Från Bugtraq december år 2002

• exim remote heap overflow, probably not exploitable
• [gentoo-announce] GLSA: mindi (200309-05)
• GLSA: gallery (200309-06)
• [gentoo-announce] GLSA: phpwebsite (200309-03)
• Stack Buffer Overflow in MPlayer
• [gentoo-announce] GLSA: vmware (200308-03.1)
• [gentoo-announce] GLSA: atari800 (200309-07)
• [gentoo-announce] GLSA: eroaster (200309-04)
• ZH2003-26SA (security advisory): TSguestbook Ver. 2.1 Cross-Site Scripting Vulnerability
• GLSA: pam_smb (200309-01)
• [gentoo-announce] GLSA: horde (200309-02)
• GLSA: pam_smb (200309-01)
• MDKSA-2003:088 - Updated pam_ldap packages fix vulnerability with pam filtering
• Stunnel-3.x Daemon Hijacking
• SuSE Security Announcement: pam_smb (SuSE-SA:2003:036)
• [tool] the new p0f 2.0.1 is now out
• [RHSA-2003:240-01] Updated httpd packages fix Apache security vulnerabilities
• [CLA-2003:734] Conectiva Security Announcement - pam_smb
• [SECURITY] [DSA-377-1] New wu-ftpd packages fix insecure program execution
• [SECURITY] [DSA-376-1] New exim, exim-tls packages fix buffer overflow
• [CLA-2003:735] Conectiva Security Announcement - exim
• Crash Mozilla 1.5
• [CLA-2003:736] Conectiva Security Announcement - stunnel
• New CERT/CC PGP Key
• Apache::Gallery local webserver compromise, privilege escalation
• [SECURITY] [DSA-378-1] New mah-jong packages fix buffer overflows, denial of service
• Rogerwilco: server's buffer overflow
• [SECURITY] [DSA-376-2] New exim packages fix incorrect permissions on documentation
• CERT Summary CS-2003-03
• [RHSA-2003:264-01] Updated gtkhtml packages fix vulnerability
• 11 years of inetd default insecurity?
• Binary file dns-recursion-2003-09.txt matches
• XSS vulnerability in phpBB (an other ;-)
• Buffer overflow in MySQL
• [slackware-security] security issues in pine (SSA:2003-253-01)
• [RHSA-2003:273-01] Updated pine packages fix vulnerabilities
• [gentoo-announce] GLSA: mysql (200309-08)
• [ESA-20030916-023] OpenSSH buffer management error.
• OpenSSH Buffer Management Bug Advisory
• [SECURITY] [DSA-382-1] OpenSSH buffer management fix
• [RHSA-2003:279-01] Updated OpenSSH packages fix potential vulnerability
• Immunix Secured OS 7+ openssh update
• [slackware-security] OpenSSH Security Advisory (SSA:2003-259-01)
• MDKSA-2003:090 - Updated openssh packages fix buffer management error
• [KDE SECURITY ADVISORY] KDM vulnerabilities
• [SECURITY] [DSA-382-2] OpenSSH buffer management fix
• TSLSA-2003-0033 - openssh
• TSLSA-2003-0034 - mysql
• Sendmail 8.12.9 prescan bug (a new one) [CAN-2003-0694]
• MDKSA-2003:091 - Updated kdebase packages fix vulnerabilities in KDM
• [RHSA-2003:279-02] Updated OpenSSH packages fix potential vulnerabilities
• GLSA: sendmail (200309-13)
• [RHSA-2003:283-01] Updated Sendmail packages fix vulnerability.
• Remote root vuln in lsh 1.4.x
• [SECURITY] [DSA-382-3] OpenSSH buffer management fix
• [RHSA-2003:243-01] Updated Apache and mod_ssl packages fix security vulnerabilities
• Snort not backdoored, Sourcefire not compromised
• [RHSA-2003:256-01] Updated Perl packages fix security issues.
• [SECURITY] [DSA-383-2] OpenSSH buffer management fix
• Multiple Security Issues in Netup UTM
• [CLA-2003:748] Conectiva Security Announcement - wu-ftpd
• Multiple PAM vulnerabilities in portable OpenSSH
• mpg123[v0.59r,v0.59s]: remote client-side heap corruption exploit.
• Portable OpenSSH 3.7.1p2 released
• Wu_ftpd all versions (not) vulnerability.
• Moozatech: WZFTPD Denial Of Service
• ISS Security Brief: ProFTPD ASCII File Remote Compromise Vulnerability (fwd)
• [slackware-security] New OpenSSH packages (SSA:2003-266-01)
• [ESA-20030924-026] 'WebTool-userpass' passphrase disclosure vulnerability.
• [slackware-security] WU-FTPD Security Advisory (SSA:2003-259-03)
• [gentoo-announce] GLSA: openssh (200309-14)
• [CLA-2003:749] Conectiva Security Announcement - php4
• base64
• Cfengine2 cfservd remote stack overflow
• CERT Advisory CA-2003-25 Buffer Overflow in Sendmail
• [gentoo-announce] GLSA: net-ftp/proftpd (200309-16)
• [gentoo-announce] GLSA: media-video/mplayer (200309-15)
• [OpenSSL Advisory] Vulnerabilities in ASN.1 parsing
• GLSA: mpg123 (200309-17)
• [RHSA-2003:291-01] Updated OpenSSL packages fix vulnerabilities
• CERT Advisory Notice: Clarifications regarding recent vulnerabilities in OpenSSH
• [ESA-20030930-027] OpenSSL ASN.1 parsing vulnerabilities.
• Immunix Secured OS 7+ OpenSSL update
• [gentoo-announce] GLSA: teapop (200309-18)
• [Full-Disclosure] [SECURITY] [DSA-393-1] New OpenSSL packages correct denial of service issues

Upp en nivå