Home
News Archive    Translate Traducen
News October 2003
31 october 2003

New Trojans
Rewind 1.0

GWGhost 2.5 A5 with dropper

HGZ 0.0.1

Vulnerabilities & Exploits
www.securitytracker.com:
SGI IRIX NFS '/etc/exports' Wildcard Access Control Flaw May Grant Remote Users Access to the NFS Share. Read more

www.securitytracker.com:
Service Location Protocol Daemon (slpd) Temporary File Flaw May Let Local Users Gain Root Privileges. Read more

www.securitytracker.com:
BEA WebLogic Enterprise Input Validation Flaws Let Remote Users Determine File Existence, Deny Service, and Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
BEA Tuxedo Input Validation Flaws Let Remote Users Determine File Existence, Deny Service, and Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
e107 Input Validation Flaw Lets Remote Users Deny Service. Read more

www.securitytracker.com:
Solaris NFS Server Null Pointer Dereference Lets Remote Users Crash the File System. Read more

www.securitytracker.com:
tc.SimpleWebServer Buffer Overflow in Processing the HTTP Referer Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
thttpd 'Host' Header Directory Traversal Flaw May Disclose Files to Remote Users. Read more

www.securitytracker.com:
Apache mod_rewrite Contains a Buffer Overflow. Read more

www.securitytracker.com:
Apache mod_alias Contains a Buffer Overflow. Read more

www.securitytracker.com:
Apache mod_cgid May Disclose CGI Output to Another Client. Read more

News
www.theregister.co.uk:
Gone Phishin'. Read more

cansecwest.com:
The fifth annual CanSecWest/core04 conference will be held during April 21-23, 2004 in Vancouver. Read more

www.theregister.co.uk:
Crack codes and win prizes. Read more

www.securitypipeline.com:
Microsoft Updates Security Patches. Read more

techfocus.org:
Multimillionaire Arrested for Hacking Into Company. Read more

www.publictechnology.net:
Rising tide of spam, viruses ruining internet for middle Britain says report. Read more

www.internetweek.com:
Security Flaws Make Macs Vulnerable To Attacks. Read more

news.zdnet.co.uk:
Worms and toasters turn up heat on corporate security. Read more

www.timesonline.co.uk:
Founder of Redbus denies hacking. Read more

www.silicon.com:
UK security 'most shameful in Europe'. Read more

www.usatoday.com:
Hacker prosecutions complicated by hijackings. Read more

30 october 2003

New Trojans
RBackdoor 1.1

Magic PS 1.41

MagicLink netPcSpy 1.5

Vulnerabilities & Exploits
www.securitytracker.com:
Apple's QuickTime for Java May Let Remote Users Access the System. Read more

www.securitytracker.com:
Mac OS X Kernel Can Be Crashed By Local Users Sending a Long Command Line Argument. Read more

www.securitytracker.com:
mod_security Buffer Overflow in sec_filter_out() Lets Local Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Oracle Files Configuration May Disclose Restricted Contents to Remote Authenticated Users. Read more

www.securitytracker.com:
PostgreSQL Buffer Overflow in to_ascii() May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Mac OS X Screensaver Lets Physically Local Users Pass Keystrokes to the Operating System. Read more

www.securitytracker.com:
Fastream NETFile Server Input Validation Flaw Permits Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Mac OS X Discloses Core Files to Local Users. Read more

www.securitytracker.com:
KPopup Unsafe system() Calls Let Local Users Execute Arbitrary Commands With Root Privileges. Read more

www.securitytracker.com:
Mac OS X Default Directory Copy Permissions May Let Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
InfronTech WebTide Server Discloses Files and Directories to Remote Users. Read more

www.debian.org:
DSA-396-1 thttpd -- missing input sanitizing, wrong calculation. Read more

News
www.timesoftibet.com:
Chinese Internet Group Found Spying on Tibetan Government Computers. Read more

www.securityfocus.com:
Unlucky phisher pleads guilty. Read more

www.theregister.co.uk:
Microsoft shoots the Windows Messenger. Read more

www.news.com.au:
Youth arrested over ISP hacking. Read more

news.com.com:
Orbitz investigates security breach. Read more

29 october 2003

New Trojans
Poltergeist 1.1

Spook 1.2

HGZ 2003 beta2

Leon

Tools
elinks.or.cz:
ELinks is a program for browsing the web in text mode. Read more

Guides, Papers, etc.
www.securityfocus.com:
Introduction to Nessus. Read more

www.esj.com:
XML: A Growing Security Threat? Read more

Vulnerabilities & Exploits
www.atstake.com:
Arbitrary File Overwrite via Core Files. Read more

www.atstake.com:
Long argv[] Buffer Overflow. Read more

www.securitytracker.com:
sh-httpd Discloses Files to Remote Users. Read more

www.securitytracker.com:
Musicqueue Buffer Overflow May Let Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
Les Visiteurs Include File Error Lets Remote Users Execute Arbitrary Commands on the Target Server. Read more

www.securitytracker.com:
Symantec Norton Internet Security Blocked Page Message Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Libnids TCP Reassembly Memory Error May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Yahoo! Messenger File Transfer Flaw Lets Remote Users Crash the Target User's Client. Read more

www.securitytracker.com:
thttpd defang() Buffer Overflow Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Chi Kien Uong Guestbook Input Validation Flaw Permits Remote Cross-Site Scripting Attacks. Read more

www.securiteam.com:
Musicqueue Multiple Local Vulnerabilities (/tmp/musicqueue.crash Symblink, Language Overflow). Read more

www.securiteam.com:
Security vulnerability in SUN's Java Virtual Machine Implementation (Test). Read more

www.securiteam.com:
Buffer Overflow in Sun Solaris Runtime Linker (Exploit). Read more

www.securiteam.com:
Internet Explorer and Opera Local Zone Restriction Bypass (Exploit). Read more

www.securiteam.com:
MERCUR Mail Server Control-Service Vulnerability (Exploit). Read more

www.securiteam.com:
ByteHoard Directory Disclosure Vulnerability. Read more

www.securiteam.com:
InfronTech WebTide Directory and File Disclosure Vulnerability (%3F.JSP). Read more

www.securiteam.com:
sh-httpd Wildcard Character Vulnerability. Read more

www.securiteam.com:
Remote Overflow in tHTTPd (< > replacing). Read more

www.securemac.com:
Mac OS X 10.3 Panther Screen Lock Bypass. Read more

adsystems.com.pl:
malloc based buffer overflow. Read more

News
www.theregister.co.uk:
Suspected paedophile cleared by computer forensics. Read more

