Home    News Archive    Translate Traducen
News January 20003
31 january 2003

New Trojans:
Silver FTP 1.0

Remote Control 1.4

WinGate

MSN RAT 2.5

Vulnerabilities & Exploits:
Debian Security Advisory
DSA-247-1 courier-ssl -- missing input sanitizing. Read more

www.securitytracker.com:
Kerberos and Other FTP Clients Allow Malicious FTP Servers to Execute Arbitrary Code on the Client. Read more

www.securitytracker.com:
Sun Java Runtime Environment (JRE) Unspecified Hole Lets Java Code Bypass Access Controls. Read more

www.securitytracker.com:
List Site PRO Allows Remote Users to Hijack User Accounts. Read more

www.securitytracker.com:
Replicom ProxyView Default Configuration Gives Remote Users Full Access. Read more

www.securitytracker.com:
Kerberos KDC Bugs May Yield Remote Access to Remote Users, Enable Identity Forging, and Let Remote Users Crash the Server. Read more

www.securitytracker.com:
Sun Java Secure Socket Extension (JSSE) May Incorrectly Authenticate Invalid Entities. Read more

www.securitytracker.com:
Rediff Bol Instant Messaging Client Sends Authentication Data in the Clear and Permits Remote Users to Terminate Sessions. Read more

www.securitytracker.com:
Sun Solaris 'in.ftpd' FTP Server Can Be Temporarily Hung By Remote Users. Read more

www.securiteam.com:
MS-SQL Vulnerability Exploiting Trusted Connections. Read more

www.securiteam.com:
Solaris 'at' Exploit Code. Read more

www.securiteam.com:
Locator Service Buffer Overflow Vulnerability. Read more

www.securiteam.com:
phpTopsites Remote File Upload Vulnerability. Read more

www.securiteam.com:
phpLinks mail() Abuse Vulnerability. Read more

www.securiteam.com:
Apache Jakarta Tomcat 3 URL Parsing Vulnerability. Read more

www.securiteam.com:
dotproject Remote File Access Vulnerability. Read more

www.securiteam.com:
dotproject Remote Code Execution Vulnerability. Read more

www.securiteam.com:
Hypermail Buffer Overflows. Read more

News:
online.securityfocus.com:
The Busy Life of a Welsh Virus-Writer. Read more

polls.zdnet.co.uk:
Polling Form. What do you think of the sentence handed down to virus writer Simon Vallor? Read more

online.securityfocus.com:
$1m hacking challenge' product is flawed. Read more

www.theage.com.au:
The Slammer worm: a sysadmin's view. Read more

www.govexec.co:
The worm that turned: A new approach to hacker hunting. Read more

storage.ziffdavis.com:
Slammer Worm: A Blow to Remote Storage? Read more

www.washingtonpost.com:
FBI Skeptical on Internet Attack Source. Read more

www.hindustantimes.com:
Experts say Microsoft security effort failing. Read more

uk.news.yahoo.com:
Microsoft security effort said failing. Read more

30 january 2003

New Trojans:
Stealth Eye 1.0 version b

AIM Pws 1.0

Sinred Keylogger 1.0

Sinred Keylogger 1.1

Vulnerabilities & Exploits:
www.idefense.com:
SSH2 Clients Insecurely Store. Passwords (AbsoluteTelnet, SecureCRT, Entunnel, SecureFx, and PuTTY). Read more

Debian Security Advisory
DSA-246-1 tomcat -- information exposure, cross site scripting. Read more

www.securitytracker.com:
'dotproject' Include File Error Discloses Arbitrary Files to Remote Users. Read more

www.securitytracker.com:
Sun Solaris 'at' Command Race Condition Enables Local Users to Delete Arbitrary Files. Read more

www.securiteam.com:
Microsoft SQL Server 2000 Vulnerabilities in Cisco Products. Read more

www.securiteam.com:
Outlook Remote Code Execution in Preview Pane (S/MIME, PoC). Read more

www.securiteam.com:
MSSQL2000 Remote UDP Exploit. Read more

www.securiteam.com:
Multiple Vulnerabilities in Old Releases of MIT Kerberos. Read more

www.securiteam.com:
New YabbSE Remote Code Execution Vulnerability Found (News.php). Read more

www.securiteam.com:
Multiple Cross-Site Scripting Vulnerabilities in Nuked-Klan. Read more

www.securiteam.com:
MIT Kerberos FTP Client Remote Shell Commands Execution. Read more

www.securiteam.com:
ftls.org Guestbook Script Injection Vulnerabilities. Read more

News:
www.govexec.com:
The worm that turned: A new approach to hacker hunting. Read more

news.com.com:
Slammer may not feed on Microsoft alone. Read more

www.smh.com.au:
UK security specialist says his code was used in Slammer worm. Read more

www.computerworld.com:
Slow response to Slammer worm points to NIPC woes. Read more

www3.gartner.com:
How to Protect Against the Sapphire Worm. Read more

news.com.com:
Security clearinghouse under the gun. Read more

europe.cnn.com:
Music industry site hacked again. Read more

www.thekcrachannel.com:
Hackers Attack Station Web Site. Read more

news.com.com:
Net security chief to quit. Read more

29 january 2003

New Trojans:
Turkojan 1.0

Noname Trojan 2.0

WinMX 1.0

TightVNC 1.2.3

Vulnerabilities & Exploits:
www.securitytracker.com:
NuKed-KlaN PHP Gateway Input Validation Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
PlatinumFTPserver Discloses Directory Listings To and Can Be Crashed By Remote Authenticated Users. Read more

www.securitytracker.com:
Hypermail Buffer Overflow Lets Remote Users Execute Arbitary Code. Read more

News:
www.smh.com.au:
Microsoft failed to patch own software against worm. Read more

www.lasvegassun.com:
Experts: Internet Attack Hunt Difficult. Read more

www.islandpacket.com:
Few clues in hunt for virus source. Read more

www.themoscowtimes.com:
Chinese Linked to Web Attack. Read more

www.telecomasia.net:
Chinese hacker group named as suspects in Slammer case. Read more

www.computeruser.com:
Worm exposes laziness and Microsoft flaws. Read more

www.washingtonpost.com:
Internet Worm Unearths New Holes. Read more

www.convergedigest.com:
Defense Experts Investigate Collateral Damage from Microsoft Slammer Worm. Read more

www.sunspot.net:
Internet attack rattles assumptions. Read more

news.bbc.co.uk:
Firms more at risk from hackers. Read more

www.dailyvanguard.com:
Hackers sneak into system. Read more

www.nzherald.co.nz:
Computer sleuth - the inside job. Read more

28 january 2003

New Trojans:
KoKo 2.0 version b

Chat Spy

Invisible Activity Spy 2.3

Nethief 3.2

Vulnerabilities & Exploits:
Debian Security Advisory
DSA-244-1 noffle -- buffer overflows. Read more

online.securityfocus.com:
SyGate Insecure UDP Source Port Firewall Bypass Weak Default Configuration Vulnerability. Read more

online.securityfocus.com:
Macromedia Shockwave GETNETTEXT local file disclosure vulnerability. Read more

online.securityfocus.com:
Kerberos Key Distribution Center Denial of Service Vulnerability. Read more

online.securityfocus.com:
Sun JSSE/Java Plug-In/Java Web Start Incorrect Certificate Validation Vulnerability. Read more

online.securityfocus.com:
Sun Java Virtual Machine Illegal Access To Object Methods Vulnerability. Read more

online.securityfocus.com:
Kodak KCMS KCS_OPEN_PROFILE Procedure Arbitrary File Access Vulnerability. Read more

online.securityfocus.com:
SpamAssassin BSMTP Mode Buffer Overflow Vulnerability. Read more

online.securityfocus.com:
PlatinumFTPServer Dot-Dot-Slash Directory Traversal Vulnerability. Read more

online.securityfocus.com:
ELog Web Logbook Multiple Buffer Overflow Vulnerabilities. Read more

online.securityfocus.com:
GNU Mailman 'email' Cross Site Scripting Vulnerability. Read more

online.securityfocus.com:
KDE Parameter Quoting Shell Command Execution Vulnerability. Read more

online.securityfocus.com:
Microsoft Windows MSGINA.DLL Read-Lock Denial Of Service Vulnerability. Read more

online.securityfocus.com:
EditTag edittag.pl File Disclosure Vulnerability. Read more

online.securityfocus.com:
CVS Directory Request Double Free Heap Corruption Vulnerability. Read more

online.securityfocus.com:
YaBB SE News.PHP Remote File Include Vulnerability. Read more

online.securityfocus.com:
ZyXEL DSL Modem Default Remote Administration Password Vulnerability. Read more

