Bookmark or link to: www.kobayashi.cjb.net. All other url`s could change!
News Archive    Translate Traducen
News June 2002
30 June 2002

New Trojans:
Optix Lite Firewall Bypass

Basic Hell 1.0

Pizza Server

Vulnerabilities & Exploits:
online.securityfocus.com:
Macromedia JRun Administrative Authentication Bypass Vulnerability. Read more

online.securityfocus.com:
Windows Media Player WMDM Privilege Escalation Vulnerability. Read more

online.securityfocus.com:
Summit Computer Networks Lil' HTTP Server URLCount.CGI Cross Site Scripting Vulnerability. Read more

www.securitytracker.com:
ColdFusion MX Buffer Overflow When Used With Microsoft Internet Information Server (IIS) Lets Remote Users Crash the IIS Web Server. Read more

www.securitytracker.com:
AnalogX SimpleServer:Shout Streaming Audio Server Buffer Overflow May Give Remote Users System Level Access on the Server. Read more

www.securitytracker.com:
Decfingerd Honeypot Finger Server May Let Remote Users Execute Commands on the System. Read more

www.securitytracker.com:
Cisco PIX Firewall Can Be Crashed By Remote Users Scanning the SSH Port. Read more

www.securitytracker.com:
Cisco 11000 Series Content Service Switches Can Be Crashed By Remote Users Scanning the SSH Port. Read more

www.securitytracker.com:
Cisco Catalyst 6000 Can Be Crashed By Remote Users Scanning the SSH Port. Read more

News:
www.cnet.com:
Online hacker raids bank accounts. Read more

timesofindia.indiatimes.com:
Sing bank accounts raided by hacker. Read more

online.securityfocus.com:
Irresponsible Disclosure. Read more

www.neowin.net:
Security or let microsoft own your pc?! Read more

interviews.slashdot.org:
IBM Kernel Hackers Respond. Read more

www-106.ibm.com:
Analyzing selected network attacks. Read more

www-106.ibm.com:
Utilising remote registry access. Read more

enterprisesecurity.symantec.com:
Business Systems Open to Hacking WAR Mongers. Read more

www.cnn.com:
Vietnam seeks to monitor customers at Internet cafes. Read more

www.msnbc.com:
House OKs Internet child-porn ban. Read more

29 June 2002

New Trojans:
Farnaz

DarkScan 1.0

SohoAnywhere

Sood Server

Tool:
Stealth Tools 2.0 FE by Gobo. Read more

Vulnerabilities & Exploits:
www.securiteam.com:
PsyBNC DoS Exploit Code (Long Password). Read more

www.securiteam.com:
Wu-FTPd Exploit code. Read more

www.securiteam.com:
Telindus Router 10xx and 11xx Remote Exploit. Read more

www.westpoint.ltd.uk:
Macromedia JRun Admin Server Authentication Bypass. Read more

www.westpoint.ltd.uk:
'WEB-INF' Folder accessible in Multiple Web Application Servers. Read more

online.securityfocus.com:
Windows Media Player Playlist HTML Script Execution Vulnerability. Read more

online.securityfocus.com:
Rlaj WhoIs Remote Shell Command Execution Vulnerability. Read more

www.securiteam.com:
Scanning for Cisco Provided SSH Can Cause a Crash. Read more

www.securiteam.com:
Falsifying a VeriSign Seal (Japan). Read more

www.securiteam.com:
Multiple Vendors' Domain Name System (DNS) Stub Resolvers Vulnerable to Buffer Overflow. Read more

www.securiteam.com:
Lil' HTTP Server urlcount.cgi CSS. Read more

www.securiteam.com:
Buffer Overflow in AnalogX SimpleServer:Shout. Read more

www.securiteam.com:
How to Reproduce the OpenSSH Overflow (Challenge Response Handling). Read more

www.securiteam.com:
PSReal, Hidden Process Revealer. Read more

www.securitytracker.com:
Windows Media Player May Let Remote Users Execute Code on a Target User's Computer or Let Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
Microsoft Commerce Server Buffer Overflows and Other Flaws Let Remote Users Execute Arbitrary Code with LocalSystem Privileges. Read more

www.securitytracker.com:
Apache mod_ssl 'Off-by-One' Bug May Let Local Users Crash the Web Server or Possibly Execute Arbitrary Code. Read more

www.securitytracker.com:
Libc Buffer Overflow in gethostnamadr() and getnetnamadr() Functions May Let Remote Users Execute Arbitrary Code. Read more

News:
techrepublic.com:
Polymorphic Simile.D virus could be a watershed event. Read more

zdnet.com.com Watch out for new Apache worm. Read more

www.cnet.com:
New Apache worm starts to spread. Read more

apache.slashdot.org:
Apache Worm in the Wild. Read more

arstechnica.infopop.net:
Webserver worm comes to Apache. Read more

www.theregister.co.uk:
GamesSpy and KaZaA infected by viruses. Read more

linuxtoday.com:
InternetNews.com: Is Microsoft's Palladium a Trojan Horse? Read more

itmanagement.earthweb.com:
Users Urge Disclosure of Security Flaws. Read more

www.it-director.com:
FBI nets broadband hackers. Read more

www.azcentral.com:
Poland hunts hacker who penetrated NASA, caused $1 million in damage. Read more

www.silicon.com:
Nasa on the track of Polish hacker. Read more

www.theregus.com:
Soon al-Qaeda will kill you on the Internet. Read more

www.theregus.com:
MS patches Media Player secure music vulnerability. Read more

www.theregus.com:
Hotmail blindsided by Yaha-E virus. Read more

www.fcw.com:
IBM takes on homeland security. Read more

28 June 2002

New Trojans:
Polymorphic Downloader 1.0 by Aphex.
This will generate a web downloader using random data and a variable size that you can edit.
There are trillions of possible servers.

G�tyka SPY 2.60

Aphex WebDownloader 0.7.0 Lite. Server only 536 bytes!

Pornu Server

Vulnerabilities & Exploits:
online.securityfocus.com:
Multiple Vendor BSD libc DNS Lookup Buffer Overflow Vulnerability. Read more

www.securitytracker.com:
Sendmail Mail Server 'Theoretical' Buffer Overflow May Allow Remote Users to Execute Arbitrary Code. Read more

www.securitytracker.com:
Sun Solaris 'rcp' Remote Copy Utility May Allow Local Users to Obtain Root Privileges. Read more

www.securitytracker.com:
(Caldera Issues Fix for UnixWare/Open UNIX) CDE 'dtprintinfo' Buffer Overflow in Search Feature Lets Local Users Gain Root Privileges. Read more

www.securitytracker.com:
Caucho Resin 'HelloServlet' Example Code Discloses Web Directory Path to Remote Users. Read more

www.securitytracker.com:
NetWare DHCP Server Can Be Rebooted By Remote Users Issuing Malformed DHCP Requests. Read more

www.securitytracker.com:
NetWare FTP Server Format String Flaw Lets Remote Users Crash the Entire Server. Read more

www.securitytracker.com:
Sun Solaris 'adb' Debugger May Let Local Users Trigger a Kernel Panic. Read more

www.securitytracker.com:
Sun Solaris Operating System Console Can Be Crashed By Local Users. Read more

www.securiteam.com:
OpenSSH Vulnerabilities in Challenge Response Handling. Read more

www.securiteam.com:
Unchecked Buffer in Profile Service Could Allow Code Execution in Commerce Server. Read more

