Home    News Archive    Translate Traducen
News March 2005
31 March 2005

Guides, Papers, etc
www.securityfocus.com:
Web Browser Forensics, Part 1. Read more

seattlepi.nwsource.com:
Role Comparison Report � Web Server Role. Read more

insight.zdnet.co.uk:
Best practices for network security. Read more

www.honeynet.ie:
Internet Worms. Read more

 

Vulnerabilities & Exploits
lists.grok.org.uk:
Linux kernel local root vulnerability (pdf). Read more

www.frsirt.com:
Kerio Personal Firewall Local Network Rules Bypass Issue. Read more

www.frsirt.com:
Squirrelcart PHP Shopping Cart SQL Injection Vulnerability. Read more

www.frsirt.com:
Multiple Telnet Clients Buffer Overflow Vulnerabilities. Read more

www.frsirt.com:
Symantec Norton Antivirus Two Denial of Service Vulnerabilities. Read more

www.frsirt.com:
E-Store Kit-2 PayPal Edition XSS and PHP File Inclusion Vulnerability. Read more

www.frsirt.com:
Horde Application Framework Cross Site Scripting Vulnerability. Read more

www.securitytracker.com:
mtftpd Format String Bug in 'log.c' Lets Remote Authenticated Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Invision Power Board Input Validation Flaw in User Signature Permits Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Chatness Input Validation Bugs Permit Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Ublog Reload Discloses Database to Remote Users and Permits Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Linux Kernel Bug in load_elf_library Lets Local Users Deny Service. Read more

www.securitytracker.com:
cdrtools DEBUG Mode Uses Unsafe Temporary Files That May Let Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
WackoWiki Input Validation Holes Permit Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
WebAPP Discloses 'dat' Files to Remote Users. Read more

www.securitytracker.com:
FastStone 4in1 Browser Discloses Files to Remote Users. Read more

www.securitytracker.com:
Horde Application Framework Input Validation in Page Title Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.debian.org:
DSA-700-1 mailreader -- missing input sanitising. Read more

 

News
news.com.com:
China becoming haven for phishers. Read more

news.com.com:
Cops get cybercrime help from Microsoft. Read more

afr.com:
Microsoft upgrades server security. Read more

news.com.com:
Microsoft drops MSBlast writer's $500,000 penalty. Read more

www.virusbtn.com:
Blaster author avoids restitution. Read more

www.itweb.co.za:
Fingerprinting to track viruses. Read more

www.theregister.co.uk:
Analysts slam hacker law changes. Read more

www.vnunet.com:
Phishers spread net for smaller prey. Readv more

news.zdnet.co.uk:
Lost: Data from 270,000 bank accounts. Read more

news.com.com:
Mytob e-mail worm proliferating quickly. Read more

30 March 2005

Guides, Papers, etc
cc.uoregon.edu:
Web Browser Hijacking: What Is It and How Can You Protect Yourself? Read more

msevents.microsoft.com:
TechNet Webcast: Phishers, Spammers and Scammers: Criminals of the Internet. Read more

Towards Evil Honeypots ?! When they bite back...Read more

 

Tools:
sourceforge.net:
SAM is a Real-Time Snort alert monitor. SAM provides many ways to indicate that you may be experiencing an intrusion attempt on your network including audio/visual warnings, email warnings, etc. SAM is written in Java for maximum portability. Read more

 

Vulnerabilities & Exploits
www.securitytracker.com:
phpCOIN Lets Remote Users Inject SQL Commands and Execute Arbitrary Files on the Target System. Read more

www.securitytracker.com:
PortalApp Input Validation Flaws in 'ad_click.asp' and 'content.asp' Permit SQL Injection and Cross-Site Scripting. Read more

www.securitytracker.com:
E-Data Missing Input Validation Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Adventia Chat Default Configuration Permits Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Symantec Norton AntiVirus AutoProtect Errors May Let Local or Remote Users Deny Service. Read more

www.securitytracker.com:
Symantec Norton Internet Security AutoProtect Errors May Let Local or Remote Users Deny Service. Read more

www.securitytracker.com:
Symantec Norton System Works AutoProtect Errors May Let Local or Remote Users Deny Service. Read more

www.securitytracker.com:
ACS Blog Input Validation Errors in 'Comments' Tags Let Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Microsoft Outlook Connector for IBM Lotus Domino Lets Users Bypass Password Storage Policy. Read more

www.securitytracker.com:
TKai's Shoutbox Input Validation Error Permits Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
PhotoPost PHP Pro 'showgallery.php', 'showmembers.php', 'showphoto.php', and 'slideshow.php' Input Validation Holes Permit SQL Injection and Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Telnet Client Buffer Overflow in slc_add_reply() and env_opt_add() Lets Remote Servers Execute Arbitrary Code. Read more

www.securiteam.com:
Smail preparse_address_1() Heap Overflow. Read more

www.securiteam.com:
Tincat Buffer Overflow. Read more

www.securiteam.com:
LimeWire File Disclosure Exploit. Read more

 

News
www.arbornetworks.com:
Leading Organizations Worldwide Join Together to Stop Internet Attacks. Read more

www.arbornetworks.com:
Global Alliance Forms to Thwart Internet Attacks. Read more

www.theregister.co.uk:
Silent tech majority invites Mickey Mouse to poison P2P. Read more

www.theregister.co.uk:
Mitnick sequel fails to hack it. Read more

www.theregister.co.uk:
Cops warn of internet fraud. Read more

www.thecouriermail.news.com.au:
Phone hackers tap into hospital. Read more

29 March 2005

Guides, Papers, etc
www1.cs.columbia.edu:
A NetworkWorm Vaccine Architecture. Read more

 

Vulnerabilities & Exploits
secunia.com:
Smarty "regex_replace" Modifier Template Security Bypass. Read more

secunia.com:
E-Data Personal Information Script Insertion Vulnerability. Read more

www.securitytracker.com
TinCat Buffer Overflow Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com
CPG Dragonfly Input Validation Errors Let Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com
Nuke Bookmarks Input Validation Flaws Permit SQL Injection, Cross-Site Scripting, and Path Disclosure. Read more

www.securitytracker.com
AS/400 LDAP Server Default Configuration Discloses User Account Names to Remote Authenticated Users. Read more

www.securitytracker.com
WD Guestbook Authentication Error Lets Remote Users Add Administrative User Accounts or Suppress Messages. Read more

www.securitytracker.com
EncapsBB Include File Error Lets Remote Users Execute Arbitrary Commands. Read more

www.securitytracker.com
E-Store Kit-2 PayPal Edition Input Validation Bug Lets Remote Users Execute Arbitrary HTML Code on the Target System. Read more

 

News
www.theinquirer.net:
Vendors 'fingerprint' hackers. Read more

www.eweek.com:
Vendors Join Forces to 'Fingerprint' Hacker Attacks. Read more

www.itweb.co.za:
Humans still the weak security link. Read more

www.techworld.com:
Mac virus-writing contest cancelled. Read more

www.computerworld.com.au:
Dumb security. Read more

www.businessweek.com:
Why McAfee Looks Like a Secure Play. Read more

28 March 2005

Guides, Papers, etc
unixwiz.net:
SQL Injection Attacks by Example. Read more

msdn.microsoft.com:
The Trustworthy Computing Security Development Lifecycle. Read more

 

Vulnerabilities & Exploits
www.securitytracker.com:
Linux bluez_sock_create() Integer Underflow Lets Local Users Execute Arbitrary Code. Read more

www.securitytracker.com:
exoops Input Validation Flaws Permit SQL Injection and Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Valdersoft Shopping Cart Input Validation Holes Permit SQL Injection and Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Smail Heap Overflow Lets Remote Users Gain Root Privileges. Read more

 

News
seattlepi.nwsource.com:
Microsoft funding of security report decried. Read more

www.reuters.com:
Foreign hackers "phishing" for Chinese victims. Read more

www.heraldnet.com:
Money is now a prime motivator for hackers. Read more

english.peopledaily.com.cn:
Top hacker arrested for manipulating 100,000 computers. Read more

www.post-gazette.com:
Hot spots for hackers: Wireless networks. Read more

www.crn.com:
Six Years After Melissa, Mass-Mailed Malware Has Peaked. Read more

www.technewsworld.com:
Skybox Security Introduces Worm Prediction Software. Read more