www.theregister.co.uk:
Sober email worm gives Windows users the DTs. Read more

www.smh.com.au:
Spammers using Matrix as bait to plant trojans. Read more

www.news.com.au:
Youth arrested over ISP hacking. Read more

www.computerworld.com:
Citibank customers hit with e-mail scam. Read more

www.securitynewsportal.com:
Multi-millionaire questioned by police over e-mail hacking and hijacking. Read more

zdnet.com.com:
Hackers: Businesses invite attacks. Read more

www.esj.com:
Security Managers Fear Next Generation of Attacks Says Survey. Read more

www.smh.com.au:
Virus researchers' conference in Sydney. Read more

28 october 2003

New Trojans
CCCP 1.0

Fatal Wound 1.0

Code_14 1.6

Vulnerabilities & Exploits
www.securitytracker.com:
Advanced Poll Include File Error Lets Remote Users Execute Arbitrary PHP Code and Operating System Commands. Read more

www.securitytracker.com:
The Bat! File Permissions Let Local Users Access the Mail of Other Local Users. Read more

www.texonet.com:
Remote overflow allows attacker to partially overwrite ebp register and execute arbitrary code. Read more

News
www.theregister.co.uk:
Email scammers target Halifax, Nationwide, Citibank. Read more

www.computerworld.com:
Citibank customers hit with e-mail scam. Read more

www.iranmania.com:
Iran's banking system hit by first ever electronic robbery. Read more

zdnet.com.com:
Hackers: Businesses invite attacks. Read more

www.securityfocus.com:
No effect seen in hack disclosure law. Read more

www.reuters.co.uk:
Hackers Get Novel Defense; the Computer Did It. Read more

www.ohio.com:
Weak links in U.S. grid. Read more

27 october 2003

New Trojans
Sinique 1.0

NTbindshell

Magic PS 1.4

Activity Monitor 3.01

Vulnerabilities & Exploits
www.securiteam.com:
iwconfig Buffer Overflow Vulnerability. Read more

www.securiteam.com:
mIRC DCC Vulnerability (Long Filename). Read more

www.securiteam.com:
HTML Help API - Privilege Escalation. Read more

www.securiteam.com:
Shatter XP (Visual Styles). Read more

www.securiteam.com:
MERCUR Mail Server AUTH Vulnerability (Base64). Read more

www.securiteam.com:
Update Rollup 1 for Windows XP Is Available. Read more

www.securiteam.com:
CensorNet Cross Site Scripting Vulnerability (DENIEDURL). Read more

www.securiteam.com:
Wu-FTPd SKEY Stack Overflow Vulnerability. Read more

News
www.nytimes.com:
Brazil Becomes a Cybercrime Lab. Read more

www.msnbc.com:
Bringing Down the Internet. Read more

reviews-zdnet.com.com:
What can criminal hackers really do to your PC? Read more

www.bayarea.com:
Tech ignorance, vague laws lead to mistaken conviction. Read more

news.com.au:
Blaster hits Japan's post office. Read more

www.hindustantimes.com:
Security woes hit Microsoft. Read more

www.news-press.com:
Hackers hit sheriff’s site. Read more

26 october 2003

New Trojans
dFTPb 1.0

Pink Pigeon 2.0

Pink Pigeon 2.3

Pink Pigeon 2.4

Tools
The great Commander.
Shellcode & client for the remote execution of commands through an inverse connection by random ports on TCP.
Only for Linux x86 Platforms. Read more

XRunAs is a tool that allows administrators to run commands on remote computers under the context of a specified user account without the use of the Schedule service. Read more

Vulnerabilities & Exploits
www.securitytracker.com:
Sylpheed alertpanel_error_log() Format String Flaw Lets Remote Server Execute Arbitrary Code on the Client. Read more

www.securitytracker.com:
Scanner Access Now Easy (SANE) Flaws Let Remote Users Crash the 'saned' Daemon. Read more

www.securitytracker.com:
Opera Lets Remote Users Execute Arbitrary Files in the Local Zone Using a Specially Crafted IFRAME Tag. Read more

www.securitytracker.com:
SiteKiosk Domain Billing Mechanism Can Be Bypassed By Local Users. Read more

www.securitytracker.com:
Microsoft Internet Explorer Lets Remote Users Execute Arbitrary Files in the Local Zone Using a Specially Crafted IFRAME/Location Header. Read more

www.securitytracker.com:
Apache Cocoon Forms May Let Remote Users Execute Arbitrary Java Code on the System. Read more

www.securitytracker.com:
Apache Cocoon 'view-source' Sample Script Discloses Files to Remote Users. Read more

News
www.internetweek.com:
Attackers Gearing Up To Exploit Windows Messenger Security Hole. Read more

news.mysanantonio.com:
Hacking for profit a growing concern in Romania's tech sector. Read more

news.bbc.co.uk:
E-mail scam targets online bank. Read more

25 october 2003

New Trojans
Hacker defender 0.84

Slawek_troj 1.0

MagicLink 2.5 (b)

Devil 4 

Tools
Camera/Shy, a browser-based steganography application from HACKTIVISMO.
Camera/Shy was developed for democracy activists operating from behind national firewalls.
It allows users to trade in banned content across the Internet. Camera/Shy is the debut release from Hacktivismo, a special operations group sponsored by the CULT OF THE DEAD COW.
Hacktivismo offers technical solutions to the human rights community, and has over thirty associates from North America, Europe, Russia, Israel, Australia, Taiwan, and Korea. Read more

Vulnerabilities & Exploits
www.securitytracker.com:
HP Insight Manager and Other Management Agents May Let Remote Users Gain Access to the System. Read more

www.securitytracker.com:
GNU/Linux '/bin/ls' Memory Allocation May Let Remote Users Deny Service Via Other Applications. Read more

News
Phishing for PayPal. Read more

www.newsfactor.com:
Microsoft Patches Its Patches. Read more

www.computerworld.com:
Microsoft posts 'revisions' to security bulletins. Read more

www.securityfocus.com:
Joe Average User Is In Trouble. Read more

www.computerworld.com:
Q&A: DNS inventor Paul Mockapetris on Internet security. Read more

www.usatoday.com:
University receives grant to fight hackers. Read more

www.hacktivismo.com:
'Hacker chatroom secrets exposed' -- The Lameness Just Keeps on Coming. Read more

www.securitypipeline.com:
Study: Spam Is Making Consumers Log Off. Read more

zdnet.com.com:
Antispam methods aim to merge. Read more

24 october 2003

New Trojans
Paszczus 1.6.4

Spook 3.0

Red Horse 0.1

Luzak 1.00 PL

Guides, Papers, etc.
www.securityfocus.com:
Fighting Internet Worms With Honeypots. Read more

