Home
News Archive    Translate Traducen
News december 2003
31 december 2003

New in Archive
SAdoor 1.1

Cucumber 0.7

Zetronic

Dude

Backdoor.VB.et

Guides, Papers, etc.
www.securityfocus.com:
Checklist for Deploying an IDS. Read more

Vulnerabilities & Exploits
www.securitytracker.com:
Xsok Lets Local Users Gain 'games' Group Privileges. Read more

www.securitytracker.com:
NETObserve Authentication Hole Lets Remote Users Execute OS Commands. Read more

www.securitytracker.com:
PHPCatalog 'id' Input Validation Flaw Permits Remote SQL Injection. Read more

www.securitytracker.com:
MDaemon FORM2RAW Buffer Overflow Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
phpBB Input Validation Flaw in 'groupcp.php' Permits Moderators to Inject SQL Commands. Read more

News
www.theregister.co.uk:
Microsoft settles $60 million video patent dispute. Read more

www.guardian.co.uk:
Bank of England hit by email hoax. Read more

news.com.com:
Hoaxes Befall Banks In England, Singapore. Read more

msnbc.msn.com:
E-voting firm reports computer break-in. Read more

zdnet.com.com:
FBI investigates hack at e-voting software company. Read more

news.com.com:
Malaysian e-mail virus exploits terrorism fears. Read more

30 december 2003

New in Archive
Bill FTP

RAT Control Center 1.0

Hackarmy (g)

Alicia (a)

Alicia (c)

Vulnerabilities & Exploits
www.securitytracker.com:
Jordan Stojanovski Windows Telnet Server 'username' Buffer Overflow Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
CVS pserver 'passwd' File May Let Local Users Run Code with Root Privileges. Read more

www.securitytracker.com:
miniBB Input Validation Hole in bb_edit_prf.php Permits Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
PHP-Ping Input Validation Flaw in $count Variable Allows Remote OS Command Execution. Read more

News
www.signonsandiego.com:
Cyber blackmail wave targets office workers. Read more

msnbc.msn.com:
E-voting firm reports computer break-in. Read more

rss.com.com:
Malaysian e-mail virus exploits terrorism fears. Read more

www.iht.com:
Technology may put Big Brother in driver's seat. Read more

www.familybadge.org:
Pop-Ups Plague Patrol Car Computers. Read more

www.jamaicaobserver.com:
In Whom We Trust. Read more

29 december 2003

New in Archive
Amitis 1.4

Broser

Hayrik

Vulnerabilities & Exploits
www.securitytracker.com:
Private Message System (PMSys) 'page' Parameter Input Validation Flaw Permits Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
GKrellM Discloses User E-Mail Passwords to Local Users. Read more

www.securitytracker.com:
Microsoft IIS Fails to Log HTTP TRACK Requests. Read more

www.securiteam.com:
Multiple Vulnerabilities in Psychoblogger CMS Package. Read more

www.securiteam.com:
Knowledge Builder Remote Code Execution. Read more

News
www.vnunet.com:
2003 Review of the Year: Security. Read more

www.detnews.com:
Internet scams are on the rise. Read more

www.washtimes.com:
Romania becoming hub for cyber-crime. Read more

28 december 2003

New in Archive
Bluntman 4.20

Burbulatorheads (a)

Lamers Death 1.8 server

Guides, Papers, etc.
www.asianlaws.org:
Port Scanning and its Legal Implications. Read more

grove.ufl.edu:
FINDING FENCES IN CYBERSPACE: PRIVACY AND OPEN ACCESS ON THE INTERNET. Read more

Vulnerabilities & Exploits
www.securitytracker.com:
Microsoft Internet Explorer Trusted Domain Default Settings Facilitate Silent Installation of Executables. Read more

www.securitytracker.com:
PHP-Nuke Surveys Module Input Validation Flaw Permits SQL Injection. Read more

www.securitytracker.com:
LANDesk Management Suite 'IRCRBOOT.DLL' Buffer Overflow Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Apache mod_php File Descriptor Leak May Let Local Users Hijack the https Service. Read more

www.securitytracker.com:
KnowledgeBuilder Include File Flaw Lets Remote Users Execute Arbitrary OS Commands. Read more

www.securitytracker.com:
PsychoBlogger Input Validation Flaws Permit Cross-Site Scripting and SQL Injection Attacks. Read more

www.securitytracker.com:
OpenBB 'CID' Input Validation Flaw Permits SQL Injection. Read more

www.securitytracker.com:
Microsoft IE for Mac May Disclose Sensitive Information in Secure URLs to Remote Sites via HTTP Referer Field. Read more

www.securitytracker.com:
pServ Double Slash '//' Input Validation Flaw Discloses Files to Remote Users. Read more

www.securitytracker.com:
Serv-U FTP Server File Configuration Flaw May Let Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
L-Soft LISTSERV Input Validation Flaw in WA.EXE Management Interface May Permit Cross-Site Scripting Attacks Against List Administrators. Read more

www.securitytracker.com:
indent Buffer Overflow Lets Users Execute Arbitrary Code. Read more

27 december 2003

New in Archive
A-FTP 1.0

Ramtha 1.1

Dua ti choi 1.0 client

GForce

Vulnerabilities & Exploits
www.securitytracker.com:
Surfboard httpd Buffer Overflow May Allow a Remote User to Execute Arbitrary Code. Read more

