NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 2001-01

Most recent messages
550 messages sorted by: [ author ] [ date ] [ subject ]

Starting: Tue Jan 02 2001 - 13:33:23 CST
Ending: Thu Feb 01 2001 - 13:53:58 CST

Windows Media Player 7 and IE vulnerability - executing arbitrary programs Georgi Guninski (Mon Jan 01 2001 - 06:47:58 CST)
MDKSA-2000:088 - emacs update Linux Mandrake Security Team (Sun Dec 31 2000 - 15:52:05 CST)
Vulnerabilities in Informix Webdriver isno (Fri Dec 29 2000 - 18:34:53 CST)
- Re: Vulnerabilities in Informix Webdriver Joshua R. Poulson (Wed Jan 03 2001 - 12:24:18 CST)
  - Re: Vulnerabilities in Informix Webdriver John Wright (Thu Jan 04 2001 - 03:25:44 CST)
- Re: Vulnerabilities in Informix Webdriver Joel Michael (Thu Jan 04 2001 - 07:57:12 CST)
- Re: Vulnerabilities in Informix Webdriver isno (Thu Jan 04 2001 - 01:53:27 CST)
sendmail 8.11.2 released Oonk, Patrick (Sun Dec 31 2000 - 06:38:58 CST)
Securax Advisory 12 incubus (Mon Jan 01 2001 - 08:51:38 CST)
- Re: Securax Advisory 12 Alex Muntada (Wed Jan 03 2001 - 05:22:03 CST)
  - Re: Securax Advisory 12 (Using backspace in HTTP requests) Philip Stoev (Wed Jan 03 2001 - 16:17:13 CST)
- Using backspace in HTTP requests (Re: Securax Advisory 12) Philip Stoev (Wed Jan 03 2001 - 15:02:17 CST)
Re: Advisory:Multiple Vulnerabilities in ZoneAlarm bacano (Sat Dec 30 2000 - 08:40:46 CST)
- Re: Advisory:Multiple Vulnerabilities in ZoneAlarm Chris St. Clair (Tue Jan 02 2001 - 19:52:48 CST)
Securax Advisory 13 incubus (Mon Jan 01 2001 - 09:02:10 CST)
- Re: Securax Advisory 13 Fyodor (Tue Jan 02 2001 - 13:19:13 CST)
- Re: Securax Advisory 13 Michal Zalewski (Tue Jan 02 2001 - 13:55:10 CST)
- Re: Securax Advisory 13 Arturo Busleiman (Sat Dec 30 2000 - 18:15:21 CST)
- Re: Securax Advisory 13 teleh0r (Tue Jan 02 2001 - 23:35:48 CST)
  - Re: Securax Advisory 13 Jarno Huuskonen (Wed Jan 03 2001 - 15:10:44 CST)
Securax Advisory 11 incubus (Mon Jan 01 2001 - 08:50:37 CST)
- Re: Securax Advisory 11 Michal Zalewski (Tue Jan 02 2001 - 13:32:24 CST)
  - Re: Securax Advisory 11 Michal Zalewski (Tue Jan 02 2001 - 13:36:59 CST)
- Re: Securax Advisory 11 Donald King (Tue Jan 02 2001 - 14:52:19 CST)
WinRoute Pro and Memory Protection Peter Miller (Sat Dec 30 2000 - 13:18:32 CST)
- WinRoute Pro and Memory Protection Peter Miller (Wed Jan 10 2001 - 17:11:29 CST)
Advisory: exmh symlink vulnerability Stanley G. Bubrouski (Sun Dec 31 2000 - 14:32:40 CST)
WinRoute Pro Mail Server Security Risk Peter Miller (Sat Dec 30 2000 - 12:34:06 CST)
Re: Remote Root Exploit for Redhat 7.0 Max Vision (Tue Jan 02 2001 - 11:51:11 CST)
- Re: Remote Root Exploit for Redhat 7.0 Crutcher Dunnavant (Tue Jan 02 2001 - 14:55:20 CST)
Re: Mac OS 9 Multiple Users Control Panel Password Vulnerability K. M. Ellis (Tue Jan 02 2001 - 12:04:25 CST)
- Re: Mac OS 9 Multiple Users Control Panel Password Vulnerability Josh Turiel (Wed Jan 03 2001 - 07:09:46 CST)
Re: gtk+ security hole. Rob Mosher (Tue Jan 02 2001 - 15:13:58 CST)
- Re: gtk+ security hole. Rob Mosher (Wed Jan 03 2001 - 09:08:33 CST)
  - Re: gtk+ security hole. Rob Mosher (Wed Jan 03 2001 - 15:15:25 CST)
- Re: gtk+ security hole. Kain (Wed Jan 03 2001 - 02:08:08 CST)
  - Re: gtk+ security hole. Robert van der Meulen (Wed Jan 03 2001 - 10:46:23 CST)
    - Re: gtk+ security hole. Wichert Akkerman (Wed Jan 03 2001 - 17:46:58 CST)
- Re: gtk+ security hole. Bryan Porter (Wed Jan 03 2001 - 15:30:10 CST)
- Re: gtk+ security hole. Bryan Porter (Thu Jan 04 2001 - 18:15:48 CST)
CHINANSL Security Advisory(CSA200013) china nsl (Tue Jan 02 2001 - 21:38:18 CST)
Re: buffer overflow in libsecure (NSA Security-enhanced Linux) Matt Power (Tue Jan 02 2001 - 19:06:27 CST)
Claimed vulnerability in GTK_MODULES Owen Taylor (Wed Jan 03 2001 - 09:40:33 CST)
- Re: Claimed vulnerability in GTK_MODULES Kris Kennaway (Wed Jan 03 2001 - 11:32:29 CST)
  - Re: Claimed vulnerability in GTK_MODULES Kris Kennaway (Thu Jan 04 2001 - 06:03:55 CST)
- Re: Claimed vulnerability in GTK_MODULES Owen Taylor (Thu Jan 04 2001 - 11:05:41 CST)
Re: Shockwave Flash buffer overflow robinDEBREUIL.COM (Wed Jan 03 2001 - 11:12:50 CST)
- Re: Shockwave Flash buffer overflow Krawetz, Neal (Fri Jan 05 2001 - 12:01:09 CST)
- Re: Shockwave Flash buffer overflow Peter Santangeli (Fri Jan 05 2001 - 17:03:06 CST)
Frontpage Publishing DoS (Denial of Service) Marc Maiffret (Wed Jan 03 2001 - 10:49:33 CST)
- Re: Frontpage Publishing DoS (Denial of Service) Curtis Smith (Fri Jan 05 2001 - 07:57:38 CST)
analysis of auditable port scanning techniques Guido Bakker (Thu Jan 04 2001 - 02:40:52 CST)
- Re: analysis of auditable port scanning techniques Guido Bakker (Fri Jan 05 2001 - 02:26:22 CST)
- Re: analysis of auditable port scanning techniques Dan Harkless (Thu Jan 04 2001 - 22:32:01 CST)
  - Re: analysis of auditable port scanning techniques John Ladwig (Mon Jan 08 2001 - 14:07:43 CST)
- Re: analysis of auditable port scanning techniques Dan Harkless (Sat Jan 06 2001 - 04:43:57 CST)
  - Re: analysis of auditable port scanning techniques Henrik Nordstrom (Mon Jan 08 2001 - 18:34:59 CST)
- Re: analysis of auditable port scanning techniques Michael S Soukup (Fri Jan 05 2001 - 13:25:06 CST)
- Re: analysis of auditable port scanning techniques Rainer Weikusat (Sat Jan 06 2001 - 03:50:31 CST)
- Re: analysis of auditable port scanning techniques dethy (Fri Jan 05 2001 - 21:30:08 CST)
  - Re: analysis of auditable port scanning techniques Michael Bacarella (Mon Jan 08 2001 - 11:28:53 CST)
- Re: analysis of auditable port scanning techniques Dan Harkless (Fri Jan 12 2001 - 19:27:02 CST)
  - Re: analysis of auditable port scanning techniques D. J. Bernstein (Mon Jan 15 2001 - 16:01:17 CST)
News Desk 1.2 CGI Vulnerbility B10Z Security (Wed Jan 03 2001 - 19:00:17 CST)
SECURITY.NNOV advisory - The Bat! directory traversal (public release) 3APA3A (Thu Jan 04 2001 - 12:55:46 CST)
- Re: SECURITY.NNOV advisory - The Bat! directory traversal (public release) Thomas Fernandez (Fri Jan 05 2001 - 09:06:36 CST)
Old getgrnam() Solaris 2.5 vulnerability Pablo Sor (Thu Jan 04 2001 - 08:03:47 CST)
[CLA-2001:369] Conectiva Linux Security Announcement - slocate secureCONECTIVA.COM.BR (Thu Jan 04 2001 - 12:19:03 CST)
Fastgraf Metacharacterbug(2) Marco van Berkum (Fri Jan 05 2001 - 06:23:14 CST)
Temporal Patch for Zone Alarm mail666 (Thu Jan 04 2001 - 14:19:53 CST)
Hidden sniffer on unplumb'ed interface on Solaris Robert Banniza (Thu Jan 04 2001 - 23:40:33 CST)
- Re: Hidden sniffer on unplumb'ed interface on Solaris Darren Moffat (Fri Jan 05 2001 - 14:39:35 CST)
- Re: Hidden sniffer on unplumb'ed interface on Solaris George Ellenburg (Fri Jan 05 2001 - 15:47:19 CST)
  - Re: Hidden sniffer on unplumb'ed interface on Solaris Casper Dik (Tue Jan 09 2001 - 03:57:09 CST)
- Re: Hidden sniffer on unplumb'ed interface on Solaris Mike Bristow (Fri Jan 05 2001 - 13:56:55 CST)
- Re: Hidden sniffer on unplumb'ed interface on Solaris Chris St. Clair (Mon Jan 08 2001 - 10:28:39 CST)
Metacharacterbug in Fastgraf whois.cgi Marco van Berkum (Fri Jan 05 2001 - 06:06:57 CST)
Lotus Domino 5.0.5 Web Server vulnerability - reading files outside the web root Georgi Guninski (Fri Jan 05 2001 - 07:44:01 CST)
- Re: Lotus Domino 5.0.5 Web Server vulnerability - reading files outside the web root Ben Greenbaum (Mon Jan 08 2001 - 10:17:14 CST)
  - Re: Lotus Domino 5.0.5 Web Server vulnerability - reading filesoutside the web root Georgi Guninski (Mon Jan 08 2001 - 13:49:35 CST)
  - Re: Lotus Domino 5.0.5 Web Server vulnerability - reading files outside the web root Hendrik-Jan Verheij (Mon Jan 08 2001 - 12:33:58 CST)
- Re: Lotus Domino 5.0.5 Web Server vulnerability - reading files outside the web root Stephen Forinash (Mon Jan 08 2001 - 15:27:22 CST)
- WORKAROUND: Lotus Domino 5.0.5 Web Server vulnerability Leonardo Rodrigues (Tue Jan 09 2001 - 07:56:47 CST)
def-2001-01: ImageCast IC3 Control Center DoS Peter Gründl (Mon Jan 08 2001 - 04:46:47 CST)
Advisory: PGP 7.0 signature verification vulnerability Michael Kjorling (Mon Jan 08 2001 - 08:58:58 CST)
- Re: Advisory: PGP 7.0 signature verification vulnerability Adam Shostack (Mon Jan 08 2001 - 13:31:27 CST)
Re: /usr/sbin/audlinks vulnerability Konrad Rieck (Fri Jan 05 2001 - 12:41:21 CST)
- Re: /usr/sbin/audlinks vulnerability optyx (Mon Jan 08 2001 - 21:22:20 CST)
Re: SecurID Token Emulator Vin McLellan (Sun Jan 07 2001 - 22:55:46 CST)
Lotus Domino: security hole the size of Texas, plus somewhat smaller protocol auditing utility Michal Zalewski (Mon Jan 08 2001 - 08:28:24 CST)
- Re: Lotus Domino: security hole the size of Texas, plus somewhat smaller protocol auditing utility Michal Zalewski (Sat Jan 08 2000 - 14:52:27 CST)
- Re: Lotus Domino: security hole the size of Texas, plus somewhat smaller protocol auditing utility paolo_armandoCEDATI.COM (Wed Jan 10 2001 - 04:15:17 CST)
- Re: Lotus Domino: security hole the size of Texas, plus somewhat smaller protocol auditing utility Andreas Siegert (Wed Jan 10 2001 - 13:30:52 CST)
- Re: Lotus Domino: security hole the size of Texas, plus somewhat smaller protocol auditing utility paolo_armandoCEDATI.COM (Fri Jan 12 2001 - 01:40:02 CST)
- Re: Lotus Domino: security hole the size of Texas, plus somewhat smaller protocol auditing utility Vinci Chou (Fri Jan 12 2001 - 03:27:38 CST)
wuftpd 2.6.1 -- example of bad coding Przemyslaw Frasunek (Mon Jan 08 2001 - 09:10:41 CST)
- Re: wuftpd 2.6.1 -- example of bad coding Gregory A Lundberg (Mon Jan 08 2001 - 13:30:41 CST)
- Re: wuftpd 2.6.1 -- example of bad coding Iván Arce (Mon Jan 08 2001 - 17:35:19 CST)
def-2001-02: IBM Websphere 3.52 Kernel Leak DoS Peter Gründl (Mon Jan 08 2001 - 05:50:01 CST)
- Re: def-2001-02: IBM Websphere 3.52 Kernel Leak DoS Rodrick Brown (Mon Jan 08 2001 - 11:55:50 CST)
Fwd: The Bat! version 1.49 3APA3A (Sat Jan 06 2001 - 05:00:49 CST)
IIS 5.0 allows viewing files using %3F+.htr Georgi Guninski (Mon Jan 08 2001 - 09:00:30 CST)
- Re: IIS 5.0 allows viewing files using %3F+.htr Leonid Medvedev (home) (Mon Jan 08 2001 - 14:46:59 CST)
Infocure "Exact Dental" Practice Management System - awful security policy Dixieland (Mon Jan 08 2001 - 11:11:33 CST)
HP/UX FTP format string vulnerability [ zorgon ] (Mon Jan 08 2001 - 15:55:53 CST)
- Re: HP/UX FTP format string vulnerability H D Moore (Mon Jan 08 2001 - 20:48:56 CST)
security bulletins digest (fwd) Ben Greenbaum (Tue Jan 09 2001 - 09:38:57 CST)
- security bulletins digest (fwd) Ben Greenbaum (Thu Jan 18 2001 - 10:25:20 CST)
- security bulletins digest (fwd) Ben Greenbaum (Mon Jan 29 2001 - 10:17:06 CST)
  - Re: security bulletins digest (fwd) Eelco Duijker (Tue Jan 30 2001 - 05:01:42 CST)
  - Re: security bulletins digest (fwd) Eelco Duijker (Wed Jan 31 2001 - 01:33:08 CST)
Cgisecurity.com Advisory #3.1 admincgisecurity.com (Sun Jan 07 2001 - 15:52:51 CST)
- Re: Cgisecurity.com Advisory #3.1 Gunther Birznieks (Tue Jan 09 2001 - 18:10:21 CST)
  - Re: Cgisecurity.com Advisory #3.1 admincgisecurity.com (Tue Jan 09 2001 - 20:58:50 CST)
Advisory #3 link error admincgisecurity.com (Sun Jan 07 2001 - 19:11:50 CST)
Summary: Shockwave overflow nealk (Tue Jan 09 2001 - 10:06:53 CST)
New DDoS? nealk (Tue Jan 09 2001 - 10:07:37 CST)
- Re: New DDoS? Szilveszter Adam (Tue Jan 09 2001 - 10:52:35 CST)
- Re: New DDoS? Ryan Russell (Tue Jan 09 2001 - 13:16:30 CST)
  - Re: New DDoS? Darren Reed (Tue Jan 09 2001 - 23:57:07 CST)
    - Re: New DDoS? Ryan Russell (Wed Jan 10 2001 - 01:26:35 CST)
- Re: New DDoS? Mailing List (Tue Jan 09 2001 - 12:22:43 CST)
- Re: New DDoS? Alfred Perlstein (Tue Jan 09 2001 - 12:51:44 CST)
Workaround: Lotus Domino Server Directory Traversal Vulnerability (2173) Miha.VitorovicNIL.SI (Tue Jan 09 2001 - 05:31:03 CST)
Oracle XSQL servlet and xml-stylesheet allow executing java on the web server Georgi Guninski (Tue Jan 09 2001 - 09:16:29 CST)
NSFOCUS SA2001-01: NetScreen Firewall WebUI Buffer Overflow vulnerability Nsfocus Security Team (Mon Jan 08 2001 - 22:55:36 CST)
bugtraq id 2173 Lotus Domino Server Alan Bell (Tue Jan 09 2001 - 05:02:32 CST)
- Re: bugtraq id 2173 Lotus Domino Server Hendrik-Jan Verheij (Tue Jan 09 2001 - 14:21:32 CST)
Audiogalaxy.com mp3 sharing software altomoNUDEHACKERS.COM (Tue Jan 09 2001 - 09:16:33 CST)
- Re: Audiogalaxy.com mp3 sharing software Adam Knight (Tue Jan 09 2001 - 11:35:51 CST)
- Re: Audiogalaxy.com mp3 sharing software Michael Merhej (Tue Jan 09 2001 - 18:11:30 CST)
pidentd 3.0.12 port exclusion patch optyx (Tue Jan 09 2001 - 03:52:31 CST)
Re: Lotus Domino 5.0.5 Web Server vulnerability - who cannot reproduce, and others Dobos (Tue Jan 09 2001 - 06:59:20 CST)
