Want to keep up on the latest security vulnerabilities? Don't have time to
visit a myriad of mailing lists and websites to read the news? Just add
the new SecurityFocus RSS feeds to your freeware RSS reader, and see all
the latest posts for Bugtraq and the SF Vulnernability database in one
convenient place. Or, pull in the latest news, columnists and feature
articles in the SecurityFocus aggregated news feed, and stay on top of
what's happening in the community!
I. FRONT AND CENTER
1. Common Security Vulnerabilities in e-commerce systems
2. Protecting Road Warriors: Managing Security for Mobile Users (Part One)
3. Consumer Grade *nix
II. BUGTRAQ SUMMARY
1. WinSCP Long URI Handling Memory Corruption Vulnerability
2. Microsoft Visual Studio .NET Debugger Privilege Enforcement ...
3. Logcheck Insecure Temporary Directory Vulnerability
4. Macromedia ColdFusion MX Oversized Error Message Denial Of S...
5. Symantec Norton AntiVirus 2002 Nested File Manual Scan Bypas...
6. BSD-Games Mille Local Save Game File Name Buffer Overrun Vul...
7. SquirrelMail Change_Passwd Plug-in Buffer Overrun Vulnerabil...
8. Microsoft Internet Explorer Object Element Data Denial Of Se...
9. Fastream NetFile FTP/Web Server Denial Of Service Vulnerabil...
10. PHPBB Common.php IP Address Spoofing Vulnerability
11. SSMTP Mail Transfer Agent Symbolic Link Vulnerability
12. KAME Racoon Malformed ISAKMP Packet Denial of Service Vulner...
13. Phorum Phorum_URIAuth SQL Injection Vulnerability
14. Softwin BitDefender AvxScanOnlineCtrl COM Object Remote File...
15. Softwin BitDefender AvxScanOnlineCtrl COM Object Information...
16. Avaya Visual Vectors Server Default World Writable Script Vu...
17. PHPBB album_portal.php Remote File Include Vulnerability
18. UTempter Multiple Local Vulnerabilities
19. Linux Kernel Setsockopt MCAST_MSFILTER Integer Overflow Vuln...
20. Kinesphere Corporation Exchange POP3 Remote Buffer Overflow ...
21. RhinoSoft Serv-U FTP Server LIST Parameter Buffer Overflow V...
22. NcFTP Local Information Disclosure Vulnerability
23. Multiple Vendor TCP Sequence Number Approximation Vulnerabil...
24. BEA WebLogic Server and WebLogic Express Illegal URI Pattern...
25. BEA WebLogic Server/Express EJB Object Removal Denial Of Ser...
26. Cisco Internet Operating System SNMP Message Processing Deni...
27. Journalness Unspecified Post Access Vulnerability
28. BEA WebLogic Server And WebLogic Express Configuration Log F...
29. Sun Fire/Netra Remote TOS IP Packet Denial Of Service Vulner...
30. PHProfession Multiple Vulnerabilities
31. PostNuke Pheonix Multiple Cross-Site Scripting And Path Disc...
32. Michael Bacarella IDent2 Daemon Child_Service Remote Buffer ...
33. Xine And Xine-Lib Multiple Remote File Overwrite Vulnerabili...
34. NewsTraXor Remote Database Disclosure Vulnerability
35. PISG IRC Nick HTML Injection Vulnerability
36. Epic Games Unreal Tournament Engine UMOD Manifest.INI Remote...
III. SECURITYFOCUS NEWS ARTICLES
1. U.S. defends cybercrime treaty
2. Tower Records settles charges over hack attacks
3. Former anti-piracy 'bag man' turns on DirecTV
4. Network Associates sells Sniffer
5. Digital certificate regime wins UK gov plaudits
6. Serious TCP/IP vuln exposed
IV. SECURITYFOCUS TOP 6 TOOLS
1. OpenProtect v5.0.1.6
2. radmind v1.3.0
3. Fast Logging Project for Snort v1.2.1
4. SSpamM v0.2
5. network traffic volume capture to postgresql v2.1
6. Chwinpw v1.0
V. SECURITYJOBS LIST SUMMARY
1. penetration (Thread)
2. Managed Security Sales Director - Cayman Islands (Thread)
3. VP of Eastern Regional Sales Need (Thread)
4. ArcSight is looking for a Security Architect, Federa... (Thread)
5. ArcSight is looking for a Security Strategist, Sili... (Thread)
6. Intrusion Detection Engineer vacancy (Thread)
7. Director, Security and Compliance, Moncton, New Brun... (Thread)
8. VP of Technical Product Support- Texas- Enterprise S... (Thread)
9. Experienced penetration tester/security engineer - D... (Thread)
10. Security Sales roles (Thread)
11. <Job> XML Sales Engineer, NY, Software Company (Thread)
12. Software Engineer (Networking) - Symantec - Redwood ... (Thread)
13. Product Marketing Manager MA (Thread)
14. Ethical Hacker - NY/NJ (Thread)
15. Project Manager, Ethical Hacking - NY/NJ (Thread)
16. Security Analyst - NY/NJ (Thread)
17. San Diego Area - Security Engineer Opening (Thread)
18. full time position (Thread)
19. Security Analyst NYC (Thread)
20. Comp. Science M.S from VA Tech seeking full-time fo... (Thread)
21. VP Application Security NYC (Thread)
22. Atlanta opportunity - Big 4 - Perimeter Security (Thread)
23. Compliance Officer NJ (Thread)
24. Director Quality Assurance Silicon Valley (Thread)
25. Technical Support Engineer Silicon Valley CA (Thread)
26. Senior Account Executives (Thread)
27. Product Marketing Manager Silicon Valley CA (Thread)
28. Security Architect opening (Thread)
29. May - 2004 Graduate from USC. (Thread)
30. Senior Security Consultant - NYC Metro Area (Thread)
31. Classified Programs Security Assurance Engineer - DC... (Thread)
32. Sr. Security Consultant (NJ, GA, NY) (Thread)
33. IT Security Channel Sales Business Development Mana... (Thread)
34. Security Lab Manager - Symantec - Redwood City, CA (Thread)
35. Job: web Application Security pen-test expert (Thread)
36. Senior Security Engineers - Washington, DC (Thread)
37. UK CHECK TEAM LEADERS (Thread)
38. Penetration Tester vacancy (Thread)
39. CipherTrust: Customer Support Engineer (Thread)
40. Director of Anti-Virus Product Marketing (Thread)
41. Contract Opportunities ? Middle East (Thread)
42. Sr. Security Analyst/Developer - Symantec - Redwood... (Thread)
43. Security Software Post Sales Engineer (TS Clearance) (Thread)
44. Anti-Virus Product Managers (Thread)
45. may 2004 virginia tech M.S. grad (Thread)
46. Sales Operations Director - leading security vendor (Thread)
47. Seeking CISO or senior security position in NY city ... (Thread)
48. Information Security Director -- Wilmington, DE (Thread)
49. Security & Information Assurance Opening in San Dieg... (Thread)
50. Information Security Consultant, UK (Thread)
51. IT Security Pre Sales Consultant UK (Thread)
52. Penetration Test Sales Consultant vacancy (Thread)
53. Security Engineer (Jacksonville, Florida) (Thread)
54. Corporate Information Security Officer - Buffalo, Ne... (Thread)
55. Information Security and Business Continuity Manager... (Thread)
56. VP of Marketing - Information Security - #803JA - Sa... (Thread)
57. Technical Product Marketing Manager/Engineer-San Fra... (Thread)
58. Tenable Network Security - Inside Sales Positions (Thread)
59. May CompSci Graduate Seeking Full-Time... (Thread)
60. List Laggage (Thread)
61. IT Application Security & Risk Assessment Positions ... (Thread)
62. F/T 3rd shift Information Security Analyst, NJ (Thread)
63. Cryptographic Analyst, leading bank - Toronto, Canad... (Thread)
VI. INCIDENTS LIST SUMMARY
1. Massive increase in spam volume? (Thread)
2. Bad Loopback packets (Thread)
3. Strange set of TCP ports (Thread)
4. new worm? (Thread)
5. strange log (Thread)
6. [incidents] strange log (Thread)
7. Fwd: Djohn & John the Ripper (Thread)
8. Djohn & John the Ripper (Thread)
9. Outbreak of a virus on campus, scanning tcp 80/6129/... (Thread)
10. log message (Thread)
11. Linux file locking - sigprocmask() issues (Thread)
12. GLECS conference (Thread)
VII. VULN-DEV RESEARCH LIST SUMMARY
1. unpacking UPX or PE-packed binaries (Thread)
2. key material (Thread)
3. cobol language vulnerabilities (Thread)
4. RNG (Thread)
5. [Rosiello Security] Negligent architecture for the a... (Thread)
6. intercept nt/2k kernel api? (Thread)
7. Windows Heap Overflow (Thread)
VIII. MICROSOFT FOCUS LIST SUMMARY
1. IPSec 'window size' (Thread)
2. EventID 256 (Thread)
3. IPSec rules (Thread)
4. SecurityFocus Microsoft Newsletter #185 (Thread)
IX. SUN FOCUS LIST SUMMARY
1. static routes when multi-homed (Thread)
2. Limiting server side RPC ports for firewall rules (Thread)
3. sunscreen, source port (Thread)
4. Issue's with ls (Thread)
X. LINUX FOCUS LIST SUMMARY
1. decent loadbalancing with 2 different ISP's with min... (Thread)
2. Issue with Ldap group and too many users (Thread)
XI. UNSUBSCRIBE INSTRUCTIONS
XII. SPONSOR INFORMATION
I. FRONT AND CENTER
-------------------
1. Common Security Vulnerabilities in e-commerce systems
By K. K. Mookhey
This article discusses common attacks and vulnerabilities in e-commerce
shopping cart systems, with reference to SecurityFocus vulnerability
reports where relevant.
http://www.securityfocus.com/infocus/1775
2. Protecting Road Warriors: Managing Security for Mobile Users (Part One)
By Bob Rudis
This is the first of a two-part series that focuses on the centralized
management of security for mobile users. Part one introduces vendor-
neutral questions you should consider about firewalls and anti-virus
software for your mobile users.
http://www.securityfocus.com/infocus/1777
3. Consumer Grade *nix
By Daniel Hanson
Consumer grade *nix is a powder keg looking for a place to happen.
http://www.securityfocus.com/columnists/235
II. BUGTRAQ SUMMARY
-------------------
1. WinSCP Long URI Handling Memory Corruption Vulnerability
BugTraq ID: 10160
Remote: Yes
Date Published: Apr 16 2004
Relevant URL: http://www.securityfocus.com/bid/10160
Summary:
It has been reported that WinSCP may be prone to a denial of service condition resulting from memory corruption. This issue occurs when the application attempts to handle excessively long 'sftp:' or 'scp' addresses.