27 March 2005

Guides, Papers, etc
www.pcworld.com:
It's Time to Update Your Internet Security Arsenal. Read more

bcheck.scanit.be:
Browser Security Test. Read more

security.linux.com:
Tips for when hackers strike. Read more

www.egr.msu.edu:
Analyzing the Spread of Active Worms over VANET. Read more

 

Vulnerabilities & Exploits
www.securitytracker.com:
ESMI PayPal Storefront Input Validation Bugs Let Remote Users Inject SQL Commands and Conduct Cross-Site Scripting Attacks. Read more

 

News
www.usdoj.gov:
Pleasant Hill, California Computer Hacker from "Deceptive Duo" Guilty of Intrusions into Government Computers and Defacing Websites. Read more

searchsecurity.techtarget.com:
Security no match for theater lovers. Read more

www.pcworld.com:
New Federal Rules Dictate Bank ID Theft Notifications. Read more

www.techweb.com:
Six Years After Melissa, Mass-Mailed Malware Has Peaked. Read more

26 March 2005

Guides, Papers, etc
www.theregister.co.uk:
'Doomsday nerds' defend cyberspace. Read more

www.securityfocus.com:
Owning A New Phone. Read more

www.cs.wisc.edu:
Internet Intrusions: Global Characteristics and Prevalence. Read more

 

Vulnerabilities & Exploits
www.securitytracker.com:
Oracle Reports Server Example Script Permits Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Double Choco Latte Lets Remote Users Execute Arbitrary Commands and Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Koobi Input Validation Holes Let Remote Users Inject SQL Commands and Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Trillian Buffer Overflow in Processing HTTP Response Headers May Let Remote Users Execute Arbitrary Code. Read more

 

News
www.detnews.com:
Hackers are going for gold. Read more

www.internetnews.com:
Phishing Attacks Jump 26%. Read more

www.smh.com.au:
'Safe' CD solution for online banking. Read more

news.zdnet.co.uk:
Bank customers 'becoming more phishing-savvy'. Read more

www.theregister.co.uk:
How shall I own your mobile phone today? Read more

informationweek.com:
Phishing Attack Targets Yahoo Messenger. Read more

25 March 2005

Guides, Papers, etc
www.aavar.org:
Broadband Network Virus Detection System Based on Bypass Monitor. Read more

www.pcworld.com:
Hide Your Internet Ports From Snooping Hackers. Read more

 

Vulnerabilities & Exploits
www.securitytracker.com:
Topic Calendar Mod for phpBB Permits Cross-Site Scripting Attacks and Discloses Path to Remote Users. Read more

www.securitytracker.com:
SOGo May Disclose Private Information to Remote Authenticated Users. Read more

www.securitytracker.com:
Microsoft Windows Remote Desktop 'TSShutdn.exe' Lets Remote Authenticated Users Shutdown the System. Read more

www.securitytracker.com:
ImageMagick TIFF, PSD, and SGI Image File Processing Bugs Let Remote Users Deny Service or Execute Arbitrary Code. Read more

www.securitytracker.com:
MercuryBoard Input Validation Flaw in Private Message 'title' Field Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Topic Calendar Mod for phpBB Permits Cross-Site Scripting Attacks and Discloses Path to Remote Users. Read more

www.securitytracker.com:
SOGo May Disclose Private Information to Remote Authenticated Users. Read more

www.securitytracker.com:
Microsoft Windows Remote Desktop 'TSShutdn.exe' Lets Remote Authenticated Users Shutdown the System. Read more

www.securitytracker.com:
ImageMagick Format String Flaw in Processing Filenames May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
ImageMagick TIFF, PSD, and SGI Image File Processing Bugs Let Remote Users Deny Service or Execute Arbitrary Code. Read more

www.securitytracker.com:
MercuryBoard Input Validation Flaw in Private Message 'title' Field Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
BirdBlog Input Validation Error in 'admincore.php' Permits SQL Injection. Read more

www.securitytracker.com:
Mathopd internal_dump() Temporary File Lets Local Users Corrupt Files on the Target System. Read more

www.securitytracker.com:
Vortex Portal Lets Remote Users Include and Execute Arbitrary PHP Code. Read more

www.securitytracker.com:
Interspire ArticleLive 2005 Input Validation Error in 'ArticleId' Permits Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
ZipGenius Input Validation Flaw Lets Remote Users Write Files to Alternate Locations. Read more

www.securitytracker.com:
Download Center Lite Lets Remote Users Include and Execute Arbitrary PHP Code. Read more

www.securitytracker.com:
phpSysInfo Input Validation Holes Permit Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
KDE dcopidlng Unsafe Temporary Files May Let Local Users Gain Elevated Privileges. Read more

www.securiteam.com:
Microsoft Windows WAB DoS. Read more

www.securiteam.com:
Linux sys_uselib Local Root Exploit. Read more

www.securiteam.com:
MCPWS Personal DoS Exploit. Read more

www.securiteam.com:
Apple Core Foundation Library "CF_CHARSET_PATH" Local Root Exploit. Read more

www.securiteam.com:
Linux Kernel sys_epoll_wait Local Integer Overflow Exploit. Read more

 

News
www.techweb.com:
Microsoft Begins Beta Of Unified Update. Read more

www.pcworld.com:
Phone, Infected? Read more

www.zdnet.com.au:
Should your company turn off instant messaging services (IM)? Read more

news.zdnet.com:
Banks ordered to tell customers about breaches. Read more

news.zdnet.co.uk:
Phishers target Yahoo IM users. Read more

www.slyck.com:
Canada Plans P2P and file-sharing Crackdown. Read more

news.zdnet.co.uk:
Programmers bypass Red Hat Linux fees. Read more

news.zdnet.co.uk:
Developers grumble about Microsoft tools pricing. Read more

www.pcworld.com:
PyMusique Author Hacks Apple's ITunes Fix. Read more

24 March 2005

Guides, Papers, etc
www.ngssoftware.com:
Anti Brute Force Resource Metering. Read more

iptps05.cs.cornell.edu:
A First Look at Peer-to-Peer Worms: Threats and Defenses. Read more

www.vnunet.com:
Kevin Mitnick and the art of intrusion - Part 1. Read more

beta.abc3340.com:
Review: Programs That Manage Passwords. Read more

packetstormsecurity.org:
Attacking PC based 5250 terminal emulations from an iSeries server. Read more

 

Vulnerabilities & Exploits
www.securitytracker.com:
DigitalHive Lets Remote Users Re-install the Application and Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
XMB Forum input Validation Flaw in 'Mood' Parameter Permits Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Phorum Input Validation'search.php' HTTP Response Splitting. Read more

www.securitytracker.com:
FileZilla MS-DOS Device Name and zlib Errors Let Remote Users Deny Service. Read more

www.securitytracker.com:
Nortel Contivity VPN Client Discloses Passwords to Local Users. Read more

www.securitytracker.com:
Kayako eSupport Input Validation Bugs in 'i' and 'c' Parameters Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
betaparticle blog Discloses Database to Remote Users and Lets Remote Users Upload/Delete Arbitrary Files. Read more

www.securitytracker.com:
Ocean FTP Server Lets Remote Users Deny Service With Multiple Connections. Read more

xforce.iss.net:
Mozilla Foundation GIF Overflow. Read more

www.k-otik.com:
Mozilla Suite/Firefox/Thunderbird Code Execution Vulnerabilities. Read more

www.k-otik.com:
ImageMagick Denial of Service and Heap Overflow Vulnerabilities. Read more

www.k-otik.com:
Nortel Contivity VPN Client Local Password Disclosure Vulnerability. Read more

www.k-otik.com:
Kayako ESupport "index.php" Cross Site Scripting Vulnerabilities. Read more

www.k-otik.com:
ArticleLive "newcomment" Cross Site Scripting Vulnerability. Read more

www.k-otik.com:
Vortex Portal "act" Remote PHP File Inclusion Vulnerabilities. Read more

www.k-otik.com:
FileZilla FTP Server Remote Denial Of Service Vulnerabilities. Read more

 