Vulnerabilities & Exploits
www.securitytracker.com:
Sun Java Runtime Environment Classloader Flaw May Let Untrusted Applets Gain Elevated Privileges. Read more

www.securitytracker.com:
My Classifieds SQL Input Validation Flaw Lets Remote Users Inject SQL Commands. Read more

www.securitytracker.com:
Web Wiz Forums Input Validation Holes Permit Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
SCO OpenServer Scripts Use of Unsafe Temporary Files May Give Local Users Elevated Privileges. Read more

www.securitytracker.com:
MERCUR Mail Server AUTH Command Buffer Overflow Lets Remote Users Crash the Mail Service. Read more

www.securitytracker.com:
MySQL mysql_change_user() Double Free Error Lets Remote Authenticated Users Crash mysqld. Read more

www.securitytracker.com:
HP Servicecontrol Manager May Yield Access to Local Users. Read more

www.securiteam.com:
Cross-Site Java breaks Sandbox Isolation for Unsigned Applets. Read more

www.securiteam.com:
Remote Origo ASR-8100 ADSL Reset and Permanent Denial of Service Attack. Read more

www.securiteam.com:
Apache Cocoon Directory Traversal Vulnerability. Read more

www.securiteam.com:
eMule's Web Control Panel Vulnerable to DoS (Long Password). Read more

News
www.securityfocus.com:
Justice e-censorship gaffe sparks controversy. Read more

news.com.au:
Blaster hits Japan's post office. Read more

www.zdnet.com.au:
Son of MSBlast on the way? Read more

www.gnutellanews.com:
Winamp5 - New and improved? Or a security risk? Read more

www.iht.com:
A testing ground for tools to defend the Web. Read more

www.theregister.co.uk:
Remote access provider expands Euro Wi-Fi coverage. Read more

23 october 2003

New Trojans
System33r Downloader 0.7

Skull-Burrow 3.0b (j)

Magic PS 1.1

NetControl TakeOver 3.0

Guides, Papers, etc.
web.lemuria.org:
Simulating and optimising worm propagation algorithms. (pdf)
This paper describes a series of simulations run to estimate various worm growth patterns and their corresponding propagation algorithms. Read more

Workshop on Security of Information Technologies. Read more

Vulnerabilities & Exploits
www.guninski.com:
Sylpheed-claws format string bug. Read more

www.securitytracker.com:
Sun Java Undocumented Variables Permit Cross Domain Access Violations. Read more

www.securitytracker.com:
HP OpenView NNM Memory Leak May Let Remote Users Deny Service on the Target System. Read more

www.securitytracker.com:
Origo ASR-8100 ADSL Router Offers a Remote Configuration Interface With No Authentication. Read more

www.securitytracker.com:
GoldLink SQL Injection Flaw Yields Administrative Access to Remote Users. Read more

www.securitytracker.com:
eMule Can Be Crashed By Remote Users Sending Long Password Values. Read more

www.securitytracker.com:
Opera Browser HREF Tag Buffer Overflow Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
VPOP3 E-mail Server Input Validation Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securiteam.com:
Microsoft Exchange 2000 Heap Overflow (XEXCH50). Read more

www.securiteam.com:
PGPDisk Available to Any "Switched User" Under Windows XP. Read more

www.securiteam.com:
SQL Injection Vulnerability in FuzzyMonkey My Classifieds SQL. Read more

News
www.theregister.co.uk:
Opera in minor security drama. Read more

www.theregister.co.uk:
UK banks and police proffer anti-phishing advice. Read more

www.ukauthority.com:
How do you hack into an IT expert’s computer? Ask for his password…. Read more

www.theregister.co.uk:
Yahoo! sets decoy email traps for spammers. Read more

www.signonsandiego.com:
Locally based resource center supports victims of identity theft. Read more

www.insidevc.com:
Join the U.S. Hacker Corps; see the world. Read more

22 october 2003

New Trojans
HGWebdl 1.0 beta

Taladrator 2.0 Beta 1.3

Insecure Executable Downloader 1.1

Mini Spy 1.00

Syn Spy 3.0

Tools
www.atstake.com:
Redfang - The Bluetooth Hunter. Read more

Guides, Papers, etc.
www.securityfocus.com:
Web Security Appliance With Apache and mod_security. Read more

www.internetweek.com:
Port-Blocking Isn't Enough For Security. Read more

Vulnerabilities & Exploits
www.securitytracker.com:
Dansie Shopping Cart Discloses Installation Path to Remote Users. Read more

www.securitytracker.com:
ByteHoard Input Validation Flaw Discloses Files on the System to Remote Users. Read more

www.securitytracker.com:
Resin Web Server Example Scripts Permit Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
cpCommerce Include File Flaw Lets Remote Users Execute Arbitrary Commands on the Target System. Read more

www.securiteam.com:
RealOne Player SMIL Cross-Site Scripting Vulnerability. Read more

www.securiteam.com:
mIRC "IRC" Protocol Remote Buffer Overflow (Exploit). Read more

News
www.kingcountyjournal.com:
E-mail scam targets Comcast subscribers. Read more

comment.zdnet.co.uk:
The case of the Trojan Wookiee. Read more

timesofindia.indiatimes.com:
What the hack, it’s mobilephones now. Read more

www.theregister.co.uk:
Broadband wireless growing. Read more

www.varbusiness.com:
Do Hackers Serve a Purpose? Read more

www.canada.com:
Microsoft declares war against hackers. Read more

www.tallahassee.com:
Romania fighting ring of Internet vampires. Read more

21 october 2003

New Trojans
Beast 2.02 king

Devil 3

Nethief 5.2

Advanced Stealth Email Redirector 6.2

Vulnerabilities & Exploits
www.winnetmag.com:
Arbitrary Code Execution Vulnerability in Microsoft Exchange Server 5.5 Outlook Web Access. Read more

www.securiteam.com:
Opera HREF Escaped Server Name Overflow. Read more

www.securiteam.com:
Dansie Shopping Cart Discloses Installation Path to Remote Users. Read more

www.securiteam.com:
VPOP3 Web Mail Cross-Site Scripting Vulnerability. Read more

www.securiteam.com:
ByteHoard Directory Traversal Vulnerability. Read more

News
www.newsday.com:
Phone, power, computers vulnerable, expert says. Read more

pcworld.idg.com.au:
ISC opens Internet crisis center. Read more

www.news.com.au:
Viruses plague China. Read more

www.nwfusion.com:
Virus attacks. Read more

www.eweek.com:
Windows Not Trustworthy. Read more

www.theregister.co.uk:
Windows server buyers buy it... because it's there? Read more