WinSCP 3.5.6 is reported to be vulnerable to this issue, however, it is possible that other versions are affected as well.
2. Microsoft Visual Studio .NET Debugger Privilege Enforcement ...
BugTraq ID: 10161
Remote: No
Date Published: Apr 16 2004
Relevant URL: http://www.securityfocus.com/bid/10161
Summary:
Reportedly the Microsoft Visual Studio .NET Debugger, included with Microsoft Office XP, is affected by an unspecified weakness. This issue is due to a configuration error that allows users outside of the Administrator and Debbugger groups to debug JavaScripts.
This could potentially allow an attacker to gain access to a script that is currently being debugged with the affected server. It may also allow an attacker to inject arbitrary script code into a script that is currently being debugged, which would execute with the privileges of the user debugging the target script.
3. Logcheck Insecure Temporary Directory Vulnerability
BugTraq ID: 10162
Remote: No
Date Published: Apr 17 2004
Relevant URL: http://www.securityfocus.com/bid/10162
Summary:
Logcheck performs operations on temporary directories in the /var/tmp directory in an insecure manner.
This issue may only be exploited when the program removes said directories. The issue could be exploited by a local attacker to corrupt root owned files. This will most likely result in destruction of data and denial of service.
4. Macromedia ColdFusion MX Oversized Error Message Denial Of S...
BugTraq ID: 10163
Remote: Yes
Date Published: Apr 17 2004
Relevant URL: http://www.securityfocus.com/bid/10163
Summary:
A denial of service vulnerability has been reported in Macromedia ColdFusion MX that is reported to occur when the software attempts to write oversized error messages. These error messages will be logged by the server but may also be written into dynamically generated error pages.
It is possible to trigger this condition remotely since remote users may influence the contents of error messages.
5. Symantec Norton AntiVirus 2002 Nested File Manual Scan Bypas...
BugTraq ID: 10164
Remote: No
Date Published: Apr 17 2004
Relevant URL: http://www.securityfocus.com/bid/10164
Summary:
A vulnerability has been reported in Symantec Norton AntiVirus 2002 that may potentially cause deeply nested files with specific names to bypass manual scanning.
This could permit malicious executable content to bypass scanning by the software. This may be due to a limitation in the Windows operating system with regards to accessing the deeply nested file. If this is the case, it could also affect other antivirus software.
This issue was present in an early build of Norton AntiVirus 2002 but does not affect fully updated releases.
6. BSD-Games Mille Local Save Game File Name Buffer Overrun Vul...
BugTraq ID: 10165
Remote: No
Date Published: Apr 17 2004
Relevant URL: http://www.securityfocus.com/bid/10165
Summary:
bsd-games mille is prone to a locally exploitable buffer overrun vulnerability. This issue is due to insufficient bounds checking when the user inputs a file name when saving a game.
This game is typically installed setgid games so may allow privileges to be escalated to this level if exploited.
7. SquirrelMail Change_Passwd Plug-in Buffer Overrun Vulnerabil...
BugTraq ID: 10166
Remote: Yes
Date Published: Apr 17 2004
Relevant URL: http://www.securityfocus.com/bid/10166
Summary:
The SquirrelMail change_passwd plug-in is prone to a stack-based buffer overrun vulnerability. The issue exists in the backend chpasswd binary.
This vulnerability could potentially be exploited by a local user to execute arbitrary code as root.
It should be noted that the local user may need to have additional privileges to exploit this issue, such as being a member of a special group on the system, such as webmasters or www or to have access to a special user, depending on how the software is configured.
This issue may also be remotely exploitable via the CGI interface of the software.
8. Microsoft Internet Explorer Object Element Data Denial Of Se...
BugTraq ID: 10167
Remote: Yes
Date Published: Apr 17 2004
Relevant URL: http://www.securityfocus.com/bid/10167
Summary:
A denial of service vulnerability has been reported in Microsoft Internet Explorer. This condition may occur when a malicious web page specifies an Object element with a data property that has a value of "?" or "#" in addition to specifying a type property that refers to an image type. The vulnerability will reportedly cause the browser to crash.
9. Fastream NetFile FTP/Web Server Denial Of Service Vulnerabil...
BugTraq ID: 10169
Remote: Yes
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10169
Summary:
A vulnerability has been reported in Fastream NetFILE FTP/Web Server that may permit remote attackers to cause a denial of service. This issue occurs when a remote user attempts to login as a non-existent user.
10. PHPBB Common.php IP Address Spoofing Vulnerability
BugTraq ID: 10170
Remote: Yes
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10170
Summary:
It has been reported that phpBB may be prone to a vulnerability that may allow a remote attacker to spoof their IP address. As a result, an attacker would hide their identity and bypass IP restrictions enabled by an administrator.
phpBB versions 2.0.8a and prior are reported to be affected by this issue.
11. SSMTP Mail Transfer Agent Symbolic Link Vulnerability
BugTraq ID: 10171
Remote: Yes
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10171
Summary:
It has been reported that ssmtp is prone to a symbolic link vulnerability. This issue is due to a design error that causes the application to fail to validate files before writing to them.
This issue could be leveraged to corrupt arbitrary, attacker-specified system files. It may be possible for an attacker to gain escalated privileges on the affected system; it is certainly possible to cause a system wide denial of service condition.
12. KAME Racoon Malformed ISAKMP Packet Denial of Service Vulner...
BugTraq ID: 10172
Remote: Yes
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10172
Summary:
It has been reported that racoon is prone to a denial of service vulnerability when handling malformed ISAKMP packets. This issue may allow a remote attacker to cause the application to exhaust memory resources leading to a crash or hang.
13. Phorum Phorum_URIAuth SQL Injection Vulnerability
BugTraq ID: 10173
Remote: Yes
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10173
Summary:
Reportedly Phorum is affected by a remote SQL injection vulnerability. This issue is due to a failure of the application to properly sanitized user supplied URI input.
This issue may allow a remote attacker to manipulate query logic, leading to unauthorized access to sensitive information such as the user password hash or corruption of database data. SQL injection attacks may also potentially be used to exploit latent vulnerabilities in the underlying database implementation.
14. Softwin BitDefender AvxScanOnlineCtrl COM Object Remote File...
BugTraq ID: 10174
Remote: Yes
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10174
Summary:
Reportedly the BitDefender AvxScanOnlineCtrl COM object is affected by a file upload and execution vulnerability. This issue is due to a design error that allows a remote user to specify a file to be uploaded and executed on a system running the affected software.
This issue may be leveraged by a remote attacker to upload and execute arbitrary files on an affected system; most likely resulting in unauthorized access. Other attackers are also possible.
15. Softwin BitDefender AvxScanOnlineCtrl COM Object Information...
BugTraq ID: 10175
Remote: Yes
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10175
Summary:
Reportedly the BitDefender AvxScanOnlineCtrl COM object is affected by an information disclosure vulnerability. This issue is due to a design error that allows a remote user to execute a method in the offending object that provides access to unauthorized information.
This issue would allow an attacker to gain access system information that may be used to aid in further attacks.
16. Avaya Visual Vectors Server Default World Writable Script Vu...
BugTraq ID: 10176
Remote: No
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10176
Summary:
Visual Vectors is reportedly affected by a local default world writable script vulnerability. This issue is due to a configuration error implemented by default on installation.
A local attacker may leverage this issue by updating the affected script to contain malicious script code, which will be executed by the root user when the script is activated.
17. PHPBB album_portal.php Remote File Include Vulnerability
BugTraq ID: 10177
Remote: Yes
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10177
Summary:
It has been reported that phpBB may be prone to a file include vulnerability that may allow remote attackers to include a remote malicious script to be executed on a vulnerable system.
18. UTempter Multiple Local Vulnerabilities
BugTraq ID: 10178
Remote: No
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10178
Summary:
It has been reported that utempter is affected by multiple local vulnerabilities. The first issue is due to an input validation error that causes the application to exit improperly; facilitating symbolic link attacks. The second issue is due to a failure of the application to properly validate buffer boundaries.
The first issue results in a symbolic link vulnerability. Since utempter runs with root privileges, this issue could be leveraged to corrupt arbitrary, attacker-specified system files.
The second problem presents itself when utempter processes certain strings. These errors may cause the affected process to crash. It has been conjectured that this may be leveraged to execute arbitrary code on the affected system, however this is currently unverified.
This BID will be updated as new information becomes available.
19. Linux Kernel Setsockopt MCAST_MSFILTER Integer Overflow Vuln...
BugTraq ID: 10179
Remote: No
Date Published: Apr 20 2004
Relevant URL: http://www.securityfocus.com/bid/10179
Summary:
An integer overflow vulnerability has been reported in the setsockopt() system call. This was introduced as of the 2.4.22/2.6.1 kernel releases.
The specific issue exists in the net/ipv4/ip_sockglue.c source file and is present in the ip_setsockopt() subroutine of the setsockopt() system call. Within this subroutine there is an integer overflow within the IP_MSFILTER_SIZE macro, which is used when setting the MCAST_MSFILTER socket option.
This issue may be exploited by a local user to compromise the system. Exploitation could also result in a denial of service. It should be noted that this type of vulnerability may provide a generic means of privilege escalation across Linux distributions once a remote attacker has gained unauthorized access as a lower privileged user.
