Bugtraq: by author
RSS Feed
About List
All Lists
Previous period
302 messagesstarting May 21 02 andending May 27 02
Date index |Thread index |Author index
2c79cbe14ac7d0b8472d3f129fa1df55
YoungZSoft CMailServer overflow, PATCH + WAREZ!@#!2c79cbe14ac7d0b8472d3f129fa1df55 (May 21)
3APA3A
Re[2]: dH team & SECURITY.NNOV: special device access, information leakage and DoS in Outlook Express3APA3A (May 17)
Re: Fwd: GOBBLES RESPONSE TO THE BLUE BOAR ("fixed version")3APA3A (May 14)
Re: Nearly undocumented NT security feature - the solution to executable attachments?3APA3A (May 10)
Adam [wp-ckkl]
IE/OE6.0 cannot handle malformed XBM filesAdam [wp-ckkl] (Apr 30)
Alun Jones
Re: Problems with various windows FTP serversAlun Jones (May 31)
Re: Unfortunate interaction between EZMLM and MessageLabs virus scanningAlun Jones (May 10)
Anders Nordby
Trojan/backdoor in fragroute 1.2 source distributionAnders Nordby (May 31)
Andreas Sandblad
IE dot bug - Sandblad advisory #7Andreas Sandblad (May 20)
Opera javascript protocoll vulnerability [Sandblad advisory #6]Andreas Sandblad (May 15)
Andrew Clover
Re: GOBBLES SECURITY ADVISORY #33Andrew Clover (May 11)
Re: Update and comments on the MS02-023 patch, holes still remainAndrew Clover (May 17)
Andrew Hintz (Drew)
SafeWeb Vulnerability - Fingerprinting Websites Using Traffic AnalysisAndrew Hintz (Drew) (May 10)
Andrew . Lopacki
Cisco IDS Device Manager 3.1.1 AdvisoryAndrew . Lopacki (May 24)
awacs
2 security problem Quantum SNAP serverawacs (May 30)
Bao Dai Nhan
Another vulnerability in hosting controllerBao Dai Nhan (May 20)
Beck Mr . R
Re: Misformated message header causes msn messenger to crashBeck Mr . R (May 24)
Ben Bucksch
Beonex Communicator 0.8-pre based on Mozilla 1.0-branch releasedBen Bucksch (May 03)
Benjamin Keller
FW: New Macromedia Security Zone Bulletins PostedBenjamin Keller (May 10)
Ben Laurie
Re: Yahoo Messenger - Multiple VulnerabilitiesBen Laurie (May 27)
Unfortunate interaction between EZMLM and MessageLabs virus scanningBen Laurie (May 08)
big bon
Re: Logitech Keyboard Insecuritybig bon (May 03)
Binken, Rens
KPMG-2002018: Pointsec for PalmOS PIN disclosureBinken, Rens (May 07)
blackshell
ldap vulnerabilitiesblackshell (May 06)
Blue Boar
Re: GOBBLES SECURITY ADVISORY #33Blue Boar (May 10)
Boyce, Nick
FW: HP-UX security bulletins digestBoyce, Nick (May 30)
BrainRawt .
