SecurityFocus

Nokia 6210 DoS SMS Issue 2003-02-25
@stake Advisories (advisories atstake com)

[sorcerer-spells] ZLIB-SORCERER2003-02-25 2003-02-25
Michael Walton (mwalton abilene com)

VERITAS Software Technical Advisory (fwd) 2003-02-25
Dave Ahmad (da securityfocus com)

Re: Netscape 6/7 crashes by a simple stylesheet... 2003-02-25
jim r halfpenny britishairways com

RE: Ericsson HM220dp ADSL modem Insecure Web Administration Vulne rability 2003-02-25
Johan Kölhi (EAB) (Johan Kolhi etx ericsson se)

Re: Terminal Emulator Security Issues 2003-02-25
H D Moore (termulation digitaloffense net)

Re: Platform independent allocating sprintf (was Re: buffer overrun 2003-02-25
James Antill (james-bugtraq and org)

Re: Riched20.DLL attribute label buffer overflow vulnerability 2003-02-25
Marc Ruef (marc ruef computec ch)

PHP code injection in CuteNews 2003-02-25
Over_G (overg mail ru)

[ESA-20030225-006] WebTool session ID spoofing vulnerability. 2003-02-25
EnGarde Secure Linux (security guardiandigital com)

Re: poc zlib sploit just for fun :) 2003-02-24
Kelledin kelledin+BTQ@skarpsey.dyndns.org (kelledin+BTQ skarpsey dyndns org)

Re: Terminal Emulator Security Issues 2003-02-25
Juraj Ziegler (e hq sk)

Netscape 6/7 crashes by a simple stylesheet... 2003-02-25
jux beer com

MDKSA-2003:022 - Updated vnc packages fix cookie vulnerability 2003-02-24
Mandrake Linux Security Team (security linux-mandrake com)

Re: Terminal Emulator Security Issues 2003-02-25
Michael Jennings (mej eterm org)

nCipher Advisory #7: Unexpected copies of imported software keys 2003-02-25
nCipher Support (technotifications us ncipher com)

[RHSA-2003:053-10] Updated vte packages fix gnome-terminal vulnerability 2003-02-25
bugzilla redhat com

QuickTime/Darwin Streaming Administration Server Multiple vulnerabilities 2003-02-25
@stake Advisories (advisories atstake com)

clarkconnect(d) information disclosure 2003-02-25
Knud Erik Højgaard (kain ircop dk)

MDKSA-2003:023 - Updated lynx packages fix CRLF injection vulnerability 2003-02-24
Mandrake Linux Security Team (security linux-mandrake com)

GLSA: vnc (200302-16) 2003-02-24
Daniel Ahlberg (aliz gentoo org)

Platform independent allocating sprintf (was Re: buffer overrun 2003-02-24
Forrest J. Cavalier III (forrest mibsoftware com)

Terminal Emulator Security Issues 2003-02-24
H D Moore (termulation digitaloffense net)

[CLA-2003:570] Conectiva Linux Security Announcement - openssl 2003-02-24
secure conectiva com br

Re: buffer overrun in zlib 1.1.4 2003-02-24
Thamer Al-Harbash (tmh whitefang com)

RE: Bypassing Personal Firewalls 2003-02-24
John Howie (JHowie securitytoolkit com)

Re: Bypassing Personal Firewalls 2003-02-24
Shaun Clowes (shaun securereality com au)

Re: Riched20.DLL attribute label buffer overflow vulnerability 2003-02-24
Raistlin (raistlin gioco net)

[SECURITY] [DSA 253-1] New OpenSSL packages fix timing-based attack vulnerability 2003-02-24
joey infodrom org (Martin Schulze)

Securing Windows 2000 Server Documentation 2003-02-24
Michael Howard (mikehow microsoft com)

WihPhoto (PHP) 2003-02-23
Frog Man (leseulfrog hotmail com)

Re: Bypassing Personal Firewalls 2003-02-24
Zow Terry Brugger (zow llnl gov)