News:
www.guardian.co.uk:
US fears al-Qaida hackers will hit vital computer networks. Read more

zdnet.com.com:
Gamers, beware--Nimda could be lurking. Read more

news.com.com:
Nimda worm feeds on popular game site. Read more

www.businessweek.com:
Yaha Worm Takes Out Pakistan Government's Site. Read more

zdnet.com.com:
Microsoft stomps on Media Player bug. Read more

news.com.com:
Microsoft paves over media player flaws. Read more

www.iht.com:
Microsoft security: Will it be different this time? Read more

zdnet.com.com:
OpenSSH security hole unearthed. Read more

www.cnet.com:
Sun joins Microsoft on Web services security effort. Read more

rtnews.globetechnology.com:
Poland hunts hacker who cracked NASA. Read more

www.finance-now.co.uk:
Inland Revenue fears hackers. Read more

27 June 2002

New Trojans:
Remote Hack 1.5d

RC

DTR 1.0 Server

Vulnerabilities & Exploits:
online.securityfocus.com:
Microsoft Internet Explorer CLASSID Denial of Service Vulnerability. Read more

online.securityfocus.com:
ht://Dig htsearch Cross Site Scripting Vulnerability. Read more

www.securitytracker.com:
SGI NetVisualyzer 'nveventd' Configuration Flaw May Allow Local Users to Write to Any File on the System to Gain Root Access. Read more

www.securitytracker.com:
HP-UX Samba Common Internet File System (CIFS) Client Buffer Overflow May Let Local Users Obtain Elevated Privileges on the System. Read more

www.securitytracker.com:
Microsoft Internet Explorer Can Be Crashed By Malicious AVI Object in HTML. Read more

www.securitytracker.com:
Verity Search97 Search Engine Input Validation Flaw Lets Remote Users Conduct Cross-site Scripting Attacks Against Users of Web Sites Running Search97. Read more

www.securitytracker.com:
Unspecified Vulnerability is Reported in OpenSSH That May Allow Remote Users to Gain Root Access to the System. Read more

News:
Microsoft Security Bulletin MS02-032
26 June 2002 Cumulative Patch for Windows Media Player (Q320920). Read more

Microsoft Security Bulletin MS02-033
Unchecked Buffer in Profile Service Could Allow Code Execution in Commerce Server (Q322273). Read more

www.washingtonpost.com:
Cyber-Attacks by Al Qaeda Feared. Read more

www.nandotimes.com:
Microsoft discloses security flaws. Read more

www.siliconvalley.com:
Microsoft discloses security flaws in Media Player software. Read more

www.washingtonpost.com:
Microsoft Wants Security Hard-Wired in Your Computer. Read more

theregus.com:
Hotmail blindsided by Yaha-E virus. Read more

theregus.com:
OpenSSH hits the fan. Read more

www.cnn.com:
Web site exposes credit card fraud. Read more

www.bday.co.za:
Making hackers' lives difficult. Read more

theregus.com:
Mitnick testimony burns Sprint in Vegas 'vice hack' case. Read more

www.silicon.com:
UK students warned: 'Watch out for ID theft'. Read more

www.businessinsurance.com:
Near North suing ex-employees over hacking. Read more

26 June 2002

New Trojans:
CyberSpy 1.3 version b

Lithium 1.00

Undernet (b) Server

Tool:
www.eeye.com:
Apache Chunked Scanner from eEye Digital Security. Read more

Vulnerabilities & Exploits:
www.cqure.net:
The Netware FTP server has a DOS vulnerability. Read more

www.cqure.net:
The Netware DHCP server has a DOS vulnerability. Read more

online.securityfocus.com:
HP CIFSLogin Buffer Overflow Vulnerability. Read more

online.securityfocus.com:
PHPSquidPass Index.PHP Unauthorized User Deletion Vulnerability. Read more

www.securiteam.com:
Resin Path Disclosure (HelloServlet). Read more

www.securiteam.com:
Upcoming OpenSSH Vulnerability (Privileges Separation). Read more

www.securiteam.com:
4D DoS and Buffer Overflow Vulnerability (Long HTTP Request). Read more

www.securitytracker.com:
YaBB Bulletin Board Lets Remote Users Conduct Cross-site Scripting Attacks Against YaBB Users. Read more

www.securitytracker.com:
phpSquidPass Authentication Software Design Error May Let Remote Authenticated Users Overwrite Certain Other User Accounts. Read more

www.securitytracker.com:
Pirch 98 Internet Relay Chat (IRC) Client Buffer Overflow May Execute Remotely Supplied Arbitrary Code. Read more

News:
www.linuxsecurity.com:
A Guide to Building Secure Web Applications and Web Services: Introduction. Read more

www.nwfusion.com:
Is VoIP vulnerable? Read more

www.siliconvalley.com:
Nationwide alert warns of university computer infiltration by Russian mob. Read more

www.siliconvalley.com:
Computer virus scares: Help or hype? Read more

www.businessweek.com:
Mitnick Testifies Against Sprint in Vice Hack Case. Read more

www.usatoday.com:
Power grid vulnerable to attack, report warns. Read more

www.eweek.com:
IT Pros Predict Major Cyber-Attack. Read more

www.thisislondon.co.uk:
Security messages posted on Net. Read more

25 June 2002

New Trojans:
Aphex WebDownloader 0.6.0 Lite. Only 700 bytes!

Troj2k Server

Slayv Axis

Tomek

Vulnerabilities & Exploits:
www.debian.org:
remote exploit for OpenSSH. Read more

online.securityfocus.com:
Working Resources BadBlue EXT.DLL Cross Site Scripting Vulnerability. Read more

online.securityfocus.com:
SalesCart Shop.MDB Customer Database Disclosure Vulnerability. Read more

online.securityfocus.com:
Sun Solaris RCP Command Line Argument Buffer Overflow Vulnerability. Read more

online.securityfocus.com:
Apache Web Server HTAccess DATE_LOCALE Environment Variable Buffer Overflow Vulnerability. Read more

online.securityfocus.com:
GameCheats Advanced Web Server Malformed HTTP Request Denial Of Service Vulnerability. Read more

online.securityfocus.com:
DPGS Form Field Input Validation Vulnerability. Read more

online.securityfocus.com:
Pirch IRC Client Malformed Link Denial of Service Vulnerability. Read more

www.securiteam.com:
Additional Information on MSSQLXML ISAPI Overflow and Cross-Site Scripting. Read more

www.securiteam.com:
Simpleinit File Descriptor Security Vulnerability. Read more

www.securiteam.com:
Sharity Cifslogin Buffer Overflow (Arguments). Read more

www.securitytracker.com:
AdvServer Web Server Can Be Crashed By Remote Users Sending a Single CR/LF Sequence. Read more

News:
Microsoft Security Bulletin MS02-022
Unchecked Buffer in MSN Chat Control Can Lead to Code Execution (Q321661). Read more

www.washingtonpost.com:
Microsoft Discloses Security Project. Read more

www.nandotimes.com:
Microsoft working on secure Windows area for privy information. Read more

www.eweek.com:
Microsoft Touts Security Initiative. Read more

www.pcmag.com:
More on Outlook E-Mail Security. Read more

zdnet.com.com:
Your PC is under attack. Read more

www.nzherald.co.nz:
Fast modems a hacker's heaven. Read more

rootprompt.org:
Hacking CGI - Security and Exploitation. Read more

www.byte.com:
Security and Viruses. Read more

zdnet.com.com:
You need more than a firewall to stop hackers. Read more

zdnet.com.com:
New Windows lock could be leaky. Read more

24 June 2002

New Trojans:
Glacier 1.2

Katux Latinus 1.0

CFour Server

Vulnerabilities & Exploits:
www.lwfug.org:
The Linux Virus Writing HOWTO
post link-time code modification of ELF executables under Linux/i386. Read more

www.securiteam.com:
Multiple Exploit Codes for Apache Chunked Buffer Vulnerability. Read more

www.securiteam.com:
AdvServer Denial of Service Attack. Read more

www.securiteam.com:
Interbase malloc() Security Issues (INTERBASE). Read more

www.securiteam.com:
Mandrake MSec Security Issue. Read more

www.securiteam.com:
YaBB Cross-Site Scripting Vulnerability (NULL). Read more

www.securiteam.com:
DPGS Allows Any File to Be Overwritten. Read more

www.securiteam.com:
Xitami Errors.gsl Script Injection Vulnerabilities (GSL). Read more

www.securitytracker.com:
SGI IRIX 'xfsmd' Daemon RPC Authentication Weaknesses May Let Remote Users Gain Root Access on the System. Read more

www.securitytracker.com:
BEA WebLogic Server Lets Remote Users Bypass Access Controls to Access Protected Web Pages By Using Forward Slashes in URLs. Read more

News:
www.theregister.co.uk:
MS to micro-manage your computer. Read more

www.ntsecurity.net:
Microsoft's Secret Plan to Secure the PC. Read more

www.manchesteronline.co.uk:
Police in corporate hacker crackdown. Read more

23 June 2002

New Trojans:
Regap Server

Romort

DeadCow Server

Tools:
freshmeat.net:
BlackHole Spam/Virus Filter 0.9.104 (Stable). Read more

freshmeat.net:
FIAIF is an Intelligent Firewall 1.0.0rc1. Read more

www.citi.umich.edu:
Systrace - Interactive Policy Generation for System Calls. Read more