News
www.securityfocus.com:
Symbian Trojan attacks anti-virus protection. Read more

www.theregister.co.uk:
Drive-by Trojans exploit browser flaws. Read more

www.vnunet.com:
Adware dominates PC malware infections. Read more

www.620ktar.com:
Hacker Sentenced to Nearly Four Years. Read more

www.theregister.co.uk:
ID theft is inescapable. Read more

www.theregister.co.uk:
Apple issues nine bug fixes...Read more

www.informationweek.com:
Update: IBM Fires Back At Spammers. Read more

23 March 2005

Guides, Papers, etc
Black Hat Europe 2005 Briefings and Training.
Grand Hotel Krasnapolsky, Amsterdam, the Netherlands. Read more

ruxcon.org.au:
RUXCON 2005. Call For Papers. Read more

www.spywarewarrior.com:
Anti-Spyware Family Resemblances. Read more

www.spywarewarrior.com:
Anti-Spyware Orphans & Outcasts. Read more

www.nta-monitor.com:
Common VPN Security Flaws. Read more

www.astalavista.com:
Windows Keylogging and Counter-Measures. Read more

www.securityfocus.com:
Defeating Honeypots: System Issues, Part 1. Read more

www.astalavista.com:
Reverse-connected shellcodes. Read more

 

Vulnerabilities & Exploits
www.securitytracker.com:
Apple Bluetooth Setup Assistant Lets Remote Users Bypass Access Controls. Read more

www.securitytracker.com:
Apple Mac OS X Unsafe Directory Permissions May Let Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
Apple AFP Server Discloses Drop Box Contents to Remote Users and Lets Remote Users Deny Service. Read more

www.securitytracker.com:
Mac OS X Core Foundation Buffer Overflow in CF_CHARSET_PATH Lets Local Users Gain Root Privileges. Read more

www.securitytracker.com:
phpmyfamily Input Validation Holes Let Remote Users Inject SQL Commands. Read more

www.k-otik.com:
Apple Mac OS X Multiple Vulnerabilities (Security Update 2005-003). Read more

www.k-otik.com:
FUN labs Games Remote Denial of Service Vulnerabilities. Read more

www.k-otik.com:
PHPMyFamily Multiple Remote SQL Injection Vulnerabilities. Read more

www.k-otik.com:
Xzabite "dyndnsupdate" Remote Buffer Overflow vulnerabilities. Read more

www.k-otik.com:
PHP-Fusion "setuser.php" Cross Site Scripting Vulnerability. Read more

www.securiteam.com:
FreeCiv Server DoS Exploit. Read more

www.securiteam.com:
phpBB UID Exploit (Perl Exploit 2). Read more

 

News
www.securityfocus.com:
Duo charged over DDoS hire for scam. Read more

news.zdnet.co.uk:
Worms still hitting businesses hard. Read more

news.zdnet.com:
Firefox add-on lets surfers tweak sites, but is it safe? Read more

reviews.cnet.com:
Criminal hackers reach beyond Windows and Internet Explorer. Read more

www.vnunet.com:
Porn spammers enlist 'desperate housewives'. Read more

www.vnunet.com:
Sex, drugs and obfuscation. Read more

www.cio-today.com:
Viruses, Phishing Not Going Away Soon. Read more

www.vnunet.com:
Huge rise in IM backdoor attacks. Read more

comment.zdnet.co.uk:
Symantec's self serving warnings. Read more

www.theregister.co.uk:
iTunes store 'hole' open again. Read more

news.zdnet.co.uk:
Flaw found in Nortel's VPN client. Read more

news.zdnet.co.uk:
Apple patches Safari phishing flaw. Read more

22 March 2005

Guides, Papers, etc
www.securityfocus.com:
Computer Ethics, From the Grandstands. Read more

 

Tools:
www.securityforest.com:
SecurityForest Exploitation Framework Beta has been released! Read more

 

Vulnerabilities & Exploits
www.securitytracker.com:
FUN labs Games Can Be Crashed By Remote Users. Read more

www.securitytracker.com:
TRG News Script Include File Hole Lets Remote Users Execute Arbitrary Commands. Read more

www.securitytracker.com:
CzarNews Include File Hole Lets Remote Users Execute Arbitrary Commands. Read more

www.securitytracker.com:
exoops Discloses Installation Path and Database Password to Remote Users. Read more

www.securitytracker.com:
Ciamos Discloses Installation Path and Database Password to Remote Users. Read more

www.securitytracker.com:
RUNCMS Discloses Installation Path and Database Password to Remote Users. Read more

www.idefense.com:
Mac OS X CF_CHARSET_PATH Buffer Overflow Vulnerability. Read more

www.securiteam.com:
Ocean FTP DoS (Exploit). Read more

www.securiteam.com:
iPool and iSnooker Local Password Disclosure. Read more

www.securiteam.com:
GoodTech Telnet Server Buffer Overflow Vulnerability (Exploit). Read more

www.debian.org:
DSA-695-1 xli -- buffer overflow, input sanitising, integer overflow. Read more

www.debian.org:
DSA-694-1 xloadimage -- missing input sanitising, integer overflow. Read more

 

News
www.theregister.co.uk:
Brazilian cops net 'phishing kingpin'. Read more

www.theregister.co.uk:
Britain tops zombie PC charts. Read more

news.zdnet.co.uk:
Broadband boom makes UK worst for hacked PCs. Read more

www.pcworld.com:
What Are the Web's Worst Security Problems? Read more

www.pcworld.com:
Should IE Stay or Should IE Go? Read more

news.zdnet.co.uk:
Virus writing: It's a thieves' game. Read more

www.vnunet.com:
Half of viruses written for criminal gain. Read more

www.vnunet.com:
Hackers target browsers to dodge firewalls. Read more

www.ciol.com:
59,000 affected by hackers: Calif. University. Read more

news.zdnet.co.uk:
University reports data hack. Read more

www.it-observer.com:
Sumitomo Matsui Bank sophisticated hacking sends alarm signals. Read more

www.it-director.com:
Spyware - worse than viruses? Read more

www.vnunet.com:
US authorities warn of bogus anti-spyware. Read more

news.zdnet.co.uk:
OSX 'at risk from attack'. Read more

www.pcworld.com:
Symantec: Hackers Turn Attention to Mozilla Browsers. Read more

news.zdnet.co.uk:
iTunes Music Store DRM bypassed. Read more

21 March 2005

Added to the Archive:
Harvester 2005 0.1

 

Guides, Papers, etc
www.pcworld.com:
Do Passwords Provide True Protection? Don't Count on It. Read more

 

Vulnerabilities & Exploits
www.milw0rm.com:
phpBB <= 2.0.12 Change User Rights Authentication Bypass. Read more

www.securiteam.com:
iPool and iSnooker Local Password Disclosure. Read more

www.securiteam.com:
GoodTech Telnet Server Buffer Overflow Vulnerability (Exploit). Read more

 

News
www.theregister.co.uk:
$5m daily fine beckons for bad boy Microsoft. Read more

timesofindia.indiatimes.com:
AFP sues Google for $17.5 mn. Read more

news.zdnet.co.uk:
OSX 'at risk from attack'. Read more

www.securitypipeline.com:
A Third Of IRS Employees Suckered By Auditors Posing As Hackers. Read more

www.gazettetimes.com:
Outlaws still rule in cyberspace. Read more

www.pcworld.com:
DVD Jon Breaks ITunes Security--Again. Read more

www.pcworld.com:
Companies Lining Up to Root Out Rootkits. Read more

www.freep.com:
Michigan man accused of disabling competing Web sites. Read more

20 March 2005

Pro Agent 2.0

 

Vulnerabilities & Exploits
www.securitytracker.com:
OllyDbg Error in Loading Processes With Long Names Lets Users Crash the Debugger. Read more

www.securitytracker.com:
LTris Buffer Overflow in Processing Highscores File May Let Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
Cain Abel Buffer Overflow in PSK Sniffer Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Icecast XSL Parser Lets Local Users Gain Elevated Privileges and Discloses XSL Files to Remote Users. Read more

 

News
www.internetweek.com:
Insider Behind Foiled Hacker Heist. Read more

www.techweb.com:
Keyloggers Foiled In Attempted $423 Million Bank Heist. Read more

money.cnn.com:
Internet phones a hacking risk? Read more

www.informationweek.com:
Firefox Eats More Microsoft Market Share. Read more

19 March 2005

Guides, Papers, etc
www.infosecwriters.com:
The Art of Rootkits (2nd ed). Read more

www.l0t3k.net:
Kernel-mode backdoors for Windows NT. Read more

www2.townonline.com:
Why do hackers hack. Read more

 