20. Kinesphere Corporation Exchange POP3 Remote Buffer Overflow ...
BugTraq ID: 10180
Remote: Yes
Date Published: Apr 20 2004
Relevant URL: http://www.securityfocus.com/bid/10180
Summary:
It has been reported that Exchange POP3 e-mail gateway is prone to a remote buffer overflow vulnerability that may allow an attacker to execute arbitrary code on a vulnerable system. This issue could allow an attacker to gain unauthorized access in the context of the affected process.
21. RhinoSoft Serv-U FTP Server LIST Parameter Buffer Overflow V...
BugTraq ID: 10181
Remote: Yes
Date Published: Apr 20 2004
Relevant URL: http://www.securityfocus.com/bid/10181
Summary:
Reportedly Serv-U is affected by a remote buffer overflow vulnerability in the list parameter. This issue is due to a failure of the application to properly validate buffer boundaries during processing of user input.
Successful exploitation would immediately produce a denial of service condition in the affected process. This issue may also be leveraged to execute code on the affected system with the privileges of the user that invoked the vulnerable application, although this has not been confirmed.
22. NcFTP Local Information Disclosure Vulnerability
BugTraq ID: 10182
Remote: No
Date Published: Apr 20 2004
Relevant URL: http://www.securityfocus.com/bid/10182
Summary:
NcFTP has been reported prone to a local information disclosure vulnerability. The issue presents itself because the NcFTP client does not correctly obfuscate arguments that are passed to the client software. If NcFTP client has been launched with an ftp site URI as an argument, this argument will be visible in the 'ps -aux' process list.
23. Multiple Vendor TCP Sequence Number Approximation Vulnerabil...
BugTraq ID: 10183
Remote: Yes
Date Published: Apr 20 2004
Relevant URL: http://www.securityfocus.com/bid/10183
Summary:
A vulnerability in TCP implementations has been reported that may permit unauthorized remote users to reset TCP sessions. This issue affects products released by multiple vendors. This issue may permit TCP sequence numbers to be more easily approximated by remote attackers.
The cause of the vulnerability is that affected implementations will accept TCP sequence numbers within a certain range of the expected sequence number for a packet in the session. This will permit a remote attacker to inject a SYN or RST packet into the session, causing it to be reset and effectively allowing for denial of service attacks. An attacker would exploit this issue by sending a packet to a receiving implementation with an approximated sequence number and a forged source IP and TCP port.
There are a few factors that may present viable target implementations, such as those which depend on long-lived TCP connections, those which have known or easily guessed IP address endpoints and those implementations with known or easily guessed TCP source ports. It has been noted that Border Gateway Protocol (BGP) is reported to be particularly vulnerable to this type of attack. As a result, this issue is likely to affect a number of routing platforms.
It should be noted that while a number of vendors have confirmed this issue in various products, investigations are ongoing and it is likely that many other vendors and products will turn out to be vulnerable as the issue is investigated further.
Other consequences may also result from this issue, such as injecting specific data in TCP sessions, though this has not been confirmed.
24. BEA WebLogic Server and WebLogic Express Illegal URI Pattern...
BugTraq ID: 10184
Remote: Yes
Date Published: Apr 20 2004
Relevant URL: http://www.securityfocus.com/bid/10184
Summary:
It has been reported that WebLogic Server and WebLogic Express may be prone to a vulnerability that could allow a remote attacker to potentially gain access to sensitive resources. This issue results from a change in functionality that was deployed as part of WebLogic Server and Express versions 7.x and later. Users employing the illegal URI patterns for access controls and migrating to subsequent versions of the software could be affected by this issue.
25. BEA WebLogic Server/Express EJB Object Removal Denial Of Ser...
BugTraq ID: 10185
Remote: Yes
Date Published: Apr 20 2004
Relevant URL: http://www.securityfocus.com/bid/10185
Summary:
BEA has reported a vulnerability in both WebLogic Server and WebLogic Express that may result in unauthorized removal of EJB (Enterprise Java Bean) Objects. The issue is reported to present itself when an application invokes a remove() method from an EJB. When this method is called, the EJB remote object will be unexported, regardless of the permissions of the caller of the method.
An attacker who has sufficient access to trigger a call to a remove() method in an EJB may potentially deny service to services that depend on the EJB.
26. Cisco Internet Operating System SNMP Message Processing Deni...
BugTraq ID: 10186
Remote: Yes
Date Published: Apr 20 2004
Relevant URL: http://www.securityfocus.com/bid/10186
Summary:
It has been reported that the Cisco Internet Operating System (IOS) is affected by a remote SNMP message processing denial of service vulnerability. This is caused by a design error that causes memory corruption in the affected system under certain circumstances.
This issue may be leveraged to cause a denial of service condition in the affected device. The denial of service is due to a corruption of memory in the affected device. As a result, there may be other consequences, such as code execution. This has not been confirmed by Cisco.
27. Journalness Unspecified Post Access Vulnerability
BugTraq ID: 10187
Remote: Yes
Date Published: Apr 21 2004
Relevant URL: http://www.securityfocus.com/bid/10187
Summary:
An unspecified vulnerability has been reported in Journalness that may permit unauthorized users to create or modify journal posts.
28. BEA WebLogic Server And WebLogic Express Configuration Log F...
BugTraq ID: 10188
Remote: No
Date Published: Apr 21 2004
Relevant URL: http://www.securityfocus.com/bid/10188
Summary:
Reportedly BEA WebLogic Server and WebLogic Express are affected by a log file plain text password vulnerability. This issue is due to a design error that causes the affected configuration applications to display plain text passwords when producing log files.
Any local attacker may be able to leverage this issue to be able to authenticate to the affected system as an administrator.
29. Sun Fire/Netra Remote TOS IP Packet Denial Of Service Vulner...
BugTraq ID: 10189
Remote: Yes
Date Published: Apr 21 2004
Relevant URL: http://www.securityfocus.com/bid/10189
Summary:
A denial of service vulnerability has been reported to affect Sun Fire and Netra products. The issue is reported to present itself when the affected server handles an IP packet that has certain flags set. It is reported that when this occurs the System Controller may hang, thereby effectively denying service to legitimate users.
30. PHProfession Multiple Vulnerabilities
BugTraq ID: 10190
Remote: Yes
Date Published: Apr 21 2004
Relevant URL: http://www.securityfocus.com/bid/10190
Summary:
Multiple vulnerabilities were reported to exist in phProfession, which is a third-party module for PostNuke. Path disclosure, cross-site scripting and SQL injection vulnerabilities were reported.
Exploitation of these issues may reveal sensitive information, allow for account hijacking, content manipulation and attacks against the underlying database.
These issues were reported to exist in phProfession 2.5. Other versions may also be affected.
31. PostNuke Pheonix Multiple Cross-Site Scripting And Path Disc...
BugTraq ID: 10191
Remote: Yes
Date Published: Apr 21 2004
Relevant URL: http://www.securityfocus.com/bid/10191
Summary:
Multiple vulnerabilities were reported to exist in PostNuke Pheonix. The following specific vulnerabilities were reported:
- Multiple path disclosure vulnerabilities that occur when a user directly requests scripts in the "/includes/blocks/" and "pnadodb" directories. This issue also affects scripts that are associated in multiple modules.
- Multiple cross-site scripting vulnerabilities were reported in the Downloads and Web_Links modules as well as the openwindow.php script. These issues may permit remote attackers to cause hostile HTML and script code to be interpreted by a victim user's browser.
32. Michael Bacarella IDent2 Daemon Child_Service Remote Buffer ...
BugTraq ID: 10192
Remote: Yes
Date Published: Apr 16 2004
Relevant URL: http://www.securityfocus.com/bid/10192
Summary:
A remote buffer overflow vulnerability has been reported to affect the Michael Bacarella ident2 daemon. The issue is reported to present itself due to a lack of sufficient boundary checks performed on user-supplied data, before it is copied into a reserved buffer in process memory.
It is possible for a remote attacker to overrun the bounds of the affected buffer and corrupt a restricted region of adjacent memory. Because this data may potentially hold values that are crucial to controlling process execution flow, it may be possible for a remote attacker to exploit this issue to have arbitrary instructions executed.
33. Xine And Xine-Lib Multiple Remote File Overwrite Vulnerabili...
BugTraq ID: 10193
Remote: Yes
Date Published: Apr 22 2004
Relevant URL: http://www.securityfocus.com/bid/10193
Summary:
It has been reported that the xine media player and the xine media library are affected by multiple remote file overwrite vulnerabilities. This is due to a design error that allows various media resource file configurations to write to arbitrary files.
It is possible to set these configuration parameters to write to arbitrary files on the affected system. It should be noted that this issue, as it is currently known, only affects Sun based systems as well as those using the DXR3 or Hollywood+ MPEG decoder audio card. It has been conjectured however that similar configuration parameters exists that affect other systems.
34. NewsTraXor Remote Database Disclosure Vulnerability
BugTraq ID: 10194
Remote: Yes
Date Published: Apr 22 2004
Relevant URL: http://www.securityfocus.com/bid/10194
Summary:
Reportedly NewsTraXor is affected by a remote database disclosure vulnerability. This issue is due to a design error that allows the database file to be globally readable.
This issue may allow a remote attacker to gain unauthorized administrative access to the affected web application.
35. PISG IRC Nick HTML Injection Vulnerability
BugTraq ID: 10195
Remote: Yes
Date Published: Apr 22 2004
Relevant URL: http://www.securityfocus.com/bid/10195
Summary:
pisg has been reported prone to an input validation vulnerability. The issue will only present itself when pisg is used to monitor an IRC server that does not place limitations on IRC Nick values that can be used.
If an attacker specifies HTML code as a value for the IRC Nickname, this value may be incorporated into the HTML pages that are generated by pisg.
