisor (tsl trustix com)

SNMP security issues in D-Link DSL Broadband Modem/Router 2003-03-27
Arhont Information Security (infosec arhont com)

@(#)Mordred Labs advisory - PHP for Win32: buffer overflow in openlog() function 2003-03-27
sir mordred hushmail com

Fwd: CERT Advisory CA-2003-11 Multiple Vulnerabilities in Lotus Notes and Domino 2003-03-27
Muhammad Faisal Rauf Danka (mfrd attitudex com)

Re: WebDAV exploit: using wide character decoder scheme 2003-03-27
JW Oh (mat monkey org)

NSFOCUS SA2003-01: Microsoft Windows XP Redirector Local Buffer Overflow Vulnerability 2003-03-27
NSFCOSU Security Team (security nsfocus com)

[RHSA-2003:051-01] Updated kerberos packages fix various vulnerabilities 2003-03-26
bugzilla redhat com

NetBSD Security Advisory 2003-007: (Another) Encryption weakness in OpenSSL code 2003-03-26
NetBSD Security Officer (security-officer netbsd org)

NetBSD Security Advisory 2003-008: faulty length checks in xdrmem_getbytes 2003-03-26
NetBSD Security Officer (security-officer netbsd org)

NetBSD Security Advisory 2003-005: RSA timing attack in OpenSSL code 2003-03-26
NetBSD Security Officer (security-officer netbsd org)

NetBSD Security Advisory 2003-004: Format string vulnerability in zlib gzprintf() 2003-03-26
NetBSD Security Officer (security-officer netbsd org)

Re: PHPNuke viewpage.php allows Remote File retrieving 2003-03-25
admin gaylenandmargie com

Security Advisory - MyTaxexpress 2003 2003-03-25
Nathan Wosnack (nathan hypervivid com)

Re: PHPNuke viewpage.php allows Remote File retrieving 2003-03-26
Tonu Samuel (tonu please do not remove this spam ee)

Re: PHPNuke viewpage.php allows Remote File retrieving 2003-03-26
Christopher Warner (zanee kernelcode com)

Re: WebDAV exploit: using wide character decoder scheme 2003-03-26
Dave Aitel (dave immunitysec com)

[SECURITY] [DSA 269-1] New heimdal packages fix authentication failure 2003-03-26
joey infodrom org (Martin Schulze)

@(#)Mordred Labs advisory - Integer overflow in PHP memory allocator 2003-03-26
Sir Mordred (mordred s-mail com)

TLS timing attack on OpenSSL [can-2003-78] [bid 6884] exploit 2003-03-26
Martin Vuagnoux (bugtraq vuagnoux com)

RE: Corsaire Security Advisory - Clearswift MAILsweeper MIME attachment evasion issue 2003-03-26
Martin O'Neal (bugtraq corsaire com)

Corsaire Security Advisory - Symantec Enterprise Firewall (SEF) HTTP URL pattern evasion issue 2003-03-26
Martin O'Neal (bugtraq corsaire com)

SuSE Security Announcement: apcupsd (SuSE-SA:2003:022) 2003-03-26
Thomas Biege (thomas suse de)

WebDAV exploit: using wide character decoder scheme 2003-03-26
¿ÀÁ¤¿í (mat panicsecurity org)

GLSA: mod_ssl (200303-23) 2003-03-25
Daniel Ahlberg (aliz gentoo org)

MDKSA-2003:035 - Updated openssl packages fix RSA-related insecurities 2003-03-25
Mandrake Linux Security Team (security linux-mandrake com)

MDKSA-2003:034 - Updated rxvt packages fix escape sequence insecurities 2003-03-25
Mandrake Linux Security Team (security linux-mandrake com)

Vulnerability (critical): Digital signature for Adobe Acrobat/Reader plug-in can be forged 2003-03-24
Vladimir Katalov (info elcomsoft com)

MDKSA-2003:036 - Updated netpbm packages fix math overflow errors 2003-03-25
Mandrake Linux Security Team (security linux-mandrake com)

Re: IIS 5.0 WebDAV -Proof of concept-. Fully documented. 2003-03-25
Dave Aitel (dave immunitysec com)

Security Update: [CSSA-2003-015.0] Linux: apcupsd remote root vulnerability and buffer overflows 2003-03-25
security sco com

Re: PHPNuke viewpage.php allows Remote File retrieving 2003-03-25
Jim Geovedi (negative magnesium net)

MDKSA-2003:037 - Updated glibc packages fix vulnerabilities in RPC XDR decoder 2003-03-25
Mandrake Linux Security Team (security linux-mandrake com)

IIS 5.0 WebDAV -Proof of concept-. Fully documented. 2003-03-25
Roman Medina (roman rs-labs com)

GLSA: stunnel (200303-24) 2003-03-25
Daniel Ahlberg (aliz gentoo org)

Re: PHPNuke viewpage.php and another SQL injections 2003-03-25
Tibor Pittich (Tibor Pittich phuture sk)

Re: PHPNuke viewpage.php allows Remote File retrieving 2003-03-25
DaiTengu (daitengu war-ensemble com)

SuSE Security Announcement: kernel (SuSE-SA:2003:021) 2003-03-25
Roman Drahtmueller (draht suse de)

Emule 0.27b remote crash 2003-03-25
Auriemma Luigi (aluigi pivx com)

Axis Video and Camera Servers - System log access and file access/overwrite via HTTP/CGI 2003-03-25
Axis Product Security (product-security axis com)

Re: Check Point FW-1 NG FP3 & FP3 HF1: DoS attack against syslog daemon possible 2003-03-24
Rizan Sheikh Mohd (sheikhrizan rocketmail com)

VChat 2003-03-23
subj (r2subj3ct dwclan org)

PHPNuke viewpage.php allows Remote File retrieving 2003-03-25
Zero_X www.lobnan.de Team (zero-x linuxmail org)

IRM 005: JWalk Application Server Version 3.2c9 DirectoryTraversal Vulnerability 2003-03-25
IRM Advisories (advisories irmplc com)

[SECURITY] [DSA 268-1] New mutt packages fix arbitrary code execution 2003-03-25
joey infodrom org (Martin Schulze)

[RHSA-2003:095-02] New samba packages fix security vulnerabilities 2003-03-25
bugzilla redhat com

CSS in PHP WEB CHAT 2003-03-25
Over_G (overg mail ru)

GLSA: glibc (200303-22) 2003-03-25
Daniel Ahlberg (aliz gentoo org)

@(#)Mordred Labs advisory - Integer overflow in PHP socket_iovec_alloc() function 2003-03-25
Sir Mordred (mordred s-mail com)

Re: Buffer overflows in ircII-based clients 2003-03-25
caf guarana org

Fwd: APPLE-SA-2003-03-24 Samba, OpenSSL 2003-03-25
Bryan Blackburn (blb pobox com)