Home News Archive Translate Traducen |
News January 2005 |
31 January 2005 Guides, Papers, etc www.maxpatrol.com: Defeating Microsoft Windows XP SP2 Heap protection and DEP bypass. Read more
www.research.ibm.com:
Time to deny users their rights Tools securityresponse.symantec.com: Tool to reset shell\open\command registry keys. Read more
www.splint.org: News: nwc.securitypipeline.com: Microsoft Anti-Piracy Plan Sacrifices Security. Read more
news.com.com:
www.pcauthority.com.au:
www.theregister.co.uk:
star-techcentral.com:
www.mytelus.com:
www.terra.net.lb:
www.terra.net.lb:
|
30 January 2005 Guides, Papers, etc www.maxpatrol.com: Defeating Microsoft Windows XP SP2 Heap protection and DEP bypass. Read more Tools www.invircible.com: Toggle Mode utility. This utility allows the switching of any Win 32 platform from 'normal' startup mode, into a 'safe with command prompt' like mode, and back to normal. The ToggleMode utility is especially usefull for the handling of viruses and malware on Windows 32 platforms, as well as conducting Windows repair tasks. Read more
www.drugphish.ch: Vulnerabilities & Exploits www.k-otik.com: Squid Proxy Cache WCCP Remote Buffer overflow Vulnerability. Read more
www.securitytracker.com: News: seattletimes.nwsource.com: Blaster hacker receives 18-month sentence. Read more
www.newsbug.net:
economictimes.indiatimes.com:
www.earthtimes.org:
www.macworld.com:
www.theregister.co.uk:
|
29 January 2005 Vulnerabilities & Exploits securitytracker.com: UW IMAP CRAM-MD5 Authentication Flaw Lets Remote Users Access Arbitrary IMAP Accounts. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com: News: www.computerworld.com: MySQL installations targeted by Forbot worm variant. Read more
www.theregister.co.uk:
www.vnunet.com:
news.zdnet.co.uk:
news.zdnet.co.uk:
www.theregister.co.uk:
seattlepi.nwsource.com:
www.startribune.com:
www.securitypipeline.com:
software.silicon.com:
www.theregister.co.uk:
www.theregister.co.uk:
news.zdnet.co.uk:
news.zdnet.co.uk:
|
28 January 2005 Vulnerabilities & Exploits www.k-otik.com: Novell iChain Mutual Authentication Security Bypass Issue. Read more
www.k-otik.com:
xforce.iss.net:
www.k-otik.com:
www.debian.org:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com: News: www.vnunet.com: Latest Bagle mutant on the rampage. Read more
www.theregister.co.uk:
news.zdnet.co.uk:
news.zdnet.co.uk:
www.theregister.co.uk:
www.securityfocus.com:
news.zdnet.co.uk:
www.boingboing.net:
www.theregister.co.uk:
www.theregister.co.uk:
|
27 January 2005 Guides, Papers, etc www.securityfocus.com: Blind Buffer Overflows In ISAPI Extensions. Read more
www.it-observer.com: Vulnerabilities & Exploits www.idefense.com: Openswan XAUTH/PAM Buffer Overflow Vulnerability. Read more
www.k-otik.com:
www.k-otik.com:
www.debian.org:
www.debian.org:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com: News: www.nytimes.com: A Virus Writer Tests the Limits in Cellphones. Read more
www.pcauthority.com.au:
www.chinadaily.com.cn:
www.thefeature.com:
software.silicon.com:
news.zdnet.com:
seattletimes.nwsource.com:
www.theregister.co.uk:
www.webuser.co.uk:
news.zdnet.com:
www.vnunet.com:
os.newsforge.com:
www.pcworld.idg.com.au:
www.theregister.co.uk:
www.theregister.co.uk:
www.vnunet.com:
www.theregister.co.uk:
www.theregister.co.uk:
www.cellular-news.com:
www.itweb.co.za:
www.vnunet.com:
|
26 January 2005 Guides, Papers, etc www.astalavista.com: Network Firewall Technologies. Read more Vulnerabilities & Exploits www.gecadnet.ro: ActiveX Object HTML Help Control still exploitable after patch MS05-001. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
www.debian.org:
www.debian.org:
www.debian.org:
www.debian.org: News: news.zdnet.com: Expert: Flaw still dogs Windows patch. Read more