LevCGI.coms NetPad 1.0.2 multiple vulnerabilitiesBrainRawt . (May 14)
Brian Eckman
Re: cqure.net.20020408.netware_nwftpd.aBrian Eckman (May 08)
bugzilla
[RHSA-2002:094-08] Updated tcpdump packages fix buffer overflowbugzilla (May 30)
[RHSA-2002:070-06] Updated mod_python packages availablebugzilla (May 02)
[RHSA-2002:070-08] Updated mod_python packages availablebugzilla (May 08)
[RHSA-2002:064-12] Updated Nautilus for symlink vulnerability writing metadata filesbugzilla (May 02)
[RHSA-2002:065-13] Updated sharutils package fixes uudecode issuebugzilla (May 14)
[RHSA-2002:092-11] Buffer overflow in UW imap daemonbugzilla (May 24)
[RHSA-2002:047-10] Updated fetchmail packages availablebugzilla (May 21)
[RHSA-2002:086-05] Netfilter information leakbugzilla (May 09)
[RHSA-2002:079-13] Updated Mozilla packages fix a security issuebugzilla (May 15)
[RHSA-2002:081-06] perl-Digest-MD5 UTF8 bug results in incorrect MD5 sumsbugzilla (May 10)
[RHSA-2002:078-04] Updated mpg321 packages availablebugzilla (May 16)
[RHSA-2002:062-08] Insecure DocBook stylesheet optionbugzilla (May 01)
[RHSA-2002:084-17] Updated nss_ldap packages fix pam_ldap vulnerabilitybugzilla (May 27)
Burc Yildirim
1st Linux and Free Software Festival - Ankara 2002Burc Yildirim (May 10)
ByteRage
Re: Problems with various windows FTP serversByteRage (May 28)
capzlock
CAPZLOCK SECURITY ADVISORY NO. 1capzlock (May 20)
CERT Advisory
CERT Advisory CA-2002-13 Buffer Overflow in Microsoft's MSN Chat ActiveXCERT Advisory (May 10)
CERT Advisory CA-2002-12 Format String Vulnerability in ISC DHCPDCERT Advisory (May 08)
CERT Advisory CA-2002-10 Format String Vulnerability in rpc.rwalldCERT Advisory (May 01)
CERT Advisory CA-2002-11 Heap Overflow in Cachefs Daemon (cachefsd)CERT Advisory (May 06)
Chad Loder
Re: dH team & SECURITY.NNOV: special device access, information leakage and DoS in Outlook ExpressChad Loder (May 17)
Charles M. Richmond
Re: eSecurityOnline Security Advisory 3761 - Sun Solaris lbxproxy dis play name buffer overflow vulnerabilityCharles M. Richmond (May 01)
CHINANSL Security Team
Windows 2000 Server IIS 5.0 .ASP Overflow ExploitCHINANSL Security Team (May 04)
Christian decoder Holler
Flaw caused by default rulesets in many desktop firewalls under windowsChristian decoder Holler (May 10)
Re: Flaw caused by default rulesets in many desktop firewalls under windowsChristian decoder Holler (May 11)
Cisco Systems Product Security Incident Response Team
Cisco Security Advisory: Multiple Vulnerabilities in Cisco IP TelephonesCisco Systems Product Security Incident Response Team (May 22)
Cisco Security Advisory: ATA-186 Password Disclosure VulnerabilityCisco Systems Product Security Incident Response Team (May 23)
Cisco Security Advisory: NTP vulnerabilityCisco Systems Product Security Incident Response Team (May 08)
Cisco Security Advisory: Content Service Switch HTTP Processing VulnerabilitiesCisco Systems Product Security Incident Response Team (May 15)
Cisco Security Advisory: CBOS - Improving Resilience to DoS AttacksCisco Systems Product Security Incident Response Team (May 23)
Cisco Security Advisory: Transparent Cache Engine and Content Engine TCP Relay VulnerabilityCisco Systems Product Security Incident Response Team (May 15)
Coppage, Ross
ATMSNMPD Vulnerable but not AddressedCoppage, Ross (May 13)
Corey J. Steele
Re: cqure.net.20020412.bordermanager_36_mv1.aCorey J. Steele (May 10)
COULOMBE, TROY
Catalyst 4000COULOMBE, TROY (May 21)
Crist J. Clark
Re: ps under FreeBSDCrist J. Clark (May 20)
Re: ps under FreeBSDCrist J. Clark (May 20)
CSICONdotNET
[CSICON] - Registration is now open for CSICONCSICONdotNET (May 20)
.-=D3FC0N/=-.
