Network Security Archives

February 28, 2005

WASC-Articles: 'The Insecure Indexing Vulnerability - Attacks Against Local Search Engines' By Amit Klein, robert, 17:59
vbscript.dll regular expression object (RegExp) memory leak, g g, 17:59
Change to Object Caching in IE with XP SP2 applied, Don Tuer, 17:59
Re: Bug submission, Discini, Sonny, 17:49
Re: Outlook exploit, Arthur Donkers, 17:49
Re: Problems with MS05-013, John Groth, 17:39
Re: Firescrolling [Firefox 1.0], Russ, 17:39
Re: Firescrolling [Firefox 1.0], Brian Bergin, 17:39
Re: Hidden Applications and rootkits for Windows, Russ, 17:29
Securing your Partners survey, Russ Cooper, 17:19
[Full-Disclosure] RE: Firescrolling [Firefox 1.0], Andrade, Leonardo F. Buonsanti de \(BR - IT Brazil\), 16:37
[Full-Disclosure] Re: Firescrolling [Firefox 1.0], Stan Bubrouski, 16:37
RE: Firescrolling [Firefox 1.0], Beauford, Jason, 16:36

February 25, 2005

[Full-Disclosure] RE: Firescrolling [Firefox 1.0], Eric McCarty, 15:33
Hidden Applications and rootkits for Windows, Daniel Weatherly, 13:31
Keeping up with new tools and information, Dean Brissinger, 13:31
April 12, 2005 Automatic Download of XP Service Pack 2, Lawlor, Steve, 13:31
Remote Windows Kernel Exploitation - Step Into the Ring 0, Marc Maiffret, 13:21
Problems with MS05-013, Ian Hayes, 13:21
Outlook exploit, Paul Wobbe, 13:21
[Full-Disclosure] Firescrolling [Firefox 1.0], mikx, 06:08

February 17, 2005

RE: Microsoft Baseline Security Analyzer not seeing KB887742 and KB88 6185 Correction, Threlkeld, Richard, 03:17

February 16, 2005

[Full-Disclosure] RE: Microsoft Baseline Security Analyzer not seeing KB887742 and KB88 6185 Correction, Joe Granto, 19:53
Re: [Full-Disclosure] RE: Microsoft Baseline Security Analyzer not seeing KB887742 and KB886185, Thor \(Hammer of God\), 11:39
[Full-Disclosure] RE: Microsoft Baseline Security Analyzer not seeing KB887742 and KB886185, Harshad, 11:29
RE: [Full-Disclosure] RE: Microsoft Baseline Security Analyzer not seeing KB887742 and KB886185, Threlkeld, Richard, 11:29
Re: [Full-Disclosure] RE: Microsoft Baseline Security Analyzer no t seeing KB887742 and KB886185, Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP], 03:35

February 15, 2005

RE: Microsoft Baseline Security Analyzer not seeing KB887742 and KB88 6185 Correction, James Lay, 23:14
RE: [Full-Disclosure] RE: Microsoft Baseline Security Analyzer no t seeing KB887742 and KB886185, Randal, Phil, 08:16
[Full-Disclosure] RE: Microsoft Baseline Security Analyzer not seeing KB887742 and KB886185, STANESCU Ionut, 07:56
Re: [Full-Disclosure] Microsoft Baseline Security Analyzer not seeing KB887742 and KB88 6185, Vincent Archer, 06:25

February 14, 2005

[Full-Disclosure] RE: Microsoft Baseline Security Analyzer not seeing KB887742 and KB886185, Threlkeld, Richard, 23:32
[Full-Disclosure] Microsoft Baseline Security Analyzer not seeing KB887742 and KB88 6185, James Lay, 15:47
Symantec UPX issue solution, Roger A. Grimes, 03:23

February 12, 2005

Re: [Full-Disclosure] Fireflashing [Firefox 1.0], Jelmer Kuperus, 12:01

February 11, 2005

[Full-Disclosure] [sb] [VulnWatch] Secunia Research: Microsoft Internet Explorer MultipleVulnerabilities, Andreas Sandblad, 17:44
[Full-Disclosure] [sb] [VulnWatch] Secunia Research: Microsoft Internet Explorer MultipleVulnerabilities, Andreas Sandblad, 17:44
[Full-Disclosure] [VulnWatch] Secunia Research: Microsoft Internet Explorer MultipleVulnerabilities, Andreas Sandblad, 17:23
[Full-Disclosure] [sb] [VulnWatch] Secunia Research: Microsoft Internet Explorer"createControlRange()" Memory Corruption, Andreas Sandblad, 16:53
[Full-Disclosure] [VulnWatch] Secunia Research: Microsoft Internet Explorer"createControlRange()" Memory Corruption, Andreas Sandblad, 16:33
[Full-Disclosure] [sb] [VulnWatch] Secunia Research: Microsoft Internet Explorer"createControlRange()" Memory Corruption, Andreas Sandblad, 16:33
[Full-Disclosure] [SA14216] F-Secure Multiple Products ARJ Archive Handling Vulnerability, Geza Papp dr (Axelero), 13:51
[Full-Disclosure] Secunia Research: Microsoft Internet Explorer Multiple Vulnerabilities, Andreas Sandblad, 13:51
[Full-Disclosure] Secunia Research: Microsoft Internet Explorer "createControlRange()" Memory Corruption, Andreas Sandblad, 13:11