20 october 2003

New Trojans
Paszczus 1.6

System33r Downloader 0.6 fixed

Iroffer 1.2b22

Guides, Papers, etc.
Hostile Java Applets Project. Read more Vulnerabilities & Exploits
www.securitytracker.com:
Oracle Database Command Line Buffer Overflow Lets Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
Vivisimo Clustering Engine Input Validation Flaw Permits Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
IRCnet IRCD Buffer Overflow in JOIN Command Lets Remote Users Crash the Server. Read more

www.securitytracker.com:
Novell iChain Can Be Crashed By a Remote User Sending a RETR Command. Read more

www.securitytracker.com:
Novell iChain May Let a Remote User Hijack an Existing Session. Read more

www.securiteam.com:
Geeklog SQL Injection Exploit Code. Read more

www.securiteam.com:
Oracle Command Line Overflow (Exploit). Read more

www.securiteam.com:
Proof of Concept for Windows Messenger Service Overflow. Read more

www.securiteam.com:
PeopleSoft LONGCHAR and VARCHAR Data Upload (DoS). Read more

www.securiteam.com:
PeopleSoft Control-J Information Disclosure. Read more

www.securiteam.com:
Linksys EtherFast Router Denial of Service Attack. Read more

www.securiteam.com:
New XSS Vulnerability in Microsoft Hotmail Allows Access to Mailboxes (XMP). Read more

www.securiteam.com:
ListBox and ComboBox Control Buffer Overflow (Technical Details). Read more

www.securiteam.com:
Microsoft PCHealth Buffer Overflow Vulnerability (Technical Details). Read more

www.securiteam.com:
Vulnerability in Exchange Server 5.5 Outlook Web Access Could Allow Cross-Site Scripting Attack (MS03-047). Read more

www.securiteam.com:
Vulnerability in Exchange Server Could Allow Arbitrary Code Execution (MS03-046). Read more

www.securiteam.com:
File Inclusion Vulnerability in cpCommerce. Read more

News
straitstimes.asia1.com.sg:
After Trojan Horses and worms, here comes the Beast. Read more

www.boston.com:
Romania emerges as nexus of cybercrime. Read more

www.insidevc.com:
Join the U.S. Hacker Corps; see the world. Read more

money.cnn.com:
Rudy Giuliani, the anti-hacker. Read more

www.computerworld.com:
LEAP attack tool author says he wants to alert users to risks. Read more

www.washingtonpost.com:
The Patch Of the Month. Read more

19 october 2003

New Trojans
Herman Uploader Public Beta 1.1

Tini Telnet

AOL Password Stealer

Specrem 3.0

Guides, Papers, etc.
www.internetweek.com:
Web Services Security Basics. Read more

Vulnerabilities & Exploits
www.securitytracker.com:
Fetchmail Can Be Crashed By Remote Users Sending a Specially Crafted E-mail Message. Read more

www.securitytracker.com:
GNOME Display Manager (gdm) Can Be Crashed By Local Users. Read more

News
catless.ncl.ac.uk:
'Lover Spy' software. Read more

www.timesdispatch.com:
Romania emerges as cybercrime nexus. Read more

money.telegraph.co.uk:
Barclays strikes back at online fraudsters. Read more

18 october 2003

New Trojans
VNC 3.3.7 modified

Glacier 8.2

Msn Trojan 2.0 (2) server

Remote Access 1.0 server

Sensive 5.1

Vulnerabilities & Exploits
Microsoft Windows Messenger Service Popup Overflow Vulnerability.

News
news.zdnet.co.uk:
Trojan defence acquits British teenager. Read more

www.theregister.co.uk:
Teen hacker is not guilty. Read more

news.bbc.co.uk:
Teenager cleared of hacking. Read more

www.microsoft-watch.com:
New MSN Security and Hotmail Extra Storage Offerings in the Works. Read more

www.infoworld.com:
Longhorn hinges on security. Read more

17 october 2003

New Trojans
Aphex tunneld 2.0

AIM Fake 4.2

Iroffer 1.2b21

Stealth 2.19 X-edition

MP Bus

Guides, Papers, etc.
cyberlaw.stanford.edu:
Conference on CyberSecurity, Research, and Disclosure. Read more

www.securityfocus.com:
Incident Response Tools For Unix, Part Two: File-System Tools. Read more

www.securityfocus.com:
Transparent, Bridging and In-line Firewall Devices. Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
glibc getgrouplist() Buffer Overflow May Let Remote Users Deny Service or Execute Arbitrary Code. Read more

www.securitytracker.com:
AOL Instant Messenger aim://getfile?screenname Buffer Overflow Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Microsoft Exchange Server Buffer Overflow in Processing Extended Verb Requests May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Microsoft Outlook Web Access Input Validation Flaw in 'Compose New Message' Permits Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Microsoft ListBox and ComboBox 'user32.dll' Buffer Overflow May Allow Local Users to Gain Elevated Privileges. Read more

www.securitytracker.com:
Microsoft Help and Support Center HCP Buffer Overflow Lets Remote and Local Users Execute Arbitrary Code With Local Computer Privileges. Read more

www.securitytracker.com:
Microsoft Windows Messenger Service Buffer Overflow Lets Remote Users Execute Arbitrary Code With Local System Privileges. Read more

www.securitytracker.com:
Microsoft Windows Troubleshooter ActiveX Control Buffer Overflow Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Microsoft Authenticode Low Memory Flaw May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Linksys BEFSX41 Can Be Crashed With a Long Log_Page_Num Admin Interface Parameter. Read more

www.securitytracker.com:
Sun Solaris pipe(2) Race Condition May Let Local Users Crash the System. Read more

www.securitytracker.com:
WinSyslog Can Be Crashed By Remote Users Sending a Long Syslog Message. Read more

www.securitytracker.com:
DBMail Input Validation Flaw Lets Remote Users Inject SQL Commands. Read more

www.securitytracker.com:
Sun Solaris sysinfo(2) May Disclose Kernel Memory to Local Users. Read more

