NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 2000-09

Most recent messages
373 messages sorted by: [ author ] [ date ] [ subject ]

Starting: Wed Sep 06 2000 - 18:24:00 CDT
Ending: Sun Oct 01 2000 - 11:54:54 CDT

Announcing WinZapper - erase individual event records in the security log of Windows NT 4.0 / 2000 Arne Vidstrom (Wed Sep 06 2000 - 12:49:43 CDT)
[NEWS] XMail vulnerable to a remotely exploitable buffer overflow (APOP, USER) Aviram Jenik (Wed Sep 06 2000 - 16:11:21 CDT)
Re: Intacct.com: Multiple bugs at financial services company Aaron Bentley (Wed Sep 06 2000 - 12:23:43 CDT)
- Re: Intacct.com: Multiple bugs at financial services company Alan DeKok (Wed Sep 06 2000 - 12:34:27 CDT)
- Re: Intacct.com: Multiple bugs at financial services company Andrew Pimlott (Wed Sep 06 2000 - 14:13:55 CDT)
- Re: Intacct.com: Multiple bugs at financial services company Peter W (Wed Sep 06 2000 - 13:05:50 CDT)
- Re: Intacct.com: Multiple bugs at financial services company Rob Mayoff (Wed Sep 06 2000 - 13:43:12 CDT)
- Re: Intacct.com: Multiple bugs at financial services company Matt Power (Wed Sep 06 2000 - 14:58:42 CDT)
- Re: Intacct.com: Multiple bugs at financial services company Smith, Eric V. (Thu Sep 07 2000 - 17:20:33 CDT)
scanssh announcement Niels Provos (Wed Sep 06 2000 - 16:41:54 CDT)
Screen local compromise Paul Starzetz (Wed Sep 06 2000 - 11:28:58 CDT)
- Re: Screen local compromise Valdis Kletnieks (Thu Sep 07 2000 - 08:39:09 CDT)
HTTP(S) Authentication Response Chris L. Mason (Wed Sep 06 2000 - 12:55:24 CDT)
IRIX telnetd vulnerability SGI Security Coordinator (Wed Sep 06 2000 - 15:01:41 CDT)
PhotoAlbum 0.9.9 explorer.php Vulnerability pestilence (Wed Sep 06 2000 - 18:38:08 CDT)
- Re: PhotoAlbum 0.9.9 explorer.php Vulnerability ThE MaDj0kEr (Thu Sep 07 2000 - 05:15:18 CDT)
Trustix Security Advisory - glibc and friends Oystein Viggen (Thu Sep 07 2000 - 07:19:18 CDT)
Microsoft Security Bulletin (MS00-064) Microsoft Product Security (Wed Sep 06 2000 - 20:04:45 CDT)
stake Advisory: Windows Still Image Privilege Elevation (A090700 -1) stake Advisories (Thu Sep 07 2000 - 08:48:15 CDT)
Re: glibc/locale exploit for linux/x86 Raúl (Thu Sep 07 2000 - 07:08:57 CDT)
- Re: glibc/locale exploit for linux/x86 Olaf Kirch (Thu Sep 07 2000 - 03:43:37 CDT)
- glibc/locale sploit for ImmunixOS Mariusz Woloszyn (Tue Sep 19 2000 - 16:15:18 CDT)
Microsoft Security Bulletin (MS00-065) Microsoft Product Security (Thu Sep 07 2000 - 04:47:54 CDT)
MDKSA-2000:045 - glibc update Linux Mandrake Security Team (Wed Sep 06 2000 - 23:26:09 CDT)
Eudora disclosure Lepage, Yves (Thu Sep 07 2000 - 09:20:23 CDT)
stake Advisory: SuSE Apache CGI Source Code Viewing (A090700-2) stake Advisories (Thu Sep 07 2000 - 10:50:46 CDT)
SEGFAULTING Interbase 6 SS Linux mephisto[zum-arzt.de] (Thu Sep 07 2000 - 03:45:28 CDT)
Re: Microsoft Security Bulletin (MS00-063) Dan Harkless (Wed Sep 06 2000 - 20:54:19 CDT)
- Re: Microsoft Security Bulletin (MS00-063) Massimo Ferrario (Fri Sep 08 2000 - 05:47:11 CDT)
  - Re: Microsoft Security Bulletin (MS00-063) James D. Fowlie (Fri Sep 08 2000 - 13:26:38 CDT)
  - Re: Microsoft Security Bulletin (MS00-063) Daniel Harrison (Fri Sep 08 2000 - 14:52:50 CDT)
    - Re: Microsoft Security Bulletin (MS00-063) Justin Lintz (Fri Sep 08 2000 - 18:39:47 CDT)
    - Re: Microsoft Security Bulletin (MS00-063) Adam J. Baldwin (Mon Sep 11 2000 - 00:56:41 CDT)
- Re: Microsoft Security Bulletin (MS00-063) Dan Harkless (Fri Sep 08 2000 - 15:50:10 CDT)
- Re: Microsoft Security Bulletin (MS00-063) Boyce, Nick (Mon Sep 11 2000 - 12:28:25 CDT)
- Re: Microsoft Security Bulletin (MS00-063) Smax Dot (Mon Sep 11 2000 - 17:13:34 CDT)
- Re: Microsoft Security Bulletin (MS00-063) Alexander Ivantchev (Mon Sep 11 2000 - 14:14:28 CDT)
- Re: Microsoft Security Bulletin (MS00-063) Microsoft Security Response Center (Mon Sep 11 2000 - 14:59:53 CDT)
un-removable user custom user managment tool John Lange (Thu Sep 07 2000 - 12:01:51 CDT)
stake Advisory: SuSE Apache WebDAV Directory Listings (A090700-3 ) stake Advisories (Thu Sep 07 2000 - 11:14:11 CDT)
SuSE Security Announcement: apache Roman Drahtmueller (Thu Sep 07 2000 - 13:03:46 CDT)
ISS Advisory: Buffer Overflow in IBM Net.Data db2www CGI program Aleph One (Thu Sep 07 2000 - 14:29:12 CDT)
Re: WebShield SMTP infinite loop DoS Attack Ash Hamid (Thu Sep 07 2000 - 11:34:19 CDT)
- Re: WebShield SMTP infinite loop DoS Attack Gaspar, Carson (Thu Sep 07 2000 - 18:41:26 CDT)
- Re: WebShield SMTP infinite loop DoS Attack Scott Perry (Fri Sep 08 2000 - 16:09:13 CDT)
Mailman 1.1 + external archiver vulnerability Christopher P. Lindsey (Thu Sep 07 2000 - 16:58:24 CDT)
[RHSA-2000:057-04] glibc vulnerabilities in ld.so, locale and gettext bugzillaREDHAT.COM (Thu Sep 07 2000 - 15:37:00 CDT)
- Re: [RHSA-2000:057-04] glibc vulnerabilities in ld.so, locale and gettext Jim Knoble (Fri Sep 08 2000 - 11:28:54 CDT)
  - Re: [RHSA-2000:057-04] glibc vulnerabilities in ld.so, locale and gettext Roman Drahtmueller (Fri Sep 08 2000 - 19:48:11 CDT)
    - Re: [RHSA-2000:057-04] glibc vulnerabilities in ld.so, locale and gettext Pavel Kankovsky (Sun Sep 10 2000 - 10:51:44 CDT)
glibc language Maurycy Prodeus (Thu Sep 07 2000 - 17:00:45 CDT)
Bypassing Inherited Rights Filters in Novell Directory Services. FogHorn Security (Thu Sep 07 2000 - 21:24:00 CDT)
- Re: Bypassing Inherited Rights Filters in Novell Directory Services. Bob Fiero (Sun Sep 10 2000 - 12:10:23 CDT)
expoit for locale format string bug (Solaris 2.x) Warning3 (Fri Sep 08 2000 - 06:27:49 CDT)
- Re: expoit for locale format string bug (Solaris 2.x) Ejovi Nuwere (Fri Sep 08 2000 - 11:30:38 CDT)
- Re: expoit for locale format string bug (Solaris 2.x) Dan Harkless (Fri Sep 08 2000 - 17:24:56 CDT)
- Re: expoit for locale format string bug (Solaris 2.x) Dan Harkless (Mon Sep 11 2000 - 18:16:58 CDT)
Invalid URL vulnerability & SP4 > (Additional Information) Givens, Mike (Fri Sep 08 2000 - 09:10:11 CDT)
'screen' exploit errata: RHSA-2000:058-03 Dunnavant Crutcher (Thu Sep 07 2000 - 14:59:38 CDT)
Screen 3.9.5 vulnerability again. Paul Starzetz (Thu Sep 07 2000 - 19:49:45 CDT)
Re: VIGILANTE-2000009: "Invalid URL" DoS Alexander Ivantchev (Thu Sep 07 2000 - 11:12:52 CDT)
stake Advisory: DocumentDirect for the Internet (A090800-1) stake Advisories (Fri Sep 08 2000 - 08:18:47 CDT)
horde library bug - unchecked from-address Winter, Christian (Fri Sep 08 2000 - 10:03:36 CDT)
- Re: horde library bug - unchecked from-address Jon Parise (Fri Sep 08 2000 - 11:18:01 CDT)
Posible privacy problem in Explorer. Guille (Bisho) (Thu Sep 07 2000 - 20:57:41 CDT)
- Re: Posible privacy problem in Explorer. Elias Levy (Fri Sep 08 2000 - 14:56:19 CDT)
  - Re: Posible privacy problem in Explorer. Kevin van der Raad (Mon Sep 11 2000 - 07:22:28 CDT)
- Re: Posible privacy problem in Explorer. http-equivexcite.com (Sat Sep 09 2000 - 15:29:20 CDT)
- Re: Posible privacy problem in Explorer. CDE Francis (Tue Sep 12 2000 - 08:49:37 CDT)
- Re: Posible privacy problem in Explorer. Sander Goudswaard (Wed Sep 13 2000 - 04:42:46 CDT)
ref advisory #20000907 John McCain (Fri Sep 08 2000 - 13:20:20 CDT)
Fw: Bypassing Inherited Rights Filters in Novell Directory Services. (fwd) William Diehl III (Fri Sep 08 2000 - 13:20:32 CDT)
More on: Prosible privacy issue in Explorer. Guille (Bisho) (Fri Sep 08 2000 - 19:08:54 CDT)
Privacy issue: userData & saveSnapshot Behavior in Explorer Guille (Bisho) (Fri Sep 08 2000 - 19:25:00 CDT)
[TL-Security-Announce] glibc unsetenv and locale TLSA2000020-1 Kevin Beyer (Fri Sep 08 2000 - 21:09:05 CDT)
tmpwatch: local DoS : fork()bomb as root zenith parsec (Sat Sep 09 2000 - 05:58:28 CDT)
- Re: tmpwatch: local DoS : fork()bomb as root stanislav shalunov (Sat Sep 09 2000 - 19:44:04 CDT)
- Re: tmpwatch: local DoS : fork()bomb as root Lukasz Trabinski (Sat Sep 09 2000 - 11:12:53 CDT)
format string bug in muh Maxime Henrion (Sat Sep 09 2000 - 08:53:13 CDT)
- Re: format string bug in muh Kris Kennaway (Sat Sep 09 2000 - 23:39:51 CDT)
[SECURITY] New version of horde and imp released debian-security-announceLISTS.DEBIAN.ORG (Sun Sep 10 2000 - 08:10:41 CDT)
[SECURITY] New version of xpdf released debian-security-announceLISTS.DEBIAN.ORG (Sun Sep 10 2000 - 08:27:23 CDT)
- Re: [SECURITY] New version of xpdf released Christian (Tue Sep 12 2000 - 01:40:51 CDT)
- Re: [SECURITY] New version of xpdf released Robert Bihlmeyer (Thu Sep 14 2000 - 07:51:55 CDT)
YaBB 1.9.2000 Vulnerabilitie pestilence (Sat Sep 09 2000 - 22:26:59 CDT)
(SRADV00002) Remote root compromise through pam_smb and pam_ntdom Secure Reality Advisories (Sun Sep 10 2000 - 09:13:32 CDT)
Breaking screen on BSD Paul Starzetz (Sat Sep 09 2000 - 12:19:29 CDT)
Followup - Bypassing IRFs in NDS FogHorn Security (Sun Sep 10 2000 - 23:59:36 CDT)
Format String Attacks Tim Newsham (Sat Sep 09 2000 - 13:32:05 CDT)
- Re: Format String Attacks Iván Arce (Mon Sep 11 2000 - 22:23:05 CDT)
- Re: Format String Attacks Doug Hughes (Wed Sep 13 2000 - 10:09:58 CDT)
- Re: Format String Attacks Dan Harkless (Thu Sep 14 2000 - 01:48:38 CDT)
- Re: Format String Attacks Rick Perry (Wed Sep 13 2000 - 13:42:27 CDT)
- Re: Format String Attacks Dan Harkless (Thu Sep 14 2000 - 22:23:10 CDT)
- Re: Format String Attacks Dan Harkless (Thu Sep 14 2000 - 19:03:00 CDT)
- Re: Format String Attacks Dan Harkless (Thu Sep 14 2000 - 18:41:50 CDT)
- Re: Format String Attacks Dan Harkless (Fri Sep 15 2000 - 03:47:52 CDT)
- Re: Format String Attacks Dan Harkless (Fri Sep 15 2000 - 15:20:02 CDT)
- Re: Format String Attacks Ajax (Wed Sep 20 2000 - 12:02:54 CDT)
ANNOUNCE: Librnet Release Gigi Sullivan (Sun Sep 10 2000 - 09:18:42 CDT)
SCO scohelhttp documentation webserver exposes local files Olle Segerdahl (Mon Sep 11 2000 - 02:38:58 CDT)
stake Advisory: SiteMinder Access Control Bypass (A0911 00-1) stake Advisories (Mon Sep 11 2000 - 07:53:52 CDT)
Fwd: Poor variable checking in mailto.cgi Karl Hanmore (Mon Sep 11 2000 - 17:55:41 CDT)
[EXPL] EFTP vulnerable to two DoS attacks Aviram Jenik (Mon Sep 11 2000 - 11:35:31 CDT)
WinSMTPD remote exploit/DoS problem Guido Bakker (Mon Sep 11 2000 - 02:28:06 CDT)
Unsafe passing of variables to mailform.pl in MailForm V2.0 Karl Hanmore (Mon Sep 11 2000 - 18:00:25 CDT)
Advisory Code: VIGILANTE-2000011 Lotus Domino ESMTP Service Buffer overflow erik damsgaard (Mon Sep 11 2000 - 03:15:25 CDT)
A new approach to the glibc bugs Lionel Cons (Mon Sep 11 2000 - 11:52:32 CDT)
Patch for esound-0.2.19 Alon Oz (Mon Sep 11 2000 - 06:12:59 CDT)
- Re: Patch for esound-0.2.19 Kris Kennaway (Sat Sep 23 2000 - 20:42:29 CDT)
  - Re: Patch for esound-0.2.19 James Ralston (Mon Sep 25 2000 - 12:32:09 CDT)
Re: machine independent protection from stack-smashing attack Yarrow Charnot (Mon Sep 11 2000 - 00:55:35 CDT)
- Re: machine independent protection from stack-smashing attack Jan Echternach (Mon Sep 11 2000 - 15:16:55 CDT)
- Re: machine independent protection from stack-smashing attack Michael Nelson (Mon Sep 11 2000 - 16:08:44 CDT)
- Re: machine independent protection from stack-smashing attack Greg Hoglund (Mon Sep 11 2000 - 16:27:22 CDT)
PHP Security Advisory - File Uploads Zeev Suraski (Sun Sep 10 2000 - 23:13:22 CDT)
AnyPortal(php)-0.1 Vulnerability zorgon (Mon Sep 11 2000 - 04:54:33 CDT)
[RHSA-2000:059-02] Updated mgetty packages are now available. bugzillaREDHAT.COM (Mon Sep 11 2000 - 13:57:00 CDT)
Security Update: Security problems in xpdf Technical Support (Mon Sep 11 2000 - 13:12:20 CDT)
[SECURITY] New version of libpam-smb released debian-security-announceLISTS.DEBIAN.ORG (Mon Sep 11 2000 - 22:32:45 CDT)
MDKSA-2000:046 - mod_perl update Linux Mandrake Security Team (Mon Sep 11 2000 - 17:18:48 CDT)
Conectiva Linux Security Announcement - pam_smb secureCONECTIVA.COM.BR (Mon Sep 11 2000 - 16:53:47 CDT)
trivial DoS in webTV Andrew Griffiths (Tue Sep 12 2000 - 08:30:06 CDT)
- Re: trivial DoS in webTV Ben Greenbaum (Tue Sep 12 2000 - 21:51:20 CDT)
Microsoft Security Bulletin (MS00-066) Microsoft Product Security (Mon Sep 11 2000 - 18:43:55 CDT)
MDKSA-2000:047 - Linux Mandrake not vulnerable to pam_smb Linux Mandrake Security Team (Tue Sep 12 2000 - 13:16:47 CDT)
TYPSoft FTP Server remote DoS Problem Guido Bakker (Tue Sep 12 2000 - 02:12:27 CDT)
Using the Unused (Identifying OpenBSD, Sun Solaris & HPUX 11.0 OSs) Ofir Arkin (Tue Sep 12 2000 - 13:49:32 CDT)
The DF Bit Playground (Identifying Sun Solaris & OpenBSD OSs) Ofir Arkin (Tue Sep 12 2000 - 13:49:12 CDT)
- Re: The DF Bit Playground (Identifying Sun Solaris & OpenBSD OSs) Aaron Campbell (Tue Sep 12 2000 - 16:33:37 CDT)
- Re: The DF Bit Playground (Identifying Sun Solaris & OpenBSD OSs) Walsh, Andrew (Tue Sep 12 2000 - 17:32:59 CDT)