News
star-techcentral.com:
Virus masquerades as terror alert. Read more

26 december 2003

New in Archive
Theef 2.00 Beta 0.5

SaTaN 1.0 Lite

Stinky

Vulnerabilities & Exploits
www.securiteam.com:
Command Injection Issue in Squirrelmail's G/PGP Encryption Plugin. Read more

www.securiteam.com:
Cyrus IMSP Remote Root Exploit. Read more

News
www.channelnewsasia.com:
More IT enthusiasts taking up 'self-defence' hacking courses. Read more

www.mytelus.com:
Canada Post money order scam targets Americans. Read more

www.wdaftv4.com:
AG Warns of E-mail Scam. Read more

www.2theadvocate.com:
Woman sentenced in credit card scam. Read more

www.zwire.com:
The Douglas County Sheriff's Office has received several complaints in the past few months about a scam circulating on the Internet that recently ensnared a Parker man. Read more

25 december 2003

New in Archive
ProRat 1.0 Complete

Lamers Death 2.4(d) server

LegendMir 2.0 (a)

Backdoor.VB.fa server

Backdoor.Delf.jk

Fruitcake 0.9.7

Vulnerabilities & Exploits
www.securitytracker.com:
SquirrelMail May Execute Arbitrary Commands When Encrypting Mail to Specially Crafted Addresses. Read more

www.securiteam.com:
PHP-Nuke 'cid' SQL Injection. Read more

www.securiteam.com:
DCAM WebCam Server Directory Traversal Vulnerability. Read more

www.securiteam.com:
Opera Arbitrary File Delete Vulnerability. Read more

www.securiteam.com:
PlatinumFTPserver Format String Vulnerabilities. Read more

www.securiteam.com:
CesarFTP Denial of Service (dotted CWD). Read more

www.securiteam.com:
Multiple Vulnerabilities in Mambo Server. Read more

www.securiteam.com:
XOOPS myheader.php Cross Site Scripting Vulnerability. Read more

www.securiteam.com:
bMachine Cross Site Scripting Vulnerability. Read more

www.securiteam.com:
My Little Forum XSS Vulnerability. Read more

News
www.securityfocus.com:
Online crime up in 2003. Read more

www.securitypipeline.com:
Phishing Attacks Increase Fourfold. Read more

www.winnetmag.com:
Open Source Patch for Internet Explorer? Read more

www.securitypipeline.com:
Researchers Outline Microsoft's Top 10 Challenges For 2004. Read more

24 december 2003

New in Archive
Kwak 1.2

Lamers Death 2.1(b) server

Backdoor.Delf.dg

Tools
SAdoor. A non listening remote shell and execution server.
Released winserver 1.1 (first release) and client 1.1. Read more

Vulnerabilities & Exploits
www.securitytracker.com:
Sun Solaris tcsh(1) Argument Expansion Flaw Lets Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
QuikStore Shopping Cart Input Validation Flaw Discloses Files to Remote Users. Read more

www.securitytracker.com:
my little forum Input Validation Flaws Permit Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Xlight FTP Server Buffer Overflow in PASS Command May Let Remote Authenticated Users Execute Arbitrary Code. Read more

www.securitytracker.com:
PlatinumFTPserver Format String Flaw May Allow Remote Code Execution. Read more

www.securitytracker.com:
CesarFTP Server Can Be Crashed by Remote Authenticated Users With a Long CWD Command. Read more

News
www.net-security.org:
A Look Into The Viruses That Caused Havoc In 2003. Read more

www.theregister.co.uk:
Am I Patched Or Not? Read more

greenvilleonline.com:
Computer sleuths ply Internet. Read more

23 december 2003

New in Archive
Insidious WebDL 1.0

Denial 1.0

Slackbot 1.0 (c)

Backdoor.Delf.l

DragonIRC 3.5

Ping Bomber

Masters Paradise Beta 8

Vulnerabilities & Exploits
www.elitehaven.net:
ProjectForum Multiple Vulnerabilities. Read more

www.securitytracker.com:
DCAM WebCam Server Input Validation Flaw Discloses Files to Remote Users. Read more

www.securitytracker.com:
XOOPS Input Filtering Flaw in Weblinks 'myheader.php' Permits Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
CourseForum Can Be Crashed By a Remote User Sending a Long 'find' Request. Read more

www.securiteam.com:
phpBB SQL Injection Exploit Code (search_id). Read more

www.securiteam.com:
DameWare Mini Remote Control Server Overflow Exploit. Read more

www.securiteam.com:
Security Vulnerability in Xerox Document Centre (Directory Traversal). Read more

www.securiteam.com:
Xlight FTP Server PASS Buffer Overflow. Read more

www.securiteam.com:
Multiple Vulnerabilities in ASPapp Products. Read more

www.securiteam.com:
BES-CMS File Inclusion Vulnerability. Read more

www.securiteam.com:
AutoRank PHP SQL Injection Vulnerabilities. Read more

www.securiteam.com:
osCommerce Malformed Session ID XSS. Read more

www.securiteam.com:
Subscribe Me Pro/Enterprise Command Execution. Read more

News
www.theage.com.au:
Security fears over 'spyware'. Read more

www.net-security.org:
An In-Depth Look Into Windows Security in 2003. Read more

www.internetweek.com:
The 2004 Security Survivor's Guide. Read more

www.globetechnology.com:
Cyberattacks on rise after Hussein capture. Read more

www.pcworld.com:
Windows ATMs Raise Security Concerns. Read more

22 december 2003

New in Archive
ZOOM 1.0

Veritas 1.0

ICS FTP

Backdoor.VB.e

Guides, Papers, etc.
www.phrite.net:
Sniffing Network Traffic- Switches. Read more

Vulnerabilities & Exploits
www.securitytracker.com:
bes-cms Include File Flaws Let Remote Users Execute Arbitary Commands. Read more

www.securitytracker.com:
AppleFileServer Does Not Properly Handle Malformed Requests. Read more

www.securitytracker.com:
unix2tcp Command Line Buffer Overflow May Let Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
Mac OS X USB keyboard 'init' Flaw Yields Root Access to Physically Local Users. Read more

www.security-corporation.com:
BES-CMS including file vulnerability. Read more

News
news.xinhuanet.com:
Expert warns of computer viruses around Christmas. Read more

www.timesofoman.com:
VIRUSWATCH � Solutions for virus-infected e-mails. Read more

www.theregister.co.uk:
Chats led to Acxiom hacker bust. Read more

21 december 2003

New in Archive
ControlTotal 0.11.3

Podonok 1.0

IP Messenger PLUS

Backdoor.Delf.ci

Vulnerabilities & Exploits
www.security-corporation.com:
BES-CMS including file vulnerability. Read more

www.securitytracker.com:
CyberGuard Firewall Proxy Error Page Input Validation Flaw May Permit Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Active WebCam Input Validation Flaws Disclose Files on the System and Permit Cross-Site Scripting. Read more

www.securitytracker.com:
Subscribe Me Input Validation Flaw in 'setup.pl' Lets Remote Users Execute Arbitrary Commands. Read more

www.securitytracker.com:
Xerox Document Centre Lets Remote Users View Files and Add Users. Read more

News
www.zwire.com:
Beware of Internet 'Phishing' scam. Read more

www.sun-sentinel.com:
Caution is key to Web buys. Read more

www.dailysentinel.com:
Fraud takes on many identities. Read more

20 december 2003

New in Archive
Dzyckz 1.0

Orbit 1.0

Hackarmy (f)

Backdoor.Delf.q

Vulnerabilities & Exploits
www.securitytracker.com:
ECW-Shop Input Validation Flaw in 'cat' Permits Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Dada Mail Lets Remote Users Login in Certain Cases and Also Bypass Subscription Confirmation. Read more

xforce.iss.net:
Microsoft Internet Explorer URL Spoofing Vulnerability. Read more

www.securitytracker.com:
Kerio Personal Firewall Can Be Crashed By Remote Users Conducting TCP Stealth Scans. Read more

www.securitytracker.com:
Avotus CDR Software May Disclose Files to Remote Users. Read more

www.securitytracker.com:
IBM AIX 'enq' Format String Flaw Lets Local Users Gain Root Privileges. Read more

www.securitytracker.com:
IBM AIX 'diag' Command Yields Root Privileges to Local Users. Read more

www.securitytracker.com:
ProjectApp Authentication Flaw Lets Remote Users Gain Administrative Access. Read more

www.securitytracker.com:
IntranetApp Access Control Flaw Lets Remote Authenticated Users Reset Passwords for Arbitrary Accounts. Read more

www.securitytracker.com:
PortalApp Authentication Flaw Lets Remote Users Gain Administrative Access. Read more

www.securitytracker.com:
Openwares.org 'Microsoft IE Security Patch' URL Buffer Overflow Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
AutoRank PHP Input Validation Flaw in 'accounts.php' Permits Remote SQL Injection. Read more

News
www.securityfocus.com:
Chats led to Acxiom hacker bust. Read more

www.securityfocus.com:
Fears, abuse accompany proliferation of Internet maps. Read more

www.theregister.co.uk:
Open source outfit releases vulnerability for IE vulnerability. Read more

www.theregister.co.uk:
'Open source' IE patch withdrawn for further patching. Read more

news.zdnet.co.uk:
Mitnick calls for hackers' war stories. Read more

US demands compensation from hacker. Read more

19 december 2003

New in Archive
GoldenEye 1.0

Lamers Death 2.4(b) server

Backdoor.Delf.n server

Backdoor.Delf.p server

LegendMir 1.0 (a)

Guides, Papers, etc.
www.zone-h.org:
Fyodor's Interview. Read more

Vulnerabilities & Exploits
www.securitytracker.com:
Ethereal Bugs in SMB and Q.931 Dissectors Let Remote Users Crash the System. Read more

www.securitytracker.com:
Security Auditor's Research Assistant (SARA) Input Validation Flaw in Scanned Banners Permits Remote Cross-Site Scripting. Read more

www.securitytracker.com:
osCommerce 'osCsid' Input Validation Flaw Allows Remote Users to Conduct Cross-Site Scripting Attacks. Read more

www.securiteam.com:
HP-UX libc NLSPATH Environment Variable Privilege Elevation (Exploit). Read more

www.securiteam.com:
eZ Package Stack Overflow Vulnerability. Read more

www.securiteam.com:
Buffer Overflow Allows Privileges Escalation in MacOS X. Read more

www.securiteam.com:
Cisco PIX Vulnerabilities (SNMP, VPNC). Read more

www.securiteam.com:
Cisco FWSM Multiple Vulnerabilities. Read more

www.securiteam.com:
Flash Player Local Shared Object Vulnerability (Patch). Read more

www.securiteam.com:
Multiple DUWare Vulnerabilities. Read more

www.securiteam.com:
Xlight FTP Server Directory Traversal and DoS. Read more

www.securiteam.com:
Doro Allows Gaining Administrative Privileges. Read more

www.securiteam.com:
Invision Power Top Site List SQL Injection. Read more

News
www.internetweek.com:
Cayam Worm Angles For eBay Account Info. Read more

www.theregister.co.uk:
Police in paedo porn sting. Read more

www.securityfocus.com:
Fears, abuse accompany proliferation of Internet maps. Read more

www.signonsandiego.com:
Ohio computer hacker pleads guilty to stealing data. Read more