Re: MS02-023 does not patch actual issue!.-=D3FC0N/=-. (May 16)
Damir Rajnovic
Cisco IOS ICMP redirect DoS - Cisco's responseDamir Rajnovic (May 21)
Daniel Nyström
[[ TH 026 Inc. ]] SA #3 - Shambala Server 4.5, Directory Traversal and DoSDaniel Nyström (May 31)
Darren W. MacDonald
RE: Xerox DocuTech problemsDarren W. MacDonald (May 18)
Dave Ahmad
Foundstone Advisory - Buffer Overflow in Ipswitch Imail 7.1 and prior (fwd)Dave Ahmad (May 20)
GOBBLES SECURITY ADVISORY #33Dave Ahmad (May 10)
(SSRT0822) Security Bulletin - Compaq & Java Proxy/VM Potential Security Vulnerabilities (fwd)Dave Ahmad (May 14)
Re: OpenBSD local DoS and root exploitDave Ahmad (May 09)
AdministriviaDave Ahmad (May 05)
FW: Fscan advisory (fwd)Dave Ahmad (May 01)
Dave Oliver
Re: Intel D845HV/WN/PT series motherboard vulnerabilityDave Oliver (May 03)
David Endler
US TurboLinux Security Severely Out of DateDavid Endler (May 30)
Evolution of Cross-Site Scripting AttacksDavid Endler (May 21)
david evlis reign
[DER Adv #7] - Multiple Vulnerabilities in solaris in.rarpddavid evlis reign (May 22)
[DER ADV#8] - Local off by one in CVSDdavid evlis reign (May 25)
David Litchfield
To Provide a Patch or to Service Pack?David Litchfield (May 29)
David McKenzie
RE: MS02-023 does not patch actual issue!David McKenzie (May 16)
Dax Kelson
Re: Linux kernel 2.4 "weak end host" issue (previously discussed here as "arp problem")Dax Kelson (May 11)
der Mouse
Re: Unfortunate interaction between EZMLM and MessageLabs virus scanningder Mouse (May 11)
Dug Song
Re: Trojan/backdoor in fragroute 1.2 source distributionDug Song (May 31)
ellipse
Re: To Provide a Patch or to Service Pack?ellipse (May 30)
E M
Sonicwall SOHO Content Blocking Script Injection, LogFile Denial of ServiceE M (May 17)
Emre Yildirim
Re: ATMSNMPD Vulnerable but not AddressedEmre Yildirim (May 13)
ERRor
dH team & SECURITY.NNOV: special device access, information leakage and DoS in Outlook ExpressERRor (May 15)
dH team & SECURITY.NNOV: A variant of "Word Mail Merge" vulnerabilityERRor (May 14)
Felix von Leitner
Linux kernel 2.4 "weak end host" issue (previously discussed here as "arp problem")Felix von Leitner (May 10)
Florian Hobelsberger / BlueScreen
Lysias Lidik Webserver suffers from a Directory Traversal VulnerabilityFlorian Hobelsberger / BlueScreen (May 07)
Florian Weimer
Re: [RHSA-2002:047-10] Updated fetchmail packages availableFlorian Weimer (May 31)
fozzy
OpenBSD local DoS and root exploitfozzy (May 09)
Frank
b2 php remote command executionFrank (May 06)
Frank Hecker
Fix for Mozilla XMLHttpRequest file disclosure vulnerabilityFrank Hecker (May 03)
Frank Knobbe
Re: Flaw caused by default rulesets in many desktop firewalls underwindowsFrank Knobbe (May 11)
FreeBSD Security Advisories
FreeBSD Security Advisory FreeBSD-SA-02:26.acceptFreeBSD Security Advisories (May 29)
FreeBSD Security Advisory FreeBSD-SA-02:25.bzip2FreeBSD Security Advisories (May 20)
FreeBSD Security Advisory FreeBSD-SA-02:27.rcFreeBSD Security Advisories (May 29)
FreeBSD Security Advisory FreeBSD-SA-02:24.k5suFreeBSD Security Advisories (May 20)
FX
Cisco IOS ICMP redirect DoSFX (May 21)
Gabriel A. Maggiotti
Re: Phorum 3.3.2a remote command executionGabriel A. Maggiotti (May 18)
George Capehart
