Bugtraq http://www.spinics.net/lists/bugtraq/ Email archive for Bugtraq . phpAdultSite CMS flaws http://www.spinics.net/lists/bugtraq/msg35926.html phpAdultSite CMS flaws xoops-1.3.10 shell command execute vulnerability ( causing snoopy class ) http://www.spinics.net/lists/bugtraq/msg35925.html xoops-1.3.10 shell command execute vulnerability ( causing snoopy class ) Re: RES: Google Chrome Automatic File Download http://www.spinics.net/lists/bugtraq/msg35924.html Re: RES: Google Chrome Automatic File Download [ MDVSA-2008:188 ] tomcat5 http://www.spinics.net/lists/bugtraq/msg35923.html [ MDVSA-2008:188 ] tomcat5 Google Chrome Auto download exploit .. http://www.spinics.net/lists/bugtraq/msg35922.html Google Chrome Auto download exploit .. [ GLSA 200809-05 ] Courier Authentication Library: SQL injection vulnerability http://www.spinics.net/lists/bugtraq/msg35921.html [ GLSA 200809-05 ] Courier Authentication Library: SQL injection vulnerability Re: Oracle 10g Dynamic Monitoring Services XSS /servlet/Spy http://www.spinics.net/lists/bugtraq/msg35920.html Re: Oracle 10g Dynamic Monitoring Services XSS /servlet/Spy Re: Zen Cart <= 1.3.8a SQL Injection http://www.spinics.net/lists/bugtraq/msg35919.html Re: Zen Cart <= 1.3.8a SQL Injection Google Chrome 0.2.149.27 'SaveAs' Function Buffer Overflow Vulnerability http://www.spinics.net/lists/bugtraq/msg35918.html Google Chrome 0.2.149.27 'SaveAs' Function Buffer Overflow Vulnerability Re: Has anyone implemented "double forward DNS"? http://www.spinics.net/lists/bugtraq/msg35917.html Re: Has anyone implemented "double forward DNS"? Re: XCon 2008 Call for Paper http://www.spinics.net/lists/bugtraq/msg35916.html Re: XCon 2008 Call for Paper Re: XCon 2008 Call for Paper http://www.spinics.net/lists/bugtraq/msg35915.html Re: XCon 2008 Call for Paper XCon 2008 Call for Paper http://www.spinics.net/lists/bugtraq/msg35914.html XCon 2008 Call for Paper Risky Chrome (The perfect cleartext password offering ) http://www.spinics.net/lists/bugtraq/msg35913.html Risky Chrome (The perfect cleartext password offering ) rPSA-2008-0268-1 libtiff http://www.spinics.net/lists/bugtraq/msg35912.html rPSA-2008-0268-1 libtiff other google chrome crash http://www.spinics.net/lists/bugtraq/msg35911.html other google chrome crash [security bulletin] HPSBMA02361 SSRT080119 rev.1 - HP OpenView Select Identity Connectors running on Windows, Local Information Disclosure http://www.spinics.net/lists/bugtraq/msg35910.html [security bulletin] HPSBMA02361 SSRT080119 rev.1 - HP OpenView Select Identity Connectors running on Windows, Local Information Disclosure [ MDVSA-2008:186 ] python http://www.spinics.net/lists/bugtraq/msg35909.html [ MDVSA-2008:186 ] python Multiple MicroWorld products insecure directory permissions http://www.spinics.net/lists/bugtraq/msg35908.html Multiple MicroWorld products insecure directory permissions [ GLSA 200809-03 ] RealPlayer: Buffer overflow http://www.spinics.net/lists/bugtraq/msg35907.html [ GLSA 200809-03 ] RealPlayer: Buffer overflow [ GLSA 200809-02 ] dnsmasq: Denial of Service and DNS spoofing http://www.spinics.net/lists/bugtraq/msg35906.html [ GLSA 200809-02 ] dnsmasq: Denial of Service and DNS spoofing Re: Has anyone implemented "double forward DNS"? http://www.spinics.net/lists/bugtraq/msg35905.html Re: Has anyone implemented "double forward DNS"? clamav: Crash with crafted chm, CVE-2008-1389 http://www.spinics.net/lists/bugtraq/msg35904.html clamav: Crash with crafted chm, CVE-2008-1389 [ GLSA 200809-01 ] yelp: User-assisted execution of arbitrary code http://www.spinics.net/lists/bugtraq/msg35903.html [ GLSA 200809-01 ] yelp: User-assisted execution of arbitrary code [ GLSA 200809-04 ] MySQL: Privilege bypass http://www.spinics.net/lists/bugtraq/msg35902.html [ GLSA 200809-04 ] MySQL: Privilege bypass Zen Cart <= 1.3.8a SQL Injection http://www.spinics.net/lists/bugtraq/msg35901.html Zen Cart <= 1.3.8a SQL Injection Atheros Vendor Specific Information Element Overflow http://www.spinics.net/lists/bugtraq/msg35900.html Atheros Vendor Specific Information Element Overflow [USN-640-1] libxml2 vulnerability http://www.spinics.net/lists/bugtraq/msg35899.html [USN-640-1] libxml2 vulnerability Re: Google Chrome Automatic File Download http://www.spinics.net/lists/bugtraq/msg35898.html Re: Google Chrome Automatic File Download Marvell Driver Null SSID Association Request Vulnerability http://www.spinics.net/lists/bugtraq/msg35897.html Marvell Driver Null SSID Association Request Vulnerability Marvell Driver EAPoL-Key Length Overflow http://www.spinics.net/lists/bugtraq/msg35896.html Marvell Driver EAPoL-Key Length Overflow Multiple Cross Site Scripting (XSS) and SQL injection Vulnerabilities in XRMS, CVE-2008-3664 http://www.spinics.net/lists/bugtraq/msg35895.html Multiple Cross Site Scripting (XSS) and SQL injection Vulnerabilities in XRMS, CVE-2008-3664 FreeBSD Security Advisory FreeBSD-SA-08:09.icmp6 http://www.spinics.net/lists/bugtraq/msg35894.html FreeBSD Security Advisory FreeBSD-SA-08:09.icmp6 Re: Has anyone implemented "double forward DNS"? http://www.spinics.net/lists/bugtraq/msg35893.html Re: Has anyone implemented "double forward DNS"? FreeBSD Security Advisory FreeBSD-SA-08:07.amd64 http://www.spinics.net/lists/bugtraq/msg35892.html FreeBSD Security Advisory FreeBSD-SA-08:07.amd64 Re: Has anyone implemented "double forward DNS"? http://www.spinics.net/lists/bugtraq/msg35891.html Re: Has anyone implemented "double forward DNS"? Re: Has anyone implemented "double forward DNS"? http://www.spinics.net/lists/bugtraq/msg35890.html Re: Has anyone implemented "double forward DNS"? Re: Has anyone implemented "double forward DNS"? http://www.spinics.net/lists/bugtraq/msg35889.html Re: Has anyone implemented "double forward DNS"? Re: In search of examples of malicious source code http://www.spinics.net/lists/bugtraq/msg35888.html Re: In search of examples of malicious source code [ MDVSA-2008:185 ] python-django http://www.spinics.net/lists/bugtraq/msg35887.html [ MDVSA-2008:185 ] python-django [ MDVSA-2008:184 ] libtiff http://www.spinics.net/lists/bugtraq/msg35886.html [ MDVSA-2008:184 ] libtiff FreeBSD Security Advisory FreeBSD-SA-08:08.nmount http://www.spinics.net/lists/bugtraq/msg35885.html FreeBSD Security Advisory FreeBSD-SA-08:08.nmount RE: Google Chrome Automatic File Download http://www.spinics.net/lists/bugtraq/msg35884.html RE: Google Chrome Automatic File Download Re: Has anyone implemented "double forward DNS"? http://www.spinics.net/lists/bugtraq/msg35883.html Re: Has anyone implemented "double forward DNS"? TransLucid 1.75 (fckeditor) Remote Arbitrary File Upload http://www.spinics.net/lists/bugtraq/msg35882.html TransLucid 1.75 (fckeditor) Remote Arbitrary File Upload Cisco Secure ACS Denial Of Service Vulnerability http://www.spinics.net/lists/bugtraq/msg35881.html Cisco Secure ACS Denial Of Service Vulnerability Cisco Secure ACS EAP Parsing Vulnerability http://www.spinics.net/lists/bugtraq/msg35880.html Cisco Secure ACS EAP Parsing Vulnerability Re: Google Chrome Automatic File Download http://www.spinics.net/lists/bugtraq/msg35879.html Re: Google Chrome Automatic File Download RES: Google Chrome Automatic File Download http://www.spinics.net/lists/bugtraq/msg35878.html RES: Google Chrome Automatic File Download Cisco Security Advisory: Remote Access VPN and SIP Vulnerabilities in Cisco PIX and Cisco ASA http://www.spinics.net/lists/bugtraq/msg35877.html Cisco Security Advisory: Remote Access VPN and SIP Vulnerabilities in Cisco PIX and Cisco ASA [Tool] Distack framework for attack detection and traffic analysis http://www.spinics.net/lists/bugtraq/msg35876.html [Tool] Distack framework for attack detection and traffic analysis Google Chrome Browser (ver.0.2.149.27) Vulnerability http://www.spinics.net/lists/bugtraq/msg35875.html Google Chrome Browser (ver.0.2.149.27) Vulnerability Google Chrome Automatic File Download http://www.spinics.net/lists/bugtraq/msg35874.html Google Chrome Automatic File Download Secunia Research: Novell iPrint Client nipplib.dll "IppCreateServerRef()" Buffer Overflow http://www.spinics.net/lists/bugtraq/msg35873.html Secunia Research: Novell iPrint Client nipplib.dll "IppCreateServerRef()" Buffer Overflow RUXCON 2008 Final Call For Papers http://www.spinics.net/lists/bugtraq/msg35872.html RUXCON 2008 Final Call For Papers Has anyone