Vulnerabilities & Exploits:
online.securityfocus.com:
YaBB Invalid Topic Error Page Cross Site Scripting Vulnerability. Read more

www.securiteam.com:
SalesCart Database Storage Insecurity. Read more

www.securiteam.com:
Pirch 98 Link Handling Buffer Overflow. Read more

www.securiteam.com:
DoS on IRSSI. Read more

www.securiteam.com:
IRIX rpc.xfsmd Multiple Remote Root Vulnerabilities. Read more

www.securitytracker.com:
Adobe Acrobat Reader for Linux Uses Unsafe Temporary Files. Read more

www.securitytracker.com:
Linksys EtherFast Cable/DSL Routers May Allow Remote Administration Even When This Feature is Disabled. Read more

www.securitytracker.com:
Sun Solaris 2.6 Discloses Portions of the OS Memory to Local Users. Read more

www.securitytracker.com:
Apache Tomcat Java Server for Windows Can Be Crashed By Remote Users Sending Malicious Requests to Hang All Available Working Threads. Read more

News:
www.techfocus.org:
Filipino claims authorship of first jpeg virus. Read more

www.vnunet.com:
Flaws, hacks and patches. Read more

www.vnunet.com:
Bug Watch: Ethical hackers expose legal flaws. Read more

timesofindia.indiatimes.com:
Kremlin says new Web site hacker proof. Read more

22 June 2002

New Trojans:
OMPN Magic

DarkFace 2.0

Winshell 5.0

Vulnerabilities & Exploits:
online.securityfocus.com:
GOST 34.19-2001 Standard Implementation El Gamal Signature Weakness. Read more

online.securityfocus.com:
SGI IRIX rpc.xfsmd Remote Command Execution Vulnerability. Read more

online.securityfocus.com:
Apache Tomcat Null Character Malformed Request Denial Of Service Vulnerability. Read more

online.securityfocus.com:
SGI IRIX rpc.xfsmd Weak Authentication Vulnerability. Read more

online.securityfocus.com:
Adobe Acrobat Reader Insecure Temporary File Creation Vulnerability. Read more

online.securityfocus.com:
APC PowerChute Plus Insecure Shared Folder Permission Vulnerability. Read more

www.securitytracker.com:
Microsoft Word Documents May Execute Remotely Supplied Macro Code Under Certain Conditions. Read more

www.securitytracker.com:
Microsoft Excel Spreadsheet May Execute Remotely Supplied Macro Code Within Malicious Documents. Read more

www.securitytracker.com:
BlackICE Agent Default Configuration Lets Remote Users Consume a Large Amount of Memory on the Target Host, Causing Temporary Denial of Service Conditions. Read more

www.securitytracker.com:
IRSSI IRC Client Can Be Crashed By Remote Users Sending a Specially Crafted Channel Topic Name. Read more

www.securitytracker.com:
Cisco ONS Optical Transport Platform Timing Control Card Can Be Continually Reset By Remote Users, Causing Denial of Service. Read more

www.securitytracker.com:
Microsoft SQL Server 2000 Buffer Overflow in OpenDataSource() Function May Let Remote Users Gain SYSTEM Privileges on the Server. Read more

www.securitytracker.com:
Apache Tomcat Java Server May Disclose the Installation Path to Remote Users. Read more

www.securiteam.com:
Buffer Overflow in UNIX VPN Client. Read more

www.securiteam.com:
Cisco VPNclient Buffer Overflow. Read more

News:
www.it-director.com:
Apache exploit on the warpath. Read more

linuxtoday.com:
CNET News: Study: Equal Security in All Software. Read more

linuxtoday.com:
ZDNet: Is Red Hat Going to be the Next Microsoft? Read more

www.infoworld.com:
McAfee's virus judgement questioned. Read more

www.pcworld.com/:
Veracity of JPEG Virus Questioned. Read more

www.idg.net:
Users question JPEG virus, McAfee stands firm. Read more

www.silicon.com:
Kremlin impervious to hack attacks. Read more

zdnet.com.com:
School hackers may face Secret Service. Read more

21 June 2002

New Trojans:
Acidsena Server

Web Server Lite

Digitalhand 1.0

Tool:
Bound File Extractor is a small program which will allow you to turn a bound file back into separate files.
A bound file is the output from a binder program and contains multiple exe's all wrapped up into one.
Made by mf4. Download

Vulnerabilities & Exploits:
online.securityfocus.com:
Multiple Browser Malformed PNG Image Memory Corruption Vulnerability. Read more

online.securityfocus.com:
Apache Tomcat Web Root Path Disclosure Vulnerability. Read more

online.securityfocus.com:
Microsoft SQL MS Jet Engine Unicode Buffer Overflow Vulnerability. Read more

online.securityfocus.com:
Cisco ONS15454 Non-Zero TOS Bit Denial Of Service Vulnerability. Read more

www.securiteam.com:
TrACESroute GOLD Local Format String Exploit. Read more

www.securiteam.com:
XSS in Audiogalaxy.com. Read more

www.securiteam.com:
Vulnerabilities Found in Telindus 11xx Router Series. Read more

www.securiteam.com:
Xitami Web Server Plaintext Administrator Password Storage. Read more

www.securiteam.com:
Insecure Temporary Files in Acrobat Reader. Read more

www.securitytracker.com:
Procmail Heap Overflow May Let Local Users Gain Elevated Privileges on the System. Read more

www.securitytracker.com:
'ppptalk' Utility on Caldera (SCO) UnixWare and Open UNIX Lets Local Users Grab Root Privileges. Read more

www.securitytracker.com:
Mandrake Linux OS Default Installation Uses Insecure File Permissions on User Directories. Read more

www.securitytracker.com:
4D Web Server Buffer Overflow in Processing Long HTTP Requests May Let Remote Users Execute Arbitrary Code or Crash the Service. Read more

www.securitytracker.com:
Borland InterBase Buffer Overflow May Be Triggered By Local Users to Gain Root Access. Read more

www.securitytracker.com:
Macromedia JRun Java Engine Can Be Crashed in a Multi-user Environment By One User's Malicious Code. Read more

www.securitytracker.com:
Jakarta Tomcat JSP Engine Can Be Crashed in a Multi-user Environment By One User's Malicious Code. Read more

www.securitytracker.com:
Mozilla Mail Download Can Be Crashed By Remote Users Sending Malicious E-mail via POP3. Read more

www.securitytracker.com:
Netscape Communicator Mail Download Can Be Crashed By Remote Users Sending Malicious E-mail via POP3. Read more

News:
www.pcworld.com:
Worm Targets Apache Flaw. Read more

www.osopinion.com:
Security Flaws Continue To Be Issue for Microsoft. Read more

www.spokesmanreview.com:
Judge takes byte out of local hackers. Read more

www.silicon.com:
BT attacked by potty-mouthed hacker. Read more

www.thejakartapost.com:
Fighting cyber crimes. Read more

20 June 2002

New Trojans:
Turkish Port Trojan 1.2 Bonus

Qroject Webdownloader 1.0

Moonpie 1.41

Vulnerabilities & Exploits:
eyeonsecurity.net:
Bypassing JavaScript Filters � the Flash! Attack. Read more

