Home.
News Archive   Translate Traducen   
Daily News
30 September 2002

New Trojans:
Ducktoy 1.3

Ulysses 1.72

Huey 3.1

Vulnerabilities & Exploits:
www.securitytracker.com:
BEA Systems WebLogic Server and Express May Return a Response to the Wrong Remote User. Read More

News:
www.geocities.com:
Yet Another Method Windows Uses to Log Your Computer Activity. Read More

www.zdnet.com:
What's your cybersecurity strategy? Here's mine. Read More

www.sunspot.net:
Agency Probes D.C. Wireless Network. Read More

asia.cnn.com:
New Net project aims to avoid hacking. Read More

www.it-director.com:
US touts secure decentralised web. Read More

www.pcworld.com:
Talk of Iraq Conflict Raises Cyberattack Fears. Read More

timesofindia.indiatimes.com:
Army logs on to e-highway to beat enemy in IT race. Read More

29 September 2002

New Trojans:
Reverse Trojan 2.0b2 by Satan_addict

Back streets 1.5

Taupe 1.0

Tools:
www.phenoelit.de:
ARP0c connection interceptor. Read More

readyresponse.dynu.com:
IRCCrypt is a local IRC Proxy-style utility that provide application-layer encryption for public channels. Read More

www.kismetwireless.net:
Kismet is a 802.11b wireless network sniffer. Read More

www.ethereal.com:
Ethereal 0.9.6 is a free network protocol analyzer for Unix and Windows. Read More

www.atstake.com:
The @stake Sleuth Kit (TASK) is the only open source forensic toolkit for a complete analysis of Microsoft and UNIX file systems. Read More

freshmeat.net:
Ruby/Password is a set of useful methods for creating, verifying, and manipulating passwords. Read More

freshmeat.net:
IPShutter listens for connections on one port, and upon proper authentication temporarily unlocks a second port. Read More

Vulnerabilities & Exploits:
www.securitytracker.com:
WatchGuard Firebox Vclass and RapidStream Appliance Input Validation Bugs May Give Remote Users Root Access. Read More

www.securitytracker.com:
EMU Webmail Input Validation Errors Disclose the Web Root Directory and Allow Cross-Site Scripting Attacks. Read More

www.securitytracker.com:
Zope Web Application Server ZCatalog Index Access Control Bug Discloses Files to Remote Users. Read More

www.securitytracker.com:
Zope Application Server Through the Web Code Input Validation Bug May Let Remote Users Shut Down the Server. Read More

www.securitytracker.com:
WASD HTTP Server for OpenVMS Has Multiple Flaws That Disclose Information and Let Remote Users Gain SYSTEM Access. Read More

www.securitytracker.com:
'gv' Postscript and PDF File Viewer Buffer Overflow May Execute Remotely Supplied Code in Malicioius Postscript or PDF Files. Read More

www.securitytracker.com:
IBM AIX Operating System Telnet Command Buffer Overflow Lets Local Users Obtain Root Privileges. Read More

www.securitytracker.com:
acWEB HTTP Server Bugs Let Remote Users Crash the System and Permit Cross-Site Scripting Attacks. Read More

www.securitytracker.com:
Microsoft PPTP Service Buffer Overflow May Let Remote Users Execute Arbitrary Code. Read More

News:
www.extremetech.com:
Team Cracks RSA Encryption Challenge. Read More

www.nwfusion.com:
Pentagon prohibits wireless, citing security reasons. Read More

www.extremetech.com:
Security Group Comes Out of the Shadows. Read More

28 September 2002

New Trojans:
Amitis 1.1

Helios Bot 1.0

Peeper 1.0

Vulnerabilities & Exploits:
AIS advisory # 0006
NETGEAR FVS318 Firewall Router Firmware 1.1 Username/Password Disclosure. Read More

online.securityfocus.com:
Microsoft PPTP Server Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
Zope Incorrect XML-RPC Request Information Disclosure Vulnerability. Read More

www.securitytracker.com:
Shana Corporation's Informed Document Software May Disclose User Information Within the Document. Read More

www.securitytracker.com:
Compaq OpenVMS UCX POP Mail Server Lets Local Users Overwrite Arbitrary Files. Read More

www.securitytracker.com:
Monkey HTTP Daemon Discloses Files on the System to Remote Users. Read More

www.securitytracker.com:
Trillian Chat Client Can Be Crashed By Remote Users Sending Special Characters Via AIM Service. Read More

www.securitytracker.com:
Trillian IRC Chat Client Has More Bugs That Let Remote Servers Crash the Client. Read More

www.securitytracker.com:
Apache Tomcat Java Server Default Servlet Returns JSP Source Code to Remote Users. Read More

www.securitytracker.com:
Borland InterBase 'gds_lock_mgr' Temporary File Security Hole Gives Local Users Root Access. Read More

www.securitytracker.com:
Microsoft FrontPage Server Extensions SmartHTML Interpreter Bugs May Let Remote Users Execute Arbitrary Code with System Privileges. Read More

www.securitytracker.com:
Web Server 4D May Disclose Passwords to Local Users. Read More

News:
www.infoworld.com:
The Brain database tracks relationships between hacker groups. Currently 3,000 or 4,000 individuals in about 800 different groups are tracked. Read More

www.theregister.co.uk:
Hacker groups declare war on US.gov. Read More

books.slashdot.org:
Hacker Culture. Read More

www.theregister.co.uk:
Viruses are dead. Long live viruses! Read More

www.commweb.com:
Microsoft FrontPage Susceptible To Major Security Flaws. Read More

www.eweek.com:
VPN Flaw Could Clear Way for Hackers. Read More

www.theregister.co.uk:
The Nortel anti-worm defence system. Read More

www.eweek.com:
Network Giants Address Security. Read More

www.pcworld.com:
Group to Set Rules for Reporting Security Flaws. Read More

www.theregister.co.uk:
Software firms team to fight bug leaks. Read More

www.computerworld.com:
Attack on Feds: It Came From Within. Read More

www.hivercon.com:
HiverCon corporate security conference. Read More

www.randsurvey.org:
Survey on Information Infrastructure Protection Requirements. Read More

www.newsfactor.com:
Daily CyberCrime and Security Report for September 27, 2002. Read More

27 September 2002

Magus has set up a new IRC channel. Visit irc.localirc.net, #megasecurity to meet other visitors of MegaSecurity.

New Trojans:
Autocrat 1.21.36

Pest 4.0

GOD Remote Keylogger 1.0

Vulnerabilities & Exploits:
phion Security Advisory 26/09/2002
Microsoft PPTP Server and Client remote vulnerability. Read More

AIS advisory # 0004
EMU Webmail Webroot Path Disclosure. Read More

AIS advisory # 0005
XSS in Emu Webmail 5.0. Read More

DSA-168-1
php -- bypassing safe_mode, CRLF injection. Read More

DSA-169-1
htcheck -- cross site scripting. Read More

www.securiteam.com:
Local Root Exploit Found in gds_lock_mgr. Read More

online.securityfocus.com:
NullLogic Null Webmail Format String Vulnerability. Read More

online.securityfocus.com:
OpenVMS UCX POP Server Arbitrary File Modification Vulnerability. Read More

www.securitytracker.com:
Apache Web Server 'mod_dav' Has Null Pointer Bug That May Allow Remote Users to Cause Denial of Service Conditions. Read More

www.securitytracker.com:
vBulletin Forum Software Input Validation Hole in 'calendar.php' Lets Remote Users Execute Commands. Read More

www.securitytracker.com:
Invision Board Forum Software Discloses Configuration Information to Remote Users. Read More

www.securitytracker.com:
PHP-Nuke Input Filtering Hole in 'modules.php' Search Feature Permits Cross-Site Scripting Attacks Against PHP-Nuke Users. Read More

www.securitytracker.com:
XOOPS Portal Input Validation Flaw in IMG Tags Lets Remote Users Conduct Cross-Site Scripting Attacks. Read More

www.securitytracker.com:
HP Procurve 4000M Switch Can Be Reset By Remote Users Due to No Authentication on 'device_reset' Command. Read More

www.securiteam.com:
Webserver 4D Weak Password Preservation Vulnerability. Read More

www.securiteam.com:
Buffer Overrun in SmartHTML Interpreter Could Allow Code Execution. Read More