18 december 2003

New in Archive
Monk 1.0

Lamers Death 2.5 (d) Server

BirdSpy (b)

Backdoor.Delf.o server

Guides, Papers, etc.
www.packetwatch.net:
Packet Sniffing on Layer 2 Switched Local Area Networks. (pdf) Read more

www.appsecinc.com:
Hack-proofing DB2 Presentation. (pdf) Read more

Vulnerabilities & Exploits
www.securitytracker.com:
WS_FTP Server Can Be Crashed By Remote Authenticated Users Sending Certain CWD Commands. Read more

www.securiteam.com:
J2EE Database Component Remote Code Execution. Read more

www.securiteam.com:
Windows Messenger Exploit Code (MS03-043). Read more

News
www.computerworld.com:
NASA sites hacked, Zone-H says. Read more

www.pcpro.co.uk:
Microsoft warns: your new PC is already out of date. Read more

www.hardwarezone.com:
Trend Micro Mends Virus-Infected Computers At 22nd SEA Games. Read more

news.bbc.co.uk:
Cyber threats risk net's future. Read more

timesofindia.indiatimes.com:
Govt to probe hacking of CM�s server. Read more

star-techcentral.com:
Ukrainian hacker to be extradited. Read more

17 december 2003

New in Archive
Satan Cam View 1.0

System33r Tiny Webdownloader fwb 0.1

Cam2Ftp 1.0

NetSnake 2.0

Guides, Papers, etc.
www.microsoft.com:
Steps that you can take to help identify and to help protect yourself from deceptive (spoofed) Web sites. Read more

www.microsoft.com:
Take Steps to Avoid Getting Tricked by Spoof Websites. Read more

www.securityfocus.com:
Nessus, Part 2: Scanning. Read more

Vulnerabilities & Exploits
www.securitytracker.com:
Java J2EE PointBase Configuration Flaw Lets Remote Users Execute Arbitrary Binaries. Read more

www.securitytracker.com:
Invision Power Board 'sort_key' Input Validation Flaw May Let Remote Users Inject SQL Commands. Read more

www.securitytracker.com:
Invision Power Top Site List 'offset' Input Validation Flaw May Let Remote Users Inject SQL Commands. Read more

www.securitytracker.com:
Aardvark Topsites PHP Input Validation Flaw Permits Remote SQL Injection. Read more

News
www.smh.com.au:
IE users beware, says virus researcher. Read more

www.usatoday.com:
Microsoft studies browser flaw that may aid ID theft. Read more

Microsoft Probes Flaw That Could Help Fraudsters Create Fake Web Sites. Read more

timesofindia.indiatimes.com:
Govt to probe hacking of CM�s server. Read more

16 december 2003

New in Archive
Elkcro Orifice 1.0

Little-Wirc 1.0

The Torment Remote 1.02

Backdoor.Delf.i server

Tools
www.klcconsulting.net:
With SMAC, you can modify the MAC address of almost any Network Interface Card (NIC) on Windows 2000 & XP systems, regardless of whether manufacturers allow this option or not. Read more

Guides, Papers, etc.
www.schneier.com:
The Fallacy of Cracking Contests. Read more

Vulnerabilities & Exploits
www.securitytracker.com:
DameWare Mini Remote Control Buffer Overflow Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
Mac OS X 'cd9660.util' Buffer Overflow Yields Root Privileges to Local Users. Read more

www.securitytracker.com:
W-Agora PHP Input Validation Flaws Let Remote Users Include and Execute Arbitrary PHP Code and Commands. Read more

www.securitytracker.com:
CGIForum Discloses Passwords to Local Users. Read more

www.securitytracker.com:
CGINews Discloses Passwords to Local Users and Log Files to Remote Users. Read more

www.securitytracker.com:
osCommerce Input Validation Flaw in 'create_account_process.php' Permits Remote SQL Injection. Read more

www.securitytracker.com:
Cyrus IMSPd abook_dbname() Buffer Overflow Lets Remote Users Execute Arbitrary Code with Root Privileges. Read more

www.securitytracker.com:
Cisco Firewall Services Module (FWSM) Buffer Overflow in Cut-Through Proxy Authentication Lets Remote Users Crash the FWSM. Read more

www.securitytracker.com:
Cisco Firewall Services Module Can Be Crashed By Remote Users Sending SNMPv3 Messages. Read more

www.securitytracker.com:
Cisco PIX Firewall VPNC Tunnels May Be Dropped Due to Remote Users. Read more

www.securitytracker.com:
Cisco PIX Firewall Can Be Crashed By Remote Users Sending SNMPv3 Messages. Read more

www.securitytracker.com:
Sun Solaris lpstat Buffer Overflow Yields Root Access to Local Users. Read more

www.securitytracker.com:
Doro PDF Writer Lets Local Users Gain System Privileges. Read more

www.securitytracker.com:
mvdsv Quake Server Download Buffer Overflow Allows Remote Code Execution. Read more

www.securitytracker.com:
Computer Associates Unicenter Remote Control Lets Local Users Gain System Privileges. Read more

www.securitytracker.com:
Computer Associates 'Control IT' Lets Local Users Gain System Privileges. Read more

www.securitytracker.com:
Xlight FTP Server '..\' Directory Traversal Flaw Discloses Files to Remote Users. Read more