Internet Security Systems Security Alert:
Apache HTTP Server Exploit in Circulation. Read more

www.securiteam.com:
TrACESroute GOLD Local Format String Exploit. Read more

online.securityfocus.com:
HP MPE/iX Malformed SNMP Vulnerability. Read more

online.securityfocus.com:
MetaLinks MetaCart2.SQL Database Disclosure Vulnerability. Read more

online.securityfocus.com:
Interbase GDS_Drop Interbase Environment Variable Buffer Overflow Vulnerability. Read more

www.securiteam.com:
Vulnerabilities Found in Telindus 11xx Router Series. Read more

www.securiteam.com:
Lumigent Log Explorer Extended Stored Procedures Buffer Overflow. Read more

www.securiteam.com:
DeepMetrix LiveStats JavaScript Injection. Read more

www.securiteam.com:
My Postcards' Magiccard.cgi Directory Traversal Vulnerability. Read more

www.securiteam.com:
WebBBS Remote Command Execution. Read more

www.securiteam.com:
BasiliX Multiple Vulnerabilities (File Attachments, Privacy, SQL Injection). Read more

www.securitytracker.com:
phpBB Input Validation Error in 'install.php' Lets Remote Users Execute Arbitrary PHP Code and System Commands on the Server. Read more

www.securitytracker.com:
osCommerce e-Commerce Shopping Cart Software Lets Remote Users Execute Arbitrary PHP Code and System Commands on the Server. Read more

www.securitytracker.com:
Cisco uBR7100/7200 Series Cable Modem Routers Have Integrity Verification Flaw That Lets Remote Users Load Alternate Configurations on the Router. Read more

www.securitytracker.com:
PHP Address Allows Remote Users to Execute Arbitrary PHP Code on the Server. Read more

www.securitytracker.com:
NETGEAR Web Safe Router Default Configuration May Let Remote Users Gain Administrative Access to the Device. Read more

www.securitytracker.com:
webMathematica Input Validation Error Discloses Arbitrary Files on the System to Remote Users. Read more

www.securitytracker.com:
ZyXEL Prestige Router Management Ports Can Be Crashed By Remote Users Sending Malformed Packets with TCP SYN and ACK Flags Both Set. Read more

www.securitytracker.com:
Apache Web Server Chunked Encoding Flaw May Let Remote Users Execute Arbitrary Code on the Server. Read more

www.securitytracker.com:
Sympoll PHP-based Voting Script Bug Lets Remote Users Gain Administrator Access to the Script. Read more

www.securitytracker.com:
Zeroboard Web Forum Software Lets Remote Users Execute Arbitrary PHP on the Server. Read more

www.securitytracker.com:
Resin Web Server Discloses Files on the System to Remote Users and Allows Remote Users to Crash the Server. Read more

News:
Microsoft Security Bulletin MS02-031
Cumulative Patches for Excel and Word for Windows (Q324458). Read more

online.securityfocus.com:
Game Consoles -- the Next Hacker Target? Read more

www.nextgenss.com:
OpenDataSource Buffer Overflow. Read more

news.bbc.co.uk:
Pro-Islamic hackers join forces. Read more

www.theregister.co.uk:
US cyber security may draft ISPs in spy game. Read more

www.silicon.com:
BT attacked by potty-mouthed hacker. Read more

europe.cnn.com:
Experts warn of cyber security holes. Read more

www.usatoday.com:
Security flaws continue to plague Microsoft. Read more

www.siliconvalley.com:
American tech alliance's security plan attacked. Read more

www.smh.com.au:
The politics of security flaws. Read more

zdnet.com.com:
Hacking's not just for geeks anymore. Read more

19 June 2002

New Trojans:
AntiLamer Light 1.0

DLP

AIM Jacker 2.0

Tools:
rnmap.sourceforge.net:
Remote Nmap (Rnmap) package contains both client and server programs. Actual idea for this sofware is that various clients can connect to one centralized Rnmap server and do their portscannings. Version 0.8 released. Read more

www.remote-exploit.org:
Wellenreiter is a wireless network sniffer. However, unlike other similar products it also includes a new and unique ESSID-bruteforcing feature. The bruteforce functionality needs at least 2 Cisco cards. One card will constantly sniff and the other will try to bruteforce the ESSID. Wellenreiter-v14 released. Read more

Vulnerabilities & Exploits:
online.securityfocus.com Caucho Technology Resin Server View_Source.JSP Arbitrary File Disclosure Vulnerability. Read more

online.securityfocus.com Caucho Technology Resin Server Denial Of Service Vulnerability. Read more

online.securityfocus.com Apache Chunked-Encoding Memory Corruption Vulnerability. Read more

online.securityfocus.com My Postcards MagicCard.CGI Arbitrary File Disclosure Vulnerability. Read more

httpd.apache.org:
Apache Web Server Chunk Handling Vulnerability. Read more

www.securitytracker.com:
PHP Classifieds Lets Remote Users Conduct Cross-site Scripting Attacks Against PHP Classifieds Users. Read more

www.securitytracker.com:
Marconi (Fore) ATM Switches Can Be Crashed By Remote Users Sending a Single 'Land' Packet to the Switch. Read more

www.securitytracker.com:
Cgiemail Web Mail System May Let Remote Users Relay Mail Via the System. Read more

www.securitytracker.com:
Mewsoft NetAuction Allows Cross-site Scripting Attacks Against NetAuction Users. Read more

www.securiteam.com:
<BODY>Builder SQL modification. Read more

www.securiteam.com:
Cable Modem Termination System Authentication Bypass. Read more

www.securiteam.com:
MetaCart eCommerce Systems Database Exposure. Read more

www.securiteam.com:
PHP Source Injection in PHP-Address. Read more

www.securiteam.com:
Malicious PHP Source Injection in phpBB (install.php). Read more

www.securiteam.com:
PHP Source Injection in osCommerce. Read more

www.isqa.unomaha.edu:
Computer Hacking & Cybercrime The Law Hacking Tools Hacking Tools (PDF). Read more

www.sans.org:
SANS GIAC Intrusion Detection Curriculum. Read more

News:
www.pcmag.com:
The Graphics Virus: No Red Alert. Read more

zdnet.com.com:
Report: Viruses spreading on the double. Read more

www.cnet.com:
Security firm sees bumper crop of worms. Read more

www.thisislondon.com:
Boy of 17 hacks into missile secrets. Read more

digitalmass.boston.com:
Hole in Web software shows lack of coordination in computer security disclosures. Read more

www.crn.com:
Secret Service Agent: Hackers Are Unpatriotic. Read more

www.neowin.net:
Hackers cripple US news sites. Read more

zdnet.com.com:
Uncle Sam to IT: Help fight cybercrime. Read more

zdnet.com.com:
'Mod' squad hacks away at Xbox. Read more

18 June 2002

New Trojans:
RMF_FN 1.1

SweetHeart Skyfire

AIMaster 3.0

Vulnerabilities & Exploits:
online.securityfocus.com:
Microsoft Internet Explorer CSSText Bold Font Denial Of Service Vulnerabilit. Read more

Internet Security Systems Security Advisory:
Heap Overflow in IIS HTR Chunked Encoding. Read more

www.securiteam.com:
Directory Traversal in Wolfram Research's webMathematica. Read more

www.securiteam.com:
IE Gopher View Cross Site Scripting. Read more

www.securiteam.com:
IE CSS Parsing Error (cssText). Read more

www.securiteam.com:
Console Java Applications can Leak Passphrases on Windows. Read more

www.securiteam.com:
Resin DOS device Denial of Service. Read more

www.securiteam.com:
Resin Large Parameter Denial of Service. Read more

www.securiteam.com:
Resin view_source.jsp Arbitrary File Reading. Read more

www.securiteam.com:
Remote Compromise Vulnerability in Apache HTTP Server (Chunked Encoding). Read more

www.securitytracker.com:
Cisco Secure Access Control Server (ACS) Input Validation Flaw Lets Remote Users Conduct Cross-site Scripting Attacks Against ACS Administrators. Read more

www.securitytracker.com:
QNX Real Time Operating System Buffer Overflows Let Local Users Gain Elevated Privileges. Read more

News:
www.smh.com.au:
Major security hole found in APache. Read more

www.osopinion.com:
Hackers Do Not Break, They Build. Read more

zdnet.com.com:
Microsoft tightens security for Wi-Fi. Read more

www.foxnews.com:
Foxnews.com, Other Sites Attacked. Read more

www.vnunet.com:
Hackers cripple US news sites. Read more

timesofindia.indiatimes.com:
Hackers, porn and pirates add to ISP woes. Read more

www.vnunet.com:
DNS default helps hackers. Read more

desmoinesregister.com:
Unwanted spam e-mail messages swell in number, bring frustration. Read more

