The bugtraq list archive for Mar-05
- Apr 01, 2005
- Mar 31, 2005
- Re: cPanel/WHM demo account problems, Beau Henderson
- RE: eBay Account Phishing with eBay Redirect - Ebay fixed this + related XSS hole, Rager, Anton (Anton)
- RE: Invision Power Board v2.0.3 XSS vulnerabilities, alex
- WindowsXP malformed .wmf files DoS, liquid
- Re: DoS of LAN via D-Link switches, Scott Nelson
- Re: Bay Technical Associates telnet server logon bypass, Michael Brennen
- MDKSA-2005:063 - Updated htdig packages fix vulnerability, Mandrakelinux Security Team
- Bay Technical Associates telnet server logon bypass, nolimit bugtraq
- MDKSA-2005:062 - Updated ipsec-tools packages fix vulnerability, Mandrakelinux Security Team
- MX Shop 1.1.1 and MX Kart 1.1.2 are vulnerable to multiple SQL injection vulnerabilities, dcrab
- [ GLSA 200503-37 ] LimeWire: Disclosure of sensitive information, Thierry Carrez
- MDKSA-2005:064 - Updated libexif packages fix vulnerability, Mandrakelinux Security Team
- [ GLSA 200503-36 ] netkit-telnetd: Buffer overflow, Thierry Carrez
- RE: Portcullis Security Advisory 05-011 ACPI 1.6 BIOS, Paul J Docherty
- Re: Portcullis Security Advisory 05-011 ACPI 1.6 BIOS, Chris Paget
- Vendor Response to Portculis Advisory 05-002: Spectrum Cash Receipting System, Paul J Docherty
- cPanel/WHM demo account problems, Richard Stanway
- Re: DoS of LAN via D-Link switches, Joel Maslak
- bzip2 TOCTOU file-permissions vulnerability, Imran Ghory
- [SECURITY] [DSA 701-1] New samba packages fix arbitrary code execution, Martin Schulze
- [CLA-2005:945] Conectiva Security Announcement - kernel, Conectiva Updates
- Mar 30, 2005
- Multiple sql injection, and xss vulnerabilities in Pay pal Storefront, Diabolic Crab
- PaFileDB Version 3.1 and below are exploitable via a XSS and a SQL injection vulnerability, dcrab
- Re: Portcullis Security Advisory 05-011 ACPI 1.6 BIOS, Kurt Seifried
- [SECURITY] [DSA 700-1] New mailreader packages fix cross-site scripting vulnerability, Martin Schulze
- Re: Multiple Sql injection, and multiple XSS vulnerabilities in Photopost PHP Pro Photo Gallery Software., dcrab
- Re: DoS of LAN via D-Link switches, Neil Watson
- RE: Portcullis Security Advisory 05-011 ACPI 1.6 BIOS, Paul J Docherty
- [ GLSA 200503-35 ] Smarty: Template vulnerability, Thierry Carrez
- Cisco Security Advisory: Cisco VPN 3000 Concentrator Vulnerable to Crafted SSL Attack, Cisco Systems Product Security Incident Response Team
- MDKSA-2005:061 - Updated krb5 packages fix telnet client vulnerability, Mandrakelinux Security Team
- Portcullis Security Advisory 05-011 ACPI 1.6 BIOS, Paul J Docherty
- [PersianHacker.NET 200503-11]Ublog reload 1.0.4 and prior Multiple Vulnerbilities, PersianHacker Team
- Multiple phpCoin Vulnerabilities, GulfTech Security Research
- Re: DoS of LAN via D-Link switches, Tarmo Mamers
- Multiple XSS vulnerabilities in ACS Blog, Dan Crowley
- Mar 29, 2005
- abuse & security issues > Israel, Gadi Evron
- Code insertion in Blogger comments, Antone Roundy
- RE: Multiple Sql injection, and multiple XSS vulnerabilities in Photopost PHP Pro Photo Gallery Software., GulfTech Security Research
- [PersianHacker.NET 200503-12]Chatness 2.5.1 and prior XSS Vulnerabilities, PersianHacker Team
- Re: Security Flaw with Digital signatures in Microsoft Outlook, dori
- Re: iDEFENSE Security Advisory 03.28.05: Multiple Telnet Client slc_add_reply() Buffer Overflow Vulnerability, Ga=EBl?= Delalleau
- [SECURITY] [DSA 697-1] New netkit-telnet packages fix arbitrary code execution, Martin Schulze
- Code insertion in Blogger comments, Antone Roundy
- Multiple sql injection, and xss vulnerabilities in PortalApp, dcrab
- Invision Power Board v2.0.3 XSS vulnerabilities, hoang yen
- Re: iDEFENSE Security Advisory 03.28.05: Multiple Telnet Client slc_add_reply() Buffer Overflow Vulnerability, Tavis Ormandy
- directory traversal in FastStone 4in1 Browser 1.2, Donato Ferrante
- Re: TCP timestamp & advanced fingerprinting, Erwan Arzur
- Multiple sql injection, and xss vulnerabilities in AspApp, dcrab
- MITKRB5-SA-2005-001: buffer overflows in telnet client, Tom Yu
- [SECURITY] [DSA 699-1] New netkit-telnet-ssl packages fix arbitrary code execution, Martin Schulze
- RE: DoS of LAN via D-Link switches, David Gillett
- Multiple Sql injection, and multiple XSS vulnerabilities in Easy Community Management System Forum (E-XOOPS), dcrab
- [USN-102-1] shar vulnerabilities, Martin Pitt
- Re: phishing sites report - March/2005, Gadi Evron
- Re: phishing sites report - March/2005, Paul Laudanski
- THai's Shoutbox XSS (Spoofing URL) BUG, CorryL
- [SECURITY] [DSA 698-1] New mc packages fix buffer overflow, Martin Schulze
- DoS of LAN via D-Link switches, Frank Bures
- Mar 28, 2005
- Multiple Sql injection, and multiple XSS vulnerabilities in Photopost PHP Pro Photo Gallery Software, dcrab
- phishing sites report - March/2005, Gadi Evron
- Multiple XSS issues in Sun AnswerBook2, B00B00
- RE: Re: Symantec Antivirus client locally created scheduled scan is not running if the local console is logged off, Eitan Caspi
- Re: iDEFENSE Security Advisory 03.28.05: Multiple Telnet Client slc_add_reply() Buffer Overflow Vulnerability, Solar Designer
- Multiple XSS vulnerabilities in ACS Blog, Dan Crowley
- [USN-101-1] telnet vulnerabilities, Martin Pitt
- Re: smail remote and local root holes (really, it is exploitable), sean
- Multiple Sql injection, and multiple XSS vulnerabilities in Easy Community Management System Forum (E-XOOPS), dcrab
- local root security bug in linux >= 2.4.6 <= 2.4.30-rc1 and 2.6.x.y <= 2.6.11.5, advisories
- Multiple Sql injection, and multiple XSS vulnerabilities in Photopost PHP Pro Photo Gallery Software., dcrab