36. Epic Games Unreal Tournament Engine UMOD Manifest.INI Remote...
BugTraq ID: 10196
Remote: Yes
Date Published: Apr 22 2004
Relevant URL: http://www.securityfocus.com/bid/10196
Summary:
Reportedly the Unreal Tournament Engine is affected by a local file overwrite vulnerability due to the UMOD manifest.ini file. This issue is due to an input validation error that allows a malicious user specify arbitrary files for writing, potentially leading to a system wide denial of service condition.
III. SECURITYFOCUS NEWS ARTICLES
--------------------------------
1. U.S. defends cybercrime treaty
By: Kevin Poulsen
Critics contend an international treaty aimed at catching computer criminals anywhere in the world could be abused by repressive governments.
http://www.securityfocus.com/news/8529
2. Tower Records settles charges over hack attacks
By: Kevin Poulsen
Music retailer is the fourth company to face federal action for poor Internet security practices.
http://www.securityfocus.com/news/8508
3. Former anti-piracy 'bag man' turns on DirecTV
By: Kevin Poulsen
A one-time enforcer in DirecTV's war on signal pirates sues the company for allegedly making him use strong arm tactics against innocent computer geeks.
http://www.securityfocus.com/news/8472
4. Network Associates sells Sniffer
By: John Leyden, The Register
http://www.securityfocus.com/news/8523
5. Digital certificate regime wins UK gov plaudits
By: John Leyden, The Register
http://www.securityfocus.com/news/8516
6. Serious TCP/IP vuln exposed
By: John Leyden, The Register
http://www.securityfocus.com/news/8499
IV. SECURITYFOCUS TOP 6 TOOLS
-----------------------------
1. OpenProtect v5.0.1.6
By: OpenProtect is a server-side email protector which guards against spam and viruses in addition to pr
Relevant URL: http://opencomputing.sf.net
Platforms: Linux
Summary:
OpenProtect is a server-side email protector which guards against spam and viruses in addition to providing content filtering, using a variety of open- source packages. It supports Sendmail, Postfix, Exim and qmail, and is easy to install and maintain.
radmind is a suite of Unix command-line tools and a server designed to remotely administer the file systems of multiple Unix machines. At its core, radmind operates as a tripwire. It is able to detect changes to any managed filesystem object, e.g. files, directories, links, etc. However, radmind goes further than just integrity checking: once a change is detected, radmind can optionally reverse the change. Each managed machine may have its own loadset composed of multiple, layered overloads. This allows, for example, the operating system to be described separately from applications. Loadsets are stored on a remote server. By updating a loadset on the server, changes can be pushed to managed machines.
3. Fast Logging Project for Snort v1.2.1
By: DG <Dirk (at) geschke.online (dot) de [email concealed]>
Relevant URL: http://www.geschke-online.de/FLoP
Platforms: Linux, Solaris, SunOS
Summary:
FLoP is designed to gather alerts with a payload from distributed Snort sensors at a central server, and to store them in a database (PostgreSQL and MySQL are supported). On the sensor, the output is written via a Unix domain socket to a process called sockserv. This process is threaded; one receives and buffers the alert packets, and the other thread forwards them to a central server. With this approach, the output is decoupled from Snort, which can proceed in sniffing instead of waiting for the output plugins. At the central server, a process called servsock gathers all alerts from the remote sensors and feeds them via a Unix domain socket to the database. All alerts are buffered to avoid blocking due to a hanging database access (or a slow network on the senor side). A short description of alerts with high priority together with the database ID can be sent via email to a list of recipients.
Semi's Spam Milter (sspamm) is a spam filter for Sendmail that utilizes spambayes, heurestic spam filtering, and virus scanning (BitDefender, not included).
5. network traffic volume capture to postgresql v2.1
By: Rob Fowler
Relevant URL: http://gborg.postgresql.org/project/tcap/projdisplay.php
Platforms: Linux, POSIX
Summary:
This is a Unix daemon that captures traffic packet size, source, destination, and times and saves this data into a postgres database in near real time, from which traffic reports may be made. It does not save the actual data or headers. Works on ethX or cooked devices like ppp0. It uses Postgres embedded SQL to insert the data, pcap to capture traffic, and pthreads to capure and write at the same time. It is written in C++ using STL. Pcap filters can be specified on the command line. Logs go to syslog.
6. Chwinpw v1.0
By: <tevfik (at) itefix (dot) no [email concealed]>
Relevant URL: http://www.itefix.no/chwinpw/
Platforms: Windows 2000, Windows NT, Windows XP
Summary:
Chwinpw is a small command line utility that can securely change passwords on remote windows machines. It can help to enforce a higher degree of security, by periodic password maintenance of vital accounts. Chwinpw can be run from a logon script or from a central location. It is also possible to instruct chwinpw to make bulk changes.
V. SECURITYJOBS LIST SUMMARY
----------------------------
1. penetration (Thread)
Relevant URL:
VIII. MICROSOFT FOCUS LIST SUMMARY
----------------------------------
1. IPSec 'window size' (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/361396
2. EventID 256 (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/361394
3. IPSec rules (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/361024
4. SecurityFocus Microsoft Newsletter #185 (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/360747
IX. SUN FOCUS LIST SUMMARY
--------------------------
1. static routes when multi-homed (Thread)
Relevant URL:
http://www.securityfocus.com/archive/92/361156
2. Limiting server side RPC ports for firewall rules (Thread)
Relevant URL:
http://www.securityfocus.com/archive/92/361153
3. sunscreen, source port (Thread)
Relevant URL:
http://www.securityfocus.com/archive/92/361147
4. Issue's with ls (Thread)
Relevant URL:
http://www.securityfocus.com/archive/92/360949
X. LINUX FOCUS LIST SUMMARY
---------------------------
1. decent loadbalancing with 2 different ISP's with min... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/91/360950
2. Issue with Ldap group and too many users (Thread)
Relevant URL:
http://www.securityfocus.com/archive/91/360818
XI. UNSUBSCRIBE INSTRUCTIONS
----------------------------
To unsubscribe send an e-mail message to sf-news-unsubscribe (at) securityfocus (dot) com [email concealed] from the subscribed address. The contents of the subject or message body do not matter. You will receive a confirmation request message to which you will have to answer. Alternatively you can also visit http://www.securityfocus.com/newsletters and unsubscribe via the website.
If your email address has changed email listadmin (at) securityfocus (dot) com [email concealed] and ask to be manually removed.
XII. SPONSOR INFORMATION
-----------------------
This Issue is Sponsored By: SecurityFocus
Want to keep up on the latest security vulnerabilities? Don't have time to
visit a myriad of mailing lists and websites to read the news? Just add
the new SecurityFocus RSS feeds to your freeware RSS reader, and see all
the latest posts for Bugtraq and the SF Vulnernability database in one
convenient place. Or, pull in the latest news, columnists and feature
articles in the SecurityFocus aggregated news feed, and stay on top of
what's happening in the community!
------------------------------
This Issue is Sponsored By: SecurityFocus
Want to keep up on the latest security vulnerabilities? Don't have time to
visit a myriad of mailing lists and websites to read the news? Just add
the new SecurityFocus RSS feeds to your freeware RSS reader, and see all
the latest posts for Bugtraq and the SF Vulnernability database in one
convenient place. Or, pull in the latest news, columnists and feature
articles in the SecurityFocus aggregated news feed, and stay on top of
what's happening in the community!