Vulnerabilities & Exploits
www.k-otik.com:
J2SE Java Web Start Client-Side Argument Injection Vulnerability. Read more

www.k-otik.com:
Linux Kernel 2.6.x ISO9660 Filesystem Handler Vulnerability. Read more

www.k-otik.com:
My Firewall Plus Arbitrary File Corruption Vulnerability. Read more

www.securitytracker.com:
CoolForum Input Validation Flaws Permit SQL Injection and Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
MailEnable SMTP 'mailto' Format String Flaw Lets Remote Users Deny Service. Read more

www.securitytracker.com:
ACS Blog Input Validation Hole in 'search.asp' Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
mcNews 'install.php' Include File Flaw Lets Remote Users Execute Arbitrary Commands. Read more

www.securitytracker.com:
lshd parse_kexinit() Bug Lets Remote Users Deny Service. Read more

www.securitytracker.com:
McAfee NetShield Buffer Overflow in Processing LHA Headers Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
McAfee GroupShield Buffer Overflow in Processing LHA Headers Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
McAfee WebShield Buffer Overflow in Processing LHA Headers Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
McAfee VirusScan ASaP Buffer Overflow in Processing LHA Headers Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
McAfee VirusScan Buffer Overflow in Processing LHA Headers Lets Remote Users Execute Arbitrary Code. Read more

 

News
www.techweb.com:
Hacker Turf War Will Lead To Large E-crime Gangs. Read more

www.vnunet.com:
Rootkits leave antivirus systems powerless. Read more

news.zdnet.co.uk:
Virus writers get stealthy. Read more

www.theregister.co.uk:
Anti-virus vulnerabilities strike again. Read more

www.pcadvisor.co.uk:
Hackers control more than a million PCs. Read more

www.guardian.co.uk:
Experts suspect insider in hackers bid to steal �220m. Read more

news.zdnet.co.uk:
VoIP could provoke 'electronic Pearl Harbour'. Read more

uk.builder.com:
Visual Basic protest won't go away. Read more

cnn.netscape.cnn.com:
Falun Gong denies sending China pirate signals. Read more

news.zdnet.com:
Hackers build back door into iTunes. Read more

software.silicon.com:
Sumitomo spyware scare: What have we learned? Read more

18 March 2005

Guides, Papers, etc
www.infoworld.com:
Holy Father on rootkit writing for fun, profit. Read more

www.shocking.com:
PGP Man in the Middle Attack. Read more

en.wikipedia.org:
One-time pad encryption. Read more

www.icir.org:
A Behavioral Approach to Worm Detection. Read more

 

Vulnerabilities & Exploits
xforce.iss.net:
McAfee AntiVirus Library Stack Overflow. Read more

www.k-otik.com:
McAfee Antivirus Products LHA Archive Stack Overflow Vulnerability. Read more

www.k-otik.com:
Novell Netware Xsession Server Console Access Vulnerability. Read more

www.k-otik.com:
KDE Desktop Communication Protocol Denial of Service Vulnerability. Read more

www.k-otik.com:
MailEnable "SMTP" Request Remote Format String Vulnerability. Read more

www.k-otik.com:
ACS Blog "Search.asp" Remote Cross Site Scripting Vulnerability. Read more

www.securitytracker.com:
Sun Solaris newgrp(1) Buffer Overflow Lets Remote Users Gain Root Privileges. Read more

www.securitytracker.com:
Netware xvesa Redirect Flaw Lets Remote Users Access Xsessions. Read more

www.securitytracker.com:
iSnooker Discloses Passwords to Local Users. Read more

www.securitytracker.com:
iPool Discloses Passwords to Local Users. Read more

www.securitytracker.com:
Citrix MetaFrame Conferencing Manager May Let Remote Users Gain Keyboard and Mouse Control. Read more

www.securitytracker.com:
ASPjar Tell-a-Friend Input Validation Hole Permits Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Servers Alive Help Function Lets Local Users Gain System Privileges. Read more

www.securitytracker.com:
Microsoft Office InfoPath 2003 May Disclose System and Authentication Information to Remote Users. Read more

 

News
news.zdnet.co.uk:
McAfee Antivirus vulnerability published. Read more

news.bbc.co.uk:
UK police foil massive bank theft. Read more

software.silicon.com:
�220m spyware bank robbers thwarted. Read more

news.bbc.co.uk:
Have hackers recruited your PC? Read more

www.theregister.co.uk:
The strange decline of computer worms. Read more

www.networkitweek.co.uk:
IT pros lulled into false sense of security. Read more

17 March 2005

Guides, Papers, etc
www.securityfocus.com:
A Method for Forensic Previews. Read more

www.securityfocus.com:
Windows Firewalls Lacking. Read more

www.securityfocus.com:
Linux Kernel Security, Again. Read more

 

Vulnerabilities & Exploits
www.securitytracker.com:
KDE DCOP Bug Lets Local Users Deny Service. Read more

www.securitytracker.com:
Symantec Enterprise Firewall DNSd Proxy Bug Lets Remote Users Poison the DNS Cache. Read more

www.securitytracker.com:
Symantec VelociRaptor DNSd Proxy Bug Lets Remote Users Poison the DNS Cache. Read more

www.securitytracker.com:
Symantec Gateway Security DNSd Proxy Bug Lets Remote Users Poison the DNS Cache. Read more

www.securitytracker.com:
PunBB Input Validation Bugs in 'email' and 'Jabber' Profile Parameters Let Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
OpenSLP Buffer Overflows Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Linux PPP Driver Lets Remote Users Crash the System. Read more

www.securitytracker.com:
GoodTech Telnet Server for Windows NT/2000/XP/2003 Buffer Overflow in Administration Port Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
IBM WebSphere Commerce May Disclose Login IDs and Other Information to Remote Users. Read more

www.securitytracker.com:
PHPOpenChat Include File Flaw Lets Remote Users Execute Arbitrary Commands. Read more

 

News
www.microsoft-watch.com:
Microsoft Internet Explorer 7.0 Details Begin to Leak. Read more

news.zdnet.co.uk:
Botnets use Windows for wicked work. Read more

www.theregister.co.uk:
Germans form spam-busting alliance. Read more

news.com.com:
Hardware security sneaks into PCs. Read more

news.com.com:
Microsoft walks VB tight rope. Read more

www.sfgate.com:
Auditors Find IRS Workers Prone to Hackers. Read more

australianit.news.com.au:
Record fine for mobile spam. Read more

www.emediawire.com:
Spammer Sues Spam Victim, Continues Spamming Him. Read more

news.com.com:
A 30-year memory problem solved? Read more

16 March 2005

Guides, Papers, etc
www.schneier.com:
Why random-number fobs can't stop Internet bank fraud.
The Failure of Two-Factor Authentication. Read more

www.bluecoat.com:
Blue Coat Study: Desktop Software Ineffective in Preventing Spyware. Read more

www.owasp.org:
WebGoat is a full J2EE web application designed to teach web application security lessons. In each lesson, users must demonstrate their understanding by exploiting a real vulnerability on the local system. The system is even clever enough to provide hints and show the user cookies, parameters and the underlying Java code if they choose. Examples of lessons include SQL injection to a fake credit card database, where the user creates the attack and steals the credit card numbers. Read more

www.cs.washington.edu:
The Effect of Infection Time on Internet Worm Propagation. Read more

www.securitydocs.com:
Sorting Through the Hype of Ubiquitous Secure Remote Access and SSL VPNs. Read more

 