News:
www.canada.com:
Internet attack's damage more serious than many thought possible, experts say. Read more

www.computerworld.com:
Viruses get smarter. Read more

www.cnn.com:
Experts try to track vicious 'Slammer' worm. Read more

www.cnn.com:
As Net attack eases, blame game surges. Read more

www.theage.com.au:
Countries recovering from worm attack. Read more

www.hindustantimes.com:
Spooky cyber octopus. Read more

www.washingtonpost.com:
Always Be Prepared. Read more

news.bbc.co.uk:
South Korean markets hit by net worm. Read more

www.theage.com.au:
New software aims to snare crackers. Read more

www.theregister.co.uk:
Crooks harvest bank details from Net kiosk. Read more

www.zdnet.com.au:
Blanket hack muffles RIAA site - again. Read more

www.theregister.co.uk:
Child porn list leaked to Sunday Times. Read more

www.canada.com:
Wireless Warriors discover cracks in Calgary's corporate security systems. Read more

27 january 2003

New Trojans:
Jaros Trojan

Kronical Fire 1.0 beta

Sandesa 1.1

Vulnerabilities & Exploits:
Cisco Security Advisory:
Microsoft SQL Server 2000 Vulnerabilities in Cisco Products - MS02-061. Read More

online.securityfocus.com:
Efficient Networks DSL Router Denial Of Service Vulnerability. Read more

online.securityfocus.com:
Simple Web Counter URI Parameter Buffer Overflow Vulnerability. Read more

online.securityfocus.com:
ISC DHCPD NSUPDATE MiniRes Library Remote Buffer Overflow Vulnerabilities. Read more

online.securityfocus.com:
Trend Micro ScanMail For Exchange Authentication Bypass Vulnerability. Read more

online.securityfocus.com:
Trend Micro Virus Control System Information Disclosure Vulnerability. Read more

online.securityfocus.com:
Trend Micro Virus Control System Denial Of Service Vulnerability. Read more

online.securityfocus.com:
Trend Micro OfficeScan CGI Directory Insufficient Permissions Vulnerability. Read more

online.securityfocus.com:
Multiple Vendor HTTP CONNECT TCP Tunnel Vulnerability. Read more

online.securityfocus.com:
YABB SE Packages.PHP Remote File Include Vulnerability. Read more

online.securityfocus.com:
Microsoft Windows SMB Signing Vulnerability. Read more

online.securityfocus.com:
Palm HotSync Manager Remote Denial of Service Vulnerability. Read more

online.securityfocus.com:
PHPOutsourcing Zorum Remote Include Command Execution Vulnerability. Read more

online.securityfocus.com:
Python os.py Predictable Temporary Filename Command Execution Vulnerability. Read more

online.securityfocus.com:
Rediff Bol URL Handling Denial Of Service Vulnerability. Read more

www.securitytracker.com:
SpamAssassin Off-by-one Buffer Overflow May Let Remote Users Execute Arbitrary Code. Read More

www.securitytracker.com:
Enceladus Server Suite Discloses Directory Contents on the System to Remote Users. Read More

www.securitytracker.com:
Mailman List Software Input Validation Flaw in 'email' Variable Allows Remote Users to Conduct Cross-Site Scripting Attacks. Read More

www.securitytracker.com:
Microsoft Windows Terminal Server MSGINA.DLL Flaw Lets Remote Authenticated Users Reboot the Server. Read More

www.securitytracker.com:
YaBB SE Forum 'News.php' Include Bug Lets Remote Users Execute Arbitrary Code on the System. Read More

News:
Microsoft Security Bulletin MS02-061
Elevation of Privilege in SQL Server Web Tasks (Q316333). Read More

online.securityfocus.com:
Latest computer worm exposes reactionary nature to security flaws. Read more

news.com.com:
Worm exposes laziness and Microsoft flaws. Read more

www.thescotsman.co.uk:
The worm that made the internet choke and crawl. Read more

news.independent.co.uk:
How a computer hacker and an internet virus called Slammer gave the worldwide web a serious cold. Read more

www.theage.com.au:
Countries recovering from worm attack. Read more

news.yahoo.com:
Hong Kong Team Searches for Worm Origin. Read more

www.smh.com.au:
Slammer worm: is this a trial run? Read more

www.aberdeennews.com:
Firms Clean Servers, Desktops in Web Worm's Wake. Read more

www.washingtonpost.com:
Bank of America ATMs Disrupted by Virus. Read more

www.washingtonpost.com:
Internet Worm Hits Airline, Banks. Read more

www.reuters.com:
Web-Savvy South Korea Counts Cost of Slammer Worm. Read more

www.pcworld.com:
Virus Forecast for 2003. Read more

news.tbo.com:
FBI Investigating Theft Of Data On International Students. Read more

www.cleveland.com:
Hacker steals U. of Kansas information. Read more

26 january 2003

New Trojans:
Scorpina 17c3

Kcom Web Server

Snow 1.0

Vulnerabilities & Exploits:
Internet Security systems:
Microsoft SQL Slammer Worm Propagation. Read More

www.eeye.com:
Microsoft SQL Sapphire Worm Analysis. Read more

online.securityfocus.com:
IRIX uux Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
IRIX 'mv' Insecure Directory Permissions Vulnerability. Read More

online.securityfocus.com:
IRIX fsr_efs Symlink Vulnerability. Read more

online.securityfocus.com:
IRIX rpcbind Symlink Vulnerability. Read more

online.securityfocus.com:
Microsoft Outlook 2002 V1 Exchange Server Security Certificate Information Leakage Vulnerability. Read more

online.securityfocus.com:
Microsoft Content Management Server Cross-Site Scripting Vulnerability. Read more

www.securitytracker.com:
Palm HotSync Manager Can Be Crashed By Remote Users. Read More

www.securitytracker.com:
ModLogAn Heap Overflow in Decoding URLs May Let Remote Users Execute Arbitrary Code. Read More

www.securitytracker.com:
Astaro Security Linux Firewall Access Control Flaw Lets Remote Users Connect to Arbitrary Hosts Behind the Firewall. Read More

www.securitytracker.com:
phpLinks Access Control Bug Lets Remote Users Send Unauthorized E-mail Via the Server. Read More

News:
www.internetnews.com:
Could Attack on DALnet Spell End for IRC? Read more

www.bbspot.com:
Hackers Demand Benefits. Read more

www.infoworld.com:
U.S. agencies get help with security patches. Read more

www.theregister.co.uk:
DoD offering admin privileges on .mil Web sites. Read more

25 january 2003

New Trojans:
PtakkS 2.0 r9

RMS 2.8

Kryptonic Ghost 1.5 version b

Vulnerabilities & Exploits:
Debian Security Advisory:
DSA-243-1 kdemultimedia -- several. Read More

Debian Security Advisory:
DSA-242-1 kdebase -- several. Read More

Debian Security Advisory:
DSA-241-1 kdeutils -- several. Read More

www.securitytracker.com:
YaBB SE Forum Include Bug Allows Remote Users to Execute Arbitrary Code on the Server. Read More

www.securitytracker.com:
WinRAR Buffer Overflow May Let Remote Users Execute Arbitrary Code. Read More

www.securitytracker.com:
Zorum Forum Software Input Validation Flaw Lets Remote Users Include Remote PHP Code to Be Executed on the Target Server. Read More

www.securitytracker.com:
Sygate Personal Firewall Allows Remote Users to Traverse the Firewall in Certain Cases. Read More

www.securitytracker.com:
Solaris Implementation of Kodak Color Management System (KCMS) Library Discloses Arbitrary Files to Remote Users. Read More

www.securitytracker.com:
Microsoft Outlook May Fail to Encrypt User E-mail, Disclosing the Contents to Remote Users. Read More

www.securitytracker.com:
Microsoft Locator Service Buffer Overflow Lets Remote Users Execute Arbitrary Code with System Level Privileges. Read More

www.securitytracker.com:
Apache Web Server 2.x Windows Device Access Flaw Lets Remote Users Crash the Server or Possibly Execute Arbitrary Code. Read More

www.securitytracker.com:
Apache Web Server Path Parsing Flaw May Allow Remote Users to Execute Code in Certain Configurations. Read More