  - Re: The DF Bit Playground (Identifying Sun Solaris & OpenBSD OSs) Jason Axley (Wed Sep 13 2000 - 10:29:42 CDT)
(SRADV00003) Arbitrary file disclosure through IMP Secure Reality Advisories (Tue Sep 12 2000 - 06:41:11 CDT)
[LSD] IRIX telnetd exploit update LSD (Wed Sep 13 2000 - 16:52:15 CDT)
[Corrected Post] - The DF Bit Playground (Identifying Sun Solaris) Ofir Arkin (Wed Sep 13 2000 - 04:12:30 CDT)
[Corrected Post] - Using the Unused (Identifying Sun Solaris & HPUX 11.0 OSs) Ofir Arkin (Wed Sep 13 2000 - 04:16:33 CDT)
Conectiva Linux Security Announcement - xpdf secureCONECTIVA.COM.BR (Wed Sep 13 2000 - 07:14:23 CDT)
Corrections for "Using the Unused" and for "The DF Playground" Ofir Arkin (Wed Sep 13 2000 - 03:50:57 CDT)
vmware and xlock Benjamin Elijah Griffin (Tue Sep 12 2000 - 17:51:39 CDT)
Possible Exchange 5.5 Server DoS Christer Enberg (Tue Sep 12 2000 - 01:30:48 CDT)
- Re: Possible Exchange 5.5 Server DoS 3APA3A (Thu Sep 14 2000 - 07:48:50 CDT)
- Re: Possible Exchange 5.5 Server DoS Lee Ann Goldstein (Sun Sep 24 2000 - 22:00:01 CDT)
SuSE Security Announcement: pam_smb Roman Drahtmueller (Wed Sep 13 2000 - 11:13:07 CDT)
Security Bulletins Digest Oonk, Patrick (Wed Sep 13 2000 - 11:57:48 CDT)
- Security Bulletins Digest Oonk, Patrick (Tue Sep 19 2000 - 07:44:05 CDT)
- Security Bulletins Digest Oonk, Patrick (Mon Sep 25 2000 - 07:10:45 CDT)
- Security Bulletins Digest Oonk, Patrick (Wed Sep 27 2000 - 07:06:26 CDT)
Win2k Telnet.exe malicious server vulnerability monti (Wed Sep 13 2000 - 15:13:29 CDT)
- Re: Win2k Telnet.exe malicious server vulnerability Microsoft Security Response Center (Thu Sep 14 2000 - 04:34:26 CDT)
  - Re: Win2k Telnet.exe malicious server vulnerability monti (Thu Sep 14 2000 - 12:57:08 CDT)
- Re: Win2k Telnet.exe malicious server vulnerability Microsoft Security Response Center (Thu Sep 14 2000 - 10:04:54 CDT)
- Re: Win2k Telnet.exe malicious server vulnerability Tim Hollebeek (Thu Sep 14 2000 - 10:18:21 CDT)
- Re: Win2k Telnet.exe malicious server vulnerability Micah Webner (Thu Sep 14 2000 - 09:34:30 CDT)
- Re: Win2k Telnet.exe malicious server vulnerability Jim Paris (Thu Sep 14 2000 - 11:04:09 CDT)
- Re: Win2k Telnet.exe malicious server vulnerability òÑÇÉÎ íÉÈÁÉÌ àÒØÅ×ÉÞ (Thu Sep 14 2000 - 23:59:26 CDT)
  - Re: Win2k Telnet.exe malicious server vulnerability Bronek Kozicki (Fri Sep 15 2000 - 13:10:38 CDT)
    - Re: Win2k Telnet.exe malicious server vulnerability J Edgar Hoover (Mon Sep 18 2000 - 07:46:04 CDT)
- Re: Win2k Telnet.exe malicious server vulnerability Blue Boar (Fri Sep 15 2000 - 00:17:16 CDT)
FreeBSD Ports Security Advisory: FreeBSD-SA-00:46.screen FreeBSD Security Advisories (Wed Sep 13 2000 - 15:29:28 CDT)
- FreeBSD Ports Security Advisory: FreeBSD-SA-00:46.screen Oonk, Patrick (Wed Sep 13 2000 - 15:36:34 CDT)
FreeBSD Ports Security Advisory: FreeBSD-SA-00:49.eject FreeBSD Security Advisories (Wed Sep 13 2000 - 15:34:57 CDT)
FreeBSD Ports Security Advisory: FreeBSD-SA-00:47.pine FreeBSD Security Advisories (Wed Sep 13 2000 - 15:33:43 CDT)
FreeBSD Ports Security Advisory: FreeBSD-SA-00:51.mailman FreeBSD Security Advisories (Wed Sep 13 2000 - 15:36:17 CDT)
MultiHTML vulnerability Niels Heinen (Wed Sep 13 2000 - 14:38:34 CDT)
FreeBSD Ports Security Advisory: FreeBSD-SA-00:48.xchat FreeBSD Security Advisories (Wed Sep 13 2000 - 15:34:34 CDT)
[RHSA-2000:060-03] xpdf bugfix release bugzillaREDHAT.COM (Wed Sep 13 2000 - 17:57:00 CDT)
MDKSA-2000:048 - mod_php3 update Linux Mandrake Security Team (Wed Sep 13 2000 - 18:07:09 CDT)
FreeBSD Ports Security Advisory: FreeBSD-SA-00:50.listmanager FreeBSD Security Advisories (Wed Sep 13 2000 - 15:35:45 CDT)
[slackware-security]: xchat input validation bug fixed Christopher J. Kager (Thu Sep 14 2000 - 12:08:04 CDT)
[RHSA-2000:058-03] Format string exploit in screen bugzillaREDHAT.COM (Thu Sep 14 2000 - 13:20:00 CDT)
stake Advisory: NTLM Replaying via Windows 2000 Telnet Client (A 091400-1) stake Advisories (Thu Sep 14 2000 - 13:27:43 CDT)
(fwd) Re: Format String Attacks Doug Hughes (Wed Sep 13 2000 - 13:05:45 CDT)
- SUID wrapper (was Re: (fwd) Re: Format String Attacks) Granquist, Lamont (Thu Sep 14 2000 - 18:22:35 CDT)