Vulnerabilities & Exploits
www.k-otik.com:
MetaFrame Conferencing Manager keyboard and mouse Control Issue. Read more

www.k-otik.com:
Citrix MetaFrame Password Manager "reveal password" policy bypass. Read more

www.k-otik.com:
IBM WebSphere Commerce "cache entry" Information Disclosure Issue. Read more

www.securitytracker.com:
Racoon Input Validation Error in ISAKMP Generic Header Length Field Lets Remote Users Deny Service. Read more

www.securitytracker.com:
Tomcat AJP12 Parsing Error Lets Remote Users Deny Service. Read more

www.securitytracker.com:
VoteBox Include File Error Lets Remote Users Execute Arbitrary Commands. Read more

www.securitytracker.com:
MaxDB Web Agent Can Be Crashed By Remote Users Sending Invalid DBM Parameters. Read more

www.securitytracker.com:
phpAdsNew 'adframe.php' Permits Cross-Site Scripting Attacks and Various Scripts Disclose the Installation Path to Remote Users. Read more

www.securiteam.com:
OpenBSD TCP TIMESTAMP Remote DoS. Read more

www.securiteam.com:
Ethereal CDMA2000 A11 Stack Overflow (Exploit with Shellcode). Read more

www.securiteam.com:
AWStats Remote Command Execution. Read more

www.securiteam.com:
PaX Double-Mirrored VMA Memory Unmapping Local Root Exploit. Read more

 

News
itmanagement.earthweb.com:
New Worm Throws 'Smachdown' on Users. Read more

www.vnunet.com:
MSN TV Trojan hacker sent to jail. Read more

www.vnunet.com:
Hackers can beat security tokens. Read more

software.silicon.com:
IT managers adopt 'stay clueless, stay safe' strategy. Read more

www.smh.com.au:
Internet scam slugs sellers for thousands. Read more

www.siliconvalley.com:
140 Kaiser patients' private data put online. Read more

www.theregister.co.uk:
Dutch hackers sentenced for attack on government sites. Read more

15 March 2005

Guides, Papers, etc
www.honeynet.org:
Know your Enemy: Tracking Botnets. Read more

www.honeynet.org:
Know your Enemy: Tracking Botnets - Vendors. Read more

www.honeynet.org:
Know your Enemy: Tracking Botnets - Source Code. Read more

 

Tools:
www.tomsnetworking.com:
How To: Building a BlueSniper Rifle.
The gun, which is called the BlueSniper rifle, can scan and attack Bluetooth devices from more than a mile away. The first version of the gun showed up at Defcon 2004, a hacker/computer security convention held annually in Las Vegas. Read more

 

Vulnerabilities & Exploits
www.securitytracker.com:
Wine Unsafe Temporary Files Disclose Registry Contents to Local Users. Read more

www.securitytracker.com:
rxvt-unicode Long Escape Sequence Buffer Overflow May Allow Code Execution. Read more

www.securitytracker.com:
paFileDB Input Validation Errors in 'viewall.php' and 'category.php' Permit SQL Injection and Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
paFIleDB Has Flaws in Multiple Files That Disclose the Installation Path to Remote Users. Read more

www.securitytracker.com:
HolaCMS Input Validation Hole in Vote Module Lets Remote Users Modify Files. Read more

www.k-otik.com:
KAME Racoon ISAKMP Headers Denial of Service Vulnerability. Read more

www.k-otik.com:
MySQL MaxDB Web Agent Multiple Denial of Service Vulnerabilities. Read more

www.k-otik.com:
Apache Tomcat "AJP12" Remote Denial Of Service Vulnerability. Read more

www.k-otik.com:
VoteBox "votebox.php" Remote PHP File Inclusion Vulnerability. Read more

www.k-otik.com:
Mozilla Suite/Firefox/Thunderbird Status Bar Spoofing Vulnerability. Read more

www.k-otik.com:
PHPAdsNew "adframe.php" Cross Site Scripting Vulnerability. Read more

www.k-otik.com:
Spinworks Application Server Remote Denial Of Service Vulnerability. Read more

www.k-otik.com:
SimpGB "Guestbook.php" Remote SQL Injection Vulnerability. Read more

www.k-otik.com:
PABox Post Icon Cross Site Scripting and HTML Injection. Read more

www.securiteam.com:
SafeNet Sentinel License Manager Stack Overflow Exploit. Read more

www.securiteam.com:
Ethereal IAPP Remote Buffer Overflow Exploit. Read more

www.securiteam.com:
MySQL "CREATE FUNCTION" Exploits. Read more

www.securiteam.com:
Active Webcam WebServer DoS Exploit. Read more

www.securiteam.com:
phpBB UID Exploit. Read more

www.debian.org:
DSA-693-1 luxman -- buffer overflow. Read more

 

News
www.securitypark.co.uk:
Virus writers turn from making havoc to making money. Read more

www.vnunet.com:
Microsoft to abandon passwords. Read more

www.vnunet.com:
Hackers target Bluetooth devices 1km away. Read more

www.pcw.co.uk:
JAL Computers attacked by hackers. Reda more

www.tucsoncitizen.com:
Hackers infiltrate DSW shoe store chain's records. Read more

www.virusbtn.com:
Man sentenced for 911 Trojan. Read more

www.theregister.co.uk:
Spyware Assassin censured for 'bogus' claims. Read more

14 March 2005

Guides, Papers, etc
www.benedelman.org:
Advertisers Supporting eXact Advertising. Read more

www.summercon.org:
CALL FOR PAPERS: Speak at SummerCon 2005. Read more

 

Vulnerabilities & Exploits
www.securitytrap.com:
Firefox 1.01 : spoofing status bar without using JavaScript. Read more

www.hat-squad.com:
Hat-Squad Releases: Computer-Associates, License Client Service Exploit. Read more

 

News
nwc.securitypipeline.com:
Cyber-Attackers Want Money, ID Data. Read more

www.heraldsun.news.com.au:
Internet banking 'not safe'. Read more

www.thenewstribune.com:
Security patches cue national security concerns. Read more

www.pcauthority.com.au:
F-Secure takes on hidden malicious code. Read more

www.tucsoncitizen.com:
Hackers infiltrate DSW shoe store chain's records. Read more

www.linuxworld.com.au:
Kaspersky unveils host of security products. Read more

management.silicon.com:
Get tough on DoS-ers says UK MP. Read more

www.vitalsecurity.org:
Firefox Spyware infects IE? Read more

13 March 2005

Guides, Papers, etc
engr.smu.edu:
The Evolution of Viruses and Worms. Read more

www.spywarewarrior.com:
Rogue/Suspect Anti-Spyware Products & Web Sites. Read more

www.eweek.com:
Ten Not-So-Simple Rules for Using the Internet. Read more

www.macnewsworld.com:
Why Viruses Have Trouble Penetrating the Mac. Read more

 

Vulnerabilities & Exploits
www.k-otik.com:
Xerox Document Centre Web Server Unauthorised Access Vulnerability. Read more

www.securitytracker.com:
YaBB Input Validation Error in 'usersrecentposts' Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Ethereal Buffer Overflows and Other Bugs in Etheric, GPRS-LLC, 3GPP2 A11, IAPP, JXTA, and sFlow Dissectors Let Remote Users Crash the Process or Execute Arbitrary Code. Read more

 

News
www.msnbc.msn.com:
Hackers target U.S. power grid. Read more

www.eweek.com:
FTC Says Anti-Spyware Vendor Shut Down. Read more

www.iol.co.za:
New Microsoft plan raises a few eyebrows. Read more

www.earthtimes.org:
Microsoft buyout Groove, founder Ozzie becomes Gates� CTO. Read more

www.pcworld.com:
Microsoft Skips Media Center Update. Read more

12 March 2005

Guides, Papers, etc
www.microsoft.com:
10 Immutable Laws of Security. Read more

www.acsac.org:
Using Predators to Combat Worms and Viruses: A Simulation-Based Study. Read more

 

Vulnerabilities & Exploits
www.securitytracker.com:
MySQL CREATE FUNCTION Lets Authenticated Users Invoke libc Functions to Execute Arbitrary Code. Read more

www.securitytracker.com:
MySQL udf_init() Path Validation Flaw Lets Authenticated Users Execute Arbitrary Libraries. Read more

www.securitytracker.com:
MySQL CREATE TEMPORARY TABLE Uses Predictable Temporary Files That May Let Users Gain Elevated Privileges. Read more

www.securitytracker.com:
WF-Sections Input Validation Hole in 'wfsfiles.php' in 'articleid' Parameter Lets Remote Users Inject SQL Commands. Read more

www.securitytracker.com:
WEBinsta Limbo Include File Flaw Lets Remote Users Execute Arbitrary Commands. Read more

 

