Bookmark or link to: www.kobayashi.cjb.net. All other url`s could change!
Home   News Archive    Translate Traducen
News July 2002
30 July 2002

New Trojans:
R0xR4t 1.0 Beta 1

Kryptonic Ghost 0.4b

Cabronator 1.0

Tools:
www.taltech.com:
TALBreakout! software is a powerful serial diagnostics tool to allow the user to easily debug 2-way serial communications. Read More

freshmeat.net:
BlackHole Spam/Virus Filter 0.9.121 (Stable). Read More

Vulnerabilities & Exploits:
www.securitytracker.com:
Microsoft Outlook Express Flaw in Parsing XML Using Internet Explorer Allows a Remote User to Silently Deliver and Install an Executable on a Target User's Computer. Read More

www.iss.net:
Linux tip flock() /var/log/acculog denial of service. Read More

www.securitytracker.com:
phpBB Bulletin Board 'Gender Mod' Profile Modification Input Validation Flaw Lets Remote Authenticated Users Gain Administrative Privileges on the Bulletin Board. Read More

www.securitytracker.com:
D-Link DP-300+ Print Server Can Be Crashed By Remote Users. Read More

www.securitytracker.com:
Lucent Access Point Routers Can Be Crashed By Remote Users Sending a Large HTTP GET Request to the Web Management Interface. Read More

www.securitytracker.com:
Brother NC-3100h Print Server Can Be Crashed By Remote Users Sending a Large Password to the Web Interface. Read More

www.securitytracker.com:
Easy Guestbook CGI Script Access Validation Flaw Gives Remote Users Administrative Access. Read More

www.securitytracker.com:
Easy Homepage Creator Access Control Flaw Lets Remote Users Edit Other Users' Home Pages. Read More

www.securitytracker.com:
HP ProCurve Switch Can Be Crashed By Remote Users Attempting to Set a Particular SNMP Write Variable. Read More

www.securitytracker.com:
HP Printers Running JetDirect Disclose Administrative Passwords to Remote Users. Read More

www.securitytracker.com:
HP ChaiVM Java Virtual Machine Access Control Flaws Let Users Add, Delete, and Modify Chai Services. Read More

www.securitytracker.com:
Cisco IOS Buffer Overflow in Processing TFTP File Names May Let Remote Users Cause IOS-based Devices to Crash. Read More

www.securitytracker.com:
SEH IC-9 Pocket Print Server Can Be Crashed By Remote Users Sending a Large Password to the Web Interface. Read More

www.securitytracker.com:
Lucent (Ascend) Pipeline Router Discloses System Information to Remote Users via Undocumented Protocol. Read More

www.securitytracker.com:
Lucent (Ascend) MAX Universal Gateway Discloses System Information to Remote Users via Undocumented Protocol. Read More

www.securitytracker.com:
Lucent VPN Firewall Brick Weakness in Processing the ARP Protocol Lets Remote Users on the Local Network Disrupt Management Communications. Read More

www.securiteam.com:
Brother NC-3100h Buffer Overflow Vulnerability. Read More

www.securiteam.com:
phpBB's Gender Mod Allows Gaining Administrative Privileges. Read More

News:
www.usatoday.com:
Klez: The computer worm that keeps on giving. Read More

www.theregister.co.uk:
Wi-Fi honeypots a new hacker trap. Read More

www.vnunet.com:
Bin Laden hunt enters cyberspace. Read More

www.varbusiness.com:
Finding Linux Security Holes. Read More

seattletimes.nwsource.com:
Cyberinsurance may cover damage of computer woes. Read More

www.fcw.com:
Rep. Smith sounds cyberalarm. Read More

www.wired.com:
Fluffy Bunny No Longer Energized. Read More

www.dallasnews.com:
Prying Princeton officers focused on 2. Read More

www.infoworld.com:
Microsoft taps academics on security. Read More

29 July 2002

New Trojans:
EES Polymorphic Downloader

LANfiltrator Beta 4

QRoject WebDownloader 2.0 (a)

Tools:
www.nmapwin.org:
NMapWin1.2.13 released. Read More

freshmeat.net:
Linux Firewall 2.0rc3. Read More

freshmeat.net:
FIAIF is an Intelligent Firewall 1.1.3. Read More

Vulnerabilities & Exploits:
online.securityfocus.com:
Cisco IOS TFTP Server Long File Name Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
SEH IC9 Pocket Print Server Web Administrative Interface Password Denial Of Service Vulnerability. Read More

www.securitytracker.com:
OpenRatings Voting Software Input Validation Flaw Lets Remote Users Execute Arbitrary SQL Statements on the System. Read More

www.securitytracker.com:
Confixx Service Provider Customer Management Interface May Let Remote Users Execute Arbitrary Commands on the System. Read More

www.securitytracker.com:
Ipswitch IMail Server Buffer Overflow in Web Messaging Daemon Lets Remote Users Execute Arbitrary Code and Gain System Level Access. Read More

www.securitytracker.com:
SSH Communications SSH Secure Shell on IBM AIX Systems Lets Authenticated Remote Users Escape Their 'chroot' Directory. Read More

www.securitytracker.com:
Jana Server Has Multiple Buffer Overflows and Other Bugs That Allow Remote Users to Crash the Server. Read More

News:
www.computeruser.com:
Gates pushes Microsoft's .NET strategy. Read More

www.bayarea.com:
Hacking, hijacking our rights. Read More

www.smh.com.au:
Secure site seals may be misleading: Netcraft. Read More

www.computeruser.com:
Computer Associates proxy fight ends. Read More

www.computeruser.com:
Critics blast IT Loophole in Homeland Security plan. Read More

28 July 2002

New Trojans:
Silent Spy 2.08

Pinochet 1.01

R0xr4t 1.0

Tools:
alpinista.dyndns.org:
Tiny Honeypot - resource consumption for the good guys. Read More

freshmeat.net:
BlackHole Spam/Virus Filter 0.9.120 (Stable). Read More

condor.gmu.edu:
The Logging Project was born out of a need for secure, centralized, fault tolerant, real time logging. Read More

Vulnerabilities & Exploits:
online.securityfocus.com:
T. Hauck Jana Server FTP Server PASV Mode Port Exhaustion Denial Of Service Vulnerability. Read More

www.securiteam.com:
HP ProCurve Switch Denial of Service Attack. Read More

www.securiteam.com:
ChaiVM Multiple Security Vulnerabilities. Read More

www.securiteam.com:
HP Network-Enable Printers (JetDirect) Password Exposure. Read More

www.securiteam.com:
Ascend's Undocumented Protocol Allows Unauthorized Modifications. Read More

www.phenoelit.de:
Access Point IP Services Router. Read More

www.securitytracker.com:
ICQ Instant Messaging Client Software Can Be Crashed By a Remote User Sending a Message With a Large Number of Graphical 'Smiles'. Read More

www.securitytracker.com:
Mailman E-mail Discussion List Software Has More Input Validation Holes That Allow Remote Users to Conduct Cross-Site Scripting Attacks. Read More

www.securitytracker.com:
KaZaA Media Desktop File Sharing Program Can Be Crashed By Remote Users Sending Large Messages. Read More

www.securitytracker.com:
StatsPlus Web Server Statistics Package Allows Remote Users to Inject Arbitrary Script Commands into the Statistics Log and Conduct Cross-site Scripting Attacks. Read More

www.securitytracker.com:
CacheFlow CacheOS Input Validation Flaw Allows Remote Users to Conduct Cross-site Scripting Attacks. Read More

www.securitytracker.com:
ezContents Web Content Management System Contains Multiple Flaws That Allow Remote Users to Create or Delete Directories and Inject SQL Commands and Allow Remote Authenticated Users to View Files on the System. Read More

www.securitytracker.com:
Mozilla Web Browser Allows Javascript Code to Read and Modify Cookies from Other Domains. Read More

www.securitytracker.com:
Sun Cobalt Qube 3 Appliance Access Control Bugs Let Remote Users Access New User Accounts or Delete Files on the System and Let Local Users Gain 'Admin' Privileges. Read More

www.securitytracker.com:
Novell GroupWise Mail Service Buffer Overflow Lets Remote Users Crash the Service and May Allow Arbitrary Code to Be Executed. Read More

www.securitytracker.com:
W3Mail May Disclose MIME Attachments to Remote Users and May Allow Remote Users to Execute Arbitrary Code. Read More

