SecurityFocus

[SECURITY] [DSA 258-1] New ethereal packages fix arbitrary code execution 2003-03-10
joey infodrom org (Martin Schulze)

Security Update: [CSSA-2003-SCO.4.1] UnixWare 7.1.1 Open UNIX 8.0.0 UnixWare 7.1.3 : REVISED: Lax permissions on /dev/X 2003-03-10
security sco com

Re: MySQL user can be changed to root 2003-03-10
Sergei Golubchik (serg mysql com)

PHP-Nuke 6.0 & 6.5RC2 SQL Injection Again 2003-03-10
Frog Man (leseulfrog hotmail com)

Cross-Referencing Linux vulnerability 2003-03-11
Albert Puigsech Galicia (ripe 7a69ezine org)

MDKSA-2003:029 - Updated snort packages fix buffer overflow vulnerability 2003-03-06
Mandrake Linux Security Team (security linux-mandrake com)

Corsaire Security Advisory - Clearswift MAILsweeper MIME attachment evasion issue 2003-03-07
Martin O'Neal (bugtraq corsaire com)

[ESA-20030307-008] 'file' ELF parsing routine buffer overflow vulnerability. 2003-03-07
EnGarde Secure Linux (security guardiandigital com)

GLSA: snort (200303-6.1) 2003-03-07
Daniel Ahlberg (aliz gentoo org)

Re: [EC-SA-01.2003] Windows XP "welcome screen" exposes the names of all the members of the local administrators group 2003-03-08
Andrew G. Tereschenko (secure bugtraq tag odessa ua)

RE: JRun: The Easiness of Session Fixation 2003-03-08
Mitja Kolsek (lists acros si)

Re: Siemens *35 and 45 series phones SMS Danial of Service 2003-03-08
kornau bn-online net

MySQL user can be changed to root 2003-03-08
=?iso-8859-1?Q??= bugsman@libero.it (bugsman libero it)

Re: Sendmail exploit released??? 2003-03-07
zero_latency hushmail com

Vulnerability in Upload Lite 3.22 that could allow somebody to upload/execute code on a remote host. 2003-03-08
Sil (sil linuxquestions net)

Re: Smoothwall Firewall SNORT buffer overflow 2003-03-08
William Anderson (neuro well com)

OpenBSD lprm(1) exploit 2003-03-08
Claes Nyberg (md0claes mdstud chalmers se)

NII Advisory - Buffer Overflow in SQLBase (Revised) 2003-03-08
Network Intelligence India Pvt. Ltd. (info nii co in)

Security Update: [CSSA-2003-SCO.5] UnixWare 7.1.1 Open UNIX 8.0.0 UnixWare 7.1.3 : remote buffer overflow in sendmail (CERT CA-2003-07) 2003-03-07
security sco com

[EC-SA-01.2003] Windows XP "welcome screen" exposes the names of all the members of the local administrators group 2003-03-07
Eitan Caspi (eitancaspi yahoo com)

SimpleBBS 1.0.6 Default Permissions Vuln 2003-03-07
flur (flur flurnet org)

Re: xscreensaver exploit for Redhat 7.3 2003-03-07
Inode (inode mediaservice net)

Re: sendmail 8.12.8 available 2003-03-07
Bennett Todd (bet rahul net)

Re[2]: Siemens *35 and 45 series phones SMS Danial of Service 2003-03-07
Matti Haack (m haack haack-it de)

Re: Siemens *35 and 45 series phones SMS Danial of Service 2003-03-07
Mark Schellhase (Mark Schellhase t-online de)

Smoothwall Firewall SNORT buffer overflow 2003-03-07
Martinez, Sylvain (Sylvain_Martinez eu1 bp com)

[sorcerer-spells] SNORT-SORCERER2003-03-06-1 2003-03-06
Michael Walton (mwalton abilene com)

Re: potential buffer overflow in lprm (fwd) 2003-03-06
noir sin (noir olympos org)

Re: xscreensaver exploit for Redhat 7.3 2003-03-06
Steven Leikeim (steven enel ucalgary ca)

DBTools' DBManager Information Leak Vulnerability 2003-03-07
Ignacio Vazquez (infosecmanager centaura com ar)

[ESA-20030307-007] 'snort' RPC preprocessor buffer overflow. 2003-03-07
EnGarde Secure Linux (security guardiandigital com)

GLSA: mysqlcc (200303-7) 2003-03-07
Daniel Ahlberg (aliz gentoo org)