http://www.securityfocus.com/rss/index.shtml
------------------------------------------------------------------------
I. FRONT AND CENTER
1. Common Security Vulnerabilities in e-commerce systems
2. Protecting Road Warriors: Managing Security for Mobile Users (Part One)
3. Consumer Grade *nix
II. BUGTRAQ SUMMARY
1. WinSCP Long URI Handling Memory Corruption Vulnerability
2. Microsoft Visual Studio .NET Debugger Privilege Enforcement ...
3. Logcheck Insecure Temporary Directory Vulnerability
4. Macromedia ColdFusion MX Oversized Error Message Denial Of S...
5. Symantec Norton AntiVirus 2002 Nested File Manual Scan Bypas...
6. BSD-Games Mille Local Save Game File Name Buffer Overrun Vul...
7. SquirrelMail Change_Passwd Plug-in Buffer Overrun Vulnerabil...
8. Microsoft Internet Explorer Object Element Data Denial Of Se...
9. Fastream NetFile FTP/Web Server Denial Of Service Vulnerabil...
10. PHPBB Common.php IP Address Spoofing Vulnerability
11. SSMTP Mail Transfer Agent Symbolic Link Vulnerability
12. KAME Racoon Malformed ISAKMP Packet Denial of Service Vulner...
13. Phorum Phorum_URIAuth SQL Injection Vulnerability
14. Softwin BitDefender AvxScanOnlineCtrl COM Object Remote File...
15. Softwin BitDefender AvxScanOnlineCtrl COM Object Information...
16. Avaya Visual Vectors Server Default World Writable Script Vu...
17. PHPBB album_portal.php Remote File Include Vulnerability
18. UTempter Multiple Local Vulnerabilities
19. Linux Kernel Setsockopt MCAST_MSFILTER Integer Overflow Vuln...
20. Kinesphere Corporation Exchange POP3 Remote Buffer Overflow ...
21. RhinoSoft Serv-U FTP Server LIST Parameter Buffer Overflow V...
22. NcFTP Local Information Disclosure Vulnerability
23. Multiple Vendor TCP Sequence Number Approximation Vulnerabil...
24. BEA WebLogic Server and WebLogic Express Illegal URI Pattern...
25. BEA WebLogic Server/Express EJB Object Removal Denial Of Ser...
26. Cisco Internet Operating System SNMP Message Processing Deni...
27. Journalness Unspecified Post Access Vulnerability
28. BEA WebLogic Server And WebLogic Express Configuration Log F...
29. Sun Fire/Netra Remote TOS IP Packet Denial Of Service Vulner...
30. PHProfession Multiple Vulnerabilities
31. PostNuke Pheonix Multiple Cross-Site Scripting And Path Disc...
32. Michael Bacarella IDent2 Daemon Child_Service Remote Buffer ...
33. Xine And Xine-Lib Multiple Remote File Overwrite Vulnerabili...
34. NewsTraXor Remote Database Disclosure Vulnerability
35. PISG IRC Nick HTML Injection Vulnerability
36. Epic Games Unreal Tournament Engine UMOD Manifest.INI Remote...
III. SECURITYFOCUS NEWS ARTICLES
1. U.S. defends cybercrime treaty
2. Tower Records settles charges over hack attacks
3. Former anti-piracy 'bag man' turns on DirecTV
4. Network Associates sells Sniffer
5. Digital certificate regime wins UK gov plaudits
6. Serious TCP/IP vuln exposed
IV. SECURITYFOCUS TOP 6 TOOLS
1. OpenProtect v5.0.1.6
2. radmind v1.3.0
3. Fast Logging Project for Snort v1.2.1
4. SSpamM v0.2
5. network traffic volume capture to postgresql v2.1
6. Chwinpw v1.0
V. SECURITYJOBS LIST SUMMARY
1. penetration (Thread)
2. Managed Security Sales Director - Cayman Islands (Thread)
3. VP of Eastern Regional Sales Need (Thread)
4. ArcSight is looking for a Security Architect, Federa... (Thread)
5. ArcSight is looking for a Security Strategist, Sili... (Thread)
6. Intrusion Detection Engineer vacancy (Thread)
7. Director, Security and Compliance, Moncton, New Brun... (Thread)
8. VP of Technical Product Support- Texas- Enterprise S... (Thread)
9. Experienced penetration tester/security engineer - D... (Thread)
10. Security Sales roles (Thread)
11. <Job> XML Sales Engineer, NY, Software Company (Thread)
12. Software Engineer (Networking) - Symantec - Redwood ... (Thread)
13. Product Marketing Manager MA (Thread)
14. Ethical Hacker - NY/NJ (Thread)
15. Project Manager, Ethical Hacking - NY/NJ (Thread)
16. Security Analyst - NY/NJ (Thread)
17. San Diego Area - Security Engineer Opening (Thread)
18. full time position (Thread)
19. Security Analyst NYC (Thread)
20. Comp. Science M.S from VA Tech seeking full-time fo... (Thread)
21. VP Application Security NYC (Thread)
22. Atlanta opportunity - Big 4 - Perimeter Security (Thread)
23. Compliance Officer NJ (Thread)
24. Director Quality Assurance Silicon Valley (Thread)
25. Technical Support Engineer Silicon Valley CA (Thread)
26. Senior Account Executives (Thread)
27. Product Marketing Manager Silicon Valley CA (Thread)
28. Security Architect opening (Thread)
29. May - 2004 Graduate from USC. (Thread)
30. Senior Security Consultant - NYC Metro Area (Thread)
31. Classified Programs Security Assurance Engineer - DC... (Thread)
32. Sr. Security Consultant (NJ, GA, NY) (Thread)
33. IT Security Channel Sales Business Development Mana... (Thread)
34. Security Lab Manager - Symantec - Redwood City, CA (Thread)
35. Job: web Application Security pen-test expert (Thread)
36. Senior Security Engineers - Washington, DC (Thread)
37. UK CHECK TEAM LEADERS (Thread)
38. Penetration Tester vacancy (Thread)
39. CipherTrust: Customer Support Engineer (Thread)
40. Director of Anti-Virus Product Marketing (Thread)
41. Contract Opportunities ? Middle East (Thread)
42. Sr. Security Analyst/Developer - Symantec - Redwood... (Thread)
43. Security Software Post Sales Engineer (TS Clearance) (Thread)
44. Anti-Virus Product Managers (Thread)
45. may 2004 virginia tech M.S. grad (Thread)
46. Sales Operations Director - leading security vendor (Thread)
47. Seeking CISO or senior security position in NY city ... (Thread)
48. Information Security Director -- Wilmington, DE (Thread)
49. Security & Information Assurance Opening in San Dieg... (Thread)
50. Information Security Consultant, UK (Thread)
51. IT Security Pre Sales Consultant UK (Thread)
52. Penetration Test Sales Consultant vacancy (Thread)
53. Security Engineer (Jacksonville, Florida) (Thread)
54. Corporate Information Security Officer - Buffalo, Ne... (Thread)
55. Information Security and Business Continuity Manager... (Thread)
56. VP of Marketing - Information Security - #803JA - Sa... (Thread)
57. Technical Product Marketing Manager/Engineer-San Fra... (Thread)
58. Tenable Network Security - Inside Sales Positions (Thread)
59. May CompSci Graduate Seeking Full-Time... (Thread)
60. List Laggage (Thread)
61. IT Application Security & Risk Assessment Positions ... (Thread)
62. F/T 3rd shift Information Security Analyst, NJ (Thread)
63. Cryptographic Analyst, leading bank - Toronto, Canad... (Thread)
VI. INCIDENTS LIST SUMMARY
1. Massive increase in spam volume? (Thread)
2. Bad Loopback packets (Thread)
3. Strange set of TCP ports (Thread)
4. new worm? (Thread)
5. strange log (Thread)
6. [incidents] strange log (Thread)
7. Fwd: Djohn & John the Ripper (Thread)
8. Djohn & John the Ripper (Thread)
9. Outbreak of a virus on campus, scanning tcp 80/6129/... (Thread)
10. log message (Thread)
11. Linux file locking - sigprocmask() issues (Thread)
12. GLECS conference (Thread)
VII. VULN-DEV RESEARCH LIST SUMMARY
1. unpacking UPX or PE-packed binaries (Thread)
2. key material (Thread)
3. cobol language vulnerabilities (Thread)
4. RNG (Thread)
5. [Rosiello Security] Negligent architecture for the a... (Thread)
6. intercept nt/2k kernel api? (Thread)
7. Windows Heap Overflow (Thread)
VIII. MICROSOFT FOCUS LIST SUMMARY
1. IPSec 'window size' (Thread)
2. EventID 256 (Thread)
3. IPSec rules (Thread)
4. SecurityFocus Microsoft Newsletter #185 (Thread)
IX. SUN FOCUS LIST SUMMARY
1. static routes when multi-homed (Thread)
2. Limiting server side RPC ports for firewall rules (Thread)
3. sunscreen, source port (Thread)
4. Issue's with ls (Thread)
X. LINUX FOCUS LIST SUMMARY
1. decent loadbalancing with 2 different ISP's with min... (Thread)
2. Issue with Ldap group and too many users (Thread)
XI. UNSUBSCRIBE INSTRUCTIONS
XII. SPONSOR INFORMATION
I. FRONT AND CENTER
-------------------
1. Common Security Vulnerabilities in e-commerce systems
By K. K. Mookhey
This article discusses common attacks and vulnerabilities in e-commerce
shopping cart systems, with reference to SecurityFocus vulnerability
reports where relevant.
http://www.securityfocus.com/infocus/1775
2. Protecting Road Warriors: Managing Security for Mobile Users (Part One)
By Bob Rudis
This is the first of a two-part series that focuses on the centralized
management of security for mobile users. Part one introduces vendor-
neutral questions you should consider about firewalls and anti-virus
software for your mobile users.
http://www.securityfocus.com/infocus/1777
3. Consumer Grade *nix
By Daniel Hanson
Consumer grade *nix is a powder keg looking for a place to happen.
http://www.securityfocus.com/columnists/235
II. BUGTRAQ SUMMARY
-------------------
1. WinSCP Long URI Handling Memory Corruption Vulnerability
BugTraq ID: 10160
Remote: Yes
Date Published: Apr 16 2004
Relevant URL: http://www.securityfocus.com/bid/10160
Summary:
It has been reported that WinSCP may be prone to a denial of service condition resulting from memory corruption. This issue occurs when the application attempts to handle excessively long 'sftp:' or 'scp' addresses.
WinSCP 3.5.6 is reported to be vulnerable to this issue, however, it is possible that other versions are affected as well.
2. Microsoft Visual Studio .NET Debugger Privilege Enforcement ...
BugTraq ID: 10161
Remote: No
Date Published: Apr 16 2004
Relevant URL: http://www.securityfocus.com/bid/10161
Summary:
Reportedly the Microsoft Visual Studio .NET Debugger, included with Microsoft Office XP, is affected by an unspecified weakness. This issue is due to a configuration error that allows users outside of the Administrator and Debbugger groups to debug JavaScripts.
This could potentially allow an attacker to gain access to a script that is currently being debugged with the affected server. It may also allow an attacker to inject arbitrary script code into a script that is currently being debugged, which would execute with the privileges of the user debugging the target script.
3. Logcheck Insecure Temporary Directory Vulnerability
BugTraq ID: 10162
Remote: No
Date Published: Apr 17 2004
Relevant URL: http://www.securityfocus.com/bid/10162
Summary:
Logcheck performs operations on temporary directories in the /var/tmp directory in an insecure manner.
This issue may only be exploited when the program removes said directories. The issue could be exploited by a local attacker to corrupt root owned files. This will most likely result in destruction of data and denial of service.
4. Macromedia ColdFusion MX Oversized Error Message Denial Of S...
BugTraq ID: 10163
Remote: Yes
Date Published: Apr 17 2004
Relevant URL: http://www.securityfocus.com/bid/10163
Summary:
A denial of service vulnerability has been reported in Macromedia ColdFusion MX that is reported to occur when the software attempts to write oversized error messages. These error messages will be logged by the server but may also be written into dynamically generated error pages.
It is possible to trigger this condition remotely since remote users may influence the contents of error messages.
5. Symantec Norton AntiVirus 2002 Nested File Manual Scan Bypas...
BugTraq ID: 10164
Remote: No
Date Published: Apr 17 2004
Relevant URL: http://www.securityfocus.com/bid/10164
Summary:
A vulnerability has been reported in Symantec Norton AntiVirus 2002 that may potentially cause deeply nested files with specific names to bypass manual scanning.
This could permit malicious executable content to bypass scanning by the software. This may be due to a limitation in the Windows operating system with regards to accessing the deeply nested file. If this is the case, it could also affect other antivirus software.
