-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Friday 10 January 2003 18:02, Ofir Arkin wrote:
> Who is vulnerable?
> --
> Josh Anderson and I tested several Ethernet cards and device drivers.
>
> We have found several device drivers which are vulnerable but we never
> attempted
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- --
Debian Security Advisory DSA 229-2 [EMAIL PROTECTED]
http://www.debian.org/security/ Martin Schulze
January 15th, 2003
Hi,
I attached an exploit for:
http://online.securityfocus.com/bid/3748/info/
bugtraq id 3748
object
class Input Validation Error
cve CVE-2002-0002
remote Yes
local No
published Dec 22, 2001
updated Jan 17, 2002
vulnerable Stunnel Stunnel 3.20
+ MandrakeSoft Linux Mandrake 8.1
+ MandrakeSof
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
OpenPKG Security AdvisoryThe OpenPKG Project
http://www.openpkg.org/security.html http://www.openpkg.org
[EMAIL PROTECTED]
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mandrake Linux Security Update Advisory
Package name: openldap
Advisory ID:
Dear [EMAIL PROTECTED],
Beside all the noise: it's trivial stack overflow due to invalid maximum
frame size calculation in mpg123. Maximum frame size is defined to be
1792 (mpglib/mpg123.h) and 1920 (common.c where overflow probably
actually occures). Gobblez construct frame (160 * 1440
-
Red Hat, Inc. Red Hat Security Advisory
Synopsis: Updated PostgreSQL packages fix security issues and bugs
Advisory ID: RHSA-2003:001-16
Issue date:2003-01-14
Updated on:2003-01-
To: [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED]
[EMAIL PROTECTED]
__
SCO Security Advisory
Subject:UnixWare 7.1.1 : multiple vulnerabilities in BIND (CERT
CA-2002-31)
In-Reply-To: <[EMAIL PROTECTED]>
I'm not going to address the veracity of the narrative
text of this posting, however the exploit is real. I
believe that the patch to mpg123 given below closes
this particular hole. I have no affiliation with the
authors of mpg123 and haven't contacted them,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- --
Debian Security Advisory DSA 229-1 [EMAIL PROTECTED]
http://www.debian.org/security/ Martin Schulze
January 15th, 2003
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- --
Debian Security Advisory DSA 227-1 [EMAIL PROTECTED]
http://www.debian.org/security/ Martin Schulze
January, 13th, 2003
11 matches
Mail list logo