crn.com:
www.mobilemonday.net:
www.mobilemonday.net:
www.theregister.co.uk:
news.zdnet.com:
news.zdnet.co.uk:
www.computerworld.com:
news.zdnet.co.uk:
news.com.com:
www.detnews.com:
www.theregister.co.uk:
itvibe.com:
|
25 January 2005 Guides, Papers, etc www1.cs.columbia.edu: An Analysis of the Skype Peer-to-Peer Internet Telephony Protocol. Read more
www.ida.liu.se:
www.dimva.org: Vulnerabilities & Exploits www.idefense.com: DataRescue Interactive Disassembler Pro Buffer Overflow Vulnerability. Read more
securitytracker.com:
securitytracker.com:
News: news.zdnet.co.uk: Electronic eavesdropping rising. Read more
news.zdnet.co.uk:
news.zdnet.co.uk:
www.pcauthority.com.au:
www.theregister.co.uk:
news.zdnet.co.uk:
news.zdnet.co.uk:
www.theregister.co.uk:
news.zdnet.co.uk:
news.zdnet.co.uk:
searchsecurity.techtarget.com:
news.zdnet.co.uk:
|
24 January 2005 Guides, Papers, etc www.phrack.org: PHRACK #63 CALL FOR PAPERS. Read more Vulnerabilities & Exploits www.securiteam.com: Microsoft Internet Explorer Install Engine Control Buffer Overflow (MS04-038). Read more
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
securitytracker.com:
www.securityfocus.com:
News: www.mobilemonday.net: Lasco worm�s author is a Nokia fan. Read more
www.mobilemonday.net:
news.com.com:
www.computerweekly.com:
www.pcauthority.com.au:
www.theinquirer.net:
www.cellular-news.com:
icbirmingham.icnetwork.co.uk:
|
23 January 2005 Guides, Papers, etc chongqed.blogspot.com: The 2005 Spam Conference Here are some quick links all about this year's spam conference. Read more
www.techworld.com:
www.caida.org:
antiphishing.org: Tools www.ethereal.com: Ethereal 0.10.9 released. Read more Vulnerabilities & Exploits www.milw0rm.com: (MS05-002) Microsoft Internet Explorer .ANI Files Handling Exploit. Read more
www.milw0rm.com:
www.k-otik.com: News: technocrat.net: Phishing with a News Aggregator Worm. Read more
www.geekzone.co.nz:
www.techworld.com:
www.vnunet.com:
www.techworld.com:
www.vnunet.com:
www.theregister.co.uk:
www.boston.com:
www.theregister.co.uk:
www.rednova.com:
www.techworld.com:
|
22 January 2005 Vulnerabilities & Exploits securitytracker.com: GNU Enscript EPSF and Filename Command Input Validation Errors May Let Remote Users Execute Arbitrary Code in Certain Cases. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
www.ngssoftware.com:
www.debian.org:
www.debian.org:
www.debian.org:
www.debian.org: News: www.securityfocus.com: Anti-Spyware as Anti-Piracy Is Microsoft's anti-malware giveaway part of a master plan to flush out software pirates? Read more
www.securityfocus.com:
story.news.yahoo.com:
www.newsfactor.com:
news.zdnet.co.uk:
news.com.com:
www.techworld.com:
|
21 January 2005 Guides, Papers, etc www.research.ibm.com: Anatomy of a Commercial-Grade Immune System. Read more Vulnerabilities & Exploits www.securityfocus.com: Microsoft Internet Explorer HTML Help Control Vulnerability Still Exploitable After Patch. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com: News: www.vnunet.com: Security: What to watch in 2005. Read more
www.crn.com:
australianit.news.com.au:
www.theregister.co.uk:
www.rednova.com:
www.vnunet.com:
news.zdnet.com:
news.zdnet.com:
news.zdnet.com:
www.theregister.co.uk:
|
20 January 2005 Guides, Papers, etc eprint.iacr.org: The Misuse of RC4 in Microsoft Word and Excel. Read more Tools www.microsoft.com: Scriptomatic 2.0. Utility that helps you write WMI scripts for system administration. Read more
www.astalavista.com: Vulnerabilities & Exploits www.guninski.com: Some vim problems, yet still vim much better than windows. Read more
www.securiteam.com:
www.integrigy.com:
www.idefense.com:
www.ngssoftware.com:
www.ngssoftware.com:
