Home News Archive Translate Traducen |
News October 2004 |
31 October 2004 Tools www.sys-security.com: Xprobe I combines various remote active operating system fingerprinting methods using the ICMP protocol, which were discovered during the "ICMP Usage in Scanning" research project, into a simple, fast, efficient and a powerful way to detect an underlying operating system a targeted host is using. Read more
tanaya.net:
www.mazzoft.com: Guides, Papers, etc www.research.ibm.com: Inside the Mind of Dark Avenger. The Bulgarian Dark Avenger writes viruses. Much like Hannibal Lecter, he is clever - and cunningly dangerous. In a unique interview, Sarah Gordon - much like Clarice Starling - explores the cold logic of a criminal brain. Read more
www.microsoft.com:
packetstormsecurity.nl: Vulnerabilities & Exploits cvs.sourceforge.net: vulnerability in bogofilter/bogolexer. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com: News: www.newsfactor.com: Bagle Evades News Cycle, Spreads Across Europe. Read more
www.metafilter.com:
www.vnunet.com:
www.vnunet.com:
www.computerworld.com: |
30 October 2004 Guides, Papers, etc www.security.nnov.ru: Bypassing client application protection techniques. Read more
www.phrack.org: Vulnerabilities & Exploits aluigi.altervista.org: FAKE PLAYERS BUG. Read more
secunia.com:
secunia.com:
www.debian.org:
www.osvdb.org: News: news.com.com: Reheated Bagle smokes out antivirus defenses. Read more
www.theregister.co.uk:
www.hindustantimes.com:
itvibe.com:
www.chron.com:
www.theregister.co.uk:
news.com.com:
news.com.com:
news.com.com:
www.securityfocus.com:
www.theregister.co.uk: |
29 October 2004 Tools Operator is a complete Linux (Debian) distribution that runs from a single bootable CD and runs entirely in RAM. The Operator contains an extensive set of Open Source network security tools that can be used for monitoring and discovering networks. This virtually can turn any PC into a network security pen-testing device without having to install any software. Operator also contains a set of computer forensic and data recovery tools that can be used to assist you in data retrieval on the local system. Read more Guides, Papers, etc www.securityfocus.com: Trends in Web Application Security. Read more
How to Bypass Most Firewall Restrictions and Access the Internet Privately Vulnerabilities & Exploits www.securityfocus.com: New URL spoofing bug in Microsoft Internet Explorer. Read more
www.security.nnov.ru:
www.securiteam.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
www.debian.org:
www.debian.org:
News: news.zdnet.com:> Hacking becomes a full-time job. Read more
news.com.com:
www.silicon.com:
itvibe.com:
www.securitypronews.com:
www.theregister.co.uk:
www.terra.net.lb: |
28 October 2004 Guides, Papers, etc www.hackingspirits.com: Demystifying Penetration Testing (zip). Download
www.hackingspirits.com:
www.nextgenss.com:
www.technicalinfo.net:
www.nextgenss.com:
www.eeye.com: Vulnerabilities & Exploits securitytracker.com: OmniWeb Browser Multi-Window Browsing Errors Let Remote Users Spoof Sites. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
www.debian.org:
www.barrossecurity.com: News: www.theregister.co.uk: Virus experts fret over Myfip. Read more
www.detnews.com:
www.guardian.co.uk:
www.electricnews.net:
www.electricnews.net:
www.securityfocus.com:
www.theregister.co.uk:
www.theregister.co.uk: |
27 October 2004 Tools packetstormsecurity.nl: mangleme is an automated broken HTML generator and browser tester, originally used to find dozens of security and reliability problems in all major Web browsers (Mozilla / Firefox / Netscape, Konquero...Download Guides, Papers, etc www.securityfocus.com: Issues Discovering Compromised Machines. Read more