www.securiteam.com:
mah-jong Remote DoS (NULL). Read more

News
www.theregister.co.uk:
MS shores up five critical security holes. Read more

www.siliconvalley.com:
Microsoft warns of four new Windows flaws. Read more

rss.com.com:
Are patches better in batches? Read more

www.internetweek.com:
Microsoft Debuts Roll-Up Of Windows XP Security Patches. Read more

www.internetweek.com:
Microsoft Security VP: Security Is Customers' "Top Priority". Read more

www.theregister.co.uk:
Beefed-up firewall, new version of Update for XP SP2. Read more

www.theregister.co.uk:
VeriSign's Site Finder is undead. Read more

www.siliconvalley.com:
VeriSign to sell part of domain name business. Read more

www.theregister.co.uk:
Spammers struggle with words. Read more

rss.com.com:
Feds admit error in hacking conviction. Read more

16 october 2003

New Trojans
KeySpy BR 2.5

Remote-Anything 3.5.11

Lamers Death 2.6 (undetected) server

Vulnerabilities & Exploits:
www.securitytracker.com:
RealOne Player Lets Remote Users Execute Scripts in Temporary Files. Read more

www.securitytracker.com:
PLANET Switch Default Account Lets Remote Users Gain Administrative Access. Read more

www.securitytracker.com:
Wrensoft Zoom Search Engine Input Validation Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securiteam.com:
UK's Internet Infrastructure Open to Prying Eyes (Zone Transfers). Read more

www.securiteam.com:
mIRC Unspecified DCC Request Vulnerability (Exploit). Read more

www.securiteam.com:
ProFTPD ASCII File Remote Root Exploit (Breaks Chroot). Read more

www.securiteam.com:
Buffer Overflow in JOIN Command Leads to DoS. Read more

www.securiteam.com:
Gaim Festival Example Plugin Command Execution Vulnerability (Exploit). Read more

www.debian.org:
DSA-395-1 tomcat4 -- incorrect input handling. Read more

News
Microsoft Security Bulletin MS03-042
Buffer Overflow in Windows Troubleshooter ActiveX Control Could Allow Code Execution (826232). Read more

Microsoft Security Bulletin MS03-043
Buffer Overrun in Messenger Service Could Allow Code Execution (828035). Read more

Microsoft Security Bulletin MS03-044
Buffer Overrun in Windows Help and Support Center Could Lead to System Compromise (825119). Read more

Microsoft Security Bulletin MS03-045
Buffer Overrun in the ListBox and in the ComboBox Control Could Allow Code Execution (824141). Read more

Microsoft Security Bulletin MS03-046
Vulnerability in Exchange Server Could Allow Arbitrary Code Execution (829436). Read more

Microsoft Security Bulletin MS03-047
Vulnerability in Exchange Server 5.5 Outlook Web Access Could Allow Cross-Site Scripting Attack (828489). Read more

www.wired.com:
Microsoft Toughens Up Outlook. Read more

www.siliconvalley.com:
Microsoft warns of four new Windows flaws. Read more

www.cnn.com:
Threat of mobile virus attack real. Read more

www.zdnet.com.au:
Backdoor Trojan behind BigPond, Internet spam woes. Read more

www.vnunet.com:
Instant messaging falls prey to hackers. Read more

www.cfcn.ca:
Hackers hit Calgary business. Read more

15 october 2003

New Trojans
Pinch 1.0

System33r Downloader 0.6

Ptakks resurrecion r2

Red ZONE 6.5 (b)

Guides, Papers, etc.
www.pcstats.com:
Beginners Guides: Encryption and Online Privacy. Read more

pacsec.jp/core03 conference.
This conference focused on newly emerging information security research, with a balance of both topics on auditing and pen-testing as well as security and defensive strategies. Read more

The annual HiverCon Security Conference will be held on November 6th-7th. Read more

Vulnerabilities & Exploits:
www.securiteam.com:
Security Vulnerability in WinSyslog (DoS). Read more

www.securiteam.com:
mIRC Unspecified DCC Request Vulnerability. Read more

News
www.techworld.com:
Warnings of Hotmail worm. Read more

www.securityfocus.com:
Prosecutors admit error in whistleblower conviction. Read more

www.theregister.co.uk:
Israel slams the door on Microsoft. Read more

www.esj.com:
State Department Blames Welchia Virus For Shutdown. Read more

www.pcworld.com:
Is the Internet More Dangerous Than Ever? Read more

siliconvalley.internet.com:
PayPal Sets Up Safety Net. Read more

www.pcworld.com:
Information Isn't Always Power. Read more

www.theregister.co.uk:
Brokerage hack teen charged. Read more

www.theregister.co.uk:
UK teen in 'elite' hacking group. Read more

www.wirelessnewsfactor.com:
Anti-Spam Sites Hacked by Spammers. Read more

14 october 2003

New Trojans
Danton 4.2.4

WinEggDrop Shell Pro

Fake Yahoo! Messenger

Vulnerabilities & Exploits:
www.securitytracker.com:
mIRC Buffer Overflow in irc:// Handler Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
myPHPCalendar Include File Flaw Lets Remote Users Execute Arbitrary Commands. Read more

www.securitytracker.com:
TRACKtheCLICK 'click.cgi' Input Validation Flaw Permits Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
OpenBSD pf(4) Memory Access Flaw May Let Remote Users Crash the Application. Read more

www.securiteam.com:
Gallery Include() File Vulnerability. Read more

www.securiteam.com:
slocate Buffer Overflow (-i, -d, Exploit). Read more

News
www.securityfocus.com:
CCIA Report is Bad Medicine. Read more

news.bbc.co.uk:
Houston suspect 'ran hacker gang'. Read more

allafrica.com:
Banks 'Must Pay Up If Hacked'. Read more

www.vnunet.com:
Instant messaging falls prey to hackers. Read more

www.arabnews.com:
Careful Browser Settings Can Limit Hacker Attacks. Read more

www.computerweekly.com:
Firms must take some blame for hackers. Read more

www.ameinfo.com:
Careless talk costs companies and consumers. Read more

kstatecollegian.com:
The truth about hackers. Read more

www.news-and-star.co.uk:
HACKERS PUT PORN ON COLLEGE WEBSITE. Read more

news.com.com:
Are search engines confusing surfers? Read more

www.computerweekly.com:
Microsoft announces security changes in fight against hackers. Read more

www.news-journalonline.com:
Some surefire ways to tame Internet viruses. Read more

13 october 2003

New Trojans
Let Me Rule! 2.0 BETA 8.2

Glacier 4.1

Glacier 5.5b server

Vulnerabilities & Exploits:
www.securitytracker.com:
Gallery Input Validation Flaw in GALLERY_BASEDIR (Again) Permits Remote Code Execution. Read more