www.ngssoftware.com:
www.ngssoftware.com:
www.ngssoftware.com:
www.ngssoftware.com:
www.cisco.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
www.debian.org:
www.debian.org:
www.debian.org: News: www.computerworld.com: Spanish police nab suspected creator of webcam Trojan. Read more
www.theregister.co.uk:
www.technologyreview.com:
info.sen.ca.gov:
www.silicon.com:
www.computerworld.com:
www.theregister.co.uk:
nwc.linuxpipeline.com:
www.infoworld.com:
news.zdnet.co.uk:
informationweek.com:
|
19 January 2005 Guides, Papers, etc www.astalavista.com: An Economic Analysis of Market for Software Vulnerabilities. Read more
vidstrom.net: Tools www.theglobeandmail.com: GFI updates network security scanner. Read more
vidstrom.net:
www.solutix.ch: Vulnerabilities & Exploits theinsider.deep-ice.com: Kazaa: multiple vulnerabilities. Read more
www.debian.org:
www.debian.org:
www.debian.org:
www.idefense.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com: News: www.theregister.co.uk: Worm poses as porn-purging program. Read more
www.vnunet.com:
www.newsfactor.com:
news.zdnet.co.uk:
www.securitypronews.com:
federaltimes.com:
www.vnunet.com:
www.vnunet.com:
www.webuser.co.uk:
news.zdnet.co.uk:
www.eff.org:
|
17 January 2005 Guides, Papers, etc www.scs.carleton.ca: Computer Viruses as Artificial Life. Read more Vulnerabilities & Exploits www.debian.org: DSA-640-1 gatos -- buffer overflow. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.milw0rm.com: News: www.pcworld.idg.com.au: Experts warn of trick to bypass IE security. Read more
www.bizjournals.com:
www.theinquirer.net:
|
15 January 2005 News: www.computerworld.com: Experts warn of trick to bypass IE download warnings. Read more
www.newsfactor.com:
news.bbc.co.uk:
www.redherring.com:
www.linuxinsider.com:
news.com.com:
|
14 January 2005 Movie Trojan (a) Guides, Papers, etc www.securityfocus.com: The Perils of Deep Packet Inspection. Read more Vulnerabilities & Exploits securitytracker.com: Microsoft IE Windows XP SP2 File Download Security Can Be Bypassed With Dynamic IFRAME Tag. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
www.isec.pl:
dump.hbx.us:
www.cirt.dk:
www.idefense.com:
www.idefense.com:
www.idefense.com: News: news.zdnet.com: Microsoft recruits patch testers. Read more
www.theregister.co.uk:
news.zdnet.com:
news.zdnet.co.uk:
www.theregister.co.uk:
www.internetweek.com:
news.zdnet.com:
www.whittierdailynews.com:
|
13 January 2005 Vulnerabilities & Exploits www.debian.org: DSA-637-1 exim-tls -- buffer overflow. Read more
www.debian.org:
www.waraxe.us:
secway.org:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com: News: www.theregister.co.uk: Double trouble from Symbian virus. Read more
www.internetnews.com:
news.zdnet.co.uk:
www.theregister.co.uk:
news.zdnet.co.uk:
news.zdnet.co.uk:
edition.cnn.com:
news.zdnet.co.uk:
www.smh.com.au:
|
12 January 2005 Guides, Papers, etc The makers of the (classic) compression package Stuffit have written a program that can compress JPGs by roughly 30%. StuffIt� Image Compression White Paper. (pdf) Read more
www.kernelpanik.org:
www.benedelman.org:
files.linuxexposed.com: Vulnerabilities & Exploits securitytracker.com: Microsoft HTML Help Active Control Cross-Domain Error Lets Remote Users Execute Arbitrary Commands. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
www.debian.org:
www.debian.org:
www.debian.org: News: www.microsoft.com: Microsoft Security Bulletin Summary for January, 2005. Read more
news.com.com:
news.com.com:
news.com.com: www.securityfocus.com MS virus clean-up tool sparks controversy. Read more
news.com.com: www.securityfocus.com Hacker penetrates T-Mobile systems. Read more
www.betanews.com:
news.com.com:
|
