Home    News Archive    Translate Traducen
News march 20003
31 march 2003

New Trojans:
Fx 1.2

Back Attack 1.3

Sucker Matrix

Vulnerabilities & Exploits:
www.securitytracker.com:
Mutt Off-by-one Buffer Overflow in Processing IMAP Messages May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Eye of Gnome Viewer Input Validation Flaw May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Sun LDAP Name Service Buffer Overflow May Let Remote Users Gain Root Access. Read more

www.securitytracker.com:
Alexandria Source Code/Project Management Flaws Disclose Files to Remote Users and Let Remote Users Send E-mail to Arbitrary Recipients. Read more

www.securiteam.com:
Bajie HTTP Server Cross-Site Scripting Vulnerability. Read more

www.securiteam.com:
Remote BitchX/Epic Exploit Code (Serverside). Read more

www.securiteam.com:
OpenSSL Ptrace Exploit Code. Read more

www.securiteam.com:
Alexandria-dev / SourceForge Multiple Vulnerabilities. Read more

www.securiteam.com:
CGI-City's CCGuestBook Script Injection Vulnerabilities. Read more

www.inq7.net:
Bug can freeze Siemens phones: anti-virus firm. Read more

News:
www.zdnet.com.au:
Cyber-war rages over Iraq. Read more

www.nbr.co.nz:
Sleuthing Iraq's DNS: Who's switching out the lights? Read more

www.crime-research.org:
Hackers bombard US sites, pasting anti-war messages. Read more

www.crime-research.org:
Al Jazeera faces continued hacker attacks. Read more

www.usatoday.com:
Hack attack on Al-Jazeera raises questions. Read more

searchsecurity.techtarget.com:
Winkler-Mitnick rematch set for RSA Conference. Read more

30 march 2003

New Trojans:
Z-Demon 1.26

Z-downloader 1.2

Chat1

Vulnerabilities & Exploits:
www.iss.net:
Email Processing Vulnerability in Sendmail. Read more

www.coresecurity.com:
GNOME's Eye Of Gnome incorrect file name handling. Read more

www.securitytracker.com:
Snort Sniffer May Not Detect Certain Types of Packets in the Default Configuration. Read more

www.securitytracker.com:
D-Link DSL-500 Router Default Configuration Lets Remote Users Change the Device Configuration. Read more

www.securitytracker.com:
myGuestBk Input Validation Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
RealOne and RealPlayer Buffer Overflow in RealPix Compression Library Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
HP/UX 'ipcs' Buffer Overflow May Let Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
Ceilidh Input Validation Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Sambar Server Input Validation Flaws Disclose Files on the System to Remote Users and Permit Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
(Product is Not Vulnerable) Verity K2 Enterprise Search Feature Input Validation Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securiteam.com:
RealPlayer PNG Deflate Heap Corruption Vulnerability. Read more

www.securiteam.com:
Additional Details Released on MS Windows XP Redirector Buffer Overflow Vulnerability. Read more

www.securiteam.com:
Vulnerability in GNOME's Eye of Gnome. Read more

www.securiteam.com:
Mod_Survey ENV Tag Security Vulnerability. Read more

News:
www.hacktivismo.com:
'Iraq war sparks tit-for-tat hacker attacks'. Read more

www.trib.com:
Utah ISP is victim of retaliation following hackers' attack on Al-Jazeera. Read more

www.theregister.co.uk:
ID theft: a $1bn a year crime. Read more

29 march 2003

New Trojans:
Polymorphic Downloader 3.0

D-Web 1.0

DarkPortal

Queen 0.8E-2

Vulnerabilities & Exploits:
www.securitytracker.com:
Symantec Enterprise Firewall Lets Remote Users Bypass URL Blocking. Read more

www.debian.org:
DSA-274-1 mutt -- buffer overflow. Read more

www.debian.org:
DSA-273-1 krb4 -- Cryptographic weakness. Read more

News:
www.washingtonpost.com:
Wartime Internet Security Is 'Business as Usual'. Read more

www.fcw.com:
Army taps DMS for wartime comm. Read more

www.trib.com:
Utah ISP is victim of retaliation following hackers' attack on Al-Jazeera. Read more

www.informationweek.com:
Be Prepared: Gartner Outlines Top Security Risks. Read more

www.hindustantimes.com:
Iraq war sparks hacker attacks. Read more

www.accessatlanta.com:
Hackers strike Georgia Tech computer, gain credit card data. Read more

www.nwfusion.com:
Windows flaw could allow denial-of-service attacks. Read more

28 march 2003

New Trojans:
NeoTurk 1.5

BlueFire 0.43

SystemDebug

BestPics

Vulnerabilities & Exploits:
www.securitytracker.com:
PHP WEB CHAT Input Validation Flaws Let Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
J Walk Application Server Discloses Files to Remote Users. Read more

www.securitytracker.com:
PHP-Nuke Input Validation Flaw in 'viewpage.php' Discloses Files on the System to Remote Users. Read more

www.securitytracker.com:
PHP Integer Overflow in socket_iovec_alloc() May Let Remote Users Execute Code in Certain Cases. Read more

www.debian.org:
DSA-272-1 dietlibc -- integer overflow. Read more

www.debian.org:
DSA-271-1 ecartis -- unauthorized password change. Read more

www.debian.org:
DSA-270-1 linux-kernel-mips -- local privilege escalation. Read more

News:
www.smh.com.au:
Email worm beginning to spread. Read more

www.eweek.com:
Security Mailing Lists Come Under Fire. Read more

www.securityfocus.com:
Incident Response Tools For Unix, Part One: System Tools. Read more

www.internetweek.com:
Microsoft Patches Security Hole -- But Not For NT 4 Users. Read more

slashdot.org:
Microsoft Refuses To Fix NT 4.0 Exploit. Read more

www3.gartner.com:
Exploit Code Helps Hackers, Not Enterprises. Read more

www.idg.net:
INTERVIEW: Microsoft's Security Strategist. Read more

www.nypost.com:
IBM BIG SON-BURNED. Read more

www.washingtonpost.com:
Wartime Internet Security Is 'Business as Usual'. Read more

www.prnewswire.com:
aljazeera.net Domain Hacked and Moved to MyDomain.com. Read more

www.pc-radio.com:
Iraq's Uruklink "0wned" By Hackers. Read more

www.nzherald.co.nz:
Beware of emails from the bank. Read more

27 march 2003

New Trojans:
Autocrat 1.06.0058

Snow 1.4 client

Izram 1.7

UDPS 1.0

Tool:
Tunneld 2.0 by Aphex. This tool allows normal client-server connections to be made through routers, firewalls and other setups that would normally block them. Read more