implemented "double forward DNS"? http://www.spinics.net/lists/bugtraq/msg35871.html Has anyone implemented "double forward DNS"? Exploit http://www.spinics.net/lists/bugtraq/msg35870.html Exploit T2´08 Challenge - Free Tickets Available http://www.spinics.net/lists/bugtraq/msg35869.html T2´08 Challenge - Free Tickets Available In search of examples of malicious source code http://www.spinics.net/lists/bugtraq/msg35868.html In search of examples of malicious source code [ MDVSA-2008:183 ] opensc http://www.spinics.net/lists/bugtraq/msg35867.html [ MDVSA-2008:183 ] opensc [Suspected Spam]New IETF I-D-: Security Assessment of the Internet Protocol version 4 http://www.spinics.net/lists/bugtraq/msg35866.html [Suspected Spam]New IETF I-D-: Security Assessment of the Internet Protocol version 4 [USN-639-1] tiff vulnerability http://www.spinics.net/lists/bugtraq/msg35865.html [USN-639-1] tiff vulnerability [Tool] sqlmap 0.6 released http://www.spinics.net/lists/bugtraq/msg35864.html [Tool] sqlmap 0.6 released CS-Cart <= 1.3.5 SQL Injection http://www.spinics.net/lists/bugtraq/msg35863.html CS-Cart <= 1.3.5 SQL Injection [ MDVSA-2008:182 ] wordnet http://www.spinics.net/lists/bugtraq/msg35862.html [ MDVSA-2008:182 ] wordnet [AJECT] Softalk IMAP Server 8.5.1 DoS vulnerability http://www.spinics.net/lists/bugtraq/msg35861.html [AJECT] Softalk IMAP Server 8.5.1 DoS vulnerability Postfix Linux-only local denial of service http://www.spinics.net/lists/bugtraq/msg35860.html Postfix Linux-only local denial of service ToorCon X Lineup & Training Seminars Posted & Pre-Registration Ending http://www.spinics.net/lists/bugtraq/msg35859.html ToorCon X Lineup & Training Seminars Posted & Pre-Registration Ending [security bulletin] HPSBMA02362 SSRT080044, SSRT080045 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Denial of Service (DoS) http://www.spinics.net/lists/bugtraq/msg35858.html [security bulletin] HPSBMA02362 SSRT080044, SSRT080045 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Denial of Service (DoS) HPSBUX02354 SSRT080113 rev.1 - HP-UX Running Netscape / Red Hat Directory Server, Remote Cross Site Scripting (XSS) or Remote Denial of Service (DoS) http://www.spinics.net/lists/bugtraq/msg35857.html HPSBUX02354 SSRT080113 rev.1 - HP-UX Running Netscape / Red Hat Directory Server, Remote Cross Site Scripting (XSS) or Remote Denial of Service (DoS) [SECURITY] [DSA 1634-1] New wordnet packages fix arbitrary code execution http://www.spinics.net/lists/bugtraq/msg35856.html [SECURITY] [DSA 1634-1] New wordnet packages fix arbitrary code execution [SECURITY] [DSA 1633-1] New slash packages fix multiple vulnerabilities http://www.spinics.net/lists/bugtraq/msg35855.html [SECURITY] [DSA 1633-1] New slash packages fix multiple vulnerabilities [oCERT-2008-014] WordNet stack and heap overflows http://www.spinics.net/lists/bugtraq/msg35854.html [oCERT-2008-014] WordNet stack and heap overflows PoCfix (PoC for Postfix local root vuln - CVE-2008-2936) http://www.spinics.net/lists/bugtraq/msg35853.html PoCfix (PoC for Postfix local root vuln - CVE-2008-2936) rPSA-2008-0264-1 ruby http://www.spinics.net/lists/bugtraq/msg35852.html rPSA-2008-0264-1 ruby Multiple Cross Site Scripting (XSS) Vulnerabilities in vtigerCRM 5.0.4, CVE-2008-3101 http://www.spinics.net/lists/bugtraq/msg35851.html Multiple Cross Site Scripting (XSS) Vulnerabilities in vtigerCRM 5.0.4, CVE-2008-3101 [SECURITY] [DSA 1627-2] New opensc package fix incomplete check http://www.spinics.net/lists/bugtraq/msg35850.html [SECURITY] [DSA 1627-2] New opensc package fix incomplete check Plesk 8.6.0 authentication flaw allows to gain virtual user priviledges http://www.spinics.net/lists/bugtraq/msg35849.html Plesk 8.6.0 authentication flaw allows to gain virtual user priviledges [SECURITY] [DSA-1597-2] New mt-daapd package fix regression http://www.spinics.net/lists/bugtraq/msg35848.html [SECURITY] [DSA-1597-2] New mt-daapd package fix regression Re: [Advisory] Invision Power Board <= 2.3.5 Multiple Vulnerabilities and Security Bypass http://www.spinics.net/lists/bugtraq/msg35847.html Re: [Advisory] Invision Power Board <= 2.3.5 Multiple Vulnerabilities and Security Bypass