  - Re: SUID wrapper (was Re: (fwd) Re: Format String Attacks) Dan Harkless (Fri Sep 15 2000 - 03:48:19 CDT)
  - Re: SUID wrapper (was Re: (fwd) Re: Format String Attacks) Drazen Kacar (Fri Sep 15 2000 - 01:31:11 CDT)
Microsoft Security Bulletin (MS00-067) Microsoft Product Security (Thu Sep 14 2000 - 20:58:13 CDT)
- Microsoft Security Bulletin (MS00-067) Microsoft Product Security (Thu Sep 21 2000 - 21:35:31 CDT)
Sambar Server search CGI vulnerability Guido Bakker (Fri Sep 15 2000 - 01:37:42 CDT)
[NEWS] Vulnerability in CamShot server (Authorization) Aviram Jenik (Fri Sep 15 2000 - 06:58:28 CDT)
FORW: Re: Format String Attacks Dan Harkless (Fri Sep 15 2000 - 03:51:40 CDT)
Immunix Security Update: glibc-2.1.3-21 Crispin Cowan (Fri Sep 15 2000 - 01:57:47 CDT)
Advisory: Tridia DoubleVision / SCO UnixWare Stephen Friedl (Sat Sep 16 2000 - 11:33:44 CDT)
Re-Release of Microsoft Security Bulletin (MS00-067) Microsoft Product Security (Sat Sep 16 2000 - 07:25:22 CDT)
VIGILANTE-2000012: Mdaemon Web Services Heap Overflow DoS Peter Gründl (Sun Sep 17 2000 - 14:31:07 CDT)
vqServer DoS Dr. S. G. Shering (Sun Sep 17 2000 - 15:26:55 CDT)
Internet Shopper Ltd's Mail Server Open relay bug. Imran Ghory (Fri Sep 15 2000 - 14:41:35 CDT)
WebSphere application server plugin issue & vendor fix Rude Yak (Fri Sep 15 2000 - 14:23:28 CDT)
klogd format bug Jouko Pynnönen (Sun Sep 17 2000 - 23:13:53 CDT)
- Re: klogd format bug Carlos Eduardo Gorges (Mon Sep 18 2000 - 12:15:08 CDT)
Double clicking on MS Office documents from Windows Explorer may execute arbitrary programs in some cases Georgi Guninski (Mon Sep 18 2000 - 08:49:10 CDT)
- Re: Double clicking on MS Office documents from Windows Explorer mayexecute arbitrary programs in some cases Markus Kern (Mon Sep 18 2000 - 13:17:46 CDT)
  - Re: Double clicking on MS Office documents from Windows Explorer mayexecute arbitrary programs in some cases Fernando Trias (Mon Sep 18 2000 - 17:05:25 CDT)
- Re: Double clicking on MS Office documents from Windows Explorer may execute arbitrary programs in some cases Microsoft Security Response Center (Mon Sep 18 2000 - 13:58:41 CDT)
- Re: Double clicking on MS Office documents from Windows Explorer may execute arbitrary programs in some cases Timothy J. Miller (Mon Sep 18 2000 - 15:56:03 CDT)
- Re: Double clicking on MS Office documents from Windows Explorer may execute arbitrary programs in some cases Todd Ransom (Tue Sep 19 2000 - 08:23:29 CDT)
- Re: Double clicking on MS Office documents from Windows Explorer may execute arbitrary programs in some cases Timothy J. Miller (Tue Sep 19 2000 - 15:35:06 CDT)
- Re: Double clicking on MS Office documents from Windows Explorer may execute arbitrary programs in some cases Francis Favorini (Tue Sep 19 2000 - 17:23:09 CDT)
  - Re: Double clicking on MS Office documents from Windows Explorer may execute arbitrary programs in some cases Philip Stoev (Wed Sep 20 2000 - 03:27:27 CDT)
    - Re: Double clicking on MS Office documents from Windows Explorer may execute arbitrary programs in some cases Jesper M. Johansson (Thu Sep 21 2000 - 10:07:33 CDT)
- Re: Double clicking on MS Office documents from Windows Explorer may execute arbitrary programs in some cases John Wiltshire (Tue Sep 19 2000 - 18:54:09 CDT)
NTmail exploit Geo. (Mon Sep 18 2000 - 07:51:35 CDT)
- Re: NTmail exploit John Stanners (Mon Sep 18 2000 - 12:34:15 CDT)
Horde library Bug part 2 Steube, Jens (Mon Sep 18 2000 - 11:56:14 CDT)
- Re: Horde library Bug part 2 John Riddoch (Tue Sep 19 2000 - 11:13:51 CDT)
[RHSA-2000:061-02] syslog format vulnerability in klogd bugzillaREDHAT.COM (Mon Sep 18 2000 - 14:42:00 CDT)
- Re: [RHSA-2000:061-02] syslog format vulnerability in klogd Solar Designer (Tue Sep 19 2000 - 00:06:30 CDT)
[Fwd: Immunix OS Security Update for klogd] Crispin Cowan (Mon Sep 18 2000 - 16:13:55 CDT)
[ENIGMA] Digital UNIX/Tru64 UNIX remote kdebug Vulnerability enigma (Mon Sep 18 2000 - 19:49:41 CDT)
klogd Kernel Logger vulnerability and fix Slackware Security Team (by way of Thomas Novin hem.passa (Tue Sep 19 2000 - 08:59:16 CDT)
Re: [imp] FW: Horde library Bug part 2 Chuck Hagenbuch (Mon Sep 18 2000 - 14:54:14 CDT)
VIGILANTE-2000013: WinCOM LPD DoS Peter Gründl (Tue Sep 19 2000 - 09:49:08 CDT)
