Need to know what's happening on YOUR network? Symantec DeepSight Analyzer
is a free service that gives you the ability to track and manage attacks.
Analyzer automatically correlates attacks from various Firewall and network
based Intrusion Detection Systems, giving you a comprehensive view of your
computer or general network. Sign up today!
I. FRONT AND CENTER
1. Online Extortion Works
2. WEP:Dead Again, Part 1
II. BUGTRAQ SUMMARY
1. IBM WebSphere Commerce Default User Information Disclosure V...
2. PAFileDB Error Message Path Disclosure Vulnerability
3. PAFileDB Password Hash Disclosure Vulnerability
4. ViewCVS Multiple Information Disclosure Vulnerabilities
5. Microsoft Windows 2000 Resource Kit W3Who.DLL Multiple Remot...
6. Ibex Software Remote Execute Remote Denial of Service Vulner...
7. Hosting Controller FilePath Parameter File Disclosure Vulner...
8. Mozilla/Netscape/Firefox Browsers JavaScript IFRAME Renderin...
9. Ansel Multiple Input Validation Vulnerabilities
10. Last 10 Posts Add-On Script For VBulletin SQL Injection Vuln...
11. Microsoft Internet Explorer FTP URI Arbitrary FTP Server Com...
12. KDE Konqueror FTP URI Arbitrary FTP Server Command Execution...
13. Novell Remote IMS/NIMS/NetMail Insecure Default Password Vul...
14. IMLib Multiple XPM Image Decoding Buffer Overflow Vulnerabil...
15. Adobe Version Cue Local Privilege Escalation Vulnerability
16. Microsoft Internet Explorer Sysimage Protocol Handler Local ...
17. Gentoo MirrorSelect Local Insecure File Creation Vulnerabili...
18. Headlight Software GetRight DUNZIP32.dll Remote Buffer Overf...
19. IMLib Multiple Remote Integer Overflow Vulnerabilities
20. Digital Illusions Multiple Games Remote Denial of Service Vu...
21. Blog Torrent BTDownload.PHP Cross-Site Scripting Vulnerabili...
22. Sun Solaris IN.RWHOD(1M) Daemon Remote Code Execution Vulner...
23. Linux Kernel AIO_Free_Ring Local Denial Of Service Vulnerabi...
24. MySQL MaxDB WAHTTP Server Remote Denial Of Service Vulnerabi...
25. MySQL MaxDB WebDav Handler Overwrite Header Remote Buffer Ov...
26. Linux Kernel 64 Bit ELF Header Local Denial Of Service Vulne...
27. Darryl Burgdorf WebLibs Directory Traversal Vulnerability
28. MD5 Message Digest Algorithm Hash Collision Weakness
29. Microsoft Internet Explorer Search Pane URI Obfuscation Vuln...
30. Netscape Remote Window Hijacking Vulnerability
31. KDE Konqueror Remote Window Hijacking Vulnerability
32. Mozilla Browser and Mozilla Firefox Remote Window Hijacking ...
33. Microsoft Internet Explorer Remote Window Hijacking Vulnerab...
34. Opera Web Browser Remote Window Hijacking Vulnerability
35. Apple Safari Remote Window Hijacking Vulnerability
36. Codestriker Repository Access Control Bypass Vulnerability
37. Kerio Personal Firewall Local Denial Of Service Vulnerabilit...
38. PHP Live! Unspecified Remote Configuration File Include Vuln...
39. KDE Plaintext Password Disclosure Vulnerability
40. Microsoft Windows Multiple Unspecified Vulnerabilities
41. F-Secure Policy Manager FSMSH.DLL CGI Application Installati...
42. Kerio WinRoute Firewall Multiple Unspecified Remote Vulnerab...
43. GNU WGet Multiple Remote Vulnerabilities
44. IlohaMail Unspecified Vulnerability
45. Clearswift MIMEsweeper For SMTP Unspecified PDF File Handlin...
46. Omni Group OmniWeb Browser Remote Window Hijacking Vulnerabi...
47. ICab Web Browser Remote Window Hijacking Vulnerability
48. OpenText FirstClass HTTP Daemon Search Function Unspecified ...
49. Microsoft Office SharePoint Portal Server Local Information ...
50. PHP Gift Registry Multiple Cross-Site Scripting Vulnerabilit...
51. Gamespy Software Development Kit CD-Key Validation Buffer Ov...
III. SECURITYFOCUS NEWS ARTICLES
1. DirecTV hacker sentenced to seven years
2. Sprint sued over alleged vice hacks
3. Berkeley Hack Sparks Legislative Backlash
4. Source: Hollywood to sue server operators behind BitTorrent,...
5. Gait advances in emerging biometrics
6. Tunable surfaces prevent Wi-Fi leaks
IV. SECURITYFOCUS TOP 6 TOOLS
1. tenshi 0.3.2
2. pasmal 1.5
3. AppRecon 1.0.0
4. Sherpa 0.1.8
5. IDS Policy Manager v1.5
6. PatchLink Update 6.01.78
V. SECURITYJOBS LIST SUMMARY
1. [SJ-JOB] Security Product Marketing Manager, Sunnyva... (Thread)
2. [SJ-JOB] Director, Information Security, Austin, US (Thread)
3. [SJ-JOB] CHECK Team Leader, Various, GB (Thread)
4. [SJ-JOB] Security Engineer, new york, US (Thread)
5. [SJ-JOB] Security Engineer, Washington, US (Thread)
6. [SJ-JOB] Security Engineer, Walnut Creek, US (Thread)
7. [SJ-JOB] Security Engineer, Atlanta, US (Thread)
8. [SJ-JOB] Channel / Business Development, Oakland, US (Thread)
9. [SJ-JOB] Sr. Security Analyst, Oklahoma City, US (Thread)
10. [SJ-JOB] Manager, Information Security, Dubai, AE (Thread)
11. [SJ-JOB] Auditor, Akron, US (Thread)
12. [SJ-JOB] Security Consultant, Munich or Frankfurt, D... (Thread)
13. [SJ-JOB] Management, Princeton, US (Thread)
14. [SJ-JOB] Quality Assurance, Newport News, US (Thread)
15. [SJ-JOB] Security Engineer, Santa Ana, US (Thread)
16. [SJ-JOB] Sr. Security Engineer, Mannheim, DE (Thread)
17. [SJ-JOB] Sr. Security Engineer, Maryland, US (Thread)
18. [SJ-JOB] Sales Engineer, Boston, US (Thread)
19. [SJ-JOB] Certification & Accreditation Engineer, Was... (Thread)
20. [SJ-JOB] Security System Administrator, Dulles Techn... (Thread)
21. [SJ-JOB] Sales Representative, Chicago, US (Thread)
22. [SJ-JOB] Developer, Dulles Technology Corner, US (Thread)
23. [SJ-JOB] Information Assurance Engineer, Dulles Tech... (Thread)
24. [SJ-JOB] Security Engineer, Dulles Technology Corrid... (Thread)
25. [SJ-JOB] Security Engineer, Richmond, US (Thread)
26. [SJ-JOB] Sales Representative, Atlanta, US (Thread)
27. [SJ-JOB] Security Director, Amsterdam, NL (Thread)
28. [SJ-JOB] Technical Support Engineer, Dallas, US (Thread)
29. [SJ-JOB] Security Researcher, San Francisco, US (Thread)
30. [SJ-JOB] Security Engineer, San Francisco, US (Thread)
31. [SJ-JOB] Security Researcher, Santa Clara, US (Thread)
32. [SJ-JOB] Application Security Engineer, Redwood city... (Thread)
33. [SJ-JOB] Chief Scientist, San Francisco, US (Thread)
34. [SJ-JOB] Security Product Marketing Manager, Redwood... (Thread)
VI. INCIDENTS LIST SUMMARY
1. PHP injection attempt from 200.222.244.154 (Thread)
2. ftp warez server snake ? (Thread)
VII. VULN-DEV RESEARCH LIST SUMMARY
1. Exploiting network services question (Thread)
2. MS IE User's Authentication Details (userid/password... (Thread)
3. Enemy of the State (breaking Stateful Inspection bas... (Thread)
4. trusted solaris pen testing (Thread)
VIII. MICROSOFT FOCUS LIST SUMMARY
1. Secondary Storage Device Policy (Thread)
2. iisadmpwd/UPN (Thread)
3. Group policy help needed!!! (Thread)
4. services running in windows domain (winXP clients) (Thread)
5. Modifying default behaviour of MS VPN client (Thread)
6. SecurityFocus Microsoft Newsletter #218 (Thread)
IX. SUN FOCUS LIST SUMMARY
1. Solaris Security Script (Thread)
X. LINUX FOCUS LIST SUMMARY
1. which distribution to choose (Thread)
XI. UNSUBSCRIBE INSTRUCTIONS
XII. SPONSOR INFORMATION
I. FRONT AND CENTER
-------------------
1. Online Extortion Works
By Scott Granneman
Online extortion is quietly affecting thousands of businesses, for a very
simple reason: it works. The big question then becomes, how will you and
your company decide to respond?
http://www.securityfocus.com/columnists/283
2. WEP:Dead Again, Part 1
By Michael Ossmann
This article is the first of a two-part series that looks at the new
generation of WEP cracking tools for WiFi networks, which offer
dramatically faster speeds for penetration testers over the previous
generation of tools. In many cases, a WEP key can be determined in seconds
or minutes.
http://www.securityfocus.com/infocus/1814
II. BUGTRAQ SUMMARY
-------------------
1. IBM WebSphere Commerce Default User Information Disclosure V...
BugTraq ID: 11816
Remote: Yes
Date Published: Dec 03 2004
Relevant URL: http://www.securityfocus.com/bid/11816
Summary:
It is reported that WebSphere Commerce is susceptible to an information disclosure vulnerability.
This vulnerability may result in potentially sensitive customer data being available to the default user, possibly allowing unintended users to gain access to it.
This vulnerability is reported to affect versions 5.1, 5.4, 5.5, and 5.6.
2. PAFileDB Error Message Path Disclosure Vulnerability
BugTraq ID: 11817
Remote: Yes
Date Published: Dec 04 2004
Relevant URL: http://www.securityfocus.com/bid/11817
Summary:
paFileDB is prone to an installation path disclosure. If invalid requests are made to certain scripts, the installation path is included in the returned error message.
3. PAFileDB Password Hash Disclosure Vulnerability
BugTraq ID: 11818
Remote: Yes
Date Published: Dec 04 2004
Relevant URL: http://www.securityfocus.com/bid/11818
Summary:
paFileDB reportedly allows any users to view the password hash of other accounts, including the administrator. This issue only exists if session authentication is used rather than cookie authentication.
4. ViewCVS Multiple Information Disclosure Vulnerabilities
BugTraq ID: 11819
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11819
Summary:
ViewCVS is reportedly prone to multiple information disclosure vulnerabilities when repositories are exported to tar archives.
Reportedly, certain configuration directives are not properly honored when creating tar archives for users to download. This allows remote attackers to gain access to potentially sensitive files located in restricted directories. The contents of these files may aid them in further attacks.
This issue is only exploitable if the package is configured to allow tar archive generation. This is enabled by setting the 'tar_archive' configuration directive to '1'.