packetstormsecurity.nl:
cansecwest.com: Vulnerabilities & Exploits packetstormsecurity.nl: Microsoft Internet Explorer ms-its scheme/CHM remote code execution. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com: News: news.zdnet.co.uk: Trojan Horse uses war as cover. Read more
www.nwfusion.com:
www.theinquirer.net:
www.net-security.org:
tired-of-spam.home.comcast.net:
software.silicon.com:
www.theregister.co.uk:
www.theinquirer.net:
www.theregister.co.uk:
|
26 October 2004 Guides, Papers, etc www.securityfocus.com: The Latest Tool in Competition: Hacking. Read more
www.securityfocus.com:
www.webpronews.com:
www.webpronews.com:
www.cert.org: Vulnerabilities & Exploits www.k-otik.com: Fedora-Redhat Fake Security Alert / Trojan Source Code & Analysis. Read more
www.securiteam.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
www.securiteam.com:
www.securiteam.com:
www.michaelevanchik.com: News: www.theregister.co.uk: Firefox 1.0 limbers up for launch. Read more
www.theregister.co.uk:
www.crn.com:
news.netcraft.com:
www.theregister.co.uk:
|
25 October 2004 Guides, Papers, etc packetstormsecurity.nl: Win32 Stack BufferOverFlow Real Life Vuln-Dev Process (pdf). Read more
packetstormsecurity.nl:
blogs.msdn.com: Vulnerabilities & Exploits securitytracker.com: rssh Format String Flaw in 'log.c' May Let Remote Authenticated Users Execute Arbitrary Code. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com: News: www.theinquirer.net: Hackers stop Guardian campaign. Read more
news.zdnet.co.uk:
www.theinquirer.net:
uk.news.yahoo.com:
www.620ktar.com:
www.pcworld.idg.com.au:
www.guardian.co.uk:
|
24 October 2004 Tools iamaphex.net: Webexe is a wrapper for EXE files on NT/2000/XP/2003. Instead of storing the payload file inside of a stub it is downloaded from a URL directly into memory. This means that each time the webexe is executed, a fresh copy of the payload is downloaded and executed DIRECTLY FROM MEMORY. Your payload is NEVER written to disk and will remain untouched by file scans. Read more
www.diamondcs.com.au: Guides, Papers, etc www.pcworld.com: Biography of a Worm. Read more
REVENGE IS SWEET News: www.securityfocus.com: Is Windows up to snuff for running our world? Read more
itvibe.com:
www.stuff.co.nz:
www.theage.com.au:
networks.silicon.com:
news.zdnet.co.uk:
www.fcw.com:
www.stuff.co.nz:
|
23 October 2004 Vulnerabilities & Exploits securitytracker.com: Microsoft IE for Mac Multi-Window Browsing Errors Let Remote Users Spoof Sites. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
www.lovebug.org: News: www.theregister.co.uk: Windows v Linux security: the real facts. Read more
news.zdnet.com:
www.theregister.co.uk:
news.zdnet.com:
www.computerworld.com:
|
22 October 2004 Tools ftp.europe.f-secure.com: The finnish F-Secure Anti-Virus company has posted an AVP-based "AllBot" disinfection utility, which should deal with the Wootbot, Agobot, Forbot, Rbot, Spybot, IRCBot, SDBot families of malware. Download Vulnerabilities & Exploits securitytracker.com: Microsoft Internet Explorer on Windows XP Fails to Restrict Drag and Drop Operations When Configured to Disable These Operations. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
www.securiteam.com:
www.securiteam.com:
www.nsfocus.com:
www.debian.org:
www.debian.org: News: news.zdnet.co.uk: Security holes exposed in several major browsers. Read more
www.internetweek.com:
www.theregister.co.uk:
news.bbc.co.uk:
www.technewsworld.com:
news.zdnet.co.uk:
english.ohmynews.com:
www.theregister.co.uk:
www.internetweek.com:
entmag.com:
www.eweek.com:
news.zdnet.co.uk:
news.zdnet.co.uk:
|
21 October 2004 Guides, Papers, etc www.microsoft.com: Microsoft's 'Fight Spyware' Information Center. Read more
tigerteam.se: Vulnerabilities & Exploits securitytracker.com: Opera HTML Parsing Errors Let Remote Users Deny Service. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
www.securiteam.com:
www.securiteam.com:
www.ntbugtraq.com:
www.debian.org:
www.debian.org: News: www.theregister.co.uk: Gates: PC will replace TV, TV will become a giant Google. Read more
www.theregister.co.uk:
www.theinquirer.net:
www.newsfactor.com:
www.lacrossetribune.com:
news.com.com:
www.eweek.com:
wave3.com:
|
20 October 2004 Guides, Papers, etc www.securityfocus.com: Securing Exchange With ISA Server 2004. Read more
paulgraham.com: Vulnerabilities & Exploits securitytracker.com: Lotus Notes/Domino Square Bracket Encoding Failure Lets Remote Users Conduct Cross-Site Scripting Attacks. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
www.securiteam.com:
securetarget.net:
www.cybertrion.com: News: www.securityfocus.com: California reports massive data breach. Read more
news.com.com:
www.nzherald.co.nz:
www.ciphertrust.com:
www.thejakartapost.com:
www.techweb.com:
www.pingwales.co.uk:
news.zdnet.co.uk:
|
19 October 2004 Tools www.insecure.org: Nmap 3.75 released. Read more Vulnerabilities & Exploits www.securiteam.com: GDI+ JPEG Exploit Mutations Can Bypass Antivirus Tests. Read more
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
pacsec.jp:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com: News: news.zdnet.co.uk: MyDoom seeks to destroy antivirus firms. Read more
www.computerweekly.com:
www.theregister.co.uk:
www.theinquirer.net:
www.crime-research.org:
|
18 October 2004 Guides, Papers, etc www.eng.tau.ac.il: A Quantitative Study of Firewall Configuration Errors (pdf). Read more Vulnerabilities & Exploits www.securityfocus.com: [IE 6 SP2] Possible URL Spoofing. Read more
securitytracker.com:
securitytracker.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.debian.org:
www.securitytrap.com: News: www.oreillynet.com: Point-and-Click Phishing. Read more
www.computerworld.com:
www.computerworld.com:
|
17 October 2004 New Trojans: Guides, Papers, etc www.securityfocus.com: SSH Host Key Protection. Read more Vulnerabilities & Exploits www.securityfocus.com: New Remote Microsoft JPEG DoS Vulnerability + Other Potential Security Vulnerabilitys in asycpict.dll 1.0 Advisory. Read more
www.debian.org:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com: News: www.pcmag.com: Spyware Today, Cookies Tomorrow. Read more
news.zdnet.co.uk:
news.zdnet.co.uk:
news.zdnet.co.uk:
|
16 October 2004 Vulnerabilities & Exploits www.securityfocus.com: Writing Trojans that bypass Windows XP Service Pack 2 Firewall. Read more
www.acrossecurity.com:
www.gentoo.org:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com: News: Nasa. The list contains the full name, email, phone, fax, position, building, room, and employer. FTP
blogs.pcworld.com:
news.netcraft.com:
news.bbc.co.uk:
www.infoworld.com:
www.theregister.co.uk:
www.crime-research.org:
www.theregister.co.uk:
www.theregister.co.uk:
|
15 October 2004 Vulnerabilities & Exploits securitytracker.com NatterChat Input Validation Hole Lets Remote Users Inject SQL Commands. Read more
securitytracker.com
securitytracker.com
securitytracker.com
securitytracker.com
securitytracker.com
securitytracker.com
securitytracker.com
securitytracker.com
securitytracker.com
securitytracker.com
www.lovebug.org:
www.debian.org: News: www.theregister.co.uk: Undead IE bug rises from grave. Read more