News:
Microsoft Security Bulletin MS02-053
Buffer Overrun in SmartHTML Interpreter Could Allow Code Execution (Q324096). Read More

news.com.com:
FrontPage flaw puts servers in jeopardy. Read More

news.com.com:
VPN flaw puts internal networks at risk. Read More

news.com.com:
Software security group launches. Read More

news.com.com:
Network security gets unified. Read More

www.newsfactor.com:
Microsoft and the New Science of Security Flaws. Read More

www.pcmag.com:
It Takes a Hacker. Read More

news.com.com:
Start-up banks on hack-proof Linux. Read More

news.com.com:
University bans controversial links. Read More

www.washingtonpost.com:
IMF and World Bank Gatherings Could Prompt Cyber Attacks - FBI. Read More

news.com.com:
P2P foes defend hacking bill. Read More

www.infoworld.com:
Universities tapped to build secure Net. Read More

itmanagement.earthweb.com:
Bush Seeks IT Security Advice. Read More

www.wired.com:
China: Just Say No to Hacking. Read More

cgi.wn.com:
IMF Protesters Vow to Shut Down D.C.. Read More

www.pcw.co.uk:
UK hacker gets 18 months. Read More

www.washingtonpost.com:
The Slow and Steady Path to Online Security. Read More

www.vnunet.com:
Turtle to shell hackers. Read More

www.newsfactor.com:
Daily CyberCrime and Security Report for September 26, 2002. Read More

26 September 2002

Magus has set up a new IRC channel. Visit irc.localirc.net, #megasecurity to meet other visitors of MegaSecurity.

New Trojans:
LANfiltrator Beta 8 by Read101

Hackerz Backdoor

Cyber-Hazard 1.3

Vulnerabilities & Exploits:
www.securiteam.com:
OpenSSL Exploit Code (Slapper). Read More

www.securiteam.com:
Buffer Overruns in SQL Server 2000 Resolution Service Could Enable Code Execution (Exploit). Read More

online.securityfocus.com:
HP Procurve 4000M Switch Device Reset Denial Of Service Vulnerability. Read More

online.securityfocus.com:
Apache Tomcat DefaultServlet File Disclosure Vulnerability. Read More

online.securityfocus.com:
XOOPS HTML Injection Vulnerability. Read More

online.securityfocus.com:
Apache Oversized STDERR Buffer Denial Of Service Vulnerability. Read More

www.securiteam.com:
Multiple Trillian Security Vulnerabilities. Read More

www.securiteam.com:
PHP Source Injection in phpWebSite. Read More

www.securitytracker.com:
phpWebSite Include Statement Bug Lets Remote Users Execute Arbitrary Code. Read More

www.securitytracker.com:
Dino's WebServer Encoded-URL Input Validation Hole Lets Remote Users View Files on the System. Read More

www.securitytracker.com:
Apple Terminal Utility Security Hole May Let Remote Users Execute Arbitrary Commands. Read More

www.securitytracker.com:
Fetchmail Buffer Overflow May Allow Remote Users to Execute Arbitrary Code. Read More

www.securitytracker.com:
Null httpd Web Server Heap Overflow Lets Remote Users Execute Arbitrary Code With Root Privileges. Read More

News:
www.theregister.co.uk:
At least 100 countries building cyber weapons - expert. Read More

online.securityfocus.com:
'T0rn' Arrest Alarms White Hats, Advocates. Read More

zdnet.com.com:
Slapper worm takes on new forms. Read More

www.silicon.com:
Hack-proof Linux: That's the promise. Read More

www.theregister.co.uk:
Junk email on the increase. Read More

www.theregister.co.uk:
Greece lifts computer games ban. Read More

www.newsfactor.com:
Daily CyberCrime and Security Report for September 25, 2002. Read More

25 September 2002

Magus has set up a new IRC channel.
Visit irc.localirc.net, #megasecurity to meet other visitors of MegaSecurity.

New Trojans:
Likun 6.0

Ric 0.2

NetVoyeur

Vulnerabilities & Exploits:
www.securiteam.com:
vBulletin Calendar Command Execution Vulnerability (Exploit). Read More

www.securiteam.com:
AlsaPlayer Buffer Overflow Exploit. Read More

online.securityfocus.com:
Microsoft Virtual Machine Unauthorized ODBC Data Access Vulnerability. Read More

online.securityfocus.com:
Microsoft Internet Explorer SSL Certificate Expiration Vulnerability. Read More

online.securityfocus.com:
Trillian IRC Raw Messages Denial Of Service Vulnerability. Read More

www.securiteam.com:
HP Procurve 4000M Stacked Switch HTTP Reset Vulnerability. Read More

www.securiteam.com:
Directory Traversal in Dino's Web Server (%2F). Read More

www.securiteam.com:
XOOPS RC3 Script Injection Vulnerability. Read More

www.securitytracker.com:
JAWmail Input Filtering Holes Let Remote Users Gain Control of JAWmail Users Accounts. Read More

www.securitytracker.com:
HAMweather Weather Reporting CGI Security Hole May Disclose Files to Remote Users. Read More

News:
www.hevanet.com:
Windows XP Shows the Direction Microsoft is Going. Read More

www.linuxsecurity.com:
What is Slapper? Read More

www.ispreview.co.uk:
Slapper E-Mail Virus Author Arrested. Read More

www.linuxsecurity.com:
Third Slapper Worm Hits The Street. Read More

www.pcworld.com:
Slapper Worm Variants Spread. Read More

www.intranetjournal.com:
Security Scanning 101. Read More

www.linuxsecurity.com:
New laws make hacking a black-and-white choice. Read More

www.esj.com:
Intel to Build Hacker-Resistant Chipsets. Read More

www.businessweek.com:
U.S. puts money on World Bank "hacktivists". Read More

rtnews.globetechnology.com:
Net security not a priority, CEOs say. Read More

www.idg.net:
Microsoft labs try to balance security, innovation. Read More

www.msnbc.com:
Dalai Lama rep alleges China hack. Read More

www.thetartan.com:
RU locks out new age vandals. Read More

www.theage.com.au:
Unguarded moments - why cyber security is on the rise. Read More

www.news.com.au:
Cybercrime code ready. Read More

www.nwfusion.com:
Pocket PC doesn't make security grade, Gartner says. Read More

www.newsfactor.com:
Daily CyberCrime and Security Report for September 24, 2002. Read More

24 September 2002

New Trojans:
Retard

Infinaeon 1.1

Nerte 7.8.0

Vulnerabilities & Exploits:
www.solutions.fi:
Technical information about the vulnerabilities fixed by MS-02-52. Read More

www.nruns.com Exploiting DORA. Attacks on the DHCP Protocol (pdf). Read More

online.securityfocus.com:
Trillian IRC User Mode Numeric Remote Buffer Overflow Vulnerability. Read More

online.securityfocus.com:
Sendmail Long Ident Logging Circumvention Weakness. Read More

online.securityfocus.com:
Apple Mac OS X Terminal.APP Telnet Link Command Execution Vulnerability. Read More

www.securitytracker.com:
Compaq Web-based Enterprise Services (WEBES) Access Control Bug May Let Remote Users Access Privileged Files. Read More

www.securiteam.com:
Local Root Exploit for Cisco VPN 5000 Client. Read More

www.securiteam.com:
Remote Exploitable Heap Overflow in Null HTTPd. Read More

www.securiteam.com:
SSL Certificate Chain Verification. Read More

www.securiteam.com:
Vulnerabilities in Microsoft's Java Environment (Additional details). Read More

www.securiteam.com:
JAWmail XSS. Read More

www.securiteam.com:
Flaws Found Within the Dynamic Host Configuration Protocol. Read More

