2004-07-20: Multiple Browser URI Obfuscation Weakness 2004-07-20: Microsoft Windows Utility Manager Local Privilege Escalation Variant Vulnerability 2004-07-19: Microsoft Windows Task Scheduler Remote Buffer Overflow Vulnerability 2004-07-17: Microsoft Internet Explorer Shell: IFrame Cross-Zone Scripting Vulnerability 2004-07-17: Microsoft Internet Explorer JavaScript Method Assignment Cross-Domain Scripting Vulnerability 2004-07-16: Microsoft Windows Shell CLSID File Extension Misrepresentation Vulnerability 2004-07-16: Microsoft Windows HTML Help Heap Overflow Vulnerability 2004-07-16: Microsoft Outlook Express Malformed Email Header Denial Of Service Vulnerability 2004-07-16: Microsoft Windows POSIX Subsystem Buffer Overflow Local Privilege Escalation Vulnerability 2004-07-16: Microsoft IIS 4 Redirect Remote Buffer Overflow Vulnerability 2004-07-15: Microsoft Windows Local Descriptor Table Local Privilege Escalation Vulnerability 2004-07-14: Microsoft Windows showHelp CHM File Execution Weakness 2004-07-14: Microsoft Systems Management Server Remote Denial Of Service Vulnerability 2004-07-14: Microsoft Internet Explorer Modal Dialog Zone Bypass Vulnerability 2004-07-14: Microsoft Internet Explorer Shell.Application Object Script Execution Weakness 2004-07-13: Microsoft Internet Explorer URL Local Resource Access Weakness 2004-07-12: Microsoft Internet Explorer Popup.show Mouse Event Hijacking Vulnerability 2004-07-12: Microsoft Internet Explorer JavaScript Desktop Spoofing Vulnerability 2004-07-12: Microsoft Windows 2000 Media Player Control Media Preview Script Execution Vulnerability 2004-07-12: Microsoft Internet Explorer JavaScript Null Pointer Exception Denial Of Service Vulnerability 2004-07-12: Microsoft Outlook Express Message Window Script Execution Vulnerability 2004-07-08: Microsoft Word/Outlook Object Tag Security Setting Compromise Vulnerability 2004-07-08: Microsoft Windows Window Message Subsystem Design Error Vulnerability 2004-07-08: Microsoft Internet Explorer Self Executing HTML File Vulnerability 2004-07-07: Microsoft Windows Program Group Converter Filename Local Buffer Overrun Vulnerability 2004-07-07: Microsoft Internet Explorer Non-FQDN URI Address Zone Bypass Vulnerability 2004-07-05: Multiple Vendor Internet Browser User Action Prediction/Interception Weakness 2004-07-03: Microsoft Internet Explorer Cross-Domain Frame Loading Vulnerability 2004-07-02: Microsoft Internet Explorer ADODB.Stream Object File Installation Weakness 2004-06-30: Multiple Vendor FTP pipe Vulnerability 2004-06-29: Business Objects Crystal Reports Web Form Viewer Directory Traversal Vulnerability 2004-06-22: Multiple Vendor Broadband Router Web-Based Administration Denial Of Service Vulnerability 2004-06-17: Microsoft Windows Remote Desktop Protocol Server Key Verification Vulnerability 2004-06-16: Microsoft Internet Explorer HREF Save As Denial of Service Vulnerability 2004-06-16: Multiple Vendor H.323 Protocol Implementation Vulnerabilities 2004-06-15: Microsoft Windows H.323 Remote Buffer Overflow Vulnerability 2004-06-15: Microsoft Windows Private Communications Transport Protocol Buffer Overrun Vulnerability 2004-06-15: Microsoft Virtual DOS Machine Local Privilege Escalation Vulnerability 2004-06-15: Microsoft ASN.1 Library Double Free Memory Corruption Vulnerability 2004-06-15: Microsoft Windows WMF/EMF Image Formats Remote