Re: Verisign PKI: anyone to subordinate CAGeorge Capehart (May 20)
George Staikos
Re: route of #phrack is a funny man!George Staikos (May 24)
Georgi Guninski
Re: Fwd: GOBBLES RESPONSE TO THE BLUE BOAR ("fixed version")Georgi Guninski (May 14)
Re: To Provide a Patch or to Service Pack?Georgi Guninski (May 30)
gobbles
Fwd: GOBBLES RESPONSE TO THE BLUE BOAR ("fixed version")gobbles (May 11)
[GOBBLES] reflections on talkd holegobbles (May 24)
route of #phrack is a funny man!gobbles (May 21)
Gregory Neil Shapiro
File Locking Local Denial of Service; Impact on sendmailGregory Neil Shapiro (May 24)
GreyMagic Software
MS02-023 does not patch actual issue!GreyMagic Software (May 16)
UPDATE (1-May-2002): Reading local files in Netscape 6 and Mozilla (GM#001-NS)GreyMagic Software (May 04)
Reading ANY local file in Opera (GM#001-OP)GreyMagic Software (May 27)
Guillaume PELAT
Grsecurity problem - modifying "read-only kernel"Guillaume PELAT (May 17)
Re: ps under FreeBSDGuillaume PELAT (May 20)
Guy Van Sanden
SECURITY vulnerability in ECS-K7S5A(L) boardsGuy Van Sanden (May 30)
hdlkha
Hosting Controller still have dangerous bugs!hdlkha (May 17)
hkvrg thdftghr
VP-ASP shopping cart software.hkvrg thdftghr (May 27)
http-equiv () excite com
Classic Cross Site Scripting: Gibson Research Corporationhttp-equiv () excite com (May 01)
Information Anarchy 2K01
Two (2) Critical Path inJoin V4.0 Directory Server IssuesInformation Anarchy 2K01 (May 10)
InterWN Labs
Hole in AOL Instant MessengerInterWN Labs (May 10)
Ismael Briones
Vulnerability in 3Com® OfficeConnect® Remote 812 ADSL RouterIsmael Briones (May 27)
isox
Information Disclosure Vulnerability in IDS 0.8xisox (May 28)
Plain Text Password Vulnerability in Winamp 2.80isox (May 20)
Jakub Filonik
ps under FreeBSDJakub Filonik (May 18)
J Edgar Hoover
Xerox DocuTech problemsJ Edgar Hoover (May 17)
Jeff Franklin
Re: wu-imap buffer overflow conditionJeff Franklin (May 11)
Joe Testa
R7-0003: Nautilus Symlink VulnerabilityJoe Testa (May 02)
John . Airey
RE: MS02-023 does not patch actual issue!John . Airey (May 17)
RE: MS02-023 does not patch actual issue!John . Airey (May 17)
Johnathan Nightingale
Multiple Vulnerabilities in CISCO VoIP PhonesJohnathan Nightingale (May 22)
John Howie
RE: Verisign PKI: anyone to subordinate CAJohn Howie (May 20)
Jonas Eriksson
OpenSSH 3.2.2 released (fwd)Jonas Eriksson (May 17)
Potential security issues in EtherealJonas Eriksson (May 29)
Re: OpenBSD local DoS and root exploitJonas Eriksson (May 10)
OpenSSH 3.2.3 released (fwd)Jonas Eriksson (May 27)
Jonas Ländin
iXsecurity.20020404.4d_webserver.aJonas Ländin (May 02)
Jonathan Lamberson
Microsoft Active Directory security vulnerabilityJonathan Lamberson (May 23)
Julien Vanegue
Re: More ELF buggery...Julien Vanegue (May 31)
Kanatoko
MatuFtpServer Remote Buffer Overflow and Possible DoSKanatoko (May 22)
Keary Suska
Re: Nearly undocumented NT security feature - the solution toexecutable attachments?Keary Suska (May 10)
Ken Weaverling
Re: Xerox DocuTech problemsKen Weaverling (May 20)
Ken . Williams
Re: eSecurityOnline Security Advisory 3761 - Sun Solaris lbxproxy dis play name buffer overflow vulnerabilityKen . Williams (May 01)
keyboardhacker
Logitech Keyboard Insecuritykeyboardhacker (May 02)
KF