News:
www.theregister.co.uk:
Flaw leaves door open for Trojan contamination. Read More

www.internetwk.com:
Security Hole Leaves AOL Accounts Wide Open. Read More

timesofindia.indiatimes.com:
'40-50 Indian sites hacked by Pak cyber criminals monthly'. Read More

www.newsfactor.com:
Daily CyberCrime and Security Report for January 24, 2003. Read More

24 january 2003

New Trojans:
Guptachar 2.0

Backstabb Lite 1.0

Snag 0.2 Beta

Vulnerabilities & Exploits:
Debian Security Advisory:
DSA-240-1 kdegames -- several. Read More

Debian Security Advisory:
DSA-239-1 kdesdk -- several. Read More

Debian Security Advisory:
DSA-238-1 kdepim -- several. Read More

Debian Security Advisory:
DSA-237-1 kdenetwork -- several. Read More

online.securityfocus.com:
Evolvable Shambala FTP Server CWD Denial Of Service Vulnerability. Read More

online.securityfocus.com:
ModLogAn Remote Heap Corruption Vulnerability. Read More

online.securityfocus.com:
Nite Server FTPD File Disclosure Vulnerability. Read More

online.securityfocus.com:
Lotus Domino HTTP Authentication Logging Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
Multiple FTP Server Virtual User File Removal Vulnerability. Read More

online.securityfocus.com:
PeopleSoft XML External Entity Remote File Disclosure Vulnerability. Read More

online.securityfocus.com:
PHPMyPub Unauthorized Administrative Access Vulnerability. Read More

online.securityfocus.com:
MyRoom save_item.php Arbitrary File Upload Vulnerability. Read More

online.securityfocus.com:
Sambar Server results.stm Cross Site Scripting Vulnerability. Read More

www.kb.cert.org:
Microsoft Locator service contains buffer overflow. Read More

www.securitytracker.com:
Blackboard Learning System Discloses Encrypted Passwords to Remote Users. Read More

www.securitytracker.com:
Mandrake Linux 'printer-drivers' Package May Yield Root Privileges to Local Users. Read More

www.securitytracker.com:
Citrix MetaFrame Server May Let Remote Users Gain Elevated Privileges on Novell Networks. Read More

www.securiteam.com:
CuteFTP Buffer Overflow in LIST's Response. Read More

www.securiteam.com:
Unchecked Buffer in Locator Service Could Lead to Code Execution. Read More

www.securiteam.com:
Flaw in Outlook 2002's Way of Handling V1 Exchange Server Security Certificates Leads To Information Disclosure. Read More

www.securiteam.com:
WinRAR Buffer Overflow Vulnerability (Long Extension). Read More

www.securiteam.com:
Sambar Server Cross-Site Scripting Vulnerability (Results.stm). Read More

News:
The Register:
One, two, three, four MS alerts are at our door. Read More

online.securityfocus.com:
Lessons from the Laboratory. Read More

online.securityfocus.com:
The Curmudgeon's Crystal Ball: Security Predictions for 2003. Read More

www.zdnet.com.au:
Aust hackers launch security conference. Read More

www.thepittsburghchannel.com:
Team 4: Judge's E-Mail Hacker Found Guilty. Read More

www.businessweek.com:
Senate limits Pentagon 'snooping' plan. Read More

news.com.com:
Gates vows better security to customers. Read More

www.financialexpress.com:
Cyber Threats And You. Read More

23 january 2003

New Trojans:
Dark Sill 4.4

OMPN mini

JustJoke Mailer 1.3

Vulnerabilities & Exploits:
CROSS-SITE TRACING (XST). THE NEW TECHNIQUES AND EMERGING THREATS TO BYPASS CURRENT WEB SECURITY MEASURES USING TRACE AND XSS.(pdf) Read More

Debian Security Advisory:
DSA-236-1 kdelibs -- several. Read More

Debian Security Advisory:
DSA-235-1 kdegraphics -- several. Read More

Debian Security Advisory:
DSA-234-1 kdeadmin -- several. Read More

www.securitytracker.com:
SuSE Linux 'susehelp' Input Validation Flaw Lets Remote Users Execute Arbitrary Commands on the Server. Read More

www.securitytracker.com:
phpLinks Include File Error Lets Remote Users Execute Arbitrary Shell Commands on the Server. Read More

www.securitytracker.com:
Concurrent Versions System (CVS) Double-Free Bug Lets Remote Users Execute Arbitrary Code on the System. Read More

www.securitytracker.com:
PeopleSoft PeopleTools Web Server Component Discloses Files to Remote Users. Read More

www.securiteam.com:
Local and Remote Exploit For ISC DHCPd Format String (Update Log). Read More

www.securiteam.com:
Blackboard Password Retrieval (search.pl). Read More

www.securiteam.com:
Multi-Vendor Game Server DDoS Advisory. Read More

www.securiteam.com:
YaBB SE Remote Code Execution Vulnerability (/Sources). Read More

www.securiteam.com:
PeopleSoft XML External Entities Vulnerability. Read More

www.securiteam.com:
XSS (Cross Site Scripting) on FormMail.CGI. Read More

www.securiteam.com:
Cyboards Remote Code Execution and XSS. Read More

www.securiteam.com:
Buffer Overflows in Mandrake Linux printer-drivers Package. Read More

News:
Microsoft Security Bulletin MS03-001
Unchecked Buffer in Locator Service Could Lead to Code Execution (810833). Read More

Microsoft Security Bulletin MS03-002
Cumulative Patch for Microsoft Content Management Server (810487). Read More

Microsoft Security Bulletin MS03-003
Flaw in how Outlook 2002 handles V1 Exchange Server Security Certificates could lead to Information Disclosure (812262). Read More

Microsoft Security Bulletin MS02-070
Flaw in SMB Signing Could Enable Group Policy to be Modified (329179). Read More

www.theage.com.au:
Updates and double dates. Read More

quote.bloomberg.com:
Microsoft's Windows OS Bug Allows Hackers to Access User's PC. Read More

www.internetweek.com:
Solaris Security Hole Allows Attackers To Read Any File On Vulnerable System. Read More

www.whitehatsec.com:
WHITEHAT DISCOVERS SERIOUS SECURITY FLAW AFFECTING ALL WEB SERVERS WORLDWIDE. Read More

www.eweek.com:
Security Flaw Exposes AOL Accounts. Read More

www.itworld.com:
UK virus writer sentenced to two years in prison. Read More

online.securityfocus.com:
The Turkey that Bites. Read More

www.businessweek.com:
Feds Seek Public Input on Hacker Sentencing. Read More

www.techtv.com:
New Antivirus Virus Doesn't Help. Read More

www.lasvegassun.com:
Identity Theft Complaints Double in 2002. Read More

www.newsfactor.com:
Daily CyberCrime and Security Report for January 22, 2003. Read More

22 january 2003

New Trojans:
Z-Demon 1.11

Beast 1.91

Net Antrax 1.0.0

Vulnerabilities & Exploits:
www.idefense.com:
Buffer Overflows in Mandrake Linux printer-drivers Package. Read More

www.debian.org:
DSA-233-1 cvs -- doubly freed memory. Read More

online.securityfocus.com:
Multiple Vendor Network Device Driver Frame Padding Information Disclosure Vulnerability. Read More

online.securityfocus.com:
GlobalScape CuteFTP LIST Response Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
KDE Parameter Quoting Shell Command Execution Vulnerability. Read More

www.securitytracker.com:
Allegro RomPager Input Validation Hole Lets Remote Users Conduct Cross-Site Scripting Attacks. Read More

www.securitytracker.com:
PhpPass Input Validation Flaw Lets Remote Users Inject SQL Commands to Gain Access to the System. Read More

www.securitytracker.com:
PHP My Pub Authentication Flaw Gives Remote Users Administrative Access to the Application. Read More

www.securitytracker.com:
Sambar Server Input Validation Hole in Query Feature Lets Remote Users Conduct Cross-Site Scripting Attacks. Read More

www.securiteam.com:
Directory Traversal Bug Found in Xynph FTP Server. Read More

News:
news.bbc.co.uk:
Computer virus author jailed. Read More

www.hindustantimes.com:
British hacker receives two-year jail sentence. Read More

www.theage.com.au:
Web designer jailed for creating email worms. Read More

www.internet-magazine.com:
New York university trials hacker trap. Read More

www.computerworld.com:
Heeeee's back: Hacker Kevin Mitnick free to use computers again. Read More

www.eweek.com:
Stopping Attacks in Their Tracks. Read More

21 january 2003

New Trojans:
Poison-tipped Arrow

Deftcode 1.0

Global Killer 1.0

Vulnerabilities & Exploits:
Internet Security Systems:
PeopleSoft XML External Entities Vulnerability. Read More