Vulnerabilities & Exploits:
omen.vuagnoux.com:
"proof of concept" for theVaudenay's TLS Timing Attack for OpenSSL/9.7a. (CAN-2003-78)BID REF: 6884. Read more

www.debian.org:
DSA-269-1 heimdal -- Cryptographic weakness. Read more

www.securitytracker.com:
3Com SuperStack Remote Access System 1500 Discloses Configuration Information to and Can Be Crashed By Remote Users. Read more

www.securitytracker.com:
paFileDB Input Validation Flaws Let Remote Users Inject SQL Commands to Be Executed on the Database Server. Read more

www.securitytracker.com:
PHP Topsites 'counter.php' Input Validation Flaw Lets Remote Users Modify Files on the System. Read more

www.securiteam.com:
Digital Signature for Adobe Acrobat/Reader plug-in can be Forged. Read more

www.securiteam.com:
Flaw in RPC Endpoint Mapper Could Allow Denial of Service Attacks. Read more

www.securiteam.com:
Symantec Enterprise Firewall (SEF) HTTP URL Pattern Evasion Issue. Read more

www.securiteam.com:
PostNuke Sensitive Information Disclosure. Read more

News:
Microsoft Security Bulletin MS03-010
Flaw in RPC Endpoint Mapper Could Allow Denial of Service Attacks (331953). Read more

www.securityfocus.com:
Virus Hoaxes and the Real Dangers They Pose. Read more

news.bbc.co.uk:
Anti-war hacking rises sharply. Read more

www.content-wire.com:
Net Wars Intensify. Read more

www.idg.com.sg:
10 Downing Street Web site attacked in antiwar protest. Read more

net-security.org:
"How Hackers Discover your Vulnerabilities" Seminar at InfoSecurity Europe. Read more

www.vnunet.com:
Bugwatch: Patches weather the 'perfect storm'. Read more

news.com.au:
Net con artists strike. Read more

news.bbc.co.uk:
Commuters hack wireless networks. Read more

www.newscientist.com:
Key Arab news station knocked offline. Read more

media.guardian.co.uk:
Al-Jazeera websites 'hit by hackers'. Read more

www.smh.com.au:
Microsoft issues 10th security advisory for 2003. Read more

news.com.com:
Bush order covers Internet secrets. Read more

www.wired.com:
Swedish Worm Writer Nabbed. Read more

26 march 2003

New Trojans:
Lamers Death 2.7 RC2 (b3)

XT Bot 1.0

Fosen

RM Toolkit 1.0

Vulnerabilities & Exploits:
www.debian.org:
DSA-268-1 mutt -- buffer overflow. Read more

News:
www.theage.com.au:
US warns of rising hacker attacks. Read more

www.internetweek.com:
Windows 2000 Security Flaw Worse Than First Thought. Read more

news.com.com:
Program exploits Windows 2000 flaw. Read more

www.news.com.au:
Hit parade of email worms. Read more

asia.cnet.com:
Arab news Web site suffers hits. Read more

www.vnunet.com:
Microsoft rapped for 'extinct' hacker claim. Read more

www.theage.com.au:
Microsoft forced to pull 'misleading' advertisement. Read more

www.canada.com:
IT insiders can manipulate system for own advantage. Read more

www.theage.com.au:
Hackers hit Al-Jazeera web site. Read more

www.zdnet.com.au:
Anti-war hackers strike the US Navy. Read more

www.nationalpost.com:
'Mouthpiece of al-Qaeda' hacks Alaskan tourism Web site. Read more

www.upi.com:
Analysts: Beware anti-war cyber attacks. Read more

www.heraldtribune.com:
Anti-war hackers alter Secretary of State's Web site. Read more

www.theregister.co.uk:
'Iraq war' virus suspect detained. Read more

www.smh.com.au:
Suspected Ganda virus author in custody. Read more

www.emarketer.com:
Calculating Cost of Computer Viruses. Read more

www.eweek.com:
Security Mailing Lists Come Under Fire. Read more

www.theregister.co.uk:
War on Warez. Read more

25 march 2003

New Trojans:
EasyServ 1.1 (c)

Little Witch 6.1 (k) server

Solitaire FTP

HoneyPot 1.0

Vulnerabilities & Exploits:
www.securitytracker.com:
SimpleChat! Discloses Information About Current Users to Remote Users. Read more

www.debian.org:
DSA-267-1 lpr -- buffer overflow. Read more

www.debian.org:
DSA-266-1 krb5 -- several. Read more

www.securiteam.com:
WebDAV Exploit Code Released. Read more

News:
www.securityfocus.com:
Why the Dogs of Cyberwar Stay Leashed. Read more

www.theage.com.au:
Microsoft forced to pull 'misleading' advertisement. Read more

www.zdnet.com.au:
Anti-war hackers strike the US Navy. Read more

www.hackinglinuxexposed.com:
Everyone needs a good reminder about when it's time to change their passwords. Read more

slashdot.org:
Hacker Leaks Unreleased CERT Reports. Read more

24 march 2003

New Trojans:
Near Mohists 1.5

Sequel 1.0

SysStats

Vulnerabilities & Exploits:
www.securitytracker.com:
ProtWare's HTML Guardian Script Source Code Encryption Software Uses Weak Encoding Algorithm. Read more

www.securitytracker.com:
Basit Content Management System Input Validation Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Mambo Site Server Search Script Input Validation Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Siteframe 'search.php' Input Validation Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Microsoft ActiveSync Application Can Be Crashed By Remote Users. Read more

www.securitytracker.com:
'Guestbook tr3.a' Discloses Passwords to Remote Users. Read more

www.securitytracker.com:
Kerberos Buffer Overflow in Principal Name Handling Could Let Remote Users Compromise or Crash the System. Read more

www.securitytracker.com:
Check Point FireWall-1/VPN-1 Component Can Be Crashed By Remote Users Sending Syslog Messages in Certain Cases. Read more

www.securiteam.com:
Ptrace Exploit Code Released. Read more

www.securiteam.com:
IBM Tivoli Firewall Security Toolbox (TFST) Remote Buffer Overflow Vulnerability. Read more

www.securiteam.com:
Check Point FW-1 DoS Attack against Syslog Daemon. Read more

www.securiteam.com:
Safeboot PC Security User Emuneration Vulnerability. Read more

www.securiteam.com:
New Attack Vectors and a Vulnerability Dissection of MS03-007. Read more

www.securiteam.com:
Heap Overflow in Windows Script Engine. Read more

www.securiteam.com:
ActiveSync Denial of Service Vulnerability. Read more

www.securiteam.com:
Flaw in Windows Script Engine Could Allow Code Execution. Read more

www.securiteam.com:
Flaw in ISA Server DNS Intrusion Detection Filter Can Cause Denial of Service. Read more

www.securiteam.com:
PHP-Nuke 'News' Module SQL Injection. Read more

www.securiteam.com:
Kerberos Faulty Length Checks in xdrmem_getbytes. Read more

www.securiteam.com:
Multiple vulnerabilities in Ximian's Evolution Mail User Agent. Read more

www.securiteam.com:
XSS Bugs in osCommerce. Read more

www.securiteam.com:
Mutt Controlled IMAP Server Buffer Overflow. Read more

www.securiteam.com:
Path Disclosure Vulnerability in XOOPS. Read more

www.securiteam.com:
Stunnel - RSA Timing Attacks and Key Discovery. Read more

www.securiteam.com:
Sensitive Information Disclosure Vulnerability Found in SIPS (PHP). Read more