This issue was present in an early build of Norton AntiVirus 2002 but does not affect fully updated releases.
6. BSD-Games Mille Local Save Game File Name Buffer Overrun Vul...
BugTraq ID: 10165
Remote: No
Date Published: Apr 17 2004
Relevant URL: http://www.securityfocus.com/bid/10165
Summary:
bsd-games mille is prone to a locally exploitable buffer overrun vulnerability. This issue is due to insufficient bounds checking when the user inputs a file name when saving a game.
This game is typically installed setgid games so may allow privileges to be escalated to this level if exploited.
7. SquirrelMail Change_Passwd Plug-in Buffer Overrun Vulnerabil...
BugTraq ID: 10166
Remote: Yes
Date Published: Apr 17 2004
Relevant URL: http://www.securityfocus.com/bid/10166
Summary:
The SquirrelMail change_passwd plug-in is prone to a stack-based buffer overrun vulnerability. The issue exists in the backend chpasswd binary.
This vulnerability could potentially be exploited by a local user to execute arbitrary code as root.
It should be noted that the local user may need to have additional privileges to exploit this issue, such as being a member of a special group on the system, such as webmasters or www or to have access to a special user, depending on how the software is configured.
This issue may also be remotely exploitable via the CGI interface of the software.
8. Microsoft Internet Explorer Object Element Data Denial Of Se...
BugTraq ID: 10167
Remote: Yes
Date Published: Apr 17 2004
Relevant URL: http://www.securityfocus.com/bid/10167
Summary:
A denial of service vulnerability has been reported in Microsoft Internet Explorer. This condition may occur when a malicious web page specifies an Object element with a data property that has a value of "?" or "#" in addition to specifying a type property that refers to an image type. The vulnerability will reportedly cause the browser to crash.
9. Fastream NetFile FTP/Web Server Denial Of Service Vulnerabil...
BugTraq ID: 10169
Remote: Yes
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10169
Summary:
A vulnerability has been reported in Fastream NetFILE FTP/Web Server that may permit remote attackers to cause a denial of service. This issue occurs when a remote user attempts to login as a non-existent user.
10. PHPBB Common.php IP Address Spoofing Vulnerability
BugTraq ID: 10170
Remote: Yes
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10170
Summary:
It has been reported that phpBB may be prone to a vulnerability that may allow a remote attacker to spoof their IP address. As a result, an attacker would hide their identity and bypass IP restrictions enabled by an administrator.
phpBB versions 2.0.8a and prior are reported to be affected by this issue.
11. SSMTP Mail Transfer Agent Symbolic Link Vulnerability
BugTraq ID: 10171
Remote: Yes
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10171
Summary:
It has been reported that ssmtp is prone to a symbolic link vulnerability. This issue is due to a design error that causes the application to fail to validate files before writing to them.
This issue could be leveraged to corrupt arbitrary, attacker-specified system files. It may be possible for an attacker to gain escalated privileges on the affected system; it is certainly possible to cause a system wide denial of service condition.
12. KAME Racoon Malformed ISAKMP Packet Denial of Service Vulner...
BugTraq ID: 10172
Remote: Yes
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10172
Summary:
It has been reported that racoon is prone to a denial of service vulnerability when handling malformed ISAKMP packets. This issue may allow a remote attacker to cause the application to exhaust memory resources leading to a crash or hang.
13. Phorum Phorum_URIAuth SQL Injection Vulnerability
BugTraq ID: 10173
Remote: Yes
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10173
Summary:
Reportedly Phorum is affected by a remote SQL injection vulnerability. This issue is due to a failure of the application to properly sanitized user supplied URI input.
This issue may allow a remote attacker to manipulate query logic, leading to unauthorized access to sensitive information such as the user password hash or corruption of database data. SQL injection attacks may also potentially be used to exploit latent vulnerabilities in the underlying database implementation.
14. Softwin BitDefender AvxScanOnlineCtrl COM Object Remote File...
BugTraq ID: 10174
Remote: Yes
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10174
Summary:
Reportedly the BitDefender AvxScanOnlineCtrl COM object is affected by a file upload and execution vulnerability. This issue is due to a design error that allows a remote user to specify a file to be uploaded and executed on a system running the affected software.
This issue may be leveraged by a remote attacker to upload and execute arbitrary files on an affected system; most likely resulting in unauthorized access. Other attackers are also possible.
15. Softwin BitDefender AvxScanOnlineCtrl COM Object Information...
BugTraq ID: 10175
Remote: Yes
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10175
Summary:
Reportedly the BitDefender AvxScanOnlineCtrl COM object is affected by an information disclosure vulnerability. This issue is due to a design error that allows a remote user to execute a method in the offending object that provides access to unauthorized information.
This issue would allow an attacker to gain access system information that may be used to aid in further attacks.
16. Avaya Visual Vectors Server Default World Writable Script Vu...
BugTraq ID: 10176
Remote: No
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10176
Summary:
Visual Vectors is reportedly affected by a local default world writable script vulnerability. This issue is due to a configuration error implemented by default on installation.
A local attacker may leverage this issue by updating the affected script to contain malicious script code, which will be executed by the root user when the script is activated.
17. PHPBB album_portal.php Remote File Include Vulnerability
BugTraq ID: 10177
Remote: Yes
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10177
Summary:
It has been reported that phpBB may be prone to a file include vulnerability that may allow remote attackers to include a remote malicious script to be executed on a vulnerable system.
18. UTempter Multiple Local Vulnerabilities
BugTraq ID: 10178
Remote: No
Date Published: Apr 19 2004
Relevant URL: http://www.securityfocus.com/bid/10178
Summary:
It has been reported that utempter is affected by multiple local vulnerabilities. The first issue is due to an input validation error that causes the application to exit improperly; facilitating symbolic link attacks. The second issue is due to a failure of the application to properly validate buffer boundaries.
The first issue results in a symbolic link vulnerability. Since utempter runs with root privileges, this issue could be leveraged to corrupt arbitrary, attacker-specified system files.
The second problem presents itself when utempter processes certain strings. These errors may cause the affected process to crash. It has been conjectured that this may be leveraged to execute arbitrary code on the affected system, however this is currently unverified.
This BID will be updated as new information becomes available.
19. Linux Kernel Setsockopt MCAST_MSFILTER Integer Overflow Vuln...
BugTraq ID: 10179
Remote: No
Date Published: Apr 20 2004
Relevant URL: http://www.securityfocus.com/bid/10179
Summary:
An integer overflow vulnerability has been reported in the setsockopt() system call. This was introduced as of the 2.4.22/2.6.1 kernel releases.
The specific issue exists in the net/ipv4/ip_sockglue.c source file and is present in the ip_setsockopt() subroutine of the setsockopt() system call. Within this subroutine there is an integer overflow within the IP_MSFILTER_SIZE macro, which is used when setting the MCAST_MSFILTER socket option.
This issue may be exploited by a local user to compromise the system. Exploitation could also result in a denial of service. It should be noted that this type of vulnerability may provide a generic means of privilege escalation across Linux distributions once a remote attacker has gained unauthorized access as a lower privileged user.
20. Kinesphere Corporation Exchange POP3 Remote Buffer Overflow ...
BugTraq ID: 10180
Remote: Yes
Date Published: Apr 20 2004
Relevant URL: http://www.securityfocus.com/bid/10180
Summary:
It has been reported that Exchange POP3 e-mail gateway is prone to a remote buffer overflow vulnerability that may allow an attacker to execute arbitrary code on a vulnerable system. This issue could allow an attacker to gain unauthorized access in the context of the affected process.
21. RhinoSoft Serv-U FTP Server LIST Parameter Buffer Overflow V...
BugTraq ID: 10181
Remote: Yes
Date Published: Apr 20 2004
Relevant URL: http://www.securityfocus.com/bid/10181
Summary:
Reportedly Serv-U is affected by a remote buffer overflow vulnerability in the list parameter. This issue is due to a failure of the application to properly validate buffer boundaries during processing of user input.
Successful exploitation would immediately produce a denial of service condition in the affected process. This issue may also be leveraged to execute code on the affected system with the privileges of the user that invoked the vulnerable application, although this has not been confirmed.
22. NcFTP Local Information Disclosure Vulnerability
BugTraq ID: 10182
Remote: No
Date Published: Apr 20 2004
Relevant URL: http://www.securityfocus.com/bid/10182
Summary:
NcFTP has been reported prone to a local information disclosure vulnerability. The issue presents itself because the NcFTP client does not correctly obfuscate arguments that are passed to the client software. If NcFTP client has been launched with an ftp site URI as an argument, this argument will be visible in the 'ps -aux' process list.
23. Multiple Vendor TCP Sequence Number Approximation Vulnerabil...
BugTraq ID: 10183
Remote: Yes
Date Published: Apr 20 2004
Relevant URL: http://www.securityfocus.com/bid/10183
Summary:
A vulnerability in TCP implementations has been reported that may permit unauthorized remote users to reset TCP sessions. This issue affects products released by multiple vendors. This issue may permit TCP sequence numbers to be more easily approximated by remote attackers.
The cause of the vulnerability is that affected implementations will accept TCP sequence numbers within a certain range of the expected sequence number for a packet in the session. This will permit a remote attacker to inject a SYN or RST packet into the session, causing it to be reset and effectively allowing for denial of service attacks. An attacker would exploit this issue by sending a packet to a receiving implementation with an approximated sequence number and a forged source IP and TCP port.
There are a few factors that may present viable target implementations, such as those which depend on long-lived TCP connections, those which have known or easily guessed IP address endpoints and those implementations with known or easily guessed TCP source ports. It has been noted that Border Gateway Protocol (BGP) is reported to be particularly vulnerable to this type of attack. As a result, this issue is likely to affect a number of routing platforms.
It should be noted that while a number of vendors have confirmed this issue in various products, investigations are ongoing and it is likely that many other vendors and products will turn out to be vulnerable as the issue is investigated further.
Other consequences may also result from this issue, such as injecting specific data in TCP sessions, though this has not been confirmed.