11 January 2005 Guides, Papers, etc www.giac.org: Vulnerabilities in Bluetooth specification 1.1 And the Sony Ericsson T610. (pdf) Read more Tools The first real virus for cellphones. Two versions: 1) Windows infector - scans all hard disks and infects all .SIS files 2) Cell phone version - the same functionality Both with full source code. Read more
Vulnerabilities & Exploits www.mikx.de: Firespoofing. Read more
www.gentoo.org:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
www.appsecinc.com:
www.appsecinc.com:
www.debian.org:
www.debian.org:
www.debian.org: News: news.zdnet.co.uk: Mobile phone virus doubles the danger. Read more
www.theregister.co.uk:
www.theregister.co.uk:
arstechnica.com:
australianit.news.com.au:
www.eweek.com:
|
10 January 2005 Guides, Papers, etc www.flexbeta.net: MS AntiSpyware vs Ad-Aware vs SpyBot. Read more
www.techworld.com: Vulnerabilities & Exploits ferruh.mavituna.com: Multiple Firewall Products Bypass Vulnerability. Read more News: www.computerworld.com: Microsoft move sends shivers through antivirus market. Read more
www.informationweek.com:
www.bizjournals.com:
www.editorandpublisher.com:
|
09 January 2005 Guides, Papers, etc www.giac.org: Mass-Mailing Worms: Prevention, Detection and Response (A Case Study). Read more
www.broadbandreports.com: Tools Plash is a Unix shell which lets you run Unix programs with access only to the files and directories they need to run. Programs are given access to files which were passed as command line arguments. Vulnerabilities & Exploits www.idefense.com: Exim auth_spa_server() Buffer Overflow Vulnerability. Read more
www.idefense.com:
www.securitytracker.com: News: www.securityfocus.com: Microsoft Anti-Spyware? Read more
english.chosun.com:
www.itweb.co.za:
australianit.news.com.au:
www.nuclearelephant.com:
|
08 January 2005 Guides, Papers, etc mvp.unixwiz.net: Analysis of the Troj/Winser-A Malware. Read more Vulnerabilities & Exploits www.geocities.com: Mozilla XBM Vulnerability. Read more
www.debian.org:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
isec.pl: News: www.theregister.co.uk: Mozilla and Firefox flaws exposed. Read more
news.zdnet.com:
news.zdnet.com:
www.computerworld.com:
wireless.newsfactor.com:
www.theregister.co.uk:
www.f-secure.com:
www.securityfocus.com:
|
07 January 2005 Guides, Papers, etc www.microsoft.com: Beat Hackers At Their Own Game With A Hackerbasher Site. Read more
www.antiphishing.org: Vulnerabilities & Exploits securitytracker.com: WinAce ZIP and GZIP Directory Traversal Flaw Lets Malicious Archives Create Files in Alternate Locations. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
aluigi.altervista.org:
aluigi.altervista.org:
www.lovebug.org:
www.debian.org:
www.debian.org:
www.debian.org: News: www.microsoft.com: Microsoft Announces Availability of New Solutions to Help Protect Customers Against Spyware and Viruses. Read more
www.computerworld.com:
www.computerworld.com:
www.theregister.co.uk:
www.theregister.co.uk:
www.securityfocus.com:
itmanagement.earthweb.com:
www.computerworld.com:
english.yna.co.kr:
|
06 January 2005 Guides, Papers, etc www.securityfocus.com: SSH Port Forwarding. Read more
www.cc.gatech.edu:
offlinehbpl.hbpl.co.uk:
offlinehbpl.hbpl.co.uk:
www.unixwiz.net: Tools www.thc.org: THC-pptp-bruter: Brute force program against PPTP VPN Gateways (tcp port 1723). Fully standalone. Supports latest MSChapV2 authentication. Tested against Windows and Cisco Systems. Exploits a weakness in Microsoft's anti brute-force implementation that makes it possible to try 300 passwords per second. Read more Vulnerabilities & Exploits securitytracker.com: Exim Buffer Overflows in host_aton() and spa_base64_to_bits() May Let Local Users Gain Elevated Privileges. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