MDKSA-2000:050 - sysklogd update Linux Mandrake Security Team (Tue Sep 19 2000 - 00:25:18 CDT)
[SECURITY] New versions of sysklogd released debian-security-announceLISTS.DEBIAN.ORG (Tue Sep 19 2000 - 12:44:14 CDT)
Trustix security advisory Oystein Viggen (Tue Sep 19 2000 - 12:49:50 CDT)
Exploit using Eudora and the Guninski hole Louis-Eric Simard (Tue Sep 19 2000 - 14:47:03 CDT)
- Re: Exploit using Eudora and the Guninski hole Lincoln Yeoh (Wed Sep 20 2000 - 01:35:39 CDT)
- Re: Exploit using Eudora and the Guninski hole David LeBlanc (Wed Sep 20 2000 - 12:18:14 CDT)
  - Re: Exploit using Eudora and the Guninski hole Signal 11 (Thu Sep 21 2000 - 13:06:29 CDT)
- Re: Exploit using Eudora and the Guninski hole Nick FitzGerald (Wed Sep 20 2000 - 11:53:28 CDT)
Cisco PIX Firewall (smtp content filtering hack) naif (Tue Sep 19 2000 - 11:27:49 CDT)
- Re: Cisco PIX Firewall (smtp content filtering hack) Lisa Napier (Tue Sep 19 2000 - 20:30:51 CDT)
  - Re: Cisco PIX Firewall (smtp content filtering hack) Jeffrey W. Baker (Wed Sep 20 2000 - 11:46:58 CDT)
    - Re: Cisco PIX Firewall (smtp content filtering hack) Signal 11 (Thu Sep 21 2000 - 12:59:00 CDT)
    - Re: Cisco PIX Firewall (smtp content filtering hack) Deus, Attonbitus (Thu Sep 21 2000 - 12:58:40 CDT)
- Re: Cisco PIX Firewall (smtp content filtering hack) - Version 4.2(1) not exploitable Leandro Dardini (Wed Sep 20 2000 - 02:49:03 CDT)
  - Re: Cisco PIX Firewall (smtp content filtering hack) - Version 4.2(1) not exploitable Fabio Pietrosanti (naif) (Wed Sep 20 2000 - 03:34:44 CDT)
- Re: Cisco PIX Firewall (smtp content filtering hack) Ioannis Migadakis (Thu Sep 21 2000 - 08:24:59 CDT)
[TL-Security-Announce] xchat TLSA2000022-1 Kevin Beyer (Tue Sep 19 2000 - 15:54:44 CDT)
SuSE Security Announcement: syslogd/klogd Roman Drahtmueller (Tue Sep 19 2000 - 20:09:34 CDT)
[CSSA-2000-032.0] Security Problems with syslog/klogd Caldera Systems Security (Wed Sep 20 2000 - 02:12:23 CDT)
format bug in agetty ?? Carlos Eduardo Gorges (Tue Sep 19 2000 - 20:18:38 CDT)
- Re: format bug in agetty ?? Gordon Messmer (Wed Sep 20 2000 - 20:43:26 CDT)
Source code for RICHED20.DLL, as posted in advisory SIMARD 20000919.1 Louis-Eric Simard (Tue Sep 19 2000 - 21:46:54 CDT)
kvt format bug Carlos Eduardo Gorges (Tue Sep 19 2000 - 20:43:56 CDT)
- Re: kvt format bug Harri Porten (Wed Sep 20 2000 - 15:03:08 CDT)
Fwd: Re: Double clicking on MS Office documents from Windows Explorer mayexecute arbitrary programs in some cases http-equivexcite.com (Tue Sep 19 2000 - 07:49:54 CDT)
- Fwd: Re: Double clicking on MS Office documents from Windows Explorer mayexecute arbitrary programs in some cases Chip Andrews (Wed Sep 20 2000 - 12:43:59 CDT)
  - Re: Fwd: Re: Double clicking on MS Office documents from Windows Explorer mayexecute arbitrary programs in some cases Brett Glass (Thu Sep 21 2000 - 17:56:15 CDT)
DST2K0031: DoS in BrowseGate(Home) v2.80(H) Security Team (Thu Sep 21 2000 - 07:44:48 CDT)
Resend: Sendmail filter to prevent SMTP exploitation of the Guninski hole Bennett Samowich (Wed Sep 20 2000 - 15:57:41 CDT)
- Re: Resend: Sendmail filter to prevent SMTP exploitation of the Guninski hole David F. Skoll (Thu Sep 21 2000 - 13:31:21 CDT)
  - (Yet) Another open source email filtering tool Bjarni Runar Einarsson (Fri Sep 22 2000 - 04:19:48 CDT)
- Re: Resend: Sendmail filter to prevent SMTP exploitation of the Guninski hole John D. Hardin (Thu Sep 21 2000 - 21:59:08 CDT)
[RHSA-2000:062-03] glint symlink vulnerability bugzillaREDHAT.COM (Wed Sep 20 2000 - 21:13:00 CDT)
- Re: [RHSA-2000:062-03] glint symlink vulnerability Roman Drahtmueller (Fri Sep 22 2000 - 13:34:42 CDT)
Extent RBS directory Transversal. anon anon (Wed Sep 20 2000 - 20:40:22 CDT)
Cisco Security Advisory: Multiple Vulnerabilities in CiscoSecure ACS for Windows NT Server Cisco Systems Product Security Incident Response Team (Thu Sep 21 2000 - 10:00:00 CDT)
Correction to sendmail attachment filter Bennett Samowich (Thu Sep 21 2000 - 23:15:18 CDT)
The :CueCat privacy advisory Richard M. Smith (Fri Sep 22 2000 - 08:13:35 CDT)
httpd.conf in Suse 6.4 zab0ra aka t0maszek (Thu Sep 21 2000 - 04:24:43 CDT)
