Bookmark or link to: kobayashi.cjb.net. All other url`s could change!
Home   News Archive    Translate Traducen
News August 2003
29 august 2003

New Trojans:
WinEggDrop Shell 1.35

Hacker defender 0.73

MagicLink 1.0

Tools
www.kismetwireless.net:
Kismet is an 802.11 wireless network sniffer. Read more

packetstormsecurity.nl:
Shatter attack exploit for DameWare Mini Remote Control Server. Download

Guides, Papers, etc.
packetstormsecurity.nl:
Intrusion Agent. The Next Generation Of Spy (pdf). Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
Castle Rock SNMPc Yields Supervisor Privileges to Remote Users. Read more

www.securitytracker.com:
newsPHP Flaws in 'nphpd' Permit Remote Users to View and Execute Files and Execute Script Functions. Read more

www.securitytracker.com:
suidperl Discloses File Existence to Local Users. Read more

www.securitytracker.com:
Tellurian TftpdNT Buffer Overflow Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
PY-Membres Input Validation Flaw in 'pass_done.php' Permits SQL Injection. Read more

www.securiteam.com:
GtkFTPd Remotely Exploitable Buffer Overflow (Filename). Read more

News:

www.theregister.co.uk:
Net anonymity service un-backdoored. Read more

www.abc.net.au:
NAB hit by scam email. Read more

www.adn.com:
Arrest planned in Internet virus attack. Read more

www.smh.com.au:
FBI to arrest teenager for creating Blaster worm. Read more

www.9news.com:
Computer hackers costing businesses billions. Read more

www.smh.com.au:
Anti-virus software 'causing more headaches than Sobig worm'. Read more

www.startribune.com:
Viruses might be outwitting individual computers. Read more

www.ajc.com:
Identity theft, scourge of information age, a threat here. Read more

www.theregister.co.uk:
AV bigwigs weigh in on Sobig debate. Read more

www.computerworld.com:
EarthLink sues spam, identity-theft rings. Read more

www.eurekalert.org:
Electricity grids left open to hackers. Read more

28 august 2003

New Trojans:
SpyAnywhere 2.12.03

NetControl TakeOver 2.0

Espionage 1.0

Vulnerabilities & Exploits:
www.securitytracker.com:
MPCSoftWeb Forum Access Control Flaw Discloses Administrator and User Passwords to Remote Users. Read more

www.securitytracker.com:
MPCSoftWeb Photo Discloses Administrator Password to Remote Users. Read more

www.securitytracker.com:
AnalogX Proxy Input Validation Flaw Permits Remote Cross-Site Scripting Attacks Against Arbitrary Web Sites. Read more

www.securitytracker.com:
Sendmail DNS Map Initialization Flaw May Let Remote Users Crash the System. Read more

News:
www.ajc.com:
Exploiting Holes In The Net. Read more

www.theregister.co.uk:
Why Sobig is bad for privacy and AV vendors. Read more

www.computerweekly.com:
Thought for the day: The attack of the worms. Read more

www.startribune.com:
Internet attackers harder to track, experts say. Read more

catless.ncl.ac.uk:
Some observations on e-mail phenomenology. Read more

www.theregister.co.uk:
Viral opportunity. Read more

www.vnunet.com:
Amazon declares war on spoofers. Read more

27 august 2003

New Trojans:
Iroffer 1.2b13

Spybot 1.2a

WinEggDrop Shell 1.36

winrcLoader

Guides, Papers, etc.
Court order requiring Earthlink to install a CARNIVORE. (out of date). Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
AnyBoard Discloses System Information to Remote Users. Read more

www.securitytracker.com:
GNU Whois Local Buffer Overflow May Present a Remote-Based Vulnerability When Called By Web Applications. Read more

www.securitytracker.com:
Blubster File Sharing Software Can Be Crashed By Remote Users. Read more

www.securitytracker.com:
WIDZ Intrusion Detection Input Validation Flaw Lets Remote Users Execute Arbitrary Code With Root Privileges. Read more

www.securitytracker.com:
Monop Local Vulnerability Exploit Code Released. Read more

News:
www.securityfocus.com:
U.S. Sponsors Anti-Censorship Web Service. Read more

news.com.com:
FBI hunts down worm writers. Read more

www.startribune.com:
Internet attackers wear many guises. Read more

www.msnbc.com:
A legal fix for software flaws? Read more

www.globetechnology.com:
This worm can be turned. Read more

news.com.com:
Netgear flaw triggers accidental DoS attack. Read more

www.zdnet.com:
The ONLY ways to stop spam and viruses. Read more

news.com.com:
Boingo Wi-Fi checks in to more hotels. Read more

26 august 2003

New Trojans:
Red ZONE 6.2

Remote PC

News:
www.chron.com:
Experts see greed as motive for Sobig. Read more

www.usatoday.com:
Worm, virus threat grows. Read more

www.eweek.com:
Microsoft's Worm Fund. Read more

news.com.com:
Hackers cut off SCO Web site. Read more

www.sltrib.com:
Arizona company subpoenaed in virus attack. Read more

25 august 2003

New Trojans:
PianoYes

Herman Uploader Public Beta 1.0

Vulnerabilities & Exploits:
www.securitytracker.com:
Helix Universal Server and RealServer URL Parsing Flaw in View Source Plug-in Lets Remote Users Execute Arbitrary Code With Root Privileges. Read more

www.securitytracker.com:
Linux Kernel C-Media PCI Audio Driver Does Not Properly Access Userspace Data. Read more

www.securitytracker.com:
WapServ WAP Gateway Can Be Crashed By Remote Users. Read more

www.securiteam.com:
Vonage VOIP 3-way call CID Spoofing Vulnerability. Read more

www.securiteam.com:
Mapquest.com Cross-Site Scripting Vulnerability. Read more

www.securiteam.com:
URL Parsing and Plain Text Password disclosure in Best Buy Employee Toolkit Software. Read more

www.securiteam.com:
Cross Site Scripting Vulnerability Found in Yahoo WebSite. Read more

www.securiteam.com:
Buffer Overflow in UDP Broadcasts for Microsoft SQL Server Client Utilities. Read more

News:
www.telecomasia.net:
Sobig.F worm origin traced to porn Usenet group. Read more

www.infoconomy.com:
Sobig virus traced to Arizona Internet company. Read more

www.ntsecurity.net:
SoBig.F Slows, But SoBig.G is Coming Soon. Read more

www.zdnet.com:
Why virus writers get away with it. Read more

www.news.com.au:
Japan challenges hackers. Read more

linuxtoday.com:
Update: ESR Confirms DoS Attack; Hacker to End Attack. Read more

24 august 2003

New Trojans:
Iroffer 1.2b12

WinEggDrop Online Keylogger 1.1

Slackbot 1.0 (chinese version)