www.theregister.co.uk:
www.cio-today.com:
www.theregister.co.uk:
www.zdnet.com.au:
|
14 October 2004 Guides, Papers, etc www.giac.org: Worm Analysis - Microsoft LSASS Buffer Overflow from Exploit to Worm (pdf). Read more
www.giac.org: Vulnerabilities & Exploits www.securiteam.com: Writing Trojans that Bypass Windows XP Service Pack 2 Firewall. Read more
www.securiteam.com:
www.debian.org:
www.debian.org:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com: News: www.theregister.co.uk: Seven critical in MS October patch batch. Read more
www.crime-research.org:
news.zdnet.co.uk:
www.computerworld.com:
|
13 October 2004 Vulnerabilities & Exploits GreyMagic Security Advisory GM#009-IE Topic: Accessing remote/local content in IE. Read more
www.coresecurity.com:
Internet Security Systems Protection Alert
Core Security Technologies Advisory
www.debian.org:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com:
securitytracker.com: News: Microsoft Security Bulletin MS04-029 Vulnerability in RPC Runtime Library Could Allow Information Disclosure and Denial of Service (873350). Read more
Microsoft Security Bulletin MS04-030
Microsoft Security Bulletin MS04-031
Microsoft Security Bulletin MS04-032
Microsoft Security Bulletin MS04-033
Microsoft Security Bulletin MS04-034
Microsoft Security Bulletin MS04-035
Microsoft Security Bulletin MS04-036
Microsoft Security Bulletin MS04-037
news.zdnet.co.uk:
www.net-security.org:
www.theregister.co.uk:
www.theregister.co.uk:
www.theregister.co.uk:
www.crime-research.org:
|
12 October 2004 Guides, Papers, etc www.airscanner.com: Close Encounters of the Hacker Kind: A Story from the Front Lines. (pdf) Read more
www.airscanner.com:
www.informit.com:
www.informit.com: Vulnerabilities & Exploits www.securitytracker.com: Zanfi CMS Lite Include File Error Lets Remote Users Execute Arbitrary Commands. Read more
www.securitytracker.com:
www.securitytracker.com:
www.securitytracker.com:
www.securitytracker.com:
www.securitytracker.com:
www.securitytracker.com:
www.securitytracker.com:
www.securitytracker.com:
www.securitytracker.com:
www.securitytracker.com:
www.debian.org:
www.debian.org: News: www.crime-research.org: Mass raid upon hackers in Russia. Read more
www.theregister.co.uk:
www.eweek.com:
news.xinhuanet.com:
www.wired.com:
www.computerweekly.com:
www.theregister.co.uk:
|
11 October 2004 Guides, Papers, etc www.pcworld.com: Biography of a Worm. Read more Vulnerabilities & Exploits www.securitytracker.com: BNC Input Validation Flaw in Processing Backspace Characters Lets Remote Users Execute Arbitrary Commands. Read more
www.securitytracker.com:
www.securitytracker.com: News: australianit.news.com.au: China awash with viruses. Read more
www.crime-research.org:
itvibe.com:
seattletimes.nwsource.com:
|
10 October 2004 Guides, Papers, etc www.remote-exploit.org: Generic security problems with online games and applications. Read more
www.spirit.com:
www.cs.rochester.edu: Vulnerabilities & Exploits www.guninski.com: Yet another IE aperture Advisory and demonstration. Read more
www.sans.org:
www.debian.org: News: www.theregister.co.uk: Netherlands deports more 419ers. Read more
www.journalstar.com:
www.chinatechnews.com:
|
09 October 2004 Guides, Papers, etc www.securityfocus.com: Defeating Honeypots: Network Issues, Part 2. Read more Vulnerabilities & Exploits www.securitytracker.com: RealNetworks Helix Universal Server Can Be Disabled With Cetain POST Request Content-Length Value. Read more
www.securitytracker.com: News: www.securityfocus.com: Fueling the Fire. Read more
www.theregister.co.uk:
|