5. Microsoft Windows 2000 Resource Kit W3Who.DLL Multiple Remot...
BugTraq ID: 11820
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11820
Summary:
The Microsoft Windows 2000 Resource Kit supports many utilities designed for diagnostic administration of the Windows platform. The w3who.dll library is a utility designed to provide auditing of server configuration remotely through a Web browser.
Multiple remote vulnerabilities affect the w3who.dll library of Microsoft's Windows Resource Kit. These issues are due to a failure of the library to properly sanitize and perform proper bounds checking on user-supplied input.
The first two issues are cross-site scripting vulnerabilities. The final issue is a buffer overflow vulnerability.
These issues may be exploited to conduct cross-site scripting attacks and execute arbitrary code with the privileges of the affected Web server. This may facilitate theft of cookie based authentication credentials, unauthorized access, privileges escalation other attacks.
6. Ibex Software Remote Execute Remote Denial of Service Vulner...
BugTraq ID: 11821
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11821
Summary:
Remote Execute is reported prone to a remote denial of service vulnerability. It is reported that an attacker can crash the application by establishing approximately seven connections to it.
Remote Execute 2.30 is vulnerable to this issue.
7. Hosting Controller FilePath Parameter File Disclosure Vulner...
BugTraq ID: 11822
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11822
Summary:
Multiple scripts of Hosting Controller are prone to an issue which may allow a remote attacker to view the contents of arbitrary files and directories on the local drive.
It is reported that a successful attack allows an attacker to view any file or directory on the affected computer through a 'FilePath' parameter.
Hosting Controller version 6.1 Hotfix 1.4 and prior may be affected by this issue.
8. Mozilla/Netscape/Firefox Browsers JavaScript IFRAME Renderin...
BugTraq ID: 11823
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11823
Summary:
Mozilla/Netscape and Firefox browsers are reported prone a remote denial of service vulnerability. It is reported that the affected browsers will crash as a result of a NULL pointer dereference when a JavaScript function attempts to print an IFRAME that is embedded in the page.
9. Ansel Multiple Input Validation Vulnerabilities
BugTraq ID: 11824
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11824
Summary:
It is reported that Ansel is susceptible to cross-site scripting and SQL injection vulnerabilities.
The cross-site scripting issue is present in the 'album name' parameter of the Ansel application. An attacker can exploit this issue by creating a malicious link containing HTML and script code and send this link to a vulnerable user.
An SQL injection issue exists in the application as well. This issue affects the 'image' parameter of the Ansel application. Due to this, attackers may supply malicious parameters to manipulate the structure and logic of SQL queries.
10. Last 10 Posts Add-On Script For VBulletin SQL Injection Vuln...
BugTraq ID: 11825
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11825
Summary:
It is reported that the "Last 10 Posts" script for vBulletin is susceptible to an SQL injection vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input prior to utilizing it in an SQL query.
An attacker can exploit this issue to manipulate and inject SQL queries into the underlying database. It may be possible to leverage this issue to steal database contents including user credentials as well as to attack the underlying database.
Version 2.0.1 is reported susceptible to this vulnerability. Other versions may also be affected.
11. Microsoft Internet Explorer FTP URI Arbitrary FTP Server Com...
BugTraq ID: 11826
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11826
Summary:
Microsoft Internet Explorer is reported prone to an arbitrary FTP server command execution vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input prior to utilizing it to execute FTP commands on remote servers.
This vulnerability allows attackers to embed arbitrary FTP server commands in malicious URIs. Upon following this malicious URI, the victim users Web browser will reportedly connect to the attacker-specified FTP server, and the malicious commands will be sent to the server. This may allow malicious files to be downloaded to the victims computer without their knowledge. Other attacks are also likely possible.
12. KDE Konqueror FTP URI Arbitrary FTP Server Command Execution...
BugTraq ID: 11827
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11827
Summary:
KDE Konqueror is reported prone to an arbitrary FTP server command execution vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input prior to utilizing it to execute FTP commands on remote servers.
This vulnerability allows attackers to embed arbitrary FTP server commands in malicious URIs. Upon following this malicious URI, the victim users Web browser will reportedly connect to the attacker-specified FTP server, and the malicious commands will be sent to the server. This may allow malicious files to be downloaded to the victims computer without their knowledge. Other attacks are also likely possible.
13. Novell Remote IMS/NIMS/NetMail Insecure Default Password Vul...
BugTraq ID: 11828
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11828
Summary:
Novell IMS/NIMS/NetMail is reported prone to an insecure default password vulnerability.
Reports indicate that a default authentication credential is set during the initial installation of Novell IMS/NIMS/NetMail.
A remote attacker with knowledge of the default credentials that are set during the installation of Novell IMS/NIMS/NetMail may exploit this vulnerability to gain read/write access to a target mail store.
14. IMLib Multiple XPM Image Decoding Buffer Overflow Vulnerabil...
BugTraq ID: 11830
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11830
Summary:
Multiple buffer overflow vulnerabilities are reported to exist in the IMLib library. These issues may be triggered when handling malformed XPM images.
These vulnerabilities could be exploited by a remote attacker to cause a denial of service in applications that use the vulnerable library to render images. It is also reported that these vulnerabilities may be exploited to execute code arbitrary code.
These issues may be related to BID 11084. This BID will be updated as further information is disclosed.
15. Adobe Version Cue Local Privilege Escalation Vulnerability
BugTraq ID: 11833
Remote: No
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11833
Summary:
A local privilege escalation vulnerability reportedly affects Adobe Version Cue. This issue is due to a failure of the application to validate its environment, allowing an attacker to run arbitrary script code.
It should be noted that this issue reportedly only affects Adobe Version Cue on Mac OS X platforms.
An attacker may exploit this issue to have arbitrary scripts run with superuser privileges. This will facilitate privileges escalation.
16. Microsoft Internet Explorer Sysimage Protocol Handler Local ...
BugTraq ID: 11834
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11834
Summary:
Microsoft Internet Explorer is reported prone to a vulnerability that may allow a remote site to detect files on the local computer.
A remote attacker can exploit this issue through the ''sysimage://' protocol handler to detect the existence of a file on the local computer of the Web client viewing a malicious page. This could lead to a disclosure of sensitive information to remote attackers.
17. Gentoo MirrorSelect Local Insecure File Creation Vulnerabili...
BugTraq ID: 11835
Remote: No
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11835
Summary:
A local insecure file creation vulnerability affects Gentoo mirrorselect. This issue is likely due to a design error that causes the application to fail to verify the existence of a file before writing to it.
An attacker may leverage this issue to overwrite arbitrary files with the privileges of an unsuspecting user that activates the vulnerable utility.
18. Headlight Software GetRight DUNZIP32.dll Remote Buffer Overf...
BugTraq ID: 11836
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11836
Summary:
GetRight is reported prone to a remote buffer overflow vulnerability when handling specially crafted skin files. This issue presents itself due to insufficient boundary checks performed by the application. It is reported that this vulnerability occurs in the DUNZIP32.dll compression library.
It is conjectured that this issue results in a denial of service condition and may be leveraged to execute arbitrary code on a vulnerable computer.
19. IMLib Multiple Remote Integer Overflow Vulnerabilities
BugTraq ID: 11837
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11837
Summary:
Multiple remote integer overflow vulnerabilities affect the IMLib graphics library. These issues are due to a failure of the application to properly handle the management of numeric data found in image files.
An attacker may leverage these issues to gain local access to a computer running an application that implements the vulnerable library. This issue may also be used to facilitate privilege escalation.
20. Digital Illusions Multiple Games Remote Denial of Service Vu...
BugTraq ID: 11838
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11838
Summary:
Battlefield 1942 and Battlefield Vietnam are reported prone to a remote denial of service vulnerability. This issue presents itself in the game clients when handling malformed data from a malicious server.
A remote attacker can cause a denial of service condition in multiple clients by sending a broadcast reply.
This issue affects battlefield 1942 versions 1.6.19 and prior and Battlefield Vietnam versions 1.2 and prior.
21. Blog Torrent BTDownload.PHP Cross-Site Scripting Vulnerabili...
BugTraq ID: 11839
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11839
Summary:
It is reported that Blog Torrent is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input.
This issue could permit a remote attacker to create a malicious URI link that includes hostile HTML and script code. If this link were to be followed, the hostile code may be rendered in the web browser of the victim user. This would occur in the security context of the affected web site and may allow for theft of cookie-based authentication credentials or other attacks.
22. Sun Solaris IN.RWHOD(1M) Daemon Remote Code Execution Vulner...
BugTraq ID: 11840
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11840
Summary:
Sun Solaris in.rwhod(1M) daemon is reported prone to an unspecified vulnerability that may allow for remote code execution. The vendor disclosed this issue, however, no further details are currently available.
If successfully exploited, this vulnerability can result in an attacker gaining superuser privileges on a vulnerable computer.
This BID will be updated when more information becomes available.
23. Linux Kernel AIO_Free_Ring Local Denial Of Service Vulnerabi...
BugTraq ID: 11842
Remote: No
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11842
Summary:
The Linux Kernel is reported prone to a local denial of service vulnerability. It is reported that the vulnerability exists due to a failure by 'aio_free_ring' to handle exceptional conditions.
This vulnerability requires that mmap() is employed to map the maximum amount of process memory that is possible, before the vulnerability can be triggered.
It is reported that when handing 'io_setup' syscalls that are passed large values, the Linux kernel 'aio_setup_ring' will attempt to allocate a structure of page pointers.
When a subsequent 'aio_setup_ring' mmap() call fails, 'aio_free_ring' attempts to clean up the page pointers, it will crash during this procedure triggering a kernel panic.
24. MySQL MaxDB WAHTTP Server Remote Denial Of Service Vulnerabi...
BugTraq ID: 11843
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11843
Summary:
A remote denial of service vulnerability has been reported to affect the MySQL MaxDB WAHTTP server. This issue is due to a failure of the server to handle malformed requests.
An attacker may leverage this issue to cause the affected Web server to crash, denying service to legitimate users.
25. MySQL MaxDB WebDav Handler Overwrite Header Remote Buffer Ov...
BugTraq ID: 11844
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11844
Summary:
MySQL MaxDB WebDav Handler is reported prone to a remote buffer overflow vulnerability. This issue results from insufficient boundary checks performed by the application when handling malformed user-supplied data. It is possible that an attacker may leverage this issue to execute arbitrary code on a vulnerable computer.
This issue arises when the WebDav handler processes an excessive 'Overwrite' header. MaxDB versions 7.5.00.18 and prior are affected by this vulnerability.
26. Linux Kernel 64 Bit ELF Header Local Denial Of Service Vulne...
BugTraq ID: 11846
Remote: No
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11846
Summary:
A local denial of service vulnerability affects the ELF header processing functionality on 64 bit systems of the Linux kernel. This issue is due to a failure of the affected kernel to properly handle malformed ELF headers.
A local attacker may leverage this issue to cause a computer running the affected kernel to crash, denying service to legitimate users.
27. Darryl Burgdorf WebLibs Directory Traversal Vulnerability
BugTraq ID: 11848
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11848
Summary:
It is reported that WebLibs is prone to a remote directory traversal vulnerability. This issue is due to a failure of the application to properly filter user-supplied input.
WebLibs 1.0 is affected by this vulnerability.
28. MD5 Message Digest Algorithm Hash Collision Weakness
BugTraq ID: 11849
Remote: No
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11849
Summary:
The MD5 algorithm is reported prone to a hash collision weakness. This weakness reportedly allows attackers to create multiple, differing input sources that, when the MD5 algorithm is used, result in the same output fingerprint.