Solaris /usr/lib/exrecover buffer overflow Pablo Sor (Tue Jan 09 2001 - 13:45:32 CST)
- Re: Solaris /usr/lib/exrecover buffer overflow Darren J Moffat (Tue Jan 09 2001 - 17:41:38 CST)
- Re: Solaris /usr/lib/exrecover buffer overflow Florian Weimer (Thu Jan 11 2001 - 04:54:45 CST)
Lotus Domino 5.0.5 Web Server vulnerability WORK AROUNDS Dyson, Thom (Tue Jan 09 2001 - 10:49:54 CST)
- Re: Lotus Domino 5.0.5 Web Server vulnerability WORK AROUNDS Georgi Guninski (Wed Jan 10 2001 - 02:29:34 CST)
Memory leakage in ProFTPd leads to remote DoS (SIZE FTP); (Exploit Code) JeT Li (Tue Jan 09 2001 - 11:50:53 CST)
- Re: Memory leakage in ProFTPd leads to remote DoS (SIZE FTP); (Exploit Code) Wojciech Purczynski (Wed Jan 10 2001 - 02:54:38 CST)
summercon 2001 announce Louis Trumpbour (Tue Jan 09 2001 - 17:53:48 CST)
major security bug in reiserfs (may affect SuSE Linux) Marc Lehmann (Tue Jan 09 2001 - 17:42:01 CST)
- Re: [reiserfs-list] major security bug in reiserfs (may affect SuSE Linux) Vladimir V. Saveliev (Tue Jan 09 2001 - 18:56:32 CST)
  - Re: [reiserfs-list] major security bug in reiserfs (may affect SuSE Linux) Marc Lehmann (Wed Jan 10 2001 - 20:55:36 CST)
    - Trend Micro's VirusWall: Multiple vunerabilities Joey Maier (Sun Jan 14 2001 - 19:05:22 CST)
- Re: [reiserfs-list] major security bug in reiserfs (may affect SuSE Linux) John Morrison (Tue Jan 09 2001 - 18:43:40 CST)
- Re: [reiserfs-list] major security bug in reiserfs (may affect SuSE Linux) Chris Mason (Tue Jan 09 2001 - 18:51:23 CST)
- Re: major security bug in reiserfs (may affect SuSE Linux) Marc Lehmann (Tue Jan 09 2001 - 20:27:27 CST)
- Re: major security bug in reiserfs (may affect SuSE Linux) Ben Greenbaum (Wed Jan 10 2001 - 11:14:43 CST)
  - Re: major security bug in reiserfs (may affect SuSE Linux) Thomas Mangin (Thu Jan 11 2001 - 02:29:03 CST)
- Re: major security bug in reiserfs (may affect SuSE Linux) Gigi Sullivan (Wed Jan 10 2001 - 14:28:59 CST)
- Re: major security bug in reiserfs (may affect SuSE Linux) Andreas Ferber (Wed Jan 10 2001 - 11:50:33 CST)
  - Re: major security bug in reiserfs (may affect SuSE Linux) Mark Glines (Wed Jan 10 2001 - 21:22:57 CST)
  - Re: major security bug in reiserfs (may affect SuSE Linux) Jack Coates (Wed Jan 10 2001 - 18:52:38 CST)
- Re: major security bug in reiserfs (may affect SuSE Linux) Christian Zuckschwerdt (Wed Jan 10 2001 - 13:52:16 CST)
  - Re: major security bug in reiserfs (may affect SuSE Linux) Ryan Russell (Wed Jan 10 2001 - 16:12:46 CST)
    - Re: major security bug in reiserfs (may affect SuSE Linux) Christian Zuckschwerdt (Wed Jan 10 2001 - 17:19:02 CST)
  - Re: major security bug in reiserfs (may affect SuSE Linux) Felix von Leitner (Thu Jan 11 2001 - 04:39:58 CST)
Glibc Local Root Exploit Charles Stevenson (Wed Jan 10 2001 - 01:06:48 CST)
- Re: Glibc Local Root Exploit Thomas T. Veldhouse (Wed Jan 10 2001 - 12:31:22 CST)
- Re: Glibc Local Root Exploit Ben Collins (Wed Jan 10 2001 - 13:22:22 CST)
- Re: Glibc Local Root Exploit Pedro Margate (Wed Jan 10 2001 - 12:40:39 CST)
- Re: Glibc Local Root Exploit Ben Greenbaum (Wed Jan 10 2001 - 19:53:03 CST)
- Re: Glibc Local Root Exploit Brian (Wed Jan 10 2001 - 14:57:19 CST)
- Re: Glibc Local Root Exploit Digital Overdrive (Wed Jan 10 2001 - 16:30:00 CST)
  - Re: Glibc Local Root Exploit Michal Zalewski (Thu Jan 11 2001 - 22:08:50 CST)
- Re: Glibc Local Root Exploit Digital Overdrive (Wed Jan 10 2001 - 16:43:31 CST)
- Re: Glibc Local Root Exploit Joe (Wed Jan 10 2001 - 15:36:24 CST)
- Re: Glibc Local Root Exploit Charles Stevenson (Wed Jan 10 2001 - 17:07:13 CST)
Re: Lotus Domino 5.0.5 Web Server vulnerability - reading fi Ben Greenbaum (Wed Jan 10 2001 - 11:04:30 CST)
- Re: Lotus Domino 5.0.5 Web Server vulnerability - reading fi Kai Rossner (Thu Jan 11 2001 - 09:12:15 CST)
Attackers can easily crash thttpd and possible find an exploitable buffer overflow banned-it (Wed Jan 10 2001 - 16:13:37 CST)
Vulnerable: Conference Room Professional-Developer Edititon. Murat - 2 (Wed Jan 10 2001 - 07:18:52 CST)
- Re: Vulnerable: Conference Room Professional-Developer Edititon. David Schwartz (Wed Jan 10 2001 - 18:58:03 CST)
Lotus Response to "Domino Server Directory Traversal Vulnerability" Katherine Spanbauer (Tue Jan 09 2001 - 20:16:22 CST)
- Re: Lotus Response to "Domino Server Directory Traversal Vulnerability" Vinci Chou (Thu Jan 11 2001 - 00:50:54 CST)
Immunix OS Security update for lots of temp file problems Greg KH (Wed Jan 10 2001 - 14:11:17 CST)
- Re: Immunix OS Security update for lots of temp file problems Greg KH (Wed Jan 10 2001 - 16:04:42 CST)
  - Re: Immunix OS Security update for lots of temp file problems Greg KH (Wed Jan 10 2001 - 16:19:58 CST)
- Re: Immunix OS Security update for lots of temp file problems Tomasz K³oczko (Wed Jan 10 2001 - 19:28:31 CST)
  - Re: Immunix OS Security update for lots of temp file problems Greg KH (Wed Jan 10 2001 - 19:47:39 CST)
proftpd 1.2.0rc2 -- example of bad coding Przemyslaw Frasunek (Wed Jan 10 2001 - 12:11:09 CST)
MDKSA-2001:001 - wu-ftpd update Linux Mandrake Security Team (Wed Jan 10 2001 - 19:33:51 CST)
MDKSA-2001:002 - arpwatch update Linux Mandrake Security Team (Wed Jan 10 2001 - 19:34:30 CST)
MDKSA-2001:010 - inn update Linux Mandrake Security Team (Wed Jan 10 2001 - 19:43:06 CST)
MDKSA-2001:008 - diffutils update Linux Mandrake Security Team (Wed Jan 10 2001 - 19:41:45 CST)
MDKSA-2001:007 - shadow-utils update Linux Mandrake Security Team (Wed Jan 10 2001 - 19:41:09 CST)
MDKSA-2001:004 - getty_ps update Linux Mandrake Security Team (Wed Jan 10 2001 - 19:35:49 CST)
MDKSA-2001:005 - rdist update Linux Mandrake Security Team (Wed Jan 10 2001 - 19:40:00 CST)
Re: Glibc Local Root Exploit (summary) Pedro Margate (Wed Jan 10 2001 - 17:57:03 CST)
MDKSA-2001:009 - mgetty update Linux Mandrake Security Team (Wed Jan 10 2001 - 19:42:24 CST)
MDKSA-2001:006 - gpm update Linux Mandrake Security Team (Wed Jan 10 2001 - 19:40:37 CST)
MDKSA-2001:003 - squid update Linux Mandrake Security Team (Wed Jan 10 2001 - 19:35:08 CST)
Fwd: Re: Memory leakage in ProFTPd leads to remote DoS (SIZE FTP); (Exploit Code) JeT Li (Wed Jan 10 2001 - 16:18:11 CST)
[slackware-security] glibc 2.2 local vulnerability on setuid binaries Slackware Security Team (Wed Jan 10 2001 - 22:29:57 CST)