08 October 2004 Vulnerabilities & Exploits www.guninski.com: Yet another IE aperture. Read more
www.securitytracker.com:
www.securitytracker.com:
www.securitytracker.com:
www.securitytracker.com:
www.securitytracker.com:
News: www.techweb.com: Malicious Trojan Pretends To Be Good. Read more
news.zdnet.com:
www.cio-today.com:
|
07 October 2004 Tools www.securiteam.com: Fakebust - Fake Exploit Code Detector. Read more Guides, Papers, etc The Phishing Guide www.nextgenss.com: Understanding & Preventing Phishing Attacks. Read more Vulnerabilities & Exploits www.securitytracker.com: AtHoc Toolbar Buffer Overflow and Format String Bugs Let Remote Users Execute Arbitrary Code. Read more
www.securitytracker.com:
www.securitytracker.com:
www.securitytracker.com:
www.macromedia.com:
www.securiteam.com:
www.securiteam.com:
www.debian.org:
www.debian.org:
www.debian.org:
News: www.channelnewsasia.com: North Korea ready to launch cyber war: report. Read more
www.theregister.co.uk:
www.crime-research.org:
www.startribune.com:
|
06 October 2004 Tools www.sharp-ideas.net: Using python and AOL IM to create nmap bot. Read more Vulnerabilities & Exploits www.securitytracker.com: Symantec Norton Anti-Virus Fails to Scan Files Named With MS DOS Device Names. Read more
www.securitytracker.com:
www.securitytracker.com:
www.securitytracker.com:
www.securitytracker.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
News: www.theregister.co.uk: Click here to become infected (Part 2). Read more
www.japantoday.com:
www.idc.com:
|
05 October 2004 Tools www.remote-exploit.org: Hotspotter - a Wireless Honeypot. Read more Vulnerabilities & Exploits www.securiteam.com: RealPlayer pnen3260.dll Heap Overflow. Read more
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
www.securiteam.com:
News: www.theregister.co.uk: WorldPay struggles under DDoS attack (again). Read more
www.lsureveille.com: |
04 October 2004 Vulnerabilities & Exploits www.securitytracker.com: ColdFusion MX Lets Remote Authenticated Users Run Privileged Scripts. Read more
www.debian.org: News: www.pcwelt.de: PC-WELT discovers and fixes serious security issue in Windows XP SP2. Read more
www.pcworld.com:
www.pcworld.com:
www.pcworld.com:
www.pcworld.com:
nwc.securitypipeline.com:
www.prnewswire.com:
www.theinquirer.net: |
03 October 2004 Vulnerabilities & Exploits www.geocities.com/visitbipin: Antivirus, Trojan, Spy ware scanner, Nested file manual scan bypass bug. Read more News: www.pcwelt.de: PC-WELT discovers and fixes serious security issue in Windows XP SP2. Read more
www.pcworld.com:
|
02 October 2004 Vulnerabilities & Exploits www.securitytracker.com: Silent Storm Portal Input Validation Errors Let Remote Users Gain Administrative Privileges and Conduct Cross-Site Scripting Attacks. Read more
www.securitytracker.com:
www.securitytracker.com:
www.securiteam.com:
www.maxpatrol.com:
www.servers.co.nz:
www.gulftech.org: News: www.theregister.co.uk: McAfee in BitDefender virus slur spat. Read more
news.zdnet.com:
news.zdnet.com:
news.zdnet.com:
|
01 October 2004 Tools www.windowsitpro.com: Update: New Tools Help with JPEG GDI+ Updates. Read more Guides, Papers, etc www.windowsitpro.com: Snort Rules to Detect JPEG GDI+ Exploits. Read more Vulnerabilities & Exploits www.securitytracker.com: aspWebCalendar Discloses Whether Account Names Exist to Remote Users. Read more
www.securitytracker.com:
www.securitytracker.com:
www.securitytracker.com:
www.maxpatrol.com:
www.debian.org: News: www.windowsitpro.com: True to the Image: JPEG Exploits on the Loose. Read more
www.windowsitpro.com:
www.theregister.co.uk:
www.theregister.co.uk:
networks.silicon.com:
|
Copyright� MegaSecurity.org