Vulnerabilities & Exploits:
www.securitytracker.com:
Avant Browser Crashes When Loading a Long URL. Read more

www.securitytracker.com:
GNOME Display Manager (gdm) Lets Local Users View Files With Root Privileges. Read more

www.securitytracker.com:
srcpd Buffer Overflows Let Remote Users Execute Arbitrary Code. Read more

News:
uk.news.yahoo.com:
Sobig virus slows. Read more

www.channelnewsasia.com:
Sobig virus slows, author aims to build robot network: experts. Read more

23 august 2003

New Trojans:
Snow 2.5

WinEggDrop Shell 1.27

Tools
ntbugtraq.ntadvice.com:
Memet Anwar has made a free patch deployment tool called hfnetFU that can remotely install hotfixes based on Microsoft Baseline Security Analyzer output (mbsacli.exe /hf, or previously Hfnetchk.exe). Read more

Guides, Papers, etc.
www.lurhq.com:
Sobig.e - Evolution of the Worm. Read more

News:
xforce.iss.net:
Sobig.F Mass-Email Worm - Trojan Horse Functionality. Read more

www.prnewswire.com:
Easynews.com Cooperating With FBI on Search for SoBig.F Virus Origin. Read more

story.news.yahoo.com:
Experts: Much-Feared Virus Attack Fizzles. Read more

www.sunspot.net:
Infected PCs await orders from hacker. Read more

www.theregister.co.uk:
Sobig-F timed for Trojan download tonight? Read more

www.pittsburghlive.com:
Officials issue Sobig virus subpoena; Attack fails. Read more

www.usatoday.com:
Sobig.F worm believed to start at Web porn site. Read more

news.bbc.co.uk:
Why people write computer viruses. Read more

www.blackhat.com:
BLACK HAT BRIEFINGS, call for papers. Read more

www.sundaytimes.co.za:
Investec ups security for private bank clients. Read more

22 august 2003

New Trojans:
sdbot 0.5a

Proc32

URCS 1.06

HTTP RAT 0.31 (n)

Guides, Papers, etc.
www.securityfocus.com:
Penetration Testing for Web Applications (Part Three). Read more

Vulnerabilities & Exploits:
www.secadministrator.com:
Multiple Vulnerabilities in Microsoft Internet Explorer. Read more

www.lac.co.jp:
Internet Explorer Object Type Buffer Overflow in Double-Byte Character Set Environment. Read more

www.lac.co.jp:
The Return of the Content-Disposition Vulnerability in IE. Read more

www.securitytracker.com:
netris Client Buffer Overflow May Let Remote Servers Execute Arbitrary Code on the Client. Read more

www.securitytracker.com:
OpenBSD semget() Boundary Overflow Bug Lets Local Users Crash the System. Read more

www.securitytracker.com:
ViRobot Anti-Virus Buffer Overflows Let Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
paBox May Disclose the Administrator's Password in a Cookie. Read more

www.securitytracker.com:
Piolet File Sharing Client Can Be Crashed By a Remote User Send a Data Flood. Read more

www.securitytracker.com:
netris Game Buffer Overflow Lets Remote Users Crash the Daemon. Read more

www.securitytracker.com:
Lotus Domino Web Server Can Be Crashed With Incomplete or Invalid POST Request. Read more

www.securitytracker.com:
Microsoft Internet Explorer Buffer Overflow in CR549.DLL ActiveX Control Permits Remote Code Execution. Read more

www.securitytracker.com:
Microsoft Internet Explorer Object Tag Flaw Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Microsoft Internet Explorer Cache Script Flaw Lets Remote Users Execute Code in the My Computer Zone. Read more

www.securitytracker.com:
Microsoft MDAC Database Component Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Multipoint FTP-Server Input Validation Flaw Discloses Files on the System to Remote Authenticated Users. Read more

www.securitytracker.com:
oMail-webmail Input Validation Flaw in checklogin() Lets Remote Users Execute Arbitrary Shell Commands. Read more

www.securitytracker.com:
RealOne Player May Execute Scripting Code in an Arbitrary Domain. Read more

News:
www.detnews.com:
Microsoft browser, Windows have new security flaws. Read more

www.securityfocus.com:
Slow Down Internet Worms With Tarpits. Read more

www.theregister.co.uk:
MS releases unholy trinity of security fixes. Read more

www.worldtechtribune.com:
Microsoft working with Feds; virus attacks may be terrorism. Read more

www.zdnet.com.au:
New e-mail scam targets St. George. Read more

Watch Out for "Phishing" Emails Attempting to Capture Your Personal Information. Read more

www.freep.com:
Latest computer worm wreaks havoc worldwide. Read more

money.cnn.com:
Worm turns PCs into spam machines. Read more

www.theregister.co.uk:
Net anonymity service back-doored. Read more

www.theregister.co.uk:
More kids want to be hackers than rockers. Read more

www.theregister.co.uk:
Forget California, it's time to recall Microsoft. Read more

21 august 2003

New Trojans:
NT RootKit 1.1

Registry Loader 2.0

Beast 2.01 Chinese

Vulnerabilities & Exploits:
www.eeye.com:
Internet Explorer Object Data Remote Execution Vulnerability. Read more

www.securitytracker.com:
vHost POP Server Can Be Crashed By Remote Users. Read more

www.securitytracker.com:
Oracle Database XML Database Function Buffer Overflows Let Remote Users Access Database Sessions. Read more

www.securiteam.com:
The Return of the Content-Disposition Vulnerability in IE. Read more

www.securiteam.com:
Internet Explorer Object Type Buffer Overflow in Double-Byte Character Set Environment. Read more

www.securiteam.com:
ViRobot Linux Server Contains Several Local Overflows. Read more

News:
Microsoft Security Bulletin MS03-030
Unchecked Buffer in DirectX Could Enable System Compromise (819696). Read more

Microsoft Security Bulletin MS03-032
Cumulative Patch for Internet Explorer (822925). Read more

Microsoft Security Bulletin MS03-033
Unchecked Buffer in MDAC Function Could Enable System Compromise (823718). Read more

Microsoft Security Bulletin MS02-040
Unchecked Buffer in MDAC Function Could Enable System Compromise (Q326573). Read more

www.zdnet.com.au:
New e-mail scam targets St. George. Read more

www.wral.com:
Identity Thieves Go 'Phishing' For Personal Information Through E-Mail. Read more

silicon.com:
Banking websites are 'turkey shoot for hackers'. Read more

hpat962.external.hp.com:
hp OpenView products impacted by �Blaster� worm virus. Read more

www.theregister.co.uk:
Auto-responders magnify Sobig problem. Read more

www.theregister.co.uk:
Slammer worm crashed Ohio nuke plant net. Read more

www.masshightech.com:
Former hacker launches network security company. Read more

20 august 2003

New Trojans:
Haxial RAT

sdbot 0.4b

The[X] 1.3

Guides, Papers, etc.
codersroot.net:
SDBot Kiddies Get A Dose Of My Boredom :) Read more

www.toorcon.org:
ToorCon is a comprehensive, three-day information security extravaganza. Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
OpenSLP Temporary File Flaw May Let Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
MatrikzGB Authentication Hole Yields Administrative Privileges to Remote Authenticated Users. Read more

www.securitytracker.com:
Dropbear SSH Server Format String Flaw Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Attila PHP Input Validation Flaws Permit Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
lmule Buffer Overflow, Format String, and Other Flaws Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
xMule Buffer Overflow, Format String, and Other Flaws Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
eMule Buffer Overflow, Format String, and Other Flaws Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
DWebPro Discloses MySQL Database Password to Local Users. Read more

www.securitytracker.com:
CheckMail Discloses Passwords to Local Users. Read more

www.securitytracker.com:
StarFish Family Mail Discloses Passwords to Local Users. Read more

www.securitytracker.com:
NetMail Discloses Passwords to Local Users. Read more

www.securitytracker.com:
Allenchow POP3 Checker Discloses Passwords to Local Users. Read more

www.securitytracker.com:
NetServe Discloses the Administrator's Password to Local Users. Read more

www.securitytracker.com:
WebFtp Discloses Passwords to Local Users. Read more

www.securityfocus.com:
Bug in Norton FireWall 2003. Read more

News:
www.informationweek.com:
Citigroup Is Latest Victim Of Phishing Expedition. Read more

www.securityfocus.com:
Microsoft Weighs Automatic Security Updates as a Default. Read more

www.siliconvalley.com:
In wake of worm, Microsoft considers automating updates. Read more

silicon.com:
Friendly viruses? Pull the other one. Read more

www.sunspot.net:
'Good' PC worm vs. 'bad' one. Read more

www.sundaytimes.co.za:
Good worm tries to fix Blaster damage. Read more

19 august 2003

New Trojans:
Srv

superSpy 2.0 Beta

Hacker defender 0.2.6

Guides, Papers, etc.
www.securityfocus.com:
MRTG for Intrusion Detection with IIS 6. Read more

Vulnerabilities & Exploits:
www.securiteam.com:
Anonymizer.com Might Reveal Your IP (Double Proxy). Read more

www.securiteam.com:
eMule / Lmule / xMule Multiple Remote Vulnerabilities. Read more

www.securiteam.com:
UNIX Entropy Source Can Be Used For Keystroke Timing Attacks. Read more

www.securiteam.com:
Microsoft URLScan Configuration Can be Enumerated when Implemented in Conjunction with RSA SecurID. Read more

www.security-corporation.com:
Multiple vulnerabilities in AttilaPHP. Read more

www.securiteam.com:
Ecartis Contains Multiple Vulnerabilities. Read more

www.securiteam.com:
Dropbear SSH Server Format String Vulnerability. Read more

www.securiteam.com:
Remote Vulnerability in Horde MTA. Read more

www.debian.org:
DSA-373-1 autorespond -- buffer overflow. Read more

www.debian.org:
DSA-372-1 netris -- buffer overflow. Read more

News:
www.securityfocus.com:
The Sad Tale of a Security Whistleblower. Read more

www.miami.com:
Internet Information Scam Uses Citi Logo. Read more

www.heraldsun.news.com.au:
Hackers target financial institutions. Read more

www.sfgate.com:
Security lessons unlearned, don't blame the worm. Read more

news.bbc.co.uk:
The hidden dangers of documents. Read more

18 august 2003

New Trojans:
Infiltrator 1.0

ICQ PasswordSniffer 3.0

ICQ PasswordSniffer 4.1

Armageddon 2.0

Vulnerabilities & Exploits:
security.e-matters.de:
emule/xmule/lmule remote vulnerabilities. Read more

News:
www.zdnet.com:
The end of e-mail viruses--and antivirus apps. Read more

www.sfgate.com:
Microsoft pulls a vanishing act on Blaster. Read more

www.newscientist.com:
Online document search reveals secrets. Read more

17 august 2003

New Trojans:
Real McCoy AIM Password Stealer 4.2

AmigaAnywhere 0.97

WinEggDrop Shell 1.33

Tools
Nmap's Silent Partner
POF is an OS fingerprinting tool for the good guys. Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
Best Buy Employee Toolkit Lets Local Users Execute Arbitrary Commands and Also Discloses Server Password. Read more

www.securitytracker.com:
Poster Setup Script Lets Remote Users Access Administrative Functions. Read more

www.securitytracker.com:
RSA SecurID Interaction With Microsoft URLScan May Disclose URLScan Configuration to Remote Users. Read more

www.securitytracker.com:
SGI Checkpoint/Restart 'libcpr' Flaw Lets Local Users Overwrite Files With Elevated Privileges. Read more

www.securitytracker.com:
Cronus CPOP Discloses Passwords to Local Users. Read more

News:
www.chron.com:
Worm error gives Web wiggle room. Read more

www.ctv.ca:
Blaster worm looks like a dud, Microsoft says. Read more

www.thepost.ie:
MSBlast virus claimed 9,000 Irish victims. Read more

www.vnunet.com:
Richer surfers feel less secure. Read more

16 august 2003

New Trojans:
Bear & Tiger 1.0

Saria Fake Logins

GLSSpy

Guides, Papers, etc.
www.securityfocus.com:
Honeypot Farms. Read more

www.hackinglinuxexposed.com:
Sniffing with Net::Cap to stealthily managing iptables rules remotely, Part 1. Read more

www.hackinglinuxexposed.com:
Running programs in response to sniffed DNS packets - stealthily managing iptables rules remotely, Part 2. Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
WebiToome Discloses Passwords to Local Users. Read more

www.securitytracker.com:
Magic Winmail Server Discloses Passwords to Local Users. Read more

www.securitytracker.com:
Ecartis Buffer Overflows May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
DameWare Mini Remote Control Lets Local Users Gain System Privileges. Read more

www.securitytracker.com:
holaCMS Discloses Administrator Password to Remote Users. Read more

News:
www.informationweek.com:
Tick-Tock: Microsoft Counts Down To Blaster Denial-Of-Service Attack. Read more

www.chron.com:
Worm error gives Web wiggle room. Read more

www.wcpo.com:
Authorities Look At Possible Hacker Angle In Power Outage. Read more

Who wants to be a millionaire? The Nigeria-Connection.
Nigerian fraudsters who dupe people around the world by writing scam letters have invaded cyberspace. Read more

www.theregister.co.uk:
GNU servers 'owned' by crackers since March. Read more

www.eweek.com:
GNU Project's FTP Servers Hacked. Read more

15 august 2003

New Trojans:
A-311 Death 1.03

Red ZONE 5.5

eBlaster 2.1

Tools
cmn.listprojects.darklab.org:
SADoor, Non-Listening Remote Administration Tool. Read more

Guides, Papers, etc.
www.net-security.org:
Detecting and Understading rootkits. Read more

Vulnerabilities & Exploits:
Disassembly of the Win32 DCOM worm by Rolf Rolles. Read more

www.securitytracker.com:
ChitChat.NET Input Filtering Holes in 'Name' and 'TopicTitle' Permit Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
XOOPS Input Filtering Flaw in BBcode Tags Permits Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
SGI IRIX nfsd Packet Decoding Errors Let Remote Users Crash the System. Read more

www.securitytracker.com:
Microsoft Visual Studio Buffer Overflow in 'mciwndx.ocx' May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
CiscoWorks 2000 Input Validation Flaws Let Remote Users Access the System. Read more

www.securitytracker.com:
xMule Format String Bugs May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Webware WebKit Input Validation Flaw in SmartCookie May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
SkunkWeb Input Validation Flaw Discloses Files Located Outside of the Document Directory to Remote Users. Read more

www.securitytracker.com:
distcc Temporary File Bug May Let Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
Inframail Discloses Passwords to Local Users. Read more

www.securitytracker.com:
WorkgroupMail Discloses Passwords to Local Users. Read more

www.securiteam.com:
Off-by-One Error in realpath() (Exploit). Read more

www.securiteam.com:
IBM DB2 Lib Directory Vulnerability Allows Gaining of Elevated Privileges (Exploit). Read more

www.securiteam.com:
Netris Remote Memory Corruption Exploit Code Released. Read more

www.securiteam.com:
CiscoWorks 2000 Privilege Escalation Vulnerabilities (CiscoWorks Application Vulnerabilities). Read more

www.securiteam.com:
Microsoft Internet Explorer about:blank Cross Site Scripting. Read more

www.securiteam.com:
ChitChat.NET XSS Vulnerability. Read more

News:
www.securityfocus.com:
The Bright Side of Blaster. Read more

www.theage.com.au:
Worm outbreak leads to change in XP's default firewall setting. Read more

www.nynewsday.com:
Internet Worm Spreads Fear. Read more

www.heraldsun.news.com.au:
Worm turns up again to hit PCs. Read more

www.sundaytimes.co.za:
Blaster worm variant loose. Read more

www.news.com.au:
Worm on the wane: FBI. Read more

www.nytimes.com:
Microsoft to Change Distribution of Vulnerable Software. Read more

uk.news.yahoo.com:
Indian teenage hacker spurns jobs for studies. Read more

www.securityfocus.com:
Hackers Claim New Fingerprint Biometric Attack. Read more

14 august 2003

New Trojans:
Beast 2.01 Cracked

Glacier 0.0

Glacier ROSE

e-Surveiller 1.0

Tools
pedram.redhive.com:
dnshijacker is a libnet/libpcap based packet sniffer & spoofer. Read more

Guides, Papers, etc.
www.blackhat.com:
Variations in Exploit methods between Linux and Windows (pdf). Read more

Windows Server 2003: The Road To Gold.
Part One: The Early Years. Read more
Part Two: Developing Windows. Read more

microsoft.com:
Internet Firewalls. Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
HostAdmin Discloses Installation Path to Remote Users Via Error Messages. Read more

www.securitytracker.com:
WWW File Share Pro Discloses the Site Password to Local Users. Read more

www.securitytracker.com:
BulletProof FTP Server Discloses FTP User Passwords to Local Users. Read more

www.securitytracker.com:
Eudora WorldMail Server Input Filtering Hole in Search Feature Permits Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
BadBlue Personal Edition 'phptest' Script Discloses Installation Path to Remote Users. Read more

www.securitytracker.com:
Smallftpd Discloses Passwords to Local Users. Read more

www.securitytracker.com:
NGC Active FTPServer Discloses FTP Server User Passwords to Local Users. Read more

www.securiteam.com:
xv Local Exploit (-name Variable). Read more

www.securiteam.com:
Dialog Local Exploit (HOME). Read more

www.securiteam.com:
Linux x86 "joe" Local Exploit. Read more

www.securiteam.com:
Subnet Bandwidth Management (SBM) Protocol subject to attack via the Resource Reservation Protocol (RSVP). Read more

www.securiteam.com:
NetSurf URL Overflow. Read more

www.securiteam.com:
DameWare Mini-RC Shatter (Exploit). Read more

www.securiteam.com:
SurgeLDAP Multiple Security Vulnerabilities. Read more

Cisco Security Advisory:
CiscoWorks Application Vulnerabilities. Read more

www.7f.no-ip.com:
An analysis of the Sendmail prescan vulnerability (CA-2003-12). Read more

www.cert.org:
CERT� Advisory CA-2003-21 GNU Project FTP Server Compromise. Read more

News:
Microsoft Security Bulletin MS03-029
Flaw in Windows Function Could Allow Denial of Service (823803). Read more

www.theinquirer.net:
New version of Blaster worm on the loose. Read more

www.nytimes.com:
Microsoft to Change Distribution of Vulnerable Software. Read more

www.timesofoman.com:
Expert warns of another Web worm attack. Read more

www.washingtonpost.com:
Transcript: Alan Paller, from the SANS Institute, discussed the worm. Read more

www.nationalpost.com:
Virus finds new way to attack computers. Read more

www.heraldsun.news.com.au:
Worm turns up again to hit PCs. Read more

story.news.yahoo.com:
Worms Shouldn't Break Windows. Read more

www.theaustralian.news.com.au:
Kylie download heightens fever. Read more

english.eastday.com:
Windows cracked by 'LovSan'. Read more

13 august 2003

New Trojans:
A-311 Death 1.02

DNS Trojan 1.2

ColdLife 4.0

Tools
www.shellsec.net:
Rootkit Detector V0.3. Read more

Guides, Papers, etc.
www.eeye.com:
Blaster Worm Analysis. Read more

www.securityfocus.com:
Basic IIS Lockdown Using Scripts and Group Policy. Read more

phrack.efnet.ru:
Phrack 61 is out. Read more

Vulnerabilities & Exploits:
www.debian.org:
DSA-371-1 perl -- cross-site scripting. Read more

www.securitytracker.com:
SurgeLDAP Can Be Crashed By Remote Users and Also Discloses Passwords to Local Users. Read more

www.securitytracker.com:
Zorum Input Validation Flaw in 'method' Parameter Permits Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Lil' HTTP Server Discloses Web Server Passwords to Local Users. Read more

www.securitytracker.com:
imate Web Mail Server Discloses E-mail Passwords to Local Users. Read more

www.securitytracker.com:
Meteor FTP Server Discloses FTP User Passwords to Local Users. Read more

www.securitytracker.com:
Xynph FTP Server Discloses Passwords to Local Users. Read more

www.securitytracker.com:
Mercury/32 Mail Server Discloses Passwords to Local Users. Read more

www.securitytracker.com:
War FTP Daemon Stores User Passwords in Clear Text on the Local System. Read more

www.securitytracker.com:
EFTP Discloses FTP Server Passwords and the Web Administration Password to Local Users. Read more

www.securitytracker.com:
BisonFTP Discloses User Passwords to Local Users. Read more

www.securitytracker.com:
FreeBSD 'ibcs2.ko' Loadable Kernel Module May Disclose Kernel Memory to Local Users. Read more

www.securitytracker.com:
FreeBSD Kernel Flaw in Checking Signal Numbers May Let Local Users Modify Kernel Memory or Crash the System. Read more

www.securitytracker.com:
DCForum+ Input Validation Flaw in 'Subject' Field Permits Cross-Site Scripting Attacks By Remote Users. Read more

www.securitytracker.com:
phpWebSite Calendar Module Permits SQL Injection, Cross-Site Scripting Attacks, and Denial of Service Attacks. Read more

www.securitytracker.com:
Stellar Docs Grants Administrative Access to Remote Users. Read more

www.securitytracker.com:
Better Basket Pro Store Builder Discloses Installation Path to Remote Users. Read more

www.securitytracker.com:
News Wizard Discloses Installation Path to Remote Users. Read more

News:
news.bbc.co.uk:
Worm blasts across the web. Read more

quote.bloomberg.com:
Computer Virus on Microsoft Infects More Than 57,000 Systems. Read more

news.com.com:
'MSBlast' worm a piecemeal monster. Read more

www.theregister.co.uk:
MSBlaster worm spreading rapidly. Read more

www.theregister.co.uk:
Slovenian hacker found shot dead. Read more

12 august 2003

New Trojans:
NetAmine (1.03.104)

PinkPigeon 1.0

G.R.O.B. 4.0.6

URCS 1.05 (build2)

Tools
sourceforge.net:
BugScam IDC Package. A bunch of IDC scripts for IDA to look for common programming flaws. Read more

Guides, Papers, etc.
tms.symantec.com:
Microsoft DCOM RPC Worm Alert. (pdf). Read more

Vulnerabilities & Exploits:
xforce.iss.net:
"MS Blast" MSRPC DCOM Worm Propagation. Read more

www.securitytracker.com:
Wedgetail JCSI Single Sign-On Parsing Flaw May Disable Access Controls in Certain Situations. Read more

www.securitytracker.com:
Xitami Web Server Fails to Log Non-HTTP Connections. Read more

www.securitytracker.com:
BadBlue Discloses User and Administrator Passwords to Local Users. Read more

News:
www.securityfocus.com:
RPC DCOM Worm Hits the Net. Read more

story.news.yahoo.com:
Newly Discovered Worm Attacks Vulnerable Systems. Read more

asia.cnet.com:
Windows worm starts its spread. Read more

www.enquirer.com:
Young hacker charged again. Read more

www.theage.com.au:
'Trojan horse' hacks into computer and ruins a life. Read more

www.dw-world.de:
Hacking Away Under the Sunshine. Read more

www.nwanews.com:
Breach a �wake-up call� for Acxiom. Read more

pcworld.idg.com.au:
Anti-US hackers deface Australian government site. Read more

www.businessweek.com:
Unholy Matrimony: Spam and Virus. Read more

www.nmrc.org:
Simple Nomad's DefCon 11 Rant. Read more

11 august 2003

New Trojans:
sredir

PowerBOT

DDoS 1.3

Guides, Papers, etc.
www.cs.berkeley.edu:
Warhol Worms: The Potential for Very Fast Internet Plagues. Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
Meteor FTP Server Can Be Crashed By Remote Users Sending Long USER Commands. Read more

www.securitytracker.com:
Invision Power Board Input validation Flaw in 'admin.php' Permits Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
MDaemon SMTP Authentication Flaw Lets Remote Users Access the SMTP Service. Read more

www.securitytracker.com:
GeeeekShop Shopping Cart Discloses Installation Path to Remote Users. Read more

www.securitytracker.com:
pam-pgsql Format String Flaw in Debug Mode May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Sandsprite.com Chat Server Input Filtering Hole Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
xpcd Buffer Overflow in HOME Environment Variable May Yield Root Privileges to Local Users. Read more

www.securiteam.com:
Defeating Lotus SameTime "Encryption". Read more

www.securiteam.com:
Sustworks Unauthorized Network Monitoring and tcpflow Format String Attack. Read more

www.securiteam.com:
Data Leak in UDP Echo Service. Read more

www.securiteam.com:
Sending 2GB Data in GET Request Causes Buffer Overflow in Cisco IOS Software. Read more

www.securiteam.com:
Cisco CSS 11000 Series Denial of Service (TCP SYN). Read more

www.securiteam.com:
Format String Vulnerability in Compaq HTTP Servers (DebugSearchPaths). Read more

www.securiteam.com:
tcpflow Format String Vulnerability. Read more

News:
www.zdnet.com:
How an e-mail virus could cripple a nation. Read more

www.smh.com.au:
Little-known worm was top threat in July. Read more

slashdot.org:
Acxiom Hacking Details Made Public. Read more

www.rgj.com:
Bogus Web sites sting unsuspecting customers. Read more

10 august 2003

New Trojans:
A-311 Death 1.00.A

Iroffer 1.2b11

Snow 2.4

Guides, Papers, etc.
e2-labs.com:
Spoofing - Arts of attack and defense. (pdf) Read more

Vulnerabilities & Exploits:
www.debian.org:
DSA-370-1 pam-pgsql -- format string. Read more

www.debian.org:
DSA-369-1 zblast -- buffer overflow. Read more

www.securitytracker.com:
gURLChecker Can Be Crashed By Remote Users When Checking Certain HTML Tags. Read more

www.securitytracker.com:
PostNuke 'ttitle' Variable in 'Downloads' and 'Web_Links' Modules Permits Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
iPlanet Administration Server Discloses Arbitrary Files to Remote Authenticated Users. Read more

www.securitytracker.com:
C-Cart Discloses Installation Path to Remote Users. Read more

www.securitytracker.com:
Open Group Distributed Computing Environment (DCE) Null Pointer Dereference Lets Remote Users Crash DCE Services. Read more

News:
microdoc-news.info:
Google Preferences and Your Online Privacy. Read more

www.ameinfo.com:
eHosting Datafort partners with Synergy Professional Services (SPS) to deliver 'Ethical Hacking' Courses. Read more

www.thekcrachannel.com:
Hacker Downloads Sensitive Information. Read more

www.theinquirer.net:
Mitnick unveiled in more crazy DEFCON 03 photos. Read more

09 august 2003

New Trojans:
Pro Agent 1.22

Shellcode 2.0

Beast 2.01 (b)

Multi Bot Pro

Vulnerabilities & Exploits:
www.s21sec.com:
Cisco CSS 11000 Series DoS. Read more

ferruh.mavituna.com:
VBulletin New Member XSS Vulnerability. Read more

www.remote-exploit.org:
Document describing the generic security problems with online games and applications. Read more

www.debian.org:
DSA-368-1 xpcd -- buffer overflow. Read more

www.debian.org:
DSA-367-1 xtokkaetama -- buffer overflow. Read more

www.securitytracker.com:
tcpflow Format String Flaw May Let Local Users Execute Arbitrary Code With Root Privileges. Read more

www.securitytracker.com:
Lotus Sametime Instant Messaging Encryption Flaws Disclose User Passwords to Remote Users. Read more

www.securitytracker.com:
IdealBB Input Validation Flaw in 'error.asp' Permits Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Cisco Content Services Switches (CSS) 11xxx Series Can Be Crashed By Remote Users With a TCP SYN Attack. Read more

News:
www.toorcon.org:
TOORCON 2K3: Computer Security Conference. Call for Papers. Read more

www.securityfocus.com:
NSA Proposes Backdoor Detection Center. Read more

www.computerworld.com:
Acxiom database hacked. Read more

www.theregister.co.uk:
Do Not Spam list and filtering firms join hands. Read more

www.theregister.co.uk:
Jailbird appeals in bug disclosure case. Read more

www.theregister.co.uk:
Sysadmins in the dark about network problems. Read more

08 august 2003

New Trojans:
DSK Webdl 1.0

CMDGet 1.0

Attar

TeeJayEm KeySpy 1.0 (a)

Tools
www.sys-security.com:
Xprobe2 is a remote active operating system fingerprinting tool with a different approach to operating system fingerprinting. Read more

Vulnerabilities & Exploits:
www.securityfocus.com:
Microsoft Internet Explorer Self Executing HTML File Vulnerability. Read more

www.securitytracker.com:
BEA WebLogic Server Console Input Validation Holes Permit Cross-Site Scripting Attacks Against Administrators. Read more

www.securitytracker.com:
121 WAM! Server Input Validation Flaw Discloses Files on the System to Remote Authenticated Users. Read more

www.securitytracker.com:
Crob FTP Server Can By Crashed By Remote Authenticated Users Manipulating DOS Device Names. Read more

www.securitytracker.com:
ECLiPt Roaster (ERoaster) Uses Unsafe Temporary Files, Allowing Local Users to Gain Elevated Privileges. Read more

www.securiteam.com:
Man-db Open_cat_stream() Privileged Call Exploit. Read more

www.k-otik.com:
Windows RPC DCOM Remote Exploit with 48 TARGETS. Read more

News:
www.securityfocus.com:
Appeal in bug disclosure case. Read more

www.theregister.co.uk:
Computer virus cramps Pan-Am Games. Read more

www.prosperity4.com:
IT could only happen in Vegas - Hackers convention. Read more

www.bayarea.com:
Hacker attack damages 2,000 computers at Stanford. Read more

www.charlotte.com:
Hacker Gets Acxion Customer Information. Read more

www.iht.com:
A hacker masters keystroke theft. Read more

www.theargusonline.com:
Berkeley computers under attack. Read more

www.cio.com.au:
When Documents Rise from the Grave. Read more

www.vnunet.com:
Bugwatch: Know your security onions. Read more

07 august 2003

New Trojans:
Remote Control System 2.7

G.R.O.B. 4.0.7

Pardillo

Guides, Papers, etc.
www.coresecurity.com:
Bypassing the StackShield and StackGuard protection. Read more

www.hackinglinuxexposed.com:
Sniffing with Net::Cap to stealthily managing iptables rules remotely, Part 1. Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
TightVNC 'QueryAllowNoPass' Flaw May Let Remote Users Access the System. Read more

www.securitytracker.com:
ZoneAlarm Buffer Overflow in VSDATANT Device Driver Yields System Privileges to Local Users. Read more

www.securitytracker.com:
IBM DB2 'db2job' File Access Flaw Lets Local Users Write/Overwrite Files With Root Privileges. Read more

www.securitytracker.com:
IBM DB2 Database Libraries Let Local Users With 'bin' Privileges Gain 'root' Privileges. Read more

www.securitytracker.com:
Everybuddy Messaging Client Can Be Crashed By Remote Users. Read more

www.securitytracker.com:
aspBoard Message Board Input Validation Hole Permits Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
'man-db' May Execute User-Specified DEFINE Statements With Elevated Privileges. Read more

News:
www.mlive.com:
Keystroke logger used to swipe user passwords. Read more

www.theinquirer.net:
DEFCON '03: Myth, Reality and Pictures. Read more

news.bbc.co.uk:
Snooping goes hi-tech. Read more

www.hindustantimes.com:
Kargil site hacked, linked to pornographic site. Read more

www.infoanarchy.org:
Let's Put SCO Behind Bars. Read more

www.eweek.com:
McAfee Antivirus Tool Blocks Internet Access. Read more

06 august 2003

New Trojans:
Remote ICQ Pager 1.0

Shellcode 1.0

20CN v1.01

Guides, Papers, etc.
www.surasoft.com:
Denial Of Service (DoS) Attacks & DDoS. Read more

Vulnerabilities & Exploits:
sec-labs.hack.pl:
Local ZoneAlarm Firewall Device Driver vulnerability. Read more

www.debian.org:
DSA-366-1 eroaster -- insecure temporary file. Read more

www.debian.org:
DSA-365-1 phpgroupware -- several vulnerabilities. Read more

www.debian.org:
DSA-364-1 man-db -- buffer overflows, arbitrary command execution. Read more

www.securitytracker.com:
NetBSD OSI Networking Code (netiso) May Let Remote Users Crash the System. Read more

www.securitytracker.com:
Invision Power Board Input Validation Flaw in Processing IBF Tags Lets Remote Users Modify the Appearance of the Forum. Read more

www.securitytracker.com:
Password Safe May Retain a Clear Text Password in Memory Even When Configured Not To. Read more

www.securitytracker.com:
Macromedia Dreamweaver PHP Users Authentication Extensions Permit Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
(Vendor Issues Fix) Rpc.mountd May Disclose File Existence to Remote Users. Read more

www.securitytracker.com:
Mindi Unsafe Temporary Files May Allow Local Users to Gain Elevated Privileges. Read more

www.securitytracker.com:
Compaq Insight Manager Format String Flaw May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
vqServer Discloses the Administrator's Password to Local Users. Read more

www.securitytracker.com:
Microsoft WebServer Beta for Pocket PC Yields Administrative Access to Remote Users. Read more

www.securitytracker.com:
Mollensoft FTP Server Discloses Passwords to Local Users. Read more

www.securitytracker.com:
Minihttp Forum Web Server Default Configuration Leaves Administrator Account Without a Password. Read more

www.securitytracker.com:
Postfix Bounce Messages Let Remote Users Scan for Open Ports on Other Hosts. Read more

www.securitytracker.com:
Postfix Address Resolver Parsing Bug Lets Remote Users Hang the System. Read more

www.securitytracker.com:
'libc' Off-by-One Overflow in realpath() May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Enceladus Server Suite Default Configuration Creates an Account With a Common Password. Read more

www.securiteam.com:
Exploit Code Released for wu-ftpd fb_realpath() Off-by-One Bug. Read more

www.securiteam.com:
Cdrtools Local Root Exploit. Read more

www.securiteam.com:
PHP Authentication Suit for DreamWeaver XSS Vulnerability. Read more

www.securiteam.com:
Everybuddy Vulnerable to a DoS Attack (Long Message). Read more

www.securiteam.com:
Novell GroupWise Clear Text Vulnerability. Read more

www.securiteam.com:
Off-by-One Error in realpath (OpenBSD). Read more

www.securiteam.com:
Posfix Remote DoS / Postfix Bounce Scanning. Read more

News:
www.canada.com:
E-mail fraud takes a new twist. Read more

straitstimes.asia1.com.sg:
ATM fraudsters rake in $6m from 21,000 bank accounts. Read more

www.sundaytimes.co.za:
New hybrid virus lurking? Read more

www.smh.com.au:
Hacking it against the hackers. Read more

www.net4nowt.com:
Hacker Hit Parade. Read more

www.trivalleyherald.com:
Berkeley braces for hacker attack. Read more

www.canada.com:
A network of drive-by spies. Read more

www.theregister.co.uk:
Britain: a nation of cyber snoopers. Read more

05 august 2003

New Trojans:
Atmaca Downloader 1.0

Fearless Keyspy 1.1 b

Glacier 2002

Guides, Papers, etc.
www.securityfocus.com:
Demonstrating ROI for Penetration Testing (Part Two). Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
bjServer Discloses the Administrator's Password to Local Users. Read more

www.securitytracker.com:
Linux Netfilter With Network Address Translation (NAT) Can Be Crashed By Remote Users in Certain Cases. Read more

www.securitytracker.com:
Netfilter Connection Tracking Flaw Lets Remote Users Deny Service. Read more

www.securiteam.com:
Tab Control Shatter Attack Exploit. Read more

www.securiteam.com:
ePolicy Orchestrator Multiple Vulnerabilities. Read more

www.securiteam.com:
Win32 Device Drivers Communication Vulnerabilities - Tutorial. Read more

www.debian.org:
DSA-352-1 fdclone -- insecure temporary directory. Read more

News:
www.theregister.co.uk:
Is it a bird? A plane? No, it's a Windows Trojan. Read more

australianit.news.com.au:
Hack attacks at record levels. Read more

straitstimes.asia1.com.sg:
Just 18 but hacker whiz-kid can counter Net criminals. Read more

www.hindustantimes.com:
Internet worms change form, threaten greater havoc. Read more

www.sundaytimes.co.za:
Another nasty worm to catch. Read more

www.theregister.co.uk:
Sneaky virus poses as email from sysadmin. Read more

www.pcworld.com:
When Is It Safe to Disclose Security Flaws? Read more

www.zdnet.com.au:
Hackers and vendors brawl over nothing. Read more

04 august 2003

New Trojans:
Insurrection 1.0

Neo Trojan 1.0

MSN Hotmail Password Stealer 4.0

Vulnerabilities & Exploits:
www.securitytracker.com:
Sun Solaris psig() Race Condition May Let Local Users Cause a System Panic. Read more

www.securitytracker.com:
Symantec Anti Virus Quarantine Server Can Be Crashed By Remote Users. Read more

www.securitytracker.com:
Norton Anti-Virus Quarantine Server Can Be Crashed By Remote Users. Read more

www.securitytracker.com:
Cisco LEAP Authentication Protocol for Wireless Devices Is Vulnerable to Dictionary Attacks. Read more

www.securitytracker.com:
Cdrtools Flaw in 'rscsi' Lets Local Users Modify Root-Owned Files to Grab Root Privileges. Read more

www.securitytracker.com:
Novell GroupWise WebAccess Discloses Wireless User Passwords to Local Users. Read more

badwebmasters.net:
Passing script/html-filter with special chars (multibrowser). Read more

www.debian.org:
DSA-361-1 kdelibs -- several vulnerabilities. Read more

www.debian.org:
DSA-362-1 mindi -- insecure temporary file. Read more

News:
news.com.com:
Hackers get lesson in the law. Read more

news.com.com:
Worm masquerades as note from IT staff. Read more

news.com.com:
Attack bot exploits Windows flaw. Read more

news.com.com:
Microsoft.com suffers outage. Read more

www.bday.co.za:
Hacker's sidekick says no bank is safe. Read more

03 august 2003

New Trojans:
APRE 1.0

Momaker

CyberSpy 8.2 (built 8.4.7) v2

CyberSpy 8.0 (build 8.2.2)

Troia

Vulnerabilities & Exploits:
www.securitytracker.com:
Atari800 Buffer Overflow Lets Local Users Execute Arbitrary Code With Root Privileges. Read more

www.securitytracker.com:
IISShield May Fail to Drop a Specific Malformed HTTP Request. Read more

www.securitytracker.com:
Cisco IOS May Disclose Portions of Memory to Remote Users Via UDP Echo Response Packets. Read more

News:
www.globetechnology.com:
Microsoft warns Internet Explorer users about virus. Read more

www.eweek.com:
Microsoft Downplays Dangers of Worm. Read more

www.ciol.com:
Beware! Hackers on the prowl! Read more

www.reuters.co.uk:
Threat to Internet as hackers meet. Read more

story.news.yahoo.com:
Internet Threat Looms as Thousands of Hackers Meet. Read more

www.theregister.co.uk:
MS flaw highlights e-security laziness. Read more

02 august 2003

New Trojans:
Back Attack 1.8

Glacier 8.0 Beta2

Snow 2.3

Magic Link 2.4

Guides, Papers, etc.
www.microsoft.com:
Remove Fatty Deposits from Your Applications Using Our 32-Bit Liposuction Tools. Read more

lasecwww.epfl.ch:
Making a Faster Cryptanalytic Time-Memory Trade-Off. Read more

Vulnerabilities & Exploits:
www.securitytracker.com:
WoltLab Burning Board 3rd Party User Werben Hack/Guthabenhack Add-ons Permit SQL Injection. Read more

www.securitytracker.com:
McAfee ePolicy Orchestrator Has Multiple Bugs That May Let Remote Users Execute Arbitrary Code With System Privileges. Read more

www.securitytracker.com:
wu-ftpd Off-by-one Overflow in fb_realpath() May Let Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
xtokkaetama Buffer Overflows Let Local Users Gain 'Games' Group Privileges. Read more

www.securitytracker.com:
RobotFTP Server Discloses Usernames and Passwords to Local Users. Read more

www.securitytracker.com:
HP-UX Unspecified 'libxti' Bug May Let Remote Users Crash Some Services. Read more

www.securitytracker.com:
Liteserve Discloses Passwords to Local Users. Read more

www.securitytracker.com:
GameSpy Arcade 'GSAPAK.exe' Lets Remote Users Install Arbitrary Files. Read more

www.securitytracker.com:
Cisco IOS Web Interface Buffer Overflow Lets Remote Users Send 2GB HTTP GET Requests to Execute Arbitrary Code. Read more

www.debian.org:
DSA-360-1 xfstt -- several vulnerabilities. Read more

www.debian.org:
DSA-359-1 atari800 -- buffer overflows. Read more

www.debian.org:
DSA-358-1 linux-kernel-2.4.18 -- several vulnerabilities. Read more

www.debian.org:
DSA-357-1 wu-ftpd -- remote root exploit. Read more

News:
xforce.iss.net:
"Mimail" Mass-Email Worm Propagation. Read more

www.chron.com:
Users beware as e-mail worm spreads. Read more

www.pcworld.com:
Security Flaws Under the Microscope. Read more

www.informationweek.com:
Microsoft's Web Site Brought Down By Attack. Read more

www.infoworld.com:
Wireless security: Harder than you think. Read more

www.chron.com:
Student accused of hacking into Michigan system. Read more

01 august 2003

New Trojans:
PSPV K-Stealth III

Evoloution 1.0

superSpy 0.99 Beta

NetDown 0.5

Vulnerabilities & Exploits:
www.atstake.com:
ePolicy Orchestrator Multiple Vulnerabilities. Read more

isec.pl:
wu-ftpd fb_realpath() off-by-one bug. Read more

www.securitytracker.com:
BEA WebLogic Code Flaw May Let Remote Users Gain Access to Other User Accounts. Read more

www.securitytracker.com:
Small HTTP Server Discloses Administrator Password to Local Users. Read more

www.securitytracker.com:
Ambrosia Software 'escapepod' Screen Saver Password Protection Can Be Bypassed. Read more

www.securitytracker.com:
SGI IRIX Name Service Daemon Buffer Overflow in Processing AUTH_UNIX RPC Packets Yields Root Access to Remote Users. Read more

www.securitytracker.com:
'sup' Unsafe Use of Temporary Files Lets Local Users Overwrite Files. Read more

www.securitytracker.com:
Half-Life Clients Buffer Overflow Vulnerability Exploit Code. Read more

www.securiteam.com:
NetScreen TCP Option DoS (manager-ip). Read more

www.securiteam.com:
Half-Life Servers Buffer Overflow and Denial of Service Vulnerability (Exploit). Read more

www.securiteam.com:
Passing JavaScript/HTML Filters with Special Chars (Multibrowser). Read more

www.securiteam.com:
Hughes Billing Incorrect File Permissions Allows Gaining of Elevated Privileges. Read more

www.securiteam.com:
IIS Executes Files by Default Whenever They Reside Under an ".asp" Directory. Read more

www.securiteam.com:
GameSpy Arcade Arbitrary File Writing. Read more

www.securiteam.com:
Shattering SEH. Read more

www.securiteam.com:
wu-ftpd fb_realpath() Off-by-One Bug. Read more

www.securiteam.com:
Buffer Overflow in Sun Solaris Runtime Linker. Read more

News:
news.bbc.co.uk:
Growing fears over net threat. Read more

www.dailytelegraph.news.com.au:
Experts fret over likely net attacks. Read more

www.msnbc.com:
Study: Net security flaws don�t die. Read more

www.bayarea.com:
Government issues second warning on Microsoft security flaw. Read more

www.zdnet.com.au:
Hackers look to hide communications. Read more

www.idc.com:
IDC UK�s Annual Security Conference, Understanding the Real Risks - 16th September, 2003. Read more

www.theregister.co.uk:
Spam dumpster diving. Read more

slate.msn.com:
Hack the Vote. Read more


Copyright� MegaSecurity.org