News:
www.zdnet.com:
How to prepare for the coming virus onslaught. Read more

23 march 2003

New Trojans:
Cruel Intentionz 1.0

Little Witch 6.1 (h) server

Hupigon (a) server

Vulnerabilities & Exploits:
www.securitytracker.com:
WFChat Discloses Nicknames and Passwords to Remote Users. Read more

www.securitytracker.com:
DCP-Portal Input Validation Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
eZ publish Input Validation Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
osCommerce Input Validation Flaws Allow Remote Users to Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
SafeBoot PC Encryption Error Messages Disclose Whether a Username is Valid or Not. Read more

www.securityfocus.com:
Microsoft Windows Script Engine JScript.DLL Heap Overflow Vulnerability. Read more

News:
www.neowin.net:
Microsoft asks colleges to teach hacking. Read more

www.informationweek.com:
As War Heats Up, Hacker And Virus Activity Increases. Read more

www.theregister.co.uk:
The Pentagon's tactical Internet - a war too early? Read more

www.theregister.co.uk:
Is SSL safe? Read more

www.computerworld.com:
Microsoft warns of firewall vulnerability. Read more

www.theregister.co.uk:
Norton SystemWorks heisted for terror war spam scam. Read more

www.theregister.co.uk:
Hackers claim NSA breach. Read more

22 march 2003

New Trojans:
Big Bot

Yet Another Trojan 2.24 server

NetvAAi 2.21 client

Vulnerabilities & Exploits:
rafa.h0stile.net:
Windows 2000 Server Exploit. Read more

www.debian.org:
DSA-265-1 bonsai -- several. Read more

www.securitytracker.com:
XOOPS Portal Software Discloses Installation Path to Remote Users. Read more

www.securitytracker.com:
NETGEAR FVS318 VPN Firewall Can Be Crashed Via the Web Browser Interface. Read more

www.securitytracker.com:
Mac Keychain Access Application Discloses the .Mac Password. Read more

www.securitytracker.com:
OpenSSL Side Channel Leakage Lets Remote Users Determine SSL Session Keys. Read more

www.securitytracker.com:
Mutt Buffer Overflow May Cause Arbitrary Code to Be Executed When Downloading Mail. Read more

www.securitytracker.com:
Ximian Evolution Mail User Agent Multiple Bugs May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Kaspersky Anti-Hacker Personal Firewall Can Be Made to Block Connections. Read more

www.securitytracker.com:
ChitChat Message Board Guestbook Software Discloses Password File to Remote Users. Read more

www.securitytracker.com:
IBM Tivoli Firewall Security Toolbox Unspecified Flaw Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Microsoft Windows Buffer Overflow in Windows Script Engine JScript.DLL Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Microsoft ISA Server DNS Intrusion Detection Flaw Lets Remote Users Block DNS Inbound Requests. Read more

News:
www.hindustantimes.com:
Web site hacks rise as war rages in Iraq. Read more

www.islandpacket.com:
Computer virus exploits interest in Iraq war. Read more

slashdot.org:
Microsoft: We Make Hackers Obsolete. Read more

www.neowin.net:
Microsoft Struggles with Role as Top Hacker Target. Read more

www.iht.com:
Cyberterrorists sharpening their tools for online warfare. Read more

australianit.news.com.au:
Cyber war bombardment begins. Read more

www.newscientist.com:
Internet traffic cops could foil web attacks. Read more

21 march 2003

New Trojans:
Cold Fusion 1.1 (build 031)

Lamers Death 2.7 RC2

Simon

Vulnerabilities & Exploits:
www.debian.org:
DSA-264-1 lxr -- missing filename sanitizing. Read more

www.coresecurity.com:
Vulnerability in Mutt Mail User Agent. Read more

News:
www.securityfocus.com:
Hackers Claim NSA Breach. Read more

www.securityfocus.com:
IDS Logs in Forensics Investigations: An Analysis of a Compromised Honeypot. Read more

www.net4nowt.com:
Critical Windows script engine flaw. Read more

australianit.news.com.au:
Cyber war bombardment begins. Read more

www.theage.com.au:
Slammer worm: two months on, the warnings continue. Read more

www.washingtonpost.com:
Web Sites Vandalized With Antiwar Messages. Read more

www.iht.com:
Cyberterrorists sharpening their tools for online warfare. Read more

20 march 2003

New Trojans:
Netsnake 4.8

Puerto Oculto 2.0

RedGhost

Vulnerabilities & Exploits:
www.idefense.com:
Heap Overflow in Windows Script Engine. Read more

www.securityfocus.com:
Microsoft Windows 2000 ntdll.dll WebDAV Interface Buffer Overflow Vulnerability. Read more

www.securitytracker.com:
BEA WebLogic Server and Express Access Control Bug Lets Remote Authenticated Users Delete Empty Sub-Contexts. Read more

www.securitytracker.com:
BEA WebLogic Memory Session Persistence Error May Let Remote Users Access Applications. Read more

www.securitytracker.com:
MyABraCaDaWeb Input Validation Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
WebLogic Server and Express Authentication Flaw May Let Remote Users Access Administrative Functions. Read more

www.securitytracker.com:
Microsoft IIS Web Server WebDAV Buffer Overflow Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Linux Kernel ptrace() Flaw Lets Local Users Gain Root Privileges. Read more

www.securitytracker.com:
Kerberos 4 Security Protocol Weaknesses May Let Certain Remote Users Create Tickets. Read more

www.securitytracker.com:
Qpopper E-mail Server Authentication Timing Discloses Whether a Requested Username is Valid or Not. Read more

www.securitytracker.com:
Kebi Academy 2001 Input Validation Flaw Lets Remote Authenticated Users View and Upload Files from/to Arbitrary Locations on the Server. Read more

www.securitytracker.com:
McAfee ePolicy Orchestrator Format String Bug Lets Remote Users Execute Arbitrary Code with System Privileges. Read more

www.securiteam.com:
Locator Service Buffer Overflow Exploit Code. Read more

www.securiteam.com:
RSA ClearTrust Cross Site Scripting Issues. Read more

www.securiteam.com:
Unchecked Buffer in Windows Component could Cause Web Server Compromise (WebDAV). Read more

www.securiteam.com:
XDR Integer Overflow (Additional Details). Read more

www.securiteam.com:
Ptrace Vulnerability Allows Gaining of Elevated Privileges under Linux. Read more

www.securiteam.com:
PHP-Nuke's AvantGo, News, and Forums Modules Path Disclosure. Read more

www.securiteam.com:
PHP-Nuke Referer Hijacking (HTTP_REFERER). Read more

www.securiteam.com:
Vulnerabilities in the Kerberos Version 4 Protocol. Read more

www.securiteam.com:
Security Bugfix for Samba (SMB/CIFS Overflow). Read more

www.securiteam.com:
Path Disclosure and Cross Site Scripting Vulnerability in MyABraCaDaWeb. Read more