News:
csrc.nist.gov:
DRAFT Guideline on Network Security Testing (pdf). Read More

www.giac.org:
Tracking the Back Orifice Trojan On a University Network (doc). Read More

zdnet.com.com:
When is hacking a crime? Read More

www.villagevoice.com:
License to Ill.
Is Microsoft using its updates to secretly snuff out software it doesn't approve of? Read More

asia.cnet.com:
Who Says Paranoia Doesn't Pay Off?
China thinks Microsoft software contains secretly embedded code that the United States government can manipulate at will. Read More

www.news.com.au:
Big firms neglect security: survey. Read More

www.oregonlive.com:
Computers vulnerable at Oregon department. Read More

zdnet.com.com:
Aussies protest MS security advice. Read More

www.fcw.com:
Cybersecurity plan on the lite side. Read More

zdnet.com.com:
Who's letting the spam in? Read More

www.newsfactor.com:
Daily CyberCrime and Security Report for September 23, 2002. Read More

23 September 2002

New Trojans:
KBL Webdownloader 1.1

Mysocket

Ice Storm Killerz beta 1

Vulnerabilities & Exploits:
www.securiteam.com:
Cisco VPN Concentrator 3000 ISAKMP DoS details. Read More

www.securiteam.com:
The Art of Unspoofing. Read More

online.securityfocus.com:
Trillian IRC JOIN Buffer Overflow Vulnerability. Read More

www.securiteam.com:
The Trivial Cisco IP Phones Compromise. Read More

www.securiteam.com:
DB4Web (R) TCP Connects to Arbitrary IP and Port. Read More

www.securiteam.com:
Firewall-1 HTTP Security Server - Proxy Vulnerability. Read More

www.securiteam.com:
DB4Web (R) File Disclosure. Read More

www.securitytracker.com:
XFree86 Xlib (libX11.so) Library Path Specification Bug May Let Local Users Gain Elevated Privileges. Read More

www.securitytracker.com:
AlsaPlayer PCM Audio Player Buffer Overflow May Let Local Users Gain Elevated Privileges. Read More

www.securitytracker.com:
Trillian Chat Client Buffer Overflow in Processing 'JOIN' Command Allows Remote Code Execution. Read More

www.securitytracker.com:
Cisco IP Phone 7960 Has Mulitple Flaws That Let Remote Users Gain Full Control of the Phone. Read More

www.securitytracker.com:
Siemens DB4Web Application Server Lets Remote Users Initiate Arbitrary TCP Connections. Read More

www.securitytracker.com:
(Vendor Issues Fix) Microsoft Windows XP Remote Desktop Implementation Bug Lets Remote Users Crash the Operating System. Read More

www.securitytracker.com:
TIDAL Software sys*ADMIRAL Job Scheduler Authentication Hole Lets Remote Users Gain Administrative Access to the Application. Read More

www.securiteam.com:
Flaw in Microsoft VM JDBC Classes Could Allow Code Execution. Read More

www.securiteam.com:
Cryptographic Flaw in RDP Protocol Can Lead to Information Disclosure. Read More

www.securiteam.com:
IBM WebSphere Large Header DoS. Read More

www.securiteam.com:
Trillian Ident Security Flaw. Read More

www.securiteam.com:
Security Vulnerabilities in OSF1/Tru64 3.x. Read More

News:
Internet Security Systems Security Alert:
Propagation of "Slapper" OpenSSL/Apache Worm Variant. Read More

newsobserver.com:
Microsoft issues 51st security bulletin of the year. Read More

www.newsfactor.com:
Microsoft: WinXP Update Could 'Bomb' Some Computers. Read More

news.scotsman.com:
Hacker abuses MSP�s e-mail address to send porn images. Read More

www.heraldtribune.com:
Cyberspace security on hold. Read More

www.stuff.co.nz:
Spam and virus control ? striking a happy medium. Read More

22 September 2002

New Trojans:
JustJoke 2.6 by Devil

Wollf 1.5

Examehell

Vulnerabilities & Exploits:
online.securityfocus.com:
Microsoft Word INCLUDEPICTURE Document Sharing File Disclosure Vulnerability. Read More

online.securityfocus.com:
Cisco IP Phone 7960 Firmware TFTP Authentication Weakness. Read More

online.securityfocus.com:
Cisco IP Phone 7960 Unsigned Content Weakness. Read More

www.securitytracker.com:
Trilliam Instant Messaging Client Buffer Overflow in Processing PRIVMSG Commands Allows Remote Code Execution. Read More

www.securitytracker.com:
IBM WebSphere Can Be Crashed By Remote Users Sending Large HTTP Headers. Read More

News:
www.theregister.co.uk:
Flaws in Microsoft VM. Fix now. Read More

www.theregister.co.uk:
Do you want to know how RIAA.org was hacked? Read More

rtnews.globetechnology.com:
London man charged with making virus. Read More

21 September 2002

Wanted:
Experienced trojan server tester.
No collectors or AV people. Mail to [email protected] if you are interested.

New Trojans:
Fredisoft Trojan 1.1

NetPocalypse 3.0

A4zeta beta 2

Tools:
www.securesoftware.com:
RATS, the Rough Auditing Tool for Security, is a security auditing utility for C, C++, Python, Perl and PHP code. RATS scans source code, finding potentially dangerous function calls. Read More

www.snake-basket.de:
Bruteforce Exploit Detector. Read More

readyresponse.dynu.com:
IRCCrypt is a local IRC Proxy-style utility that provide application-layer encryption for public channels. Read More

Vulnerabilities & Exploits:
online.securityfocus.com:
Microsoft Virtual Machine Exposure Of XML Supported Methods Vulnerability. Read More

online.securityfocus.com:
Microsoft Virtual Machine Multiple JDBC Vulnerabilities. Read More

online.securityfocus.com:
Microsoft Virtual Machine JDBC Class Code Execution Vulnerability. Read More

www.securitytracker.com:
(Vendor Issues Fix) Microsoft Windows XP Remote Desktop Implementation Bug Lets Remote Users Crash the Operating System. Read More

www.securitytracker.com:
Microsoft NT, 2000, and XP Operating Systems May Execute a 16-bit Application Even When The File Has No Execute Permissions. Read More

www.securitytracker.com:
Check Point FireWall-1 HTTP Proxy Default Configuration May Allow HTTPS and FTP Traffic to Pass Through the Proxy. Read More

www.securitytracker.com:
TIDAL Software sys*ADMIRAL Job Scheduler Authentication Hole Lets Remote Users Gain Administrative Access to the Application. Read More

www.securitytracker.com:
Internet Security Systems Internet Scanner Buffer Overflow in Parsing Web Responses May Let Remote Users Execute Arbitrary Code on the Scanner. Read More

www.securitytracker.com:
Cisco VPN 5000 Client Software for Mac OS May Disclose Passwords to Local Users. Read More

www.securitytracker.com:
Cisco VPN 5000 Client Buffer Overflows Let Local Users Gain Root Privileges on Linux or Solaris Systems. Read More

www.securitytracker.com:
TrendMicro InterScan VirusWall Scanner Can Be Bypassed With HTTP Chunked Transfer Encoded Packets. Read More

News:
www.idg.net:
Nimda Worm Biggest Driver Of Security Over Past Year. Read More

www3.gartner.com:
Slapper Worm Shows Open-Source Software Has Flaws, Too. Read More

www.linuxvoodoo.com:
Slapper worm smarting less. Read More

www.theregister.co.uk:
MS slammed for antitrust deal violations in XP, Win2k SPs. Read More

www.pcpro.co.uk:
Virus man arrested. Read More

www.theregister.co.uk:
Linux rootkit hacker suspect arrested in UK. Read More

www.desktoplinux.com:
Mozilla 1.0 security update available. Read More

msnbc-cnet.com.com:
Open-source group gets Sun security gift. Read More

www.theregister.co.uk:
Child email tracking - Does it work? Read More

www.computerworld.com:
Anonymizer privacy claim: A case of 'buyer beware'? Read More

msnbc-cnet.com.com:
Search firm takes heat for sharing data. Read More

www.ecommercetimes.com:
Daily CyberCrime and Security Report for September 20, 2002. Read More

