Network Security Archives

Vulnerability Wathcer Newsletter (date)

[Thread Index] [Top] [All Lists]

December 28, 2004

Re: iDEFENSE Security Advisory 12.21.04: libtiff STRIPOFFSETS Integer Overflow Vulnerability, Marcus Meissner, 16:04
[Full-Disclosure] Suggested filters against PHP Attacking Worms, Paul Laudanski, 04:19

December 27, 2004

[VulnWatch] Re: [HAT-SQUAD] NetCat Remote Critical Vulnerability, Poc inside., Chris Wysopal, 22:47
[VulnWatch] Re: YET AGAIN Automatic remote compromise of Internet Explorer Service Pack 2 XP SP2, Michael Evanchik, 21:06
[VulnWatch] [HAT-SQUAD] NetCat Remote Critical Vulnerability, Poc inside., class 101, 15:34
[VulnWatch] Re: YET AGAIN Automatic remote compromise of Internet Explorer Service Pack 2 XP SP2, Michael Evanchik, 14:33
Re: [Full-Disclosure] YET AGAIN Automatic remote compromise of InternetExplorer Service Pack 2 XP SP2, Andrew Smith, 01:15

December 25, 2004

[Full-Disclosure] YET AGAIN Automatic remote compromise of Internet Explorer Service Pack 2 XP SP2, Michael Evanchik, 14:45

December 24, 2004

[VulnWatch] IBM DB2 generate_distfile buffer overflow vulnerability (#NISR2122004L), NGSSoftware Insight Security Research, 01:09
[VulnWatch] IBM DB2 rec2xml buffer overflow vulnerability (#NISR2122004J), NGSSoftware Insight Security Research, 00:29

December 23, 2004

[VulnWatch] Oracle wrapped procedure overflow (#NISR2122004J), NGSSoftware Insight Security Research, 23:38
[VulnWatch] Oracle multiple PL/SQL injection vulnerabilities (#NISR2122004H), NGSSoftware Insight Security Research, 22:58
Re: [Full-Disclosure] Re: Linux kernel scm_send local DoS, Valdis . Kletnieks, 22:38
[VulnWatch] Oracle TNS Listener DoS (#NISR2122004F), NGSSoftware Insight Security Research, 22:18
[VulnWatch] Oracle ISQLPlus file access vulnerability (#NISR2122004E), NGSSoftware Insight Security Research, 21:27
[VulnWatch] Oracle clear text passwords (#NISR2122004D), NGSSoftware Insight Security Research, 20:47
[VulnWatch] Oracle extproc local command execution (#NISR23122004C), NGSSoftware Insight Security Research, 20:06
[VulnWatch] Oracle extproc directory traversal (#NISR23122004B), NGSSoftware Insight Security Research, 19:16
[VulnWatch] Oracle extproc buffer overflow (#NISR23122004A), NGSSoftware Insight Security Research, 18:26
[VulnWatch] Oracle Character Conversion Bugs (#NISR2122004G), NGSSoftware Insight Security Research, 17:35
Re: Linux kernel scm_send local DoS, Pavel Kankovsky, 17:25
[VulnWatch] Oracle Trigger Abuse (#NISR2122004I), NGSSoftware Insight Security Research, 16:45
IBM DB2 rec2xml buffer overflow vulnerability (#NISR2122004J), NGSSoftware Insight Security Research, 15:54
Oracle wrapped procedure overflow (#NISR2122004J), NGSSoftware Insight Security Research, 15:34
Oracle multiple PL/SQL injection vulnerabilities (#NISR2122004H), NGSSoftware Insight Security Research, 15:34
Oracle TNS Listener DoS (#NISR2122004F), NGSSoftware Insight Security Research, 15:24
IBM DB2 generate_distfile buffer overflow vulnerability (#NISR2122004L), NGSSoftware Insight Security Research, 15:14
Oracle extproc local command execution (#NISR23122004C), NGSSoftware Insight Security Research, 15:04
Oracle clear text passwords (#NISR2122004D), NGSSoftware Insight Security Research, 15:04
Oracle extproc directory traversal (#NISR23122004B), NGSSoftware Insight Security Research, 14:54
Oracle extproc buffer overflow (#NISR23122004A), NGSSoftware Insight Security Research, 14:54
Oracle Character Conversion Bugs (#NISR2122004G), NGSSoftware Insight Security Research, 14:44
Oracle ISQLPlus file access vulnerability (#NISR2122004E), NGSSoftware Insight Security Research, 14:34
Oracle Trigger Abuse (#NISR2122004I), NGSSoftware Insight Security Research, 14:34
[Full-Disclosure] Re: [caudium-devel] [SECUNIA] Regarding Secunia Advisory SA13040, Marek Habersack, 01:58