online.securityfocus.com:
Citrix Metaframe ICA Client Privilege Inheritance Vulnerability. Read More

online.securityfocus.com:
Sun Solaris UTMP_Update Local Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
HP-UX 11.22 Xserver Privilege Escalation Vulnerability. Read More

online.securityfocus.com:
Saafnet AlphaShield Connection Tracking Weakness. Read More

online.securityfocus.com:
HP-UX sort Unspecified File Handling Vulnerability. Read More

online.securityfocus.com:
Symantec Norton Internet Security ICMP Packet Flood Denial Of Service Vulnerability. Read More

online.securityfocus.com:
OpenSSH Challenge-Response Buffer Overflow Vulnerabilities. Read More

online.securityfocus.com:
GameSpy 3D Packet Amplification Denial Of Service Vulnerability. Read More

online.securityfocus.com:
fnord Web Server Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
phpBB2 privmsg.php SQL Injection Vulnerability. Read More

www.securitytracker.com:
MYROOM Commerce Gallery Software May Disclose Files to Remote Users. Read More

www.securitytracker.com:
Shambala Server FTP Input Validation Bugs Let Remote Authenticated Users View and Upload Files and Crash the Server. Read More

www.securitytracker.com:
CuteFTP Client Buffer Overflow in Processing Command Responses May Let Remote Users Execute Code. Read More

News:
www.reuters.com:
Microsoft Reveals Secret Code to Russia. Read More

www.accessatlanta.com:
Some say Big Brother looms. Read More

www.sophos.com:
Female virus writer attacks her fellow coders. Read More

asia.cnet.com:
Risky business:Keeping security a secret. Read More

www.wired.com:
How to Foil Data Thieves, Hackers. Read More

online.securityfocus.com:
New software aims to snare computer intruders in real time. Read More

online.securityfocus.com:
Open Source Honeypots: Learning with Honeyd. Read More

www.wired.com:
MS: Add Java to Windows and Stir. Read More

asia.cnet.com:
Microsoft: Security fix due for phone OS. Read More

straitstimes.asia1.com.sg:
Opposition party's website defaced. Read More

www.newsfactor.com:
Daily CyberCrime and Security Report for January 20, 2003. Read More

20 january 2003

New Trojans:
Z-demon 1.1

Z-downloader 1.1

Remote Grab 1.0

Vulnerabilities & Exploits:
online.securityfocus.com:
WGet NLST Client Side File Overwriting Vulnerability. Read More

online.securityfocus.com:
PHPLinks Search HTML Injection Vulnerability. Read More

online.securityfocus.com:
PHPLinks Add Site HTML Injection Vulnerability. Read More

online.securityfocus.com:
Microsoft Windows Fontview Denial of Service Vulnerability. Read More

online.securityfocus.com:
Mambo Site Server Arbitrary File Upload Vulnerability. Read More

online.securityfocus.com:
CSO Lanifex Outreach Project Tool HTML Injection Vulnerability. Read More

online.securityfocus.com:
CSO Lanifex Outreach Project Tool Request Origin Spoofing Vulnerability. Read More

online.securityfocus.com:
Bugzilla LocalConfig Backup File Disclosure Vulnerability. Read More

online.securityfocus.com:
Bugzilla Data/Mining Directory Insecure Permissions Vulnerability. Read More

online.securityfocus.com:
VIM ModeLines Arbitrary Command Execution Vulnerability. Read More

online.securityfocus.com:
mpg123 Incorrect Framesize Calculation Memory Corruption Vulnerability. Read More

www.securitytracker.com:
HP-UX Operating System 'sort(1)' Command Bug May Let Local Users Access Files. Read More

www.securitytracker.com:
Symantec Norton Internet Security Can Be Crashed By Remote Users Sending ICMP Messages. Read More

www.securitytracker.com:
HP-UX Xserver May Let Remote Authenticated Users Obtain Elevated Privileges. Read More

www.securitytracker.com:
Sun Solaris Operating System /usr/lib/utmp_update Buffer Overflow May Give Local Users Root Privileges. Read More

www.securitytracker.com:
Sun Solaris RCP AUTH_DES Bug May Give Remote Users Root Access. Read More

News:
star-techcentral.com:
2003 viruses: More of the same. Read More

www.vnunet.com:
Well-known security flaws go ignored. Read More

www.siliconvalley.com:
Legendary hacker to get unleashed and online. Read More

star-techcentral.com:
Microsoft: Security fix due for phone OS. Read More

19 january 2003

New Trojans:
AntiPC 1.1

Gates of Hell 2.1

Akosch 1 client

Tools:
www.klcconsulting.net:
SMAC, Windows MAC Address Modifying Utility. Read More

www.securityfriday.com:
NBTdeputy register a NetBIOS computer name on the network and is ready to respond to NetBT name-query requests. Read More

freshmeat.net:
WormWarner is a Perl script that is used to warn hosts that are probably infected by a worm. Read More

Vulnerabilities & Exploits:
online.securityfocus.com:
vBulletin HTML Injection Vulnerability. Read More

online.securityfocus.com:
Trend Micro ScanMail For Exchange Authentication Bypass Vulnerability. Read More

online.securityfocus.com:
Trend Micro Virus Control System Information Disclosure Vulnerability. Read More

online.securityfocus.com:
Trend Micro Virus Control System Denial Of Service Vulnerability. Read More

online.securityfocus.com:
Trend Micro OfficeScan CGI Directory Insufficient Permissions Vulnerability. Read More

online.securityfocus.com:
W-Agora Remote File Disclosure Vulnerability. Read More

online.securityfocus.com:
mpg123 Invalid MP3 Header Memory Corruption Vulnerability. Read More

online.securityfocus.com:
PHP TopSites HTML Injection Vulnerability. Read More

www.securitytracker.com:
phpBB Input Validation Flaw Lets Remote Authenticated Users Inject SQL Commands to Delete Private Messages on the System. Read More

www.securitytracker.com:
CyBoards PHP Lite Input Validation Bugs Let Remote Users Execute Arbitrary Code and Conduct Cross-Site Scripting Attacks. Read More

www.securitytracker.com:
vAuthenticate Security Script Input Validation and Authentication Flaw May Let Remote Users Gain Admin Access on the Application. Read More

www.securitytracker.com:
vSignup Registration Script Input Validation and Authentication Flaw May Let Remote Users Gain Admin Access on the Application. Read More

www.securiteam.com:
Stunnel Format String Vulnerability (Exploit). Read More

www.securiteam.com:
Local and Remote Exploit for MySQL (Password Scrambling). Read More

www.securiteam.com:
Psunami Bulletin Board CGI Remote Command Execution. Read More

www.securiteam.com:
ISC DHCPD Minires Library Contains Multiple Buffer Overflows. Read More

www.securiteam.com:
XSS Vulnerability in NOKIA Official Website. Read More

www.securiteam.com:
Allegro RomPager Cross Site Scripting. Read More

www.securiteam.com:
D-Link DWL-900AP+ Security Hole (Password-less Access). Read More

www.securiteam.com:
Directory Traversal Vulnerabilities Found in NITE FTP Server. Read More

News:
www.computeruser.com:
Microsoft launches government security program. Read More

straitstimes.asia1.com.sg:
Hackers turn Keadilan website into porn site. Read More

www.theregister.co.uk:
GameSpy could let crackers mount network DDoS attacks. Read More

www.theregister.co.uk:
"I poisoned P2P networks for the RIAA" - whistleblower. Read More

18 january 2003

New Trojans:
Windows Key Analyst 1.4a

EPS 1.65

Doped 1.0 beta

Vulnerabilities & Exploits:
online.securityfocus.com:
Session Fixation Vulnerability Web-based Applications. (pdf)Read More

