-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
iDEFENSE Security Advisory 10.16.02:
http://www.idefense.com/advisory/10.16.02.txt
Denial of Service in Sabre Desktop Reservation Client for Windows
October 16, 2002
I. BACKGROUND
Sabre Inc.s Desktop Reservation Software for Windows is a legacy
NSSI Technologies Inc Research Labs Security Advisory
http://www.nssolution.com (Philippines / .ph)
Maximum e-security
http://nssilabs.nssolution.com
ZoneAlarm Pro 3.1 and 3.0 Denial of Service Vulnerability
Author: Abraham Lincoln Hao / SunNinja
e-Mail: [EMAIL PROTECTED] / [EMAIL
If the webserver is not chrooted or otherwise protected from escaping a directory all
files on the system will be potentially readable by an attacker (providing the user
the webserver runs as has read permissions)
i.e.
http://Forum_URLavatar.php?img=3D../../../../../etc/passwd
David Woods
LinSec team is proud to announce the first stable release of LinSec.
LinSec, as the name says, is Linux Security Protection System. The main aim
of LinSec is to introduce Mandatory Access Control (MAC) mechanism into
Linux (as opposed to existing Discretionary Access Control mechanism).
LinSec
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Cisco Security Advisory: Cisco CatOS Embedded HTTP Server Buffer Overflow
Revision 1.0 FINAL
==
For Public Release 2002 October 16 17:00 (UTC)
- --
Please
-BEGIN PGP SIGNED MESSAGE-
__
SGI Security Advisory
Title: X Windows zlib/MIT-SHM/huge font DoS vulnerabilities
Number: 20021001-01-P
Date: October 15,
Hi,
Here is a paper about shellcode design fundamentals. Available
both in English and Turkish:
http://www.enderunix.org/docs/en/sc-en.txt [English]
http://www.enderunix.org/docs/sc-tr.txt [Turkish]
--
Murat Balaban
http://www.enderunix.org/
This is not a vulnerability or even privacy exposure in MSN, but just a
demonstration of zone spoofing by using the %2F encoding bug.
All the exposed MSN contact list and information is intentionally, and
safely, exposed in the My Computer zone.
Regards
Thor Larholm, Security Researcher
PivX
The file phptonuke.php from myphpnuke allows Remote File Retrieving.
Exploit Example:
http://website.com/phptonuke.php?filnavn=/etc/passwd
Zero X, member of www.Lobnan.de
--
Get your free email from www.linuxmail.org
Powered by Outblaze
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- --
Debian Security Advisory DSA 176-1 [EMAIL PROTECTED]
http://www.debian.org/security/ Martin Schulze
October 16th, 2002
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- --
CONECTIVA LINUX SECURITY ANNOUNCEMENT
- --
PACKAGE : XFree86
SUMMARY : Several vulnerabilities
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- --
CONECTIVA LINUX SECURITY ANNOUNCEMENT
- --
PACKAGE : fetchmail
SUMMARY : Multidrop mode
I recently did a very brief (and non-exhaustive) security audit of
Apache 1.3.26, and noticed some small potential bugs in some of the
helper programs that come with the distribution.
Apache maintainers have been notified, and the most serious of these
bugs have been fixed in 1.3.27. I'm
In-Reply-To: [EMAIL PROTECTED]
IS MSN Moster Strike Back ?!
Less then 10 hours After i Post This message on BugTraq
Hotmail Cancelled My Hotmail Account (my Primary email account).
So Now I am a Man Without Email Account.
you can check out the Error MSG on my Security Workshop :
In response to tbe below, we examined this issue on a Cajun P550 (not
550R) with software version 4.3.5.
We found:
1) The accounts (manuf and diag) are clearly present in the config and
easily seen with 'show running-conf' or 'show startup-conf'
2) They are system accounts and cannot be deleted
Global InterSec LLC
http://www.globalintersec.com
GIS Advisory ID:2002021001
Changed:10/16/2002
Author: [EMAIL PROTECTED]
Reference: http://www.globalintersec.com/adv/skystream-2002021001.txt
Summary:
SkyStream's Edge Media Router-5000 (EMR5000) a DVB to
Hi,
For those who don't know yet, Openwall GNU/*/Linux (or Owl) is a
security-enhanced operating system with Linux and GNU software as its
core, intended as a server platform. And, of course, it's free. More
detailed information is available on the web site:
17 matches
Mail list logo