Your girlfriend obviously understands as little as you do about Notes security. bwaleniusNETSCAPE.NET (Thu Jan 11 2001 - 05:56:03 CST)
Weakness in SpamCop e-mail quarantine David F. Skoll (Thu Jan 11 2001 - 12:02:38 CST)
EAGLE USA Shipment Tracking software dmelchNTPLX.NET (Thu Jan 11 2001 - 15:00:24 CST)
[RHSA-2001:001-05] glibc file read or write access local vulnerability bugzillaREDHAT.COM (Thu Jan 11 2001 - 16:33:00 CST)
MDKSA-2001:008-1 - diffutils update Linux Mandrake Security Team (Wed Jan 10 2001 - 23:26:14 CST)
thttpd vulnerability NOT the original thttpd - secure web server... Fred Cohen (Wed Jan 10 2001 - 23:11:37 CST)
Basilix Webmail System *.class *.inc Permission Vulnerability Tamer Sahin (Thu Jan 11 2001 - 18:33:28 CST)
[!H] Tcpdump 3.5.2 remote root vulnerability Zhodiac (Thu Jan 11 2001 - 03:36:06 CST)
- Shoutcast Server Buffer Crashes Server Kevin Wetzel (Thu Jan 18 2001 - 00:46:04 CST)
Backdoor in Borland InterBase Ben Greenbaum (Fri Jan 12 2001 - 09:44:58 CST)
[SECURITY] [DSA-011-1] New version of mgetty released debian-security-announceLISTS.DEBIAN.ORG (Wed Jan 10 2001 - 14:56:39 CST)
Re Glibc local root exploit Darian Lanx (Thu Jan 11 2001 - 02:55:43 CST)
Patch for Potential Vulnerability in Oracle Internet Application Server Security Alerts Oracle Corporation (Wed Jan 10 2001 - 14:12:29 CST)
UltraBoard cgi directory permission problem JW Oh (Thu Jan 11 2001 - 18:40:53 CST)
Trustix Security Advisory - diffutils squid Trustix Secure Linux Team (Fri Jan 12 2001 - 09:30:10 CST)
- Trustix Security Advisory - glibc Trustix Secure Linux Team (Sun Jan 21 2001 - 11:05:22 CST)
Solaris Arp Vulnerability Sor Pablo Sebastian (Thu Jan 11 2001 - 15:15:05 CST)
Microsoft Security Bulletin (MS01-001) (fwd) Ben Greenbaum (Fri Jan 12 2001 - 11:21:58 CST)
Re: Weakness in SpamCop e-mail quarantine (fixed) btpostMAIL.JULIANHAIGHT.COM (Fri Jan 12 2001 - 14:51:00 CST)
MDKSA-2001:001-1 - wu-ftpd update Linux Mandrake Security Team (Fri Jan 12 2001 - 12:31:02 CST)
MDKSA-2001:011 - linuxconf update Linux Mandrake Security Team (Fri Jan 12 2001 - 11:31:46 CST)
Sun Security Bulletin #00200 Dave Ahmed (Fri Jan 12 2001 - 13:25:48 CST)
Advanced Host Detection Guido Bakker (Mon Jan 15 2001 - 01:44:24 CST)
arp exploit Dave Ahmed (Fri Jan 12 2001 - 16:22:50 CST)
PHP Security Advisory - Apache Module bugs Zeev Suraski (Fri Jan 12 2001 - 13:14:10 CST)
- Re: PHP Security Advisory - Apache Module bugs Javi Polo (Tue Jan 16 2001 - 03:27:25 CST)
  - Re: PHP Security Advisory - Apache Module bugs Matthew Keller (Tue Jan 16 2001 - 12:49:34 CST)
  - Re: PHP Security Advisory - Apache Module bugs James Moore (Tue Jan 16 2001 - 14:40:02 CST)
exmh security vulnerability Noel A. Davis (Fri Jan 12 2001 - 17:06:54 CST)
RES: Basilix Webmail System *.class *.inc Permission Vulnerabilit y Erick Johny Maciel Bol (Sat Jan 13 2001 - 12:43:28 CST)
Re: DOSSING IIS 4 or IIS5 fully patched using GET /%0%0 HTTP/1 .0 Microsoft Security Response Center (Sun Jan 14 2001 - 01:26:37 CST)
Serious security flaw in SuSE rctab Paul Starzetz (Sat Jan 13 2001 - 12:15:51 CST)
- Re: Serious security flaw in SuSE rctab Roman Drahtmueller (Tue Jan 16 2001 - 20:58:56 CST)
Vulnerability in jaZip. teleh0r (Sun Jan 14 2001 - 11:05:48 CST)
Windows Media Player 7 and IE java vulnerability - executing arbitrary programs Georgi Guninski (Mon Jan 15 2001 - 10:10:10 CST)
- Re: Windows Media Player 7 and IE java vulnerability - executing arbitrary programs TAKAGI, Hiromitsu (Thu Jan 18 2001 - 07:36:07 CST)
Yahoo! Instant Messenger Shaun O'Callaghan (Sun Jan 14 2001 - 09:42:41 CST)
- Re: Yahoo! Instant Messenger Michael S. Fischer (Mon Jan 15 2001 - 11:26:39 CST)
  - Re: Yahoo! Instant Messenger Matthew Keller (Tue Jan 16 2001 - 11:22:07 CST)
    - Re: Yahoo! Instant Messenger Bill Fumerola (Tue Jan 16 2001 - 18:44:58 CST)
- Re: Yahoo! Instant Messenger Josh Higham (Tue Jan 16 2001 - 18:25:47 CST)
ICMP fragmentation required but DF set problems. antirez (Mon Jan 15 2001 - 00:15:48 CST)
- Re: ICMP fragmentation required but DF set problems. Ofir Arkin (Tue Jan 16 2001 - 00:09:00 CST)
  - Re: ICMP fragmentation required but DF set problems. antirez (Mon Jan 15 2001 - 17:31:54 CST)
- Re: ICMP fragmentation required but DF set problems. Peter Mathiasson (Tue Jan 16 2001 - 01:58:07 CST)
- Re: ICMP fragmentation required but DF set problems. Pavel Kankovsky (Sun Jan 21 2001 - 09:40:53 CST)
  - Re: ICMP fragmentation required but DF set problems. antirez (Mon Jan 22 2001 - 23:42:16 CST)
- Re: ICMP fragmentation required but DF set problems. Niels Provos (Mon Jan 22 2001 - 17:15:33 CST)
  - Re: ICMP fragmentation required but DF set problems. antirez (Tue Jan 23 2001 - 14:15:21 CST)
  - Re: ICMP fragmentation required but DF set problems. Mark.AndrewsNOMINUM.COM (Tue Jan 23 2001 - 17:52:27 CST)
    - Re: ICMP fragmentation required but DF set problems. Felix von Leitner (Thu Jan 25 2001 - 12:51:09 CST)
[MSY] Multiple vulnerabilities in splitvt Michel Kaempf (Sun Jan 14 2001 - 13:41:49 CST)
DOSSING IIS 4 or IIS5 fully patched using GET /%0%0 HTTP/1.0 NtWaK0 (Sat Jan 13 2001 - 10:53:17 CST)
Flash plugin write-overflow nealk (Mon Jan 15 2001 - 11:40:45 CST)
The Honeynet Project's "Forensic Challenge" challengeHONEYNET.ORG (Mon Jan 15 2001 - 02:59:10 CST)
Stack Overflow in MSHTML.DLL Thor Larholm (Mon Jan 15 2001 - 02:04:50 CST)
ifstatus 1.3 released Rob Thomas (Mon Jan 15 2001 - 08:35:03 CST)
Re: Trend Micro's VirusWall: Multiple vunerabilities (fwd) Joey Maier (Mon Jan 15 2001 - 09:53:20 CST)
FreeBSD Ports Security Advisory: FreeBSD-SA-01:03.bash1 FreeBSD Security Advisories (Mon Jan 15 2001 - 16:31:17 CST)
Vulnerabilities in OmniHTTPd default installation joetestaHUSHMAIL.COM (Mon Jan 15 2001 - 19:19:12 CST)
FreeBSD Ports Security Advisory: FreeBSD-SA-01:05.stunnel FreeBSD Security Advisories (Mon Jan 15 2001 - 16:32:09 CST)
Caldera Systems Security Advisory Caldera Support Info (Mon Jan 15 2001 - 18:06:47 CST)
- Caldera Systems Security Advisory Caldera Support Info (Mon Jan 15 2001 - 18:11:05 CST)
- Caldera Systems Security Advisory Caldera Support Info (Mon Jan 15 2001 - 18:08:22 CST)
FreeBSD Security Advisory: FreeBSD-SA-01:01.openssh FreeBSD Security Advisories (Mon Jan 15 2001 - 16:29:56 CST)
MDKSA-2001:001-2 - wu-ftpd update Linux Mandrake Security Team (Mon Jan 15 2001 - 20:57:43 CST)