It has been demonstrated that attackers can create multiple input sources to MD5 that result in the same output fingerprint. Reportedly, at this time, attackers cannot generate arbitrary collisions. At this time, it is also reported that only a very limited number of individual bits in an input message may be altered while maintaining an identical output fingerprint.
This weakness may allow attackers to create two messages, or executable binaries such that their MD5 fingerprints are identical. One of these messages or binaries would be innocent, and the other malicious. The innocent message or binary may be digitally signed, and then later would have the malicious file substituted into its place. This attack may allow malicious code to be executed, or non-repudiation properties of messages to be broken.
At this time, preimage attacks are not reportedly possible.
It is recommended that cryptosystems that utilize the MD5 algorithm should be reviewed, and the measures should be taken to protect against this weakness. Other hashing algorithms may possibly be utilized in replacement to, or in conjunction with MD5 to decrease the likelihood of a successful attack.
29. Microsoft Internet Explorer Search Pane URI Obfuscation Vuln...
BugTraq ID: 11851
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11851
Summary:
A remote URI obfuscation vulnerability has been found in Internet Explorer's search pane functionality. This issue is due to a failure of the application to present the URI address of HTML and script code loaded into the search pane.
This issue may be leveraged by an attacker to display misleading information in the address bar of the browser to an unsuspecting user while loading a third party Web site in the search pane. This may allow an attacker to present web pages to users that seem to originate from a trusted location. This may facilitate phishing style attacks; other attacks may also be possible.
30. Netscape Remote Window Hijacking Vulnerability
BugTraq ID: 11852
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11852
Summary:
Netscape is reported prone to a vulnerability that may allow a Web site to hijack the contents of a trusted window. This issue may allow a remote attacker to carry out phishing style attacks.
This issue arises as a user visits a malicious site and follows a link to a trusted site. Once the link to the trusted site is followed, the victim must open a pop up window from the trusted site that can be influenced by the attacker's site.
If successful, the contents of the target site's window can be spoofed resulting in phishing style attacks.
31. KDE Konqueror Remote Window Hijacking Vulnerability
BugTraq ID: 11853
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11853
Summary:
Konqueror is reported prone to a vulnerability that may allow a Web site to hijack the contents of a trusted window. This issue may allow a remote attacker to carry out phishing style attacks.
This issue arises as a user visits a malicious site and follows a link to a trusted site. Once the link to the trusted site is followed, the victim must open a pop up window from the trusted site that can be influenced by the attacker's site.
If successful, the contents of the target site's window can be spoofed resulting in phishing style attacks.
Konqueror 3.2.2-6 is reported vulnerable to this issue, however, it is possible that other versions are affected as well.
32. Mozilla Browser and Mozilla Firefox Remote Window Hijacking ...
BugTraq ID: 11854
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11854
Summary:
Mozilla Browser and Mozilla Firefox are reported prone to a vulnerability that may allow a Web site to hijack the contents of a trusted window. This issue may allow a remote attacker to carry out phishing style attacks.
This issue arises as a user visits a malicious site and follows a link to a trusted site. Once the link to the trusted site is followed, the victim must open a pop up window from the trusted site that can be influenced by the attacker's site.
If successful, the contents of the target site's window can be spoofed resulting in phishing style attacks.
33. Microsoft Internet Explorer Remote Window Hijacking Vulnerab...
BugTraq ID: 11855
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11855
Summary:
Microsoft Internet Explorer is reported prone to a vulnerability that may allow a Web site to hijack the contents of a trusted window. This issue may allow a remote attacker to carry out phishing style attacks.
This issue arises as a user visits a malicious site and follows a link to a trusted site. Once the link to the trusted site is followed, the victim must open a pop up window from the trusted site that can be influenced by the attacker's site.
If successful, the contents of the target site's window can be spoofed resulting in phishing style attacks.
34. Opera Web Browser Remote Window Hijacking Vulnerability
BugTraq ID: 11856
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11856
Summary:
Opera Web Browser is reported prone to a vulnerability that may allow a Web site to hijack the contents of a trusted window. This issue may allow a remote attacker to carry out phishing style attacks.
This issue arises as a user visits a malicious site and follows a link to a trusted site. Once the link to the trusted site is followed, the victim must open a pop up window from the trusted site that can be influenced by the attacker's site.
If successful, the contents of the target site's window can be spoofed resulting in phishing style attacks.
Opera Web Browser 7.54 is reported vulnerable to this issue, however, it is possible that other versions are affected as well.
35. Apple Safari Remote Window Hijacking Vulnerability
BugTraq ID: 11857
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11857
Summary:
Apple Safari is reported prone to a vulnerability that may allow a Web site to hijack the contents of a trusted window. This issue may allow a remote attacker to carry out phishing style attacks.
This issue arises as a user visits a malicious site and follows a link to a trusted site. Once the link to the trusted site is followed, the victim must open a pop up window from the trusted site that can be influenced by the attacker's site.
If successful, the contents of the target site's window can be spoofed resulting in phishing style attacks.
36. Codestriker Repository Access Control Bypass Vulnerability
BugTraq ID: 11858
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11858
Summary:
It is reported that a vulnerability exists in the Codestriker repository where the repository is not checked against a configured list. A remote attacker may leverage this issue to invoke any repository request and this request will be honored by Codestriker regardless of access controls.
This vulnerability is reported to affect Codestriker up to and including version 1.8.4.
37. Kerio Personal Firewall Local Denial Of Service Vulnerabilit...
BugTraq ID: 11859
Remote: No
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11859
Summary:
It is reported that the Kerio Personal Firewall (KPF) driver does not sufficiently sanitize API parameters that are received from API's that are hooked by KPF. When the KPF API hook handles certain parameter data it will fail. Reports indicate that this exception is not expected and as a result, the Windows kernel crashes triggering a system wide denial of service.
A local attacker may exploit this vulnerability to deny service to legitimate users.
38. PHP Live! Unspecified Remote Configuration File Include Vuln...
BugTraq ID: 11863
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11863
Summary:
PHP Live! is reported prone to an unspecified vulnerability. It is reported that the vulnerability may be exploited to include arbitrary directories and configuration files into a target installation.
It is conjectured that a remote attacker may exploit this vulnerability to load arbitrary configuration files, this may result in the compromise of the PHP Live site or the underlying computer.
PHP Live! up to and including version 2.8.1 are reported prone to this vulnerability.
39. KDE Plaintext Password Disclosure Vulnerability
BugTraq ID: 11866
Remote: No
Date Published: Dec 09 2004
Relevant URL: http://www.securityfocus.com/bid/11866
Summary:
KDE is reported prone to a plaintext password disclosure vulnerability. This issue presents itself when a link to a remote file is created by various KDE applications including Konqueror Web browser. The URI may contain authentication credentials to access the remote resource such as a Samba share.
An attacker can disclose these credentials by accessing the potentially world readable link reference file created by KDE.
40. Microsoft Windows Multiple Unspecified Vulnerabilities
BugTraq ID: 11867
Remote: Unknown
Date Published: Dec 09 2004
Relevant URL: http://www.securityfocus.com/bid/11867
Summary:
Microsoft has released advanced notification that they will be releasing five security bulletins for Windows on December 14th, 2004.
No further information regarding the vulnerabilities addressed by these security bulletins has been released at this time.
41. F-Secure Policy Manager FSMSH.DLL CGI Application Installati...
BugTraq ID: 11869
Remote: Yes
Date Published: Dec 09 2004
Relevant URL: http://www.securityfocus.com/bid/11869
Summary:
F-Secure Policy Manager includes a CGI application named 'fsmsh.dll'. By supplying unexpected input as an argument to the 'fsmsh.dll' application the vulnerable software will return an error message that includes the installation path of the software.
42. Kerio WinRoute Firewall Multiple Unspecified Remote Vulnerab...
BugTraq ID: 11870
Remote: Yes
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11870
Summary:
Multiple unspecified remote vulnerabilities reportedly affect Kerio's WinRoute Firewall. These issues are likely due to design errors and a failure or the application to properly handle malformed network data, although this is not verified.
The first issue is a remote denial of service that may cause the affected computer to crash or hang. The second issue is a DNS cache poisoning vulnerability. The final issue is an information disclosure vulnerability.
An attacker may exploit these issues to gain access to otherwise restricted information and manipulate the DNS cache of the affected firewall, potentially facilitating further attacks against the affected network. Also an attacker may leverage these issues to cause the affected computer to crash or hang, facilitating a denial of service condition.
43. GNU WGet Multiple Remote Vulnerabilities
BugTraq ID: 11871
Remote: Yes
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11871
Summary:
Mutliple remote vulnerabilities reported affects GNU wget. These issues are due to a failure of the application to properly sanitize user-supplied input and to properly validate the existence of files prior to writing to them..
The first issue is a potential directory traversal issue. The second issue is an arbitrary file overwriting vulnerability. The final issue is weakness caused by a failure of the application to filter potentially malicious characters from server-supplied input.
These issues may be exploited by a malicious server to arbitrarily overwrite files in the current directory and potentially write outside of the current directory. This may facilitate file corruption, denial of service and further attacks against the affected computer. Any file overwriting would take place with the privileges of the user that activates the vulnerable application.
44. IlohaMail Unspecified Vulnerability
BugTraq ID: 11872
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11872
Summary:
IlohaMail is reported prone to an unspecified vulnerability. The cause and impact of this issue is currently unknown.
Due to the nature of the software, this issue is likely remotely exploitable. It is conjectured that the issue could be exploited to compromise the Web application.
IlohaMail versions 0.8.13 and prior are reported vulnerable to this issue.
This BID will be updated if further information is made available.
45. Clearswift MIMEsweeper For SMTP Unspecified PDF File Handlin...
BugTraq ID: 11874
Remote: Yes
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11874
Summary:
Clearswift MIMEsweeper For SMTP is reported prone to a remote denial of service vulnerability. The details of this vulnerability are unspecified, however it is reported that when the affected software performs format analysis on a specially crafted PDF file attachment the Security Service will crash.
A remote attacker may exploit this vulnerability to crash the Security Service on a remote Clearswift MIMEsweeper For SMTP installation.
46. Omni Group OmniWeb Browser Remote Window Hijacking Vulnerabi...
BugTraq ID: 11875
Remote: Yes
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11875
Summary:
OmniWeb is reported prone to a vulnerability that may allow a Web site to hijack the contents of a trusted window. This issue may allow a remote attacker to carry out phishing style attacks.
This issue arises as a user visits a malicious site and follows a link to a trusted site. Once the link to the trusted site is followed, the victim must open a pop up window from the trusted site that can be influenced by the attacker's site.
If successful, the contents of the target site's window can be spoofed resulting in phishing style attacks.
47. ICab Web Browser Remote Window Hijacking Vulnerability
BugTraq ID: 11876
Remote: Yes
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11876
Summary:
ICab Web Browser is reported prone to a vulnerability that may allow a Web site to hijack the contents of a trusted window. This issue may allow a remote attacker to carry out phishing style attacks.
This issue arises as a user visits a malicious site and follows a link to a trusted site. Once the link to the trusted site is followed, the victim must open a pop up window from the trusted site that can be influenced by the attacker's site.
If successful, the contents of the target site's window can be spoofed resulting in phishing style attacks.