December 22, 2004

[Full-Disclosure] Regarding Secunia Advisory SA13040., Xavier Beaudouin, 22:26
[Full-Disclosure] [SECUNIA] Regarding Secunia Advisory SA13040, Thomas Kristensen, 21:26
[VulnWatch] iDEFENSE Security Advisory 12.21.04: libtiff STRIPOFFSETS Integer Overflow Vulnerability, customer service mailbox, 18:04
[VulnWatch] iDEFENSE Security Advisory 12.21.04: libtiff Directory Entry Count Integer Overflow Vulnerability, customer service mailbox, 17:14
[VulnWatch] iDEFENSE Security Advisory 12.21.04: Hewlett Packard HP-UX ftpd Remote Buffer Overflow Vulnerability, customer service mailbox, 16:23
[VulnWatch] iDEFENSE Security Advisory 12.21.04: Multiple Vendor Xine version 0.99.2 PNM Handler PNA_TAG Heap Overflow Vulnerability, customer service mailbox, 15:13
Sybase ASE 12.5.2 vulnerabilities, NGSSoftware Insight Security Research, 14:53
Re: iDEFENSE Security Advisory 12.21.04: libtiff STRIPOFFSETS Integer Overflow Vulnerability, Dmitry V. Levin, 14:43
[VulnWatch] iDEFENSE Security Advisory 12.21.04: Multiple Vendor Xine version 0.99.2 PNM Handler Negative Read Length Heap Overflow Vulnerability, customer service mailbox, 13:52
[VulnWatch] iDEFENSE Security Advisory 12.21.04: Multiple Vendor xpdf PDF Viewer Buffer Overflow Vulnerability, customer service mailbox, 12:31

December 21, 2004

iDEFENSE Security Advisory 12.21.04: Hewlett Packard HP-UX ftpd Remote Buffer Overflow Vulnerability, customer service mailbox, 21:54
iDEFENSE Security Advisory 12.21.04: libtiff STRIPOFFSETS Integer Overflow Vulnerability, customer service mailbox, 21:44
iDEFENSE Security Advisory 12.21.04: libtiff Directory Entry Count Integer Overflow Vulnerability, customer service mailbox, 21:34
iDEFENSE Security Advisory 12.21.04: Multiple Vendor Xine version 0.99.2 PNM Handler PNA_TAG Heap Overflow Vulnerability, customer service mailbox, 20:54
iDEFENSE Security Advisory 12.21.04: Multiple Vendor Xine version 0.99.2 PNM Handler Negative Read Length Heap Overflow Vulnerability, customer service mailbox, 20:44
iDEFENSE Security Advisory 12.21.04: Multiple Vendor xpdf PDF Viewer Buffer Overflow Vulnerability, customer service mailbox, 20:24
[Full-Disclosure] Secunia Research: Spy Sweeper Enterprise Client Privilege Escalation, Carsten H. Eiram, 12:30
[Full-Disclosure] Secunia Research: My Firewall Plus Privilege Escalation Vulnerability, Carsten H. Eiram, 07:18

December 17, 2004

[Full-Disclosure] Re: Linux kernel IGMP vulnerabilities, Timothy Hall, 17:33
[VulnWatch] Veritas BackupExec Agent vulnerability, Brad Zimmerman, 15:02