News:
A security issue has been identified that could allow an attacker to run programs on a computer running Microsoft� Windows�.
The attacker would first have to send you an e-mail message or entice you into visiting a malicious Web site. Read more

Microsoft Security Bulletin MS03-008
Flaw in Windows Script Engine Could Allow Code Execution. Read more

Microsoft Security Bulletin MS03-009
Flaw In ISA Server DNS Intrusion Detection Filter Can Cause Denial Of Service (331065). Read more

www.computeruser.com:
Security Hole in Windows 2000 Servers. Read more

www.internetweek.com:
Windows, Unix Hit By Critical Security Vulnerabilities. Read more

www.eweek.com:
Sun Library Flaw Opens Door to Remote Attacks. Read more

news.com.com:
Hacker says he leaked info on Unix flaw. Read more

www.securityfocus.com:
Point, click, get root on Yahoo. Read more

www.securityfocus.com:
Remote Desktop Management Solution for Microsoft. Read more

edition.cnn.com:
Looking into the mind of a virus writer. Read more

edition.cnn.com:
Hacker accesses 5.6 million credit cards. Read more

19 march 2003

New Trojans:
Little Witch 6.1 (e) server

HTTP RAT 0.1a

MrMofie

BlackIce

Tool:
www.insecure.org:
Nmap 3.20 Released. Read more

packit.sourceforge.net:
Packit is a network auditing tool that allows you to monitor, manipulate, and inject customized IP traffic into your network. Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
Sun RPC Library Integer Overflow in xdrmem_getbytes() May Let Remote Users Execute Arbitrary Code. Read more

www.securiteam.com:
Multiple Vulnerabilities in BEA WebLogic Server (Un-authenticated File Uploading). Read more

News:
www.theage.com.au:
Email worm attempts to exploit interest in war. Read more

www.pcworld.com:
Human Error Is Greatest Security Risk. Read more

www.bangkokpost.com:
A pair of security helpers. Read more

catless.ncl.ac.uk:
Search engines making sensitive information easy to locate. Read more

www.internetwk.com:
U.S. Army, Other Web Servers Were Attacked Through Windows 2000 Security Flaw. Read more

www.computerworld.com:
U.S. Army Web servers hacked. Read more

www.ecommercetimes.com:
Hackers Evolve from Pranksters into Profiteers. Read more

www.eweek.com:
More Net Attacks Loom, CERT Says. Read more

www.channelnewsasia.com:
Hackers post anti-war slogans on US diplomatic website. Read more

www.wired.com:
Does the End Justify the Means? Read more

www.smh.com.au:
Internet banking passwords stolen. Read more

18 march 2003

New Trojans:
Helios 3.0

rSocks 1.2

AntiLamer Backdoor 2.0 (j) server

Ojo

Vulnerabilities & Exploits:
www.securityfocus.com:
Microsoft Windows 2000 WebDAV Buffer Overflow Vulnerability. Read more

Debian Security Advisory
DSA-263-1 netpbm-free -- math overflow errors. Read more

Debian Security Advisory
DSA-262-1 samba -- remote exploit. Read more

www.securitytracker.com:
'Business::OnlinePayment::WorldPay::Junior' Commerce Module Input Verification Flaw May Let Remote Users Modify Commerce Pricing and Ordering Data. Read more

www.securitytracker.com:
Sun Java JDK Bugs Allows Malicious Applets to Cause Denial of Service Conditions. Read more

www.securitytracker.com:
RSA ClearTrust Input Validation Holes Let Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Samba 'smbd' Buffer Overflow May Let Remote Users Gain Root Access. Read more

www.securiteam.com:
McAfee ePolicy Orchestrator Format String Vulnerability. Read more

www.securiteam.com:
Exploit Released for the Intel PXE Buffer Overflow. Read more

www.securiteam.com:
Cryptographic Weaknesses in Kerberos v4 Protocol. Read more

www.securiteam.com:
Kebi Academy 2001 Web Solution Directory Traversing Vulnerability. Read more

www.securiteam.com:
Timing Attack on OpenSSL (OpenSSL Private Key Disclosure. Read more

News:
Microsoft Security Bulletin MS03-007
Unchecked Buffer In Windows Component Could Cause Web Server Compromise (815021). Read more

www.infoworld.com:
Microsoft publishes alert, warns of exploit. Read more

www.bakutoday.net:
Security hole in Windows 2000 servers. Read more

www.theinquirer.net:
Further security problem hits Windows 2000. Read more

17 march 2003

New Trojans:
SubRoot 1.1

Remote Kit 1.0 (b) server

Sparta 1.1(b1) client

XZone 1.0

Bubbel

Tool:
www.insecure.org:
Nmap 3.15BETA3. Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
'gbook.php' Input Validation Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Thunderstone's TEXIS Database Discloses System Information to Remote Users. Read more

www.securitytracker.com:
Microsoft Windows 2000/XP PostMessage() API Flaw May Let Local Users Grab Passwords from Local Dialog Boxes. Read more

www.securitytracker.com:
Tcpdump RADIUS Decoding Error Lets Remote Users Hang the Sniffer. Read more

www.securiteam.com:
PGP4Pine Exploit Mail Generator. Read more

www.securiteam.com:
Exploit Released for SUNWlldap Library Buffer Overflow. Read more

www.securiteam.com:
Nokia SGSN (DX200 Based Network Element) SNMP issue. Read more

www.securiteam.com:
Lotus Notes/Domino R6-beta PROTOS LDAP Denial of Service Regression. Read more

www.securiteam.com:
Lotus Notes/Domino Web Retriever HTTP Status Buffer Overflow. Read more

www.securiteam.com:
Buffer Overflow in Lotus Notes Protocol Authentication. Read more

www.securiteam.com:
Sun ONE (iPlanet) Application Server Connector Module Overflow. Read more

www.securiteam.com:
GiantRat Mailer Exposes Plain Text POP Password. Read more

www.securiteam.com:
Texis Sensitive Information Leak. Read more

www.securiteam.com:
PGP4Pine Buffer Overflow Vulnerability. Read more

News:
www.zdnet.com.au:
Companies throw security out with the garbage. Read more

seattletimes.nwsource.com:
LapLink says hackers left key clue. Read more

www.pcworld.com:
Discover Card Users Hit With E-Mail Scam. Read more

timesofindia.indiatimes.com:
ID theft logs on to the Net. Read more

www.activedayton.com:
Battling hackers. Read more

16 march 2003

New Trojans:
Snoopy

AntiLamer Backdoor 2.0 (l) server

Supcount 1.0 server

Nethief 4.2

Vulnerabilities & Exploits:
www.securitytracker.com:
OpenSSL Timing Characteristics Let Remote Users Determine Private Keys in Certain Cases. Read more

www.securitytracker.com:
Nokia Serving GPRS Support Node (SGSN) Platform Discloses SNMP Data to Remote Users. Read more

www.securitytracker.com:
Protegrity Secure.Data for Microsoft SQL Server 2000 Contains Buffer Oveflows That Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Sun ONE/iPlanet Application Server Buffer Overflow in Connector Module Lets Remote Users Execute Arbitrary Code. Read more