February 09, 2005

[VulnWatch] Patch available for high risk IBM DB2 Universal Database flaw, NGSSoftware Insight Security Research, 21:01
Re: Alert: Microsoft Security Bulletin MS05-004 - ASP.NET Path Validation Vulnerability (887219), Russ, 11:45
Re: Microsoft Windows Malicous Software Removal Tool, Rick Klinge, 11:15
FW: [SA14179] Symantec Multiple Products UPX Parsing Engine Buffe r Overflow, Mitlyng, Matthew J. SGT (MN), 11:05
EEYE: Windows SMB Client Transaction Response Handling Vulnerability, Marc Maiffret, 10:55
MajorRev: v2.0 Microsoft Security Bulletin MS04-035 - Vulnerability in SMTP Could Allow Remote Code Execution (885881), Russ Cooper, 10:55
MinorRev: Microsoft Security Bulletin MS04-035 - Vulnerability in SMTP Could Allow Remote Code Execution (885881), Russ Cooper, 10:55
Microsoft Windows Malicous Software Removal Tool, JOE DANCE, 10:55

February 08, 2005

[Full-Disclosure] Finjan Security Advisory: Microsoft Office XP Remote Buffer Overflow Vulnerability, Rafel Ivgi, 21:49
[VulnWatch] CORE-2004-0819: MSN Messenger PNG Image Parsing Vulnerability, CORE Security Technologies Advisories, 18:17
Alert: Microsoft Security Bulletin MS05-015 - Vulnerability in Hyperlink Object Library Could Allow Remote Code Execution (888113), Russ Cooper, 16:27
Alert: Microsoft Security Bulletin MS05-014 - Cumulative Security Update for Internet Explorer (867282), Russ Cooper, 16:27
Alert: Microsoft Security Bulletin MS05-013 - Vulnerability in the DHTML Editing Component ActiveX Control Could Allow Remote Code Execution (891781), Russ Cooper, 15:56
Alert: Microsoft Security Bulletin MS05-012 - Vulnerability in OLE and COM Could Allow Remote Code Execution (873333), Russ Cooper, 15:56
Alert: Microsoft Security Bulletin MS05-011 - Vulnerability in Server Message Block Could Allow Remote Code Execution (885250), Russ Cooper, 15:56
Alert: Microsoft Security Bulletin MS05-010 - Vulnerability in the License Logging Service Could Allow Code Execution (885834), Russ Cooper, 15:56
Alert: Microsoft Security Bulletin MS05-009 - Vulnerability in PNG Processing Could Allow Remote Code Execution (890261), Russ Cooper, 15:56
Alert: Microsoft Security Bulletin MS05-008 - Vulnerability in Windows Shell Could Allow Remote Code Execution (890047), Russ Cooper, 15:56
Alert: Microsoft Security Bulletin MS05-007 - Vulnerability in Windows Could Allow Information Disclosure (888302), Russ Cooper, 15:56
Alert: Microsoft Security Bulletin MS05-006 - Vulnerability in Windows SharePoint Services and SharePoint Team Services Could Allow Cross-Site Scripting and Spoofing Attacks (887981), Russ Cooper, 15:56
Alert: Microsoft Security Bulletin MS05-005 - Vulnerability in Microsoft Office XP could allow Remote Code Execution (873352), Russ Cooper, 15:56
Alert: Microsoft Security Bulletin MS05-004 - ASP.NET Path Validation Vulnerability (887219), Russ Cooper, 15:56

February 07, 2005

[Full-Disclosure] Fireflashing [Firefox 1.0], mikx, 15:45
[Full-Disclosure] Firetabbing [Firefox 1.0], mikx, 15:35
[Full-Disclosure] Firedragging [Firefox 1.0], mikx, 15:35

February 05, 2005

NTBugtraq Retreat - is there interest?, Russ, 17:03
Postponement of Information Securiy Summit from FEBRUARY to APRIL @ Hyderabad-India., Info, 16:53
13 MS Security Bulletins Due Feb. 8, Danny, 16:53

February 01, 2005

WASC-Articles: "The 80/20 Rule for Web Application Security", robert, 06:14
Black Hat new content on-line & Registration now open for Asia and Europe., Jeff Moss, 06:14