News
zdnet.com.com:
Finance sector fears 'phishing' season in 2004. Read more

news.com.com:
Did MSBlast cause the Aug. 14 blackout? The official analysis says "no," but I'm not so sure. Read more

news.com.com:
SCO attacks keep coming back. Read more

www.mirror.co.uk:
HACKERS' �85MILLION SHOPPING SPREE. Read more

msnbc.msn.com:
Hacking for Dollars. Read more

15 december 2003

New in Archive
Iroffer 1.2b23

UpKiller's RootKit 0.55

NetSnake 4.4

Backdoor.Delf.j server

Vulnerabilities & Exploits
www.kb.cert.org:
Multiple web-based email services fail to filter malicious characters when the message contains cascading style sheet character escaping. Read more

www.securitytracker.com:
LFTP Buffer Overflow in Processing HTTP Responses May Allow Remote Code Execution. Read more

www.securitytracker.com:
Opera Web Browser Download Dialog Lets Remote Users Delete Arbitrary Files. Read more

www.securitytracker.com:
NeoStats May Give UnrealIRCd Remote Users Additional '+T' Usermode Privileges. Read more

www.securiteam.com:
Multiple Vulnerabilities in Adaptive Server Anywhere Network Server. Read more

News
www.nytimes.com:
Hackers Steal From Pirates, to No Good End. Read more

star-techcentral.com:
New security flaw in IE. Read more

14 december 2003

New in Archive
System33r Tiny Webdownloader 0.1

RedShell 1.0

Backdoor.Delf.el server

Backdoor.Delf.bd

News
www.itbusiness.ca:
Social engineering holds clue to security leaks: expert. Read more

www.eweek.com:
Security Experts Warn of New Way to Attack Windows. Read more

www.onlineathens.com:
Virus targets junk mail fighters. Read more

www.computerworld.com:
No Christmas patches from Microsoft. Read more

www.theregister.co.uk:
Windows Longhaul? Longhorn could be 2008, says Gartner. Read more

13 december 2003

New in Archive
Waar-Daat 1.0

MSN dakait 1.0 beta

Tiny stupid dloader

Backdoor.Delf.c server

Vulnerabilities & Exploits
[Opera 7] Arbitrary File Delete Vulnerability. Read more

www.securitytracker.com:
Opera Web Browser Download Dialog Lets Remote Users Delete Arbitrary Files. Read more

www.securitytracker.com:
NeoStats May Give UnrealIRCd Remote Users Additional '+T' Usermode Privileges. Read more

News
www.betanews.com:
IE Security Flaw Upsets Microsoft Patch Schedule. Read more

www.theregister.co.uk:
Anti-spam law will tie up UK firms up in red tape. Read more

www.hindustantimes.com:
CBI helps nail French hacker. Read more

www.wirelessweek.com:
China's new encryption rules upset U.S. firms. Read more

www.computerworld.com:
Criticism of electronic voting machines� security is mounting. Read more

12 december 2003

New in Archive
Harvester 2003 (mail) 02

Portless Backdoor 1.2

Inspiration 1.2SE

Vulnerabilities & Exploits
www.secunia.com:
Internet Explorer URL Spoofing Vulnerability. Read more

www.coresecurity.com:
DCE RPC Vulnerabilities New Attack Vectors Analysis. Read more

www.securitytracker.com:
RemotelyAnywhere Lets Remote Users Inject Messages on the Login Page. Read more

www.securitytracker.com:
irssi Client Extraneous format_send_to_gui() Function Call Parameter Lets Remote Users Crash the Client. Read more

www.securitytracker.com:
sipd Can Be Crashed By Remote Users. Read more

www.securitytracker.com:
Sun Solaris ed(1) Unsafe Temporary Files May Let Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
NETGEAR WAB102 Wireless Access Point Lets Remote Users Login Without Authenticating. Read more

www.securitytracker.com:
VisitorBook LE Input Validation Flaw Lets Remote Users Send E-mail Via the System. Read more

www.securitytracker.com:
Mambo Server Input Validation Flaw in $artid in articles.php Permits SQL Injection. Read more

www.securitytracker.com:
FlashGet Stores User Password in Plaintext in the Registry. Read more

www.securitytracker.com:
Mambo Server Authentication Flaws Let Remote Users Change Data and Parameters. Read more

www.securitytracker.com:
Sybase Adaptive Server Anywhere Has Multiple Flaws That Let Remote Authenticated Users Gain Elevated Privileges. Read more

www.securitytracker.com:
Cisco Unity on IBM Servers Contain Default Accounts and Settings Used During Testing. Read more

www.securitytracker.com:
Cisco Application and Content Networking Software (ACNS) Buffer Overflow in Authentication Module Lets Remote Users Execute Arbitrary Code. Read more

www.securiteam.com:
Ebola Username and Password Remote Exploit. Read more

www.securiteam.com:
Unity Vulnerabilities on IBM-based Servers. Read more

www.securiteam.com:
Vulnerability in Authentication Library for ACNS. Read more

www.securiteam.com:
SHELL32.DLL Denial of Service. Read more

News
www.theregister.co.uk:
Phishmongers target Lloyds TSB customers. Read more

www.computerworld.com:
'Zero-day' attacks seen as growing threat. Read more

www.atnewyork.com:
Microsoft's Patching Conundrum. Read more

www.theregister.co.uk:
Yahoo! fixes Web mail vuln. Read more

www.theregister.co.uk:
Wanna complain about spam? You must be joking. Read more

www.thestar.com:
Encryption rules alarm Americans. Read more

11 december 2003

New in Archive
Beast 2.05

Nethief 5.3

Snow 3.2

NetSnake 2.02

Guides, Papers, etc.
www.securityfocus.com:
A Comparison Study of Three Worm Families and Their Propagation in a Network. Read more

www.nextgenss.com:
Variations in Exploit Methods Between Linux and Windows. (pdf) Read more