News:

15 march 2003

New Trojans:
Helios 2.6

rSocks 1.0

Lamers Death 2.5 (c) Server

Alpha

Peep 1.0

Vulnerabilities & Exploits:
www.debian.org:
DSA-261-1 tcpdump -- infinite loop. Read more

www.debian.org:
DSA-260-1 file -- buffer overflow. Read more

www.securitytracker.com:
'usermode' Package on Mandrake Linux Lets Local Users Shutdown Processes and Gain Root Access. Read more

www.securitytracker.com:
SquirrelMail 'VPOPMail Account Administration' Plug-in Input Validation Flaw Lets Remote Users Execute Commands on the System. Read more

www.securitytracker.com:
PostgreSQL Database Allocation Flaw in Authentication Code Lets Remote Users Crash the Database. Read more

www.securitytracker.com:
pgp4pine Buffer Overflow in Reading Messages Lets Remote Users Execute Arbitrary Code. Read more

News:
www.msnbc.com:
Password-stealing e-mails spread. Read more

www.theregister.co.uk:
Tricky Windows worm poses as game. Read more

sethf.com:
Google Censorship - How It Works. Read more

www.theregister.co.uk:
Opera in fresh browser security drama. Read more

www.asahi.com:
`Key-catching' cyber-thief netted 3 million with swindled bank card. Read more

www.washingtonpost.com:
Student Charged With Hacking Into U-Tex. Read more

www.vnunet.com:
Bugwatch: How to win the security arms race. Read more

www.securityfocus.com:
Hi-Tech Surveillance Firm Prospers. Read more

www.enn.ie:
Irish Honeynet slammed by attacks. Read more

www.newsfactor.com:
Security Firms Warn of New Code Red Variant. Read more

news.bbc.co.uk:
Cyber terrorism 'overhyped'. Read more

www.vnunet.com:
The City's wireless security is still too lax. Read more

14 march 2003

New Trojans:
Zalivator 1.2 Pro (build 78)

Nethief 2.5

Ereet 1.0

DXM SMTP Trojan

Barbare

Vulnerabilities & Exploits:
www.securitytracker.com:
Opera Browser Download Filename Buffer Overflow Lets Remote Users Execute Arbitrary Cod. Read more

www.securitytracker.com:
'man' Manual Pager Bug May Let Local Users Cause Arbitrary Code to Be Executed. Read more

www.securitytracker.com:
Multi-Tech's SOHO RouteFinder 550 VPN Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Lotus Domino Authentication Process Buffer Overflow Lets Remote Users Crash the Server. Read more

www.securitytracker.com:
Lotus Domino Server Web Retriever Buffer Overflow Lets Remote Systems Crash the Web Retriever. Read more

www.securitytracker.com:
Linux Cross-Referencing (LXR) Project Discloses Files on the System to Remote Users. Read more

www.securitytracker.com:
Qpopper POP3 Mail Server Buffer Overflow May Let Remote Authenticated Users Execute Arbitrary Code on the Server. Read more

www.securitytracker.com:
HP-UX HFS File System Bug in VVOS May Let Local Users Access Files to Gain Privileges. Read more

News:
www.zdnet.com.au:
Thousands 'trojaned' through net shares: CERT. Read more

www.wired.com:
Yaha Virus Uses Netizens as Pawns. Read more

www.pcworld.com:
Antivirus Vendor Urges Net Regulation. Read more

www.crime-research.org:
Unleashing the dogs of cyber-war on Iraq. Read more

news.bbc.co.uk:
Indian hackers target Pakistan. Read more

news.bbc.co.uk:
Paedophiles exploit file-sharing. Read more

13 march 2003

New Trojans:
Blaire

WinProtectFull

Destructor 1.3

Lula 147

Assasin 2.0 Pegasus

Vulnerabilities & Exploits:
www.securitytracker.com:
NetScreen Denial of Service Bug May Let Remote Users Cause the Device Configuration to Erase. Read more

www.securitytracker.com:
DeleGate Overflow in Processing 'robots.txt' Fields Lets Remote Users Execute Arbitrary Code on the Proxy Server. Read more

www.securitytracker.com:
PeopleSoft PeopleTools Input Filtering Bug in SchedulerTransfer Java Servlet Lets Remote Users Upload and Execute Arbitrary Code. Read more

www.securitytracker.com:
Microsoft Internet Explorer Buffer Overflow in Processing '.MHT' Web Archives Lets Remote Users Execute Arbitrary Code. Read more

www.securiteam.com:
ISMail Remote Buffer Overrun. Read more

www.securiteam.com:
QPopper Qvsnprintf Vulnerability (Exploit, MDEF). Read more

News:
www.forbes.com:
Computer worm linked to India-Pakistan cyber-spat. Read more

itmanagement.earthweb.com:
India/Pakistan Virus Writers Take War Online. Read more

www.theage.com.au:
War of words - via viruses. Read more

news.com.com:
Code Red offshoot packs mild punch. Read more

www.internetwk.com:
CERT Reports Rise In Attacks On Weak Admin Passwords. Read more

www.asahi.com:
`Key-catching' cyber-thief netted 3 million with swindled bank card. Read more

catless.ncl.ac.uk:
IEEE Symposium on Security and Privacy. Read more

news.com.com:
Group resumes Xbox cracking project. Read more

news.com.com:
Congress cracks down on P2P porn. Read more

12 march 2003

New Trojans:
MiniCli MegaSecurity.org

Akosch Keylogger v2

Contempt

Lamers Death 2.6 (f) server

Nethief 1.0 Beta 4

Aphex WebDownloader 0.2.0 v2

Aphex Remote Packet Sniffer 0.3.2

Vulnerabilities & Exploits:
Code Red! Whose to Blame? And a surprise way to protect your server. Read more

www.krusesecurity.dk:
SOHO Routefinder 550 VPN, DoS and Buffer Overflow. Read more

www.securitytracker.com:
PostNuke Input Validation Bugs in Members_List and in the 'theme' Variable Let Remote Users Inject SQL Commands and Execute Scripts on the System. Read more