24. BEA WebLogic Server and WebLogic Express Illegal URI Pattern...
BugTraq ID: 10184
Remote: Yes
Date Published: Apr 20 2004
Relevant URL: http://www.securityfocus.com/bid/10184
Summary:
It has been reported that WebLogic Server and WebLogic Express may be prone to a vulnerability that could allow a remote attacker to potentially gain access to sensitive resources. This issue results from a change in functionality that was deployed as part of WebLogic Server and Express versions 7.x and later. Users employing the illegal URI patterns for access controls and migrating to subsequent versions of the software could be affected by this issue.
25. BEA WebLogic Server/Express EJB Object Removal Denial Of Ser...
BugTraq ID: 10185
Remote: Yes
Date Published: Apr 20 2004
Relevant URL: http://www.securityfocus.com/bid/10185
Summary:
BEA has reported a vulnerability in both WebLogic Server and WebLogic Express that may result in unauthorized removal of EJB (Enterprise Java Bean) Objects. The issue is reported to present itself when an application invokes a remove() method from an EJB. When this method is called, the EJB remote object will be unexported, regardless of the permissions of the caller of the method.
An attacker who has sufficient access to trigger a call to a remove() method in an EJB may potentially deny service to services that depend on the EJB.
26. Cisco Internet Operating System SNMP Message Processing Deni...
BugTraq ID: 10186
Remote: Yes
Date Published: Apr 20 2004
Relevant URL: http://www.securityfocus.com/bid/10186
Summary:
It has been reported that the Cisco Internet Operating System (IOS) is affected by a remote SNMP message processing denial of service vulnerability. This is caused by a design error that causes memory corruption in the affected system under certain circumstances.
This issue may be leveraged to cause a denial of service condition in the affected device. The denial of service is due to a corruption of memory in the affected device. As a result, there may be other consequences, such as code execution. This has not been confirmed by Cisco.
27. Journalness Unspecified Post Access Vulnerability
BugTraq ID: 10187
Remote: Yes
Date Published: Apr 21 2004
Relevant URL: http://www.securityfocus.com/bid/10187
Summary:
An unspecified vulnerability has been reported in Journalness that may permit unauthorized users to create or modify journal posts.
28. BEA WebLogic Server And WebLogic Express Configuration Log F...
BugTraq ID: 10188
Remote: No
Date Published: Apr 21 2004
Relevant URL: http://www.securityfocus.com/bid/10188
Summary:
Reportedly BEA WebLogic Server and WebLogic Express are affected by a log file plain text password vulnerability. This issue is due to a design error that causes the affected configuration applications to display plain text passwords when producing log files.
Any local attacker may be able to leverage this issue to be able to authenticate to the affected system as an administrator.
29. Sun Fire/Netra Remote TOS IP Packet Denial Of Service Vulner...
BugTraq ID: 10189
Remote: Yes
Date Published: Apr 21 2004
Relevant URL: http://www.securityfocus.com/bid/10189
Summary:
A denial of service vulnerability has been reported to affect Sun Fire and Netra products. The issue is reported to present itself when the affected server handles an IP packet that has certain flags set. It is reported that when this occurs the System Controller may hang, thereby effectively denying service to legitimate users.
30. PHProfession Multiple Vulnerabilities
BugTraq ID: 10190
Remote: Yes
Date Published: Apr 21 2004
Relevant URL: http://www.securityfocus.com/bid/10190
Summary:
Multiple vulnerabilities were reported to exist in phProfession, which is a third-party module for PostNuke. Path disclosure, cross-site scripting and SQL injection vulnerabilities were reported.
Exploitation of these issues may reveal sensitive information, allow for account hijacking, content manipulation and attacks against the underlying database.
These issues were reported to exist in phProfession 2.5. Other versions may also be affected.
31. PostNuke Pheonix Multiple Cross-Site Scripting And Path Disc...
BugTraq ID: 10191
Remote: Yes
Date Published: Apr 21 2004
Relevant URL: http://www.securityfocus.com/bid/10191
Summary:
Multiple vulnerabilities were reported to exist in PostNuke Pheonix. The following specific vulnerabilities were reported:
- Multiple path disclosure vulnerabilities that occur when a user directly requests scripts in the "/includes/blocks/" and "pnadodb" directories. This issue also affects scripts that are associated in multiple modules.
- Multiple cross-site scripting vulnerabilities were reported in the Downloads and Web_Links modules as well as the openwindow.php script. These issues may permit remote attackers to cause hostile HTML and script code to be interpreted by a victim user's browser.
32. Michael Bacarella IDent2 Daemon Child_Service Remote Buffer ...
BugTraq ID: 10192
Remote: Yes
Date Published: Apr 16 2004
Relevant URL: http://www.securityfocus.com/bid/10192
Summary:
A remote buffer overflow vulnerability has been reported to affect the Michael Bacarella ident2 daemon. The issue is reported to present itself due to a lack of sufficient boundary checks performed on user-supplied data, before it is copied into a reserved buffer in process memory.
It is possible for a remote attacker to overrun the bounds of the affected buffer and corrupt a restricted region of adjacent memory. Because this data may potentially hold values that are crucial to controlling process execution flow, it may be possible for a remote attacker to exploit this issue to have arbitrary instructions executed.
33. Xine And Xine-Lib Multiple Remote File Overwrite Vulnerabili...
BugTraq ID: 10193
Remote: Yes
Date Published: Apr 22 2004
Relevant URL: http://www.securityfocus.com/bid/10193
Summary:
It has been reported that the xine media player and the xine media library are affected by multiple remote file overwrite vulnerabilities. This is due to a design error that allows various media resource file configurations to write to arbitrary files.
It is possible to set these configuration parameters to write to arbitrary files on the affected system. It should be noted that this issue, as it is currently known, only affects Sun based systems as well as those using the DXR3 or Hollywood+ MPEG decoder audio card. It has been conjectured however that similar configuration parameters exists that affect other systems.
34. NewsTraXor Remote Database Disclosure Vulnerability
BugTraq ID: 10194
Remote: Yes
Date Published: Apr 22 2004
Relevant URL: http://www.securityfocus.com/bid/10194
Summary:
Reportedly NewsTraXor is affected by a remote database disclosure vulnerability. This issue is due to a design error that allows the database file to be globally readable.
This issue may allow a remote attacker to gain unauthorized administrative access to the affected web application.
35. PISG IRC Nick HTML Injection Vulnerability
BugTraq ID: 10195
Remote: Yes
Date Published: Apr 22 2004
Relevant URL: http://www.securityfocus.com/bid/10195
Summary:
pisg has been reported prone to an input validation vulnerability. The issue will only present itself when pisg is used to monitor an IRC server that does not place limitations on IRC Nick values that can be used.
If an attacker specifies HTML code as a value for the IRC Nickname, this value may be incorporated into the HTML pages that are generated by pisg.
36. Epic Games Unreal Tournament Engine UMOD Manifest.INI Remote...
BugTraq ID: 10196
Remote: Yes
Date Published: Apr 22 2004
Relevant URL: http://www.securityfocus.com/bid/10196
Summary:
Reportedly the Unreal Tournament Engine is affected by a local file overwrite vulnerability due to the UMOD manifest.ini file. This issue is due to an input validation error that allows a malicious user specify arbitrary files for writing, potentially leading to a system wide denial of service condition.
III. SECURITYFOCUS NEWS ARTICLES
--------------------------------
1. U.S. defends cybercrime treaty
By: Kevin Poulsen
Critics contend an international treaty aimed at catching computer criminals anywhere in the world could be abused by repressive governments.
http://www.securityfocus.com/news/8529
2. Tower Records settles charges over hack attacks
By: Kevin Poulsen
Music retailer is the fourth company to face federal action for poor Internet security practices.
http://www.securityfocus.com/news/8508
3. Former anti-piracy 'bag man' turns on DirecTV
By: Kevin Poulsen
A one-time enforcer in DirecTV's war on signal pirates sues the company for allegedly making him use strong arm tactics against innocent computer geeks.
http://www.securityfocus.com/news/8472
4. Network Associates sells Sniffer
By: John Leyden, The Register
http://www.securityfocus.com/news/8523
5. Digital certificate regime wins UK gov plaudits
By: John Leyden, The Register
http://www.securityfocus.com/news/8516
6. Serious TCP/IP vuln exposed
By: John Leyden, The Register
http://www.securityfocus.com/news/8499
IV. SECURITYFOCUS TOP 6 TOOLS
-----------------------------
1. OpenProtect v5.0.1.6
By: OpenProtect is a server-side email protector which guards against spam and viruses in addition to pr
Relevant URL: http://opencomputing.sf.net
Platforms: Linux
Summary:
OpenProtect is a server-side email protector which guards against spam and viruses in addition to providing content filtering, using a variety of open- source packages. It supports Sendmail, Postfix, Exim and qmail, and is easy to install and maintain.
2. radmind v1.3.0
By: UMich RSUG
Relevant URL: http://rsug.itd.umich.edu/software/radmind/
Platforms: FreeBSD, Linux, MacOS, OpenBSD, Solaris, SunOS, UNIX
Summary:
radmind is a suite of Unix command-line tools and a server designed to remotely administer the file systems of multiple Unix machines. At its core, radmind operates as a tripwire. It is able to detect changes to any managed filesystem object, e.g. files, directories, links, etc. However, radmind goes further than just integrity checking: once a change is detected, radmind can optionally reverse the change. Each managed machine may have its own loadset composed of multiple, layered overloads. This allows, for example, the operating system to be described separately from applications. Loadsets are stored on a remote server. By updating a loadset on the server, changes can be pushed to managed machines.