Nessus 2.0 is out 2003-02-24
Renaud Deraison (renaud tenablesecurity com)

Mambo SiteServer exploit gains administrative privileges 2003-02-24
Simen Bergo (sbergo thesource no)

Re: Bypassing Personal Firewalls 2003-02-23
Torbjörn Hovmark (torbjorn hovmark abtrusion com)

Re[2]: PHPNuke SQL Injection / General SQL Injection 2003-02-23
alias securityfocus com

Re: Bypassing Personal Firewalls 2003-02-23
Johan Verrept (jove exelsys be)

Vulnerability for Platinum FTP version 1.0.11 2003-02-24
Pui Kin Ser (serpuikin hotmail com)

Re: O UT LO OK E XPRE SS 6 .00 : broken 2003-02-24
Thor Larholm (thor pivx com)

Re: buffer overrun in zlib 1.1.4 2003-02-24
Carlo Marcelo Arenas Belon (carenas chasqui lared net pe)

multiple vulnerabilities in glftpd 2003-02-23
Karol Wiêsek (appelast bsquad sm pl)

sircd proof-of-concept / advisory 2003-02-23
Knud Erik Højgaard (kain ircop dk)

GLSA: tightvnc (200302-15) 2003-02-24
Daniel Ahlberg (aliz gentoo org)

[LSD] Win32 assembly components 2003-02-24
Last Stage of Delirium (contact lsd-pl net)

poc zlib sploit just for fun :) 2003-02-23
Crazy Einstein (crazy_einstein yahoo com)

moxftp arbitrary code execution poc/advisory 2003-02-23
Knud Erik Højgaard (kain ircop dk)

GLSA: apcupsd (200302-13) 2003-02-24
Daniel Ahlberg (aliz gentoo org)

GLSA: usermin (200302-14) 2003-02-24
Daniel Ahlberg (aliz gentoo org)

[SNS Advisory No.62] Webmin/Usermin Session ID Spoofing Vulnerability "Episode 2" 2003-02-24
snsadv@lac.co.jp (snsadv lac co jp)

FreeBSD Security Advisory FreeBSD-SA-03:03.syncookies 2003-02-24
FreeBSD Security Advisories (security-advisories freebsd org)

Webmin 1.050 - 1.060 remote exploit 2003-02-24
Carl Livitt (carl learningshophull co uk)

O UT LO OK E XPRE SS 6 .00 : broken 2003-02-23
http-equiv@excite.com (http-equiv malware com)

Re: phpBB Security Bugs 2003-02-22
Christian Vogel (chris obelix hedonism cx)

[SCSA-006] XSS & Function Execution Vulnerabilities in Nuked-Klan 2003-02-22
Grégory Le Bras (gregory lebras security-corp org)

exploit for Cpanel 5 remote command execution. 2003-02-23
evilcow ig com br

Weak Encryption Scheme in Telindus 112x 2003-02-23
eflorio edmaster it

[SCSA-007] Cross Site Scripting Vulnerabilities in WWWBoard 2003-02-23
Grégory Le Bras (gregory lebras security-corp org)

Re: PHPNuke SQL Injection / General SQL Injection 2003-02-22
MightyE (mightye mightye org)

Re: phpBB Security Bugs 2003-02-22
Lucas Armstrong (lucas cgishield com)

Re: Perl2Exe EXEs Can Be Decompiled (update) 2003-02-22
Kain (kain kain org)

eject 2.0.10 vulnerability 2003-02-22
nordi (nordi addcom de)

GLSA: (200302-12) 2003-02-22
Daniel Ahlberg (aliz gentoo org)

Re: Bypassing Personal Firewalls 2003-02-22
Shaun Clowes (shaun securereality com au)

Re: Cisco IOS OSPF exploit 2003-02-22
KF (dotslash snosoft com)

RE: Bypassing Personal Firewalls 2003-02-22
John Howie (JHowie securitytoolkit com)

buffer overrun in zlib 1.1.4 2003-02-22
Richard Kettlewell (rjk greenend org uk)