News:
www.ntsecurity.net:
New Code Red Variant Spreading. Read more

www.securitynewsportal.com:
Code Red F variant floating around the Internet. Read more

www.theage.com.au:
Network worm slow to spread. Read more

zdnet.com.com:
Security alert posted for PeopleSoft. Read more

www.theage.com.au:
Spam's up; viruses and porn are down. Read more

zdnet.com.com:
Bad passwords open new can of worms. Read more

www.extremetech.com:
Worms Prove Passwords Do Matter. Read more

www.nwfusion.com:
Flaws put open source on hot seat. Read more

www.globetechnology.com:
Hundreds warned as data disappears. Read more

hoovnews.hoovers.com:
INDUSTRIAL ESPIONAGE CASE 2: Canal Plus. Read more

www.theage.com.au:
Catch me if you can. Read more

www.nytimes.com:
Military to Clamp Down on E-Mail. Read more

www.mytelus.com:
Computer hacking for profit. Read more

www.smh.com.au:
Hackers come out to play. Read more

www.securitynewsportal.com:
'Stinky' Web Sites hacked, E-Mail bombed, hit with DOS Attacks and shut down. Read more

www.theregister.co.uk:
Senate leader explains poll "hack". Read more

news.com.com:
AOL unveils Web pop-up controls. Read more

11 march 2003

New Trojans:
Nuclear Scan 1.0

Helios 2.4

Helios 2.5

Clop server

Vulnerabilities & Exploits:
www.iss.net:
PeopleSoft PeopleTools Remote Command Execution Vulnerability. Read more

www.securitytracker.com:
Upload Lite Temporary File Bug Lets Remote Users Upload and Execute Arbitrary CGI Code on the Server. Read more

www.securitytracker.com:
Ethereal SOCKS Dissector Format String Flaw Lets Remote Users Execute Arbitrary Code. Read more

www.securiteam.com:
Upload Lite Allows Remote Code Execution. Read more

www.securiteam.com:
DeleGate Pointer Array Overflow May Let Remote Users Execute Arbitrary Code. Read more

www.securiteam.com:
TCPDUMP ISAKMP Denial of Service Exploit Released. Read more

www.securiteam.com:
MySQL's Default Configuration Allows Modification of MySQL's Execution Owner (FILE Permissions). Read more

www.securiteam.com:
SimpleBBS Stores Database with Insufficient Permissions Settings. Read more

News:
www.securityfocus.com:
IP Spoofing: An Introduction. Read more

star-techcentral.com:
Recent worms punish bad passwords. Read more

www.internetweek.com:
AirDefense Introduces Technology For Wireless LAN Security And Management. Read more

www.informationweek.com:
Japanese Software Maker Warns Of New Virus. Read more

www.zdnet.com.au:
Worm paves way for crippling DDoS attack. Read more

www.smh.com.au:
Hackers come out to play. Read more

www.theage.com.au:
Catch me if you can. Read more

10 march 2003

New Trojans:
Taladrator 2.0.1

Y3K_Rat 1.7

MSN Kamuflao 2.0. Thanks to Q

Lamers Death 2.5 (g) server

Vulnerabilities & Exploits:
voodoo.somoslopeor.com:
A practical approach for defeating Nmap OS-Fingerprinting. Read more

www.securitytracker.com:
SimpleBBS Discloses User Account Names and Information to Remote Users. Read more

www.securitytracker.com:
MAILsweeper Lets Remote Users Send Malformed MIME Attachments That Will Bypass the Content Filter. Read more

www.securitytracker.com:
Wordit Logbook Input Filtering Flaw Lets Remote Users Execute Arbitrary Commands on the System. Read more

www.securitytracker.com:
DBManager Pro Discloses Database Usernames and Passwords to Local Users. Read more

www.securiteam.com:
Implementation Flaws in Adobe Document Server for Reader Extensions. Read more

www.securiteam.com:
Clearswift MAILsweeper MIME Attachment Evasion Issue. Read more

www.securiteam.com:
Multiple Vulnerabilities Found in Forum Web Server. Read more

www.securiteam.com:
OpenBSD lprm(1) Exploit. Read more

www.securiteam.com:
Win32hlp Exploit for : ":LINK overflow". Read more

www.securiteam.com:
Webmin/Usermin Session ID Spoofing Vulnerability "Episode 2". Read more

www.securiteam.com:
Sourceforge Jacobuddy Cross Site Scripting (XSS) and Upload Exploit. Read more

News:
www.securityfocus.com:
Iraqi Cyberwar: an Ageless Joke. Read more

www.zdnet.com:
Can the feds make software more secure? Yup! Read more

quote.bloomberg.com:
How to Arm Your PC Against Viruses, Hackers, Spam and Spyware. Read more

09 march 2003

New Trojans:
MoSucker Server by ErEbuS

Tiny Uploader

bling.bling 1.0

BlackShade 1.0

DTr 1.5 (a) server

QueBus

Vulnerabilities & Exploits:
www.securitytracker.com:
Logan Pro Input Filtering Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks Against LoganPro Users. Read more

www.securitytracker.com:
WebLog Expert Input Filtering Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks Against WebLog Expert Users. Read more

www.securitytracker.com:
SurfStats Input Filtering Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks Against SurfStats Users. Read more

www.securitytracker.com:
WebTrends Input Filtering Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks Against WebTrends Users. Read more

www.securitytracker.com:
XScreenSaver Buffer Overflow May Let Local Users Obtain Root Privileges. Read more

www.securitytracker.com:
Sun Solaris sendmail '.forward' Bug May Let Local Users Deny Service or Gain Root Privileges. Read more

www.securitytracker.com:
Solaris UFS File System May Allow Local Users to Deny Service. Read more

www.securitytracker.com:
'PHP ping' Lets Remote Users Execute Arbitrary Commands on the Server. Read more

www.securitytracker.com:
Forum Web Server Discloses Files on the System, Including Clear Text Passwords, to Remote Users. Read more

www.cgisecurity.net:
Header Based Exploitation: Web Statistical Software Threats. Read more

News:
www.securityfocus.com:
Windows Root Kits a Stealthy Threat. Read more

www.computeruser.com:
Security flaw found in Windows ME. Read more

www.theregister.co.uk:
Google closes Blogger security holes. Read more

www.vnunet.com:
Bugwatch: The cocktail hour. Read more

www.ciol.com:
Enterprise Security: For your eyes only. Read more

www.crime-research.org:
Appeals court strikes down Net porn law. Read more

www.theregister.co.uk:
Senate Leader scraps website war poll, blaming hackers. Read more

news.com.com:
E-mail scam tries to fool PayPal users. Read more

www.theregister.co.uk:
Games' copy protection cracked in days, says newsletter. Read more