17 June 2002

New Trojans:
Lan Bypasser

China 1.1

Terminal Server

Tools:
ngrep 1.40.1 - network grep
ngrep strives to provide most of GNU grep's common features, applying them to the network layer. ngrep is a pcap-aware tool that will allow you to specify extended regular or hexadecimal expressions to match against data payloads of packets. It currently recognizes TCP, UDP and ICMP across Ethernet, PPP, SLIP, FDDI, Token Ring and null interfaces, and understands bpf filter logic in the same fashion as more common packet sniffing tools, such as tcpdump and snoop. Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
Microsoft SQL Server Buffer Overflow in 'pwdencrypt()' Function May Let Remote Authorized Users Execute Arbitrary Code. Read more

www.securitytracker.com:

www.securitytracker.com:
Xitami Web Server GSL Templates Contain Unspecified Security Flaw. Read more

www.securitytracker.com:
Lumigent Log Explorer Buffer Overflow May Let Remote Users Crash the Microsoft SQL Server Service or Execute Arbitrary Code on the System. Read more

www.securitytracker.com:
Compaq Insight Manager May Include a Vulnerable Default Configuration of Microsoft MSDE/SQL Server That Allows Remote Users to Execute Commands on the System. Read more

www.securitytracker.com:
nCipher CodeSafe Java Incompatibility May Leak Smart Card Passphrases to the User's Operating System Shell. Read more

www.securitytracker.com:
BODYBuilder Java-based Site Building Engine Input Validation Hole Lets Remote Users Execute Arbitrary SQL Commands on the Database. Read more

www.securiteam.com:
Heap Overrun in HTR Chunked Encoding Could Enable Web Server Compromise. Read more

www.securiteam.com:
Unchecked Buffer in Remote Access Service Phonebook Could Lead to Code Execution. Read more

News:
The Commoner's Virus.
Despite its virulence, the Klez worm is ignored by the newspapers and dismissed by the digerati. Could the demographics of its victims be a factor? Read more

www.cnet.com:
IBM software aims to shut down "drive-by hacking". Read more

www.networkcomputing.com:
Time to Smarten Up About Security. Read more

www.idg.net:
Homeland Security Page Sucks. Read more

www.naplesnews.com:
Computer hackers opening door wider to ID thefts. Read more

www.channelnewsasia.com:
Philippines' first ever anti-hacking case goes to trial. Read more

www.haaretzdaily.com:
Hackers break into eMap website. Read more

www.startribune.com:
Colleges are defending against computer hacker attacks. Read more

asia.internet.com:
Virus Capable Of Corrupting Image Files Found. Read more

asia.internet.com:
Soccer And Shakira's Fans, Be Warned. Read more

16 June 2002

New Trojans:
Bushtrommel TNG 1.0

G-Hack 1.4

WebDownloader Illwill 1.0

Tools:
qb0x.net:
boegADT Library is a buffer overflow exploit generator Abstract Data Type.
The intention of this library is to make possible that anyone can write an exploit without knowledge of the techniques. Read more

Vulnerabilities & Exploits:
online.securityfocus.com:
MIT CGIEmail Arbitrary Recipient Mail Relay Vulnerability. Read more

online.securityfocus.com:
Lumigent Log Explorer XP_LogAttach Buffer Overflow Vulnerability. Read more

online.securityfocus.com:
Lumigent Log Explorer XP_LogAttach_SetPort Buffer Overflow Vulnerability. Read more

online.securityfocus.com:
Microsoft SQL Server 2000 PWDEncrypt Buffer Overflow Vulnerability. Read more

online.securityfocus.com:
Seunghyun Seo MSN666 Remote Buffer Overflow Vulnerability. Read more

online.securityfocus.com:
Lumigent Log Explorer XP_LogAttach_StartProf Buffer Overflow Vulnerability. Read more

www.securiteam.com:
Cross-Site Scripting in Cisco Secure ACS. Read more

www.securiteam.com:
Fore/Marconi ATM Switch 'land' Vulnerability. Read more

www.securiteam.com:
IGMP Denial of Service Vulnerability. Read more

www.securiteam.com:
Buffer Overflow in Microsoft Rasapi32.dll. Read more

www.securiteam.com:
Zeroboard PHP Source Injection. Read more

www.securitytracker.com:
MSN666 Sniffer For MSN Messenger Traffic Has Buffer Overflow That Lets Remote Users Execute Arbitrary Code on the Sniffer to Gain Root Access. Read more

www.securitytracker.com:
Macromedia ColdFusion May Let One User's JSP Code Gain Unauthorized Access to Another User's Data on a Shared Server. Read more

www.securitytracker.com:
Util-linux 'simpleinit' Component Leaves Open File Descriptor in Some Child Processes, Letting Local Users Gain Root Privileges. Read more

www.securitytracker.com:
Active! mail Web-based E-mail System Will Pass Scripts Embedded Within the Header to Be Executed on the Recipient's Web Browser. Read more

www.securitytracker.com:
AnalogX SimpleServer:WWW Web Server Can Be Crashed By Remote Users. Read more

News:
Microsoft Security Bulletin MS02-027
Unchecked Buffer in Gopher Protocol Handler Can Run Code of Attacker's Choice (Q323889). Read more

www.business.scotsman.com:
Hacking it on the right side of the fence. Read more

www.theregister.co.uk:
Entercept hardens anti-hacker blockades. Read more

www.thisislondon.com:
Boy of 17 hacks into missile secrets. Read more

www.cw360.com:
McAfee: Now image files face virus threat. Read more

timesofindia.indiatimes.com:
MS released software with Nimda virus. Read more

15 June 2002

New Trojans:
AutoSpY 1.2 Appocalipse

THC Server

Assasin 1.0

Tool:
ettercap.sourceforge.net:
Ettercap 0.6.6.6 Released. Ettercap is a multipurpose sniffer/interceptor/logger for switched LAN. It supports active and passive dissection of many protocols. Read more

Vulnerabilities & Exploits:
online.securityfocus.com:
TransWare Active Mail HTML Injection Vulnerability. Read more

www.securitytracker.com:
'mmftpd' FTP Server Format String Hole Lets Remote Users Execute Arbitrary Commands to Gain User-Level Access on the Operating System. Read more

www.securitytracker.com:
Microsoft Remote Access Service (RAS) Phonebook Buffer Overflow May Let Local Users Execute Arbitrary Code with Local System Privileges. Read more

www.securitytracker.com:
Microsoft SQLXML Component of Microsoft SQL Server 2000 Contains an Input Validation Flaw in an XML SQL Tag That Allows Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Microsoft SQLXML Component of Microsoft SQL Server 2000 Contains a Buffer Overflow That Lets Remote Users Take Full Control of the System. Read more

www.securitytracker.com:
Microsoft Internet Information Server (IIS) Heap Overflow in HTR ISAPI Extension While Processing Chunked Encoded Data Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
IRCIT Internet Relay Chat (IRC) Client Buffer Overflow Lets Remote IRC Servers Execute Arbitrary Code on the Client. Read more

www.securitytracker.com:
MakeBook Guestbook and Storybook CGI Script Allows Remote Users to Inject SSI Commands and Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
'mmmail' POP3 and SMTP Mail Server Format String Flaw Lets Remote Users Execute Arbitrary Commands to Gain Access to the Server. Read more

www.securiteam.com:
CRLF Injection. Read more

News:
members.tripod.com:
Infecting Picture Files : A Desperate Approach. Read more

support.microsoft.com:
Inert Virus Found in Korean Language Version of Visual Studio .NET. Read more

www.newsfactor.com:
Microsoft Mistakenly Ships Nimda Worm with Software. Read more

www.computerworld.com:
Microsoft patches developer software infected with Nimda worm. Read more

www.eweek.com:
Flaw Puts SQL Servers at Risk. Read more

www.eweek.com:
Klez and KaZaA Viruses Stay Pesky. Read more

www.usatoday.com:
Computer viruses cross picture barrier. Read more

www.eweek.com:
Microsoft Mends More Security Flaws. Read more

www.computerworld.com:
South Africa's domain administrator hides key file. Read more

www.computerworld.com:
Spam, viruses hit bottom line in U.S. Read more

14 June 2002

New Trojans:
Jokers FTP

NMBK Server

Whomp Downloader 1.0

Tools:
www.insecure.org:
Nmap 2.54BETA35 released. Read more

www.kryptocrew.de:
The Bruteforce Exploit Detector is a perl script that remotely detects unknown buffer overflow vulnerabilities in FTP, SMTP, and POP daemons. Read more

razor.bindview.com:
Fenris is a multipurpose tracer, GUI debugger, stateful analyzer and partial decompiler intended to simplify bug tracking, security audits, code, algorithm, protocol analysis and computer forensics - providing a structural program trace, interactive debugging capabilities, general information about internal constructions, execution path, memory operations, I/O, conditional expressions and much more. Read more