FreeBSD Ports Security Advisory: FreeBSD-SA-01:06.zope FreeBSD Security Advisories (Mon Jan 15 2001 - 16:32:37 CST)
Buffer Overflow still exists in Netscape <= 4.76 fish stiqz (Mon Jan 15 2001 - 23:19:43 CST)
- Re: Buffer Overflow still exists in Netscape <= 4.76 Frank v Waveren (Tue Jan 16 2001 - 11:54:10 CST)
  - Re: Buffer Overflow still exists in Netscape <= 4.76 fish stiqz (Tue Jan 16 2001 - 13:40:03 CST)
    - Re: Buffer Overflow still exists in Netscape <= 4.76 Arthur Clune (Wed Jan 17 2001 - 06:54:17 CST)
    - Re: Buffer Overflow still exists in Netscape <= 4.76 Henryk Plötz (Tue Jan 23 2001 - 07:30:12 CST)
- Re: Buffer Overflow still exists in Netscape <= 4.76 Szilveszter Adam (Tue Jan 16 2001 - 12:08:57 CST)
FreeBSD Ports Security Advisory: FreeBSD-SA-01:04.joe FreeBSD Security Advisories (Mon Jan 15 2001 - 16:31:45 CST)
FreeBSD Ports Security Advisory: FreeBSD-SA-01:02.syslog-ng FreeBSD Security Advisories (Mon Jan 15 2001 - 16:30:30 CST)
iXsecurity.20001120.compaq-authbo.a ian.vitekIXSECURITY.COM (Tue Jan 16 2001 - 09:56:06 CST)
Bug in SSH1 secure-RPC support can expose users' private keys ssh2-bugsSSH.COM (Tue Jan 16 2001 - 11:14:49 CST)
- Re: Bug in SSH1 secure-RPC support can expose users' private keys c0n (Tue Jan 16 2001 - 21:59:45 CST)
- Re: Bug in SSH1 secure-RPC support can expose users' private keys Andy Polyakov (Thu Jan 18 2001 - 12:20:54 CST)
  - Re: Bug in SSH1 secure-RPC support can expose users' private keys Richard E. Silverman (Sat Jan 20 2001 - 22:50:41 CST)
INN temporary directory configuration Russ Allbery (Tue Jan 16 2001 - 14:57:20 CST)
[RHSA-2001:002-03] glibc local write access vulnerability bugzillaREDHAT.COM (Tue Jan 16 2001 - 14:04:00 CST)
New mailing list mobileBugs Lukasz Luzar (Wed Jan 17 2001 - 09:22:04 CST)
Solaris /usr/bin/write Vulnerability Pablo Sor (Wed Jan 17 2001 - 06:06:15 CST)
- Re: Solaris /usr/bin/write Vulnerability Konrad Rieck (Thu Jan 18 2001 - 11:27:52 CST)
[pkc] remote heap overflow in tinyproxy cyraxPKCREW.ORG (Wed Jan 17 2001 - 07:52:13 CST)
- Re: [pkc] remote heap overflow in tinyproxy Robert James Kaes (Wed Jan 17 2001 - 16:18:38 CST)
Fwd: Re: buffer overflow in konqi David Faure (Wed Jan 17 2001 - 13:56:42 CST)
Extended CFP IEEE SMC IA Workshop at West Point Welch, D. LTC IETD (Wed Jan 17 2001 - 14:50:26 CST)
Crimelabs Paper: Passive System Fingerprinting using Network Client Applications jose nazario (Wed Jan 17 2001 - 15:16:59 CST)
- Re: Crimelabs Paper: Passive System Fingerprinting using Network Client Applications Szilveszter Adam (Thu Jan 18 2001 - 03:15:44 CST)
Invalid WINS entries Byrne, David (Wed Jan 17 2001 - 15:35:49 CST)
- Re: Invalid WINS entries 3APA3A (Thu Jan 18 2001 - 04:04:29 CST)
- Re: Invalid WINS entries Paul L Schmehl (Wed Jan 17 2001 - 23:00:59 CST)
- Re: Invalid WINS entries Attonbitus Deus (Wed Jan 17 2001 - 18:54:06 CST)
- Re: Invalid WINS entries Fulton L. Preston Jr. (Wed Jan 17 2001 - 22:04:42 CST)
- Re: Invalid WINS entries Byrne, David (Thu Jan 18 2001 - 11:57:06 CST)
  - Re: Invalid WINS entries Attonbitus Deus (Thu Jan 18 2001 - 12:40:36 CST)
- Re: Invalid WINS entries Russ (Fri Jan 19 2001 - 02:43:27 CST)
HTML.dropper http-equivexcite.com (Wed Jan 17 2001 - 11:09:14 CST)
- Re: HTML.dropper Nick FitzGerald (Thu Jan 18 2001 - 18:15:25 CST)
- Re: HTML.dropper Shane Hird (Fri Jan 19 2001 - 03:19:45 CST)
Postaci allows arbitrary SQL query execution Berk Demir (Wed Jan 17 2001 - 13:49:44 CST)
Solaris /usr/bin/cu Vulnerability Pablo Sor (Wed Jan 17 2001 - 13:34:52 CST)
- Re: Solaris /usr/bin/cu Vulnerability Tomas Cibulka (Thu Jan 18 2001 - 13:19:10 CST)
  - Re: Solaris /usr/bin/cu Vulnerability Juergen P. Meier (Fri Jan 19 2001 - 02:36:24 CST)
    - Re: Solaris /usr/bin/cu Vulnerability Casper Dik (Fri Jan 19 2001 - 10:46:40 CST)
- Solaris /usr/bin/cu Vulnerability hal King (Tue Jan 23 2001 - 11:00:11 CST)
  - Re: Solaris /usr/bin/cu Vulnerability Konrad Rieck (Thu Jan 18 2001 - 16:57:12 CST)
    - Re: Solaris /usr/bin/cu Vulnerability Michael H. Warfield (Fri Jan 19 2001 - 09:50:45 CST)
    - Re: Solaris /usr/bin/cu Vulnerability Wietse Venema (Fri Jan 19 2001 - 12:02:45 CST)
  - Re: Solaris /usr/bin/cu Vulnerability optyx (Tue Jan 30 2001 - 14:01:10 CST)
- Re: Solaris /usr/bin/cu Vulnerability Dan Harkless (Mon Jan 29 2001 - 22:21:39 CST)
- Re: Solaris /usr/bin/cu Vulnerability Dan Harkless (Tue Jan 30 2001 - 23:18:32 CST)
FORW: Re: Bug in SSH1 secure-RPC support can expose users' private keys Dan Harkless (Wed Jan 17 2001 - 20:15:30 CST)
Re: Oracle WebDb engine brain-damage rholowczakHOTMAIL.COM (Wed Jan 17 2001 - 20:48:16 CST)
Ramen vs. Immunix Crispin Cowan (Wed Jan 17 2001 - 19:24:02 CST)
- Re: Ramen vs. Immunix Blake R. Swopes (Thu Jan 18 2001 - 14:11:03 CST)
ssh vendors security contacts Iván Arce (Wed Jan 17 2001 - 18:16:56 CST)
HP/UX /bin/cu vulnerability [ zorgon ] (Thu Jan 18 2001 - 04:40:41 CST)
numerous holes auto122896HUSHMAIL.COM (Wed Jan 17 2001 - 11:05:02 CST)
Licensing Firewall-1 DoS Attack Tim Hall (Wed Jan 17 2001 - 23:50:55 CST)
[CLA-2001:373] Conectiva Linux Security Announcement - php4 secureCONECTIVA.COM.BR (Thu Jan 18 2001 - 09:54:36 CST)
Re: Full text to Australian/British/American hacker book ``Underground'' released. Julian Assange (Thu Jan 18 2001 - 04:27:31 CST)
[PkC] Advisory #003: micq-0.4.6 remote buffer overflow recidjvo (Thu Jan 18 2001 - 04:01:59 CST)
- patch Re: [PkC] Advisory #003: micq-0.4.6 remote buffer overflow Seva Gluschenko (Wed Jan 24 2001 - 10:04:12 CST)
Initial Cryptanalysis of the RSA SecurID Algorithm Kingpin (Thu Jan 18 2001 - 15:22:57 CST)
MDKSA-2001:012 - glibc update Linux Mandrake Security Team (Thu Jan 18 2001 - 15:58:19 CST)
Patch for Potential Security Vulnerability in Oracle Connection Manager Control Security Alerts (Thu Jan 18 2001 - 15:21:52 CST)
MDKSA-2001:013 - php update Linux Mandrake Security Team (Thu Jan 18 2001 - 17:35:56 CST)
Immunix OS Security update for glibc Greg KH (Fri Jan 19 2001 - 00:45:31 CST)
BugTraq: EFS Win 2000 flaw Rickard Berglind (Fri Jan 19 2001 - 05:29:50 CST)
- Re: BugTraq: EFS Win 2000 flaw Alexander Ivanchev (Fri Jan 19 2001 - 19:11:02 CST)
  - Re: BugTraq: EFS Win 2000 flaw Dan Kaminsky (Wed Jan 24 2001 - 23:11:27 CST)
- Re: BugTraq: EFS Win 2000 flaw Russ (Fri Jan 19 2001 - 14:10:12 CST)
- Re: BugTraq: EFS Win 2000 flaw Bryce Walter (Mon Jan 22 2001 - 16:46:34 CST)