Vulnerabilities & Exploits
Cisco Security Advisory:
Unity Vulnerabilities on IBM-based Servers. Read more

www.securitytracker.com:
Macromedia JRun XML Parsing Lets Remote Users Consume CPU Resources With SOAP Requests. Read more

www.securitytracker.com:
Macromedia ColdFusion XML Parsing Lets Remote Users Consume CPU Resources With SOAP Requests. Read more

www.securitytracker.com:
Microsoft ASP.NET Web Services XML Parsing Lets Remote Users Consume CPU Resources With SOAP Requests. Read more

www.securitytracker.com:
IBM WebSphere XML Parsing Lets Remote Users Consume CPU Resources With SOAP Requests. Read more

www.securitytracker.com:
Microsoft IE Does Not Properly Display Some URLs. Read more

www.securitytracker.com:
BNCweb Input Validation Flaw Discloses Files to Remote Users. Read more

www.securitytracker.com:
Ben Barnett Guestbook Input Validation Flaw Permits Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Linux 2.4 Kernel TCP/IP Fragment Reassembly Flaw May Let Remote Users Deny Service. Read more

News
zdnet.com.com:
IE bug lets fake sites look real. Read more

www.oreillynet.com:
What the Heck is Going On (Another IE Security Hole, Among Other Things). Read more

www.its.caltech.edu:
Windows Messenger Vulnerabilities and What to Do. Read more

Microsoft Security Bulletin MS03-051
Buffer Overrun in Microsoft FrontPage Server Extensions Could Allow Code Execution (813360). Read more

www.detnews.com:
Computer virus uses scrambled code to resist removal. Read more

www.blackhat.com:
Black Hat Asia 2003 Briefings and Training. Read more

www.theregister.co.uk:
UK anti-spam law goes live. Read more

www.e4engineering.com:
War games online. Read more

www.boston.com:
SCO Group Web site hacked again. Read more

www.securitypipeline.com:
Microsoft Preps Windows XP Service Pack 2 Beta. Read more

10 december 2003

New in Archive
Windows Remote Shell

Live-Wire G3 1.0.0 Beta

Backdoor.Delf.g server

Guides, Papers, etc.
www.securityfocus.com:
Home User Security: Personal Firewalls. Read more

Vulnerabilities & Exploits
Internet Explorer URL parsing vulnerability. Read more

www.securitytracker.com:
@Mail Input Validation Flaws Let Remote Users Inject SQL to Access Other User Accounts. Read more

www.securitytracker.com:
CVS Input Validation Flaw May Let Remote Users Send Malformed Module Requests to Create Root Directories and Files. Read more

www.securitytracker.com:
Web Eye Video Servers Disclose Usernames and Passwords. Read more

www.securitytracker.com:
Land Down Under (LDU) SQL Injection Hole Lets Remote Users Access User Accounts. Read more

www.securitytracker.com:
Ben's Guestbook Cross Site Scripting Vulnerability. Read more

www.securitytracker.com:
Snif Script Cross Site Scripting Vulnerability. Read more

News
www.theregister.co.uk:
Mafia recruiting spammers, crackers, AV chief warns. Read more

www.theregister.co.uk:
NatWest warns of dodgy email. Read more

rss.com.com:
Worm hits Windows-based ATMs. Read more

www.securityfocus.com:
FTC investigates PetCo.com security hole. Read more

www.computerworld.com:
Security experts form patch support group. Read more

www.e4engineering.com:
War games online. Read more

www.theregister.co.uk:
Congress passes anti-spam bill. Read more

www.news.com.au:
Students fight for pop-up ads. Read more

09 december 2003

New in Archive
Nuclear RAT 1.0 Public Beta 4.03

NetSnake 4.9 server

Remote Server Trojan 3.0

Guides, Papers, etc.
www.lurhq.com:
Sinit P2P Trojan Analysis. Read more

www.securityfocus.com:
Home User Security: Personal Firewalls. Read more

Vulnerabilities & Exploits
www.securitytracker.com:
cdwrite Temporary File Flaw Lets Local Users Overwrite Files. Read more

www.securitytracker.com:
Abyss Web Server Directory Password Protection Can Be Bypassed. Read more

www.securitytracker.com:
eZ 'eZnet.exe' Stack Overflow Lets Remote Users Execute Arbitrary Code. Read more

www.securiteam.com:
Dell BIOS DoS (Invalid Characters in BIOS Password). Read more

www.securiteam.com:
AppleShare IP FTP Server Denial of Service (/). Read more

www.securiteam.com:
WebEye User Disclosure Vulnerability (Exploit). Read more

www.securiteam.com:
Land Down Under auth.php SQL Injection. Read more

News
www.billingsgazette.com:
Bug with byte: New computer virus isn't a disaster -- yet. Read more

www.overclockersclub.com:
"News: Experts Worried After Worm Hits Windows-Based ATMs". Read more

rss.com.com:
Good guys versus bad guys--who's ahead? Read more

www.abc.net.au:
Cybercops and robbers growing trickier on World Wide Web. Read more

news.bbc.co.uk:
'Miserable failure' links to Bush. Read more

08 december 2003

New in Archive
BirdWatcher

BirdSpy (a) server

Jack-t-ripper

Vulnerabilities & Exploits
www.securitytracker.com:
Apple Safari Web Browser Cookie Processing Bug May Let Remote Web Sites Steal a User's Cookies for Any Domain. Read more

www.securiteam.com:
PLDaniels Ebola Remote Buffer Overflow. Read more

www.securiteam.com:
Linux Kernel do_brk() Vulnerablility (Explained). Read more

www.securiteam.com:
Linux Kernel Do_brk(), Another Proof-of-Concept Code For I386. Read more