08 march 2003

New Trojans:
AIM Snitch 1.0

PW Thief 1.0

Darkbot

FTP99

Tool:
Process hiding for NT in asm by Aphex. Download

Vulnerabilities & Exploits:
www.securitytracker.com:
SCO Open UNIX X Server Sets Weak Permissions on /dev/X Directory, Allowing Local Users to Deny Service or Hijack Session Data. Read more

www.securitytracker.com:
3COM SuperStack 3 Content Filtering Can Be Bypassed By Remote Users With Fragmented Packets. Read more

www.securitytracker.com:
Eudora E-mail Client Can Be Crashed By a Remote User Sending an Attachment With a Long Filename. Read more

www.securitytracker.com:
Dr.Web Virus Scanner Buffer Overflow Lets Local Users Gain Root Privileges. Read more

www.securitytracker.com:
Netpbm Graphics Software Buffer Overflows May Let Users Execute Arbitrary Code. Read more

www.securitytracker.com:
OpenBSD 'lprm' Buffer Overflow May Let Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
SAP R/3 Remote Function Call API Lets Remote Users Conduct Password Guessing Attempts. Read more

www.securitytracker.com:
RealServer Buffer Overflow in Processing RTSP URLs Lets Remote Users Execute Arbitrary Code. Read more

www.securiteam.com:
New HP Jetdirect SNMP Password Vulnerability when Using Web JetAdmin. Read more

www.securiteam.com:
XFree86 XLOCALEDIR Exploit Code. Read more

www.securiteam.com:
Buffer Overflow in Snort RPC Preprocessor. Read more

www.securiteam.com:
Technical Analysis of Remote Sendmail Vulnerability (Exploit). Read more

News:
www.thesentinel.co.uk:
PALESTINIAN HACKERS. Read more

www.washingtonpost.com:
Hackers Breach Student Database at the University of Texas. Read more

www.asahi.com:
2 held over theft that cracked online banking. Read more

www.zdnet.com.au:
Decoding the lessons of Slammer. Read more

www.crime-research.org:
Security Nightmare. Read more

www.techweb.com:
Cyber-Terrorism Barks, But Probably Won't Bite. Read more

www.computerworld.com:
Security holes found in Google's Blogger. Read more

www.acsac.org:
The 19th Annual Computer Security Applications Conference. Read more

07 march 2003

New Trojans:
Nethief 3.3

Remote Commands

Remote Connection 2.1

GUPHs noPwd NetBus

Vulnerabilities & Exploits:
www.securitytracker.com:
Pastel Accounting Lets Local Users Access and Modify Account Information, Including Passwords. Read more

www.securitytracker.com:
BIND 'libbind' Stub Resolver Library Buffer Overflow May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
'file' Utility Buffer Overflow May Let Local Users Gain Elevated Privileges in Certain Cases. Read more

www.securitytracker.com:
Uploader PHP Script Default Configuration Lets Remote Users Upload Arbitrary Files and Then Execute Them. Read more

www.securitytracker.com:
'uschedule' Job Scheduling Utility May Let Local Users Obtain Root Privileges. Read more

www.securiteam.com:
Buffer Overflow Vulnerability Found in file (Exploit Code). Read more

www.securityfocus.com:
Microsoft Windows Help and Support Center Buffer Overflow Vulnerability. Read more

www.securityfocus.com:
Multiple Vendor FTP pipe Vulnerability. Read more

News:
www.fcw.com:
Kellogg describes cyber battlefield. Read more

www.washingtonpost.com:
Hackers Breach Student Database at the University of Texas. Read more

www.asahi.com:
2 held over theft that cracked online banking. Read more

reuters.com:
Credit-Card Co. Visa to Mask Card Numbers. Read more

quote.bloomberg.co:
University of Texas Says Hackers Attacked Its Computer System. Read more

06 march 2003

New Trojans:
Cold Fusion 1.1 (build 027)

Remote Kit 1.0

Raid

Vulnerabilities & Exploits:
www.securityfocus.com:
[LSD] Technical analysis of the remote sendmail vulnerability. Read more

www.securitytracker.com:
Anonymizer.com May Silently Fail to Encrypt Back-end Connections in Certain Specific Cases. Read more

www.securitytracker.com:
Macromedia Flash Player Has Unspecified Buffer Overflow That May Allow Remote Users to Execute Arbitrary Code. Read more

www.securitytracker.com:
SHOUTcast Server Log File Input Validation Flaw Allows Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Snort Intrusion Detection System Buffer Overflow in Processing RPC Messages Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Sendmail Buffer Overflow in Parsing Certain Header Comments May Let Remote Users Execute Arbitrary Code with Root Privileges. Read more

www.securitytracker.com:
Adobe Acrobat Reader Digital Signature Implementation Flaws Let Users Enable Editing Functions. Read more

www.securitytracker.com:
gtcatalog Include File Bug Lets Remote Users Execute Arbitrary Commands and Access Control Bug Discloses the Administrator Password. Read more

www.securiteam.com:
Critical Security Hole Found in Macromedia Flash Player. Read more

www.securiteam.com:
Buffer Overflow Vulnerability in Dr. Web. Read more

www.securiteam.com:
SQL Injection Vulnerability Found in PHPMyShop. Read more

www.securiteam.com:
DoS Vulnerability in Eudora. Read more

News:
www.theregister.co.uk:
LSD puts Sendmail bug under the microscope. Read more

www.securityfocus.com:
China's Web surveillance slows access even as government promotes Internet use. Read more

www.bizreport.com:
Most Viral Computer Viruses. Read more

www.alertnet.org:
U.S. energy network seen vulnerable to hackers. Read more

www.knoxstudio.co:
Are warnings about cyber-terrorism overblown? You bet. Read more

www.sfgate.com:
'One-woman crime wave' results in 4-year sentence. Read more

www.modbee.com:
School hacker won't be expelled. Read more

www.networkmagazine.com:
Wireless LAN Analyzers: The Ultimate Hacking Tools? Read more

05 march 2003

New Trojans:
MSN Crack Store 3.0

Net Antrax 1.1.0

Game 1.0

Peep 2.01

Vulnerabilities & Exploits:
www.idefense.com:
Locally Exploitable Buffer Overflow in file(1). Read more

www.securitytracker.com:
Sun Solaris FTP Client Displays The User Password When in Debug Mode. Read more

www.securitytracker.com:
CoffeeCup Password Wizard Discloses Passwords to Remote Users. Read more

www.securitytracker.com:
WebChat Include File Bug in 'defines.php' Lets Remote Users Execute Arbitrary Commands. Read more

www.securitytracker.com:
IBM AIX secldapclntd Daemon Authentication Flaw Lets Remote Users Modify User Accounts. Read more

www.securitytracker.com:
Toppler Game Buffer Overflow Lets Local Users Grab 'Games' Group Privileges. Read more

www.securitytracker.com:
PY-Livredor Guest Book Input Validation Holes in Certain Fields Let Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securiteam.com:
Remote Sendmail Header Processing Vulnerability. Read more

www.securityfocus.com:
Analysis of the potential remote Sendmail vulnerability. Read more