Wordit Logbook Version 0.98b3 2003-03-07
Aleksey Sintsov (theforce s-mail com)

MDKSA-2003:030 - Updated file packages fix stack overflow vulnerability 2003-03-06
Mandrake Linux Security Team (security linux-mandrake com)

[RHSA-2003:086-07] Updated file packages fix vulnerability 2003-03-07
bugzilla redhat com

Security Update: [CSSA-2003-009.0] Linux: slocate command line buffer overflows 2003-03-06
security sco com

xscreensaver exploit for Redhat 7.3 2003-03-06
Angelo Rosiello (guilecool usa com)

[sorcerer-spells] BIND-SORCERER2003-03-06 2003-03-06
Michael Walton (mwalton abilene com)

[New Research Paper] Bound by Tradition: A sampling of the security posture of the Internet's DNS servers 2003-03-06
Mike Schiffman (mike infonexus com)

New HP Jetdirect SNMP password vulnerability when using Web JetAdmin 2003-03-06
Sven Pechler (helpdesk tm tue nl)

Re: Siemens *35 and 45 series phones SMS Danial of Service 2003-03-06
Raymond A. Meijer (raymond psytrance org)

Re: Siemens *35 and 45 series phones SMS Danial of Service 2003-03-06
Lukasz Wojcik (lookie fly medianet pl)

file(1) exploit code 2003-03-06
Crazy Einstein (crazy_einstein yahoo com)

Re: sendmail 8.12.8 available 2003-03-04
Neil W Rickert rickert+bt@cs.niu.edu (rickert+bt cs niu edu)

Security Update: [CSSA-2003-SCO.4] UnixWare 7.1.1 Open UNIX 8.0.0 UnixWare 7.1.3 : Lax permissions on /dev/X 2003-03-05
security caldera com

Re: BIND 9.2.2 Vulnerabilities? 2003-03-06
Scott Wunsch (bugtraq tracking wunsch org)

Re: 3Com SuperStack 3 Firewall Content Filter Exploitable Via Telnet 2003-03-06
der Mouse (mouse Rodents Montreal QC CA)

ILLC 2003-03-06
Hugo Vázquez Caramés (overclocking_a_la_abuela hotmail com)

[SCSA-009] Remote Command Execution Vulnerability in PHP Ping 2003-03-06
Grégory Le Bras (gregory lebras security-corp org)

GLSA: snort (200303-6) 2003-03-06
Daniel Ahlberg (aliz gentoo org)

Re: Siemens *35 and 45 series phones SMS Danial of Service 2003-03-06
Timothy Farrell (xfarrell ddisp net)

[RHSA-2003:039-06] Updated im packages fix insecure handling of temporary files 2003-03-06
bugzilla redhat com

Re: Siemens *35 and 45 series phones SMS Danial of Service 2003-03-06
Luciano Miguel Ferreira Rocha (strange nsk no-ip org)

Re: Siemens *35 and 45 series phones SMS Danial of Service 2003-03-06
Michael Landsmann (michael mysticdale com)

[RHSA-2003:062-11] Updated OpenSSL packages fix timing attack 2003-03-06
bugzilla redhat com

PHP-Nuke 6.0 (& 6.5?) : Serious SQL Injection Security Holes 2003-03-06
Frog Man (leseulfrog hotmail com)

Re: 3Com SuperStack 3 Firewall Content Filter Exploitable Via Telnet 2003-03-05
Niels Bakker (niels=bugtraq bakker net)

Re: BIND 9.2.2 Vulnerabilities? 2003-03-05
John (bugtraq doomsday com)

Re: Siemens *35 and 45 series phones SMS Danial of Service 2003-03-05
Christian \cycloon\ Gut (cycloon is-root org)

potential buffer overflow in lprm (fwd) 2003-03-05
Dave Ahmad (da securityfocus com)

Re: 3Com SuperStack 3 Firewall Content Filter Exploitable Via Telnet 2003-03-05
David G. Andersen (dga lcs mit edu)

Re: BIND 9.2.2 Vulnerabilities? 2003-03-05
Gerhard den Hollander (gerhard jasongeo com)

Re: SA-03:04.sendmail Bin Update 2003-03-05
Charles M. Richmond (cmr iisc com)

3Com SuperStack 3 Firewall Content Filter Exploitable Via Telnet 2003-03-04
bit_logic s-mail com

RE: Siemens *35 and 45 series phones SMS Danial of Service 2003-03-05
Dawid Szymañski (dawszy polnet wroc pl)