48. OpenText FirstClass HTTP Daemon Search Function Unspecified ...
BugTraq ID: 11877
Remote: Yes
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11877
Summary:
OpenText FirstClass is reported prone to a remote unspecified denial of service vulnerability.
A remote attacker may exploit this vulnerability to deny service to legitimate users.
This BID will be updated, as further information in regards to this vulnerability is made available.
49. Microsoft Office SharePoint Portal Server Local Information ...
BugTraq ID: 11878
Remote: No
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11878
Summary:
Microsoft Office SharePoint Portal Server is reported prone to a local information disclosure weakness. The vulnerability presents itself when SharePoint Portal Server components are being installed by a user account that employs a password credential containing a prefixed '-' character.
Under these circumstances the SharePoint Portal Server component installation will fail and the password for the user account used to install the software will be logged to the following file:
'%WinDir%\temp\STSADM.log-setup_{date} {time}.log'.
A local attacker may peruse the aforementioned log files in the hopes that they contain the password of a target user.
50. PHP Gift Registry Multiple Cross-Site Scripting Vulnerabilit...
BugTraq ID: 11879
Remote: Yes
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11879
Summary:
The vendor has reported that PHP Gift Regisrty is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize user-supplied URI input.
These issues could permit a remote attacker to create a malicious URI link that includes hostile HTML and script code. If this link were to be followed, the hostile code may be rendered in the web browser of the victim user. This would occur in the security context of the affected web site and may allow for theft of cookie-based authentication credentials or other attacks.
These vulnerabilities have been reported in version 1.3.5 of the application. Other versions may also be affected.
51. Gamespy Software Development Kit CD-Key Validation Buffer Ov...
BugTraq ID: 11881
Remote: Yes
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11881
Summary:
It has been reported that the GameSpy SDK is prone to a buffer overflow vulnerability in its CD-key validation functionality. This issue is due to a failure of the SDK to properly check the length of user-supplied network data prior to copying it to a fixed-sized memory buffer.
Exploitation of this issue may allow attackers to execute arbitrary machine code in the context of the affected GameSpy developed game.
III. SECURITYFOCUS NEWS ARTICLES
--------------------------------
1. DirecTV hacker sentenced to seven years
By: Kevin Poulsen
A Canadian man arrested in the U.S. was allegedly responsible for putting 68,000 hacked smart cards on the street.
http://www.securityfocus.com/news/10103
2. Sprint sued over alleged vice hacks
By: Kevin Poulsen
A Las Vegas adult entertainment operator sues his local telephone company in federal court for $30 million, resurrecting a claim that phone hackers crippled his business.
http://www.securityfocus.com/news/10083
3. Berkeley Hack Sparks Legislative Backlash
By: Kevin Poulsen
An intrusion into a university research computer housing information on 1.4 million people leads to a proposed law that would cut researchers off from sensitive data. Opponents say important work would be hobbled in the process.
http://www.securityfocus.com/news/10053
4. Source: Hollywood to sue server operators behind BitTorrent,...
By: Alex Veiga, The Associated Press
http://www.securityfocus.com/news/10123
5. Gait advances in emerging biometrics
By: John Leyden, The Register
Retinal scans, finger printing or facial recognition get most of the publicity but researchers across the world are quietly labouring away at alternative types of biometrics.
http://www.securityfocus.com/news/10121
6. Tunable surfaces prevent Wi-Fi leaks
By: Jan Libbenga, The Register
Last year a man in Canada was arrested for downloading child pornography onto his laptop, but he used someone else's wireless access point to access the illegal material.
http://www.securityfocus.com/news/10120
IV. SECURITYFOCUS TOP 6 TOOLS
-----------------------------
1. tenshi 0.3.2
By: Andrea Barisani
Relevant URL: http://tenshi.gentoo.org/
Platforms: Perl (any system supporting perl)
Summary:
tenshi is a log monitoring program, designed to watch a log file for lines matching user defined regular expressions and report on the matches. The regular expressions are assigned to queues which have an alert interval and a list of mail recipients.
Queues can be set to send a notification as soon as there is a log line assigned to it, or to send periodic reports.
2. pasmal 1.5
By: James Meehan
Relevant URL: http://www.elitelabs.org/
Platforms: Linux
Summary:
pasmal 1.5 is a port knocking authentification system using simple or encrypted tcp/udp/icmp packets. pasmal can be used with iptables/ipchains (firewall purposes) or any other program (remote shell, reboot, etc)It is packaged with a php web admin, a command line client pasmal.client, start/stop rc.d scripts.pasmal 1.5 also feature an intrusion/attempts detection system due to its sniffers capabilities, running with syslogd and custom log files.
AppRecon is small java tool that tries to identify applications by sending appropriate discovery broadcast packets.
It currently finds;
- PcDUO
- SQL Server
- PCAnywhere
Todo
----
- Add more discovery plugins
4. Sherpa 0.1.8
By: Rick Crelia, rick (at) nbank (dot) net [email concealed]
Relevant URL: http://sherpa.lavamonkeys.com/
Platforms: Perl (any system supporting perl)
Summary:
Sherpa is a tool for configuring and then checking system security via the console. Written in perl, it allows an admin to maintain a custom database of file and directory permissions and ownership attributes as local needs dictate. Any changes from the prescribed layout will be detected each time Sherpa is run. Also, Sherpa does some basic system checks (world-writable files, .rhosts and hosts.equiv files, etc.) that help the busy admin keep on top of a system.
5. IDS Policy Manager v1.5
By: ActiveWorx
Relevant URL: http://www.activeworx.org
Platforms: Windows 2000, Windows NT, Windows XP
Summary:
IDS Policy Manager was designed to manage Snort IDS sensors in a distributed environment. This is done by having the ability to take the textconfiguration and rule files and allow you to modify them with an easy touse graphical interface. With the added ability to merge new rule sets,manage preprocessors, control output modules and scp rules to sensors, thistool makes managing snort easy for most security professionals.
6. PatchLink Update 6.01.78
By: PatchLink Corporation
Relevant URL: http://www.patchlink.com/products_services/plu_evaluationrequest.html
Platforms: AIX, DG-UX, Digital UNIX/Alpha, DOS, HP-UX, Java, Linux, MacOS, Net, NetBSD, Netware, OpenVMS, PalmOS, POSIX, SecureBSD, SINIX, Solaris, SunOS, True64 UN, True64 UNIX, Ultrix, UNICOS, UNIX, Unixware, Windows 2000, Windows 95/98, Windows CE, Windows NT, Windows XP
Summary:
With PATCHLINK UPDATE, patch management is the secure, proactive, and preventative process it should be. PATCHLINK UPDATE scans networks for security holes and closes them with the click of a mouse, no matter the operating system, the vendor applications, the mix, or the size of the environment. From 5K nodes to 20+K nodes, PATCHLINK UPDATE works quickly, accurately and safely to ensure desktops and servers are patched correctly and completely the first time around.
V. SECURITYJOBS LIST SUMMARY
----------------------------
1. [SJ-JOB] Security Product Marketing Manager, Sunnyva... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384271
2. [SJ-JOB] Director, Information Security, Austin, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384270
3. [SJ-JOB] CHECK Team Leader, Various, GB (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384269
4. [SJ-JOB] Security Engineer, new york, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384268
5. [SJ-JOB] Security Engineer, Washington, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384267
6. [SJ-JOB] Security Engineer, Walnut Creek, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384266
7. [SJ-JOB] Security Engineer, Atlanta, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384265
8. [SJ-JOB] Channel / Business Development, Oakland, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384264
9. [SJ-JOB] Sr. Security Analyst, Oklahoma City, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384263
10. [SJ-JOB] Manager, Information Security, Dubai, AE (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383961
11. [SJ-JOB] Auditor, Akron, US (Thread)
Relevant URL:
VI. INCIDENTS LIST SUMMARY
--------------------------
1. PHP injection attempt from 200.222.244.154 (Thread)
Relevant URL:
http://www.securityfocus.com/archive/75/383885
2. ftp warez server snake ? (Thread)
Relevant URL:
http://www.securityfocus.com/archive/75/383716
VII. VULN-DEV RESEARCH LIST SUMMARY
-----------------------------------
1. Exploiting network services question (Thread)
Relevant URL:
http://www.securityfocus.com/archive/82/384243
2. MS IE User's Authentication Details (userid/password... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/82/384190
3. Enemy of the State (breaking Stateful Inspection bas... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/82/384189
4. trusted solaris pen testing (Thread)
Relevant URL:
http://www.securityfocus.com/archive/82/383884
VIII. MICROSOFT FOCUS LIST SUMMARY
----------------------------------
1. Secondary Storage Device Policy (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/384405
2. iisadmpwd/UPN (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/384402
3. Group policy help needed!!! (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/384401
4. services running in windows domain (winXP clients) (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/384397
5. Modifying default behaviour of MS VPN client (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/383892
6. SecurityFocus Microsoft Newsletter #218 (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/383606
IX. SUN FOCUS LIST SUMMARY
--------------------------
1. Solaris Security Script (Thread)
Relevant URL:
http://www.securityfocus.com/archive/92/384244
X. LINUX FOCUS LIST SUMMARY
---------------------------
1. which distribution to choose (Thread)
Relevant URL:
http://www.securityfocus.com/archive/91/383874
XI. UNSUBSCRIBE INSTRUCTIONS
----------------------------
To unsubscribe send an e-mail message to sf-news-unsubscribe (at) securityfocus (dot) com [email concealed] from the subscribed address. The contents of the subject or message body do not matter. You will receive a confirmation request message to which you will have to answer. Alternatively you can also visit http://www.securityfocus.com/newsletters and unsubscribe via the website.
If your email address has changed email listadmin (at) securityfocus (dot) com [email concealed] and ask to be manually removed.
XII. SPONSOR INFORMATION
-----------------------
Need to know what's happening on YOUR network? Symantec DeepSight Analyzer
is a free service that gives you the ability to track and manage attacks.
Analyzer automatically correlates attacks from various Firewall and network
based Intrusion Detection Systems, giving you a comprehensive view of your
computer or general network. Sign up today!
------------------------------
Need to know what's happening on YOUR network? Symantec DeepSight Analyzer
is a free service that gives you the ability to track and manage attacks.
