The bugtraq list thread archive for Oct-04

Page 1
[<< First Page]	[Next Page >]	[Prev Page]
[Date Index]	[Author Index]
[Date Directory]	[Subject Directory]	[Author Directory]
[to lists]	[mcabee.org]	[lcm]

[OpenPKG-SA-2004.048] OpenPKG Security Advisory (squid), OpenPKG
[USN-12-1] ppp Denial of Service, Martin Pitt
[OpenPKG-SA-2004.047] OpenPKG Security Advisory (apache), OpenPKG
[OpenPKG-SA-2004.046] OpenPKG Security Advisory (postgresql), OpenPKG
[USN-11-1] libgd2 vulnerabilities, Martin Pitt
[ GLSA 200410-31 ] Archive::Zip: Virus detection evasion, Thierry Carrez
local buffer overflow in htpasswd for apache 1.3.31 not fixed in .33?, Larry Cashdollar
- Re: local buffer overflow in htpasswd for apache 1.3.31 not fixed in .33?, André Malo
- Re: local buffer overflow in htpasswd for apache 1.3.31 not fixed in .33?, Michael Engert
[SECURITY] [DSA 577-1] New postgresql packages fix symlink vulnerability, Martin Schulze
[SECURITY] [DSA 576-1] New Squid packages fix several vulnerabilities, Martin Schulze
[USN-6-1] postgresql contributed script vulnerability, Martin Pitt
[USN-3-1] GhostScript utility script vulnerabilities, Martin Pitt
[ GLSA 200410-30 ] GPdf, KPDF, KOffice: Vulnerabilities in included xpdf, Thierry Carrez
New URL spoofing bug in Microsoft Internet Explorer, 0-1-2-3
- RE: New URL spoofing bug in Microsoft Internet Explorer, Larry Seltzer
  - Re: New URL spoofing bug in Microsoft Internet Explorer, GuidoZ
    - RE: New URL spoofing bug in Microsoft Internet Explorer, Larry Seltzer
- Re: New URL spoofing bug in Microsoft Internet Explorer, Christopher J. Pilkington
- Re: New URL spoofing bug in Microsoft Internet Explorer, GuidoZ
  - Re: New URL spoofing bug in Microsoft Internet Explorer, GuidoZ
- <Possible follow-ups>
- Re: New URL spoofing bug in Microsoft Internet Explorer, Jérôme
- Re: New URL spoofing bug in Microsoft Internet Explorer, 0-1-2-3
- Re: New URL spoofing bug in Microsoft Internet Explorer, http-equiv@xxxxxxxxxx
[FLSA-2004:2089] Updated mozilla packages fix security vulnerabilities, Dominic Hargreaves
[USN-8-1] gaim vulnerabilities, Martin Pitt
[USN-7-1] imagemagick vulnerability, Martin Pitt
[ GLSA 200410-28 ] rssh: Format string vulnerability, Thierry Carrez
[USN-5-1] gettext vulnerabilities, Martin Pitt
[USN-9-1] tetex-bin vulnerabilities, Martin Pitt
[USN-4-1] Standard C library script vulnerabilities, Martin Pitt
PHP4 cURL functions bypass open_basedir, FraMe
[SECURITY] [DSA 575-1] New catdoc packages fix temporary file vulnerability, Martin Schulze
[SECURITY] [DSA 574-1] New cabextract packages fix unintended directory traversal, Martin Schulze
Presentation: Bypassing client application protection techniques with notepad, 3APA3A
High Risk Vulnerability in RealPlayer, NGSSoftware Insight Security Research
[security bulletin] SSRT3526 Serviceguard potential increase in privilege, Boren, Rich (SSRT)
Multiple Vulnerabilites in Quake II Server, Richard Stanway
EEYE: RealPlayer Zipped Skin File Buffer Overflow, Marc Maiffret
High Risk Vulnerability in Quicktime for Windows, NGSSoftware Insight Security Research
[ GLSA 200410-29 ] PuTTY: Pre-authentication buffer overflow, Sune Kloppenborg Jeppesen
MMDF deliver local root exploit for SCO OpenServer 5.0.7 x86, Ramon de Carvalho Valle
iDEFENSE Security Advisory 10.27.04 - PuTTY SSH2_MSG_DEBUG Buffer Overflow Vulnerability, customer service mailbox
[CLA-2004:880] Conectiva Security Announcement - foomatic-filters, Conectiva Updates
[CLA-2004:879] Conectiva Security Announcement - kernel, Conectiva Updates
PuTTY SSH client vulnerability, Anatole Shaw
Crashs in Master of Orion III 1.2.5, Luigi Auriemma
debian dhcpd, old format string bug, infamous41md
- Re: debian dhcpd, old format string bug, Tarragon Allen
  - Re: debian dhcpd, old format string bug, infamous41md
PTms04-030, pigrelax
Rendering large binary file as HTML makes Mozilla Firefox stop responding, Peter Kruse
zgv image viewing heap overflows, infamous41md
- Re: zgv image viewing heap overflows, Chris Frey
[ GLSA 200410-22 ] MySQL: Multiple vulnerabilities, Thierry Carrez
wvtfpd remote root heap overflow, infamous41md
[ GLSA 200410-23 ] Gaim: Multiple vulnerabilities, Matthias Geerdsen
[ GLSA 200410-25 ] Netatalk: Insecure tempfile handling in etc2ps.sh, Luke Macken
pppd out of bounds memory access, possible DOS, infamous41md
Hawking Technologies HAR11A router considered insecure, Marcus Garvey
inetutils tftp client, DNS resolving bofs, infamous41md
libgd integer overflow, infamous41md
- Re: libgd integer overflow, Richard Dawe
- <Possible follow-ups>
- RE: libgd integer overflow, infamous41md
[ GLSA 200410-26 ] socat: Format string vulnerability, Luke Macken
[ GLSA 200410-24 ] MIT krb5: Insecure temporary file use in send-pr.sh, Thierry Carrez
pacsec.jp advisory: Firewire/IEEE 1394 Considered Harmful to Physical Security, Dragos Ruiu
OpenSSL 0.9.7e released (fwd from mark@openssl.org), je
MailCarrier 2.51 SMTP server Buffer Overflow [PoC included], Jérôme
libxml2 remote buffer overflows (not in xml parsing code though), infamous41md
SUSE Security Announcement: xpdf, gpdf, kpdf, pdftohtml, cups (SUSE-SA:2004:039), Thomas Biege
Two Vulnerabilities in OpenWFE Web Client, Joxean Koret
[CLA-2004:878] Conectiva Security Announcement - zlib, Conectiva Updates
Bug in hotmail, security
Fake RedHat - Fedora Security Patch / Trojan Source Code & Analysis, K-OTiK Security