News

07 december 2003

New in Archive
Stealth Redirector 2.0

Port mapper v1.40b

Under7pro 1.01

Vulnerabilities & Exploits
www.securitytracker.com:
Xoops Multiple Input Validation Flaws Let Remote Users Inject SQL Commands. Read more

www.securitytracker.com:
Jason Maloney Guestbook Input Validation Flaw Permits Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Appleshare IP FTP Server Can Be Crashed By Remote Authenticated Users. Read more

www.securitytracker.com:
VP-ASP shopdisplayproducts.asp Input Validation Flaw Permits Cross-Site Scripting Attacks. Read more

06 december 2003

New in Archive
Injector 1.0

HoneyPot 2004

iA WebDL 1.0

Vulnerabilities & Exploits
www.securitytracker.com:
Novell NetWare NFS (XNFS.NLM) Trusted Host Bug May Let Remote Users Access Restricted Shares. Read more

www.securitytracker.com:
Ebola Buffer Overflow in handle_PASS() Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
4inarow Buffer Overflow May Let Local Users Gain Elevated Privileges. Read more

News
www.blackhat.com:
Black Hat Briefings Amsterdam Call for Papers. Read more

www.informationweek.com:
Spam-Virus Marriage Seen As Leading Internet Threat Next Year. Read more

www.infoworld.com:
Microsoft's patchwork security blanket. Read more

www.globetechnology.com:
No holiday from hackers over Thanksgiving. Read more

05 december 2003

New in Archive
NetCrack 1.3 alpha 3.5

The TIc.K 2003 v0.1

Trojan Killer 2.2

Vulnerabilities & Exploits
www.securitytracker.com:
Rsync Heap Overflow in Daemon Mode Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
XBoard Unsafe Temporary Files May Let Local Users Gain Elevated Privileges. Read more

www.securitytracker.com:
Websense Input Validation Flaw in Blocked Site Error Message Permits Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
GnuPG 'gpgkeys_hkp' Format String Flaw Lets Remote Keyservers Execute Arbitrary Code. Read more

www.securitytracker.com:
eZphotoshare Buffer Overflows Let Remote Users Execute Arbitrary Code. Read more

News
www.theregister.co.uk:
The growing problem of identity theft. Read more

cyberatlas.internet.com:
The Deadly Duo: Spam and Viruses, November 2003. Read more

www.theregister.co.uk:
Spam epidemic gets worse. Read more

www.theregister.co.uk:
eBay 'hacker' challenges PC ban. Read more

www.belfasttelegraph.co.uk:
Hacker penetrates 15 company networks. Read more

www.eweek.com:
Yahoo Patches IM Security Hole. Read more

04 december 2003

New in Archive
Fire Hell 1.0 Beta

Radar 1.0

Glacier 2000

Vulnerabilities & Exploits
www.securitytracker.com:
Sun ONE Web Server Can Be Crashed By Remote Users Due to Unspecified Flaw. Read more

www.securitytracker.com:
Solaris Xsun Direct Graphics Access Mode Insecure Temporary Files May Allow Local Users to Gain Root Privileges. Read more

www.securiteam.com:
Linux Kernel 2.4.22 do_brk() Proof of Concept. Read more

www.securiteam.com:
GnuPG External HKP Interface Format String. Read more

www.securiteam.com:
SNMP Trap Reveals WEP Key in Cisco Aironet Access Point. Read more

www.securiteam.com:
IBM Directory Server Web Admin GUI (ldacgi.exe) XSS Vulnerability. Read more

www.securiteam.com:
Yahoo Instant Messenger YAUTO.DLL Buffer Overflow (YAuto.NSAuto.1). Read more

www.securiteam.com:
Userland Can Access Linux Kernel Memory (do_brk() Argument Bound Checking). Read more

www.securiteam.com:
Surfboard HTTPd Directory Traversal and DoS Vulnerabilities. Read more

www.securiteam.com:
Jason Maloney's CGI Guestbook Remote Command Execution Vulnerability. Read more

www.securiteam.com:
RNN's Guestbook Multiple Vulnerabilities. Read more

News
www.theregister.co.uk:
Heavy squalls of blended worms to hit next year. Read more

www.usatoday.com:
Microsoft official: Web virus authors winning battle. Read more

star-techcentral.com:
Viruses, spam: A depressing year ahead. Read more

www.securityfocus.com:
Heckenkamp Challenges Computer Ban. Read more

www.reuters.co.uk:
U.S. Not Prepared for Cyber Terrorism -Officials. Read more

www.startribune.com:
Police database an easy target, hacker says. Read more

www.vnunet.com:
Firms fight 500 internet attacks a month. Read more

news.bbc.co.uk:
Porn virus targets spam stoppers. Read more

www.detnews.com:
Retail hacker sentenced to 1-1/2 years in prison. Read more

03 december 2003

New in Archive
Cabronator3 kill 1.3

MSN Extreme 2

Specrem 6.0

Vulnerabilities & Exploits
www.cisco.com:
SNMP Trap Reveals WEP Key in Cisco Aironet Access Point. Read more

www.securitytracker.com:
Yahoo! Messenger YAUTO.DLL ActiveX Buffer Overflow Lets Remote Users Execute Arbitrary Code. Read more

www.securitytracker.com:
IBM Tivoli Directory Server Input Validation Flaw Permits Remote Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
Cisco Aironet Access Point Discloses WEP Key Via SNMP Messages. Read more

www.securitytracker.com:
Sun Fire B1600 Blade System Can Be Disrupted By ARP Packets on the Management Port. Read more

www.securitytracker.com:
HP-UX shar(1) Unsafe Temporary Files May Let Local Users Gain Elevated Privileges. Read more