Analyzer automatically correlates attacks from various Firewall and network
based Intrusion Detection Systems, giving you a comprehensive view of your
computer or general network. Sign up today!
http://www.securityfocus.com/sponsor/Symantec_sf-news_041130
------------------------------------------------------------------------
I. FRONT AND CENTER
1. Online Extortion Works
2. WEP:Dead Again, Part 1
II. BUGTRAQ SUMMARY
1. IBM WebSphere Commerce Default User Information Disclosure V...
2. PAFileDB Error Message Path Disclosure Vulnerability
3. PAFileDB Password Hash Disclosure Vulnerability
4. ViewCVS Multiple Information Disclosure Vulnerabilities
5. Microsoft Windows 2000 Resource Kit W3Who.DLL Multiple Remot...
6. Ibex Software Remote Execute Remote Denial of Service Vulner...
7. Hosting Controller FilePath Parameter File Disclosure Vulner...
8. Mozilla/Netscape/Firefox Browsers JavaScript IFRAME Renderin...
9. Ansel Multiple Input Validation Vulnerabilities
10. Last 10 Posts Add-On Script For VBulletin SQL Injection Vuln...
11. Microsoft Internet Explorer FTP URI Arbitrary FTP Server Com...
12. KDE Konqueror FTP URI Arbitrary FTP Server Command Execution...
13. Novell Remote IMS/NIMS/NetMail Insecure Default Password Vul...
14. IMLib Multiple XPM Image Decoding Buffer Overflow Vulnerabil...
15. Adobe Version Cue Local Privilege Escalation Vulnerability
16. Microsoft Internet Explorer Sysimage Protocol Handler Local ...
17. Gentoo MirrorSelect Local Insecure File Creation Vulnerabili...
18. Headlight Software GetRight DUNZIP32.dll Remote Buffer Overf...
19. IMLib Multiple Remote Integer Overflow Vulnerabilities
20. Digital Illusions Multiple Games Remote Denial of Service Vu...
21. Blog Torrent BTDownload.PHP Cross-Site Scripting Vulnerabili...
22. Sun Solaris IN.RWHOD(1M) Daemon Remote Code Execution Vulner...
23. Linux Kernel AIO_Free_Ring Local Denial Of Service Vulnerabi...
24. MySQL MaxDB WAHTTP Server Remote Denial Of Service Vulnerabi...
25. MySQL MaxDB WebDav Handler Overwrite Header Remote Buffer Ov...
26. Linux Kernel 64 Bit ELF Header Local Denial Of Service Vulne...
27. Darryl Burgdorf WebLibs Directory Traversal Vulnerability
28. MD5 Message Digest Algorithm Hash Collision Weakness
29. Microsoft Internet Explorer Search Pane URI Obfuscation Vuln...
30. Netscape Remote Window Hijacking Vulnerability
31. KDE Konqueror Remote Window Hijacking Vulnerability
32. Mozilla Browser and Mozilla Firefox Remote Window Hijacking ...
33. Microsoft Internet Explorer Remote Window Hijacking Vulnerab...
34. Opera Web Browser Remote Window Hijacking Vulnerability
35. Apple Safari Remote Window Hijacking Vulnerability
36. Codestriker Repository Access Control Bypass Vulnerability
37. Kerio Personal Firewall Local Denial Of Service Vulnerabilit...
38. PHP Live! Unspecified Remote Configuration File Include Vuln...
39. KDE Plaintext Password Disclosure Vulnerability
40. Microsoft Windows Multiple Unspecified Vulnerabilities
41. F-Secure Policy Manager FSMSH.DLL CGI Application Installati...
42. Kerio WinRoute Firewall Multiple Unspecified Remote Vulnerab...
43. GNU WGet Multiple Remote Vulnerabilities
44. IlohaMail Unspecified Vulnerability
45. Clearswift MIMEsweeper For SMTP Unspecified PDF File Handlin...
46. Omni Group OmniWeb Browser Remote Window Hijacking Vulnerabi...
47. ICab Web Browser Remote Window Hijacking Vulnerability
48. OpenText FirstClass HTTP Daemon Search Function Unspecified ...
49. Microsoft Office SharePoint Portal Server Local Information ...
50. PHP Gift Registry Multiple Cross-Site Scripting Vulnerabilit...
51. Gamespy Software Development Kit CD-Key Validation Buffer Ov...
III. SECURITYFOCUS NEWS ARTICLES
1. DirecTV hacker sentenced to seven years
2. Sprint sued over alleged vice hacks
3. Berkeley Hack Sparks Legislative Backlash
4. Source: Hollywood to sue server operators behind BitTorrent,...
5. Gait advances in emerging biometrics
6. Tunable surfaces prevent Wi-Fi leaks
IV. SECURITYFOCUS TOP 6 TOOLS
1. tenshi 0.3.2
2. pasmal 1.5
3. AppRecon 1.0.0
4. Sherpa 0.1.8
5. IDS Policy Manager v1.5
6. PatchLink Update 6.01.78
V. SECURITYJOBS LIST SUMMARY
1. [SJ-JOB] Security Product Marketing Manager, Sunnyva... (Thread)
2. [SJ-JOB] Director, Information Security, Austin, US (Thread)
3. [SJ-JOB] CHECK Team Leader, Various, GB (Thread)
4. [SJ-JOB] Security Engineer, new york, US (Thread)
5. [SJ-JOB] Security Engineer, Washington, US (Thread)
6. [SJ-JOB] Security Engineer, Walnut Creek, US (Thread)
7. [SJ-JOB] Security Engineer, Atlanta, US (Thread)
8. [SJ-JOB] Channel / Business Development, Oakland, US (Thread)
9. [SJ-JOB] Sr. Security Analyst, Oklahoma City, US (Thread)
10. [SJ-JOB] Manager, Information Security, Dubai, AE (Thread)
11. [SJ-JOB] Auditor, Akron, US (Thread)
12. [SJ-JOB] Security Consultant, Munich or Frankfurt, D... (Thread)
13. [SJ-JOB] Management, Princeton, US (Thread)
14. [SJ-JOB] Quality Assurance, Newport News, US (Thread)
15. [SJ-JOB] Security Engineer, Santa Ana, US (Thread)
16. [SJ-JOB] Sr. Security Engineer, Mannheim, DE (Thread)
17. [SJ-JOB] Sr. Security Engineer, Maryland, US (Thread)
18. [SJ-JOB] Sales Engineer, Boston, US (Thread)
19. [SJ-JOB] Certification & Accreditation Engineer, Was... (Thread)
20. [SJ-JOB] Security System Administrator, Dulles Techn... (Thread)
21. [SJ-JOB] Sales Representative, Chicago, US (Thread)
22. [SJ-JOB] Developer, Dulles Technology Corner, US (Thread)
23. [SJ-JOB] Information Assurance Engineer, Dulles Tech... (Thread)
24. [SJ-JOB] Security Engineer, Dulles Technology Corrid... (Thread)
25. [SJ-JOB] Security Engineer, Richmond, US (Thread)
26. [SJ-JOB] Sales Representative, Atlanta, US (Thread)
27. [SJ-JOB] Security Director, Amsterdam, NL (Thread)
28. [SJ-JOB] Technical Support Engineer, Dallas, US (Thread)
29. [SJ-JOB] Security Researcher, San Francisco, US (Thread)
30. [SJ-JOB] Security Engineer, San Francisco, US (Thread)
31. [SJ-JOB] Security Researcher, Santa Clara, US (Thread)
32. [SJ-JOB] Application Security Engineer, Redwood city... (Thread)
33. [SJ-JOB] Chief Scientist, San Francisco, US (Thread)
34. [SJ-JOB] Security Product Marketing Manager, Redwood... (Thread)
VI. INCIDENTS LIST SUMMARY
1. PHP injection attempt from 200.222.244.154 (Thread)
2. ftp warez server snake ? (Thread)
VII. VULN-DEV RESEARCH LIST SUMMARY
1. Exploiting network services question (Thread)
2. MS IE User's Authentication Details (userid/password... (Thread)
3. Enemy of the State (breaking Stateful Inspection bas... (Thread)
4. trusted solaris pen testing (Thread)
VIII. MICROSOFT FOCUS LIST SUMMARY
1. Secondary Storage Device Policy (Thread)
2. iisadmpwd/UPN (Thread)
3. Group policy help needed!!! (Thread)
4. services running in windows domain (winXP clients) (Thread)
5. Modifying default behaviour of MS VPN client (Thread)
6. SecurityFocus Microsoft Newsletter #218 (Thread)
IX. SUN FOCUS LIST SUMMARY
1. Solaris Security Script (Thread)
X. LINUX FOCUS LIST SUMMARY
1. which distribution to choose (Thread)
XI. UNSUBSCRIBE INSTRUCTIONS
XII. SPONSOR INFORMATION
I. FRONT AND CENTER
-------------------
1. Online Extortion Works
By Scott Granneman
Online extortion is quietly affecting thousands of businesses, for a very
simple reason: it works. The big question then becomes, how will you and
your company decide to respond?
http://www.securityfocus.com/columnists/283
2. WEP:Dead Again, Part 1
By Michael Ossmann
This article is the first of a two-part series that looks at the new
generation of WEP cracking tools for WiFi networks, which offer
dramatically faster speeds for penetration testers over the previous
generation of tools. In many cases, a WEP key can be determined in seconds
or minutes.
http://www.securityfocus.com/infocus/1814
II. BUGTRAQ SUMMARY
-------------------
1. IBM WebSphere Commerce Default User Information Disclosure V...
BugTraq ID: 11816
Remote: Yes
Date Published: Dec 03 2004
Relevant URL: http://www.securityfocus.com/bid/11816
Summary:
It is reported that WebSphere Commerce is susceptible to an information disclosure vulnerability.
This vulnerability may result in potentially sensitive customer data being available to the default user, possibly allowing unintended users to gain access to it.
This vulnerability is reported to affect versions 5.1, 5.4, 5.5, and 5.6.
2. PAFileDB Error Message Path Disclosure Vulnerability
BugTraq ID: 11817
Remote: Yes
Date Published: Dec 04 2004
Relevant URL: http://www.securityfocus.com/bid/11817
Summary:
paFileDB is prone to an installation path disclosure. If invalid requests are made to certain scripts, the installation path is included in the returned error message.
3. PAFileDB Password Hash Disclosure Vulnerability
BugTraq ID: 11818
Remote: Yes
Date Published: Dec 04 2004
Relevant URL: http://www.securityfocus.com/bid/11818
Summary:
paFileDB reportedly allows any users to view the password hash of other accounts, including the administrator. This issue only exists if session authentication is used rather than cookie authentication.
4. ViewCVS Multiple Information Disclosure Vulnerabilities
BugTraq ID: 11819
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11819
Summary:
ViewCVS is reportedly prone to multiple information disclosure vulnerabilities when repositories are exported to tar archives.
Reportedly, certain configuration directives are not properly honored when creating tar archives for users to download. This allows remote attackers to gain access to potentially sensitive files located in restricted directories. The contents of these files may aid them in further attacks.
This issue is only exploitable if the package is configured to allow tar archive generation. This is enabled by setting the 'tar_archive' configuration directive to '1'.
5. Microsoft Windows 2000 Resource Kit W3Who.DLL Multiple Remot...
BugTraq ID: 11820
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11820
Summary:
The Microsoft Windows 2000 Resource Kit supports many utilities designed for diagnostic administration of the Windows platform. The w3who.dll library is a utility designed to provide auditing of server configuration remotely through a Web browser.
Multiple remote vulnerabilities affect the w3who.dll library of Microsoft's Windows Resource Kit. These issues are due to a failure of the library to properly sanitize and perform proper bounds checking on user-supplied input.
The first two issues are cross-site scripting vulnerabilities. The final issue is a buffer overflow vulnerability.
These issues may be exploited to conduct cross-site scripting attacks and execute arbitrary code with the privileges of the affected Web server. This may facilitate theft of cookie based authentication credentials, unauthorized access, privileges escalation other attacks.
6. Ibex Software Remote Execute Remote Denial of Service Vulner...
BugTraq ID: 11821
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11821
Summary:
Remote Execute is reported prone to a remote denial of service vulnerability. It is reported that an attacker can crash the application by establishing approximately seven connections to it.
Remote Execute 2.30 is vulnerable to this issue.
7. Hosting Controller FilePath Parameter File Disclosure Vulner...
BugTraq ID: 11822
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11822
Summary:
Multiple scripts of Hosting Controller are prone to an issue which may allow a remote attacker to view the contents of arbitrary files and directories on the local drive.
It is reported that a successful attack allows an attacker to view any file or directory on the affected computer through a 'FilePath' parameter.
Hosting Controller version 6.1 Hotfix 1.4 and prior may be affected by this issue.
8. Mozilla/Netscape/Firefox Browsers JavaScript IFRAME Renderin...
BugTraq ID: 11823
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11823
Summary:
Mozilla/Netscape and Firefox browsers are reported prone a remote denial of service vulnerability. It is reported that the affected browsers will crash as a result of a NULL pointer dereference when a JavaScript function attempts to print an IFRAME that is embedded in the page.
9. Ansel Multiple Input Validation Vulnerabilities
BugTraq ID: 11824
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11824
Summary:
It is reported that Ansel is susceptible to cross-site scripting and SQL injection vulnerabilities.
The cross-site scripting issue is present in the 'album name' parameter of the Ansel application. An attacker can exploit this issue by creating a malicious link containing HTML and script code and send this link to a vulnerable user.
An SQL injection issue exists in the application as well. This issue affects the 'image' parameter of the Ansel application. Due to this, attackers may supply malicious parameters to manipulate the structure and logic of SQL queries.
10. Last 10 Posts Add-On Script For VBulletin SQL Injection Vuln...
BugTraq ID: 11825
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11825
Summary:
It is reported that the "Last 10 Posts" script for vBulletin is susceptible to an SQL injection vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied input prior to utilizing it in an SQL query.
An attacker can exploit this issue to manipulate and inject SQL queries into the underlying database. It may be possible to leverage this issue to steal database contents including user credentials as well as to attack the underlying database.
Version 2.0.1 is reported susceptible to this vulnerability. Other versions may also be affected.
11. Microsoft Internet Explorer FTP URI Arbitrary FTP Server Com...
BugTraq ID: 11826
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11826
Summary:
Microsoft Internet Explorer is reported prone to an arbitrary FTP server command execution vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input prior to utilizing it to execute FTP commands on remote servers.
This vulnerability allows attackers to embed arbitrary FTP server commands in malicious URIs. Upon following this malicious URI, the victim users Web browser will reportedly connect to the attacker-specified FTP server, and the malicious commands will be sent to the server. This may allow malicious files to be downloaded to the victims computer without their knowledge. Other attacks are also likely possible.
12. KDE Konqueror FTP URI Arbitrary FTP Server Command Execution...
BugTraq ID: 11827
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11827
Summary:
KDE Konqueror is reported prone to an arbitrary FTP server command execution vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input prior to utilizing it to execute FTP commands on remote servers.
This vulnerability allows attackers to embed arbitrary FTP server commands in malicious URIs. Upon following this malicious URI, the victim users Web browser will reportedly connect to the attacker-specified FTP server, and the malicious commands will be sent to the server. This may allow malicious files to be downloaded to the victims computer without their knowledge. Other attacks are also likely possible.
13. Novell Remote IMS/NIMS/NetMail Insecure Default Password Vul...
BugTraq ID: 11828
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11828
Summary:
Novell IMS/NIMS/NetMail is reported prone to an insecure default password vulnerability.
Reports indicate that a default authentication credential is set during the initial installation of Novell IMS/NIMS/NetMail.
A remote attacker with knowledge of the default credentials that are set during the installation of Novell IMS/NIMS/NetMail may exploit this vulnerability to gain read/write access to a target mail store.
14. IMLib Multiple XPM Image Decoding Buffer Overflow Vulnerabil...
BugTraq ID: 11830
Remote: Yes
Date Published: Dec 06 2004
Relevant URL: http://www.securityfocus.com/bid/11830
Summary:
Multiple buffer overflow vulnerabilities are reported to exist in the IMLib library. These issues may be triggered when handling malformed XPM images.
These vulnerabilities could be exploited by a remote attacker to cause a denial of service in applications that use the vulnerable library to render images. It is also reported that these vulnerabilities may be exploited to execute code arbitrary code.
These issues may be related to BID 11084. This BID will be updated as further information is disclosed.
15. Adobe Version Cue Local Privilege Escalation Vulnerability
BugTraq ID: 11833
Remote: No
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11833
Summary:
A local privilege escalation vulnerability reportedly affects Adobe Version Cue. This issue is due to a failure of the application to validate its environment, allowing an attacker to run arbitrary script code.
It should be noted that this issue reportedly only affects Adobe Version Cue on Mac OS X platforms.
An attacker may exploit this issue to have arbitrary scripts run with superuser privileges. This will facilitate privileges escalation.
16. Microsoft Internet Explorer Sysimage Protocol Handler Local ...
BugTraq ID: 11834
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11834
Summary:
Microsoft Internet Explorer is reported prone to a vulnerability that may allow a remote site to detect files on the local computer.
A remote attacker can exploit this issue through the ''sysimage://' protocol handler to detect the existence of a file on the local computer of the Web client viewing a malicious page. This could lead to a disclosure of sensitive information to remote attackers.
17. Gentoo MirrorSelect Local Insecure File Creation Vulnerabili...
BugTraq ID: 11835
Remote: No
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11835
Summary:
A local insecure file creation vulnerability affects Gentoo mirrorselect. This issue is likely due to a design error that causes the application to fail to verify the existence of a file before writing to it.
An attacker may leverage this issue to overwrite arbitrary files with the privileges of an unsuspecting user that activates the vulnerable utility.
18. Headlight Software GetRight DUNZIP32.dll Remote Buffer Overf...
BugTraq ID: 11836
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11836
Summary:
GetRight is reported prone to a remote buffer overflow vulnerability when handling specially crafted skin files. This issue presents itself due to insufficient boundary checks performed by the application. It is reported that this vulnerability occurs in the DUNZIP32.dll compression library.
It is conjectured that this issue results in a denial of service condition and may be leveraged to execute arbitrary code on a vulnerable computer.
19. IMLib Multiple Remote Integer Overflow Vulnerabilities
BugTraq ID: 11837
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11837
Summary:
Multiple remote integer overflow vulnerabilities affect the IMLib graphics library. These issues are due to a failure of the application to properly handle the management of numeric data found in image files.
An attacker may leverage these issues to gain local access to a computer running an application that implements the vulnerable library. This issue may also be used to facilitate privilege escalation.
20. Digital Illusions Multiple Games Remote Denial of Service Vu...
BugTraq ID: 11838
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11838
Summary:
Battlefield 1942 and Battlefield Vietnam are reported prone to a remote denial of service vulnerability. This issue presents itself in the game clients when handling malformed data from a malicious server.
A remote attacker can cause a denial of service condition in multiple clients by sending a broadcast reply.
This issue affects battlefield 1942 versions 1.6.19 and prior and Battlefield Vietnam versions 1.2 and prior.
21. Blog Torrent BTDownload.PHP Cross-Site Scripting Vulnerabili...
BugTraq ID: 11839
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11839
Summary:
It is reported that Blog Torrent is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input.
This issue could permit a remote attacker to create a malicious URI link that includes hostile HTML and script code. If this link were to be followed, the hostile code may be rendered in the web browser of the victim user. This would occur in the security context of the affected web site and may allow for theft of cookie-based authentication credentials or other attacks.
22. Sun Solaris IN.RWHOD(1M) Daemon Remote Code Execution Vulner...
BugTraq ID: 11840
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11840
Summary:
Sun Solaris in.rwhod(1M) daemon is reported prone to an unspecified vulnerability that may allow for remote code execution. The vendor disclosed this issue, however, no further details are currently available.
If successfully exploited, this vulnerability can result in an attacker gaining superuser privileges on a vulnerable computer.
This BID will be updated when more information becomes available.
23. Linux Kernel AIO_Free_Ring Local Denial Of Service Vulnerabi...
BugTraq ID: 11842
Remote: No
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11842
Summary:
The Linux Kernel is reported prone to a local denial of service vulnerability. It is reported that the vulnerability exists due to a failure by 'aio_free_ring' to handle exceptional conditions.
This vulnerability requires that mmap() is employed to map the maximum amount of process memory that is possible, before the vulnerability can be triggered.
It is reported that when handing 'io_setup' syscalls that are passed large values, the Linux kernel 'aio_setup_ring' will attempt to allocate a structure of page pointers.
When a subsequent 'aio_setup_ring' mmap() call fails, 'aio_free_ring' attempts to clean up the page pointers, it will crash during this procedure triggering a kernel panic.
24. MySQL MaxDB WAHTTP Server Remote Denial Of Service Vulnerabi...
BugTraq ID: 11843
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11843
Summary:
A remote denial of service vulnerability has been reported to affect the MySQL MaxDB WAHTTP server. This issue is due to a failure of the server to handle malformed requests.
An attacker may leverage this issue to cause the affected Web server to crash, denying service to legitimate users.
25. MySQL MaxDB WebDav Handler Overwrite Header Remote Buffer Ov...
BugTraq ID: 11844
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11844
Summary:
MySQL MaxDB WebDav Handler is reported prone to a remote buffer overflow vulnerability. This issue results from insufficient boundary checks performed by the application when handling malformed user-supplied data. It is possible that an attacker may leverage this issue to execute arbitrary code on a vulnerable computer.
This issue arises when the WebDav handler processes an excessive 'Overwrite' header. MaxDB versions 7.5.00.18 and prior are affected by this vulnerability.
26. Linux Kernel 64 Bit ELF Header Local Denial Of Service Vulne...
BugTraq ID: 11846
Remote: No
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11846
Summary:
A local denial of service vulnerability affects the ELF header processing functionality on 64 bit systems of the Linux kernel. This issue is due to a failure of the affected kernel to properly handle malformed ELF headers.
A local attacker may leverage this issue to cause a computer running the affected kernel to crash, denying service to legitimate users.
27. Darryl Burgdorf WebLibs Directory Traversal Vulnerability
BugTraq ID: 11848
Remote: Yes
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11848
Summary:
It is reported that WebLibs is prone to a remote directory traversal vulnerability. This issue is due to a failure of the application to properly filter user-supplied input.
WebLibs 1.0 is affected by this vulnerability.
28. MD5 Message Digest Algorithm Hash Collision Weakness
BugTraq ID: 11849
Remote: No
Date Published: Dec 07 2004
Relevant URL: http://www.securityfocus.com/bid/11849
Summary:
The MD5 algorithm is reported prone to a hash collision weakness. This weakness reportedly allows attackers to create multiple, differing input sources that, when the MD5 algorithm is used, result in the same output fingerprint.
It has been demonstrated that attackers can create multiple input sources to MD5 that result in the same output fingerprint. Reportedly, at this time, attackers cannot generate arbitrary collisions. At this time, it is also reported that only a very limited number of individual bits in an input message may be altered while maintaining an identical output fingerprint.
This weakness may allow attackers to create two messages, or executable binaries such that their MD5 fingerprints are identical. One of these messages or binaries would be innocent, and the other malicious. The innocent message or binary may be digitally signed, and then later would have the malicious file substituted into its place. This attack may allow malicious code to be executed, or non-repudiation properties of messages to be broken.
At this time, preimage attacks are not reportedly possible.
It is recommended that cryptosystems that utilize the MD5 algorithm should be reviewed, and the measures should be taken to protect against this weakness. Other hashing algorithms may possibly be utilized in replacement to, or in conjunction with MD5 to decrease the likelihood of a successful attack.