New Kismet Packages available - SayText() and suid kismet_server issuesKF (May 29)
cURL remote PoC for LinuxKF (May 06)
cURL remote PoC for FBSDKF (May 06)
Sendmail file locking - PoCKF (May 24)
latest Progress patch has suid issues AGAIN.KF (May 02)
Xandros based linux autorun -cKF (May 29)
kikaiju
Re: Xerox DocuTech problemskikaiju (May 18)
KJK::Hyperion
Re: Logitech Keyboard InsecurityKJK::Hyperion (May 03)
Nearly undocumented NT security feature - the solution to executable attachments?KJK::Hyperion (May 08)
Lance Spitzner
Reverse Challenge - Binary releasedLance Spitzner (May 05)
Honeynet Project -> The Reverse ChallengeLance Spitzner (May 02)
Larry Jones
Re: [DER ADV#8] - Local off by one in CVSDLarry Jones (May 27)
Last Stage of Delirium
[LSD] Solaris cachefsd remote buffer overflow vulnerabilityLast Stage of Delirium (May 05)
Lupe Christoph
Re: Netstd 3.07-17 multiple remote buffer overflowsLupe Christoph (May 25)
Mandrake Linux Security Team
MDKSA-2002:037-1 - dhcp updateMandrake Linux Security Team (May 30)
MDKSA-2002:032 - tcpdump updateMandrake Linux Security Team (May 16)
MDKSA-2002:033 - webmin updateMandrake Linux Security Team (May 22)
MDKSA-2002:036 - fetchmail updateMandrake Linux Security Team (May 28)
MDKSA-2002:035 - perl-Digest-MD5 updateMandrake Linux Security Team (May 28)
MDKSA-2002:030 - temporary fix for netfilter information leakMandrake Linux Security Team (May 10)
MDKSA-2002:031 - fileutils updateMandrake Linux Security Team (May 16)
MDKSA-2002:034 - imap updateMandrake Linux Security Team (May 30)
MDKSA-2002:037 - dhcp updateMandrake Linux Security Team (May 29)
Marcell Fodor
wu-imap buffer overflow conditionMarcell Fodor (May 10)
Marc Maiffret
Macromedia Flash Activex Buffer overflowMarc Maiffret (May 02)
ADVISORY: MSN Messenger OCX Buffer OverflowMarc Maiffret (May 08)
Markus Arndt
Possible Buffer Overflow in ACDSee 4.0Markus Arndt (May 10)
Phorum 3.3.2a remote command executionMarkus Arndt (May 17)
Phorum 3.3.2a has another bug for remote command executionMarkus Arndt (May 18)
Martijn Boerwinkel
Cross Site Scripting Vulnerability in phpBB2's [IMG] tag and remoteavatarMartijn Boerwinkel (May 27)
Martin Östlund
irssi backdoored.Martin Östlund (May 25)
Matt Conover
w00w00 on AOL Instant Messenger remote overflow #2Matt Conover (May 06)
Matthew G. Marsh
Re: Linux kernel 2.4 "weak end host" issue ExplainedMatthew G. Marsh (May 14)
Matt Moore
Multiple vulnerabilities in NewAtlanta ServletExec ISAPI 4.1Matt Moore (May 22)
Max
pks public key server DOS and remote executionMax (May 24)
Michael Metz [SpeedPartner]
Security-risk on gridscan.comMichael Metz [SpeedPartner] (May 24)
Mike Crane
Re: Patrol security bugsMike Crane (May 08)
Muhammad Faisal Rauf Danka
Re: Plain Text Password Vulnerability in Winamp 2.80Muhammad Faisal Rauf Danka (May 21)
Muller Zsolt
Re: Verisign PKI: anyone to subordinate CAMuller Zsolt (May 20)
Nate Eldredge
Re: [RHSA-2002:047-10] Updated fetchmail packages availableNate Eldredge (May 31)
nCipher Support
nCipher Security Advisory #3: MSCAPI CSP Install WizardnCipher Support (May 13)
nexus-mail
Fwd: [EXPL] Remote Exploit for UW-IMAPd Capability (IMAP4)nexus-mail (May 30)
NGSEC Research Team
[NGSEC-2002-2] ISC DHCPDv3, remote root compromiseNGSEC Research Team (May 08)