RE: Bypassing Personal Firewalls 2003-02-21
Drew Copley (dcopley eeye com)

RE: Bypassing Personal Firewalls 2003-02-21
Oliver Lavery (oliver lavery sympatico ca)

Re: Cisco IOS OSPF exploit 2003-02-21
Mike Caudill (mcaudill cisco com)

Bypassing Personal Firewalls 2003-02-21
xenophi1e (oliver lavery sympatico ca)

Re: twlc advisory: all versions of php nuke are vulnerable... 2003-02-19
Jessica Smith (crystalsinger mail com)

Re: PHPNuke SQL Injection / General SQL Injection 2003-02-21
David Walker (bugtraq grax com)

RE: PHPNuke SQL Injection 2003-02-21
Oriol Carreas (uri 7a69ezine org)

Myguestbook (PHP) 2003-02-21
Frog Man (leseulfrog hotmail com)

Re: phpBB Security Bugs 2003-02-21
Konrad Rieck (kr roqe org)

Rogue buffer overflow 2003-02-21
Ulf Harnhammar (ulfh update uu se)

Re: Master Servers: yet another DDoS... 2003-02-20
Greg Steuck (greg-bugtraq nest cx)

Perl2Exe EXEs Can Be Decompiled (update) 2003-02-21
Domainbox, Tim Abenath (ta domainbox de)

MDKSA-2003:020 - Updated openssl packages fix timing-based attack vulnerability 2003-02-21
Mandrake Linux Security Team (security linux-mandrake com)

TSLSA-2003-0005 - openssl 2003-02-21
tsl trustix com (Trustix Secure Linux Advisor)

[SECURITY] [DSA 252-1] New slocate packages fix local root exploit 2003-02-21
joey infodrom org (Martin Schulze)

Re: PHPNuke SQL Injection 2003-02-21
Martin Eiszner (martin websec org)

[RHSA-2003:041-12] Updated VNC packages fix replay and cookie vulnerabilities 2003-02-21
bugzilla redhat com

Re: Riched20.DLL attribute label buffer overflow vulnerability 2003-02-21
Thor Larholm (thor pivx com)

MDKSA-2003:021 - Updated krb5 packages fix vulnerability in FTP client 2003-02-21
Mandrake Linux Security Team (security linux-mandrake com)

Cisco Security Advisory: Multiple Product Vulnerabilities found by PROTOS SIP Test Suite 2003-02-21
Cisco Systems Product Security Incident Response Team (psirt cisco com)

phpBB Security Bugs 2003-02-20
Lucas Armstrong (lucas cgishield com)

[CLA-2003:569] Conectiva Linux Security Announcement - kde 2003-02-20
secure conectiva com br

PHPNuke SQL Injection 2003-02-20
Lucas Armstrong (lucas cgishield com)

login_ldap security announcement 2003-02-20
Peter Werner (peterw ifost org au)

[saag] Of potential interest -- Citibank tries to gag crypto bug disclosure (fwd) 2003-02-20
Dave Ahmad (da securityfocus com)

GLSA: bitchx (200302-11) 2003-02-20
Daniel Ahlberg (aliz gentoo org)

[RHSA-2003:057-06] Updated shadow-utils packages fix exposure 2003-02-20
bugzilla redhat com

GLSA: openssl (200302-10) 2003-02-20
Daniel Ahlberg (aliz gentoo org)

Cisco IOS OSPF exploit 2003-02-20
FX (fx phenoelit de)

[ESA-20030220-004] MySQL double free vulnerability 2003-02-20
EnGarde Secure Linux (security guardiandigital com)

[ESA-20030220-005] OpenSSL timing-based attack vulnerability 2003-02-20
EnGarde Secure Linux (security guardiandigital com)

XSS and Path Disclosure in Sage 2003-02-19
euronymous (just-a-user yandex ru)

New version of ike-scan (IPsec IKE scanner) available - v1.1 2003-02-20
Roy Hills (Roy Hills nta-monitor com)