News:
www.theregister.co.uk:
What's wrong with this JPEG picture? Read More

www.it-director.com:
US union defends hacker code. Read More

www.wired.com:
The Dark Side of Hacking Bill. Read More

www.theregister.co.uk:
Congress blasts Feds on cyber-terror FOIA games. Read More

zdnet.com.com:
The week in review: PCs under attack. Read More

zdnet.com.com:
Microsoft begins to clean out Hotmail. Read More

www.theregister.co.uk:
Ethical hacker faces war driving charges. Read More

zdnet.com.com:
Open-source guru backs off DVD hack. Read More

27 July 2002

New Trojans:
Lame WebDownloader 0.1

In Route To The Hell 1.0

G.R.O.B. 1.0

Vulnerabilities & Exploits:
www.securitytracker.com:
VMware GSX Server Buffer Overflow in VMware Authorization Service 'GLOBAL' Parameter Lets Remote Users Execute Arbitrary Code. Read More

www.securitytracker.com:
Microsoft Data Engine (MSDE) Buffer Overflow in Database Consistency Checker May Let Remote Authenticated Users Execute Arbitrary Code with the Privileges of the Database Service. Read More

www.securitytracker.com:
Microsoft SQL Server Buffer Overflow in Database Consistency Checker May Let Remote Authenticated Users Execute Arbitrary Code with the Privileges of the Database Service. Read More

www.securitytracker.com:
Microsoft SQL Server Resolution Service Buffer Overflows Let Remote Users Execute Arbitrary Code with the Privileges of the SQL Service. Read More

www.securitytracker.com:
Microsoft Exchange Server Buffer Overflow in Processing SMTP EHLO Command Lets Remote Users Execute Arbitrary Code on the Server with System Level Privileges. Read More

www.securitytracker.com:
Microsoft Metadirectory Services Authentication Flaw May Let Remote Users Modify Data and Obtain Elevated Privileges on the System. Read More

www.securitytracker.com:
Pegasus Mail Bug in Processing 'From' and 'To' Headers Lets Remote Users Send Mail to Crash the Recipient's Pegasus Mail Client. Read More

www.securitytracker.com:
ClickCartPro E-Commerce Software Configuration Error May Disclose Administrator Password to Remote Users. Read More

www.securitytracker.com:
ZyXEL Prestige Routers Can Be Made to Temporarily Stop Processing Traffic By Remote Users Sending Certain Fragmented Packets. Read More

www.securiteam.com:
IPSwitch IMail Multiple Security Vulnerabilities (GET, HTTP/1.0). Read More

online.securityfocus.com:
VisualShapers ezContents Multiple Vulnerabilities. Read More

online.securityfocus.com:
CascadeSoft W3Mail Predictable File Attachment Location Vulnerability. Read More

www.securiteam.com:
Multiple Vulnerabilities in JanaServer. Read More

www.securiteam.com:
Confixx Vulnerability Allows Attacker Remote Control of the SQL Server. Read More

News:
www.nwfusion.com:
Microsoft offers plug for 'critical' SQL Server holes. Read More

www.ipsos-reid.com:
U.S. Businesses at Risk for Major Cyber Attack, IT Pros Say. Read More

www.politechbot.com:
Peer-to-peer hacking bill officially introduced in House. Read More

www.fcw.com:
Deal struck for security alerts. Read More

www.theregister.co.uk:
Big software pushes hard for national Gestapo. Read More

www.infoworld.com:
Reactivity targets secure XML message routing. Read More

www.internetwk.com:
Study: Routers, Firewalls Can't Handle XML Traffic. Read More

www.networknews.co.uk:
Firewalls: The soft option. Read More

www.networknews.co.uk:
Princeton and Yale in hacking spat. Read More

26 July 2002

New Trojans:
LANfiltrator Beta 3

iwAnywhere 1.0

WMFA

Vulnerabilities & Exploits:
online.securityfocus.com:
Zyxel Prestige 642R Router Malformed TCP Packet Denial Of Service Vulnerability. Read More

online.securityfocus.com:
VMWare GSX Server Authentication Server Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
ICQ 2001/2002 Malformed Message Denial Of Service Vulnerability. Read More

online.securityfocus.com:
Mozilla JavaScript URL Host Spoofing Arbitrary Cookie Access Vulnerability. Read More

online.securityfocus.com:
TightVNC Repeated Challenge Replay Attack Vulnerability. Read More

www.securitytracker.com:
SoulSeek File Sharing Bug May Cause 'Unshared' Subdirectories to Be Shared In Certain Situations. Read More

www.securitytracker.com:
OpenSSH's Secure Shell (SSH) Implementation Weakness May Disclose User Passwords to Remote Users During Man-in-the-Middle Attacks. Read More

www.securitytracker.com:
SSH.com's Secure Shell (SSH) Implementation Weakness May Disclose User Keys to Remote Users During Man-in-the-Middle Attacks. Read More

www.securitytracker.com:
VanDyke Software's SecureCRT SSH Client Buffer Overflow Lets Malicious Remote Servers Execute Arbitrary Code on the Client. Read More

www.securitytracker.com:
SmartMax Software's MailMax POP Server Buffer Overflow in Processing 'USER' Argument Lets Remote Users Execute Arbitrary Code on the System. Read More

www.securitytracker.com:
Sun Fire Server Software Has Unspecified Access Control Flaw That May Let Local Users Cause the System to Become Unavailable. Read More

www.securiteam.com:
Novell GroupWise 6.0.1 Support Pack 1 Buffer Overflow. Read More

www.securiteam.com:
Heap Overflow in Solaris cachefs Daemon. Read More

www.securiteam.com:
Authentication Flaw in Microsoft Metadirectory Services Could Allow Privilege Elevation. Read More

www.securiteam.com:
Microsoft SQL Server 2000 Unauthenticated System Compromise. Read more

www.securiteam.com:
Server Response to SMTP Client EHLO Command Results In Buffer Overrun. Read More

www.securiteam.com:
Cobalt Qube 3 Administration Page Insecurity. Read More

News:
www.zdnet.com:
Microsoft stomps on swarm of bugs. Read More

www.theregister.co.uk:
MS goes security patch crazy. Read More

www.zdnet.com:
MS: Full steam ahead!... Hollywood hacking?... SQL Server holes. Read More

www.washingtonpost.com:
Yale Accuses Princeton of Hacking. Read More

arstechnica.infopop.net:
Hacking is illegal unless you have a strong lobby. Read More

techupdate.zdnet.co.uk:
Hackers use Wi-Fi invisibility cloak. Read More

www.zdnet.com:
Gates: The state of .Net. Read More

www.newsfactor.com:
Daily CyberCrime and Security Report for July 25, 2002. Read More

www.idg.net:
PGP on shaky ground. Read More

25 July 2002

New Trojans:
Cyn 2.2

Ultimate RAT 2.1

DataRape 1.0

Vulnerabilities & Exploits:
www.securiteam.com:
Arbitrary Code Execution Vulnerability in VanDyke SecureCRT. Read More

www.securiteam.com:
How to Reproduce PHP Segfault. Read More

bvlive01.iss.net:
Remote Buffer Overflow Vulnerability in Microsoft Exchange Server. Read More

online.securityfocus.com:
SecureCRT SSH1 Identifier String Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
SmartMax MailMax Popmax Buffer Overflow Vulnerability. Read More

www.securitytracker.com:
Pablo FTP Server Discloses Files and Directories on the System to Remote Authenticated Users, Including Anonymous Users. Read More

www.securitytracker.com:
PHP Flaw in Processing Multipart/Form-Data May Let Remote Users Execute Arbitrary Code on the Server. Read More

www.securiteam.com:
InterNIC Vulnerable to Cross Site Scripting. Read More

www.securiteam.com:
SSH Protocol Weakness Vulnerability (MITM). Read More

www.securiteam.com:
VMWare GSX Server Remote Buffer Overflow. Read More

www.securiteam.com:
Pablo Software Solutions FTP server Directory Traversal Vulnerability. Read More

www.securiteam.com:
Why Pressing CTRL in IE is Dangerous. Read More

News:
Microsoft Security Bulletin MS02-032
26 June 2002 Cumulative Patch for Windows Media Player (Q320920). Read More

Microsoft Security Bulletin MS02-036
Authentication Flaw in Microsoft Metadirectory Services Could Allow Privilege Elevation (Q317138). Read More

Microsoft Security Bulletin MS02-037
Server Response To SMTP Client EHLO Command Results In Buffer Overrun (Q326322). Read More

Microsoft Security Bulletin MS02-038
Unchecked Buffer in SQL Server 2000 Utilities Could Allow Code Execution (Q316333). Read More

Microsoft Security Bulletin MS02-039
Buffer Overruns in SQL Server 2000 Resolution Service Could Enable Code Execution (Q323875). Read More

www.theregister.co.uk:
Congress to turn hacks into hackers. Read More

www.businessweek.com:
GAO: U.S. Cyber Security Efforts are Uncoordinated. Read More

www.ctnow.com:
Computer Secrecy Proposals Debated. Read More

www.informationweek.com:
Experts Seek Liability Protections To Improve Cybersecurity. Read More

www.theregister.co.uk:
WebTV 911 exploit causes confusion. Read More

24 July 2002

New Trojans:
Al-Bareki. Thanks to Unlight.

Sphere 2.0

DNS 0.1

Vulnerabilities & Exploits:
online.securityfocus.com:
Sun PC NetLink Backup Restoration ACL Permissions Vulnerability. Read More

online.securityfocus.com:
PHP HTTP POST Incorrect MIME Header Parsing Vulnerability. Read More

online.securityfocus.com:
PHP Interpreter Direct Invocation Denial Of Service Vulnerability. Read More

online.securityfocus.com:
Pyramid BenHur Default Firewall Weakness. Read More

www.securitytracker.com:
Working Resources BadBlue Web Server Uses Weak Administrator Authentication Method That May Allow Remote Users to Execute Arbitrary Commands on the System. Read More

www.securitytracker.com:
TrendMicro InterScan VirusWall Bug in Processing Malformed MIME Headers Allows Malicious Attachments to Bypass the Virus Filtering. Read More

News:
www.phrack.org:
Hacker magazine PHRACK #59 released. Read More

www.theregister.co.uk:
Sir Dystic steps up, clears air. Read More

www.2600.com:
H2K2 PICTURES/FEEDBACK SOUGHT. Read More

online.securityfocus.com:
Find a Bug? Don't E-Mail Microsoft. Read More

online.securityfocus.com:
Detecting and Removing Malicious Code. Read More

techupdate.zdnet.co.uk:
Microsoft talks the talk on security. Read More

www.osopinion.com:
Will Hackers Unite and Take Over? Read More

www.zdnet.com:
Here's one more trick up hackers' sleeves. Read More

hoovnews.hoovers.com:
Hacker nabbed for Bt1.8m scam. Read More

itmanagement.earthweb.com:
Coming Soon: Attack Of The Super Worms. Read More

slashdot.org:
WebTV/MSNTV Virus Dials 911. Read More

www.cioinsight.com:
Wireless (In)security: Are Your Networks Snoop-Proof? Read More

23 July 2002

New Trojans:
Lithium 1.02

SuperMM 1.2

Dimbus 1.0

Vulnerabilities & Exploits:
online.securityfocus.com:
Microsoft Outlook Express Spoofable File Extensions Vulnerability. Read More

online.securityfocus.com:
Working Resources BadBlue Administrative Interface Arbitrary File Access Vulnerability. Read More

Internet Security Systems Security Alert:
Remote Compromise and Denial of Service Vulnerability in PHP. Read More

www.securiteam.com:
Nanog Traceroute Format String Exploit. Read More

www.securiteam.com:
ClickCartPro Security Vulnerability (Misconfiguration). Read More

www.securiteam.com:
Oracle Reports Server Information Disclosure. Read More

www.securiteam.com:
Additional Details Released on PHP Security Vulnerability in Multipart FORM Data Handling. Read More

www.securiteam.com:
PHP Security Vulnerability in Multipart FORM Data Handling. Read More

www.securiteam.com:
Pyramid BenHur Firewall Active FTP Portfilter Ruleset Results in a Firewall Leak. Read More

www.securiteam.com:
Oddsock Playlist Generator Multiple Buffer Overlow Vulnerability. Read More

News:
online.securityfocus.com:
GAO: U.S. Cyber Security Efforts are Uncoordinated. Read More

www.theregister.co.uk:
Serious PHP vuln reported. Read More

www.neowin.net:
Hard disk will have hackers seeing double. Read More

www.atnewyork.com:
Is Anti-Virus Software Obsolete? Read More

www.theregister.co.uk:
Ex-Microserf Schmidt as govt cyberterror Cassandra. Read More

22 July 2002

New Trojans:
TheefLE 1.11

PSYchoFiles 1.9

Arturik 1.0

Vulnerabilities & Exploits:
www.securitytracker.com:
Microsoft Outlook Express (and Possibly Outlook) Has File Attachment Name Bugs That Let Remote Users Send Malicious Mail to Bypass Attachment Type Filters and Modify the Apparent File Name and File Size. Read More

online.securityfocus.com:
Adobe eBook Reader File Restoration Privilege Escalation Vulnerability. Read More

www.securitytracker.com:
BadBlue File Sharing Web Server File Path Input Validation Bug Lets Remote Users Conduct Cross-Site Scripting Attacks Against BadBlue Users. Read More

www.securitytracker.com:
UnrealIRCd Chat Server May Let Remote Authenticated Users Crash the IRC Service. Read More

www.securiteam.com:
PHP Resource Exhaustion Denial of Service. Read More

www.securiteam.com:
Geeklog XSS and CRLF Injection. Read More

News:
www.cipherwar.com:
Web Hacking: Attacks and Defense. Read More

arstechnica.infopop.net:
Yahoo filters modify attachments to battle viruses. Read More

www.fcw.com:
Feds endorse guide for Windows security. Read More

zdnet.com.com:
Bracing for an Internet disaster. Read More

www.theregister.co.uk:
Inventor of Risc chips dies. Read More

21 July 2002

New Trojans:
Jannet Remote Keylogger 4.20

NetCat32

Helios 1.7

Tools:
www.insecure.org:
Nmap 2.99RC1 Released. Read More

freshmeat.net:
Linux Firewall 2.0rc2. Read More

Vulnerabilities & Exploits:
www.securitytracker.com:
Geeklog Weblog Software Input Filtering Bug in 'Stories' and 'Comments' Lets Remote Users Conduct Cross-site Scripting Attacks. Read More

www.securitytracker.com:
Sun Solaris PC NetLink Software May Not Retain Access Control List Permissions When Restored After a Backup. Read More

www.securitytracker.com:
Fastlink Software 'TheServer' Web Server Access Bug May Let Remote Users View Log File Access Passwords. Read More

www.securitytracker.com:
World Wide Web Offline Explorer (WWWOFFLE) Proxy Buffer Overflow May Let Remote Users Execute Arbitrary Code on the System. Read More

www.securitytracker.com:
Oracle Reports Server Discloses System Information to Remote Users. Read More

www.securitytracker.com:
MERCUR Mailserver Buffer Overflow in Authenticating Access to the Control-Service Lets Remote Users Execute Arbitrary Code with the Privileges of the Mail Server. Read More

www.securitytracker.com:
HP Instant Support Enterprise Edition (ISEE) Application Bug Lets Remote Authenticated Users Gain Access to Restricted Files. Read More

News:
www.siliconvalley.com:
Delaware college student charged with hacking university system to give herself As. Read More

www.pcworld.com:
Online Security Incidents Jump in 2002. Read More

online.securityfocus.com:
Why Microsoft's Palladium project threatens to send Linux and open-source into exile. Read More

20 July 2002

New Trojans:
Msnspider 1.3

Network Terrorist 1.3

Luzak 1.0

Vulnerabilities & Exploits:
cert.uni-stuttgart.de:
CRLF Injection. Read More

online.securityfocus.com:
Trend Micro InterScan VirusWall Space Gap Scan Bypass Vulnerability. Read More

online.securityfocus.com:
Andrew Bishop WWWOFFLE Negative Content-Length Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
Oracle Reports Server Information Disclosure Vulnerability. Read More

www.securitytracker.com:
Caucho Resin Web Server Discloses Physical Path of Web Root Directory to Remote Users. Read More

www.securitytracker.com:
W3C Jigsaw Web Server Bugs in Processing Device Requests Let Remote Users Crash the Web Service and Determine the Web Root Directory Path. Read More

www.securitytracker.com:
Macromedia Sitespring Content Management Server Default Error Page Input Validation Flaw Lets Remote Users Conduct Cross-site Scripting Attacks. Read More

News:
techupdate.zdnet.com:
Like it or not--we need Microsoft's security initiative. Read More

zdnet.com.com:
The world according to Bill Gates. Read More

www.siliconvalley.com:
Dave Barry: Spam beats cafeteria food. Read More

www.eweek.com:
Shavlik Upgrades Patch Inspection Tool. Read More

www.theregister.co.uk:
Bill Gates spams the world on Trustworthy Computing. Read More

www.osopinion.com:
The Mac: Worm in the Apple. Read More

www.extremetech.com:
Army Research Web Site Hacked. Read More

www.newsfactor.com:
Are Hacking Defenses Winning the War? Read More

www.theregister.co.uk:
ElcomSoft rubbishes eBook security ahead of Sklyarov case. Read More

www.csds.uidaho.edu:
Workshop on Computer Forensics as part of a DoD grant at the University of Idaho. Read More

www.eweek.com:
PKWare Encrypts Compressed Files. Read More

www.theregister.co.uk:
China to build own version of Windows 98. Read More

www.theregister.co.uk:
Dutch judge tears up bulk mail ban. Read More

19 July 2002

New Trojans:
Remote-Anything 3.5.9

NeoArk 1.9

AutoSpY 1.2.2 Apocalipse

Vulnerabilities & Exploits:
www.securiteam.com:
TrendMicro's VirusWall Space Gap (Exploit). Read More

www.securitytracker.com:
Oddsock Song Requester Playlist Generator for Winamp Has Buffer Overflows Let Remote Users Crash the Winamp Media Server. Read More

www.securitytracker.com:
HP-UX RFC-Netbios Daemon Can Be Crashed By Remote Users Sending Malformed Packets. Read More

www.securitytracker.com:
Double Choco Latte Input Validation Flaws Let Authenticated Remote Users View Files on the Server and Remote Users Conduct Cross-site Scripting Attacks Against Other Users. Read More

www.securitytracker.com:
HP (Compaq) Tru64 'ipcs' Utility Buffer Overflow May Let Local Users Gain Elevated Privileges. Read More

www.securiteam.com:
Buffer Overflow in AnalogX Proxy and NEC Socks5. Read More

www.securiteam.com:
Lil'HTTP Pbcgi.cgi XSS Vulnerability. Read More

www.securiteam.com:
Three New BadBlue Vulnerabilities. Read More

www.securiteam.com:
NOLA Arbitrary Code Execution (Via File Upload). Read More

www.securiteam.com:
phpSquidPass Software Design Error. Read More

www.securiteam.com:
Serious Flaw in Unreal IRCd (Server Linking, Svsnick). Read More

www.securiteam.com:
PHP fopen() Warning Cross-Site Scripting Vulnerability. Read More

News:
www.hindustantimes.com:
Gates says Microsoft security push cost $100 million. Read More

www.zdnet.com:
Tighter PC security... Encrypt your laptop... Pittman leaving AOL. Read More

www.pcworld.com:
Online Security Incidents Jump in 2002. Read More

www.pcworld.com:
Hackers Tackle Censorship With New Tool. Read More

www.businessweek.com:
Hackers Say They Want a Revolution. Read More

abcnews.go.com:
Should Hackers Go to Prison for Life? Read More

www.azcentral.com:
Yahoo changes e-mail text to block hackers. Read More

www.computerworld.com:
Hackers to corporate America: You're lazy. Read More

18 July 2002

New Trojans:
Diablo Keys 2.2

HVL-Rat 6.0.0b

Uprising 1.0

Vulnerabilities & Exploits:
hickory.csc.ncsu.edu:
Just another beginners' tutorial on Buffer Overflows ver 1. Read More

www.securiteam.com:
Stealing Hotmail.com Cookie and User Login. Read More

www.securitytracker.com:
Norton Personal Firewall Buffer Overflow in HTTP Proxy May Allow Remote Users to Execute Arbitrary Code on the System. Read More

www.securitytracker.com:
Norton Internet Security Buffer Overflow in HTTP Proxy May Allow Remote Users to Execute Arbitrary Code on the System. Read More

online.securityfocus.com:
Tru64 IPCS Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
Tru64 InetD Denial Of Service Vulnerability. Read More

online.securityfocus.com:
Thorsten Korner 123tkShop Arbitrary File Include Vulnerability. Read More

online.securityfocus.com:
Thorsten Korner 123tkShop SQL Injection Vulnerability. Read More

www.securiteam.com:
Multiple Buffer Overflow Found in Novell Netmail. Read More

www.securiteam.com:
Jigsaw Webserver Path Disclosure. Read More

www.securiteam.com:
Macromedia Sitespring Cross-Site Scripting. Read More

www.securitytracker.com:
Caldera OpenServer UNIX-to-UNIX System Command Execution Utility 'uux' Has Buffer Overflow That Lets Local Users Grab Root. Read More

www.securitytracker.com:
IBM's Tivoli Management Framework Endpoint and ManagedNode Component Buffer Overflows Let Remote Users Crash the Service and Execute Arbitrary Code with High Privileges. Read More

www.securitytracker.com:
Novell NetMail Buffer Overflows Let Remote Users Crash the Service and Reboot the Server. Read More

www.securitytracker.com:
RealOne Player and RealJukebox 2 Buffer Overflow and Use of Predictable Temporary Files Lets Remote Users Cause Arbitrary Code to Be Executed on the Victim's Computer. Read More

www.securiteam.com:
Resin DOS Device Path Disclosure. Read More

www.securiteam.com:
Jigsaw Webserver DOS device DoS. Read More

www.securiteam.com:
Wiki Module PostNuke Cross-Site Scripting Vulnerability. Read More

News:
www.peek-a-booty.org:
The goal of the Peekabooty Project is to create a product that can bypass the nation-wide censorship of the World Wide Web practiced by many countries. Read More

zdnet.com.com:
China scolded for Net censorship. Read More

news.com.com:
Is your cable guy a spy? Read More

zdnet.com.com:
U.S. wants your mailman to snoop on you. Read More

www.theregister.co.uk:
'Hacker' security biz built on FBI snitches. Read More

zdnet.com.com:
Security filter: Yahoo edits e-mail. Read More

17 July 2002

New Trojans:
Infinaeon

Motalases

Netsnooper GOLD 1.6.0

Vulnerabilities & Exploits:
www.securiteam.com:
Multiple Buffer Overflow Found in Novell Netmail IMAP Service. Read More

www.securitytracker.com:
BadBlue Web Server Can Be Crashed By Remote Users Sending Invalid Requests, Discloses Passwords to Local Users, and May Disclose Passwords and Files to Remote Users. Read More

www.securitytracker.com:
Apache 2.x Web Server ap_log_rerror() Function May Disclose Full Installation Path to Remote Users. Read More

www.securitytracker.com:
Northern Solutions Xeneo Web Server (aka WebMan Server) Lack of Input Validation Lets Remote Users View Files on the System. Read More

www.securitytracker.com:
Sun Volumen Management Daemon (vold) Buffer Overflow Lets Local Users Gain Root Privileges. Read More

www.securitytracker.com:
Adobe Content Server Implementation Flaws Let Remote Users Borrow All Copies of an E-Book for an Unlimited Time, Execute Arbitrary SQL Commands, and Conduct Cross-site Scripting Attacks. Read More

www.securitytracker.com:
Hosting Controller Web Hosting Software Access Control Hole Allows Remote Authorized Users to Change Other User Passwords. Read More

News:
news.independent.co.uk:
Microsoft Palladium: Access denied! Read More

news.bbc.co.uk:
Hackers could face life in jail. Read More

www.lasvegassun.com:
Feds Devise Computer Security Program. Read More

www.zdnet.com:
How to protect yourself against worms of the future. Read More

www.zdnet.com:
New Windows XP on the way... Hackers get life... Bluetooth blues. Read More

www.zdnet.com:
Microsoft squashes Windows 2000 bugs. Read More

www.theregister.co.uk:
Frethem worm poses as Password file. Read More

www.online.ie:
O2 security bubble pricked. Read More

rootprompt.org:
Linux Security Modules: General Security Support. Read More

www.counterpane.com:
Phone Hacking: The Next Generation. Read More

www.palecrow.com:
Locking Down Your Daemons: An overview of 'chroot jailing' services in Linux. Read More

www.microsoft.com:
Best Practices for Preventing DoS/Denial of Service Attacks. Read More

www.news24.com:
Hacking in the name of security. Read More

16 July 2002

New Trojans:
Iowa's Joke Maker

Greek Hackers Rat 1.0

Ducktoy 1.1.1

Vulnerabilities & Exploits:
www.atstake.com :
Norton Personal Internet Firewall HTTP Proxy Vulnerability. Read More

online.securityfocus.com:
Working Resources BadBlue Null Byte File Disclosure Vulnerability. Read more

online.securityfocus.com:
Hosting Controller Hidden Field Password Changing Vulnerability. Read more

online.securityfocus.com:
Working Resources BadBlue Plain Text Password Storage Vulnerability. Read More

News:
news.com.com:
House OKs life sentences for hackers. Read More

Someone's Watching You: The Web's Secret Police. Read More

www.wired.com:
The Hackers Who Ate New York City. Read more

www.hindustantimes.com:
Hackers raise hell in name of security. Read More

www.chron.com:
Hackers plan to bypass government censorship. Read More

www.wired.com:
Whole Lot of Happy Hacker Campers. Read more

news.com.com:
Microsoft pulls Java from download page. Read more

15 July 2002

New Trojans:
BackWindows 1.0

Katux Latinus 2.0

Ghost 2.3 mini server

Vulnerabilities & Exploits:
www.pivx.com:
IE allows universal Cross Domain Scripting. Read More

www.nextgenss.com:
BULK INSERT Buffer Overflow. Read More

www.securitytracker.com:
Care 2002 Medical Application Input Validation Holes Let Remote Users View Files on the System and Execute SQL Commands. Read More

www.securitytracker.com:
Microsoft Foundation Classes (MFC) Information Server Application Programming Interface (ISAPI) 'mfc42.dll' Contains Buffer Overflows That Can Crash the System or Possibly Allow for the Remote Execution of Arbitrary Code. Read More

www.securitytracker.com:
Pingtel 'xpressa' Voice-over-IP (VoIP) Telephone Has Many Flaws That Allow Remote Users to Gain Full Control Over the Phone. Read More

www.securitytracker.com:
ATPhttpd Web Server Buffer Overflows Let Remote Users Execute Arbitrary Code on the Server. Read More

www.securitytracker.com:
RealOne Player and RealJukebox 2 Buffer Overflow and Use of Predictable Temporary Files Lets Remote Users Cause Arbitrary Code to Be Executed on the Victim's Computer. Read More

www.securitytracker.com:
Microsoft IIS SMTP Service Encapsulation Bug Lets Remote Users Relay Mail and Send SPAM Via the Service. Read More

www.securiteam.com:
The Adobe eBook Library's Multiple Vulnerabilities. Read More

www.securiteam.com:
MacOS X SoftwareUpdate Vulnerability. Read More

News:
www.siliconvalley.com:
Hacker group targets countries that censor Internet. Read More

www.hindustantimes.com:
Hacker group targets countries that censor Internet. Read More

www.vibrantmedia.com:
PGP Vulnerable to Attack Via Outlook Plug-In. Read More

14 July 2002

New Trojans:
DataRape 1.1

Uprising 1.1

Feap

Tools:
www.nmapwin.org:
NMapWin 1.2.11 released. Read more

www.cqure.net:
SQL Server Password Auditing Tool. Read more

violating.us:
Bigeye - The Ghetto Honeypot
Bigeye is a network utility dump, that can be run in multiple modes: sniffer, logging connections, and even emulating protocols such as HTTP or FTP. Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
MyNewsGroups :) PHP-based USENET News Client Bug Lets Remote Users Execute Arbitrary Code on the Server. Read more

www.securitytracker.com:
Entercept Agent May Disclose the Entercept Agent Password to Local Administrators During Installation. Read more

www.securitytracker.com:
IBM DCE Distributed File System (DFS) Web Secure Relative Path Bug Lets Local Users Execute Arbitrary Code on the System With the Privileges of the Web Server. Read more

www.securitytracker.com:
Ultrafunk's Popcorn E-mail Client Has Various Bugs That Allow a Remote User to Crash the E-mail Client. Read more

www.securitytracker.com:
Lil' HTTP Server 'pbcgi.cgi' Script Input Validation Flaw Allows Remote Users to Conduct Cross-site Scripting Attacks Against Web Server Users. Read more

www.securitytracker.com:
Sharp Zaurus PDA Includes an FTP Server That Does Not Require Authentication for Write Access With Root Privileges. Read more

www.securitytracker.com:
IBM AIX System Management Interface Tool (SMIT) Path Input Validation Flaw Lets Remote Authorized Users Execute Arbitary Binaries on the System. Read more

www.securitytracker.com:
Sun i-Runbook Input Validation Flaw Discloses Files on the System to Remote Users. Read more

www.securiteam.com:
Popcorn Security Vulnerabilities. Read more

www.securiteam.com:
Page Transitions Denial of Service Attack. Read more

www.securiteam.com:
RealONE Player Gold / RealJukebox2 Skin File Download Vulnerability. Read more

www.securiteam.com:
MFC ISAPI Framework Buffer Overflow (BadBlue PWS). Read more

www.securiteam.com:
IIS Microsoft SMTP Service Encapsulated SMTP Address Vulnerability. Read more

www.securiteam.com:
Cross-Site Scripting Vulnerability in Mewsoft Auction Script. Read more

www.securiteam.com:
Cross-Site Scripting Vulnerability in PHP Classifieds. Read more

www.securiteam.com:
Directory Traversal Vulnerability in SunPS iRunbook. Read more

www.securiteam.com:
Multiple Security Vulnerabilities in CARE 2002. Read more

News:
timesofindia.indiatimes.com:
AT&T warns not to be duped by hackers. Read more

www.osopinion.com:
Time for a Spyware Takedown. Read more

www.msnbc.com:
Search engines slow on disclosure. Read more

13 July 2002

New Trojans:
RemoteNC beta4

Zany 1.0 complete

BackSocket 5.6

Vulnerabilities & Exploits:
www.securiteam.com:
IIS Administration Web Site Redirect Exploits. Read more

www.securiteam.com:
2fax Local Exploit Code Released (-bpcx). Read more

www.securiteam.com:
Exploit Code Released for MFC ISAPI Framework Buffer Overflow (BadBlue PWS). Read more

online.securityfocus.com:
Sun i-Runbook Directory And File Content Disclosure Vulnerability. Read more

www.securiteam.com:
Multiple Vulnerabilities with Pingtel xpressa SIP Phones. Read more

www.securiteam.com:
Britcoun.org Cross Site Scripting via Wops.cgi. Read more

www.securiteam.com:
Brinkster Web Hosting Protected File Retrieval. Read more

www.securiteam.com:
ActivWebserver Cross Site Scripting Vulnerability. Read more

www.securiteam.com:
Northern Solutions WebMan Webserver Arbitrary File Disclosure. Read more

www.securitytracker.com:
Microsoft Internet Explorer Flaw in OBJECT Domain Security Enforcement Lets Remote Users Execute Code in Arbitrary Domains. Read more

www.securitytracker.com:
Apache Tomcat Java Server Allows Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Microsoft SQL Server Install Process May Disclose Sensitive Passwords to Local Users. Read more

www.securitytracker.com:
Fluid Dynamics Search Engine Input Validation Bug in 'Rank' Variable Lets Remote Users Conduct Cross-site Scripting Attacks. Read more

www.securitytracker.com:
Network Associates PGP Outlook Plug-in Buffer Overflow Lets Remote Users Send Malicious E-mail to Execute Arbitrary Code on the Recipient's Computer. Read more

www.securitytracker.com:
Common Desktop Environment (CDE) ToolTalk Server Input Validation and Symlink Bugs Let Local and Remote Users Obtain Root Privileges on the System. Read more

www.securitytracker.com:
Microsoft SQL Server Desktop Engine (MSDE) Buffer Overflow and Access Control Bug May Let Remote Authorized Users Execute Code with Elevated Privileges, Possibly Including Local System Privileges. Read more

www.securitytracker.com:
Microsoft SQL Server Buffer Overflow and Access Control Bug May Let Remote Authorized Users Execute Code with Elevated Privileges, Possibly Including Local System Privileges. Read more

www.securitytracker.com:
GoAhead Web Server Input Validation Bugs Disclose Files on the System to Remote Users and Also Permit Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Radio Community Server Default Configuration Lets Remote Users Create Users Accounts and Upload Arbitrary Files to the Server. Read more

www.securitytracker.com:
Carello Shopping Cart Input Validation Flaw in 'VBEXE' Parameter Lets Remote Users Cause Files on the Server to Be Executed. Read more

www.cracked.ne:
Remote DoS Against A Given Chat Client With the !seen Service. Read more

www.via.ecp.fr:
A list of not that well known numbers (like stack and heap start, for instance) on various Unix like operating systems and architectures. Read more

News:
Stegograms found on azzam.com
Preliminary checking with a tool called stegdetect shows that a large number of images on azzam.com may have hidden information encoded using an algorithm called jphide. The site at http://66.197.135.110/~azzam has roughly 580 images and yields some 70 hits almost all for jphide. By Declan McCullagh.

www.politechbot.com:
Politech challenge: Decode Al Qaeda stego-communications! Read more

www.politechbot.com:
Declan McCullagh'sPolitech. Searching by date for matches of: steganography. Read more

www.wired.com:
Older News: Bin Laden: Steganography Master? Read more

www.techfocus.org:
McAfee admits antivirus software occasionally misses Klez worm. Read more

www.theregister.co.uk:
USA Today swats hack attack - but not entirely. Read more

www.drudgereport.com:
'USA TODAY' WEBSITE HACKED; PRANKSTERS MOCK BUSH, CHRISTIANITY. Read more

www.hindustantimes.com:
Hackers put fake stories on USA Today Web site. Read more

news.bbc.co.uk:
Alert as hackers meet. Read more

www.idg.net:
Microsoft fails to use own security product. Read more

www.theregister.co.uk:
Attack of the Cyber-Terror Studies. Read more

zdnet.com.com:
Internet fridges--keeping viruses fresh? Read more

www.themercury.news.com.au:
Optus accounts hacked. Read more

12 July 2002

New Trojans:
Vagr Nocker 2.0

Rorex Server (b)

Qroject DualDownloader 1.0

Vulnerabilities & Exploits:
online.securityfocus.com:
Pacific Software Carello Shopping Cart Carello.DLL Remote Command Execution Vulnerability. Read more

online.securityfocus.com:
Apache Tomcat Servlet Mapping Cross Site Scripting Vulnerability. Read more

online.securityfocus.com:
Apache Tomcat DOS Device Name Cross Site Scripting Vulnerability. Read more

online.securityfocus.com:
HP Advanced Server/9000 RFC-NetBIOS Denial Of Service Vulnerability. Read more

online.securityfocus.com:
Microsoft Internet Explorer OBJECT Tag Same Origin Policy Violation Vulnerability. Read more

www.securitytracker.com:
Icecast Audio Streaming Server Discloses the Presence of Named Directories Located Anywhere on the System. Read more

www.securitytracker.com:
Netscape Enterprise Server Input Validation Bug in Search Function Discloses Files on the System to Remote Users. Read more

www.securitytracker.com:
iPlanet Web Server Input Validation Bug in Search Function Discloses Files on the System to Remote Users. Read more

www.securitytracker.com:
iPlanet Web Server Buffer Overflow in Search Function Lets Remote Users Execute Arbitrary Code on the Server. Read more

www.securitytracker.com:
WatchGuard Firebox VPN Management Function Can Be Crashed By Remote Users Sending Malformed Packets. Read more

www.securitytracker.com:
XSS Hole in Fluid Dynamics Search Engine. Read more

www.securitytracker.com:
Cisco VPN3000 Gateway MTU Overflow. Read more

www.securitytracker.com:
Multiple Security Vulnerabilities in Sharp Zaurus. Read more

www.securitytracker.com:
BULK INSERT Buffer Overflow. Read more

www.securitytracker.com:
Cumulative Patch for SQL Server. Read more

www.securitytracker.com:
SQL Server Installation Process May Leave Passwords on System. Read more

www.securitytracker.com:
Linux Kernels DoSable by File-max Limit. Read more

News:
Microsoft Security Bulletin MS02-034
Cumulative Patch for SQL Server (Q316333). Read more

Microsoft Security Bulletin MS02-035
SQL Server Installation Process May Leave Passwords on System (Q263968). Read more

zdnet.com.com:
Holes put Linux handheld at risk. Read more

zdnet.com.com:
Flaw lets hackers pick Outlook locks. Read more

www.internetnews.com:
Windows Worm, Multiple Bugs Haunt MS Users. Read more

www.feer.com:
The Falun Gong hacks into state broadcasts and demonstrates its power to annoy the leadership. Read more

www.internetwk.com:
How Often Hackers Attack, And What They're After. Read more

news.zdnet.co.uk:
Australian telecoms hacker charged. Read more

zdnet.com.com:
Cyberterrorists don't care about your PC. Read more

11 July 2002

New Trojans:
CRS-Gate 1.1

Infexor Server (b)

XLog 2.21

Tool:
www.insecure.org:
Nmap 2.54BETA36 released. Read more

Vulnerabilities & Exploits:
CERT� Advisory CA-2002-19:
Buffer Overflow in Multiple DNS Resolver Libraries. Read more

Westpoint Security Advisory:
Carello 1.3 Remote File Execution. Read more

Westpoint Security Advisory:
Apache Tomcat Cross Site Scripting. Read more

Westpoint Security Advisory:
GoAhead Web Server Directory Traversal + Cross Site Scripting. Read more

online.securityfocus.com:
Watchdog Firebox Dynamic VPN Configuration Protocol Denial Of Service Vulnerability. Read more

www.securiteam.com:
Exploit for Previously Reported DoS Issues in Shambala Server. Read more

www.securitytracker.com:
BadBlue Web Server Input Validation Flaw in cleanSearchString() Function Lets Remote Users Conduct Cross-Site Scripting Attacks Against BadBlue Users. Read more

www.securitytracker.com:
MyWebServer Buffer Overflow in Processing GET Requests Lets Remote Users Execute Arbitrary Code on the System. Read more

www.securitytracker.com:
PowerBASIC 'urlcount.cgi' Hit Counter Script Input Validation Flaw Lets Remote Users Conduct Cross-site Scripting Attacks. Read more

www.securitytracker.com:
2fax File Conversion Utility Buffer Overflow in '-bpcx' Command Option Lets Local Users Execute Arbitrary Code With Elevated Privileges. Read more

www.securiteam.com:
iPlanet Search Buffer Overflow. Read more

www.securiteam.com:
WatchGuard Firebox Dynamic VPN Configuration Protocol DoS. Read more

www.securiteam.com:
IE Allows Universal Cross Domain Scripting. Read more

www.securiteam.com:
Remote PGP Outlook Encryption Plug-in Vulnerability. Read more

www.securiteam.com:
Multiple Vulnerabilities in ToolTalk Database Server. Read more

News:
online.securityfocus.com:
Detecting and Containing IRC-Controlled Trojans: When Firewalls, AV, and IDS Are Not Enough. Read more

news.com.com:
New security flaw in Outlook, IE. Read more

www.nikkeibp.asiabiztech.com:
Virus Damage for First Half of 2002 Exceeds Entire Reports in 2001: Trend Micro. Read more

www.theregister.co.uk:
al-Qaeda poised to strike hard via the Internet. Read more

www.washingtonpost.com:
E-Mail Encrypting Program Suffers Flaw. Read more

www.netimperative.info:
Hacking - It will never happen to me. Read more

www.themercury.news.com.au:
Optus accounts hacked. Read more

www.itweb.co.za:
Crypto challenge has geeks scratching their heads. Read more

www.theregister.co.uk:
Cracking MS SQL Server passwords. Read more

www.theregister.co.uk:
Dutch ban virtual kinderporno. Read more

10 July 2002

New Trojans:
InCommand1.7-b2

Kryptonic Ghost 1.3

QUetnek Server

Tools:
Senna Spy AVP Signature Offset Finder.
This tool will help you to find what signature/position AVP uses for detecting viruses, worms and trojans. Download

areyoufearless.com:
YAB V2.00. A binder with a massive selection of features. All the features of before, plus many new features and improvements! Read more

www.nmapwin.org:
New version (1.2.8) of NMapWin released. Read more

Vulnerabilities & Exploits:
online.securityfocus.com:
Key Focus KF Web Server Directory Contents Disclosure Vulnerability. Read more

online.securityfocus.com:
MacOS X SoftwareUpdate Arbitrary Package Installation Vulnerability. Read more

www.securitytracker.com:
KF Web Server Discloses Directory Listings for All Web Directory Contents to Remote Users. Read more

www.securitytracker.com:
Mac OS X SoftwareUpdate Feature Uses Unauthenticated Connections for Downloading and Automatically Installing Software Updates, Allowing Remote Users to Install Arbitrary Code on the System. Read more

News:
www.infoworld.com:
Experts expect a major cyberattack. Read more

www.nwfusion.com:
President's advisor predicts cyber-catastrophes unless security improves. Read more

rootprompt.org:
Security in Open versus Closed Systems. Read more

www.newsfactor.com:
Apple Warned of Update Exploit. Read more

www.eweek.com:
iPlanet Web Server Vulnerable to Attackers. Read more

www.voanews.com:
Computer Hackers Beware! Read more

rtnews.globetechnology.com:
Israel tops hacker list. Read more

news.zdnet.co.uk:
Israel, Hong Kong: hacker hotbeds? Read more

www.2600.com:
MITNICK TO APPEAR AT "FREEDOM DOWNTIME" SCREENING IN LOS ANGELES. Read more

news.ft.com:
Falun Gong hacks into Chinese satellite TV broadcasts. Read more

www.msnbc.com:
China vows to catch satellite hackers. Read more

09 July 2002

New Trojans:
InsultMedia Server

DarkFace 2.1

HoneyPot 1.3

Vulnerabilities & Exploits:
online.securityfocus.com:
Webresolve Host Name Buffer Overflow Vulnerability. Read more

online.securityfocus.com:
KMMail Code Injection Vulnerability. Read more

online.securityfocus.com:
ROX-Filer Default World Writeable File Permissions Vulnerability. Read more

online.securityfocus.com:
Nagios Plugin Shell Character Arbitrary Command Execution Vulnerability. Read more

online.securityfocus.com:
Sun Solaris /dev/poll Null Pointer Dereference Denial Of Service Vulnerability. Read more

www.securiteam.com:
KCMS Configure Tool Security Vulnerability (Exploit). Read more

www.securiteam.com:
Technical Details of BadBlue EXT.DLL Vulnerability. Read more

www.securiteam.com:
KF Web server File and Directory Disclosure. Read more

www.securiteam.com:
Buffer Overflow in MyWebServer. Read more

www.securiteam.com:
BEA WebLogic Performance Pack Denial of Service. Read more

www.securitytracker.com:
'artswrapper' Format String Hole Lets Local Users Gain Root Privileges. Read more

www.securitytracker.com:
XiRCON Internet Relay Chat (IRC) Client Connections Can Be Disabled By Remote Users Via an IRC Server. Read more

www.securitytracker.com:
Share360 Groupware Applications Allow Remote Users to Conduct Cross-site Scripting Attacks. Read more

News:
online.securityfocus.com:
Internet Attacks On Companies Up 28 Percent, Report Says. Read more

online.securityfocus.com:
Show us the bugs - users want full disclosure. Read more

online.securityfocus.com:
Past its Prime: Is Anti-Virus Scanning Obsolete? Read more

online.securityfocus.com:
Life After AV: If Anti-Virus is Obsolete, What Comes Next? Read more

zdnet.com.com:
New worm eats into Kazaa. Read more

www.eweek.com:
Who's Watching Whom? Read more

www.online.ie:
Worm blocks access to The Register. Read more

zdnet.com.com:
Mid-year report: Win32 viruses rule. Read more

www.news24.com:
Hackers' paradise. Read more

techupdate.zdnet.co.uk:
Facing the security risks of cable modems. Read more

southflorida.bizjournals.com:
Hackers warn of 'crackers'. Read more

www.cnn.com:
Cyberattacks against energy firms rise. Read more

news.com.com:
Hacker to Apple: Watch those downloads. Read more

08 July 2002

New Trojans:
HoneyPot 1.1

Paltalk

Trojan for Pitbul 0.9

Vulnerabilities & Exploits:
www.securiteam.com:
Remote Winamp Exploit (Product Updates). Read more

www.securiteam.com:
XiRCON Vulnerable to a Denial of Service. Read more

www.securitytracker.com:
Winamp MP3 Media Player Buffer Overflow in Checking 'www.winamp.com' for New Versions Lets Remote Users Execute Arbitrary Code on the Player. Read more

News:
www.theage.com.au:
X marks the spot for hackers. Read more

www.dailytelegraph.co.uk:
No escape from the spies that watch you 24 hours a day. Read more

www.computeruser.com:
EU warns Microsoft over 'interoperability' of security product. Read more

www.newscientist.com:
'Hacktivists' to release covert communications tool. Read more

07 July 2002

New Trojans:
Barisot Server

Ma petite amie

Harvester 3.0

Vulnerabilities & Exploits:
online.securityfocus.com:
Nullsoft Winamp Automatic Update Check Buffer Overflow Vulnerability. Read more

www.securiteam.com:
The Apache "APC" worm. Read more

www.securiteam.com:
Cisco Secure ACS UNIX Acme.server Information Disclosure Vulnerability. Read more

www.securiteam.com:
OpenSSH Challenge-Response Buffer Overflow (Update). Read more

www.securiteam.com:
Argosoft Mail Server Plus/Pro Webmail Reverse Directory Traversal. Read more

www.securiteam.com:
Remotely Exploitable Buffer Overruns in Microsoft's Commerce Server 2000/2. Read more

www.securiteam.com:
SunPCi II VNC Weak Authentication Scheme Vulnerability. Read more

www.securiteam.com:
NN Vulnerable to a Remote Format String Vulnerability. Read more

www.securitytracker.com:
Worldspan for Windows Gateway Software Can Be Crashed By Remote Users Sending Malformed Packets. Read more

www.securitytracker.com:
'nn' News Reader Format String Hole Lets Remote Malicious News Server Execute Arbitrary Code on the Client. Read more

News:
www.europemedia.net:
EU takes issue with Microsoft's security plan. Read more

rtnews.globetechnology.com:
Hacker raids banks, skips town. Read more

www.computing.vnunet.com:
Mitnick takes novel approach to hacking. Read more

www.manchesteronline.co.uk:
Hackers wipe out parking website. Read more

slashdot.org:
Falun Gong Hacks Chinese Satellite. Read more

www.computing.vnunet.com:
Stealth tool makes big entrance. Read more

06 July 2002

New Trojans:
FoxEyes 2.0

CDU`s Backdoor

Eurosol 6.0

Vulnerabilities & Exploits:
online.securityfocus.com:
BEA Systems WebLogic Server and Express Race Condition Denial of Service Vulnerability. Read more

www.securitytracker.com:
Squid Proxy Cache Has Buffer Overflows in Processing Gopher and FTP Data and May Incorrectly Forward Proxy Authentication Credentials to Remote Web Sites. Read more

www.securitytracker.com:
Kim Storm NN NNTP Error Message Format String Vulnerability. Read more

www.securitytracker.com:
Epic Games Unreal Tournament Server DoS Amplifier Vulnerability. Read more

www.securitytracker.com:

www.securitytracker.com:
Sun Solaris Operating System gethostbyX() Functions May Allow Remote Users to Cause Certain Applications to Fail. Read more

www.securitytracker.com:
BEA WebLogic Server Race Condition May Let Remote Users Crash the Server. Read more

www.securitytracker.com:
Noguska's NOLA Web-based Accounting and Inventory Management Package Lets Remote Users Upload and Execute PHP Code. Read more

www.securitytracker.com:
Sun Virtual Network Computing Software (SUNWspvnc) for Sun's PCi Card Discloses the VNC Password to Remote Users, Offering System Access to Remote Users. Read more

www.securitytracker.com:
Macromedia JRun Java Server Authentication Process Can Be Bypassed By Remote Users By Adding an Extra '/' to the Administrative Server URL. Read more

www.securitytracker.com:
ArGoSoft Mail Server Input Validation Flaw Lets Remote Users View Files on the System. Read more

www.securitytracker.com:
Sun Solaris Operating System Bug in '/dev/poll' May Let Local Users Cause a Kernel Panic. Read more

News:
economictimes.indiatimes.com:
Cult of the dead cow strikes India. Read more

economictimes.indiatimes.com:
Hacker swipes $35,000 from Sing bank. Read more

www.ciol.com:
Privacy at stake: The Carnivore is on the prowl. Read more

news.zdnet.co.uk:
KWBot worm hits Kazaa. Read more

rootprompt.org:
Linux Trojans/Malware? Read more

www.smh.com.au:
Exploiting DCOM To Spy On IE Users. Read more

www.idg.net:
Microsoft Needs Help for Security Plan to Fly. Read more

www.iht.com:
U.S. security plan omits a threat. Read more

www.theregister.co.uk:
Greek ban on gaming threatens Internet cafes. Read more

www.theregister.co.uk:
Council temp fired after virus outbreak. Read more

05 July 2002

New Trojans:
DataRape 1.2

PSYchoFiles 1.81

HalloDoor Server

Tool:
securityfriday.com:
IE'en remotely controls Internet Explorer using DCOM. Read more

freshmeat.net:
Mandrake Security tools 0.24. Read more

Vulnerabilities & Exploits:
online.securityfocus.com:
ArGoSoft Mail Server Directory Traversal Vulnerability. Read more

online.securityfocus.com:
NEC Socks5 User Name Buffer Overflow Vulnerability. Read more

online.securityfocus.com:
NEC Socks4 User Name Buffer Overflow Vulnerability. Read more

www.securitytracker.com:
Lotus Domino Web Server R4 May Disclose Files in the Web Root Directory to Remote Users Via URL Requests Ending With a Question Mark. Read more

www.securitytracker.com:
Inktomi Traffic Edge Caching Server Buffer Overflow Lets Local Users Execute Arbitrary Code with Root Privileges. Read more

www.securitytracker.com:
Inktomi Traffic Server Network Cache Buffer Overflow Lets Local Users Execute Arbitrary Code with Root Privileges. Read more

www.securitytracker.com:
APC PowerChute Plus for Windows Default Configuration Creates a Shared Folder with World Writeable Permissions. Read more

www.securitytracker.com:
HP DCE Client Software Has Unspecified Security Hole That Allows Remote Users to Crash the DCE Daemon. Read more

www.securitytracker.com:
PhpAuction Authentication Hole Lets Remote Users Create Administrator Accounts on the Application. Read more

www.securitytracker.com:
CommuniGate Pro Messaging Server Discloses Certain Directory Contents to Remote Users. Read more

www.securitytracker.com:
Sun Solaris Unspecified Kernel Streams Bug May Let Local Users Access Data From the System Serial Console. Read more

www.securitytracker.com:
Slashcode 'Slash' Forum Input Validation Bug Lets Remote Users Conduct Cross-Site Scripting Attacks Against Slash Users. Read more

www.securitytracker.com:
Blackboard Learning and Community Portal System Input Validation Holes Let Remote Users Conduct Cross-site Scripting Attacks. Read more

www.securitytracker.com:
Cisco Secure Access Control Server for Unix Discloses Files on the System to Remote Users. Read more

News:
online.securityfocus.com:
Web Server vulnerability reaches all time high. Read more

www.virusbtn.com:
Setting the record straight.
"The Mental Driller", member of the 29A virus-writing group, denies working for any anti-virus company. Read more

rtnews.globetechnology.com:
Hotmail, AOL and anti-virus software. Read more

zdnet.com.com:
Fed-up customers want faster bug alerts. Read more

zdnet.com.com:
Microsoft teases 'Trustworthy Computing'. Read more

www.silicon.com:
Council worker fired for wreaking virus havoc. Read more

www.vnunet.com:
Publisher of hacker site surrenders. Read more

04 July 2002

New Trojans:
XPosure 2.1

Aphex FTP

Fonly Server (b)

Vulnerabilities & Exploits:
www.securiteam.com:
SQL Injection Walkthrough. Read more

www.securiteam.com:
More Advanced SQL Injection Paper Released. Read more

online.securityfocus.com:
Slashcode Paragraph Tag Script Injection Vulnerability. Read more

online.securityfocus.com:
Blackboard Cross-Site Scripting Vulnerability. Read more

www.securitytracker.com:
AnalogX Proxy Server Buffer Overflow Lets Remote Users Execute Arbitrary Code on the System. Read more

www.securitytracker.com:
OmniHTTPd Web Server Bug in Processing Long HTTP Protocol Parameters Allows Remote Users to Crash the Web Service. Read more

www.securitytracker.com:
Betsie Text-to-Speech Enhancement Script Has Input Validation Holes That Let Remote Users Conduct Cross-site Scripting Attacks. Read more

www.securitytracker.com:
Macromedia JRun Server Bug in Processing Unicode Null Characters in URL Discloses JSP Source Code to Remote Users. Read more

www.securitytracker.com:
Macromedia Sitespring Content Management Server Can Be Crashed By Remote Users. Read more

www.securitytracker.com:
WatchGuard Firebox SOHO Default Configuration May Facilitate Brute Force Password Guessing Attacks on the Internal Interface. Read more

www.securiteam.com:
Lotus Domino Web Server File Retreival Vulnerability. Read more

www.securiteam.com:
Vulnerability Report for Inktomi Traffic Server. Read more

News:
www.timesonline.co.uk:
In global trouble spots, cells of "hacktivists" are waging e-war on rival states. Read more

www.ananova.com:
Klez-H tops half-year virus chart. Read more

www.pcworld.com:
Why Is the Web More Vulnerable Than Ever? Read more

www.informationweek.com:
Chalk One Up For Free Wireless. Read more

www.theregister.co.uk:
Zimmermann calls for NAI to free PGP. Read more

03 July 2002

New Trojans:
NetDevil 1.5

Smoke Downloader 1.1

Sonitro Server

Vulnerabilities & Exploits:
online.securityfocus.com:
Macromedia Sitespring Database Engine Denial Of Service Vulnerability. Read more

www.securiteam.com:
TrendMicro's VirusWall Space Gap (Virus Protection Bypassing). Read more

www.securitytracker.com:
E-Guest Guestbook CGI Script Input Validation Hole Lets Remote Users Execute Shell Commands on the System and Also Conduct Cross-Site Scripting Attacks Against E-Guest Users. Read more

www.securitytracker.com:
Simple Wide Area Information Service (SWAIS) Input Validation Flaw Lets Remote Users Execute Shell Commands on the System. Read more

www.securitytracker.com:
ht://Dig Search Engine Software May Allow Cross-Site Scripting Attacks. Read more

News:
Microsoft Security Bulletin MS02-029
Unchecked Buffer in Remote Access Service Phonebook Could Lead to Code Execution (Q318138). Read more

www.smh.com.au:
Apache worm loose on the Net. Read more

www.zdnet.com:
How we could have prevented an Apache worm. Read more

rtnews.globetechnology.com:
CA issues Apache Worm warning. Read more

www.pcworld.com:
Klez: The Virus That Won't Die? Read more

www.detnews.com:
Microsoft security holes widen. Read more

www.infoworld.com:
DNS flaws put Net connected systems at risk. Read more

www.theregister.co.uk:
Bug puts Unix servers in a BIND. Read more

www.msnbc.com:
FBI To Valley: Tell Us About Attacks. Read more

www.vnunet.com:
Adding fuel to the firewall. Read more

zdnet.com.com:
Wireless attacks: Wave a white flag? Read more

www.nzherald.co.nz:
Modems in danger of hackers gaining entry. Read more

www.vnunet.com:
Computer viruses mimic real thing. Read more

02 July 2002

New Trojans:
Glacier 8.0

PlayX

Screen Cutter 1.0

Vulnerabilities & Exploits:
online.securityfocus.com:
E-Guest Guest Book Script Injection Vulnerability. Read more

online.securityfocus.com:
E-Guest Server Side Include Arbitrary Command Execution Vulnerability. Read more

online.securityfocus.com:
Zap Book Server Side Include Arbitrary Command Execution Vulnerability. Read more

online.securityfocus.com:
Zap Book Script Injection Vulnerability. Read more

www.securitytracker.com:
Bonobo 'efstool' Buffer Overflow Lets Local Users Execute Arbitrary Code to Gain Root Privileges. Read more

www.securitytracker.com:
OpenBSD UNIX Kernel ktrace(2) Function Allows Local Users to Trace Processes With Elevated Privileges. Read more

bvlive01.iss.net:
OpenSSH Remote Challenge Vulnerability. Read more

www.securiteam.com:
WatchGuard SOHO FTP Authentication Flaw. Read more

www.securiteam.com:
Macromedia JRun Admin Server Authentication Bypass. Read more

www.securiteam.com:
JRun Source Code Disclosure. Read more

www.securiteam.com:
Sitespring Server Denial of Service. Read more

www.securiteam.com:
'WEB-INF' Folder Accessible in Multiple Web Application. Read more

www.securiteam.com:
Apache mod_ssl Off-by-One Vulnerability. Read more

News:
www.cnn.com:
Book by outlaw hacker describes tricks of the trade. Read more

news.zdnet.co.uk:
Web ripe for massive worm attack. Read more

www.smh.com.au:
Apache worm loose on the Net. Read more

news.com.com:
Apache worm barely squirms. Read more

www.pcworld.com:
Worm Exploits Apache Vulnerability. Read more

zdnet.com.com:
Few signs of life in Apache worm. Read more

www.smh.com.au:
Klez tops virus stakes. Read more

www.theregister.co.uk:
Klez tops virus charts - again. Read more

news.zdnet.co.uk:
FBI overhauling 'broken' tech systems. Read more

01 July 2002

New Trojans:
BlackHole 2000

QRoject WebDownloader 2.0a

WebDownloader Shut-it 1.0

Vulnerabilities & Exploits:
online.securityfocus.com:
Bonobo EFSTool Commandline Argument Buffer Overflow Vulnerability. Read more

www.securitytracker.com:
Oracle Containers for J2EE (OC4J) Dot URL Bug Discloses Server Files to Remote Users. Read more

www.securitytracker.com:
PHP Ticket Cross Site Scripting Vulnerability. Read more

www.securitytracker.com:
Macromedia JRun Web Application Server Dot URL Bug Discloses Server Files to Remote Users. Read more

www.securitytracker.com:
HP Application Server Dot URL Bug Discloses Server Files to Remote Users. Read more

www.securitytracker.com:
Orion Application Server Dot URL Bug Discloses Server Files to Remote Users. Read more

www.securitytracker.com:
Pramati Server Java Web Application Server Dot URL Bug Discloses Server Files to Remote Users. Read more

www.securitytracker.com:
jo! Java Application Server Dot URL Bug Discloses Server Files to Remote Users. Read more

www.securitytracker.com:
Sybase EAServer Java Web Application Server Dot URL Bug Discloses Server Files to Remote Users. Read more

www.securitytracker.com:
Novell iManage for NetWare Lets Remote Users Crash the Service. Read more

www.securitytracker.com:
Half-Life Gaming Server Protocol Allows Remote Users to Deny Service to Other Players. Read more

www.securitytracker.com:
Ransom's Scripts 'whois' CGI Script Input Validation Flaw Lets Remote Users Execute Shell Commands on the Server. Read more

www.securiteam.com:
OpenBSD SSHd Remote Root Exploit. Read more

www.securiteam.com:
SSI & CSS Execution in E-Guest and ZAP Book. Read more

www.securiteam.com:
Simple WAIS Allows Users to Execute Commands as the SWAIS Daemon.. Read more

News:
www.sfgate.com:
Security analysts dismiss fears of terrorist hackers Electricity, water systems hard to damage online . Read more

www.smh.com.au:
Worm hits Pakistan government site. Read more

www.canada.com:
Canada's hero hacker unmasked. Read more

timesofindia.indiatimes.com:
Pak claims Indian hackers blocked govt website. Read more

www.cnet.com:
Online hacker raids bank accounts. Read more


Copyright� MegaSecurity.org