December 16, 2004

iDEFENSE Security Advisory 12.15.04: Computer Associates eTrust EZ Antivirus Insecure File Permission Vulnerability, customer service mailbox, 22:05
[Full-Disclosure] Re: NetWare Screensaver Authentication Bypass From The Local Console, Roger McLaren, 22:05
[Full-Disclosure] RE: Linux kernel scm_send local DoS, Paul Starzetz, 22:04
[Full-Disclosure] Hotmail Cross-Site Scripting Vulnerability #2, Rafel Ivgi, The-Insider, 22:04
[Full-Disclosure] RE: Linux kernel scm_send local DoS, Leif Sawyer, 22:04
Re: Linux kernel IGMP vulnerabilities, stephen joseph butler, 22:04
Re: Linux kernel scm_send local DoS, even multiplexed, 22:04
Re: Linux kernel IGMP vulnerabilities, Paul Starzetz, 22:04
Re: Linux kernel scm_send local DoS, Paul Starzetz, 22:03
Re: Linux kernel scm_send local DoS, even multiplexed, 22:03
*nix data wipe tools, Thomas C. Greene, 22:03
Yahoo! Mail Cross-Site Scripting Vulnerability, Rafel Ivgi, 22:03
Hotmail Cross-Site Scripting Vulnerability #1, Rafel Ivgi, 22:03
[VulnWatch] Hotmail Cross Site Scripting Vulnerability #2, Rafel Ivgi, 22:03
[VulnWatch] Hotmail Cross-Site Scripting Vulnerability #1, Rafel Ivgi, The-Insider, 22:02
[VulnWatch] Yahoo! Mail Cross-Site Scripting Vulnerability, Rafel Ivgi, The-Insider, 22:02
iDEFENSE Security Advisory 12.14.04 - Microsoft Word 6.0/95 Document Converter Buffer Overflow Vulnerability, customer service mailbox, 22:02
Re: Linux kernel IGMP vulnerabilities, Pekka Savola, 22:02
Re: NetWare Screensaver Authentication Bypass From The Local Console, Brad Bendily, 22:02
iDEFENSE Security Advisory 12.13.04: Adobe Reader 6.0 .ETD File Format String Vulnerability, customer service mailbox, 22:02
[VulnWatch] [CAN-2004-1023] Insecure default file system permissions on Microsoft versions of Kerio Software, Secure Computer Group, 22:02
[VulnWatch] [CAN-2004-1022] Insecure Credential Storage on Kerio Software, Secure Computer Group, 22:02
iDEFENSE Security Advisory 12.14.04 - Adobe Acrobat Reader 5.0.9 mailListIsPdf() Buffer Overflow Vulnerability, customer service mailbox, 22:02
[VulnWatch] phpBB Attachment Mod Directory Traversal HTTP POST Injection, Paul Laudanski, 22:02
Linux kernel scm_send local DoS, Paul Starzetz, 22:01
Linux kernel IGMP vulnerabilities, Paul Starzetz, 22:01

December 02, 2004

iDEFENSE Security Advisory 12.13.04 - Multiple Vendor xzgv PRF Parsing Integer Overflow Vulnerability, customer service mailbox, 10:23
[VulnWatch] Multiple vulnerabilities in phpMyAdmin, Nicolas Gregoire, 10:13
[Full-Disclosure] NetWare Screensaver Authentication Bypass From The Local Console, Adam Gray, 09:41
[VulnWatch] [SA12981] Secunia Research: Opera Download Dialog Spoofing Vulnerability, Thomas Kristensen, 09:31
[VulnWatch] Re: [Full-Disclosure] Multiple vulnerabilities in w3who ISAPI DLL, Nicolas Gregoire, 05:13
[VulnWatch] Re: Online Script Decoder, Steve Shockley, 04:29
[VulnWatch] Online Script Decoder, GreyMagic Security, 04:29
[Full-Disclosure] Multiple vulnerabilities in w3who ISAPI DLL, Nicolas Gregoire, 02:58