News:
Activex startup method used in subseven 2.2 by HeAdpUtTy. Read more

online.securityfocus.com:
Apache Tomcat JSP Engine Denial of Service Vulnerability. Read more

online.securityfocus.com:
Macromedia JRun JSP Engine Denial Of Service Vulnerability. Read more

online.securityfocus.com:
CGIScript.net CSNews Sensitive File Disclosure Vulnerability. Read more

online.securityfocus.com:
CGIScript.net csNews Header File Type Restriction Bypass Vulnerability. Read more

online.securityfocus.com:
CGIScript.net csNews Double URL Encoding Unauthorized Administrative Access Vulnerability. Read more

online.securityfocus.com:
MMFTPD SysLog Format String Vulnerability. Read more

www.securitytracker.com:
MyHelpdesk Input Validation Holes Let Remote Users Execute Arbitrary SQL Commands and Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Microsoft Proxy Server Buffer Overflow in Processing Gopher Protocol Responses Allows Remote Users to Execute Code on the Server to Gain Full Control of the Server. Read more

www.securitytracker.com:
Microsoft Internet Security and Acceleration Server (ISA) Buffer Overflow in Processing Gopher Protocol Responses Allows Remote Users to Execute Code on the Server to Gain Full Control of the Server. Read more

www.securitytracker.com:
csNews Web-News CGI Script Access Control Flaws Let Remote Users View Sensitive Data, Including User Passwords, Modify Administrative Settings, and Execute Commands on the Server. Read nore

www.securitytracker.com:
Belkin Cable/DSL Router Modifies IP Source Addresses on Packets Destined for Internal Hosts. Read more

www.securitytracker.com:
Caldera/SCO OpenServer Xsco Utility Heap Overflow May Let Local Users Gain Root Privileges. Read more

www.securiteam.com:
Oracle Reports Server Buffer Overflow. Read more

www.securiteam.com:
Oracle TNS Listener Buffer Overflow. Read more

www.securiteam.com:
mmmail POP3-SMTP Daemon Format String Vulnerability. Read more

www.securiteam.com:
mmftpd FTP Daemon Format String Vulnerability. Read more

news.com.com:
New virus communicates by pictures. Read more

www.nandotimes.com:
New computer virus could attack image files. Read more

afr.com:
New 'Perrun' virus warning. Read more

www.cnet.com:
Computer photo file virus discovered, no spreading. Read more

www.vnunet.com:
Sneaky worm on the move. Read more

seattletimes.nwsource.com:
Microsoft's Web-site software vulnerable to hacking. Read more

www.theregister.co.uk:
MS security hole extravaganza. Read more

www.pcworld.com:
Microsoft Patches Four More Security Flaws. Read more

13 June 2002

New Trojans:
AIMaster 2.0

Project Mayhem 1.0

JoTroj 1.0

News:
Microsoft Security Bulletin MS02-028
Heap Overrun in HTR Chunked Encoding Could Enable Web Server Compromise (Q321599). Read more

Microsoft Security Bulletin MS02-029
Unchecked Buffer in Remote Access Service Phonebook Could Lead to Code Execution (Q318138). Read more

Microsoft Security Bulletin MS02-030
Unchecked Buffer in SQLXML Could Lead to Code Execution (Q321911). Read more

www.eeye.com:
Windows 2000 and NT4 IIS .HTR Remote Buffer Overflow. Read more

www.nextgenss.com:
Oracle 9iAS Reports Server. Read more

www.nextgenss.com:
Oracle TNS Listener Buffer Overflow. Read more

online.securityfocus.com:
RHMask Local File Overwrite Vulnerability. Read more

online.securityfocus.com:
Caldera OpenServer XSCO Color Database File Heap Overflow Vulnerability. Read more

online.securityfocus.com:
BizDesign ImageFolio Authorized User Web Root Disclosure Vulnerability. Read more

online.securityfocus.com:
MyHelpDesk HTML Injection Vulnerability. Read more

online.securityfocus.com:
MyHelpDesk Cross-Site Scripting Vulnerability. Read more

online.securityfocus.com:
MyHelpDesk SQL Injection Vulnerability. Read more

online.securityfocus.com:
W-Agora Remote File Include Vulnerability. Read more

online.securityfocus.com:
Lokwa BB Multiple SQL Injection Vulnerabilities. Read more

www.securitytracker.com:
Red Hat Distribution of LPRng Print Spooler Has Default Configuration That Allows Any Remote User to Submit a Print Job. Read more

www.securitytracker.com:
AlienForm2 CGI Script For Mailing Web Form Data Discloses Files to Remote Users and Lets Remote Users Write to Arbitrary Files. Read more

www.securitytracker.com:
Mozilla Web Browser Bug in Processing Stylesheets May Let Remote Users Crash the Browser. Read more

www.securitytracker.com:
zenTrack Project Management Software May Disclose the Installation Path to Remote Users. Read more

www.securitytracker.com:
Twibright Labs' Links Web Browser May Execute Arbitrary Code When Viewing Malformed PNG Images. Read more

www.securitytracker.com:
vBulletin PHP-based Forum Software Has Unspecified Security Flaw in the 'db_mysql.php' Module. Read more

www.securitytracker.com:
Datalex BookIt! Consumer Discloses a User's Password to Local or Remote Users. Read more

www.securitytracker.com:
Geeklog Web Portal Software Permits Cross-Site Scripting Attacks and May Allow Remote Users to Execute Arbitrary SQL Commands on the Database Server. Read more

zdnet.com.com:
Microsoft's Gopher hole deepens. Read more

www.zdnet.com:
Serious MS security hole... AOL picks IE... CD piracy on the rise...Read more

www.crn.com:
Microsoft Discloses Security Flaw In Web Server. Read more

www.theregus.com:
Credit-card hackers stung with bogus IIS 'sploit. Read more

www.theregus.com:
Feds, industry battle the biggest network bug. Read more

www.cw360.com:
Better the devil you know. Read more

news.bbc.co.uk:
Hacker watches Nato spy pictures. Read more

www.wired.com:
Virus Girl Finds Hacker Boyfriend. Read more

12 June 2002

New Trojans:
Aphex's Remote Packet Sniffer 0.3.3

Kraimer 1.2

AIMVision 1.2

News:
online.securityfocus.com:
X-Windows Oversized Font Denial Of Service Vulnerability. Read more

online.securityfocus.com:
Geeklog pid CGI Variable SQL Injection Vulnerability. Read more

online.securityfocus.com:
Geeklog Multiple Cross Site Scripting Vulnerabilities. Read more

www.securiteam.com:
ZenTrack System Information Path Disclosure Vulnerability. Read more

www.securiteam.com:
Datalex BookIt! Consumer Password Vulnerabilities. Read more

www.securiteam.com:
SCO OpenServer Xsco Heap Overflow. Read more

www.securiteam.com:
Multiple Security Issues in Geeklog (XSS, SQL Inject). Read more

www.securitytracker.com:
ImageFolio Multi-media Management Software Access Control Flaw Lets Remote Users Reindex the Database and Add User Accounts. Read more

www.nst.com.my:
Najib outlines cyberspace threat to military networks. Read more

www.computerworld.com:
Clarke: Homeland security revamp to help cybersecurity. Read more

www.networknews.co.uk:
Complex Linux virus warning. Read more

rootprompt.org:
How Hackers Do It: Tricks, Tools, and Techniques. Read more

www.cnet.com:
Secure network spending seen over $46 bln by 2006. Read more

www.salon.com:
A new teenage wasteland? Read more

www.networknews.co.uk:
Hacker duo continues cyber assault. Read more

news.bbc.co.uk:
Q&A: A snooper's charter? Read more

11 June 2002

New Trojans:
Shang 1.5

Katux Latinus 1.02

TheefLE 1.0

Tools: sourceforge.net:
New version (1.2.5) of NMapWin released. Read more

verein.lst.de:
Traceroute without s bit. Read more

News:
online.securityfocus.com:
Pine Unix Username Account Information Leakage Vulnerability. Read more

www.securitytracker.com:
Lokwa BB Bulletin Board Bugs Let Remote Authenticated Users Read Private Messages and Also Execute SQL Commands on the Database. Read more

www.securitytracker.com:
W-Agora Web Forum Software Lets Remote Users Execute Arbitrary PHP Code on the Server. Read more