News
www.washingtonpost.com:
Student used a version of the Beast with computer hack.
Spy Programs Threaten Data on Personal Computers. Read more

www.smh.com.au:
Security firm removes details of unpatched IE holes. Read more

www.nytimes.com:
Computer Viruses Are Frustrating Insurers, Too. Read more

www.zdnet.com.au:
Virtual girlfriend 'inspired Internet attack'. Read more

www.vnunet.com:
UK internet banks failing e-security test. Read more

news.bbc.co.uk:
US hacker accused of massive fraud. Read more

www.neowin.net:
Windows security update planned. Read more

12 october 2003

New Trojans
ForcedControl 1.0

Paszczus 1.5

MSN Spider 1.3 (2)

Vulnerabilities & Exploits:
www.securitytracker.com:
HP Tru64 dtmailpr Unspecified Flaw Yields Privileged Access to Remote Users. Read more

www.securitytracker.com:
Hummingbird CyberDOCS DOCSFusion Server Input Validation Flaws Permit SQL Injection and Cross-Site Scripting Attacks. Read more

www.debian.org:
DSA-394-1 openssl095 -- ASN.1 parsing vulnerability. Read more

www.debian.org:
DSA-393-1 openssl -- denial of service. Read more

News
www.reuters.com:
Hacker Suspect Tells Court His PC Was Hijacked. Read more

redding.com:
Teen hacked brokerage account, SEC charges. Read more

www.tucsoncitizen.com:
Student accused in investor hacking. Read more

www.computerweekly.com:
Spanish experts set up hacker competition. Read more

11 october 2003

New Trojans
Hacker defender 0.51

Guangwai Girl 1.51a

Glacier 2002 XP

News
story.news.yahoo.com:
Exploit code targets recent RPC flaws. Read more

rss.com.com:
Report: Bluetooth has security gaps. Read more

www.theregister.co.uk:
World's worst Internet groomer jailed. Read more

www.millersmiles.co.uk:
Examples of hoax Paypal email. Read more

www.theregister.co.uk:
Why 'Download.com' isn't what it appears to be. Read more

news.bbc.co.uk:
US hacker accused of massive fraud. Read more

www.theinquirer.net:
Software company to sue student over using shift key. Read more

10 october 2003

New Trojans
FreeGatez 1.01

Poly-DL 1.0

neoUploader

Anti-MSN

Vulnerabilities & Exploits:
www.securitytracker.com:
'PayPal Store Front' Include File Flaw Lets Remote Users Execute Arbitary Code. Read more

www.securitytracker.com:
Microsoft Windows Server 2003 Shell Folders Can Be Referenced Using Directory Traversal Characters. Read more

www.securitytracker.com:
PHP-Nuke 'modules.php' Input Validation Flaw in 'cid' Variable Lets Remote Users Inject SQL Commands. Read more

www.securitytracker.com:
HP-UX dtprintinfo Buffer Overflow May Let Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
OpenOffice Remote Access Input Validation Flaw Lets Remote Users Crash the Application. Read more

www.securitytracker.com:
FirstClass HTTP Daemon Can Be Crashed By Remote Users. Read more

www.securiteam.com:
Windows RPC Universal Exploit. Read more

www.securiteam.com:
SNAP Innovation's PrimeBase Database Default File Permissions and Symlinks Vulnerabilities. Read more

www.securiteam.com:
Fortigate Firewall Inadequate Log Filtering. Read more

www.securiteam.com:
TinyWeb Server Denial of Service Vulnerability. Read more

www.securiteam.com:
Atrise Everyfind Cross-Site Scripting Vulnerability. Read more

www.securiteam.com:
Gamespy 3D Code Execution Vulnerability (Long IRC Answer). Read more

www.securiteam.com:
Easy File Sharing Web Server Log File and Option File Exposure. Read more

www.securiteam.com:
EMML and EMGB Include() Security Vulnerability. Read more

www.securiteam.com:
PHP-Nuke WebMail Command Execution Vulnerability (Mailattach). Read more

www.securiteam.com:
WordPress Cafelog SQL Injection Vulnerability. Read more

News
www.nytimes.com:
Snoop Software Gains Power and Raises Privacy Concerns. Read more

www.securityfocus.com:
Teen charged in cyber stock scam. Read more

news.zdnet.co.uk:
Expert undermines hacking suspect's defence. Read more

www.globetechnology.com:
Hacker case called unique. Read more

www.theregister.co.uk:
Google bug blocks thousands of sites. Read more

www.ajc.com:
Teen Accused of Online Securities Scheme. Read more

www.detnews.com:
Microsoft steps up fight against hackers. Read more

washingtontimes.com:
Microsoft: security improvements take time. Read more

www.news-journalonline.com:
Microsoft to offer important Windows security updates. Read more

09 october 2003

New Trojans
SSPPYY

Stealth 2.50

Skull Burrow Connection Bouncer 2.0 (f)

Freddy K beta 2 server (a)

Freddy K beta 3(b)

Tools
Subseven Killer Worm - Code Example. Download

Vulnerabilities & Exploits:
www.elitehaven.net:
Generic WinXP Download and Execute. Read more

www.securitytracker.com:
Medieval Total War Game Can Be Crashed By Remote Users. Read more

www.securitytracker.com:
ltrace Heap Overflow May Let Local Users Execute Arbitrary Code With Root Privileges. Read more

www.securitytracker.com:
Adobe SVG Viewer Cross-Domain Access Flaw Lets Remote Users Execute Code in Arbitrary Domains. Read more

www.securitytracker.com:
Adobe SVG Viewer Discloses Arbitrary Files to Remote Users. Read more

www.securitytracker.com:
PeopleSoft PeopleTools May Disclose Exported Searches to Remote Users. Read more

www.securitytracker.com:
Adobe SVG Viewer Fails to Observe Your Active Scripting Security Settings. Read more

www.securitytracker.com:
DeskPRO Input Validation Flaw Allows Remote Users to Inject SQL Commands. Read more

www.securitytracker.com:
Pidentd Can Be Crashed By Remote Users Sending Large Requests. Read more

www.securiteam.com:
JBoss Remote Command Injection. Read more

www.securiteam.com:
IBM DB2 Universal Database db2licm Local Exploit. Read more

www.securiteam.com:
ProFTPD ASCII File Remote Root Exploit. Read more

www.securiteam.com:
MSMQ Heap Overflow (Exploit). Read more

www.securiteam.com:
Medieval Total War DoS. Read more

www.securiteam.com:
IE 6 XML Patch Bypass. Read more

www.securiteam.com:
FirstClass HTTP Remote Denial of Service. Read more

www.securiteam.com:
File Inclusion Vulnerability in PayPal Store Front. Read more

News
www.pittnews.com:
Study gets hackers to open up. Read more

www.zdnet.com.au:
Security group names top software risks. Read more

www.detnews.com:
FBI says it regrets letter to reporter, and asks for voluntary cooperation in hacker case. Read more

www.wired.com:
Mobs Turn Net Into Money Machine. Read more

08 october 2003

New Trojans
IrcContact 3.0

Stealth 1.0

Stealth 4.2

Stealth Redirector 1.2

SlimFTPd 3.13

Guides, Papers, etc.
www.securityfocus.com:
Demonstrating ROI for Penetration Testing (Part Four). Read more

Vulnerabilities & Exploits:
security.greymagic.com:
Adobe SVG Viewer Local and Remote File Reading. Read more

www.securitytracker.com:
slocate Buffer Management Error May Let Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
JBoss Java Server 'hsqldb' Service Default Configuration Lets Remote Users Execute Arbitrary Code. Read more

www.securiteam.com:
Cisco Pix Firewall DoS (NAT Pool Depletion). Read more

www.securiteam.com:
Process Killing - Playing with PostThreadMessage. Read more

www.securiteam.com:
Cumulative Patch for Internet Explorer (MS03-040). Read more

www.securiteam.com:
Mutantpenguin's MPNews and MPWeb Directory Traversal Vulnerability. Read more

www.securiteam.com:
Readv File Descriptor Leak In FreeBSD. Read more

News
www.zdnet.com.au:
'Revenge' hack downed US port systems. Read more

uk.news.yahoo.com:
Virus writers probed for terror ties. Read more

www.mediainfo.com:
Justice Dept. Slows FBI's Subpoena Request. Read more

www.winnetmag.com:
Should Microsoft Be Liable for Bugs in Its Products? Read more

www.nzherald.co.nz:
Microsoft faces virus class action. Read more

www.esj.com:
Alerts: New IE Exploit Hacks DNS; Kaspersky Labs' Top Ten Viruses for September. Read more

www.securityfocus.com:
Experts describe problems with Site Finder. Read more

www.securityfocus.com:
Popular PC game stolen by hackers before release. Read more

07 october 2003

New Trojans
Taladrator 3.0

Nutbus

System33r Downloader 0.5

Wooden Ox (b)

Vulnerabilities & Exploits:
www.securitytracker.com:
PHP-Nuke 'mailattach.php' Input Validation Flaw Lets Remote Users Upload Arbitrary Files and Execute Them. Read more

www.securitytracker.com:
EternalMart Guestbook Include File Validation Flaw Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
EternalMart Mailing List Manager Include File Validation Flaw Lets Remote Users Execute Arbitrary Code. Read more

www.secunia.com:
Conectiva has issued updated packages for mplayer. These fix a vulnerability, which can be exploited by malicious people to compromise a user's system.. Read more

News
www.computerweekly.com:
Instant messaging worms are the latest threat to corporate systems. Read more

www.detnews.com:
Microsoft faces security suit. Read more

www.vnunet.com:
Organised crime targets ALL IT staff. Read more

www.lacrossetribune.com:
FBI Slammed Over Handling of Hacker Case. Read more

www.detnews.com:
Hackers steal source code of popular video game. Read more

www.msnbc.com:
Hacker spoils game for software firm. Read more

news.bbc.co.uk:
US port 'hit by UK hacker'. Read more

www.sunherald.com:
FBI Didn't Follow Proper Procedures. Read more

06 october 2003

New Trojans
Ghost Radmin 1.0 (b)

Harvester 2003

Master 1.1

Portless Backdoor 1.1

Guides, Papers, etc.
A Practical Approach of Stealthy Remote Administration. Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
Conexant Access Runner Authentication Flaw Yields Administrative Access to Remote Users. Read more

www.securitytracker.com:
divine Content Server Error Page Input Validation Flaw Permits Remote Cross-Site Scripting Attacks. Read more

News
www.startribune.com:
For every hacker, scores who could do the same. Read more

www.wired.com:
Game Biz Mystified by Code Theft. Read more

05 october 2003

New Trojans
Nethief 5.0

Nethief 5.1

Snow 2.9

BlueAngel 0.1

Vulnerabilities & Exploits:
www.securitytracker.com:
Cisco PIX NAT Pool Can Be Consumed With ICMP Echo Request Packets. Read more

www.securitytracker.com:
Sun Cobalt RaQ 'message.cgi' Input Validation Flaw Permits Remote Cross-Site Scripting Attacks Against Administrators. Read more

www.securitytracker.com:
FreeBSD Kernel procfs uiomove() Overflow Discloses Sensitive Kernel Memory to Local Users. Read more

News
www.startribune.com:
Confessions of a hacker. Read more

www.eweek.com:
New Internet Explorer Patch Plugs Serious Security Holes. Read more

04 october 2003

New Trojans
D86asm

Serv-U (2)

XtraAccess 2.0 server

Tools
freshmeat.net:
Linux Security Auditing Tool 0.8.5. Read more

Vulnerabilities & Exploits
Microsoft Security Bulletin MS03-040
Cumulative Patch for Internet Explorer. Read more

www.securitytracker.com:
Microsoft Windows OS PostThreadMessage() API Permits Local Users to Terminate Processes That Have Message Queues. Read more

www.securitytracker.com:
FortiGate Firewall Log Viewer Filtering Flaw Permits Remote Scripting Code Execution When an Administrator Views Certain Logs. Read more

www.securitytracker.com:
FreeBSD Kernel readv(2) Integer Overflow Lets Local Users Crash the System or Gain Elevated Privileges. Read more

www.securitytracker.com:
NetScreen ScreenOS Buffer Reset Flaw May Disclose Administrator Passwords Via DHCP Offer Messages. Read more

www.securitytracker.com:
Cfengine Remotely Exploitable Buffer Overflow (Improved Exploit). Read more

News
Microsoft Security Bulletin MS03-040
Cumulative Patch for Internet Explorer. Read more

www.theregister.co.uk:
Trojan hijacks web browsers. Read more

www.informationweek.com:
Internet Explorer Vulnerability Exploited Again. Read more

www.theinquirer.net:
Internet Explorer trojan problem still not patched. Read more

www.crn.com:
Microsoft Should Be Liable For Shoddy Security, Suit Says. Read more

www.broadbandreports.com:
Trojan P2P - 'Earthstation 5' contains malicious code? Read more

www.securitynewsportal.com:
Verisign agrees to shutdown the SiteFinder error page hijacker. Read more