20 September 2002

New Trojans:
SpyAnywhere 2.05.02

DarkSky 2.4

WebDownloader 3.0 by qroject

Vulnerabilities & Exploits:
www.sys-security.com:
The Trivial Cisco IP Phones Compromise
Security analysis of the implications of deploying Cisco Systems� SIP-based IP Phones model 7960. (pdf) Read More

www.securitytracker.com:
Microsoft Remote Desktop Protocol (RDP) Design Flaw May Disclose Information About the Unencrypted Data to Remote Users and May Let Data Be Modified During Transmission. Read More

www.securitytracker.com:
Opera Web Browser Can Be Crashed By Remote Users With Certain Large Scale Image Tag Size. Read More

www.securitytracker.com:
JOE Editing Software May Create a Privileged Backup File in Certain Cases That May Allow a Local User to Obtain Elevated Privileges. Read More

www.securitytracker.com:
Microsoft NetMeeting Remote Desktop Sharing Screen Saver Access Control Flaw Lets Physically Local Users Hijack Remote Sessions. Read More

www.securitytracker.com:
Microsoft Windows XP Remote Desktop Can Be Crashed By Remote Users Sending a Modified RDP Packet. Read More

www.securitytracker.com:
Siemens DB4Web Application Server Discloses Files on the System to Remote Users. Read More

www.securitytracker.com:
PlanetWeb Web Server Buffer Overflow in Processing GET Requests Lets Remote Users Execute Arbitrary Code on the System. Read More

www.securitytracker.com:
Trillian Chat Client Buffer Overflow in 'ident' Daemon Lets Remote Users Crash the Client. Read More

www.securiteam.com:
Cisco VPN 5000 Client Multiple Vulnerabilities. Read More

News:
online.securityfocus.com:
Detecting and Removing Trojans and Malicious Code from Win2K. Read More

www.dailyrecord.co.uk:
Hacker mastermind suspect held. Read More

www.online.ie:
MS silently fixes password sniffing bug with XP SP1. Read More

news.com.au:
Critical holes in Windows JVM. Read More

www.eweek.com:
Microsoft Patches JVM Flaws. Read More

www.vnunet.com:
Warchalking is theft, says Nokia. Read More

technology.scmp.com:
State hackers spying on us, say dissidents. Read More

www.wired.com:
A Gathering of Big Crypto Brains. Read More

www.washingtonpost.com:
America and Cybersecurity. Read More

19 September 2002

New Trojans:
LittleBusters 2.10

Cool Remote Control 1.12

Omega 1.11

Vulnerabilities & Exploits:
Internet Security Systems Security Alert:
Flaw in Internet Scanner Parsing Mechanism. Read More

www.foundstone.com:
Remotely Exploitable Buffer Overflow in ISS Scanner. Read More

www.abtrusion.com:
Execution Rights Not Checked Correctly For 16-bit Applications. Read More

online.securityfocus.com:
DB4Web File Disclosure Vulnerability. Read More

online.securityfocus.com:
Opera Oversized Image Width Denial Of Service Vulnerability. Read More

www.securitytracker.com:
NetBSD 'pppd' Has a Buffer Overflow That Lets Local Users Obtain Root Privileges. Read More

www.securitytracker.com:
NetBSD 'mrinfo' and 'mtrace' Mbone Tools Have a Buffer Overflow That Lets Local Users Obtain Root Privileges. Read More

www.securitytracker.com:
Network File System (NFS) Flaw in Processing Zero-Length RPC Messages Allows Remote Users to Crash the System. Read More

www.securitytracker.com:
'atftp' File Transfer Program Buffer Overflows Allow for Execution of Arbitrary Code. Read More

www.securitytracker.com:
NetBSD Kernel TIOCSCTTY I/O Control Counter Overflow Lets Local Users Crash the System. Read More

www.securitytracker.com:
Heimdal Kerberos 'kfd' Buffer Overflows May Let Remote Users Gain Root Access. Read More

www.securitytracker.com:
Sygate Personal Firewall Fails to Block or Log Packets With a Certain Spoofed Source Address. Read More

www.securitytracker.com:
UNIX 'libkvm' Library May Let Local Users Access Kernel Memory and Potentially Gain Root Access Due to File Descriptor Leaks. Read More

www.securiteam.com:
Planet Web Software Buffer Overflow. Read More

www.securiteam.com:
NetMeeting 3.01 Local RDS Session Hijacking. Read More

www.securiteam.com:
OpenSSH 3.4p1 Allows Revealing of Password (Privsep Feature). Read More

www.securiteam.com:
"Slapper" OpenSSL/Apache Worm Propagation. Read More

News:
Microsoft Security Bulletin MS02-151
Cryptographic Flaw in RDP Protocol can Lead to Information Disclosure (Q324380). Read More

Microsoft Security Bulletin MS02-052
Flaw in Microsoft VM JDBC Classes Could Allow Code Execution (Q329077). Read More

news.ft.com:
Critics say US web security plan falls short. Read More

www.nwfusion.com:
Security experts weigh in on cybersecurity plan. Read More

www.eweek.com:
Critics Rap Bush Cyber-Security Plan. Read More

zdnet.com.com:
Five steps for keeping hackers at bay. Read More

www.bangkokpost.com:
M'soft gives Mac users a taste for the security flaws they're missing. Read More

www.mobilenewscwp.co.uk:
Double trouble from SIM card crackers. Read More

www.ecommercetimes.com:
Daily CyberCrime and Security Report for September 18, 2002. Read More

18 September 2002

New Trojans:
JustJoke 2.5 by Devil

Minicom 3.5

Alien Hacker 2.5

Vulnerabilities & Exploits:
Debian Security Advisory:
DSA-167-1 kdelibs -- cross site scripting. Read More

online.securityfocus.com:
Microsoft Windows Encrypted RDP Packet Information Leakage Vulnerability. Read More

online.securityfocus.com:
Microsoft Windows RDP Keystroke Injection Vulnerability. Read More

online.securityfocus.com:
Microsoft Windows XP Professional Remote Desktop Denial Of Service Vulnerability. Read More

www.securitytracker.com:
(Microsoft Responds) Microsoft Word Document Processing File Include Bug May Let Remote Users Obtain Files From a Target User's System. Read More

www.securitytracker.com:
Xbreaky Game Temporary File Access Control Flaw Lets Local Users Overwrite Files With Root Permissions. Read More

www.securitytracker.com:
Avaya IP Office Telecommunications System Can Be Crashed By Remote Users Sending Malformed Packets. Read More

News:
www.tweaktown.com:
Windows XP SP1 � Updating Tips �n� Tricks. Read More

thestar.com.my:
New threats from instigators and hackers. Read More

www.newsfactor.com:
Who Are the Hackers? Read More

news.com.com:
Microsoft's new deal with Uncle Sam. Read More

www.newscientist.com:
Computer worm networks infected machines. Read More

www.newsfactor.com:
The Coming Virus Armageddon. Read More

www.washingtonpost.com:
Backpedaling on Cybersecurity. Read More

www.sfgate.com:
U.S. cybersecurity plan under fire. Critics say it leaves too much up to users. Read More

www.hacktivismo.com:
White House: Security Does Not Include Microsoft. Read More

news.com.au:
E-commerce weaknesses exposed. Read More

www.theregus.com:
New AES crypto standard broken already? Read More

17 September 2002

New Trojans:
Force 1.61

Comando Trojan

Intruder by vml

Vulnerabilities & Exploits:
NSSI-Research Labs Security Advisory:
Sygate Personal Firewall 5.0 IP Spoofing Vulnerability. Read More

www.securitytracker.com:
Enterasys X-Pedition Switch Router Can Be Crashed By Remote Users Sending a Few Packets to Certain Ports. Read More

www.securitytracker.com:
Lycos HTML Gear 'Guest Gear' Web Site Guestbook Input Validation Flaw Lets Remote Users Conduct Cross-Site Scripting Attacks Against Guest Gear Users. Read More

www.securiteam.com:
W3C CSS Validator - Proxying Attack. Read More

www.securiteam.com:
W3C HTML Validator XSS Hole. Read More

www.securiteam.com:
Altavista BabelFish XSS Hole. Read More

www.securiteam.com:
FreeBSD Ports libkvm Security Vulnerabilities. Read More

News:
www.insecure.org:
Idle Scanning and related IPID games. Read More

www.newscientist.com:
Computer worm networks infected machines. Read More

techupdate.zdnet.com:
Slapper worm hits Linux Apache. Read More

www.pcworld.com:
Serious Worm Crawling Toward Web Servers. Read More

www.theage.com.au:
New Apache worm spreading in the wild. Read More

www.nwfusion.com:
P2P worm targets Linux Apache Web servers. Read More

www.wired.com:
Video-Conferencing Hole Exposed. Read More

www.washingtonpost.com:
White House Slows Cybersecurity Planning. Read More

techupdate.zdnet.com:
What will it take to secure our cyberspace? Read More

www.siliconvalley.com:
Credit card scam exposes hole in e-commerce security. Read More

www.msnbc.com:
Massive credit card heist suspected. Read More

thestar.com.my:
New threats from instigators and hackers. Read More

www.chron.com:
Probe into wireless network hacking suspended. Read More

16 September 2002

New Trojans:
Shadow Remote Administrator 1.4

Anthena Trojan 4.0 by Thiago Pires Alves

Brain Wiper 0.3 Beta by manga_man

Vulnerabilities & Exploits:
www.securitytracker.com:
Network Associates WebShield SMTP Virus Scanner Can Be Bypassed With Fragmented 'Partial' E-mail Messages. Read More

www.ciac.org:
CIACTech02-004: Parasite Programs; Adware, Spyware, and Stealth Networks. Read More