www.securitytracker.com:
SEANOX's Devwex Web Server Discloses Files Located Outside of the Web Root Directory to Remote Users and Allows Remote Users to Crash the Web Server. Read more

www.securitytracker.com:
php(Reactor) Web Site Software Allows Remote Users to Conduct Cross-Site Scripting Attacks to Steal Authentication Cookies. Read more

www.securitytracker.com:
Bugzilla Bug Tracking System Has a Variety of Bugs Including Cross-Site Scripting Flaws and Access Control Errors. Read more

www.msnbc.com:
Hiding (and Seeking) Messages on the Web. Read more

news.com.com:
Old code in Windows is security threat. Read more

www.linuxsecurity.com:
Flying Pigs: Snorting Next Generation Secure Remote Log Servers over TCP. Read more

www.infoworld.com:
President's cyber advisor outlines security plan. Read more

www.internet-magazine.com:
Hacker target sets up own security portal. Read more

www.startribune.com:
A glimpse of the world of teen-age hackers. Read more

english.peopledaily.com.cn:
China on Alert for 'Chinese Hacker' Virus. Read more

www.extremetech.com:
Virus Defense Gets Fortified. Read more

news.zdnet.co.uk:
Hackers earn their place in history. Read more

10 June 2002

New Trojans:
Aphex's WebDownloader 0.5.0

Pest 1.0

Kraimer 1.1

News:
www.securiteam.com:
Ciscokill Exploit Code Released. Read more www.securiteam.com:
Linksys Cable/DSL 4port Exposure Issue. Read more

www.securiteam.com:
eDonkey 2000 URL Buffer Overflow. Read more

www.securiteam.com:
Buffer Overflow in MSIE Gopher Code. Read more

www.securiteam.com:
IE 'Folder View for FTP sites' Script Execution Vulnerability. Read more

www.securiteam.com:
SeaNox Devwex Denial of Service and Directory Traversal. Read more

www.securiteam.com:
Slurp News Retriever Remote Format String Vulnerability. Read more

www.securiteam.com:
SCO OpenServer Crontab Format String Vulnerability. Read more

news.com.com:
Old code in Windows is security threat. Read more

news.bbc.co.uk:
America's most powerful spy agency. Read more

www.time.com:
Cracks in the System. Read more

www.zdnet.com:
Beware Kazaa... Security worth every penny... Ballmer's mission...Read more

www.networkcomputing.com:
Review: Hardened Linux Puts Hackers EnGarde. Read more

09 June 2002

New Trojans:
Aphex's WebDownloader 0.4.0. Server is only 1 KB.

Aphex's Remote Packet Sniffer 0.3.1

DataRape 1.0f

News:
online.securityfocus.com:
SGI MediaMail Memory Corruption Vulnerability. Read more

www.securitytracker.com:
Voxel Dot Net's CBMS ISP Billing Management System Has Input Validation Bugs That Let Remote Authenticated Users Conduct Cross-Site. Read more

www.securitytracker.com:
Splatt Forum Web Bulletin Board Input Validation Flaw in Filtering Image Tags Lets Remote Users Conduct Cross-Site Scripting Attacks to Steal Other Users' Authentication Cookies. Read more

www.securitytracker.com:
Micrsofot ASP.NET Buffer Overflow in Processing Cookies in StateServer Mode May Let Remote Users Crash the Service or Execute Arbitrary Code on the Server. Read more

www.securitytracker.com:
SGI's MediaMail E-mail Application Bug May Let Local Users Cause a Core Dump. Read more

www.securitytracker.com:
TrACESroute Utility Format String Hole May Let Local Users Gain Root Access. Read more

www.securitytracker.com:
MetaMachine's 'eDonkey' File Sharing Software Has a Buffer Overflow May Let Remote Create URLs That Will Cause Arbitrary Arbitrary Code to Be Executed When Loaded. Read more

www.securitytracker.com:
Microsoft Internet Explorer May Execute Remotely Supplied Scripting in the My Computer Zone if FTP Folder Viewing is Enabled. Read more

www.securitytracker.com:
BlackICE Agent Firewall Software May Fail to Perform Firewall Functions After Being in Standby Mode. Read more

www.securiteam.com:
QNX Multiple Security Vulnerabilities (ptrace, SIGSEGV, phgrafx, phlocale). Read more

www.securiteam.com:
Mnews Exploit Code Released. Read more

freshmeat.net:
FIAIF is an Intelligent Firewall 0.9.7-5. Read more

freshmeat.net:
NetBoz Firewall 1.0. Read more

www.startribune.com:
A glimpse of the world of teen-age hackers. Read more

www.extremetech.com:
Can Hackers "Explorer" Your Computer? Read more

www.pcw.co.uk:
High school hackers make the grade. Read more

net-security.org:
Historical database password retrieved. Read more

www.usatoday.com:
Hacker story leads to subpoena drama. Read more

www.idg.net:
New IE flaw enables remote PC attacks. Read more

www.theregister.co.uk:
Security through obsolescence. Read more

08 June 2002

New Trojans:
Digital Spawn (fake)

Silent Spy 2.02

AIMaster 1.0

News:
Microsoft Security Bulletin MS02-026
Unchecked Buffer in ASP.NET Worker Process (Q322289). Read more

online.securityfocus.com:
Microsoft Internet Explorer FTP Web View Cross Site Scripting Vulnerability. Read more

online.securityfocus.com:
Internet Security Systems BlackICE Agent Failure To Reactivate After Suspending Vulnerability. Read more

www.securitytracker.com:
Microsoft Internet Explorer Buffer Overflow in Processing Gopher Protocol Responses Allows Remote Users to Execute Code on the Victim's Computer. Read more

www.securitytracker.com:
Microsoft Windows Help System Buffer Overflows in 'htctrl.ocx' ActiveX Control May Let Remote Users Execute Arbitrary Code on a Target User's Computer By Sending Malicious HTML. Read more

www.securitytracker.com:
Microsoft Internet Explorer Allows HTML-Delivered Compiled Help Files to Be Automatically Executed on the Target User's Computer. Read more

www.securitytracker.com:
Telindus 11xx Routers Disclose the Admin Password to Remote Users and Also Let Remote Users Gain Administrative Control. Read more

www.securitytracker.com:
Oracle Reports Server Buffer Overflow May Let Remote Users Execute Arbitrary Code, Possibly With SYSTEM Level Privileges. Read more

www.securitytracker.com:
Oracle Database TNS Listener Buffer Overflow Lets Remote Users Crash the Server and Possibly Execute Arbitrary Code. Read more

www.securitytracker.com:
Certain Versions of Cisco IOS Routers Can Be Crashed By Remote Users Conducting Port Scans. Read more

www.securitytracker.com:
Red-M 1050 Access Point Wireless Bluetooth Gateway Lets Remote Users Deny Service, Conduct Brute Force Password Guessing Attacks, and Possibly Hijack Administrative Sessions. Read more

www.securitytracker.com:
Solaris 'in.lpd' Printer Daemon Lets Remote Users Gain Root Level Access on the System. Read more

www.securitytracker.com:
LogiSense DNS Manager System Has Input Validation Flaw That Allows Remote Users to Gain Access to the Application and Possibly Execute Arbitrary Commands. Read more

www.securitytracker.com:
LogiSense Hawk-i Customer Management Software Has Input Validation Flaw That Allows Remote Users to Gain Access to the Application and Possibly Execute Arbitrary Commands. Read more

www.securitytracker.com:
SGI IRIX 'rpc.passwd' Utility May Allow Remote Users to Gain Root Privileges on the Operating System. Read more

www.vnunet.com:
Shakira worm on the loose. Read more

www.sun-sentinel.com:
Hacking puts 4,500 students' grades in doubt. Read more

www.vnunet.com:
High school hackers make the grade. Read more

www.vnunet.com:
Hacker group defaces naval websites. Read more

www.vnunet.com:
Archive worker takes password to the grave. Read more

www.businessweek.com:
Download Sites Hacked, Source Code Backdoored. Read more

zdnet.com.com:
New viruses aim to cross multi platforms. Read more

04 June 2002

Due to personal circumstances, I will not be able to update this web site for a while.
I hope to be back soon.
M_R

