Re: [RHSA-2001:047-03] Linux kernel 2.2.19 now available, provides security fixes, enhancements

On Mon, 16 Apr 2001 [EMAIL PROTECTED] wrote: - Red Hat, Inc. Red Hat Security Advisory Synopsis: Linux kernel 2.2.19 now available, provides security fixes, enhancements Advisory ID:

Re: qDefense Advisory: DCForum allows remote read/write/execute

Sorry for not clarifying. This is another vulnerability. The patch made DOES NOT fix this vulnerability. The CGISecurity hole only allowed read, not execute, and the patch did not affect the az field. The following information is correct. The hole we found effected the forum= field. It

Re: Double clicking on innocent looking files may be dangerous

"Kuo, Jimmy" wrote: Published in mid-March: http://vil.nai.com/vil/virusSummary.asp?virus_k=99048 And: http:[EMAIL PROTECTED] Sorry for my "old news" advisory - if I were aware of the urls above I would have not sent it. Georgi Guninski

Eudora file leakage problem (still)

In short: = An attacker may be able to get any file from a users hard drive if he can make the recieving party to forward a mail containing a false attachment reference to this local file. I remember having submitted this bug to Qualcomm a long time ago ( 4 years) but this

FreeBSD Security Advisory FreeBSD-SA-01:33.ftpd-glob

-BEGIN PGP SIGNED MESSAGE- = FreeBSD-SA-01:33 Security Advisory FreeBSD, Inc. Topic: globbing

[SECURITY] [DSA-048-1] samba symlink attacks

-BEGIN PGP SIGNED MESSAGE- - Debian Security Advisory DSA-048-1 [EMAIL PROTECTED] http://www.debian.org/security/ Wichert Akkerman April 18, 2001 -

Samba 2.0.8 security fix

I've just released Samba 2.0.8. This release fixes a significant security vulnerability that allows local users to corrupt local devices (such as raw disks). For most users the Samba Team recommends Samba 2.2.0 which has just been released. Version 2.2.0 has all the security fixes plus many new

Re: Advisory for Lotus Domino webserver

Please check BTQ-881 (http://www.securityfocus.com/vdb/bottom.html?vid=881) This has already been reported, you might help securityfocus staff, however, and add which versions are *not* vulnerable. Regards Javier Fernndez-Sanguino Pea [EMAIL PROTECTED]

MDKSA-2001:037 - kernel update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Linux-Mandrake Security Update Advisory Package name: kernel Date:

Re: iPlanet Web Server 4.x Product Alert

Santi Claus wrote: iPlanet has identified a security vulnerability in the iPlanet Web Server Enterprise Edition 4.x products. This problem does not affect any releases of the product prior to the 4.x versions; however it does affect all iPlanet applications operating on the iPlanet Web

Immunix OS Security update for samba

--- Immunix OS Security Advisory Packages updated: samba Affected products: Immunix OS 6.2, 7.0-beta, and 7.0 Bugs Fixed: immunix/1564 Date: April 17, 2001 Advisory ID:

Re: [RHSA-2001:047-03] Linux kernel 2.2.19 now available, provides security fixes, enhancements

On Tue, 17 Apr 2001, Viraj Alankar wrote: On Mon, 16 Apr 2001 [EMAIL PROTECTED] wrote: - Red Hat, Inc. Red Hat Security Advisory Synopsis: Linux kernel 2.2.19 now available, provides

Innfeed Buffer Overflow

== Defcom Labs Advisory def-2001-19 innfeed buffer overflow Author: Enrique A. Sanchez Montellano @defcom.com Author: Alex Hernandez [EMAIL PROTECTED] Release Date: 2001-04-18

Cyberscheduler remote root compromise

== Defcom Labs Advisory def-2000-18 Cyberscheduler remote root/execution compromise Author: Enrique A. Sanchez Montellano [EMAIL PROTECTED] Release Date: 2001-04-17

Re: QPC FTPd Directory Traversal and BoF Vulnerabilities

- Original Message - From: SNS Research [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, April 13, 2001 9:13 PM Subject: QPC FTPd Directory Traversal and BoF Vulnerabilities Problem(s): Directory Traversal Vulnerability The ftpd daemon that ships with above mentioned packages

IBM MSS Outside Advisory Redistribution: IBM AIX: Buffer Overflow Vulnerability in (x)ntp

IBM Global Services Managed Security Services Outside Advisory Redistribution --- Forwarded Information Starts Here. -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 IBM SECURITY ADVISORY Tue Apr 10 11:15:04 CDT

Re: Advisory for Xitami 2.4d7, 2.5d4

In message [EMAIL PROTECTED], [EMAIL PROTECTED] writes: [ Advisory for Xitami 2.4d7, 2.5d4 ] [.] Xitami is a webserver. It has a denial of service. [] To test this vulnerability, try the following. send a request like this one: www.server.com/aux some computers crash

Re: iPlanet Web Server 4.x Product Alert

Glen Shere wrote: Santi Claus wrote: iPlanet has identified a security vulnerability in the iPlanet Web Server Enterprise Edition 4.x products. This problem does not affect any releases of the product prior to the 4.x versions; however it does affect all iPlanet applications operating on

TSLSA-#2001-0005 - samba

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 - -- Trustix Secure Linux Security Advisory #2001-0005 Package name: samba Severity: Possible alternation of local files and devices Date: 2001-04-18

iplanet calendar server 5.0p2 exposes Netscape Admin Server master password

at the time of writing, 5.0p2 is the currently available revision on iplanet's download site. the problem: the standard install of iPlanet Calendar server stores the NAS LDAP admin username and password in plaintext in the world readable file: -rw-r--r-- 1 icsuser icsgroup 37882 Feb 20

[SECURITY] [DSA-048-1] remote cfingerd exploit

-BEGIN PGP SIGNED MESSAGE- - Debian Security Advisory DSA-048-1 [EMAIL PROTECTED] http://www.debian.org/security/ Wichert Akkerman April 19, 2001 -

Security Advisory: samaba security problems CSSA-2001-015.0

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 __ Caldera Systems, Inc. Security Advisory Subject:samba security problems Advisory number:CSSA-2001-015.0 Issue date: