===
Ubuntu Security Notice USN-116-1 May 04, 2005
gzip vulnerabilities
CAN-2005-0988, CAN-2005-1228
===
A security issue affects the following Ubuntu releases:
Ubuntu
The Horde Framework has several classes for the creation of forms. For
example, to create a form with a domain field you just have to create an
instance of the Horde_Form class and to call the addVariable() method.
$form-addVariable(_(Domain name), domain_name, text, true, false,
null,
Local root vulnerability in vpnd on MacOS X = 10.3.9
-
Overview
There exists a local root exploitable stack based buffer overflow in the
VPN daemon shipping with MacOS X. This bug can be easily exploited to
gain root access.
This
===
Ubuntu Security Notice USN-118-1 May 04, 2005
postgresql vulnerabilities
CAN-2005-1409, CAN-2005-1410
===
A security issue affects the following Ubuntu releases:
Apple Mac OS X vpnd Server_id Buffer Overflow Vulnerability
iDEFENSE Security Advisory 05.04.05
www.idefense.com/application/poi/display?id=240type=vulnerabilities
May 04, 2005
I. BACKGROUND
Mac OS X is an operating system for the Apple family of microcomputers.
More information is available at
The problem here is that since this new window for attachments, you can not
reach the domain for ask cookie, the document.cookie, is empty, you need to
inject innerHTML for ask cookie, but yes it's possible.
The window that opens attachments is not in the same domain so there's not
cookie, so
On Wed, 04 May 2005 12:39:14 +1000, cozadc/Cozad, Chris said:
Just out of curiosity
Why do all your messages come through as a text attachment?
The short version: Because you're using:
X-mailer: Internet Mail Service (5.5.2658.3)
The long version: Because they're PGP-signed as per
I refer that the discussion starts on bugtraq and someone ask why is not
Published as vuln, discussion continue, and this were never Publisher as
vuln, I get this post rejected from bugtraq when send my own research.
-Mensaje original-
De: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
###
Luigi Auriemma
Application: Gamespy cd-key validation system
http://www.gamespy.net
Games:The amount of games that use this system is really huge,
a small
###
Luigi Auriemma
Application: Gamespy cd-key validation system
http://www.gamespy.net
Games:The amount of games that use this system is really huge,
a small
Don't quit your day job
--- Enune [EMAIL PROTECTED] wrote:
G'day again all,
Just thought I'd throw in a morning laugh.. Enjoy :)
Advisory Name: Buffer overflow in BitKeeper
screenshot may lead to bad PR
Date: 04/05/2005
Severity: Rabbit.
Description:
There is a buffer overflow in
We captured these packets last evening and I was just wondering if
anyone here had seen anything like this before. I certainly see SYN
connect attempts to TCP 1433 fairly frequently, but usually with a
source port of 6000 and a window size of 16384. And, never with payload
in the initial
Continuing on the thread of telco's (even though its off topic) I used
to have access to https://lens.bellsouth.com (Local exchange navigation
system) so you all im sure would also have fun if you can gain access to
that. You can look up full information for non-published numbers, make
http://www.interconnection.bellsouth.com/app_desc.html
That site offers a good description and portal to their other web apps,
I haven't used any of them but lens, but they sure do SOUND interesting huh.
___
Full-Disclosure - We believe in it.
Charter:
Deigo Dude wrote:
Continuing on the thread of telco's (even though its off topic)
I think it actually falls in a safe zone under the list charter. In
general though I feel that the security of our nations telco
infrastructure should certainly be talked about. After the deregulation
of the
15 matches
Mail list logo