- Re: httpd.conf in Suse 6.4 Martin S. Hasemann (Fri Sep 22 2000 - 14:20:19 CDT)
- Re: httpd.conf in Suse 6.4 Roman Drahtmueller (Mon Sep 25 2000 - 13:32:04 CDT)
User Alert: E*TRADE Usernames and Passwords Remotely Recoverable Jeffrey W. Baker (Fri Sep 22 2000 - 11:13:09 CDT)
- Re: User Alert: E*TRADE Usernames and Passwords Remotely Recoverable Marc Slemko (Mon Sep 25 2000 - 01:32:37 CDT)
- Re: User Alert: E*TRADE Usernames and Passwords Remotely Recoverable Bridgette Julie Landers (Mon Sep 25 2000 - 19:39:26 CDT)
More info for E*TRADE users Jeffrey W. Baker (Fri Sep 22 2000 - 15:42:18 CDT)
- Re: More info for E*TRADE users Christian (Sun Sep 24 2000 - 21:29:29 CDT)
  - Re: More info for E*TRADE users Lincoln Yeoh (Tue Sep 26 2000 - 05:42:48 CDT)
    - Re: More info for E*TRADE users Greg A. Woods (Wed Sep 27 2000 - 09:29:48 CDT)
- Re: More info for E*TRADE users George, Michael (Wed Sep 27 2000 - 09:13:59 CDT)
Major Vulnerability in Alabanza Control Panel Weihan Leow (Sun Sep 24 2000 - 16:12:26 CDT)
- Re: Major Vulnerability in Alabanza Control Panel Weihan Leow (Mon Sep 25 2000 - 09:53:02 CDT)
Klogd Exploit Using Envcheck Esa Etelavuori (Mon Sep 25 2000 - 09:08:13 CDT)
Eudora + riched20.dll affects WinZip v8.0 as well Stan Bubrouski (Fri Sep 22 2000 - 17:41:20 CDT)
(no subject) arkaneSPEAKEASY.ORG (Fri Sep 22 2000 - 19:32:03 CDT)
jojo releases 'cryptcat' twofish version of netcat George Milliken (Fri Sep 22 2000 - 16:15:21 CDT)
Conectiva Linux Security Announcement - imp secureCONECTIVA.COM.BR (Sat Sep 23 2000 - 16:14:42 CDT)
[Security Announce] MDKSA-2000:041-1 - xpdf update Linux Mandrake Security Team (Mon Sep 25 2000 - 14:01:01 CDT)
MDKSA-2000:050-1 - sysklogd update Linux Mandrake Security Team (Mon Sep 25 2000 - 17:23:42 CDT)
Format strings: bug #2: LPRng Chris Evans (Mon Sep 25 2000 - 18:57:43 CDT)
Format strings: Summary and rant Chris Evans (Mon Sep 25 2000 - 18:58:39 CDT)
Format strings: bug #1: BSD-lpr Chris Evans (Mon Sep 25 2000 - 18:57:04 CDT)
- Re: Format strings: bug #1: BSD-lpr Kris Kennaway (Tue Sep 26 2000 - 02:02:48 CDT)
- Re: Format strings: bug #1: BSD-lpr Sean Winn (Tue Sep 26 2000 - 00:51:02 CDT)
  - Re: Format strings: bug #1: BSD-lpr Sean Winn (Wed Sep 27 2000 - 05:28:09 CDT)
- Re: Format strings: bug #1: BSD-lpr Jouko Pynnönen (Wed Sep 27 2000 - 05:23:48 CDT)
  - Re: Format strings: bug #1: BSD-lpr Valdis Kletnieks (Wed Sep 27 2000 - 11:41:15 CDT)
Computer Security Mexico Seguridad en Computo - Mexico (Mon Sep 25 2000 - 18:45:29 CDT)
Security Update: format bug in LPRng Technical Support (Mon Sep 25 2000 - 17:38:03 CDT)
Nmap Protocol Scanning DoS against OpenBSD IPSEC Matthew Franz (Mon Sep 25 2000 - 16:13:00 CDT)
Format strings: bugs #3 & #4: ISC-dhcpd, ucd-snmp Chris Evans (Mon Sep 25 2000 - 18:58:12 CDT)
- Re: Format strings: bugs #3 & #4: ISC-dhcpd, ucd-snmp Paul Murphy (Sat Sep 30 2000 - 16:36:52 CDT)
ld.so bug - LD_DEBUG_OUTPUT follows symlinks Jakub Vlasek (Mon Sep 25 2000 - 19:11:12 CDT)
- Re: ld.so bug - LD_DEBUG_OUTPUT follows symlinks Dwayne C . Litzenberger (Tue Sep 26 2000 - 18:52:14 CDT)
  - Re: ld.so bug - LD_DEBUG_OUTPUT follows symlinks Jakub Vlasek (Wed Sep 27 2000 - 05:36:28 CDT)
    - Re: ld.so bug - LD_DEBUG_OUTPUT follows symlinks Michal Zalewski (Wed Sep 27 2000 - 18:58:14 CDT)
- Re: ld.so bug - LD_DEBUG_OUTPUT follows symlinks Robert Bihlmeyer (Thu Sep 28 2000 - 10:58:27 CDT)
IE 5.5/Outlook Express security vulnerability - GetObject() expose user's files Georgi Guninski (Tue Sep 26 2000 - 09:02:49 CDT)
- Re: IE 5.5/Outlook Express security vulnerability - GetObject() expose user's files Fabrice (Wed Sep 27 2000 - 07:03:34 CDT)
DST2K0014: BufferOverrun in HP Openview Network Node Manager v6.1 (Round2) Security Team (Tue Sep 26 2000 - 00:53:22 CDT)
DST2K0032: Multiple Issues with Talentsoft WebPlus Application Se rver Security Team (Wed Sep 27 2000 - 05:54:35 CDT)
Cisco Security Advisory: Cisco Secure PIX Firewall Mailguard Vulnerability Cisco Systems Product Security Incident Response Team (Wed Sep 27 2000 - 10:10:00 CDT)
Update to DST2K0014: BufferOverrun in HP Openview Network Node Ma nager v6.1 (Round2) Security Team (Wed Sep 27 2000 - 08:49:41 CDT)
Vendor Contacts Vulnerability Help (Wed Sep 27 2000 - 10:31:06 CDT)