New trojans:
Aphex's Remote Packet Sniffer 0.2.0

DTr 1.4.2

Fearless Webdownloader 2.0

Tron

Gargamel 1.0

G-Spot Bot 1.5

Ruler 1.42

Sparta 1.1

03 June 2002

New trojans:
Iowa Webdownloader 1.0

Smoke Downloader 1.0

DLX Webdownloader

News:
www.securitytracker.com:
Next Generation POSIX Threading (NGPT) Shared Memory Implementation May Allow Local Users to Deny Service on the System. Read more

www.securitytracker.com:
Charities.cron Script May Allow Local Users to Gain Elevated Privileges By Causing Files to Be Overwritten. Read more

www.securitytracker.com:
Mnews E-mail and News Reader Has Buffer Overflows That May Allow Local Users to Gain Elevated Privileges and Remote Users to Gain Access to the System. Read more

www.securitytracker.com:
Shambala Server Discloses Clear Text Passwords to Authenticated Remote Users Via FTP and Also Lets Remote Users Crash the Web Server. Read more

www.securitytracker.com:
Sun Ray Server With Non-Smartcard Mobility Feature May Allow Remote Users with XDMCP Clients to Login to an Arbitrary Users' Sun Ray Server Account. Read more

www.securitytracker.com:
Advanced Maryland Automatic Network Disk Archiver (AMANDA) Buffer Overflows May Let Remote Users and Certain Local Users Gain Root Access. Read more

www.securitytracker.com:
phpBB Image Tag Filtering Hole Lets Remote Users Conduct Cross-Site Scripting Attacks Against phpBB Users. Read more

www.smh.com.au:
Virus affects both Windows and Linux. Read more

biz.thestar.com.my:
Teenage hackers threat to executives. Read more

www.newsday.com:
Philadelphia man sentenced in library hacking case. Read more

hoovnews.hoovers.com:
E-mail in business: an indispensable tool but a dangerous toy. Read more

news.scotsman.com:
Rogues on the web. Read more

hoovnews.hoovers.com:
WIRED SOCIETY:'Genius' tale shows ignorance of cybercrime. Read more

02 June 2002

New trojans:
Aphex's WebDownloader 0.3.0. Server only 3 KB

Silent Spy 2.01

Trillian Rape 1.0

Tools:
razor.bindview.com:
Fenris is a multipurpose tracer, GUI debugger, stateful analyzer and partial decompiler intended to simplify bug tracking, security audits, code, algorithm, protocol analysis and computer forensics - providing a structural program trace, interactive debugging capabilities, general information about internal constructions, execution path, memory operations, I/O, conditional expressions and much more. Read more

www.remote-exploit.org:
Wellenreiter is a GTK/Perl program that makes the discovery and auditing of 802.11b wireless networks much easier. Read more

wpoison.sourceforge.net:
WPoison is a tool for discovering SQL-Injection related vulnerabilities on remote web servers. Read more

News:
online.securityfocus.com:
Fragroute/Dsniff/Fragrouter Configure Script Trojan Horse Vulnerability. Read more

online.securityfocus.com:
Evolvable Shambala Server FTP Server Directory Traversal Vulnerability. Read more

online.securityfocus.com:
Evolvable Shambala Server Web Server Denial Of Service Vulnerability. Read more

www.securiteam.com:
AIM+ Found to Contain a SpyWare. Read more

www.securiteam.com:
Multiple Security Vulnerabilities in QNX (dumper, monitor, crttrap). Read more

www.securiteam.com:
Shambala Server Directory Traversal and DoS. Read more

www.securiteam.com:
cURL Remote Exploit Code Released. Read more

www.securiteam.com:
Windows 2000 Server IIS 5.0 .ASP Overflow Exploit. Read more

www.securitytracker.com:
IBM Informix SE Database Buffer Overflow in Processing the 'INFORMIXDIR' Environment Variable May Allow Local Users to Obtain Root Privileges. Read more

www.securitytracker.com:
csPassword Script May Disclose Passwords to Local or Remote Users. Read more

www.securitytracker.com:
Quantum 'Snap Server' Network Attached Storage Device Can Be Crashed By Remote Users. Read more

www.securitytracker.com:
FileZilla FTP Server Discloses Files Outside of the Root FTP Directory to Remote Users. Read more

www.securitytracker.com:
Tcpdump Sniffer Has Buffer Overflow in the Processing of NFS Packets That Allows Remote Users to Crash the Sniffer. Read more

www.securitytracker.com:
Firestorm Network Intrusion Detection System (NIDS) Can Be Crashed By Remote Users Sending Malformed IP Options. Read more

www.securitytracker.com:
ECS K7S5A Mainboard Lack of Access Control on Boot Menu Lets Physically Local Users Make Unauthorized Changes to the Boot Process. Read more

www.securitytracker.com:
HP Software Distributor 'swinstall' Hole Lets Local Users View Files That They Are Not Privileged to View. Read more

www.wired.com:
FBI Blunders on Terror E-Mails. Read more

www.wired.com:
Busy Year for Big Brother. Read more

01 June 2002

New trojans:
AutoSpY 1.4

NewFuture 1.0 beta 2

Theef 1.37

News:
pedram.redhive.com:
Users of AIM+ are unwittingly sharing information about themselves every time they connect to AOL. Read more

online.securityfocus.com:
CGIScript.net csPassword.CGI HTPasswd File Disclosure Vulnerability. Read more

online.securityfocus.com:
HP-UX SD Data View Denial Of Service Vulnerability. Read more

online.securityfocus.com:
CGIScript.net csPassword.CGI Password.CGI.TMP File Disclosure Vulnerability. Read more

online.securityfocus.com:
TCPDump Malformed NFS Packet Buffer Overflow Vulnerability. Read more

online.securityfocus.com:
IBM Informix SE sqlexec Buffer Overflow Vulnerability. Read more

online.securityfocus.com:
CGIScript.net csPassword.CGI Information Disclosure Vulnerability. Read more

online.securityfocus.com:
CGIScript.net csPassword.CGI HTAccess File Modification Vulnerability. Read more

online.securityfocus.com:
Apache Tomcat Example Files Web Root Path Disclosure Vulnerability. Read more

online.securityfocus.com:
Apache Tomcat RealPath.JSP Malformed Request Information Disclosure Vulnerability. Read more

online.securityfocus.com:
Apache Tomcat Source.JSP Malformed Request Information Disclosure Vulnerability. Read more

online.securityfocus.com:
Autorun Arbitrary File Read Vulnerability. Read more

www.securitytracker.com:
Kismet Wireless Network Sniffing Software May Let Local Users Gain Root Access or Remote Users Execute Arbitrary Code on the System. Read more

www.securitytracker.com:
Microsoft Exchange 2000 Flaw in Processing a Certain Malformed SMTP Command Allows Remote Users to Deny Service to the Server. Read more

www.securitytracker.com:
FreeBSD /etc/rc Startup Script Unsafely Deletes Temporary Files When Booting, Allowing Local Users to Cause Arbitrary Directory Contents to Be Deleted. Read more

www.securitytracker.com:
FreeBSD Kernel Bug in 'accept_filtering()' Function Allows Remote Users to Cause Denial of Service Conditions. Read more

www.securitytracker.com:
Jakarta Tomcat Java Server Default Installation Sample Pages Disclose Information to Remote Users. Read more

www.securitytracker.com:
Gafware CFXImage Cold Fusion Tag Software Has Module ('showtemp.cfm') That Discloses Files on the System to Remote Users. Read more

www.securitytracker.com:
Novell NetWare Enterprise Web Server Default Files Disclose Server Information to Remote Users. Read more

www.securitytracker.com:
Macromedia JRun Java Server Host Header ISAPI DLL Buffer Overflow Lets Remote Users Execute Arbitrary Code with SYSTEM Level Privileges to Take Full Control of the System. Read more

online.securityfocus.com:
Klez-H tops virus charts - again. Read more

linuxtoday.com:
Linux.Simile: Windows Virus that Affects Linux Too? Read more

news.zdnet.co.uk:
When hacking competitions go wrong. Read more

www.sfgate.com:
Pleasant Hill hacker draws feds' attention. Read more

www.internetwk.com:
Windows XP Service Pack To Let Users 'Unbundle' Five MS Apps. Read more

zdnet.com.com:
FBI: Cybercrime is now a 'top 10 priority'. Read more

www.idg.net:
Court shuts cyberscam. Read more


Copyright� MegaSecurity.org