29. Microsoft Internet Explorer Search Pane URI Obfuscation Vuln...
BugTraq ID: 11851
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11851
Summary:
A remote URI obfuscation vulnerability has been found in Internet Explorer's search pane functionality. This issue is due to a failure of the application to present the URI address of HTML and script code loaded into the search pane.
This issue may be leveraged by an attacker to display misleading information in the address bar of the browser to an unsuspecting user while loading a third party Web site in the search pane. This may allow an attacker to present web pages to users that seem to originate from a trusted location. This may facilitate phishing style attacks; other attacks may also be possible.
30. Netscape Remote Window Hijacking Vulnerability
BugTraq ID: 11852
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11852
Summary:
Netscape is reported prone to a vulnerability that may allow a Web site to hijack the contents of a trusted window. This issue may allow a remote attacker to carry out phishing style attacks.
This issue arises as a user visits a malicious site and follows a link to a trusted site. Once the link to the trusted site is followed, the victim must open a pop up window from the trusted site that can be influenced by the attacker's site.
If successful, the contents of the target site's window can be spoofed resulting in phishing style attacks.
31. KDE Konqueror Remote Window Hijacking Vulnerability
BugTraq ID: 11853
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11853
Summary:
Konqueror is reported prone to a vulnerability that may allow a Web site to hijack the contents of a trusted window. This issue may allow a remote attacker to carry out phishing style attacks.
This issue arises as a user visits a malicious site and follows a link to a trusted site. Once the link to the trusted site is followed, the victim must open a pop up window from the trusted site that can be influenced by the attacker's site.
If successful, the contents of the target site's window can be spoofed resulting in phishing style attacks.
Konqueror 3.2.2-6 is reported vulnerable to this issue, however, it is possible that other versions are affected as well.
32. Mozilla Browser and Mozilla Firefox Remote Window Hijacking ...
BugTraq ID: 11854
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11854
Summary:
Mozilla Browser and Mozilla Firefox are reported prone to a vulnerability that may allow a Web site to hijack the contents of a trusted window. This issue may allow a remote attacker to carry out phishing style attacks.
This issue arises as a user visits a malicious site and follows a link to a trusted site. Once the link to the trusted site is followed, the victim must open a pop up window from the trusted site that can be influenced by the attacker's site.
If successful, the contents of the target site's window can be spoofed resulting in phishing style attacks.
33. Microsoft Internet Explorer Remote Window Hijacking Vulnerab...
BugTraq ID: 11855
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11855
Summary:
Microsoft Internet Explorer is reported prone to a vulnerability that may allow a Web site to hijack the contents of a trusted window. This issue may allow a remote attacker to carry out phishing style attacks.
This issue arises as a user visits a malicious site and follows a link to a trusted site. Once the link to the trusted site is followed, the victim must open a pop up window from the trusted site that can be influenced by the attacker's site.
If successful, the contents of the target site's window can be spoofed resulting in phishing style attacks.
34. Opera Web Browser Remote Window Hijacking Vulnerability
BugTraq ID: 11856
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11856
Summary:
Opera Web Browser is reported prone to a vulnerability that may allow a Web site to hijack the contents of a trusted window. This issue may allow a remote attacker to carry out phishing style attacks.
This issue arises as a user visits a malicious site and follows a link to a trusted site. Once the link to the trusted site is followed, the victim must open a pop up window from the trusted site that can be influenced by the attacker's site.
If successful, the contents of the target site's window can be spoofed resulting in phishing style attacks.
Opera Web Browser 7.54 is reported vulnerable to this issue, however, it is possible that other versions are affected as well.
35. Apple Safari Remote Window Hijacking Vulnerability
BugTraq ID: 11857
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11857
Summary:
Apple Safari is reported prone to a vulnerability that may allow a Web site to hijack the contents of a trusted window. This issue may allow a remote attacker to carry out phishing style attacks.
This issue arises as a user visits a malicious site and follows a link to a trusted site. Once the link to the trusted site is followed, the victim must open a pop up window from the trusted site that can be influenced by the attacker's site.
If successful, the contents of the target site's window can be spoofed resulting in phishing style attacks.
36. Codestriker Repository Access Control Bypass Vulnerability
BugTraq ID: 11858
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11858
Summary:
It is reported that a vulnerability exists in the Codestriker repository where the repository is not checked against a configured list. A remote attacker may leverage this issue to invoke any repository request and this request will be honored by Codestriker regardless of access controls.
This vulnerability is reported to affect Codestriker up to and including version 1.8.4.
37. Kerio Personal Firewall Local Denial Of Service Vulnerabilit...
BugTraq ID: 11859
Remote: No
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11859
Summary:
It is reported that the Kerio Personal Firewall (KPF) driver does not sufficiently sanitize API parameters that are received from API's that are hooked by KPF. When the KPF API hook handles certain parameter data it will fail. Reports indicate that this exception is not expected and as a result, the Windows kernel crashes triggering a system wide denial of service.
A local attacker may exploit this vulnerability to deny service to legitimate users.
38. PHP Live! Unspecified Remote Configuration File Include Vuln...
BugTraq ID: 11863
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11863
Summary:
PHP Live! is reported prone to an unspecified vulnerability. It is reported that the vulnerability may be exploited to include arbitrary directories and configuration files into a target installation.
It is conjectured that a remote attacker may exploit this vulnerability to load arbitrary configuration files, this may result in the compromise of the PHP Live site or the underlying computer.
PHP Live! up to and including version 2.8.1 are reported prone to this vulnerability.
39. KDE Plaintext Password Disclosure Vulnerability
BugTraq ID: 11866
Remote: No
Date Published: Dec 09 2004
Relevant URL: http://www.securityfocus.com/bid/11866
Summary:
KDE is reported prone to a plaintext password disclosure vulnerability. This issue presents itself when a link to a remote file is created by various KDE applications including Konqueror Web browser. The URI may contain authentication credentials to access the remote resource such as a Samba share.
An attacker can disclose these credentials by accessing the potentially world readable link reference file created by KDE.
40. Microsoft Windows Multiple Unspecified Vulnerabilities
BugTraq ID: 11867
Remote: Unknown
Date Published: Dec 09 2004
Relevant URL: http://www.securityfocus.com/bid/11867
Summary:
Microsoft has released advanced notification that they will be releasing five security bulletins for Windows on December 14th, 2004.
No further information regarding the vulnerabilities addressed by these security bulletins has been released at this time.
41. F-Secure Policy Manager FSMSH.DLL CGI Application Installati...
BugTraq ID: 11869
Remote: Yes
Date Published: Dec 09 2004
Relevant URL: http://www.securityfocus.com/bid/11869
Summary:
F-Secure Policy Manager includes a CGI application named 'fsmsh.dll'. By supplying unexpected input as an argument to the 'fsmsh.dll' application the vulnerable software will return an error message that includes the installation path of the software.
42. Kerio WinRoute Firewall Multiple Unspecified Remote Vulnerab...
BugTraq ID: 11870
Remote: Yes
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11870
Summary:
Multiple unspecified remote vulnerabilities reportedly affect Kerio's WinRoute Firewall. These issues are likely due to design errors and a failure or the application to properly handle malformed network data, although this is not verified.
The first issue is a remote denial of service that may cause the affected computer to crash or hang. The second issue is a DNS cache poisoning vulnerability. The final issue is an information disclosure vulnerability.
An attacker may exploit these issues to gain access to otherwise restricted information and manipulate the DNS cache of the affected firewall, potentially facilitating further attacks against the affected network. Also an attacker may leverage these issues to cause the affected computer to crash or hang, facilitating a denial of service condition.
43. GNU WGet Multiple Remote Vulnerabilities
BugTraq ID: 11871
Remote: Yes
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11871
Summary:
Mutliple remote vulnerabilities reported affects GNU wget. These issues are due to a failure of the application to properly sanitize user-supplied input and to properly validate the existence of files prior to writing to them..
The first issue is a potential directory traversal issue. The second issue is an arbitrary file overwriting vulnerability. The final issue is weakness caused by a failure of the application to filter potentially malicious characters from server-supplied input.
These issues may be exploited by a malicious server to arbitrarily overwrite files in the current directory and potentially write outside of the current directory. This may facilitate file corruption, denial of service and further attacks against the affected computer. Any file overwriting would take place with the privileges of the user that activates the vulnerable application.
44. IlohaMail Unspecified Vulnerability
BugTraq ID: 11872
Remote: Yes
Date Published: Dec 08 2004
Relevant URL: http://www.securityfocus.com/bid/11872
Summary:
IlohaMail is reported prone to an unspecified vulnerability. The cause and impact of this issue is currently unknown.
Due to the nature of the software, this issue is likely remotely exploitable. It is conjectured that the issue could be exploited to compromise the Web application.
IlohaMail versions 0.8.13 and prior are reported vulnerable to this issue.
This BID will be updated if further information is made available.
45. Clearswift MIMEsweeper For SMTP Unspecified PDF File Handlin...
BugTraq ID: 11874
Remote: Yes
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11874
Summary:
Clearswift MIMEsweeper For SMTP is reported prone to a remote denial of service vulnerability. The details of this vulnerability are unspecified, however it is reported that when the affected software performs format analysis on a specially crafted PDF file attachment the Security Service will crash.
A remote attacker may exploit this vulnerability to crash the Security Service on a remote Clearswift MIMEsweeper For SMTP installation.
46. Omni Group OmniWeb Browser Remote Window Hijacking Vulnerabi...
BugTraq ID: 11875
Remote: Yes
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11875
Summary:
OmniWeb is reported prone to a vulnerability that may allow a Web site to hijack the contents of a trusted window. This issue may allow a remote attacker to carry out phishing style attacks.
This issue arises as a user visits a malicious site and follows a link to a trusted site. Once the link to the trusted site is followed, the victim must open a pop up window from the trusted site that can be influenced by the attacker's site.
If successful, the contents of the target site's window can be spoofed resulting in phishing style attacks.
47. ICab Web Browser Remote Window Hijacking Vulnerability
BugTraq ID: 11876
Remote: Yes
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11876
Summary:
ICab Web Browser is reported prone to a vulnerability that may allow a Web site to hijack the contents of a trusted window. This issue may allow a remote attacker to carry out phishing style attacks.
This issue arises as a user visits a malicious site and follows a link to a trusted site. Once the link to the trusted site is followed, the victim must open a pop up window from the trusted site that can be influenced by the attacker's site.
If successful, the contents of the target site's window can be spoofed resulting in phishing style attacks.
48. OpenText FirstClass HTTP Daemon Search Function Unspecified ...
BugTraq ID: 11877
Remote: Yes
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11877
Summary:
OpenText FirstClass is reported prone to a remote unspecified denial of service vulnerability.
A remote attacker may exploit this vulnerability to deny service to legitimate users.
This BID will be updated, as further information in regards to this vulnerability is made available.
49. Microsoft Office SharePoint Portal Server Local Information ...
BugTraq ID: 11878
Remote: No
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11878
Summary:
Microsoft Office SharePoint Portal Server is reported prone to a local information disclosure weakness. The vulnerability presents itself when SharePoint Portal Server components are being installed by a user account that employs a password credential containing a prefixed '-' character.
Under these circumstances the SharePoint Portal Server component installation will fail and the password for the user account used to install the software will be logged to the following file:
'%WinDir%\temp\STSADM.log-setup_{date} {time}.log'.