NGSSoftware Insight Security Research
Macromedia JRUN Buffer overflow vulnerability (#NISR29052002)NGSSoftware Insight Security Research (May 29)
Addendum to advisory #NISR29052002 (JRun buffer overflow)NGSSoftware Insight Security Research (May 29)
Noam Rathaus
Re: VP-ASP shopping cart software.Noam Rathaus (May 27)
Obscure
Multiple Vulnerabilities in MDaemon + WorldClientObscure (May 07)
office
cross-site scripting bug of ViewCVSoffice (May 19)
Olaf Kirch
Re: [RHSA-2002:047-10] Updated fetchmail packages availableOlaf Kirch (May 31)
Ory Segal
Multiple vendors web server source code disclosure (8.3 name format vulnerability - take II)Ory Segal (May 20)
pask
Informix SE-7.25 /lib/sqlexec Vulnerabilitypask (May 30)
Patrick Michael Kane
Cisco ATA-186 admin password can be trivially circumventedPatrick Michael Kane (May 10)
Patrik Karlsson
cqure.net.20020412.netware_client.aPatrik Karlsson (May 08)
cqure.net.20020412.netware_sdmr.aPatrik Karlsson (May 08)
cqure.net.20020412.bordermanager_36_mv1.aPatrik Karlsson (May 08)
cqure.net.20020408.netware_nwftpd.aPatrik Karlsson (May 08)
Paul Cardon
Re: Logitech Keyboard InsecurityPaul Cardon (May 02)
Paul Starzetz
GNU rm fileutils race condition problems on SuSEPaul Starzetz (May 16)
Re: trusting user-supplied data (was Re: FreeBSD Security Advisory FreeBSD-SA-02:23.stdio)Paul Starzetz (May 03)
Pedram Amini
AIM+ SpyWarePedram Amini (May 31)
Pedro Paulo Ferreira Bueno
Re: Efficient Networks Contact infoPedro Paulo Ferreira Bueno (May 23)
Pedro Quintanilha
TrendMicro Interscan VirusWall security problemPedro Quintanilha (May 25)
RE: TrendMicro Interscan VirusWall security problemPedro Quintanilha (May 27)
Peter Gründl
KPMG-2002017: Snapgear Lite+ Firewall Denial of ServicePeter Gründl (May 02)
Philippe Biondi
[CARTSA-20020402] Linux Netfilter NAT/ICMP code information leakPhilippe Biondi (May 08)
Philippe de Brito
Opty-Way Enterprise includes MSDE with sa <blank>Philippe de Brito (May 22)
Phuong Nguyen
Yahoo Messenger - Multiple VulnerabilitiesPhuong Nguyen (May 27)
Pidgorny, Slav
Verisign PKI: anyone to subordinate CAPidgorny, Slav (May 19)
ppp-design
NOCC: cross-site-scripting bugppp-design (May 14)
qitest1
Bug in mnogosearch-3.1.19qitest1 (May 11)
quentyn
Netscreen 25 unauthorised reboot issuequentyn (May 27)
REAVA, JEFFREY [IT/0200]
RE: Honeynet Project -> The Reverse ChallengeREAVA, JEFFREY [IT/0200] (May 02)
researchteam
eSecurityOnline advisory 5063 - Sun AnswerBook2 gettransbitmap buffer overflow vulnerabilityresearchteam (May 21)
richard . fuser
Re: Logitech Keyboard Insecurityrichard . fuser (May 02)
Richard Stanway
Remote quake 2 3.2x server cvar leakRichard Stanway (May 15)
Roger Safian
FIRST 2002 reminderRoger Safian (May 10)
rogersk
Re: eSecurityOnline Security Advisory 3761 - Sun Solaris lbxproxy dis play name buffer overflow vulnerabilityrogersk (May 01)
Ross Coppage
ATMSNMPD Vulnerable but not AddressedRoss Coppage (May 13)
Ry Jones
NTFS and PGP interact to expose EFS encrypted dataRy Jones (May 08)
Scott Mackenzie
Gaim abritary Email ReadingScott Mackenzie (May 13)
SeazoN
wbbboard 1.1.1 registration _new_users_vulnerability_SeazoN (May 27)
Sebastian Krahmer
SuSE Security Announcement: shadow (SuSE-SA:2002:017)Sebastian Krahmer (May 16)
SuSE Security Announcement: sysconfig (SuSE-SA:2002:016)Sebastian Krahmer (May 08)
SuSE Security Announcement: tcpdump/libpcap (SuSE-SA:2002:020)Sebastian Krahmer (May 29)
secure
[CLA-2002:489] Conectiva Linux Security Announcement - mailmansecure (May 24)
[CLA-2002:487] Conectiva Linux Security Announcement - imapsecure (May 24)
[CLA-2002:477] Conectiva Linux Security Announcement - mod_pythonsecure (May 03)
[CLA-2002:483] Conectiva Linux Security Announcement - dhcpsecure (May 09)
[CLA-2002:490] Conectiva Linux Security Announcement - mozillasecure (May 29)
[CLA-2002:481] Conectiva Linux Security Announcement - imlibsecure (May 08)
[CLA-2002:480] Conectiva Linux Security Announcement - tcpdumpsecure (May 07)
security
Security Update: [CSSA-2002-022.0] Linux: OpenSSH ticket and token passing buffer overflowsecurity (May 15)
Security Update: [CSSA-2002-SCO.19] OpenServer 5.0.5 OpenServer 5.0.6 : yppasswdd remotely exploitable buffer overflowsecurity (May 21)
Security Update: [CSSA-2002-SCO.23] Open UNIX 8.0.0 UnixWare 7.1.1 : ftpd allows data connection hijacking via PASV modesecurity (May 30)
Security Update: [CSSA-2002-SCO.20] OpenServer 5.0.5 OpenServer 5.0.6 : popper buffer overflow and denial-of-servicesecurity (May 24)
Security Update: [CSSA-2002-023.0] Linux: PHP multipart/form-data vulnerabilitiessecurity (May 17)
Security Update: [CSSA-2002-SCO.18] Open UNIX 8.0.0 UnixWare 7.1.1 : CDE /var/dt and subdirectories are writable by worldsecurity (May 08)
Security Update: [CSSA-2002-018.1] Linux: REVISED: Race condition in fileutilssecurity (May 14)
Security Update: [CSSA-2002-SCO.17] OpenServer 5.0.5 : sar -o buffer overflowsecurity (May 02)
Security Update: [CSSA-2002-021.0] Linux: imapd buffer overflow when fetching partial mailbox attributessecurity (May 15)
Security Update: [CSSA-2002-SCO.22] OpenServer 5.0.5 OpenServer 5.0.6 : scoadmin command creates temporary files insecurelysecurity (May 29)
Security Update: [CSSA-2002-020.0] Linux: icecast buffer overflows and denial-of-servicesecurity (May 13)
Security Update: [CSSA-2002-SCO.21] OpenServer 5.0.5 OpenServer 5.0.6 : sort command creates temporary files insecurelysecurity (May 29)
SGI Security Coordinator
IRIX netstat vulnerabilitySGI Security Coordinator (May 07)
IRIX Xlib vulnerabilitySGI Security Coordinator (May 02)
IRIX fsr_xfs vulnerabilitySGI Security Coordinator (May 08)
IRIX nsd symlink vulnerabilitySGI Security Coordinator (May 01)
Shea, Tim
Efficient Networks Contact infoShea, Tim (May 23)
Simon Ouellette
Multiple vulnerabilities in QNXSimon Ouellette (May 31)
SnakeByte / Eric Sesterhenn
Problems with various windows FTP serversSnakeByte / Eric Sesterhenn (May 27)
snsadv () lac co jp
[SNS Advisory No.52] Webmin/Usermin Cross-site Scripting Vulnerabilitysnsadv () lac co jp (May 08)
[SNS Advisory No.53] Webmin/Usermin Session ID Spoofing Vulnerabilitysnsadv () lac co jp (May 08)
[SNS Advisory No.48] Microsoft Internet Explorer Still Download And Execute ANY Program Automaticallysnsadv () lac co jp (May 16)
Spybreak
Netstd 3.07-17 multiple remote buffer overflowsSpybreak (May 24)
Stephanie Schiebert
[Fwd: Updated version of SSH Secure Shell available]Stephanie Schiebert (May 23)
Stephen Cope