Sendmail exploit released??? 2003-03-05
Kryptik Logik (kryptiklogik hushmail com)

shopfactory shopping cart 2003-03-05
Maarten (secfocus hartsuijker com)

[RHSA-2003:042-07] Updated squirrelmail packages close cross-site scripting vulnerabilities 2003-03-05
bugzilla redhat com

GLSA: tcpdump (200303-5) 2003-03-05
Daniel Ahlberg (aliz gentoo org)

Re: BIND 9.2.2 Vulnerabilities? 2003-03-04
David Kennedy CISSP (david kennedy acm org)

Re: Netscape Communicator 4.x sensitive informations in configuration file 2003-03-04
mstoltz netscape com

Re: Sendmail testing tool. 2003-03-04
David Huecking (d huecking gmx net)

Re: BIND 9.2.2 Vulnerabilities? 2003-03-04
Albert Sunseri (sunseri abpi net)

[OpenPKG-SA-2003.016] OpenPKG Security Advisory (sendmail) 2003-03-04
OpenPKG (openpkg openpkg org)

Log corruption on multiple webservers, log analyzers,... 2003-03-04
Hugo Vázquez Caramés (overclocking_a_la_abuela hotmail com)

Re: Siemens *35 and 45 series phones SMS Danial of Service 2003-03-04
Andreas Hofmeister (andi solutions pyramid de)

RE: Security responsible at AOL 2003-03-04
Edward Beheler (edward beheler co howard in us)

[OpenPKG-SA-2003.017] OpenPKG Security Advisory (file) 2003-03-04
OpenPKG (openpkg openpkg org)

Re: sendmail 8.12.8 available 2003-03-04
Nico Erfurth (masta perlgolf de)

BIND 9.2.2 Vulnerabilities? 2003-03-04
John (bugtraq doomsday com)

iDEFENSE Security Advisory 03.04.03: Locally Exploitable Buffer Overflow in file(1) 2003-03-04
iDEFENSE Labs (labs idefense com)

Sendmail testing tool. 2003-03-03
Jon Larabee (jlarabee greenapple com)

Re: [LSD] Technical analysis of the remote sendmail vulnerability 2003-03-04
Eric Allman eric+bugtraq@sendmail.org (eric+bugtraq sendmail org)

uploader.php script 2003-03-04
auto40951 hushmail com

Re[2]: Siemens *35 and 45 series phones SMS Danial of Service 2003-03-04
João Colaço (colaco netvisao pt)

Re: axis2400 webcams 2003-03-03
jean-philippe Gaulier (jean-philippe gaulier unilim fr)

[OpenPKG-SA-2003.015] OpenPKG Security Advisory (zlib) 2003-03-04
OpenPKG (openpkg openpkg org)

Re: New HP Jetdirect SNMP password vulnerability when using Web JetAdmin 2003-03-04
Sven Pechler (helpdesk tm tue nl)

Re: Siemens *35 and 45 series phones SMS Danial of Service 2003-03-04
Robert Waldner (rw coretec at)

RE: Siemens *35 and 45 series phones SMS Danial of Service 2003-03-03
Willis Johnson (willisj microsoft com)

Security Update: [CSSA-2003-SCO.3] UnixWare 7.1.1 Open UNIX 8.0.0 UnixWare 7.1.3 : ftp vulnerability with pipe symbols in filenames 2003-03-03
security caldera com

Re: sendmail 8.12.8 available 2003-03-04
Mordechai T. Abzug (morty frakir org)

HP-UX security bulletins digest [Fwd/sendmail issue] 2003-03-04
support_feedback us-support2-mail external hp com (IT Resource Center\ )

uploader.php vulnerability 2003-03-04
kingcope gmx net

Fwd: CERT Advisory CA-2003-07 Remote Buffer Overflow in Sendmail 2003-03-04
Muhammad Faisal Rauf Danka (mfrd attitudex com)

Fwd: APPLE-SA-2003-03-03 sendmail 2003-03-04
Bryan Blackburn (blb pobox com)

[SECURITY] [DSA-257-1] sendmail remote exploit 2003-03-04
Wichert Akkerman (wichert wiggy net)

GLSA: sendmail (200303-4) 2003-03-04
Daniel Ahlberg (aliz gentoo org)

[OpenPKG-SA-2003.014] OpenPKG Security Advisory (tcpdump) 2003-03-04
OpenPKG (openpkg openpkg org)

NetBSD Security Advisory 2003-001: Encryption weakness in OpenSSL code 2003-03-04
NetBSD Security Officer (security-officer netbsd org)