A local attacker may peruse the aforementioned log files in the hopes that they contain the password of a target user.
50. PHP Gift Registry Multiple Cross-Site Scripting Vulnerabilit...
BugTraq ID: 11879
Remote: Yes
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11879
Summary:
The vendor has reported that PHP Gift Regisrty is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize user-supplied URI input.
These issues could permit a remote attacker to create a malicious URI link that includes hostile HTML and script code. If this link were to be followed, the hostile code may be rendered in the web browser of the victim user. This would occur in the security context of the affected web site and may allow for theft of cookie-based authentication credentials or other attacks.
These vulnerabilities have been reported in version 1.3.5 of the application. Other versions may also be affected.
51. Gamespy Software Development Kit CD-Key Validation Buffer Ov...
BugTraq ID: 11881
Remote: Yes
Date Published: Dec 10 2004
Relevant URL: http://www.securityfocus.com/bid/11881
Summary:
It has been reported that the GameSpy SDK is prone to a buffer overflow vulnerability in its CD-key validation functionality. This issue is due to a failure of the SDK to properly check the length of user-supplied network data prior to copying it to a fixed-sized memory buffer.
Exploitation of this issue may allow attackers to execute arbitrary machine code in the context of the affected GameSpy developed game.
III. SECURITYFOCUS NEWS ARTICLES
--------------------------------
1. DirecTV hacker sentenced to seven years
By: Kevin Poulsen
A Canadian man arrested in the U.S. was allegedly responsible for putting 68,000 hacked smart cards on the street.
http://www.securityfocus.com/news/10103
2. Sprint sued over alleged vice hacks
By: Kevin Poulsen
A Las Vegas adult entertainment operator sues his local telephone company in federal court for $30 million, resurrecting a claim that phone hackers crippled his business.
http://www.securityfocus.com/news/10083
3. Berkeley Hack Sparks Legislative Backlash
By: Kevin Poulsen
An intrusion into a university research computer housing information on 1.4 million people leads to a proposed law that would cut researchers off from sensitive data. Opponents say important work would be hobbled in the process.
http://www.securityfocus.com/news/10053
4. Source: Hollywood to sue server operators behind BitTorrent,...
By: Alex Veiga, The Associated Press
http://www.securityfocus.com/news/10123
5. Gait advances in emerging biometrics
By: John Leyden, The Register
Retinal scans, finger printing or facial recognition get most of the publicity but researchers across the world are quietly labouring away at alternative types of biometrics.
http://www.securityfocus.com/news/10121
6. Tunable surfaces prevent Wi-Fi leaks
By: Jan Libbenga, The Register
Last year a man in Canada was arrested for downloading child pornography onto his laptop, but he used someone else's wireless access point to access the illegal material.
http://www.securityfocus.com/news/10120
IV. SECURITYFOCUS TOP 6 TOOLS
-----------------------------
1. tenshi 0.3.2
By: Andrea Barisani
Relevant URL: http://tenshi.gentoo.org/
Platforms: Perl (any system supporting perl)
Summary:
tenshi is a log monitoring program, designed to watch a log file for lines matching user defined regular expressions and report on the matches. The regular expressions are assigned to queues which have an alert interval and a list of mail recipients.
Queues can be set to send a notification as soon as there is a log line assigned to it, or to send periodic reports.
2. pasmal 1.5
By: James Meehan
Relevant URL: http://www.elitelabs.org/
Platforms: Linux
Summary:
pasmal 1.5 is a port knocking authentification system using simple or encrypted tcp/udp/icmp packets. pasmal can be used with iptables/ipchains (firewall purposes) or any other program (remote shell, reboot, etc)It is packaged with a php web admin, a command line client pasmal.client, start/stop rc.d scripts.pasmal 1.5 also feature an intrusion/attempts detection system due to its sniffers capabilities, running with syslogd and custom log files.
3. AppRecon 1.0.0
By: Patrik Karlsson
Relevant URL: http://www.cqure.net/tools.jsp?id=21
Platforms: Java
Summary:
AppRecon is small java tool that tries to identify applications by sending appropriate discovery broadcast packets.
It currently finds;
- PcDUO
- SQL Server
- PCAnywhere
Todo
----
- Add more discovery plugins
4. Sherpa 0.1.8
By: Rick Crelia, rick (at) nbank (dot) net [email concealed]
Relevant URL: http://sherpa.lavamonkeys.com/
Platforms: Perl (any system supporting perl)
Summary:
Sherpa is a tool for configuring and then checking system security via the console. Written in perl, it allows an admin to maintain a custom database of file and directory permissions and ownership attributes as local needs dictate. Any changes from the prescribed layout will be detected each time Sherpa is run. Also, Sherpa does some basic system checks (world-writable files, .rhosts and hosts.equiv files, etc.) that help the busy admin keep on top of a system.
5. IDS Policy Manager v1.5
By: ActiveWorx
Relevant URL: http://www.activeworx.org
Platforms: Windows 2000, Windows NT, Windows XP
Summary:
IDS Policy Manager was designed to manage Snort IDS sensors in a distributed environment. This is done by having the ability to take the textconfiguration and rule files and allow you to modify them with an easy touse graphical interface. With the added ability to merge new rule sets,manage preprocessors, control output modules and scp rules to sensors, thistool makes managing snort easy for most security professionals.
6. PatchLink Update 6.01.78
By: PatchLink Corporation
Relevant URL: http://www.patchlink.com/products_services/plu_evaluationrequest.html
Platforms: AIX, DG-UX, Digital UNIX/Alpha, DOS, HP-UX, Java, Linux, MacOS, Net, NetBSD, Netware, OpenVMS, PalmOS, POSIX, SecureBSD, SINIX, Solaris, SunOS, True64 UN, True64 UNIX, Ultrix, UNICOS, UNIX, Unixware, Windows 2000, Windows 95/98, Windows CE, Windows NT, Windows XP
Summary:
With PATCHLINK UPDATE, patch management is the secure, proactive, and preventative process it should be. PATCHLINK UPDATE scans networks for security holes and closes them with the click of a mouse, no matter the operating system, the vendor applications, the mix, or the size of the environment. From 5K nodes to 20+K nodes, PATCHLINK UPDATE works quickly, accurately and safely to ensure desktops and servers are patched correctly and completely the first time around.
V. SECURITYJOBS LIST SUMMARY
----------------------------
1. [SJ-JOB] Security Product Marketing Manager, Sunnyva... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384271
2. [SJ-JOB] Director, Information Security, Austin, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384270
3. [SJ-JOB] CHECK Team Leader, Various, GB (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384269
4. [SJ-JOB] Security Engineer, new york, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384268
5. [SJ-JOB] Security Engineer, Washington, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384267
6. [SJ-JOB] Security Engineer, Walnut Creek, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384266
7. [SJ-JOB] Security Engineer, Atlanta, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384265
8. [SJ-JOB] Channel / Business Development, Oakland, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384264
9. [SJ-JOB] Sr. Security Analyst, Oklahoma City, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/384263
10. [SJ-JOB] Manager, Information Security, Dubai, AE (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383961
11. [SJ-JOB] Auditor, Akron, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383960
12. [SJ-JOB] Security Consultant, Munich or Frankfurt, D... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383911
13. [SJ-JOB] Management, Princeton, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383910
14. [SJ-JOB] Quality Assurance, Newport News, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383909
15. [SJ-JOB] Security Engineer, Santa Ana, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383780
16. [SJ-JOB] Sr. Security Engineer, Mannheim, DE (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383754
17. [SJ-JOB] Sr. Security Engineer, Maryland, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383753
18. [SJ-JOB] Sales Engineer, Boston, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383751
19. [SJ-JOB] Certification & Accreditation Engineer, Was... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383748
20. [SJ-JOB] Security System Administrator, Dulles Techn... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383584
21. [SJ-JOB] Sales Representative, Chicago, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383581
22. [SJ-JOB] Developer, Dulles Technology Corner, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383579
23. [SJ-JOB] Information Assurance Engineer, Dulles Tech... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383575
24. [SJ-JOB] Security Engineer, Dulles Technology Corrid... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383573
25. [SJ-JOB] Security Engineer, Richmond, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383562
26. [SJ-JOB] Sales Representative, Atlanta, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383560
27. [SJ-JOB] Security Director, Amsterdam, NL (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383554
28. [SJ-JOB] Technical Support Engineer, Dallas, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383545
29. [SJ-JOB] Security Researcher, San Francisco, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383544
30. [SJ-JOB] Security Engineer, San Francisco, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383543
31. [SJ-JOB] Security Researcher, Santa Clara, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383542
32. [SJ-JOB] Application Security Engineer, Redwood city... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383541
33. [SJ-JOB] Chief Scientist, San Francisco, US (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383540
34. [SJ-JOB] Security Product Marketing Manager, Redwood... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/77/383539
VI. INCIDENTS LIST SUMMARY
--------------------------
1. PHP injection attempt from 200.222.244.154 (Thread)
Relevant URL:
http://www.securityfocus.com/archive/75/383885
2. ftp warez server snake ? (Thread)
Relevant URL:
http://www.securityfocus.com/archive/75/383716
VII. VULN-DEV RESEARCH LIST SUMMARY
-----------------------------------
1. Exploiting network services question (Thread)
Relevant URL:
http://www.securityfocus.com/archive/82/384243
2. MS IE User's Authentication Details (userid/password... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/82/384190
3. Enemy of the State (breaking Stateful Inspection bas... (Thread)
Relevant URL:
http://www.securityfocus.com/archive/82/384189
4. trusted solaris pen testing (Thread)
Relevant URL:
http://www.securityfocus.com/archive/82/383884
VIII. MICROSOFT FOCUS LIST SUMMARY
----------------------------------
1. Secondary Storage Device Policy (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/384405
2. iisadmpwd/UPN (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/384402
3. Group policy help needed!!! (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/384401
4. services running in windows domain (winXP clients) (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/384397
5. Modifying default behaviour of MS VPN client (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/383892
6. SecurityFocus Microsoft Newsletter #218 (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/383606
IX. SUN FOCUS LIST SUMMARY
--------------------------
1. Solaris Security Script (Thread)
Relevant URL:
http://www.securityfocus.com/archive/92/384244
X. LINUX FOCUS LIST SUMMARY
---------------------------
1. which distribution to choose (Thread)
Relevant URL:
http://www.securityfocus.com/archive/91/383874
XI. UNSUBSCRIBE INSTRUCTIONS
----------------------------
To unsubscribe send an e-mail message to sf-news-unsubscribe (at) securityfocus (dot) com [email concealed] from the subscribed address. The contents of the subject or message body do not matter. You will receive a confirmation request message to which you will have to answer. Alternatively you can also visit http://www.securityfocus.com/newsletters and unsubscribe via the website.
If your email address has changed email listadmin (at) securityfocus (dot) com [email concealed] and ask to be manually removed.
XII. SPONSOR INFORMATION
-----------------------
Need to know what's happening on YOUR network? Symantec DeepSight Analyzer
is a free service that gives you the ability to track and manage attacks.
Analyzer automatically correlates attacks from various Firewall and network
based Intrusion Detection Systems, giving you a comprehensive view of your
computer or general network. Sign up today!
http://www.securityfocus.com/sponsor/Symantec_sf-news_041130
------------------------------------------------------------------------
[ reply ]