Debian Security Advisory
DSA-231-1 dhcp3 -- stack overflows. Read More

Debian Security Advisory
DSA-230-1 bugzilla -- insecure permissions, spurious backup files. Read More

online.securityfocus.com:
PostgreSQL Circle_Poly Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
PostgreSQL SET TIME ZONE Environment Variable Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
PostgreSQL TZ Environment Variable Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
PostgreSQL path_add() Buffer Overrun Vulnerability. Read More

online.securityfocus.com:
PostgreSQL path_encode() Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
PostgreSQL Date Parser Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
HTML Forms Generation And Validation Forms.PHP HTML Injection Vulnerability. Read More

online.securityfocus.com:
D-Link DWL-900AP+ Firmware Upgrade Configuration Reset Vulnerability. Read More

online.securityfocus.com:
PostgreSQL String Pad Function Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
PostgreSQL Repeat Function Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
PostgreSQL cash_words Function Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
Psunami Bulletin Board Psunami.CGI Remote Command Execution Vulnerability. Read More

online.securityfocus.com:
vSignup Remote SQL Injection Vulnerability. Read More

vAuthenticate Remote SQL Injection Vulnerability. Read More

www.securitytracker.com:
D-Link AirPlus Access Point Manager Allows Remote Users to Upgrade Firmware Without Authentication. Read More

www.securitytracker.com:
Geeklog Input Validation Holes in Various Scripts Allow Remote Users to Conduct Cross-Site Scripting Attacks. Read More

www.securitytracker.com:
ISC DHCPD Minires Library Buffer Overflows Let Remote Users Execute Arbitrary Code. Read More

www.securitytracker.com:
NiteServer FTP Server Input Validation Bug Discloses Directories on the System to Remote Users. Read More

News:
news.com.com:
Microsoft: Security fix due for phone OS. Read More

news.com.com:
Game server flaw poses attack threat. Read More

zdnet.com.com:
Week in review: Security blame game. Read More

zdnet.com.com:
Brains gather to outsmart spam. Read More

www.vnunet.com:
Review lame hacker law, says business. Read More

17 january 2003

New Trojans:
KoKo 2.0

Z-downloader 1.01

Nethief 3.0

Vulnerabilities & Exploits:
online.securityfocus.com:
Solaris UUCP Local Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
Xitami Webserver Administrative Port Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
AN HTTPD HTTP Request Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
POC32 Unauthorized Telnet Access Vulnerability. Read More

online.securityfocus.com:
AN HTTPD Cross Site Scripting Vulnerability. Read More

online.securityfocus.com:
Cyboards PHP Lite Multiple Cross Site Scripting Vulnerabilities. Read More

online.securityfocus.com:
Cyboards PHP Lite Remote File Include Vulnerability. Read More

online.securityfocus.com:
Microsoft Windows 2000 Lanman Denial of Service Vulnerability. Read More

online.securityfocus.com:
Microsoft Windows 2000/XP NetDDE Privilege Escalation Vulnerability. Read More

online.securityfocus.com:
PHP wordwrap() Heap Corruption Vulnerability. Read More

online.securityfocus.com:
phpPass AccessControl.PHP SQL Injection Vulnerability. Read More

online.securityfocus.com:
Stunnel Unspecified SIGCHLD Signal Handler Vulnerability. Read More

www.securitytracker.com:
WebCollection Plus Discloses Files on the System to Remote Users. Read More

www.securitytracker.com:
PHP TopSites Input Validation Flaws Let Remote Users Access the Database and Conduct Cross-Site Scripting Attacks. Read More

online.securityfocus.com:
CUPS File Descriptor Leakage Denial Of Service Vulnerability. Read More

News:
online.securityfocus.com:
Rumsfeld orders .mil Web lockdown. Read More

www.nytimes.com:
Iraqi Computer Attacks Feared. Read More

zdnet.com.com:
CERT warns of DHCP vulnerability. Read More

www.crn.com:
Internet Security Systems Launches New Strategy. Read More

news.com.com:
ACLU: You're being watched. Read More

news.com.com:
Perspective: Decrypting the secret to strong security. Read More

zdnet.com.com:
Hackers attack new smart phones. Read More

www.wired.com:
Hackers Humble Security Experts. Read More

www.newarchitectmag.com:
Reformed hackers want to lend a hand with your IT security strategy. Read More

www.westernherald.com:
Unknown hacker taps into business college Web site. Read More

www.net-security.org:
Halting the Hacker: A Practical Guide to Computer Security. Read More

16 january 2003

New Trojans:
BackLash 1.01 Alpha

Mini-web 1.0

SC-KeyLog 1.025

Vulnerabilities & Exploits:
Debian Security Advisory
DSA-229-1 imp -- SQL injection. Read More

www.securitytracker.com:
Solaris 'uucp' Buffer Overflow May Allow Local Users to Obtain Elevated Privileges. Read More

www.securitytracker.com:
Psunami Bulletin Board Input Validation Bug Lets Remote Users Execute Arbitrary Commands. Read More

www.securitytracker.com:
mpg123 Audio Player Buffer Overflow May Let Remote Users Execute Arbitrary Code. Read More

www.securitytracker.com:
W-Agora Input Validation Bug Discloses Files on the System to Remote Users. Read More

News:
www.vnunet.com:
SoBig worm brags its way onto the web. Read More

www.vnunet.com:
SoBig virus infections on the rise. Read More

www.vnunet.com:
Microsoft spills source code secrets. Read More

212.100.234.54:
MS plays the security card in Gov shared source retread. Read More

asia.cnet.com:
Security flaw may threaten cell phones. Read More

www.newarchitectmag.com:
Dangerous Dealings. Read More

www.vnunet.com:
Password problems swamp help desks. Read More

www.sunspot.net:
'Sanitized' hard drives prove data trove. Read More

allafrica.com:
Network Security - a Functional Approach. Read More

www.informationweek.com:
RIAA Says Worm Advisory Was A Hoax. Read More

www.marionstar.com:
Ohio State University computers crippled by e-bomb. Read More

www.eweek.com:
How Sharing Thwarts Hacks. Read More

15 january 2003

New Trojans:
Gates of Hell 1.8

Massaker 1.2

FallingDoor 1.1 server

Vulnerabilities & Exploits:
sec.drorshalev.com:
Internet Explorer Hacking Kit. Read More

Debian Security Advisory
DSA-228-1 libmcrypt -- buffer overflows and memory leak. Read More

online.securityfocus.com:
YABB SE Reminder.PHP SQL Injection Vulnerability. Read More

online.securityfocus.com:
BitMover BitKeeper Local Insecure Temporary File Permissions Vulnerability. Read More

online.securityfocus.com:
BitMover BitKeeper Local Temporary File Race Condition Vulnerability. Read More

online.securityfocus.com:
BitMover BitKeeper Daemon Mode Remote Command Execution Vulnerability. Read More

www.securitytracker.com:
FormMail Input Validation Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks. Read More

News:
online.securityfocus.com:
Strikeback, Part Deux. Read More

ItWeb:
Stop the music before it kills your network. Read More

www.itp.net:
Users face increasingly virulent virus threats. Read More

www.nationmultimedia.com:
E-GOVERNMENT: 'First fight the hackers'. Read More

14 january 2003

New Trojans:
Freak 0.10 Beta 1

DTr 1.5 final

Magic Link 2.1

Vulnerabilities & Exploits:
Debian Security Advisory
DSA-227-1 openldap2 -- buffer overflows and other bugs. Read More

online.securityfocus.com:
Bea Systems WebLogic ResourceAllocationException System Password Disclosure Vulnerability. Read More

www.securitytracker.com:
Middleman Proxy Buffer Overflow May Let Remote Users Execute Arbitrary Code on the Proxy Server. Read More

www.securitytracker.com:
Xynph FTP-Server Input Validation Flaw Discloses Files on the System to Remote Users. Read More

www.securitytracker.com:
BitKeeper Source Code Management System Input Validation Hole Lets Remote Users Execute Arbitrary Shell Commands. Read More

www.securitytracker.com:
Mambo Site Server Input Validation Bugs Let Remote Authenticated Users Upload and Execute Code on the Server. Read More

www.securiteam.com:
More Information Regarding Etherleak. Read More

www.securiteam.com:
WebIntelligence Vulnerable to Session Hijacking. Read More

www.securiteam.com:
Security Vulnerability Found in S8Forum. Read More

www.securiteam.com:
Multiple Vulnerabilities Found in PlatinumFTPserver. Read More

www.securiteam.com:
Mambo PHP-Portal Vulnerability (XSS and Command Execution). Read More