Re: Unfortunate interaction between EZMLM and MessageLabs virus scanningStephen Cope (May 11)
Re: Problems with various windows FTP serversStephen Cope (May 28)
Steve Gustin
CGIscript.net - csPassword.cgi - Multiple VulnerabilitiesSteve Gustin (May 30)
14+ CGIscript.net scripts - Path DisclosureSteve Gustin (May 17)
steven . sporen
Security Implications of Novell eDirectory.steven . sporen (May 30)
Stuart Moore
Fix available for SgdynamoStuart Moore (May 10)
Summercon Admin
Summercon 2002 AnnounceSummercon Admin (May 08)
superpetz
NetPad eq MALWARE, was: LevCGI.coms NetPad 1.0.2 multiple vulnerabilitiessuperpetz (May 14)
SUZUKI Yasuhiro
swatch bug in throttleSUZUKI Yasuhiro (May 15)
Tamer Sahin
[SecurityOffice] LocalWeb2000 Web Server Protected File Access VulnerabilityTamer Sahin (May 24)
[SecurityOffice] Falcon Web Server Unauthorized File Disclosure Vulnerability #2Tamer Sahin (May 27)
[SecurityOffice] Falcon Web Server Unauthorized File Disclosure VulnerabilityTamer Sahin (May 27)
[SecurityOffice] Stronghold Secure Webserver Sample Script Path Disclosure VulnerabilityTamer Sahin (May 21)
Terry Lavoie
RE: Multiple Vulnerabilities in MDaemon + WorldClientTerry Lavoie (May 08)
The Dark Tangent
Announcing DEF CON 10!The Dark Tangent (May 03)
the grugq
More ELF buggery...the grugq (May 27)
Thomas Biege
SuSE Security Announcement: dhcp/dhcp-server (SuSE-SA:2002:019)Thomas Biege (May 22)
Re: [security-intern] [security () suse de] FWD - GNU rm fileutils race condition problems on SuSEThomas Biege (May 16)
SuSE Security Announcement: lukemftp, nkitb, nkitserv (SuSE-SA:2002:018)Thomas Biege (May 16)
SuSE Security Announcement: imlib (SuSE-SA:2002:015)Thomas Biege (May 07)
Thomas Seifert
Re: Phorum 3.3.2a remote command executionThomas Seifert (May 20)
Thor Larholm
Update and comments on the MS02-023 patch, holes still remainThor Larholm (May 16)
RE: Update and comments on the MS02-023 patch, holes still remainThor Larholm (May 17)
Tina Bird
Re: Cisco Security Advisory: NTP vulnerability (fwd)Tina Bird (May 09)
Tom Gilder
Re: MS02-023 does not patch actual issue!Tom Gilder (May 16)
Torbjorn Kristoffersen
Re: ps under FreeBSDTorbjorn Kristoffersen (May 20)
uid0
Re: Trojan/backdoor in fragroute 1.2 source distributionuid0 (May 31)
Re: Xerox DocuTech problemsuid0 (May 18)
Ulf Harnhammar
CRLF InjectionUlf Harnhammar (May 08)
underdoc
Misformated message header causes msn messenger to crashunderdoc (May 06)
Vanja Hrustic
Re: Nearly undocumented NT security feature - the solution to executable attachments?Vanja Hrustic (May 10)
webmaster
Vulnerability in Novell Netware 5.0 (part1)webmaster (May 29)
Vulnerability in Apache Tomcat v3.23 & v3.24 (part 2)webmaster (May 29)
Vulnerability in Apache Tomcat v3.23 & v3.24 (part 3)webmaster (May 29)
Gafware's CFXImage vulnerabilitywebmaster (May 29)
Vulnerability in Apache Tomcat v3.23 & v3.24webmaster (May 29)
Vulnerability in Novell Netware 5.0 (part 2)webmaster (May 29)
X-Force
ISS Alert: Microsoft SQL Spida Worm PropagationX-Force (May 21)
Yuri A. Kabaenkov
Re: ps under FreeBSDYuri A. Kabaenkov (May 18)
zeno
"The Cross Site Scripting FAQ"zeno (May 21)
zillion
SRT Security Advisory (SRT2002-04-31-1159): Mnewszillion (May 31)
AMANDA security issueszillion (May 27)