- Re: BugTraq: EFS Win 2000 flaw Fulmer, John (Tue Jan 23 2001 - 09:26:19 CST)
- Re: BugTraq: EFS Win 2000 flaw Russ (Tue Jan 23 2001 - 08:51:22 CST)
- Re: BugTraq: EFS Win 2000 flaw Grubin, Ben (Tue Jan 23 2001 - 17:07:27 CST)
- Re: BugTraq: EFS Win 2000 flaw Abe Getchell (Tue Jan 23 2001 - 19:09:31 CST)
- Re: BugTraq: EFS Win 2000 flaw John Wiltshire (Tue Jan 23 2001 - 19:49:51 CST)
  - Re: BugTraq: EFS Win 2000 flaw Ryan Russell (Wed Jan 24 2001 - 13:33:28 CST)
- Re: BugTraq: EFS Win 2000 flaw Ben Greenbaum (Wed Jan 24 2001 - 13:26:12 CST)
- Re: BugTraq: EFS Win 2000 flaw Rickard Berglind (Thu Jan 25 2001 - 09:20:47 CST)
- Re: BugTraq: EFS Win 2000 flaw Rickard Berglind (Thu Jan 25 2001 - 09:29:08 CST)
- Re: BugTraq: EFS Win 2000 flaw Rickard Berglind (Fri Jan 26 2001 - 02:44:15 CST)
Patch for Potential Buffer Overflow Vulnerabilities in Oracle Internet Directory Security Alerts (Thu Jan 18 2001 - 16:04:18 CST)
FW: HPUX security bulletins digest Boyce, Nick (Fri Jan 19 2001 - 07:29:36 CST)
Buffer overflow in MySQL < 3.23.31 Nicolas GREGOIRE (Thu Jan 18 2001 - 11:44:31 CST)
- Re: Buffer overflow in MySQL < 3.23.31 Joao Gouveia (Mon Jan 22 2001 - 22:29:17 CST)
Buffer overflow in bing Paul Starzetz (Fri Jan 19 2001 - 11:52:27 CST)
- Re: Buffer overflow in bing Pierre Beyssac (Fri Jan 19 2001 - 13:30:01 CST)
  - Re: Buffer overflow in bing Kris Kennaway (Mon Jan 22 2001 - 19:33:40 CST)
Re: MySQL < 3.23.31 Overflow [exploit] Luis Miguel Ferreia Silva (Fri Jan 19 2001 - 16:07:35 CST)
Multiple Vulnerabilities In FaSTream FTP++ (+ ICS Tftpserver DoS) SNS Research (Fri Jan 19 2001 - 14:38:33 CST)
Buffer overflows using 'objects' hook Paul Starzetz (Fri Jan 19 2001 - 11:48:52 CST)
Oracle JSP/SQLJSP handlers allow viewing files and executing JSP outside the web root Georgi Guninski (Mon Jan 22 2001 - 09:35:55 CST)
Immunix 6.2 OS Security update for glibc Greg KH (Sat Jan 20 2001 - 01:15:13 CST)
Watchguard Firewall Elevated Privilege Vulnerability Philip J Lewis (Sat Jan 20 2001 - 12:52:56 CST)
eEye Iris the Network traffic analyser DoS grazer (Sun Jan 21 2001 - 12:27:08 CST)
- Re: eEye Iris the Network traffic analyser DoS Marc Maiffret (Mon Jan 22 2001 - 11:04:43 CST)
Security Update: security problems in webmin CSSA-2001-004.0 Caldera Support Info (Fri Jan 19 2001 - 11:25:14 CST)
- Security Update: security problems in webmin CSSA-2001-004.0 Caldera Support Info (Mon Jan 29 2001 - 15:21:56 CST)
Re: MySQL Overflow + exploit [ops..sent a broken exploit :P] Luis Miguel Ferreia Silva (Fri Jan 19 2001 - 16:26:43 CST)
LocalWEB2000 Directory Traversal Vulnerability SNS Research (Fri Jan 19 2001 - 14:41:52 CST)
def-2001-05: Netscape Fasttrack Server Caching DoS Peter Gründl (Mon Jan 22 2001 - 06:30:33 CST)
- Re: def-2001-05: Netscape Fasttrack Server Caching DoS Peter W (Mon Jan 22 2001 - 22:38:20 CST)
[pkc] format bugs in icecast 1.3.8b2 and prior cyraxPKCREW.ORG (Sun Jan 21 2001 - 11:37:56 CST)
def-2001-03: GoodTech Systems FTP Connection DoS Peter Gründl (Mon Jan 22 2001 - 06:26:19 CST)
def-2001-04: Netscape Enterprise Server Dot-DoS Peter Gründl (Mon Jan 22 2001 - 06:28:37 CST)
[SECURITY] [DSA-012-1] New version of micq released debian-security-announceLISTS.DEBIAN.ORG (Mon Jan 22 2001 - 16:08:40 CST)
Reply to EFS note on Bugtraq Ryan Russell (Mon Jan 22 2001 - 19:28:50 CST)
- win32/memory locking (Re: Reply to EFS note on Bugtraq) Peter W (Tue Jan 23 2001 - 14:09:01 CST)
  - Re: win32/memory locking (Re: Reply to EFS note on Bugtraq) James Perry (Wed Jan 24 2001 - 03:15:01 CST)
    - Re: win32/memory locking (Re: Reply to EFS note on Bugtraq) Keith Ray (Wed Jan 24 2001 - 14:02:27 CST)
  - Re: win32/memory locking (Re: Reply to EFS note on Bugtraq) John Wiltshire (Tue Jan 23 2001 - 22:07:19 CST)
    - Re: win32/memory locking Werner Koch (Wed Jan 24 2001 - 13:07:44 CST)
[Security Announce] MDKSA-2001:014 - MySQL and php update Linux Mandrake Security Team (Mon Jan 22 2001 - 18:12:20 CST)
[SAFER] Security Bulletin 010123.EXP.1.10 Security Research Team (Tue Jan 23 2001 - 03:56:24 CST)
[RHSA-2001:003-07] Updated mysql packages available for Red Hat Linux 7 bugzillaREDHAT.COM (Tue Jan 23 2001 - 11:00:00 CST)
- [RHSA-2001:003-07] Updated mysql packages available for Red Hat Linux 7 redhat-announce-list-adminREDHAT.COM (Tue Jan 23 2001 - 11:00:00 CST)
Patch for Potential Vulnerability in Oracle XSQL Servlet Oracle Security Alerts (Tue Jan 23 2001 - 03:41:10 CST)
(no subject) Ben Li (Mon Jan 22 2001 - 22:24:14 CST)
- (no subject) nobodyREPLAY.COM (Wed Jan 31 2001 - 17:12:36 CST)
  - That BIND8 "exploit" attacks NAI Max Vision (Wed Jan 31 2001 - 22:57:54 CST)
[SECURITY] [DSA-015-1] New version of sash released debian-security-announceLISTS.DEBIAN.ORG (Mon Jan 22 2001 - 21:05:41 CST)
[SECURITY] [DSA-016-1] New version of wu-ftpd released debian-security-announceLISTS.DEBIAN.ORG (Tue Jan 23 2001 - 02:51:49 CST)
[SECURITY] [DSA-017-1] New version of jazip released debian-security-announceLISTS.DEBIAN.ORG (Tue Jan 23 2001 - 06:36:18 CST)
def-2001-06: Easycom/Safecom 10/100 Multiple DoS Peter Gründl (Tue Jan 23 2001 - 05:57:45 CST)
[SECURITY] [DSA-013-1] New version of MySQL released debian-security-announceLISTS.DEBIAN.ORG (Mon Jan 22 2001 - 20:58:13 CST)
[SECURITY] [DSA-014-1] New version of splitvt released debian-security-announceLISTS.DEBIAN.ORG (Mon Jan 22 2001 - 21:01:49 CST)
Re: MySQL < 3.23.31 Overflow [exploit] (fwd) Michael Widenius (Tue Jan 23 2001 - 09:47:42 CST)
[SECURITY] [DSA-014-2] Correction: New version of splitvt released debian-security-announceLISTS.DEBIAN.ORG (Tue Jan 23 2001 - 13:06:19 CST)
FreeBSD Ports Security Advisory: FreeBSD-SA-01:07.xfree86 FreeBSD Security Advisories (Tue Jan 23 2001 - 15:02:27 CST)
[SECURITY] [DSA 018-1] New version of tinyproxy released debian-security-announceLISTS.DEBIAN.ORG (Tue Jan 23 2001 - 16:05:27 CST)
FreeBSD Security Advisory: FreeBSD-SA-01:09.crontab FreeBSD Security Advisories (Tue Jan 23 2001 - 15:21:26 CST)
[CORE SDI ADVISORY] Weakl authentication in ATT's VNC Iván Arce (Tue Jan 23 2001 - 16:48:30 CST)
Security Update: CSSA-2001-005.0 password sniffing in kdesu Caldera Support Info (Tue Jan 23 2001 - 11:39:36 CST)
FreeBSD Security Advisory: FreeBSD-SA-01:08.ipfw FreeBSD Security Advisories (Tue Jan 23 2001 - 15:08:23 CST)