News:
www.crn.com:
Group Names Top Web Application Flaws. Read More

www.hardwarezone.com:
Today's latest mass mailing worm. Read More

www.net4nowt.org:
New virus spreading rapidly warn experts. Read More

www.theage.com.au:
Female virus writer creates new worm. Read More

www.extremetech.com:
Sobig Virus Picks Up Steam. Read More

www.internetweek.com:
Anti-Virus Vendors Gear Up For Next-Generation Infections. Read More

www.theregister.co.uk:
Is the RIAA "hacking you back"? Read More

online.securityfocus.com:
Feds seek public input on hacker sentencing. Read More

www.theregister.co.uk:
Kevin Mitnick's 'lost' bio. Read More

www.eweek.com:
How Sharing Thwarts Hacks. Read More

www.computerworld.com:
Microsoft's Report Card. Read More

www.newsfactor.com:
The Enterprise Authentication Game. Read More

13 january 2003

New Trojans:
Thief 3.1

Nethief 3.9

Earthquake 1.5

Vulnerabilities & Exploits:
online.securityfocus.com:
FormMail Cross-Site Scripting Vulnerability. Read More

online.securityfocus.com:
Business Objects WebIntelligence Application Session Hijacking Vulnerability. Read More

online.securityfocus.com:
Eric S. Raymond Fetchmail Heap Corruption Vulnerability. Read More

online.securityfocus.com:
Horde IMP Database Files SQL Injection Vulnerabilities. Read More

online.securityfocus.com:
Ethereal LMP Dissector Malformed Packet Memory Corruption Vulnerability. Read More

online.securityfocus.com:
Ethereal BGP Dissector Infinite Loop Denial of Service Vulnerability. Read More

online.securityfocus.com:
Ethereal TDS Dissector Malformed Packet Memory Corruption Vulnerability. Read More

online.securityfocus.com:
Sudo Password Prompt Heap Overflow Vulnerability. Read More

online.securityfocus.com:
Sun Solaris Network Interface Denial Of Service Vulnerability. Read More

online.securityfocus.com:
Apache Tomcat Invoker Servlet File Disclosure Vulnerability. Read More

online.securityfocus.com:
AppIdeas MyCart Information Disclosure Vulnerability. Read More

www.securitytracker.com:
versatileBulletin Board Authentication Bug Lets Remote Users Gain Administrative Access on the Bulletin Board. Read More

www.securitytracker.com:
Efficient Networks 5861 DSL Router Processing Bug Lets Remote Users Crash the Router. Read More

www.securitytracker.com:
BRS WebWeaver FTP Server Flaw Lets Remote Authenticated Users Create Arbitrary Directories on the Server. Read More

www.securitytracker.com:
Macromedia ColdFusion MX Input Validation Flaw Lets Certain Remote Authenticated Users Access Arbitrary Data on the Server. Read More

www.securiteam.com:
BitKeeper Remote Shell Command Execution/Local Vulnerability. Read More

www.securiteam.com:
Half-Life StatsMe Remote Security Hole. Read More

News:
europe.cnn.com:
U.S. e-mail attack targets key Iraqis. Read More

www.sfgate.com:
Microsoft trying to turn itself around with regards to security. Read More

www.canada.com:
No confessions in cyberspace, Vatican says. Read More

www.cnn.com:
University falls prey to phone tricksters. Read More

www.theeagle.com:
Overseas phone hackers infiltrate A&M phone system. Read More

www.idg.com.sg:
Xbox encryption key hackers take up challenge again. Read More

12 january 2003

New Trojans:
Knightseven 1.0 server

DTr 1.4.4 version h

EPS 1.61

Vulnerabilities & Exploits:
online.securityfocus.com:
AJ's Internet Cafe World-Writeable Files Vulnerability. Read More

online.securityfocus.com:
A.ShopKart Multiple SQL Injection Vulnerabilities. Read More

online.securityfocus.com:
iPlanet Admin Server Cross Site Scripting Vulnerability. Read More

online.securityfocus.com:
iPlanet Admin Server Insecure Open Call Vulnerability. Read More

www.securitytracker.com:
WebIntelligence Predictable Session Cookies Let Remote Users Hijack Sessions. Read More

online.securityfocus.com:
Canna Server Denial Of Service Vulnerability. Read More

online.securityfocus.com:
Canna Server Local Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
LibPNG Incorrect Offset Calculation Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
TANne Session Manager SysLog Format String Vulnerability. Read More

online.securityfocus.com:
Netscape Communicator type=password Browser Buffer Overflow Vulnerability. Read More

News:
www.introversion.co.uk:
Uplink is a simulated hacking tool, which allows you to perform various acts of high-tech computer crime. Read More

www.hoosiertimes.com:
Police tracking down hacker of Crime Stoppers computer. Read More

rtnews.globetechnology.com:
The Holy Grail of Security. Read More

www.gnutellanews.com:
RIAA Website Hacked Once Again..... Read More

icsurreyonline.icnetwork.co.uk:
Majority of companies are affected by external hacking. Read More

11 january 2003

New Trojans:
Grifin

Breath of Death 1.0

MagicLink 1.4

Vulnerabilities & Exploits:
Debian Security Advisory
DSA-226-1 xpdf-i -- integer overflow. Read More

online.securityfocus.com:
PHP 4.0.3 IMAP Module Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
Multiple Vendor Linux LCDProc Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
Solaris cachefsd Heap Overflow Vulnerability. Read More

online.securityfocus.com:
Oracle 9i Application Server Sample Scripts Information Disclosure Vulnerability. Read More

online.securityfocus.com:
CGIHTML Insecure Form-Data Temporary File Vulnerability. Read More

online.securityfocus.com:
CGIHTML Form Data File Corruption Vulnerability. Read More

online.securityfocus.com:
Captaris Infinite WebMail HTML Injection Vulnerability. Read More

online.securityfocus.com:
cgihtml Denial Of Service Vulnerability. Read More

online.securityfocus.com:
FreeBSD System Call f_count Integer Overflow Vulnerability. Read More

online.securityfocus.com:
cgihtml Signed Integer Content-Length Memory Corruption Vulnerability. Read More

online.securityfocus.com:
Linksys WET11 Denial Of Service Vulnerability. Read More

online.securityfocus.com:
GeneWeb File Disclosure Vulnerability. Read More

online.securityfocus.com:
Sendmail check_relay Access Bypassing Vulnerability. Read More

online.securityfocus.com:
Sendmail SMRSH Double Pipe Access Validation Vulnerability. Read More

online.securityfocus.com:
Cyrus SASL Library Logging Memory Corruption Vulnerability. Read More

online.securityfocus.com:
Cyrus SASL Library Username Heap Corruption Vulnerability. Read More

online.securityfocus.com:
Cyrus SASL Library LDAP Heap Corruption Vulnerability. Read More

online.securityfocus.com:
HTTP Fetcher Library Multiple Buffer Overflow Vulnerabilities. Read More

www.securitytracker.com:
GeneWeb Input Validation Flaw Discloses Files on the System to Remote Users. Read More

www.securitytracker.com:
Horde IMP Mail Server Input Validation Holes May Let Remote Users Execute Commands on the Underlying Database Server. Read More

www.securitytracker.com:
a.shopKart Input Validation Flaw Permits SQL Command Injection and Discloses Shopping Database Information to Remote Users. Read More

News:
www.informationweek.com:
Four New Windows Worms Are On The Loose. Read More

www.theregister.co.uk:
The return of the celebrity virus. Read More

www.theregister.co.uk:
Microsoft adds security layers to ISA Server. Read More

techupdate.zdnet.com:
Networked storage not yet secure. Read More

www.computerworld.com:
How to toughen the weakest link in the security chain. Read More

www.detnews.com:
Feds enlist hacker to foil piracy rings. Read More

www.washingtonpost.com:
The View From Symantec's Security Central. Read More

www.theeagle.com:
Overseas phone hackers infiltrate A&M phone system. Read More

10 january 2003

New Trojans:
DTr 1.5 version e

Dua ti choi

F-Backdoor 1.5 beta

Vulnerabilities & Exploits:
Debian Security Advisory
DSA-225-1 tomcat4 -- source disclosure. Read More

online.securityfocus.com:
Active PHP Bookmarks Arbitrary Bookmark Addition Vulnerability. Read More

online.securityfocus.com:
Active PHP Bookmarks Multiple File Include Vulnerabilities. Read More

online.securityfocus.com:
S8Forum Remote Command Execution Vulnerability. Read More

www.securitytracker.com:
Cgihtml Script Package Contains Multiple Flaws That Let Remote Users Deny Service or Upload Files to the System. Read More

News:
www.vnunet.com:
Three new viruses on the loose. Read More

www.vnunet.com:
Bugwatch: Out with the old, in with the new. Read More

www.news.com.au:
Oz immune to new worm. Read More

www.townonline.co:
Police raise red Flag on identity theft. Read More

news.ft.com:
Shorter version of snooping rules a relief to employers. Read More

techupdate.zdnet.co.uk:
New user a security nightmare. Read More

www.eweek.com:
Microsoft Offers Security Guide. Read More

www.usatoday.com:
Feds enlist hacker to foil piracy rings. Read More

www.newsday.com:
Gay porn program pops up in Army show on cable. Read More

www.newsfactor.com:
Daily CyberCrime and Security Report for January 9, 2003. Read More