03 october 2003

New Trojans
YXNetscreen 1.0

MagicLink netPcSpy 1.6

Hacker defender 0.50

Tools
The IP Personality project is a patch to the Linux kernels that adds netfilter features: it enables the emulation of other OSes at the network level, thus fooling remote OS detection tools such as nmap that rely on network fingerprinting. Read more

Guides, Papers, etc.
www.securityfocus.com:
Linux vs. Windows Viruses. Read more

www.securityfocus.com:
Wireless Network Policy Development (Part One). Read more

www.securityfocus.com:
Wireless Network Policy Development (Part Two). Read more

Vulnerabilities & Exploits:
www.securiteam.com:
IBM DB2 INVOKE Command Stack Overflow Vulnerability. Read more

www.securiteam.com:
IBM DB2 LOAD Command Stack Overflow Vulnerability. Read more

www.securiteam.com:
MondoSearch File Creation Vulnerability. Read more

www.securiteam.com:
Multiple Vulnerabilities in winShadow. Read more

News
www.techworld.com:
Trojan uses MS hole to hijack Web browsers. Read more

www.internetweek.com:
New Worm Hijacks Users' Browsers. Read more

www.theregister.co.uk:
Official: crackers have broken into GPRS billing. Read more

techfocus.org:
Paypal Administrative Request Poses Security Risk. Read more

www.ciol.com:
MS dragged to court for virus attacks. Read more

www.internetweek.com:
Bogus Microsoft Security Patch Tops September Security Threats. Read more

www.computerworld.com:
Cisco warns its WLAN security can be cracked. Read more

mdn.mainichi.co.jp:
Tests show hackers could access resident registry network. Read more

02 october 2003

New Trojans:
Ghost Radmin 1.0

Phi FWB Bypass 1.0

Portless Backdoor 1.0

Tools
tomcoyote.org:
HijackThis examines certain key areas of the Registry and Hard Drive and lists their contents. These are areas which are used by both legitimate programmers and hijackers. Read more

Guides, Papers, etc.
www.appsecinc.com:
Writing Secure Code in Oracle Presentation. Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
MPNews PRO Directory Traversal Flaw Discloses Files to Remote Users. Read more

www.securitytracker.com:
Overture Input Validation Flaw in 'Keywords' Field Permits Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Novell Distributed Print Services Discloses Broker Statistics. Read more

www.securitytracker.com:
Atrise Everyfind Input Validation Flaw Permits Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
IBM DB2 Buffer Overflow in LOAD and INVOKE Commands Lets Remote Authenticated Users Execute Arbitrary Code. Read more

www.securitytracker.com:
winShadow Buffer Overflow May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
SSH Secure Shell ASN.1 Parsing Flaws Lets Remote User Crash the Application or Host. Read more

www.securitytracker.com:
IBM AIX getipnodebyname() Socket Closure Flaw Lets Users Create Denial of Service Conditions. Read more

www.securiteam.com:
NULL httpd XSS Vulnerability (Bad request). Read more

www.securiteam.com:
Null httpd Remote Resources Consumption (Exploit). Read more

www.securiteam.com:
TCLHttpd Contains Two Vulnerabilities (Directory Browsing, XSS). Read more

www.securiteam.com:
Silly Poker HOME Environment Stack Overflow (Exploit). Read more

www.securiteam.com:
OpenSSL Multiple Vulnerabilities (Malformed ASN.1, Malformed Public Key). Read more

www.securiteam.com:
A-CART and A-CART Pro XSS Vulnerability. Read more

www.mplayerhq.hu:
Exploitable remote buffer overflow vulnerability in MPlayer. Read more

News:
www.theregister.co.uk:
Worms spread faster, blended threats grow. Read more

www.aftenposten.no:
Hackers threaten power network. Read more

www.theage.com.au:
Internet attacks on the rise. Read more

www.thecouriermail.news.com.au:
Internet scammers target auction site. Read more

rss.com.com: Microsoft moves beyond patches. Read more

www.cio.com:
Beware of the Telephone. Read more

www.trib.com:
Hacker had access to personal records of about 40 students. Read more

www.signonsandiego.com:
President of S.D. security firm indicted on six counts. Read more

www.tweakxp.com:
TweakXP.com victim of Search Redirect Program. Read more

01 october 2003

New Trojans:
Trylobite 1.0b (BETA)

Wooden Ox II 1.0

Tivedo

Tools
P0f v2 is a versatile passive OS fingerprinting tool. Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
GuppY Input Validation Flaw in Colorcode Tag Permits Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
SSH Sentinel ASN.1 Decoding Flaws May Let Remote Users Crash the Host. Read more

www.securitytracker.com:
OpenSSL ASN.1 Parsing Flaws Lets Remote User Crash Applications or Execute Arbitrary Code. Read more

www.securitytracker.com:
webfs 'ls.c' Long Pathname Buffer Overflow Permits Code Execution and 'vhosts' Input Validation Flaw Discloses Files to Remote Users. Read more

www.securitytracker.com:
1ASPCommerce Yields Administrative Access to Remote Users. Read more

www.securitytracker.com:
mIRC Client Buffer Overflow in Processing USERHOST Responses Lets Remote Servers Execute Arbitrary Code. Read more

www.securiteam.com:
Shattering SEH III (Progress Bars). Read more

News:
www.news.com.au:
Security boss on hacking charge. Read more

www.theregister.co.uk:
Man invades .mil nets, tells hacks, lands in jail. Read more

www.mytelus.com:
Internet viruses spreading faster due to instant messaging, says report. Read more

www.computerworld.com:
Unpatched Browser Hole A Gold Mine For Hackers. Read more

www.thecouriermail.news.com.au:
Internet scammers target auction site. Read more

www.zdnet.com.au:
Windows dominance not a threat: Microsoft. Read more

www.theregister.co.uk:
Google buys search engine - PageRank™ RIP? Read more

www.theregister.co.uk:
VeriSign sued again for domain cock-up. Read more

arstechnica.com:
Nothing says 'I love you' like a remote trojan. Read more

reuters.com:
E-Spying on Your Lover Could Be Illegal - Experts. Read more

www.townhall.com:
Spam E-mail Reveals Internet Security Threat, Experts Warn. Read more


Copyright© MegaSecurity.org