FreeBSD Security Advisory: FreeBSD-SA-01:10.bind FreeBSD Security Advisories (Tue Jan 23 2001 - 15:22:52 CST)
Make The Netopia R9100 Router To Crash Julien Henry (Tue Jan 23 2001 - 15:59:39 CST)
- Re: Make The Netopia R9100 Router To Crash Rob Tashjian (Wed Jan 24 2001 - 09:42:45 CST)
[SECURITY] [DSA-016-2] Correction: New version of wu-ftpd released debian-security-announceLISTS.DEBIAN.ORG (Tue Jan 23 2001 - 17:25:16 CST)
[SAFER] Security Bulletin 010124.EXP.1.11 Security Research Team (Wed Jan 24 2001 - 09:41:24 CST)
iPlanet FastTrack/Enterprise 4.1 DoS clarifications Peter W (Wed Jan 24 2001 - 05:34:52 CST)
- Re: iPlanet FastTrack/Enterprise 4.1 DoS clarifications Calvin Tait (Wed Jan 24 2001 - 14:45:46 CST)
  - Re: iPlanet FastTrack/Enterprise 4.1 DoS clarifications Scott Howard (Fri Jan 26 2001 - 08:33:42 CST)
- Re: iPlanet FastTrack/Enterprise 4.1 DoS clarifications Peter Gründl (Wed Jan 24 2001 - 13:53:51 CST)
Hotmail spoofing with css gregory duchemin (Wed Jan 24 2001 - 00:57:53 CST)
[SECURITY] [DSA-016-3] Correction: New version of wu-ftpd released debian-security-announceLISTS.DEBIAN.ORG (Wed Jan 24 2001 - 01:43:29 CST)
[RHSA-2001:004-04] String format vulnerability in icecast bugzillaREDHAT.COM (Wed Jan 24 2001 - 12:17:00 CST)
shell on IIS server with Unicode using *only* HTTP Roelof Temmingh (Wed Jan 24 2001 - 18:30:10 CST)
- Re: shell on IIS server with Unicode using *only* HTTP Marc Maiffret (Thu Jan 25 2001 - 14:47:43 CST)
iC0N first annual security convention. Ryan Yagatich (Wed Jan 24 2001 - 18:42:56 CST)
[RHSA-2000:136-10] Updated PHP packages available for Red Hat Linux 5.2, 6.x, and 7 bugzillaREDHAT.COM (Wed Jan 24 2001 - 14:11:00 CST)
Modifed images can lead to JavaScript/VBScript execution in AIM Dont Know Guilt (Wed Jan 24 2001 - 10:49:54 CST)
Security update: CSSA-2001-007.0 glibc security problems Caldera Support Info (Wed Jan 24 2001 - 14:04:50 CST)
[SAFER] Security Bulletin 010125.EXP.1.12 Security Research Team (Thu Jan 25 2001 - 07:20:10 CST)
[SAFER] Security Bulletin 010125.DOS.1.5 Security Research Team (Thu Jan 25 2001 - 06:04:34 CST)
ecepass - proof of concept code for FreeBSD ipfw bypass Roelof Temmingh (Thu Jan 25 2001 - 07:04:30 CST)
iWS/NES SHTML Overflow (exploit) Security Research Team (Thu Jan 25 2001 - 07:01:02 CST)
[RHSA-2001:005-03] New micq packages are available redhat-watch-list-adminREDHAT.COM (Thu Jan 25 2001 - 09:46:00 CST)
[CLA-2001:374] Conectiva Linux Security Announcement - icecast secureCONECTIVA.COM.BR (Thu Jan 25 2001 - 09:58:56 CST)
[SECURITY] [DSA 019-1] New version of squid released debian-security-announceLISTS.DEBIAN.ORG (Thu Jan 25 2001 - 10:51:53 CST)
[SECURITY] [DSA 020-1] New versions of PHP4 released debian-security-announceLISTS.DEBIAN.ORG (Thu Jan 25 2001 - 10:58:54 CST)
[CLA-2001:375] Conectiva Linux Security Announcement - MySQL secureCONECTIVA.COM.BR (Thu Jan 25 2001 - 12:22:04 CST)
Allaire Security Bulletin (ASB01-02) JRun 3.0 Ben Greenbaum (Thu Jan 25 2001 - 12:49:05 CST)
- Re: Allaire Security Bulletin (ASB01-02) JRun 3.0 Change Ling (Thu Jan 25 2001 - 15:23:54 CST)
SecurityFocus.com Temporary Mailing List Shut-Down listadminSECURITYFOCUS.COM (Thu Jan 25 2001 - 16:53:08 CST)
FreeBSD Security Advisory: FreeBSD-SA-01:09.crontab [REVISED] FreeBSD Security Advisories (Thu Jan 25 2001 - 15:01:37 CST)
mIRC allows password protection to be bypassed scalar (Thu Jan 25 2001 - 17:35:56 CST)
America Online 5.0 contains a buffer overflow scalar (Thu Jan 25 2001 - 17:39:18 CST)
Microsoft Security Bulletin MS01-002 (version 2.0) (fwd) Ben Greenbaum (Fri Jan 26 2001 - 09:19:50 CST)
Borderware v6.1.2 ping DoS vulnerability Duane Dunston (Fri Jan 26 2001 - 08:22:23 CST)
Yet Another IBM WebSphere Showcode Vulerability mhalls (Thu Jan 25 2001 - 17:13:33 CST)
[SECURITY] [DSA 022-1] New version of exmh released debian-security-announceLISTS.DEBIAN.ORG (Fri Jan 26 2001 - 10:29:01 CST)
Wingate 4.1.1, new year 's bug: UPDATE gregory duchemin (Thu Jan 25 2001 - 16:15:11 CST)
jazip 0.32 local exploit n33dl3r (Thu Jan 25 2001 - 19:05:42 CST)
- Re: jazip 0.32 local exploit Peter S Galbraith (Fri Jan 26 2001 - 14:05:18 CST)
SuSE Security Announcement: shlibs/glibc (SuSE-SA:2001:01) Roman Drahtmueller (Fri Jan 26 2001 - 08:55:17 CST)
- summary of recent glibc bugs (Re: SuSE Security Announcement: shlibs/glibc (SuSE-SA:2001:01)) Solar Designer (Fri Jan 26 2001 - 20:55:25 CST)
  - Re: summary of recent glibc bugs (Re: SuSE Security Announcement: shlibs/glibc (SuSE-SA:2001:01)) Matt Zimmerman (Mon Jan 29 2001 - 14:17:17 CST)
    - Re: summary of recent glibc bugs (Re: SuSE Security Announcement: shlibs/glibc (SuSE-SA:2001:01)) Solar Designer (Wed Jan 31 2001 - 02:52:43 CST)
[SECURITY] [DSA 021-1] New version of Apache released debian-security-announceLISTS.DEBIAN.ORG (Fri Jan 26 2001 - 02:35:38 CST)
Microsoft Security Bulletin (MS01-003) (fwd) Ben Greenbaum (Fri Jan 26 2001 - 10:44:02 CST)
ntsecurity.nu advisory: Winsock Mutex Vulnerability in Windows NT 4.0 SP6 and below Arne Vidstrom (Fri Jan 26 2001 - 12:23:59 CST)
spoofing hotmail with css (exploit) gregory duchemin (Fri Jan 26 2001 - 12:28:17 CST)
format string vulnerability in mars_nwe 0.99pl19 Przemyslaw Frasunek (Fri Jan 26 2001 - 15:55:19 CST)
Remote Command Execution in guestserver.cgi + exploit fish stiqz (Mon Jan 29 2001 - 02:24:55 CST)
MDKSA-2001:015 - exmh update Linux Mandrake Security Team (Fri Jan 26 2001 - 12:37:03 CST)
MDKSA-2001:016 - webmin update Linux Mandrake Security Team (Fri Jan 26 2001 - 15:17:42 CST)
[SECURITY] [DSA 025-1] New sparc packages of OpenSSH released debian-security-announceLISTS.DEBIAN.ORG (Sun Jan 28 2001 - 05:39:54 CST)
NewsDaemon remote administrator access Forrest J. Cavalier III (Fri Jan 26 2001 - 13:30:25 CST)
[SECURITY] [DSA 023-1] New version of inn2 released debian-security-announceLISTS.DEBIAN.ORG (Sun Jan 28 2001 - 06:25:37 CST)
Hyperseek 2000 Search Engine - "show directory & files" bug MC GaN (Sun Jan 28 2001 - 01:28:52 CST)
[SECURITY] [DSA 025-2] New sparc packages of OpenSSH released debian-security-announceLISTS.DEBIAN.ORG (Sun Jan 28 2001 - 12:34:51 CST)
MDKSA-2001:014-1 MySQL update Linux Mandrake Security Team (Fri Jan 26 2001 - 13:18:02 CST)
[SECURITY] [DSA 024-1] New version of cron released debian-security-announceLISTS.DEBIAN.ORG (Sun Jan 28 2001 - 06:21:46 CST)