Debian Security Advisory:
DSA-166-1 purity -- buffer overflows. Read More

News:
Internet Security Systems Security Alert:
"Slapper" OpenSSL/Apache Worm Propagation. Read More

www.wired.com:
Hacking Las Vegas. Read More

www.microsoft.com:
How Microsoft Is Refocusing on Security, Reliability, Privacy, and More, as Part of Trustworthy Computing Initiative. Read More

www.internet-magazine.com:
Chinese authorities turn to hacking. Read More

www.theregister.co.uk:
Word 97 feature spawns no-brainer pilfering exploit. Read More

www.stuff.co.nz:
Wireless networks at the mercy of hackers. Read More

www.2600.org:
FIRST H2K2 AUDIO FILES ONLINE. Read More

news.com.com:
Mozilla bug leaks Web surfing data. Read More

www.linuxsecurity.com:
Paranoid Penguin: Stealthful Sniffing, Intrusion Detection and Logging. Read More

www.vnunet.com:
Hackers enjoy a bad patch. Read More

www.satirewire.com:
HACKERS BEG BORING PEOPLE TO STOP ENCRYPTING EMAIL. Read More

15 September 2002

New Trojans:
JustJoke 2.4

Digital Spy 1.1

XHX 1.74

Vulnerabilities & Exploits:
www.securitytracker.com:
Ssldump Protocol Analyzer Buffer Overflows May Let Remote Users Execute Arbitrary Code on the System. Read More

www.securitytracker.com:
TrendMicro InterScan VirusWall Scanner Can Be Bypassed With Fragmented 'Partial' E-mail Messages. Read More

online.securityfocus.com:
Multiple Vendor Email Message Fragmentation SMTP Filter Bypass Vulnerability. Read More

News:
news.com.com:
Linux worm creating P2P attack network. Read More

www.newsfactor.com:
Daily CyberCrime and Security Report for September 13, 2002. Read More

www.itworld.com:
China stops blocking Google's Web site. Read More

14 September 2002

New Trojans:
Autocrat 1.26.59

RemoteNC beta2

Intruzzo 1.1 (d)

Tools:
Autopsy Forensic Browser
Autopsy provides an investigator with an HTML-based graphical interface that allows one to browse images from compromised systems in a "File Manager"-like interface. Windows and UNIX file systems can be analyzed to view deleted files, create time lines of file activity, and perform key word searches. Read More

sourceforge.net:
Gspoof is a GTK+ program written in C which makes easy and accurate the building and the sending of TCP packets with or without a data payload. It's possible to modify TCP/IP fields or the Ethernet header. Read More

www.rtfm.com:
SSLDump a SSLv3/TLS Network Protocol Analyzer. Read More

www.greyhats.org:
SMTPScan, Remote SMTP Server Version Detector. Read More

Vulnerabilities & Exploits:
www.securitytracker.com:
KDE Konqueror URL Decoding Inconsistency May Result in a Web Page Loading in the Incorrect Security Domain. Read More

www.securitytracker.com:
KDE Konqueror Browser May Disclose Secure Cookies Via the Network Over Non-Secure Connections. Read More

News:
www.itweb.co.za:
Hacking with Outlook Express. Read More

www.silicon.com:
'Microsoft', 'security flaw', make your own headline. Read More

news.com.com:
Worm attacks Linux servers. Read More

news.com.com:
Security companies sound off on cyberthreats. Read More

www.hindustantimes.com:
Microsoft Word could open hole to hackers: Experts. Read More

news.com.com:
China still blocking some Google links. Read More

itmanagement.earthweb.com:
Malicious Spam On The Rise. Read More

13 September 2002

New Trojans:
Cyber-Hazard 1.2

Force 1.60

Fun Factory 1.0

Vulnerabilities & Exploits:
www.securiteam.com:
Linuxconf Locally Exploitable Buffer Overflow Vulnerability (Exploit). Read More

www.securiteam.com:
PerlCal cal_make.pl Directory Traversal. Read More

www.securiteam.com:
EFStool Local Root Exploit for Linux/x86. Read More

Debian Security Advisory:
DSA-165-1 postgresql -- buffer overflows. Read More

Debian Security Advisory:
DSA-164-1 cacti -- arbitrary code execution. Read More

online.securityfocus.com:
Unspecified Tru64 ARP Vulnerability. Read More

online.securityfocus.com:
Veritas Cluster Server Root Compromise Vulnerability. Read More

online.securityfocus.com:
ssldump PreMasterSecret Buffer Overflow Vulnerability. Read More

www.securiteam.com:
Bypassing SMTP Content Protection with a Flick of a Button. Read More

www.securiteam.com:
Cisco VPN Client Multiple Vulnerabilities - Second Set. Read More

www.securiteam.com:
Slashdot / Slashcode Disclosing Passwords. Read More

www.securitytracker.com:
Savant Web Server Buffer Overflow Allows Remote Users to Execute Arbitrary Code on the System. Read More

www.securitytracker.com:
Apple QuickTime Media Player Buffer Overflow Lets Remote Users Execute Arbitrary Code on Windows Systems. Read More

www.securitytracker.com:
Sun Solaris aspppls(1M) Access Control Bug Lets Local Users Gain Root Privileges. Read More

www.securitytracker.com:
WoltLab Burning Board Forum Input Validation Hole in board.php Lets Remote Users Inject SQL Commands to Gain Administrative Access. Read More

www.securitytracker.com:
Microsoft Outlook Express Can Be Crashed By Remote Users Sending HTML Mail With Long Links Embedded. Read More

www.securitytracker.com:
Sun Cobalt Qube /usr/lib/authenticate Bug Lets Local Users Gain Root Privileges. Read More

www.securitytracker.com:
Sun Cobalt RaQ /usr/lib/authenticate Bug Lets Local Users Gain Root Privileges. Read More

www.securiteam.com:
Vulnerabilities in Microsoft's Java implementation. Read More

www.securiteam.com:
Who Framed Internet Explorer. Read More

www.securiteam.com:
Norton Antivirus 2001 POP3 Proxy Local DoS. Read More

www.securiteam.com:
ht://Check Cross-Site Scripting. Read More

www.securiteam.com:
phpGB Cross Site Scripting Bug. Read More

www.securiteam.com:
SWS Web Server Multiple Vulnerabilities. Read More

www.securiteam.com:
XBreaky Symlink Security Vulnerability. Read More

www.securiteam.com:
Buffer Over/Underflows Found in SSLdump. Read More

www.securiteam.com:
Konqueror Secure Cookie Vulnerability. Read More

www.securiteam.com:
Mozilla Referer Privacy Leak. Read More

www.securiteam.com:
Konqueror Cross Site Scripting Vulnerability. Read More

News:
www.sfgate.com:
Flaw in Microsoft's Word software could allow theft of files by bugging document with hidden code. Read More

www.nwfusion.com:
Security vulnerabilities persist after IE 6 patch. Read More

timesofindia.indiatimes.com:
Security flaw in Microsoft Word. Read More

www.eweek.com:
Outlook Express Lets Attackers Skirt Filters. Read More

www.wininformant.com:
Surprise: Microsoft's Java Implementation Is Full of Security Holes. Read More

www.theregister.co.uk:
Outlook Express becomes attack platform, of sorts. Read More

www.heraldsun.news.com.au:
Cyber jail terms tougher. Read More

www.taipeitimes.com:
Government asks hackers to try to break into its sites. Read More

www.bday.co.za:
Neglecting phone systems is costly. Read More

www.theregister.co.uk:
Google China crisis over. Read More

www.newsfactor.com:
Daily CyberCrime and Security Report for September 12, 2002. Read More

12 September 2002

New Trojans:
c400s FTP Server 1.0a

4azeta beta 1

NetAmine

Vulnerabilities & Exploits:
online.securityfocus.com:
Multiple Microsoft JVM Vulnerabilities. Read More

online.securityfocus.com:
Microsoft Internet Explorer IFrame/Frame Cross-Site/Zone Script Execution Vulnerability. Read More

jscript.dk:
IE6 SP1 Notes. Read More

www.atstake.com:
Apple QuickTime ActiveX v5.0.2 Buffer Overrun. Read More

www.securitytracker.com:
VERITAS Cluster Server Has an Unspecified Hole That Lets Remote Users Gain Root Level Access. Read More

www.securitytracker.com:
Microsoft Internet Explorer Frame Domain Security Bug Lets Remote Users Execute Arbitrary Code in the Local Computer Zone Via Frame URLs. Read More

www.securitytracker.com:
Wordtrans Language Translator Input Validation Bugs Allow Remote Users to Execute Arbitrary PHP Code and Conduct Cross-Site Scripting Attacks. Read More

www.securitytracker.com:
Microsoft Internet Explorer Implementation Bugs in Java Native Methods May Let Remote Users Execute Arbitrary Code Via Malicious Applets. Read More

www.securitytracker.com:
phpGB Guestbook Software Has Multiple Bugs That Give Remote Users Admin Access and Execute Arbitary Code on the System. Read More

www.securiteam.com:
Apple QuickTime ActiveX Buffer Overrun. Read More

www.securiteam.com:
PHP fopen() CRLF Injection. Read More

News:
www.theinquirer.net:
Windows XP contains massive security hole. Read More

www.extremetech.com:
Microsoft's Wimpy Warning Irritates Admins. Read More

www.thestar.com:
Insecure wireless networks exposed. Read More

www.theage.com.au:
Hackers chalk one up. Read More

www.nikkeibp.asiabiztech.com:
More Than 1,000 Monthly Klez Virus Incidents Reported for Five Months Running: IPA/ISEC Report. Read More

www.theregister.co.u:
Broken Sept 11 worm poses little risk. Read More

www.washingtonpost.com:
Administration Pares Cyber-Security Plan. Read More

www.usatoday.com:
Bush administration considering creation of cybersecurity fund. Read More

www.it-analysis.com:
Hacking: 90% of corporate networks are vulnerable. Read More

www.smh.com.au:
Victoria to table new laws on computer crime. Read More

www.theregister.co.u:
'Web Hacking: Attacks & Defense' at 30 per cent off. Read More

www.cw360.com:
Microsoft buys security software company. Read More

www.wired.com:
The War Is Digital. Read More

techupdate.zdnet.com:
Desperately seeking secure remote access. Read More

www.fortune.com:
Fear Along the Firewall. Read More

11 September 2002

New Trojans:
AIM Robber 3.0

AeonwindDoll 1.0

U321 Backdoor 1.2

Vulnerabilities & Exploits:
online.securityfocus.com:
Microsoft Internet Explorer IFrame/Frame Cross-Site/Zone Script Execution Vulnerability. Read More

online.securityfocus.com:
Multiple Microsoft JVM Vulnerabilities. Read More

online.securityfocus.com:
Wordtrans-web Script Injection Vulnerability. Read More

online.securityfocus.com:
Wordtrans-web Remote Command Execution Vulnerability. Read More

www.securitytracker.com:
Ultimate PHP Board Access Control Flaw Gives Remote Authenticated Users Administrative Access. Read More

www.securitytracker.com:
PHP Input Validation Bug in header () Function May Let Remote Users Conduct Cross-Site Scripting Attacks. Read More

News:
Microsoft Security Bulletin MS02-050
Certificate Validation Flaw Could Enable Identity Spoofing (Q328145). Read More

www.villagevoice.com:
Virtually Helpless. Read More

www.siliconvalley.com:
Intel announces computer security technology. Read More

news.com.com:
Microsoft to build great wall of Yukon. Read More

www.cw360.com:
Amateur hackers expose insecure in wireless LANs. Read More

www.theregister.co.uk:
Microsoft identifies source of Windows 2000 attacks. Read More

www.infoworld.com:
Microsoft acquires security software maker. Read More

www.bangkokpost.com:
Google finds itself on the wrong side of China's Great Firewall. Read More

www.bangkokpost.com:
Hacking widespread here. Read More

www.commsdesign.com:
Security requires 'depth in datapath', AT&T researcher says. Read More

www.itweb.co.za:
Hacker has last laugh over lottery site. Read More

www.sfgate.com:
Future Intel chips -- hacker-proof? Read More

www.itweb.co.za:
RSA Security unveils innovative two-factor authentication solution for consumer market. Read More

www.ecommercetimes.com:
Daily CyberCrime and Security Report for September 10, 2002. Read More

10 September 2002

New Trojans:
Third Eye 1.0

CS Trojan 1.0

WebDownloader 2.3 by Qroject

Vulnerabilities & Exploits:
razor.bindview.com:
Strange Attractors and TCP/IP Sequence Number Analysis. Read More

online.securityfocus.com:
CRLF Injection by Ulf Harnhammar. Read More

Debian Security Advisory:
DSA-163-1 mhonarc -- cross site scripting. Read More

GreyMagic Security Advisory GM#010-IE:
Who framed Internet Explorer. Read More

www.linuxjournal.com:
The IP Security Protocol, Part 2. Read More

News:
zdnet.com.com:
MS "solves" mystery of hacking spree. Read More

rtnews.globetechnology.com:
Philippines cracks hacker ring. Read More

zdnet.com.com:
AltaVista searches banned in China. Read More

www.newscientist.com:
Google mirror beats Great Firewall of China. Read More

zdnet.com.com:
PC makers slow to endorse XP update. Read More

www.microsoft.com:
Choose the File System That Suits Your Needs. Read More

seattletimes.nwsource.com:
Net security efforts going nowhere fast. Read More

www.boston.com:
Striving to improve security efforts. Read More

seattletimes.nwsource.com:
Computer forensics specialists in demand as hacking grows. Read More

sunspot.net:
U.S. Considers Cybersecurity Plan. Read More

www.canoe.ca:
Cyberterrorism still a threat. Read More

www.iht.com:
IT managers cite security and competition when choosing a Linux system. Read More

www.sfgate.com:
Looking Back, Looking Ahead. A nation remembers Patriot Act's scope, secrecy ensnare innocent, critics say. Read More

www.washingtonpost.com:
Security Trumps Privacy in New Laws. Read More

www.fcw.com:
Digital signatures come into focus. Read More

www.denverpost.com:
Aspen to improve network security after hacking. Read More

techupdate.zdnet.com:
Beware of beta--or embrace it? Read More

www.sciencedaily.com:
Telling The Truth On The Internet. Read More

09 September 2002

New Trojans:
JustJoke 2.3 Devil

Kraimer 1.3

Pest 3.2

Vulnerabilities & Exploits:
online.securityfocus.com:
Zmerge Administration Database Insecure Default Access Control List. Read More

www.securiteam.com:
KSTAT (and Maybe Others) Bypass (Phantasmagoria). Read More

www.securiteam.com:
Zero Width GIF (Exploit). Read More

www.securitytracker.com:
Granite Software ZMerge Tool for Lotus Notes/Domino Has Default Configuration That Gives Remote Users Administrative Access. Read More

www.securiteam.com:
Multiple Vulnerabilities at Canada.com. Read More

www.securiteam.com:
WebServer 4 Everyone Directory Traversal Bug. Read More

www.securiteam.com:
Remotely Exploitable Buffer Overflow in PGP. Read More

www.securiteam.com:
PHP header() CRLF Injection. Read More

News:
www.newscientist.com:
Google mirror beats Great Firewall of China. Read More

www.newsfactor.com:
AltaVista Joins Google in 'China Block' Club. Read More

www.cnn.com:
Is Linux poised to topple Microsoft? Read More

www.ntsecurity.net:
Microsoft Releases Windows XP Service Pack 1. Read More

www.linuxjournal.com:
The IP Security Protocol, Part 1. Read More

08 September 2002

New Trojans:
Whirlpool 1.0

GreenScreen 0.99

Zimenok 0.8

Vulnerabilities & Exploits:
online.securityfocus.com:
Multiple Browser Zero Width GIF Image Memory Corruption Vulnerability. Read More

www.securitytracker.com:
Web Server 4 Everyone Input Validation Flaw Discloses Files to Remote Users. Read More

www.securitytracker.com:
Super Site Searcher Input Validation Hole Lets Remote Users Execute Arbitrary Shell Commands on the Server. Read More

www.securitytracker.com:
Network Associates PGP Corporate Desktop Buffer Overflow in Processing Long Filenames Lets Remote Users Execute Arbitrary Code. Read More

www.securitytracker.com:
Cisco VPN Client Software Has Multiple Bugs That, Among Other Things, Allow a Remote User to Crash the Client. Read More

www.securiteam.com:
Granite Software ZMerge Administration Database Insecure Default ACLs. Read More

www.securiteam.com:
NETGEAR FM114P URL Filter Bypassing Vulnerability. Read More

News:
online.securityfocus.com:
Bug Triad Whacks Microsoft Browser. Read More

straitstimes.asia1.com.sg:
Bogus networks set to give hackers a hard time. Read More

www.theregister.co.uk:
MS flips on new 'global' Windows remote-root vuln. Read More

www.theregister.co.uk:
PGP app yields remote root on Windows. Read More

www.hindustantimes.com:
Hole found in popular PGP encryption software. Read More

www.silicon.com:
Klez: the self-destroying virus. Read More

news.com.com:
A tale of two Klezes. Read More

www.vnunet.com:
Klez.E goes off like a damp squib. Read More

seattletimes.nwsource.com:
Don't get burned: Put up a firewall. Read More

www.crn.com:
Internal Document Details Internet Security Plan. Read More

www.vnunet.com:
China says asta la vista to Altavista. Read More

07 September 2002

New Trojans:
Noname Trojan 1.2

Osiris 2.0 Servers

KS Rain 0.01 beta

Vulnerabilities & Exploits:
Debian Security Advisory
DSA-162-1 ethereal -- buffer overflow. Read More

crash.ihug.co.nz:
zero width gif - example exploit. Read More

online.securityfocus.com:
Cisco VPN Client NETBIOS TCP Packet Denial Of Service Vulnerability. Read More

online.securityfocus.com:
Cisco VPN Client Password Disclosure Vulnerability. Read More

online.securityfocus.com:
Cisco VPN Client TCP Filter Information Leakage Vulnerability. Read More

online.securityfocus.com:
Raxnet Cacti Console Command Execution Vulnerability. Read More

online.securityfocus.com:
Raxnet Cacti World Readable Config.php File Vulnerability. Read More

www.securitytracker.com:
Automatic File Distributor (AFD) Buffer Overflows Let Local Users Gain Root Access on the System. Read More

www.securitytracker.com:
Finjan SurfinGate URL Filtering Bugs May Let Users Bypass Restricted URLs. Read More

www.securitytracker.com:
Microsoft Internet Explorer URL Decoding Inconsistency May Result in a Web Page Loading in the Incorrect Security Domain. Read More

www.securitytracker.com:
Aestiva HTML/OS Web Development Suite Input Validation Bug Lets Remote Users Conduct Cross-Site Scripting Attacks. Read More

www.securitytracker.com:
Polycom ViewStation Videoconferencing Input Validation Hole Discloses Information (Including the Administrator Password) to Remote Users. Read More

www.securitytracker.com:
Computalynx CMail POP3 Server Memory Flaw Allows Remote Users to Crash the System. Read More

www.securitytracker.com:
Cacti Graphical Front-End for RRDtool Lets Authenticated Remote Administrative Users Execute Arbitrary Commands on the Server. Read More

www.securitytracker.com:
Microsoft Visual FoxPro Filename Processing Bug Lets Remote Users Create HTML That Will Cause Arbitrary Code to Be Executed When the HTML is Loaded. Read More

News:
www.cw360.com:
Microsoft: "Our products aren't engineered for security". Read More

www.nwfusion.com:
Denial of service: Fighting back. Read More

www.cw360.com:
August worst month for hacker exploits. Read More

www.pcw.co.uk:
Windows 2000 hit by mysterious attacks. Read More

www.pcw.co.uk:
2002 record year for cyber attacks. Read More

news.zdnet.co.uk:
Police bust �50m software piracy ring. Read More

allafrica.com:
Online Fraud: the Nigerian Sting. Read More

www.news.com.au:
Net habits betray criminal. Read More

money.telegraph.co.uk:
Four in court over dotcom fraud. Read More

www.commweb.com:
VeriSign Embraces MasterCard's Online Anti-Fraud System. Read More

www.cw360.com:
Remote users at risk from CheckPoint Firewall-1 hole. Read More

www.pcw.co.uk:
9/11: Hacks hit out at web censorship. Read More

www.pcw.co.uk:
BugWatch: Friend or foe? Read More

06 September 2002

New Trojans:
Little Witch 5.7 Server

PassWord Mailer 1.2 Pro

easyServ 1.0

Vulnerabilities & Exploits:
Debian Security Advisory
DSA-161-1 mantis -- privilege escalation. Read More

www.foundstone.com:
Remotely Exploitable Buffer Overflow in PGP. Read More

www.securitytracker.com:
Cisco VPN 3000 Concentrator Has Multiple Bugs That Disclose Information, Allow Denial of Service, and Allow Unauthorized Packets to Pass. Read More

www.securitytracker.com:
Check Point FireWall-1 Internet Key Exchange (IKE) Implementation Bugs Disclose Whether a SecuRemote Username is Valid or Not to Remote Users. Read More

www.securiteam.com:
pwck Local Buffer Overflow. Read More

www.securiteam.com:
Multiple Remote Vulnerabilities in Polycom Videoconferencing Products. Read More

www.securiteam.com:
Cross-Site Scripting in Aestiva's HTML/OS. Read More

www.securiteam.com:
Flaw Could Enable Web Page to Launch Visual FoxPro 6.0 Application Without Warning. Read More

www.securiteam.com:
Certificate Validation Flaw Could Enable Identity Spoofing. Read More

www.securiteam.com:
A-CART Database Exposure. Read More

www.securiteam.com:
ADP Forum Security Vulnerabilities. Read More

www.securiteam.com:
Cacti Security Vulnerabilities. Read More

www.securiteam.com:
AFD Multiple Local Root Compromises. Read More

www.securiteam.com:
Compaq Tru64 UNIX Multiple Buffer Overflows. Read More

News:
www.govexec.com:
Lack of cybersecurity specialists sparks concern. Read More

news.zdnet.co.uk:
Government pushes for tougher IT security. Read More

www.infoworld.com:
Lead Windows developer bugged by security. Read More

www.pcworld.com:
Microsoft Leader Bugged by Security. Read More

news.com.com:
Credit card theft feared in Windows flaw. Read More

rtnews.globetechnology.com:
Microsoft scrambles to patch 'critical' security flaw. Read More

www.computerworld.com:
Microsoft patches core cryptography interfaces in Windows. Read More

news.com.com:
Klez attack may wipe out attacker. Read More

news.com.com:
Server attacks stump Microsoft. Read More

www.ntsecurity.net:
Mysterious Hack Attack Threatening Windows. Read More

news.com.com:
File-name flaw threatens PGP users. Read More

www3.cm.deakin.edu.au:
InfoWarCon Australia: Perth, Australia, November 2002. Read More

www.itweb.co.za:
Are hackers accessing your company via your PBX? Read More

www.eweek.com:
Cisco Warns of Flaws in VPN 3000 Series. Read More

www.washingtonpost.com:
Security Trumps Privacy in New Laws. Read More

05 September 2002

New Trojans:
HelioS 2.2

Optix PRO 1.2

Zimenok 0.5

Vulnerabilities & Exploits:
www.nextgenss.com:
Threat Profiling Microsoft SQL Server. (A Guide to Security Auditing) (pdf). Read More