News
software.silicon.com:
Kids' websites worst for adware and browser hijackers. Read more

www.chinanews.cn:
China develops new anti-computer virus technology. Read more

www.overclockersclub.com:
US Government Gets Microsoft Security Patches First. Read more

www.theregister.co.uk:
Alternative browser spyware infects IE. Read more

www.nwfusion.com:
RSA event sets up malware war. Read more

www.620ktar.com:
Microsoft Security Practice Raises Fears. Read more

www.theregister.co.uk:
It's time to pick your favourite virus. Read more

www.vnunet.com:
Police called after hackers crack UK PC dealer. Read more

www.vnunet.com:
UK clamps down on denial-of-service attacks. Read more

www.newsfactor.com:
LexisNexis Breach Fuels Data Security Worries. Read more

11 March 2005

Guides, Papers, etc
weblogs.asp.net:
Rootkit Revealer vs. Hacker Defender - How the miscreants are defeating Rootkit Revealer and how to fight back. Read more

www.securityfocus.com:
Infection Vectors. Read more

cfl.ou.edu:
Measurement and Analysis of Worm Propagation on Internet Network Topology. Read more

 

Tools:
www.f-secure.com:
F-Secure BlackLight Rootkit Elimination Technology detects objects that are hidden from users and security tools and offers the user an option to remove them.
The main purpose is to fight rootkits and all kinds of malware that use rootkits. Read more

 

Vulnerabilities & Exploits
www.securityfocus.com:
Windows Server 2003 and XP SP2 LAND attack vulnerability. Read more

www.securiteam.com:
SocialMPN Arbitrary File Injection Exploit. Read more

www.securiteam.com:
RealPlayer SMIL File Buffer Overflow. Read more

www.securiteam.com:
Ethereal 3G Remote Buffer Overflow Exploit. Read more

www.securitytracker.com:
WEBinsta Website Mailing list manager Include File Flaw Lets Remote Users Execute Arbitrary Commands. Read more

 

News
news.zdnet.co.uk:
Virus writers wreak havoc by the hour. Read more

news.zdnet.co.uk:
Microsoft gets with the Groove. Read more

www.theregister.co.uk:
French security researcher fined. Read more

www.vnunet.com:
Global virus epidemics run out of steam. Read more

www.scmagazine.com:
Swedish police collar hardcore hacker. Read more

www.vnunet.com:
UK firms haemorrhaging data to drive-by hackers. Read more

www.vnunet.com:
Credit card flaws fuel online fraud bonanza. Read more

www.theregister.co.uk:
MP pitches Denial of Service law to Parliament. Read more

www.theinquirer.net:
Hackers put Bush in power. Read more

healthandfitness.sympatico.msn.ca:
Hospital Computers Fail to Deliver: study finds they facilitated errors. Read more

10 March 2005

Guides, Papers, etc
www.securityfocus.com:
WEP: Dead Again, Part 2. Read more

www.securityfocus.com:
High Profile, Low Security. Read more

 

Tools:
www.eeye.com:
The Retina CA Vulnerability Scanner is being made available free of charge by eEye. The tool will scan up to 16 IP addresses at once to determine if any are vulnerable to the Computer Associates License Manager vulnerabilities published in March, 2005. Read more

 

Vulnerabilities & Exploits
www.securitytracker.com:
Novell iChain Mini FTP Server Does Not Limit Invalid Authentication Attempts. Read more

www.securitytracker.com:
Novell iChain Mini FTP Server Discloses Installation Path to Remote Users. Read more

www.securitytracker.com:
Novell iChain GUI Lets Remote Users Gain Administrative Access. Read more

www.securitytracker.com:
paFileDB Input Validation Hole in $pageurl Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
OutStart Participate Discloses Directories to Remote Users and Lets Remote Users Rename and Delete Directory Objects. Read more

security.lss.hr:
Ethereal remote buffer overflow. Read more

www.securiteam.com:
Buffer Overflow In Internet Explorer CSS Parsing (mshtml.dll). Read more

www.securiteam.com:
Computer Associates License Client Service Stack Overflow. Read more

www.geocities.com:
Multiple AV Vendor Incorrect CRC32 Bypass Vulnerability. Read more

 

News
www.zdnet.com.au:
Publishing exploit code ruled illegal in France? Read more

news.com.com:
France puts a damper on flaw hunting. Read more

www.vnunet.com:
Hackers 'poison' search engine results. Read more

www.computerweekly.com:
Worms threat to instant messaging. Read more

www.informationweek.com:
IM Threats Growing 50% Per Month. Read more

economictimes.indiatimes.com:
Beware! Your pal's MMS may be a virus! Read more

www.vnunet.com:
Instant messaging security incidents soar. Read more

www.pcworld.com:
Hackers Grab LexisNexis Info on 32,000 People. Read more

arstechnica.com:
Another case of massive consumer data theft. Read more

www.pcauthority.com.au:
Phone virus poses worldwide threat: Vendors. Read more

www.pcworld.com:
Harvard Rejects Applicants Who Hacked Site. Read more

news.com.com:
Phishers using DNS servers to lure victims? Read more

09 March 2005

Guides, Papers, etc
engr.smu.edu:
Worm Epidemics in High-Speed Networks. Read more

 

Vulnerabilities & Exploits
www.cirt.dk:
SafeNet Sentinel License Manager 7.2.0.2 Buffer Overflow. Read more

www.idefense.com:
KPPP Privileged File Descriptor Leak Vulnerability. Read more

rst.void.ru:
Windows Server 2003 and XP SP2 remote DoS exploit. Read more

www.gentoo.org:
mlterm: Integer overflow vulnerability. Read more

www.securityreason.com:
Multiple vulnerabilities in paFileDB. Read more

www.debian.org:
DSA-692-1 kdenetwork -- design flaw. Read more

www.securitytracker.com:
Ethereal Buffer Overflow in 3G-A11 Dissector Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
libexif Buffer Overflow in Processing EXIF Headers May Let Remote Users Crash the Application. Read more

www.securitytracker.com:
phpWebLog Include File Flaw Lets Remote Users Execute Arbitrary Commands. Read more

www.securitytracker.com:
mcNews 'header.php' Include File Flaw Lets Remote Users Execute Arbitrary Commands. Read more

www.securitytracker.com:
Hosting Controller Discloses Hosted Domain Names and Domain Owner E-mail Addresses to Remote Users. Read more

www.securitytracker.com:
CopperExport for iPhoto 'xp_publish.php' Input Validation Holes Let Remote Authenticated Users Inject SQL Commands. Read more

www.securitytracker.com:
The Includer Input Validation Hole Lets Remote Users Execute Arbitrary Commands. Read more

www.securitytracker.com:
Oracle Database Server UTL_FILE Error Discloses Files to Remote Authenticated Users. Read more

www.securitytracker.com:
Tell a Friend Script Lets Remote Users Include and Execute Arbitrary Code. Read more

www.securitytracker.com:
Sun AnswerBook2 Input Validation Holes Permit Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Xerox WorkCentre Bug in Web Server Lets Remote Users Modify the Configuration. Read more

www.securitytracker.com:
Aztek Forum Authentication Error Discloses Database Backup File to Remote Users. Read more

www.securitytracker.com:
Gene6 FTP Server Lets Local Users Execute Commands With Elevated Privileges. Read more

www.securitytracker.com:
SafeNet Sentinel LM Buffer Overflow Lets Remote Users Execute Arbitrary Code. Read more

 

News
Microsoft Security Bulletin MS05-002
www.microsoft.com:
Vulnerability in Cursor and Icon Format Handling Could Allow Remote Code Execution (891711). Read more

www.theregister.co.uk:
MMS virus discovered. Read more

www.vnunet.com:
Design flaw limits spread of MMS mobile virus. Read more

www.theregister.co.uk:
DNS cache poisoning bugs hits Symantec shops. Read more

www.pcworld.com:
Harvard Rejects Applicants Who Hacked Site. Read more

www.boston.com:
MIT says it won't admit hackers. Read more

www.vnunet.com:
Virus authors form unholy alliance. Read more

www.vnunet.com:
Online blackmail grows. Read more

www.theregister.co.uk:
UK card fraud hits �505m. Read more

08 March 2005

Guides, Papers, etc
www.benedelman.org:
Comparison of Unwanted Software Installed by P2P Programs. Read more

ftp.research.microsoft.com:
Can we contain Internet worms? Read more

 