Unixware SCOhelp http server format string vulnerability Iván (Wed Sep 27 2000 - 15:40:50 CDT)
E*TRADE's encryption algorithm is XOR Tim Hollebeek (Wed Sep 27 2000 - 13:51:18 CDT)
stake Advisory: PalmOS Password Retrieval and Decoding (A092600- 1) stake Advisories (Wed Sep 27 2000 - 16:24:15 CDT)
MDKSA-2000:051 - esound update Linux Mandrake Security Team (Wed Sep 27 2000 - 16:05:15 CDT)
FreeBSD Security Advisory: FreeBSD-SA-00:53.catopen FreeBSD Security Advisories (Wed Sep 27 2000 - 19:48:35 CDT)
DST2K0042: Possible to read/execute any file with Talentsoft Web+ Application Server example scripts. Whitehouse, Ollie (Thu Sep 28 2000 - 11:13:46 CDT)
DST2K0037: QuotaAdvisor 4.1 by WQuinn is susceptible to alternati ve datastreams to bypass quotas. Security Team (Thu Sep 28 2000 - 02:27:19 CDT)
another wu-ftpd exploit George Bakos (Thu Sep 28 2000 - 00:26:14 CDT)
- Re: another wu-ftpd exploit Dan Harkless (Thu Sep 28 2000 - 17:24:28 CDT)
  - Re: another wu-ftpd exploit Richard Trott (Sun Oct 01 2000 - 04:07:27 CDT)
PalmOS password recovery Nate Amsden (Thu Sep 28 2000 - 10:08:37 CDT)
- Re: PalmOS password recovery Mudge (Thu Sep 28 2000 - 15:58:04 CDT)
- Re: PalmOS password recovery Peter W (Thu Sep 28 2000 - 17:01:46 CDT)
commercial products and security [ + new bug ] Michal Zalewski (Thu Sep 28 2000 - 11:34:00 CDT)
Another thingy. Michal Zalewski (Thu Sep 28 2000 - 11:32:34 CDT)
Fw: Security Features Adam J. Baldwin (Wed Sep 27 2000 - 12:06:43 CDT)
Netscape Navigator buffer overflow Michal Zalewski (Thu Sep 28 2000 - 11:45:41 CDT)
Update to DST2K0012: BufferOverrun in HP Openview Network Node Ma nager v6.1: BufferOverrun in HP Openview Network Node Manager v6.1 Security Team (Wed Sep 27 2000 - 11:40:45 CDT)
E*TRADE Security concerns.. (fwd) Michael Bacarella (Thu Sep 28 2000 - 09:14:27 CDT)
Very interesting traceroute flaw Chris Evans (Thu Sep 28 2000 - 17:33:28 CDT)
- Re: Very interesting traceroute flaw Casper Dik (Fri Sep 29 2000 - 05:47:43 CDT)
- Re: Very interesting traceroute flaw Sylvain Robitaille (Fri Sep 29 2000 - 10:50:15 CDT)
- Re: Very interesting traceroute flaw Martin Peikert (Fri Sep 29 2000 - 02:57:12 CDT)
  - Re: Very interesting traceroute flaw Daniel Jacobowitz (Sat Sep 30 2000 - 02:46:38 CDT)
- Re: Very interesting traceroute flaw pedwardWEBCOM.COM (Fri Sep 29 2000 - 11:51:02 CDT)
  - Re: Very interesting traceroute flaw Daniel Jacobowitz (Sat Sep 30 2000 - 16:18:42 CDT)
- Re: Very interesting traceroute flaw Elias Levy (Sat Sep 30 2000 - 16:10:53 CDT)
cvs commit: ports/mail/pine4 Makefile (fwd) Kris Kennaway (Fri Sep 29 2000 - 02:33:31 CDT)
[slackware-security] wuftpd vulnerability - Slackware 4.0, 7.0, 7.1, -current bump (Fri Sep 29 2000 - 09:01:28 CDT)
Security vulnerability in Apache mod_rewrite Kevin van der Raad (Fri Sep 29 2000 - 05:39:11 CDT)
- Re: Security vulnerability in Apache mod_rewrite Tony Finch (Fri Sep 29 2000 - 12:37:07 CDT)
Malformed Embedded Windows Media Player 7 "OCX Attachment" Vulnerability USSR Labs (Fri Sep 29 2000 - 12:41:21 CDT)
Security Update: security problem in traceroute Caldera Support Info (Fri Sep 29 2000 - 14:53:49 CDT)
Microsoft Security Bulletin (MS00-069) Microsoft Product Security (Sat Sep 30 2000 - 01:32:37 CDT)
IE5.5 window.externalNavigateAndFind security vulnerability.... Alp Sinan (Sat Sep 30 2000 - 13:49:41 CDT)
Conectiva Linux Security Announcement - traceroute secureCONECTIVA.COM.BR (Sat Sep 30 2000 - 13:56:05 CDT)
scp file transfer hole Michal Zalewski (Sat Sep 30 2000 - 14:21:17 CDT)
- Re: scp file transfer hole stanislav shalunov (Sat Sep 30 2000 - 23:43:39 CDT)
- openssh2.2.p1 - Re: scp file transfer hole Martin MaD Douda (Sun Oct 01 2000 - 05:19:46 CDT)
glibc and userhelper - local root zenith parsec (Sat Sep 30 2000 - 08:11:53 CDT)
Mandrake 7.1 bypasses Xauthority X session security. Daniel P. Zepeda (Fri Sep 29 2000 - 18:27:07 CDT)
Default admin password with Slashcode. Brian Aker (Fri Sep 29 2000 - 03:25:09 CDT)
DNS PTR surveying D. J. Bernstein (Sun Oct 01 2000 - 03:28:33 CDT)

Last message date: Last message date: Sun Oct 01 2000 - 11:54:54 CDT
Archived on: Sun Oct 01 2000 - 11:54:57 CDT

373 messages sorted by: [ author ] [ date ] [ subject ]