www.nextgenss.com:
www.nextgenss.com:
www.nextgenss.com:
www.nextgenss.com:
www.nextgenss.com:
www.nextgenss.com:
www.nextgenss.com:
www.nextgenss.com:
www.nextgenss.com:
www.debian.org:
www.debian.org:
www.debian.org: News: www.theregister.co.uk: VXers creating 150 zombie programs a week. Read more
news.com.com:
www.newsfactor.com:
news.com.com:
news.com.com:
|
05 January 2005 Guides, Papers, etc www.qgpop.net: Real-Time Virus Detection System Using iNetmon Engine. Read more
www.intranetjournal.com: Vulnerabilities & Exploits lists.debian.org: New zip packages fix arbitrary code execution. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com: News: news.zdnet.co.uk: Nigerian scammers 'exploit tsunami tragedy'. Read more
www.microscope.co.uk:
www.microsoft-watch.com:
www.internetweek.com:
virusthreatcenter.com:
news.zdnet.co.uk:
|
04 January 2005 Guides, Papers, etc www.cs.ucsd.edu: Automated Worm Fingerprinting. Read more
www.honeynet.org.es: Tools Tor: An anonymous Internet communication system. Tor is a toolset for a wide range of organizations and people that want to improve their safety and security on the Internet. Using Tor can help you anonymize web browsing and publishing, instant messaging, IRC, SSH, and more. Tor also provides a platform on which software developers can build new applications with built-in anonymity, safety, and privacy features. Vulnerabilities & Exploits ferruh.mavituna.com: Multiple Firewall Products Bypass Vulnerability. Read more
www.debian.org:
securitytracker.com:
securitytracker.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
News: www.neowin.net: Exclusive: Microsoft Anti-Spyware Beta Due 6th January. Read more
strategiy.com:
www.miami.com:
www.newsday.com:
www.thisismoney.co.uk:
|
03 January 2005 Guides, Papers, etc www.crhc.uiuc.edu: 2005 Symposium on Measurement, Modeling, and Simulation of Malware. The emergence of malware such as worms and viruses has generated a widespread response from the research community in methodologies and tools for measuring, modeling, and simulating malware behavior, and proposed systems that detect, react, and prevent it. The 2005 Symposium on Measurement, Modeling and Simulation of Malware aims to bring together researchers in this important area, for the sharing of ideas and development of collaborative efforts. Read more
www.cbsnews.com:
www.kuro5hin.org:
www.everybodyiscrazy.com:
www.research.ibm.com: Vulnerabilities & Exploits www.securiteam.com: NetDDE MS04-031 Exploit Code. Read more
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
|
02 January 2005 Tools Rootkit Hunter scans files and systems for known and unknown rootkits, backdoors, and sniffers. Release 1.1.9 available. Vulnerabilities & Exploits securitytracker.com: ArGoSoft FTP Server Discloses Username Status to Remote Users. Read more News: www.pcworld.com: Protect Yourself From Audio Adware. Read more
www.washingtonpost.com:
www.theregister.co.uk:
www.theregister.co.uk:
www.earthtimes.org:
|
01 January 2005 A Happy and Safe New Year
Tools
GetFree is a script to automatically download and install open source software on Windows. Guides, Papers, etc trifinite.org: Hacking Bluetooth enabled mobile phones and beyond. Read more
www.nokia.com: Vulnerabilities & Exploits www.k-otik.com: Microsoft Windows NetDDE Remote Buffer Overflow Exploit (MS04-031). Read more
www.k-otik.com:
www.milw0rm.com:
www.milw0rm.com:
www.milw0rm.com:
www.debian.org: News: www.zdnet.co.uk: Anti-Santy worm spreads. Read more
www.eweek.com:
p2pnet.net:
www.pcworld.com:
www.webuser.co.uk:
www.internetweek.com:
informationweek.com:
news.zdnet.co.uk:
www.techtree.com:
www.shannonknowshpc.com:
www.newsfactor.com:
|
Copyright� MegaSecurity.org