The bugtraq list archive for Jan-06

Page 2
[<< First Page]	[Next Page >]	[< Prev Page]
[Thread Index]	[Author Index]
[Date Directory]	[Subject Directory]	[Author Directory]
[to lists]	[mcabee.org]	[lcm]

Jan 27, 2006

RE: MySQL 5.0 information leak?, Burton Strauss
BitComet URI Proof of Concept, nick58
Re: [Full-disclosure] Urgent Alert: Possible BlackWorm DDay February 3rd (Snort signatures included), Dude VanWinkle

Jan 26, 2006

[ MDKSA-2006:022 ] - Updated perl-Convert-UUlib packages fix vulnerability, security
iDefense Security Advisory 01.23.06: Computer Associates iTechnology iGateway Service Content-Length Buffer Overflow Vulnerability, labs-no-reply@xxxxxxxxxxxx
[ Rosiello Security ] Eterm-LibAST Advisory, angelo
Re: MySQL 5.0 information leak?, Johan De Meersman
[SECURITY] [DSA 950-1] New CUPS packages fix arbitrary code execution, Martin Schulze
Buffer Overflow /Font on mIRC, Crowdat Kurobudetsu
Re: MySQL 5.0 information leak?, Lance James
Urgent Alert: Possible BlackWorm DDay February 3rd (Snort signatures included), Gadi Evron
[SECURITY] [DSA 957-1] New ImageMagick packages fix arbitrary command execution, Martin Schulze
[eVuln] "my little homepage" products [link] BBCode XSS Vulnerability, alex
Windows mem leakage, endrazine
[eVuln] AndoNET Blog SQL Injection Vulnerability, alex
[HSC] Multiple transversal bug in vis, spher3
[ISecAuditors Advisories] Arbitrary flash code remote execution in 123flashchat, ISecAuditors Security Advisories
Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack, Cisco Systems Product Security Incident Response Team
SamiFTPd buffer overflow, admin
BlackWorm: 2 million infected? ISP notifications., Gadi Evron
SUSE Security Announcement: nfs-server/rpc.mountd remote code execution (SUSE-SA:2006:005), Marcus Meissner
HYSA-2006-002 Phpclanwebsite 1.23.1 Multiple Vulnerabilities, h4cky0u . org
SUSE Security Announcement: phpMyAdmin (SUSE-SA:2006:004), Ludwig Nussel
[ GLSA 200601-12 ] Trac: Cross-site scripting vulnerability, Stefan Cornelius
[security bulletin] SSRT061104 rev.1 - HP Oracle for OpenView (OfO) Critical Patch Update January 2006, security-alert
[SECURITY] [DSA 956-1] New lsh-utils packages fix local vulnerabilities, Martin Schulze
Re: [OSVDB Mods] iNETstore E Commerce Solution - Cross Site Scripting, iNETstore Support
Updated mozilla-thunderbird packages fix vulnerability, security
MyBB 1.0.2 XSS attack in search.php redirection, addmimistrator
What A Click! [Internet Explorer], mikx
Re: IndonesiaHack Advisory HTML injection in PHP Fusebox, brian428
[eVuln] Text Rider Sensitive Information Disclosure, alex
Newsphp Multiple SQL Injection Vulnerabilities, at
[KAPDA::#25] - MyBB 1.x Cross_Site_Scripting, roozbeh_afrasiabi
[SECURITY] [DSA 953-1] New flyspray packages fix cross-site scripting, Martin Schulze
[eVuln] miniBloggie Authentication Bypass, alex
[security bulletin] SSRT061099 rev.1 - HP-UX Local Increased Privilege, security-alert
Re: Tumbleweed EMF 6.x Processing Issues, support

Jan 25, 2006

[ GLSA 200601-11 ] KDE kjs: URI heap overflow vulnerability, Sune Kloppenborg Jeppesen
ANN: New release of CORE FORCE free endpoint security package, Core FORCE team
Re: Announcement: The Web Application Firewall Evaluation Criteria v1 Released, Gadi Evron
[eVuln] Note-A-Day Weblog Sensitive Information Disclosure, alex
[eVuln] e-moBLOG SQL Injection Vulnerability, alex
fetchmail security announcement fetchmail-SA-2006-01 (CVE-2006-0321), ma+bt
High Risk Vulnerability in Red Hat Directory Server and Red Hat Certificate Server, NGSSoftware Insight Security Research

Jan 23, 2006

[USN-245-1] KDE library vulnerability, Martin Pitt
Re: MySQL 5.0 information leak?, Stephen Frost
CodeCon program announced, early registration deadline nearing, Len Sassaman

Jan 22, 2006

MyBB Signature HTML Code Injection, n
[SECURITY] [DSA 949-1] New crawl packages fix potential group games execution, Martin Schulze
BlogPHP config.php SQL injection login bypassed, addmimistrator
Critical security advisory #006 tftpd32 Format string, admin
RE: MySQL 5.0 information leak?, Burton Strauss
Tumbleweed EMF 6.x Processing Issues, jcary2543
MDKSA-2006:019 - Updated kdelibs packages fix vulnerability, Mandriva Security Team
Re: Digital Armaments Security Advisory 01.16.2006: CMU SNMP utilities snmptrad Format String Vulnerability, Stan Bubrouski

Jan 21, 2006

MyBB 1.0.2 Sniffing table perfix bug in search.php, addmimistrator
Re: WMF vulnerability was a deliberate backdoor?, Gadi Evron
[ GLSA 200601-10 ] Sun and Blackdown Java: Applet privilege escalation, Thierry Carrez
[eVuln] geoBlog SQL Injection Vulnerability, alex
[eVuln] SaralBlog XSS & Multiple SQL Injection Vulnerabilities, alex
[eVuln] eggblog Multiple SQL Injection & XSS Vulnerabilities, alex
[eVuln] RCBlog Directory Traversal & Sensitive Information Disclosure, alex

Jan 20, 2006

[SECURITY] [DSA 946-1] New sudo packages fix privilege escalation, Martin Schulze
[SECURITY] [DSA 947-1] New ClamAV packages fix heap overflow, Michael Stone
MySQL 5.0 information leak?, Bernd Wurst
SUSE Security Announcement: kdelibs3 (SUSE-SA:2006:003), Ludwig Nussel
[SECURITY] [DSA 948-1] New kdelibs packages fix buffer overflow, Michael Stone
Re: Digital Armaments Security Advisory 01.16.2006: CMU SNMP utilities snmptrad Format String Vulnerability, Florian Weimer
BlogPHP config.php SQL injection login bypass, addmimistrator
BlogPHP config.php SQL injection login bypass, addmimistrator
Claroline 1.7.2, sso identification vulnerability, karmaguedon
DMA[2006-0115a] - 'AmbiCom Bluetooth Object Push Overflow', KF (lists)
MDKSA-2006:018 - Updated kernel packages fix several vulnerabilities, Mandriva Security Team
[KDE Security Advisory] kjs encodeuri/decodeuri heap overflow, Dirk Mueller