09 january 2003

New Trojans:
Amitis 1.2

CiGiCiGi 1.0

Nethief 3.8

Vulnerabilities & Exploits:
Debian Security Advisory
DSA-224-1 canna -- buffer overflow and more. Read More

online.securityfocus.com:
CUPS Negative Length HTTP Header Vulnerability. Read More

online.securityfocus.com:
Microsoft Windows 2000 Lanman Denial of Service Vulnerability. Read More

online.securityfocus.com:
MySQL COM_CHANGE_USER Password Memory Corruption Vulnerability. Read More

www.securitytracker.com:
FluxNetz's Tanne Session Management Software Format String Error Lets Remote Users Execute Commands on the Server. Read More

www.securitytracker.com:
FreeBSD Kernel Integer Overflow May Let Local Users Deny Service, Gain Elevated Privileges, or View Files on the System. Read More

www.securitytracker.com:
Longshine Wireless Access Point Discloses Passwords to Remote Users. Read More

www.securitytracker.com:
Insightful's S-PLUS Uses Unsafe Temporary Files That May Let Local Users Modify Files or Obtain Elevated Privileges. Read More

www.securitytracker.com:
CommuniGate Pro Input Validation Bug Lets Remote Users View Files on the System. Read More

www.securitytracker.com:
H-Sphere Web Hosting Software Buffer Overflow in 'WebShell' Lets Remote Users Grab Root Privileges. Read More

www.securitytracker.com:
Smart Search CGI Input Validation Flaw Lets Remote Users Execute Commands on the Web Server. Read More

www.securitytracker.com:
IBM DB2 Database for iSeries (OS/400) Lets Remote Authenticated Users Execute Programs on the System. Read More

www.securitytracker.com:
IBM Net.Data May Disclose Internal Variables to Remote Users. Read More

www.securitytracker.com:
HTTP Fetcher Buffer Overflows May Let Remote Servers Execute Arbitrary Code. Read More

www.securitytracker.com:
IP Filter Packet State Error May Let Remote Users Deny Service. Read More

www.securiteam.com:
Tanne Format String Exploit Code. Read More

www.securiteam.com:
Remote Format String Vulnerability in Tanne. Read More

www.securiteam.com:
Remote Root Vulnerability in HSphere WebShell. Read More

www.securiteam.com:
Directory Traversal Bug in CommuniGate Pro 4's Webmail Service (*). Read More

www.securiteam.com:
Multiple Issues in Nettelephone Dialer. Read More

News:
news.zdnet.co.uk:
Lirva worm attaches to Avril Lavigne. Read More

www.extremetech.com:
Avril Lavigne Virus Hits the Web. Read More

www.theage.com.au:
New variant of 1999 worm spotted. Read More

www.esj.com:
Security Expert Predicts End of Mass-Mailing Worms in 2003. Read More

rtnews.globetechnology.com:
Porn popup may be virus or ad-ware. Read More

news.yahoo.com:
Microsoft Releases Security Software For Exchange And Internet Information Server. Read More

www.pcworld.com:
Xbox Hackers Resume Effort. Read More

techupdate.zdnet.com:
Make 2003 more secure. Read More

www.gcn.com:
Fed sites hacker could spend a decade in jail. Read More

www.aftenposten.no:
'DVD Jon' scores huge legal victory. Read More

www.businessweek.com:
The Network Is the Battlefield. Read More

online.securityfocus.com:
California disclosure law has national reach. Read More

www.newsfactor.com:
Daily CyberCrime and Security Report for January 8, 2003. Read More

08 january 2003

New Trojans:
hackBOY's Trojan 1.0beta

Gates of Hell 1.4

Insect 1.0 beta version a

Vulnerabilities & Exploits:
Debian Security Advisory
DSA-223-1 geneweb -- information exposure. Read More

Debian Security Advisory
DSA-222-1 xpdf -- integer overflow. Read More

online.securityfocus.com:
Microsoft Windows 2000 Lanman Denial of Service Vulnerability. Read More

online.securityfocus.com:
MySQL COM_CHANGE_USER Password Memory Corruption Vulnerability. Read More

News:
www.eweek.com:
Flaw Found in Ethernet Device Drivers. Read More

www.gcn.com:
Fed sites hacker could spend a decade in jail. Read More

www.theregister.co.uk:
Hackers take on MS on copyright protection for eBooks. Read More

www.wired.com:
Help Wanted: Steal This Database. Read More

www.securiteam.com:
KaZaA Lunches Ads in the Wrong Security Zone. Read More

07 january 2003

New Trojans:
NeoTurk 1.4

WM Trojan Generator 1.1

DTr 1.5 version d

Vulnerabilities & Exploits:
www.securitytracker.com:
AN HTTPD Web Server Discloses Installation Path to Remote Users. Read More

www.securitytracker.com:
CuteFTP Client Buffer Overflow in Processing FTP Banners May Let Remote Users Execute Code. Read More

www.securitytracker.com:
Winamp Buffer Overflow in Loading 'b4s' Playlists Lets Remote Users Execute Arbitrary Code on the Player. Read More

online.securityfocus.com:
Solaris NFS lockd Remote Denial of Service Vulnerability. Read More

online.securityfocus.com:
Pedestal Software Integrity Protection Driver Symbolic Link Bypass Vulnerability. Read More

online.securityfocus.com:
Pine From: Field Heap Corruption Vulnerability. Read More

online.securityfocus.com:
SGI FAM Arbitrary Root Owned Directory File Listing Vulnerability. Read More

online.securityfocus.com:
Sun Solaris Wall Spoofed Message Origin Vulnerability. Read More

online.securityfocus.com:
Jabber Gadu-Gadu Transport Denial of Service Vulnerability. Read More

online.securityfocus.com:
MHonArc m2h_text_html Filter Cross Site Scripting Vulnerability. Read More

online.securityfocus.com:
Microsoft Pocket Internet Explorer Denial Of Service Vulnerability. Read More

online.securityfocus.com:
iCal Remote Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
iCal Malformed HTTP Request Denial Of Service Vulnerability. Read More

News:
online.securityfocus.com:
California disclosure law has national reach. Read More

www.theregister.co.uk:
NTL in alleged hack probe. Read More

www.theregister.co.uk:
Hackers take on MS on copyright protection for eBooks. Read More

www.wired.com:
Help Wanted: Steal This Database. Read More

www.osopinion.com:
Why Kevin Mitnick Worries Me. Read More

06 january 2003

New Trojans:
Z-Demon 1.0

Freak 1.01

Evasive Keylog 3.2.6

Tool:
freshmeat.net:
Network Security Analysis Tool 1.5. Read More

Vulnerabilities & Exploits:
www.securitytracker.com:
'wall' (/usr/sbin/wall) Bug Lets Local Users Spoof Broadcast Messages. Read More

www.securitytracker.com:
S8Forum Input Validation Flaw Lets Remote Users Execute Operating System Commands on the Target Server. Read More

www.securiteam.com:
OpenBSD and NetBSD LKM That Hides Files by Patching getdirentries(). Read More

www.securiteam.com:
Ptrace() Injector (Malaria). Read More

www.securiteam.com:
Smart Search CGI Remote Command Execution Exploit. Read More

www.securiteam.com:
CUPS Integer Overflow Exploit. Read More

www.securiteam.com:
DB2 on iSeries Stored Procedures Vulnerability. Read More

www.securiteam.com:
IBM Net.Data Internal Variables Display Vulnerability. Read More

www.securiteam.com:
CuteFTP Banner Buffer Overflow. Read More

www.securiteam.com:
iCal Remote DoS and Path Disclosure. Read More

www.securiteam.com:
Eserv Remote Denial of Service (5mb Garbage). Read More

www.securiteam.com:
Yabbse XSS Vulnerability in news_template.php (threadid, msgid). Read More

www.securiteam.com:
OpenTopic XSS Security Hole. Read More

www.securiteam.com:
Yabbse XSS Vulnerability in news_template.php. Read More

www.securiteam.com:
Remote Database Password Disclosure in Bugzilla. Read More

News:
www.nytimes.com:
Hacking Away, Long Before There Were Hackers. Read More

www.counterpunch.org:
Les Miserable and the Hackers from Hell. Read More

starbulletin.com:
ID Theft. Read More

www.theregister.co.uk:
Microsoft's masterplan to screw phone partner - full details. Read More