3. Fast Logging Project for Snort v1.2.1
By: DG <Dirk (at) geschke.online (dot) de [email concealed]>
Relevant URL: http://www.geschke-online.de/FLoP
Platforms: Linux, Solaris, SunOS
Summary:
FLoP is designed to gather alerts with a payload from distributed Snort sensors at a central server, and to store them in a database (PostgreSQL and MySQL are supported). On the sensor, the output is written via a Unix domain socket to a process called sockserv. This process is threaded; one receives and buffers the alert packets, and the other thread forwards them to a central server. With this approach, the output is decoupled from Snort, which can proceed in sniffing instead of waiting for the output plugins. At the central server, a process called servsock gathers all alerts from the remote sensors and feeds them via a Unix domain socket to the database. All alerts are buffered to avoid blocking due to a hanging database access (or a slow network on the senor side). A short description of alerts with high priority together with the database ID can be sent via email to a list of recipients.
4. SSpamM v0.2
By: Sami-Pekka Hallikas
Relevant URL: http://sourceforge.net/projects/sspamm/
Platforms: Linux, Os Independent, POSIX, UNIX
Summary:
Semi's Spam Milter (sspamm) is a spam filter for Sendmail that utilizes spambayes, heurestic spam filtering, and virus scanning (BitDefender, not included).
5. network traffic volume capture to postgresql v2.1
By: Rob Fowler
Relevant URL: http://gborg.postgresql.org/project/tcap/projdisplay.php
Platforms: Linux, POSIX
Summary:
This is a Unix daemon that captures traffic packet size, source, destination, and times and saves this data into a postgres database in near real time, from which traffic reports may be made. It does not save the actual data or headers. Works on ethX or cooked devices like ppp0. It uses Postgres embedded SQL to insert the data, pcap to capture traffic, and pthreads to capure and write at the same time. It is written in C++ using STL. Pcap filters can be specified on the command line. Logs go to syslog.
6. Chwinpw v1.0
By: <tevfik (at) itefix (dot) no [email concealed]>
Relevant URL: http://www.itefix.no/chwinpw/
Platforms: Windows 2000, Windows NT, Windows XP
Summary:
Chwinpw is a small command line utility that can securely change passwords on remote windows machines. It can help to enforce a higher degree of security, by periodic password maintenance of vital accounts. Chwinpw can be run from a logon script or from a central location. It is also possible to instruct chwinpw to make bulk changes.
V. SECURITYJOBS LIST SUMMARY
----------------------------
1. penetration (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361417
2. Managed Security Sales Director - Cayman Islands (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361410
3. VP of Eastern Regional Sales Need (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361323
4. ArcSight is looking for a Security Architect, Federa... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361322
5. ArcSight is looking for a Security Strategist, Sili... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361320
6. Intrusion Detection Engineer vacancy (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361299
7. Director, Security and Compliance, Moncton, New Brun... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361293
8. VP of Technical Product Support- Texas- Enterprise S... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361286
9. Experienced penetration tester/security engineer - D... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361285
10. Security Sales roles (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361255
11. <Job> XML Sales Engineer, NY, Software Company (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361227
12. Software Engineer (Networking) - Symantec - Redwood ... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361218
13. Product Marketing Manager MA (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361183
14. Ethical Hacker - NY/NJ (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361157
15. Project Manager, Ethical Hacking - NY/NJ (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361155
16. Security Analyst - NY/NJ (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361151
17. San Diego Area - Security Engineer Opening (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361136
18. full time position (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361134
19. Security Analyst NYC (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361130
20. Comp. Science M.S from VA Tech seeking full-time fo... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361129
21. VP Application Security NYC (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361128
22. Atlanta opportunity - Big 4 - Perimeter Security (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361124
23. Compliance Officer NJ (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361119
24. Director Quality Assurance Silicon Valley (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361021
25. Technical Support Engineer Silicon Valley CA (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361016
26. Senior Account Executives (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/361006
27. Product Marketing Manager Silicon Valley CA (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360996
28. Security Architect opening (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360967
29. May - 2004 Graduate from USC. (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360944
30. Senior Security Consultant - NYC Metro Area (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360933
31. Classified Programs Security Assurance Engineer - DC... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360926
32. Sr. Security Consultant (NJ, GA, NY) (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360925
33. IT Security Channel Sales Business Development Mana... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360917
34. Security Lab Manager - Symantec - Redwood City, CA (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360881
35. Job: web Application Security pen-test expert (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360873
36. Senior Security Engineers - Washington, DC (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360871
37. UK CHECK TEAM LEADERS (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360865
38. Penetration Tester vacancy (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360864
39. CipherTrust: Customer Support Engineer (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360863
40. Director of Anti-Virus Product Marketing (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360861
41. Contract Opportunities ? Middle East (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360842
42. Sr. Security Analyst/Developer - Symantec - Redwood... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360841
43. Security Software Post Sales Engineer (TS Clearance) (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360840
44. Anti-Virus Product Managers (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360836
45. may 2004 virginia tech M.S. grad (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360830
46. Sales Operations Director - leading security vendor (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360824
47. Seeking CISO or senior security position in NY city ... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360803
48. Information Security Director -- Wilmington, DE (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360799
49. Security & Information Assurance Opening in San Dieg... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360754
50. Information Security Consultant, UK (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360751
51. IT Security Pre Sales Consultant UK (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360750
52. Penetration Test Sales Consultant vacancy (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360749
53. Security Engineer (Jacksonville, Florida) (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360721
54. Corporate Information Security Officer - Buffalo, Ne... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360708
55. Information Security and Business Continuity Manager... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360696
56. VP of Marketing - Information Security - #803JA - Sa... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360683
57. Technical Product Marketing Manager/Engineer-San Fra... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360682
58. Tenable Network Security - Inside Sales Positions (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360679
59. May CompSci Graduate Seeking Full-Time... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360678
60. List Laggage (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360676
61. IT Application Security & Risk Assessment Positions ... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360675
62. F/T 3rd shift Information Security Analyst, NJ (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360673
63. Cryptographic Analyst, leading bank - Toronto, Canad... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/360636
VI. INCIDENTS LIST SUMMARY
--------------------------
1. Massive increase in spam volume? (Thread)
Relevant URL:
http://www.securityfocus.com/archive/75/361371
2. Bad Loopback packets (Thread)
Relevant URL:
http://www.securityfocus.com/archive/75/361370
3. Strange set of TCP ports (Thread)
Relevant URL:
http://www.securityfocus.com/archive/75/361260
4. new worm? (Thread)
Relevant URL:
http://www.securityfocus.com/archive/75/361258
5. strange log (Thread)
Relevant URL:
http://www.securityfocus.com/archive/75/361196
6. [incidents] strange log (Thread)
Relevant URL:
http://www.securityfocus.com/archive/75/361195
7. Fwd: Djohn & John the Ripper (Thread)
Relevant URL:
http://www.securityfocus.com/archive/75/361144
8. Djohn & John the Ripper (Thread)
Relevant URL:
http://www.securityfocus.com/archive/75/361143
9. Outbreak of a virus on campus, scanning tcp 80/6129/... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/75/361138
10. log message (Thread)
Relevant URL:
http://www.securityfocus.com/archive/75/361032
11. Linux file locking - sigprocmask() issues (Thread)
Relevant URL:
http://www.securityfocus.com/archive/75/360694
12. GLECS conference (Thread)
Relevant URL:
http://www.securityfocus.com/archive/75/360589
VII. VULN-DEV RESEARCH LIST SUMMARY
-----------------------------------
1. unpacking UPX or PE-packed binaries (Thread)
Relevant URL:
http://www.securityfocus.com/archive/82/361476
2. key material (Thread)
Relevant URL:
http://www.securityfocus.com/archive/82/361473
3. cobol language vulnerabilities (Thread)
Relevant URL:
http://www.securityfocus.com/archive/82/361465
4. RNG (Thread)
Relevant URL:
http://www.securityfocus.com/archive/82/361268
5. [Rosiello Security] Negligent architecture for the a... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/82/361267
6. intercept nt/2k kernel api? (Thread)
Relevant URL:
http://www.securityfocus.com/archive/82/361004
7. Windows Heap Overflow (Thread)
Relevant URL:
http://www.securityfocus.com/archive/82/360583
VIII. MICROSOFT FOCUS LIST SUMMARY
----------------------------------
1. IPSec 'window size' (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/361396
2. EventID 256 (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/361394
3. IPSec rules (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/361024
4. SecurityFocus Microsoft Newsletter #185 (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/360747
IX. SUN FOCUS LIST SUMMARY
--------------------------
1. static routes when multi-homed (Thread)
Relevant URL:
http://www.securityfocus.com/archive/92/361156
2. Limiting server side RPC ports for firewall rules (Thread)
Relevant URL:
http://www.securityfocus.com/archive/92/361153
3. sunscreen, source port (Thread)
Relevant URL:
http://www.securityfocus.com/archive/92/361147
4. Issue's with ls (Thread)
Relevant URL:
http://www.securityfocus.com/archive/92/360949
X. LINUX FOCUS LIST SUMMARY
---------------------------
1. decent loadbalancing with 2 different ISP's with min... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/91/360950
2. Issue with Ldap group and too many users (Thread)
Relevant URL:
http://www.securityfocus.com/archive/91/360818
XI. UNSUBSCRIBE INSTRUCTIONS
----------------------------
To unsubscribe send an e-mail message to sf-news-unsubscribe (at) securityfocus (dot) com [email concealed] from the subscribed address. The contents of the subject or message body do not matter. You will receive a confirmation request message to which you will have to answer. Alternatively you can also visit http://www.securityfocus.com/newsletters and unsubscribe via the website.
If your email address has changed email listadmin (at) securityfocus (dot) com [email concealed] and ask to be manually removed.
XII. SPONSOR INFORMATION
-----------------------
This Issue is Sponsored By: SecurityFocus
Want to keep up on the latest security vulnerabilities? Don't have time to
visit a myriad of mailing lists and websites to read the news? Just add
the new SecurityFocus RSS feeds to your freeware RSS reader, and see all
the latest posts for Bugtraq and the SF Vulnernability database in one
convenient place. Or, pull in the latest news, columnists and feature
articles in the SecurityFocus aggregated news feed, and stay on top of
what's happening in the community!
http://www.securityfocus.com/rss/index.shtml
------------------------------------------------------------------------
[ reply ]