Vulnerabilities & Exploits
www.argeniss.com:
Oracle Database Server Directory transversal. Read more

www.cirt.dk:
Buffer Overflow in SentinelLM service. Read more

www.securitytracker.com:
PaX SEGMEXEC and RANDEXEC VMA Error Lets Local Users Gain Elevated Privileges. Read more

www.securiteam.com:
Buffer Overflow in Knet. Read more

www.securiteam.com:
Multiple Vulnerabilities in Computer Associates License (Multiple Buffer Overflows, Directory Traversal). Read more

www.securiteam.com:
Computer Associates License Client Service Stack Overflow. Read more

www.milw0rm.com:
Aztek Forum <= 4.0 "myadmin.php" Database Dumper Exploit. Read more

www.milw0rm.com:
The Includer CGI <= 1.0 Remote Command Execution. Read more

www.milw0rm.com:
phpWebLog <= 0.5.3 Arbitrary File Inclusion. Read more

www.milw0rm.com:
PHP mcNews <= 1.3 Arbitrary File Inclusion. Read more

www.debian.org:
DSA-691-1 abuse -- several vulnerabilities. Read more

secway.org:
Gene6 FTP Server Local Privilege Escalation Vulnerability. Read more

 

News
www.vnunet.com:
Mobile phone virus could go global in minutes. Read more

www.pcworld.com:
Policing the Virus Writers: Good News? Read more

www.pcworld.com:
Antivirus Companies Report First Mobile Messaging Worm. Read more

www.theregister.co.uk:
Dampig Trojan menaces Symbian mobiles. Read more

www.kaspersky.com:
Virus writers exchanging information. Read more

www.vnunet.com:
Celebrity hacker strikes again. Read more

www.telecom.paper.nl:
XS4ALL starts wiretapping case against Dutch government. Read more

www.nzherald.co.nz:
Internet banking quite secure, never been infiltrated. Read more

www.microscope.co.uk:
Companies forced to reconsider security as SHA-1 code is broken. Read more

07 March 2005

Guides, Papers, etc
www.fungible.com:
Extortion Worms: Internet Worms that Discourage Disinfection. Read more

 

Vulnerabilities & Exploits
www.securitytracker.com:
Nokia Symbian OS Phone Bluetooth Nickame Error Lets Remote Users Restart the Target System. Read more

www.securitytracker.com:
Form Mail Script Lets Remote Users Include and Execute Arbitrary PHP Code. Read more

www.securitytracker.com:
phpBB 'oracle.php' Discloses Path to Remote Users. Read more

www.securitytracker.com:
Sylpheed Buffer Overflow in Processing Message Headers May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
phpBB 'sessions.php' Grants Administrative Access to Remote Authenticated Users. Read more

 

News
www.infoworld.com:
Symantec claims new antivirus patent. Read more

patft.uspto.gov:
Patent: Symantec Patents Multiple File Area Virus Scanning. Read more

www.rednova.com:
RSA Event Sets Up Malware War. Read more

www.telecomasia.net:
Cabir virus spreads to France, Japan. Read more

nwc.securitypipeline.com:
Survey: Patch Management An Ongoing Challenge For Many Companies. Read more

nwc.securitypipeline.com:
Directory Harvest Attacks Hit Record High. Read more

news.zdnet.co.uk:
Mitnick warns on dangers of social engineering. Read more

nwc.securitypipeline.com:
Hacker Helps B-School Applicants. Read more

06 March 2005

Guides, Papers, etc
www.bellua.com:
Bellua Cyber Security Asia 2005
From 21st - 24th March the largest information security conference in Asia will take place in Jakarta, Indonesia at the Hotel Borobudur. Read more

Remote physical device fingerprinting by Yoshi Kohno (pdf). Read more

seattletimes.nwsource.com:
Learn to expect cracks in the best of firewalls. Read more

www.intrusion.com:
Intrusion Announces Internet Investigation Tool to Track Down Bad Guys. Read more

 

Vulnerabilities & Exploits
www.securitytracker.com:
Form Mail Script Lets Remote Users Include and Execute Arbitrary PHP Code. Read more

www.securitytracker.com:
phpBB 'oracle.php' Discloses Path to Remote Users. Read more

www.securitytracker.com:
Sylpheed Buffer Overflow in Processing Message Headers May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
phpBB 'sessions.php' Grants Administrative Access to Remote Authenticated Users. Read more

 

News
www.stuff.co.nz:
Hacker takes 3 minutes to get your cash. Read more

news.com.com:
Tracking PCs anywhere on the Net. Read more

www.wired.com:
Feds Catching Up With Proxies. Read more

www.wired.com:
Domain Owners Lose Privacy. Read more

www.cbronline.com:
Go Daddy slams US on domain privacy. Read more

itmanagement.earthweb.com:
Taking on Cyber Crime's New Mob Ties. Read more

www.scmagazine.com:
Anti-virus expert claims spyware does not exist. Read more

www.dailystar.com:
Web sees increase in 'phishing' scams. Read more

05 March 2005

Guides, Papers, etc
isc.sans.org:
Global DNS cache poisoning attack?; Update...Read more

seattletimes.nwsource.com:
Learn to expect cracks in the best of firewalls. Read more

"JPEG exploit variant: creation and using" by Andrey Bayora (pdf). Read more

ftp.research.microsoft.com:
Can we contain Internet worms? Read more

tennis.ecs.umass.edu:
Internet Worm Propagation Simulator. Read more

www.eweek.com:
Paying for Flaws Pays Off for iDefense. Read more

 

Vulnerabilities & Exploits
www.securityfocus.com:
LOOKNMEET HTML INJECT EXPLOIT. Read more

www.securitytracker.com:
HTTP Anti Virus Proxy May Not Detect Viruses in Certain Archives. Read more

www.securitytracker.com:
Zorum Input Validation Holes in 'list' and 'frommethod' and Other Fields Permit Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
TYPO3 Input Validation Hole in 'category_uid' Permits SQL Injection. Read more

www.securitytracker.com:
paBox 'text' Variable Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
phpBB 'usercp_register.php' Error Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.k-otik.com:
Xerox MicroServer Web Server Unspecified Remote Vulnerability. Read more

 

News
www.pcworld.com:
Microsoft Researchers Target Worms, Buffer Overruns. Read more

www.theregister.co.uk:
Limp Bizkit lead claims hackers stole his sex video. Read more

news.zdnet.co.uk:
It's official: Spammers are hijacking ISPs. Read more

www.theregister.co.uk:
Spammers adopt slippery tactics to bypass ISP defences. Read more

news.zdnet.co.uk:
'One in four' touched by ID theft. Read more

news.zdnet.co.uk:
ID theft gang smashed. Read more

news.zdnet.co.uk:
CA to track employee behaviour. Read more

www.cnn.com:
Judge dismisses spam conviction. Read more

www.theregister.co.uk:
Limp Bizkit lead claims hackers stole his sex video. Read more

www.securityfocus.com:
Companies resist nuclear cyber security rule. Read more

04 March 2005

Guides, Papers, etc
www.astalavista.com:
Computer Viruses: The Threat Today and The Expected Future. Read more

 

Vulnerabilities & Exploits
www.securitytracker.com:
CA Unicenter Asset Management Input Validation Bugs Let Remote Users Inject SQL Commands and Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
CProxy Input Validation Hole Discloses Files to Remote Users and Lets Remote Users Crash the Service. Read more

www.securitytracker.com:
Golden FTP Server Buffer Overflow in USER Command Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
auraCMS Discloses Path to Remote Users and Permits Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Foxmail Server Buffer Overflow in USER Command Lets Remote Users Execute Arbitrary Code. Read more

www.idefense.com:
Computer Associates License Client and Server Invalid Command Buffer Overflow. Read more

www.idefense.com:
Computer Associates License Client PUTOLF Buffer Overflow. Read more

www.idefense.com:
Computer Associates License Client PUTOLF Directory Traversal. Read more

www.idefense.com:
Computer Associates License Client/Server GETCONFIG Buffer Overflow. Read more

www.idefense.com:
Computer Associates License Client/Server GCR Network Buffer Overflow. Read more

www.idefense.com:
Computer Associates License Client/Server GCR Checksum Buffer Overflow. Read more