ISS X-Force Security Advisory:
Multiple Remote Vulnerabilities in Polycom Videoconferencing Products. Read More

online.securityfocus.com: Check Point Firewall-1 SecuRemote IKE Username Guessing Vulnerability. Read More

www.securitytracker.com:
A-CART ASP-based Shopping Cart Discloses Database Contents to Remote Users. Read More

www.securitytracker.com:
ScrollKeeper Cataloging System Unsafe Use of Temporary Files May Let Local Users Gain Root Access. Read More

www.securitytracker.com:
NullLogic's Null httpd Web Server Input Validation Bug Lets Remote Users Conduct Cross-site Scripting Attacks. Read More

News:
Microsoft Security Bulletin MS02-049
Flaw Could Enable Web Page to Launch Visual FoxPro 6.0 Application Without Warning (Q326568). Read More

Microsoft Security Bulletin MS02-050
Certificate Validation Flaw Could Enable Identity Spoofing (Q328145). Read More

www.washingtonpost.com:
Cyber-Attack Fears Stir Security Officers. Read More

www.online.ie:
Cheap thrills on the cyber-terror beat. Read More

www.theage.com.au:
Defacement archives inaccessible. Read More

www.washingtonpost.com:
Computer Security Standards Ready. Read More

www.cw360.com:
August worst month for hacker exploits. Read More

www.itp.net:
Low levels of understanding hold back security services market. Read More

isp-planet.com:
Blocking Attached Viruses. Read More

www.infoconomy.com:
Companies exposed to �social engineers� � Mitnick. Read More

techupdate.zdnet.com:
At last, real wireless LAN security. Read More

www.pcw.co.uk:
Napster is finally a dead cat. Read More

www.pcw.co.uk:
Google in talks with Chinese government. Read More

04 September 2002

New Trojans:
Remote Typer 2.0.0

Digital Upload Trojan

DarkIRC x.0

Vulnerabilities & Exploits:
Debian Security Advisory:
DSA-160-1 scrollkeeper -- insecure temporary file creation. Read More

www.securiteam.com:
Radmin Default Installation Security Vulnerabilities. Read More

www.securiteam.com:
Checkpoint FW-1 VPN Security Flaw. Read More

www.securiteam.com:
Blue Coat Systems (formerly CacheFlow) Cross Site Scripting Vulnerability. Read More

www.securiteam.com:
Windows .NET Server (RC1) and MSDE Security Vulnerability. Read More

www.securiteam.com:
Microsoft SQL Server Stored Procedures (sp_MSSetServerPropertiesn and sp_MSsetalertinfo). Read More

www.securiteam.com:
ScrollKeeper /tmp Files Insecurity. Read More

www.securiteam.com:
SWS Server Denial of Service Attack POF. Read More

www.cert.org:
CERT� Summary CS-2002-03. Read More

News:
europe.cnn.com:
Whither the worm? Read More

www.infoworld.com:
Windows flaw could be used to forge digital signatures. Read More

www.linuxsecurity.com:
Hacker vs. Hacker: How To Tell Them Apart. Read More

seattletimes.nwsource.com:
Corporate saboteurs find hacking powerful weapon. Read More

www.vnunet.com:
Terrorist to join online conference. Read More

www.vnunet.com:
Terrorist suspect in Hotmail row. Read More

news.bbc.co.uk:
Hack Attacks On The Rise. Read More

rtnews.globetechnology.com:
Alberta hackers find wireless networks wide open. Read More

allafrica.com:
Cyber Crime Shifts Focus. Read More

www.vnunet.com:
Hackers claim Lord of the Rings leak. Read More

sunspot.net/technology:
Attacks Yield New Surveillance Laws. Read More

www.wired.com:
Why FBI Computer Force Ain't Fat. Read More

www.newsfactor.com:
Daily CyberCrime and Security Report for September 3, 2002. Read More

03 September 2002

New Trojans:
B-S Spy 1.91

Invisible Hunter 1.3

Backfire 1.0

Vulnerabilities & Exploits:
www.nextgenss.com:
sp_MSSetServerPropertiesn and sp_MSsetalertinfo. Read More

www.nextgenss.com:
Windows .NET Server (RC1) and MSDE. Read More

www.securiteam.com:
XSS in Null HTTPd. Read More

www.securiteam.com:
SWServer Directory Traversal Bug. Read More

www.securiteam.com:
Outlook S/MIME Certificate Chain Vulnerability. Read More

www.securiteam.com:
Trillian Skin Buffer Overflow. Read More

www.securitytracker.com:
Trillian Chat Client Software Has a Buffer Overflow in the XML Parser. Read More

News:
seattlepi.nwsource.com:
Local sites potential targets for cyberterror. Read More

www.nzherald.co.nz:
Password security for online banking queried. Read More

www.theage.com.au:
Virus activity drops. Read More

www.online.ie:
Spammers help Klez top the virus charts. Read More

www.networkcomputing.com:
New Worries About WLAN Security. Read More

asia.cnet.com:
Catching Wireless Hackers In The Act. Read More

02 September 2002

New Trojans:
Itadem 1.01

Apophis Spy 1.0.0

AutoSpY Server 1.2 fixed

Vulnerabilities & Exploits:
www.securitytracker.com:
Gaim Instant Messaging Client Input Validation Flaw Lets Remote Users Execute Arbitrary Commands. Read More

www.securitytracker.com:
HP (Compaq) Tru64 UNIX Operating System 'ping' Utility May Let Local Users Create Denial of Service Conditions. Read More

www.securitytracker.com:
CGI Debugger Script Discloses Web Server Environment Variables to Remote Users. Read More

www.securitytracker.com:
FactoSystem Web Publishing System Input Validation Bugs Let Remote Users Execute SQL Commands on the Underlying Database. Read More

News:
www.extremetech.com:
Internet Explorer Hole Exploited For Banking Hack. Read More

www.extremetech.com:
Microsoft warns of Terminal Server and "critical" Office security holes. Read More

www.e-insite.net:
Bigger and better security blanket. Read More

www.nationalpost.com:
Ottawa mulls tracking Internet usage. Read More

01 September 2002

New Trojans:
NetMail 1.1

Zimenok 0.3beta

JustJoke 1.3

Tools:
www.insecure.org:
Nmap 3.10ALPHA2 released. Read More

alpinista.dyndns.org:
Tiny Honeypot - resource consumption for the good guys. Read More

www.securereality.com.au:
injectso is a tool to inject shared libraries into running processes under Linux (IA32 and Sparc) and Solaris (Sparc). Read More

www.da-experts.com:
The Logging Project was born out of a need for secure, centralized, fault tolerant, real time logging. Read More

autosec.sourceforge.net:
sonar-1.0BETA4.tar.gz. Sonar is a network reconnaissance utility which runs all its scans from plugins. Read More

www.ethereal.com:
ethereal-0.9.6.tar.gz. Ethereal is a free network protocol analyzer for Unix and Windows. Read More

www.snort.org:
snort-1.8.7.tar.gz. Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. Read More

Vulnerabilities & Exploits:
www.securiteam.com:
Facto System CMS Contains Multiple Vulnerabilities. Read More

News:
www.theinquirer.net:
Chinese government blocks Web sites like Amnesty, the BBC. Read More

www.theinquirer.net:
RIAA hacked � yet again. Read More

www.theinquirer.net:
DirectX 9 postponed. Read More

www.theage.com.au:
Broadband can open you to a broad attack. Read More

www.securitynewsportal.com:
Italian hacker group "The Imperial" busted. Read More

www.theage.com.au:
Internet child porn king jailed for four years. Read More

www.guardian.co.uk:
Boys jailed for deadly fire at illegal internet cafe. Read More


Copyright� MegaSecurity.org