Trustix Security Advisory - bind, openldap Trustix Secure Linux Team (Mon Jan 29 2001 - 08:12:23 CST)
ntop -i local exploit Paul Starzetz (Mon Jan 29 2001 - 05:54:42 CST)
- Re: ntop -i local exploit Bill Fumerola (Mon Jan 29 2001 - 15:40:52 CST)
[COVERT-2001-01] Multiple Vulnerabilities in BIND COVERT Labs (Mon Jan 29 2001 - 08:31:55 CST)
Windows and IIS Maceo (Mon Jan 29 2001 - 12:01:24 CST)
- Re: Windows and IIS Jesper M. Johansson (Wed Jan 31 2001 - 17:50:34 CST)
[CORE SDI ADVISORY] WinVNC client buffer overflow Iván Arce (Mon Jan 29 2001 - 16:04:59 CST)
MDKSA-2001:017 - bind update Linux Mandrake Security Team (Mon Jan 29 2001 - 11:39:15 CST)
[slackware-security] multiple vulnerabilities in bind 8.x Slackware Security Team (Mon Jan 29 2001 - 11:07:59 CST)
CSSA-2001-006.0 MySQL buffer overflow Caldera Support Info (Mon Jan 29 2001 - 12:04:33 CST)
FreeBSD Security Advisory: FreeBSD-SA-01:12.periodic [REVISED] FreeBSD Security Advisories (Mon Jan 29 2001 - 15:06:12 CST)
FreeBSD Ports Security Advisory: FreeBSD-SA-01:14.micq FreeBSD Security Advisories (Mon Jan 29 2001 - 15:24:12 CST)
FreeBSD Ports Security Advisory: FreeBSD-SA-01:16.mysql FreeBSD Security Advisories (Mon Jan 29 2001 - 15:31:34 CST)
[CLA-2001:377] Conectiva Linux Security Announcement - bind secureCONECTIVA.COM.BR (Mon Jan 29 2001 - 13:25:23 CST)
[SECURITY] [DSA 026-1] New version of BIND 8 released debian-security-announceLISTS.DEBIAN.ORG (Mon Jan 29 2001 - 11:11:30 CST)
FreeBSD Ports Security Advisory: FreeBSD-SA-01:17.exmh2 FreeBSD Security Advisories (Mon Jan 29 2001 - 15:35:28 CST)
Nobreak Tecnologies CrazyWWWBoard Remote Buffer Overflow Vulnerability You, Jin-Ho (Tue Jan 30 2001 - 02:21:49 CST)
FreeBSD Security Advisory: FreeBSD-SA-01:13.sort FreeBSD Security Advisories (Mon Jan 29 2001 - 15:19:19 CST)
Immunix OS Security update for bind Greg KH (Tue Jan 30 2001 - 01:52:10 CST)
[CLA-2001:378] Conectiva Linux Security Announcement - kde2 secureCONECTIVA.COM.BR (Tue Jan 30 2001 - 10:11:32 CST)
fingerprinting BIND 9.1.0 Max Vision (Mon Jan 29 2001 - 17:50:31 CST)
- Re: fingerprinting BIND 9.1.0 Eric Limpens (Tue Jan 30 2001 - 13:28:32 CST)
- Re: fingerprinting BIND 9.1.0 buglistSHIKAHR.COM.INTER.NET (Tue Jan 30 2001 - 19:14:20 CST)
  - Re: fingerprinting BIND 9.1.0 William D. Colburn (aka Schlake) (Wed Jan 31 2001 - 09:15:01 CST)
SuSE Security Announcement: kdesu Sebastian Krahmer (Tue Jan 30 2001 - 08:16:08 CST)
CSSA-2001-008.0 BIND buffer overflow Caldera Support Info (Mon Jan 29 2001 - 14:23:08 CST)
FreeBSD Ports Security Advisory: FreeBSD-SA-01:15.tinyproxy FreeBSD Security Advisories (Mon Jan 29 2001 - 15:27:35 CST)
EFS Flaw - Tidbit Attonbitus Deus (Tue Jan 30 2001 - 10:07:45 CST)
[CORE SDI ADVISORY] WinVNC server buffer overflow Iván Arce (Mon Jan 29 2001 - 16:11:30 CST)
[RHSA-2001:007-03] Updated bind packages available redhat-watch-list-adminREDHAT.COM (Mon Jan 29 2001 - 15:21:00 CST)
hotmail css/div exploit: new version gregory duchemin (Tue Jan 30 2001 - 09:16:29 CST)
[RHSA-2001:006-03] Updated inetd packages available for Red Hat Linux 6.2 redhat-watch-list-adminREDHAT.COM (Tue Jan 30 2001 - 09:53:00 CST)
Security hole in Virus Buster 2001 Ichinose Sayo (Tue Jan 30 2001 - 04:37:36 CST)
FreeBSD Security Advisory: FreeBSD-SA-01:11.inetd [REVISED] FreeBSD Security Advisories (Mon Jan 29 2001 - 15:06:31 CST)
.htr bug still exist after applying MS patches. System1 (Tue Jan 30 2001 - 03:44:48 CST)
DOS Vulnerability in SlimServe HTTPd joetestaHUSHMAIL.COM (Tue Jan 30 2001 - 14:41:52 CST)
Microsoft Security Bulletin (MS01-005) (fwd) Ben Greenbaum (Tue Jan 30 2001 - 14:19:08 CST)
Microsoft Security Bulletin (MS01-004) (fwd) Ben Greenbaum (Tue Jan 30 2001 - 19:33:03 CST)
Microsoft has just fixed hotmail/css hole gregory duchemin (Tue Jan 30 2001 - 16:57:30 CST)
SuSE Security Announcement: bind8 (SuSE-SA:2001:03) Roman Drahtmueller (Tue Jan 30 2001 - 19:18:25 CST)
Buffer overflow in old ssh-1.2.2x-afs-kerberosv4 patches Dug Song (Tue Jan 30 2001 - 12:54:39 CST)
[TL-Security-Announce] LPRng-3.6.26-1 TLSA2001001-1 securityTURBOLINUX.COM (Tue Jan 30 2001 - 13:58:34 CST)
[SPSadvisory#40]Solaris7/8 ximp40 shared library buffer overflow UNYUN (Wed Jan 31 2001 - 07:24:32 CST)
[SPSadvisory#41]Apple Quick Time Plug-in Buffer Overflow UNYUN (Wed Jan 31 2001 - 07:25:25 CST)
- Re: [SPSadvisory#41]Apple Quick Time Plug-in Buffer Overflow Dan Harkless (Wed Jan 31 2001 - 14:53:33 CST)
SuSe / Debian man package format string vulnerability Joao Gouveia (Wed Jan 31 2001 - 08:22:01 CST)
- Re: SuSe / Debian man package format string vulnerability Roman Drahtmueller (Wed Jan 31 2001 - 13:43:55 CST)
Cisco Security Advisory: Cisco Content Services Switch Vulnerability Cisco Systems Product Security Incident Response Team (Wed Jan 31 2001 - 09:30:00 CST)
MDKSA-2001:018 - kdesu update Linux Mandrake Security Team (Wed Jan 31 2001 - 15:17:31 CST)
FreeBSD Security Advisory: FreeBSD-SA-01:18.bind FreeBSD Security Advisories (Wed Jan 31 2001 - 15:23:21 CST)
Security Advisory: BIND buffer overflow CSSA-2001-008.1 Caldera Support Info (Wed Jan 31 2001 - 11:26:49 CST)
Bind8 exploit Anonymous (Wed Jan 31 2001 - 16:06:19 CST)
Security information for dollars? Theo de Raadt (Wed Jan 31 2001 - 19:02:48 CST)
- Re: Security information for dollars? Paul A Vixie (Thu Feb 01 2001 - 01:35:34 CST)
- Re: Security information for dollars? Jim Reid (Thu Feb 01 2001 - 03:26:06 CST)
Bind 8 Exploit - Trojan Matt Lewis (Wed Jan 31 2001 - 22:09:33 CST)
- Re: Bind 8 Exploit - Trojan Eldridge, Brett (Thu Feb 01 2001 - 11:09:02 CST)
- Re: Bind 8 Exploit - Trojan Yohanes Nugroho (Thu Feb 01 2001 - 07:45:23 CST)
- Re: Bind 8 Exploit - Trojan Sergei (Thu Feb 01 2001 - 08:01:24 CST)
netfilter module to make the ICMP DF set but frag req more hard antirez (Wed Jan 31 2001 - 21:09:20 CST)
kyxspam: isc loses mind Dragos Ruiu (Thu Feb 01 2001 - 07:03:14 CST)
offending code of bind trojan Perry Harrington (Thu Feb 01 2001 - 03:03:31 CST)
String vun. in m4 macro processor (same as in man) Tomasz Ku¼niar (Thu Feb 01 2001 - 07:20:20 CST)
MDKSA-2001:019 - xemacs update Linux Mandrake Security Team (Wed Jan 31 2001 - 23:00:28 CST)

Last message date: Thu Feb 01 2001 - 13:53:58 CST
Archived on: Thu Feb 01 2001 - 13:54:00 CST

550 messages sorted by: [ author ] [ date ] [ subject ]