 

News
www.zdnet.com.au:
Better security not about tech: Mitnick. Read more

www.securityfocus.com:
Hacker helps business school applicants get early decision. Read more

news.xinhuanet.com:
Microsoft unveils new technologies, targeting worms, hackers. Read more

www.crime-research.org:
Microsoft products fail spyware tests. Read more

news.zdnet.com:
Fixing a hole in security. Read more

www.vnunet.com:
Auto download adware carries vicious payload. Read more

news.zdnet.com:
Windows for supercomputers likely out by fall. Read more

news.zdnet.co.uk:
Antivirus patent granted. Read more

news.zdnet.co.uk:
Security firm in email deletion fiasco. Read more

news.zdnet.co.uk:
SurfControl buys anti-spyware tools. Read more

www.securitypipeline.com:
Microsoft Plays High-Stakes Poker With Customer Security. Read more

03 March 2005

Guides, Papers, etc
www.pcworld.com:
Spyware Stoppers. Renegade programs can slip onto your system in an instant-and they can be maddeningly difficult to banish. Read more

www.securityfocus.com:
Where is Google Headed? Read more

ittraining.lse.ac.uk:
Guide to Sensitive Information. Read more

www.cs.uccs.edu:
The 1st International Workshop on Security in Systems and Networks (SSN2005). Read more

www.debarry2.com.br:
Divide And Conquer - HTTP response Splitting, Web Cache poisoning attacks, And related topics. Read more

 

Vulnerabilities & Exploits
www.k-otik.com:
HP OpenVMS 6.x/7.x Local Privilege Escalation Vulnerability. Read more

www.k-otik.com:
Computer Associates License Software Multiple Vulnerabilities. Read more

www.k-otik.com:
Foxmail Email Server "USER" Command Remote Buffer Overflow. Read more

www.k-otik.com:
ProjectBB Cross Site Scripting and SQL Injection Vulnerabilities. Read more

www.k-otik.com:
auraCMS Cross Site Scripting and HTML Injection Vulnerabilities. Read more

www.k-otik.com:
Trillian PNG Image File Processing Buffer Overflow Vulnerability. Read more

www.securitytracker.com:
OpenVMS Unspecified Bug Lets Local Users Access Privileged Files and Resources. Read more

www.securitytracker.com:
Woltlab Burning Board Missing Input Validation in 'userid' and 'lastvisit' Cookies Permits SQL Injection. Read more

www.securitytracker.com:
Forumwa Input Validation Errors in 'search.php' Let Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
D-forum Input Validation Holes Permit Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
PHPNews 'auth.php' Include File Flaw Lets Remote Users Execute Arbitrary Code. Read more

 

News
seattletimes.nwsource.com:
Bill Gates adds role of knight to r�sum�. Read more

informationweek.com:
Microsoft Wins Reversal On Browser Technology Patent Ruling. Read more

www.redherring.com:
Symantec�s new patent. Read more

www.vnunet.com:
Bagle.dldr Trojan runs riot. Read more

seattlepi.nwsource.com:
Spam filters may lead scientists to AIDS vaccine. Read more

arstechnica.com:
Microsoft scores victory in Eolas patent case appeal. Read more

www.pcworld.com:
New Bagle Variant Combines Spam, Trojan Horses. Read more

www.theregister.co.uk:
BitDefender bug bites GFI. Read more

www.pacificatribune.com:
Jef Raskin, creator of the Macintosh computer, dies at 61. Read more

informationweek.com:
Phishers Would Face 5 Years Under New Bill. Read more

informationweek.com:
8 More Bugs Found In Firefox And Mozilla. Read more

02 March 2005

Guides, Papers, etc
www.webappsec.org:
The Insecure Indexing Vulnerability -Attacks Against Local Search Engines. Read more

www.webappsec.org:
The 80/20 Rule for Web Application Security. Read more

www.securityfocus.com:
Apache 2 with SSL/TLS: Step-by-Step, Part 3. Read more

pages.cpsc.ucalgary.ca:
Creating a Secure Computer Virus Laboratory. Read more

www.foo.be:
A reversed approach to security - Deeper malware analysis (practical session). Read more

How secure is your computer?
�Honey pot� experiment shows unprotected Windows SP 1 at risk. Read more

 

Tools
www.idefense.com:
An internal iDEFENSE Labs tool, IDA Sync, has been released as open source and available for download from the software page. IDA Sync was written to allow multiple analysts to synchronize their reverse engineering efforts with IDA Pro in real time. Read more

trifinite.org:
Blooover is a tool that is intended to serve as an audit tool that people can use to check whether their phones and phones of friends and employees are vulnerable.

 

Vulnerabilities & Exploits
www.idefense.com:
RealNetworks RealPlayer .smil Buffer Overflow Vulnerability. Read more

www.securitytracker.com:
OpenBSD Validation Error in copy(9) Has Unspecified Impact. Read more

www.securitytracker.com:
ProjectBB Input Validation Holes Permit SQL Injection and Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
CuteNews Input Validation Holes in HTTP Header Parameters Let Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
phpCOIN Input Validation Holes Permit SQL Injection and Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Symantec Nexland Router Incorrect SMTP Routing May Send Mail via Untrusted Networks. Read more

 

News
www.theregister.co.uk:
Microsoft to end 64-bit Windows endurance test in one month. Read more

www.theregister.co.uk:
Bagle variants served up with spam. Read more

news.com.com:
Watchdog-attacking Bagle ramps up. Read more

www.vnunet.com:
Fourth Bagle variant spotted today. Read more

www.thejournalnews.com:
Hackers invaded state Web sites 72 times in five years. Read more

www.cio-today.com:
Patches Likely To Cause Headaches. Read more

news.com.com:
Microsoft: Activation shift won't be a pain. Read more

www.eweek.com:
Windows Media Player Update Fails Spyware Infection Test. Read more

news.com.com:
Analyst: Hidden costs in security breaches. Read more

news.com.com:
An Oscar surprise: Vulnerable phones. Read more

www.vnunet.com:
Zafi-D and Netsky top virus charts. Read more

www.vnunet.com:
Paris Hilton hack highlights security failure. Read more

www.vnunet.com:
Porn plummets as spammers clean up. Read more

www.pcworld.com:
New Tool Gives the Scoop on Snoops. Read more

01 March 2005

Guides, Papers, etc
www.oreillynet.com:
Please stop working on content-based spam filtering. Read more

 

Vulnerabilities & Exploits
www.securitytracker.com:
SafeHTML Lets Users Bypass the Filtering With Decimal HTML Entities and \x00 Symbols. Read more

www.securitytracker.com:
bsmtpd May Let Remote Users Execute Arbitrary Commands. Read more

www.k-otik.com:
phpBB Administrator Session Handling Critical Security Update. Read more

www.k-otik.com:
BadBlue "mfcisapicommand" Remote Buffer Overflow Vulnerability. Read more

www.k-otik.com:
Cmd5checkpw "Poppasswd" Local Privilege Escalation Vulnerability. Read more

www.k-otik.com:
CIS WebServer Remote Directory Traversal Vulnerability. Read more

www.k-otik.com:
FreeNX X Server Local Authentication Bypass Vulnerability. Read more

seclists.org:
FullDisclosure: Badblue HTTP Server, ext.dll buffer overflow. Read more

 

News
www.theregister.co.uk:
Webcam Trojan perv gets slapped wrist. Read more

news.zdnet.co.uk:
SP2 to be forced out. Read more

www.theregister.co.uk:
eBay provides backdoor for phishers. Read more

www.pcworld.idg.com.au:
New Bagle Trojan on the loose. Read more

www.vnunet.com:
Phishers chip away at web security. Read more

www.theregister.co.uk:
Opera beefs up browser to thwart phishers. Read more

www.newsfactor.com:
Microsoft Grapples with Internet Security Beast. Read more

news.zdnet.co.uk:
Microsoft suing Israeli spammer. Read more

news.zdnet.co.uk:
Spamming tool goes on the run. Read more

news.zdnet.co.uk:
Australian Cabir infestation reported. Read more


Copyright� MegaSecurity.org