News
www.theregister.co.uk:
Mimail variant attacks anti-spam sites. Again. Read more

www.detnews.com:
Disney Web site among targets of new 'MiMail' worm. Read more

www.theregister.co.uk:
OFT cracks down on dodgy domain sellers. Read more

www.esj.com:
Best Practices: Avoiding Computer Worms. Read more

www.adn.com:
Appeal of young hacker's acquittal opens in Norway. Read more

www.theregister.co.uk:
Hackers used unpatched server to breach Debian. Read more

www.sunherald.com:
Tech Execs Fight Computer Security Regs. Read more

zdnet.com.com:
Biggest security problem--it's human. Read more

www.siliconvalley.com:
Security worries keep many from banking online. Read more

www.theregister.co.uk:
Watching the Net's background radiation. Read more

www.computerworld.com:
Tips on locking down your WLAN. Read more

02 december 2003

New in Archive
Gates of Hell 0.1 server

Area Control 1.0

Yulihubot 1.2

Guides, Papers, etc.
www.securityfocus.com:
Exploiting Cisco Routers: Part 2. Read more

Vulnerabilities & Exploits
www.securitytracker.com:
VP-ASP Input Validation Flaws in 'shopsearch' and 'shopdisplayproducts' Let Remote Users Execute Arbitrary Commands. Read more

www.securitytracker.com:
Jason Maloney Guestbook POST Input Validation Flaw Lets Remote Users Execute Arbitrary Commands. Read more

www.securitytracker.com:
Linux 2.4 Kernel do_brk() Integer Overflow Lets Local Users Grab Root Privileges. Read more

www.securitytracker.com:
Surfboard httpd Input Validation Flaw Lets Remote Users View Arbitrary Files on the System. Read more

www.securiteam.com:
Malicious DHCP Allows Root Compromise of Mac OS X. Read more

www.securiteam.com:
Fortigate Firewall Web Interface Vulnerabilities. Read more

www.securiteam.com:
OpenCA Signature Verification Vulnerabilities. Read more

www.securiteam.com:
Virtual Programming VP-ASP Shopping Cart Multiple SQL Injection Vulnerabilities. Read more

www.securiteam.com:
Snif File Disclosure Vulnerability. Read more

www.securiteam.com:
CuteNews Information Disclosure. Read more

News
www.theregister.co.uk:
.name registry site hacked. Read more

deseretnews.com:
Hacker's life doesn't last forever, dude. Read more

www.vnunet.com:
Crime sometimes pays. Read more

www.globetechnology.com:
Government role in IT security: Free hand or iron fist. Read more

news.xinhuanet.com:
Cyber security force imperative in China: experts. Read more

01 december 2003

New in Archive
LWDownloader 1.0

Cabronator 1.0 (d)

Mona 1.0

Vulnerabilities & Exploits
www.securitytracker.com:
AlaCart Shopping Cart Lets Remote Users Gain Administrative Access. Read more

www.securitytracker.com:
PieterPost Virtual Account May Let Remote Users Send Anonymous E-mail. Read more

www.securitytracker.com:
CuteNews Discloses Web Server Information to Remote Users. Read more

www.securiteam.com:
Multiple Remote Issues in Applied Watch IDS Suite. Read more

www.securiteam.com:
GnuPG's ElGamal Signing Keys Compromised. Read more

News
www.theregister.co.uk:
MS takes $1.1bn 'hostage' to freeze Lindows out of California case. Read more

www.theage.com.au:
Website of .name registry hacked. Read more

www.smh.com.au:Read more

www.theage.com.au:
Mimail variants hog spots on worm chart. Read more

www.sunherald.com:
E-mail scams become slicker. Read more

www.iht.com:
Wireless world gets a new worry: viruses. Read more

business.bostonherald.com:
Known around the world: Private records may be at risk. Read more

01 november 2003

New Trojans
Pilot 1.0.5

Remote Shut 1.1

Taladrator 2.1(b) server

PwlTools with dropper

Vulnerabilities & Exploits
www.securitytracker.com:
LedForums 'Top Message' Input Validation Flaw Permits Cross-Site Scripting Attacks. Read more

www.securitytracker.com:
FlexWATCH Network Video Server Authentication Flaw Grants Administrative Access to Remote Users. Read more

www.securitytracker.com:
iWeb Server '%5C' Input Validation Flaw Discloses Files on the System to Remote Users. Read more

News
www.pcworld.com:
New Worm Steals User Data. Read more

www.chron.com:
Sealed with a kiss, new e-mail virus spreading. Read more

www.theregister.co.uk:
The conspiracy against our in-boxes. Read more

www.timesonline.co.uk:
Founder of Redbus denies hacking. Read more

news.zdnet.co.uk:
Worms and toasters turn up heat on corporate security. Read more


Copyright� MegaSecurity.org