Buffer Overflow Vulnerability 2004-06-15: Microsoft Internet Explorer Wildcard DNS Cross-Site Scripting Vulnerability 2004-06-15: Microsoft Windows Management Local Privilege Escalation Vulnerability 2004-06-15: Microsoft Windows Logon Process Remote Buffer Overflow Vulnerability 2004-06-10: Multiple Microsoft Internet Explorer Script Execution Vulnerabilities 2004-06-08: Microsoft DirectX DirectPlay Remote Malformed Packet Denial Of Service Vulnerability 2004-06-07: Microsoft ISA Server 2000 FTP Bounce Filtering Vulnerability 2004-06-07: Microsoft ISA Server Redirect URI Handler Web Proxy Service Remote Denial Of Service Vulnerability 2004-06-07: Microsoft ISA Server Web Proxy Malformed SSL Packet Remote Denial of Service Vulnerability 2004-06-07: Microsoft ISA Server HTTP Authentication Scheme Vulnerability 2004-06-07: Microsoft ISA Server 2000 Site And Content Rule Bypass Vulnerability 2004-06-04: Microsoft Internet Explorer ITS Protocol Zone Bypass Vulnerability 2004-06-04: Microsoft Outlook Mail Client E-mail Address Verification Weakness 2004-06-04: Microsoft Outlook 2003 Predictable File Location Weakness 2004-05-31: Microsoft Windows 2000 Domain Expired Account Security Policy Violation Weakness 2004-05-26: Microsoft Outlook 2003 Media File Script Execution Vulnerability 2004-05-25: Multiple Vendor URI Protocol Handler Arbitrary File Creation/Modification Vulnerability 2004-05-21: Microsoft IIS 5.0 .printer ISAPI Extension Buffer Overflow Vulnerability 2004-05-20: Microsoft Windows Workstation Service Remote Buffer Overflow Vulnerability 2004-05-18: Microsoft Internet Explorer CSS Style Sheet Memory Corruption Vulnerability 2004-05-17: Microsoft Windows XP Self-Executing Folder Vulnerability 2004-05-17: Microsoft UPnP NOTIFY Buffer Overflow Vulnerability 2004-05-15: Microsoft Internet Explorer http-equiv Meta Tag Denial of Service Vulnerability 2004-05-14: Microsoft Internet Explorer Codebase Double Backslash Local Zone File Execution Weakness 2004-05-14: Microsoft Internet Explorer Double Backslash CHM File Execution Weakness 2004-05-14: Microsoft Internet Explorer Interface Spoofing Vulnerability 2004-05-14: Microsoft Windows LSASS Buffer Overrun Vulnerability 2004-05-13: Microsoft Outlook Express URI Obfuscation Vulnerability 2004-05-13: Windows Media Services MX_STATS_LogLine NSIISlog.DLL Remote Buffer Overflow Vulnerability 2004-05-11: Microsoft Windows Terminal Server Patch Unspecified Denial Of Service Vulnerability 2004-05-11: Microsoft Windows HSC DVD Driver Upgrade Code Execution Vulnerability 2004-05-11: Microsoft Windows 2000/NT Terminal Server Service RDP DoS Vulnerability 2004-05-11: Microsoft Jet Database Engine Remote Code Execution Vulnerability 2004-05-11: Multiple Mail Transfer Agent Embedded Hyperlink URI Obfuscation Variant Weakness 2004-05-11: Microsoft Internet Explorer Unconfirmed Memory Corruption Vulnerability 2004-05-10: Microsoft Internet Explorer XML Parsing Denial Of Service Vulnerability 2004-05-10: Qualcomm Eudora Embedded Hyperlink URI Obfuscation Weakness 2004-05-10: Microsoft Internet Explorer Embedded Image URI Obfuscation Weakness 2004-05-06: Microsoft ASP.NET Malformed HTTP Request Information Disclosure Vulnerability 2004-04-30: Microsoft Internet Explorer Meta Data Foreign Domain Spoofing Vulnerability 2004-04-26: Microsoft Windows Long Share Name Buffer Overrun Vulnerability 2004-04-21: Microsoft Outlook Express MHTML Forced File Execution Vulnerability 2004-04-21: Microsoft Outlook Express MHTML Redirection Local File Parsing Vulnerability 2004-04-21: Microsoft Windows Object Identity Network Communication Vulnerability 2004-04-21: Microsoft Windows COM Internet Service/RPC Over HTTP Remote Denial Of Service Vulnerability 2004-04-21: Microsoft Windows RPCSS Service Remote Denial Of Service Vulnerability 2004-04-21: Microsoft Windows RPCSS Multi-thread Race Condition Vulnerability 2004-04-21: Microsoft Negotiate SSP Remote Buffer Overflow Vulnerability 2004-04-21: Microsoft Windows 2000 Domain Controller LDAP Denial Of Service Vulnerability 2004-04-21: Microsoft Windows SSL Library Denial of Service Vulnerability 2004-04-21: Microsoft Windows Help And Support Center URI Validation Code Execution Vulnerability 2004-04-21: Microsoft Windows Utility Manager Local Privilege Escalation Vulnerability 2004-04-20: Microsoft Visual Studio .NET Debugger Privilege Enforcement Weakness 2004-04-19: Microsoft Windows ASN.1 Library Bit String Processing Integer Handling Vulnerability 2004-04-19: Microsoft ASN.1 Library Length Integer Mishandling Memory Corruption Vulnerability 2004-04-19: Microsoft Windows 2000 Install Unprotected ADMIN$ Share Vulnerability 2004-04-17: Microsoft Internet Explorer Object Element Data Denial Of Service Vulnerability 2004-04-15: Multiple Vendor IKE Implementation Certificate Authenticity Verification Vulnerability 2004-04-14: Microsoft Outlook/Outlook Express Remote Denial Of Service Vulnerability 2004-04-14: Microsoft Remote Procedure Call Service DoS Vulnerability 2004-04-14: Microsoft Exchange Server Buffer Overflow Vulnerability 2004-04-14: Microsoft Windows SMTP Service Authorization Bypass Vulnerability 2004-04-14: Microsoft Exchange Server Invalid MIME Header charset = "" DoS Vulnerability 2004-04-12: Microsoft Outlook Express Malformed EML File Denial of Service Vulnerability 2004-04-12: Microsoft Internet Explorer Bitmap File Processing Denial of Service Vulnerability 2004-04-07: Microsoft SQL Server 2000 Resolution Service Stack Overflow Vulnerability 2004-04-07: Microsoft Windows DCOM RPC Interface Buffer Overrun Vulnerability 2004-04-07: Microsoft Windows Media Services NSIISlog.DLL Remote Buffer Overflow Vulnerability 2004-04-07: MS Visual Studio RAD Support Buffer Overflow Vulnerability 2004-04-07: Microsoft Windows ntdll.dll Buffer Overflow Vulnerability 2004-04-07: Microsoft Internet Explorer Remote IFRAME Denial Of Service Vulnerability 2004-04-06: Microsoft Internet Explorer Macromedia Flash Player Plug-in Remote Denial of Service Vulnerability 2004-04-06: Microsoft Internet Explorer MSWebDVD Object Denial of Service Vulnerability 2004-04-05: Microsoft SharePoint Portal Server Unspecified Cross-Site Scripting Vulnerabilities 2004-04-03: Multiple Vendor Network Device Driver Frame Padding Information Disclosure Vulnerability 2004-04-01: Microsoft Internet Explorer HTML Form Status Bar Misrepresentation Vulnerability 2004-03-29: Microsoft Windows XP HCP URI Handler Arbitrary Command Execution Vulnerability 2004-03-26: Multiple Vendor Internet Browser Cookie Path Argument Restriction Bypass Vulnerability 2004-03-24: Microsoft Visual C++ MFC ISAPI Extension Denial Of Service Vulnerability 2004-03-19: Microsoft Windows XP Explorer.EXE Remote Denial of Service Vulnerability 2004-03-16: Microsoft Windows XP explorer.exe Remote Denial of Service Vulnerability 2004-03-11: Microsoft Outlook Mailto Parameter Quoting Zone Bypass Vulnerability 2004-03-09: Microsoft Windows Media Services Remote Denial of Service Vulnerability 2004-03-09: Microsoft MSN Messenger Information Disclosure Vulnerability 2004-03-08: Multiple Vendor HTTP Response Splitting Vulnerability 2004-03-04: Microsoft Internet Explorer Script URL Cross-Domain Access Violation Vulnerability 2004-03-04: Microsoft Internet Explorer window.open Search Pane Cross-Zone Scripting Vulnerability 2004-03-04: Microsoft Internet Explorer window.open Media Bar Cross-Zone Scripting Vulnerability 2004-02-27: Microsoft Internet Explorer Cross-Domain Event Leakage Vulnerability 2004-02-26: Microsoft Windows XP explorer.exe Multiple Memory Corruption Vulnerabilities 2004-02-25: Microsoft ASN.1 Library Multiple Stack-Based Buffer Overflow Vulnerabilities 2004-02-20: Multiple Outlook/Outlook Express Predictable File Location Weaknesses 2004-02-18: Microsoft Windows NtSystemDebugControl() Kernel API Function Privilege Escalation Vulnerability 2004-02-17: Microsoft Windows XP Help And Support Center Interface Spoofing Weakness 2004-02-16: Microsoft Outlook Express Arbitrary Program Execution Vulnerability 2004-02-16: Microsoft Internet Explorer Bitmap Processing Integer Overflow Vulnerability 2004-02-14: Microsoft IIS Unspecified Remote Denial Of Service Vulnerability 2004-02-11: Microsoft Internet Explorer Unauthorized Clipboard Contents Disclosure Vulnerability 2004-02-10: Microsoft Baseline Security Analyzer Vulnerability Identification Weakness 2004-02-10: Microsoft Virtual PC For Mac Temporary File Privilege Escalation Vulnerability 2004-02-10: Microsoft Windows Internet Naming Service Buffer Overflow Vulnerability 2004-02-10: Microsoft Internet Explorer Double-Null URI Denial Of Service Vulnerability 2004-02-09: Microsoft Internet Explorer LoadPicture File Enumeration Weakness 2004-02-03: Microsoft Internet Explorer NavigateAndFind() Cross-Zone Policy Vulnerability 2004-02-02: Microsoft MDAC Function Broadcast Response Buffer Overrun Vulnerability 2004-02-02: Microsoft Exchange Server 2003 Outlook Web Access Random Mailbox Access Vulnerability 2004-02-02: Multiple Browser URI Display Obfuscation Weakness 2004-02-02: Microsoft Internet Explorer BackToFramedJPU Cross-Domain Policy Vulnerability 2004-02-02: Microsoft Internet Explorer Window.MoveBy/Method Caching Mouse Click Event Hijacking Vulnerability 2004-01-27: Microsoft Windows XP Explorer Self-Executing Folder Vulnerability 2004-01-21: Microsoft Windows Samba File Sharing Resource Exhaustion Vulnerability 2004-01-14: Multiple Vendor calloc() Implementation Integer Overflow Vulnerability 2004-01-13: Microsoft ISA Server 2000 H.323 Filter Remote Buffer Overflow Vulnerability 2004-01-12: Multiple Vendor Sun RPC xdr_array Buffer Overflow Vulnerability 2004-01-07: Microsoft Word Form Protection Password Removal Weakness 2004-01-02: Microsoft Internet Explorer Malicious Shortcut Self-Executing HTML Vulnerability ------- Sender Policy Framework: http://spf.pobox.com/ Archives at http://archives.listbox.com/spf-discuss/current/ Send us money! http://spf.pobox.com/donations.html To unsubscribe, change your address, or temporarily deactivate your subscription, please go to http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com