05 january 2003

New Trojans:
Skun 0.1b1

Ducktoy 1.4 beta

Ayan Bilisim 0.1 client

Vulnerabilities & Exploits:
online.securityfocus.com:
Netscape Email Client Message Deletion Weakness. Read More

www.securitytracker.com:
Brown Bear Software's iCal Web Calendar Server Can Be Crashed By Remote Users. Read More

www.securitytracker.com:
N/X Content Management System Include File Error Lets Remote Users Execute Arbitrary Commands on the Server. Read More

www.securitytracker.com:
Bugzilla Bug Tracking System Default '.htaccess' Configuration May Disclose the Underlying Database Password to Remote Users. Read More

www.securiteam.com:
Vulnerabilities in Leafnode. Read More

News:

04 january 2003

New Trojans:
DTr 1.4.4 version i

SC-KeyLog 2.2

Spion 3.5.5.15

Tool:
pedestalsoftware.com:
IPD is an Open Source program to protect Windows 2000 kernel integrity. Read More

Vulnerabilities & Exploits:
Debian Security Advisory
DSA-221-1 mhonarc -- cross site scripting. Read More

Debian Security Advisory
DSA-220-1 squirrelmail -- cross site scripting. Read More

online.securityfocus.com:
ShadowJAAS Command Line Password Disclosure Vulnerability. Read More

online.securityfocus.com:
Perl-HTTPd File Disclosure Vulnerability. Read More

online.securityfocus.com:
PEEL Remote File Include Vulnerability. Read More

online.securityfocus.com:
DHCPCD Character Expansion Remote Command Execution Vulnerability. Read More

www.securitytracker.com:
PhysTech 'dhcpcd' Allows Remote Users to Execute Arbitrary Commands With Root Privileges. Read More

www.securitytracker.com:
Ensim WEBpliance Server Management Software Lets Remote Authenticated Users Receive E-mail for Subsequently Created Users on the Hosted Domain. Read More

www.securitytracker.com:
GNU Emacs Editor May Let Local Users Cause a Target User to Execute Arbitrary Shell Commands. Read More

www.securitytracker.com:
Netscape E-mail Client Fails to Delete Messages When 'Empty Trash' is Selected. Read More

News:
www.theage.com.au:
Latest email worm causes confusion among vendors. Read More

www.comnews.com:
How to secure switches and routers. Read More

www.wired.com:
Why RIAA Keeps Getting Hacked. Read More

www.zwire.com:
Teach Your Kid to be a Hacker. Read More

patriot.net:
The Dark Side of NTFS. Read More

03 january 2003

New Trojans:
CyberWarrior Beta 2

Nethief 3.7

hRat 1.0

Vulnerabilities & Exploits:
online.securityfocus.com:
Microsoft Visual SourceSafe Client-Side Access Control Weakness. Read More

online.securityfocus.com:
PlatinumFTPserver Denial Of Service Vulnerability. Read More

online.securityfocus.com:
PlatinumFTPServer Information Disclosure Vulnerability. Read More

online.securityfocus.com:
PlatinumFTPServer Arbitrary File Deletion Vulnerability. Read More

online.securityfocus.com:
Web-cyradm Remote Denial of Service Vulnerability. Read More

online.securityfocus.com:
OpenLDAP Multiple Buffer Overflow Vulnerabilities. Read More

online.securityfocus.com:
Telindus 1100 Series Router Administration Password Leak Vulnerability. Read More

www.securitytracker.com:
PHP-Nuke Input Validation Flaw in New User Registration Signature Field Lets Remote Users Conduct Cross-Site Scripting Attacks. Read More

www.securitytracker.com:
PEEL Include File Error Lets Remote Users Execute Arbitrary Commands on the Server. Read More

News:
www.upi.com:
India, Pakistan conflict enters computers. Read More

straitstimes.asia1.com.sg:
Click and get a date - with a virus. Read More

www.theregister.co.uk:
Macro and script viruses dying off. Read More

online.securityfocus.com:
Windows Forensics: A Case Study, Part One. Read More

www.harktheherald.com:
Hackers prompt Nebo District to upgrade software security. Read More

www.news.com.au:
Student arrested for security secrets. Read More

www.paloaltoonline.com:
Un-Wired. Read More

www.newsfactor.com:
Daily CyberCrime and Security Report for January 2, 2003. Read More

02 january 2003

New Trojans:
Destructor 1.2

Ass4ss1n 1.0

GhostVoice 1.02 modified

Vulnerabilities & Exploits:
www.securiteam.com:
Citibank (Canada) Internet Explorer Miss-configuration. Read More

www.securiteam.com:
Visual SourceSafe - Preliminary Observations. Read More

www.securitytracker.com:
Gallery Image Management Software Discloses Server Files to Remote Authenticated Users. Read More

www.securitytracker.com:
Platinum FTP Server Input Validation Flaw Lets Remote Authenticated Users View File Listings and Crash the Server. Read More

www.securitytracker.com:
Web-cyradm IMAP Administration Software May Let Remote Authenticated Users Crash the Server. Read More

www.securitytracker.com:
Leafnode NNTP News Server Lets Remote Users Deny Service. Read More

www.securitytracker.com:
GuildFTPd FTP Server Can Be Crashed By Remote Users Requesting DOS Device Names. Read More

News:
news.zdnet.co.uk:
Yaha virus variant heats up. Read More

www.informationweek.com:
Threat Of Yaha Virus Upgraded. Read More

news.zdnet.co.uk:
The Year Ahead: The future of viruses. Read More

www.theage.com.au:
New Word macro virus spotted. Read More

www.tech-report.com:
Are many security holes going unexploited? Read More

www.globetechnology.com:
The Internet: collateral damage? Read More

www.harktheherald.com:
Hackers prompt Nebo District to upgrade software security. Read More

www.msnbc.com:
The year the criminals took over. Read More

01 january 2003

New Trojans:
R.A.S. 2002 v1.0

3 x Backdoor

Nethief 2.2

Vulnerabilities & Exploits:
online.securityfocus.com:
Gallery Remote Code Execution Vulnerability. Read More

online.securityfocus.com:
Multiple Vendor SSH2 Implementation Buffer Overflow Vulnerabilities. Read More

online.securityfocus.com:
Multiple Vendor Sun RPC xdr_array Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
PHP wordwrap() Heap Corruption Vulnerability. Read More

online.securityfocus.com:
Sun Solaris System Panic Denial Of Service Vulnerability. Read More

online.securityfocus.com:
Cyrus SASL Library LDAP Heap Corruption Vulnerability. Read More

online.securityfocus.com:
Cyrus SASL Library Username Heap Corruption Vulnerability. Read More

online.securityfocus.com:
monopd Remote Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
Mambo Site Server Path Disclosure Vulnerability. Read More

online.securityfocus.com:
Mambo Site Server Account Registration HTML Injection Vulnerability. Read More

online.securityfocus.com:
Mambo Site Server PHPInfo.PHP Information Disclosure Vulnerability. Read More

online.securityfocus.com:
D-Link DWL-1000AP Wireless LAN Access Point Public Community String Vulnerability. Read More

online.securityfocus.com:
D-Link DWL-1000AP Wireless LAN Access Point Plaintext Password Vulnerability. Read More

online.securityfocus.com:
CHETCPASSWD Shadow File Disclosure Vulnerability. Read More

online.securityfocus.com:
Cyrus IMAPD Pre-Login Heap Corruption Vulnerability. Read More

online.securityfocus.com:
SkyStream Edge Media Router-5000 Local Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
Typespeed Local Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
Sun Solaris RPC AUTH_DES Privilege Escalation Vulnerability. Read More

online.securityfocus.com:
PFinger Syslog Format String Vulnerability. Read More

online.securityfocus.com:
Solaris priocntl() System Call Local Root Vulnerability. Read More

News:
www.theage.com.au:
New email worm alert. Read More

www.wired.com:
So Many Holes, So Few Hacks. Read More

www.computerworld.com:
Six top security issues for executives. Read More

www.internetweek.com:
Warning: Tough Year Ahead For IT Security. Read More

www.theregister.co.uk:
Unhappy new Yaha. Read More

news.zdnet.co.uk:
The Year Ahead: The future of viruses. Read More

www.ispreview.co.uk:
2003 - Year Of the Killer Internet Virus? Read More

www.gnutellanews.com:
RIAA HaCkEd Again....Read More

www.theregister.co.uk:
Want to know how RIAA.org was hacked? Read More

www.theregister.co.uk:
RIAA invites comments. Read More


Copyright� MegaSecurity.org