News:
www.securiteam.com:
The 419 nigerian frauds - step by step live explanation. Read more

www.securityfocus.com:
An Analysis of Simile. Virus writers have always tried to develop new methods to make malware detection more difficult. Read more

news.com.com:
Hackers' code exploits Sendmail flaw. Read more

asia.reuters.com:
Hackers Post Anti-Bush Message on Cuban Web Sites. Read more

www.newsfactor.com:
Patching Sendmail: The Clock Is Ticking. Read more

www.newscientist.com:
Email Security Flaw Triggers Global Worm Watch. Read more

www.wired.com:
Google: Net Hacker Tool du Jour. Read more

04 march 2003

New Trojans:
SubSeven 2.1.5

TapTrap

Nethief 1.0

Vecna's B.O Control 1.1

Vulnerabilities & Exploits:
www.iss.ne:
Remote Sendmail Header Processing Vulnerability. Read more

www.securiteam.com:
Cross Site Scripting Trick May Fool Shoutcast Admins. Read more

www.securityfocus.com:
USRobotics Broadband-Router GET Request DoS Vulnerability. Read more

www.securityfocus.com:
CuteNews Remote File Include Vulnerability. Read more

www.securityfocus.com:
Typo3 HTML Hidden Form Field Information Disclosure Weakness. Read more

News:
www.wired.com: Big Hole in E-Mail Transfer App. Read more

news.com.com:
Sendmail flaw tests Homeland Security. Read more

news.com.com:
Companies mobilize to patch Sendmail. Read more

www.pcworld.com:
Mail Server Flaw Could Spawn Slammer II. Read more

www.dailytelegraph.news.com.au:
Cyber battle as jihad goes off line. Read more

www.insurancetech.com:
Slammer Raises Patch Debate. Read more

news.zdnet.co.uk:
EU sets jail terms for hackers. Read more

www.informationweek.com:
Klez Is Still No. 1 Worm. Read more

www.idg.com.sg:
EU cybercrime code could punish online demonstrations. Read more

www.govexec.com:
Elimination of cybersecurity board concerns tech industry. Read more

03 march 2003

New Trojans:
Stealth Email Redirector 2.0.1

FDAR 1.0

FDAR 1.1

Supcount 1.0

Vulnerabilities & Exploits:
www.securitytracker.com:
WEB-ERP Discloses Configuration File to Remote Users, Yielding Full Access to the Database. Read more

www.securitytracker.com:
Invision Power Board Include File Error Lets Remote Users Execute Arbitrary Commands on the Server. Read more

www.securiteam.com:
Vulnerability in myphpPagetool Enables Arbitrary Code Execution. Read more

News:
www.zdnet.com:
How to guard against today's Trojan horses. Read more

www.sfgate.com:
Internet Shield Secrecy and security. Read more

www.sunspot.net:
Gearing up to use information warfare in Iraq. Read more

www.geeknewscentral.com:
RIAA Hacked but that isn't the whole story. Read more

www.sundaylife.co.uk:
Bank insiders may be behind Ulster frauds. Read more

www.usatoday.com:
Norwegian teen faces retrial for DVD-piracy technology. Read more

zdnet.com.com:
Gates reveals Windows code to China. Read more

zdnet.com.com:
Week in review: The wild, wild Web. Read more

02 march 2003

New Trojans:
Khe Sanh 2.10 Pro

Luzak 2.0

DTr 1.5 final (version g)

Nethief 4.1

Vulnerabilities & Exploits:
www.securityfocus.com:
Microsoft Internet Explorer Self Executing HTML File Vulnerability. Read more

www.securitytracker.com:
Tcpdump May Enter an Infinite Loop When a Remote Users Sends a Malformed ISAKMP Packet. Read more

www.securitytracker.com:
ISMail Mail Server Buffer Overflow in Processing Certain SMTP Commands Lets Remote Users Execute Arbitrary Code with System Privileges. Read more

www.securitytracker.com:
Ecartis List Management Software Lets Remote Authenticated Users Change the Password of Other Users. Read more

www.digitaldefense.net:
TERMINAL EMULATOR SECURITY ISSUES. Read more

News:
www.securitynewsportal.com:
Hackers and virus coders march on United Nations for free healthcare coverage. Read more

www.theregister.co.uk:
Disabled war veteran hosts Disabled RIAA website. Read more

www.securitynewsportal.com:
New worm hunts hackers and script kiddies. Read more

www.techtv.com:
Worm Targets Hackers. Read more

slashdot.org:
Dutch Wiretaps: Too Many To Bother Counting. Read more

01 march 2003

New Trojans:
SubRoot 1.0

FoxEyes 1.0

Sub-Mariner 1.0

Lightning 1.0 client

Vulnerabilities & Exploits:
www.idefense.com:
TCPDUMP Denial of Service Vulnerability in ISAKMP Packet Parsing. Read more

www.debian.org:
DSA-256-1 mhc -- insecure temporary file. Read more

www.securitytracker.com:
nCipher KeySafe and 'generatekey' Utilities May Leave Copies of Imported Keys on the System. Read more

www.securitytracker.com:
Libmcrypt Buffer Overflows May Allow Denial of Service Attacks or Arbitrary Code to Be Executed. Read more

www.securitytracker.com:
Microsoft Windows Me Help and Support Center URL Handler Overflow Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Opera Web Browser Redirection Input Validation Hole Allows Cross-Site Scripting Attacks. Read more

www.securityfocus.com:
Netscape JavaScript Regular Expression Denial Of Service Vulnerability. Read more

News:
news.com.com:
EU sets jail terms for hackers. Read more

www.idg.net:
How to develop blueprints for network security. Read more

www.theregister.co.uk:
Klez-H tops monthly virus charts. Again. Read more

www.techweb.com:
Catherine Zeta Jones Worm Causes Mountain Of E-mail. Read more

www.theregister.co.uk:
Internet telephony protocol riddled with security bugs. Read more

www.vnunet.com:
Bugwatch: Harden your anti-hacker defences. Read more

www.theregister.co.uk:
Google in paedo censorship debacle. Read more

news.bbc.co.uk:
Finger-tapping to combat fraud. Read more

www.theregister.co.uk:
The Great Year 2003 Bug. Read more

news.com.com:
Monster.com warns of ID theft (update). Read more


Copyright� MegaSecurity.org