|
|
Colapse all |
Post message
Microsoft Windows XP SP2 2004-08-19 http-equiv (at) excite (dot) com [email concealed] (1 malware com) RE: First vulnerabilities in the SP2 - XP ?... 2004-08-19 Thor Larholm (tlarholm pivx com) > From: Radoslav Dejanoviæ [mailto:radoslav.dejanovic (at) opsus (dot) hr [email concealed]] > > On Monday 16 August 2004 15:58, Jrme ATHIAS wrote: > > http://www.heise.de/security/artikel/50051 > This might be SP2 bug only if the same bug can't be repeated > on pre-SP2 machine. Didn't test, but I think this is an old > tri [ more ] [ reply ] Re: Posible security bug in phpMyWebhosting 2004-08-19 Udo Müller (info cs-ol de) In-Reply-To: <200408141441.44157.matias (at) neiff.com (dot) ar [email concealed]> Hi Matias, On Sat, 14 Aug 2004 14:41:42 -0300 you wrote: > Hi all. > There is a posible security bug in the phpMyWebhosting > (http://sourceforge.net/projects/phpmywebhosting/) > > File: includes/functions/pmwh.php > Function: test > [ [ more ] [ reply ] Immunity, Inc. Release: libdisassemble 2004-08-19 dave (dave immunitysec com) Immunity, Inc. is proud to present Nicolas Waisman's libdisassemble, released today under the LGPL. Download this library from: http://www.immunitysec.com/resources-freesoftware.shtml Readme: Immunity libdisassemble v1.0 ~~~~~~~~ ~~~~~~~~~~~~~~ ~~~~ http://www.immunitysec.com Aug 18, 2004 Lib [ more ] [ reply ] MDKSA-2004:085 - Updated qt3 packages fix multiple vulnerabilities 2004-08-18 Mandrake Linux Security Team (security linux-mandrake com) MDKSA-2004:084 - Updated spamassassin packages fixes possible malformed message vulnerability 2004-08-18 Mandrake Linux Security Team (security linux-mandrake com) [security bulletin] SSRT3460 rev.3 HP-UX Network traffic can cause programs to fail 2004-08-17 Boren, Rich (SSRT) (rich boren hp com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ----------------------------------------------------------------- **REVISED 03** Source: HEWLETT-PACKARD COMPANY SECURITY BULLETIN: HPSBUX0306-264 Originally issued: 04 June 2003 Last revised: 15 August 2004 SSRT3460 rev.3 HP-UX Network traffic [ more ] [ reply ] recent iDefense advisories not being posted to bugtraq includes CVS information disclosure bug (CAN-2004-0778) 2004-08-17 Marc Bejarano (bugtraq beej org) it seems that iDefense has stopped posting their advisories to bugtraq. i don't know if this is intentional or not, but i'd love to hear from them to clear this up. of the last 5 vulnerability advisories posted to http://idefense.com/application/poi/display?type=vulnerabilities , bugtraq reade [ more ] [ reply ] Breaking windows LM hashes using the Time-Memory Trade-Off : Optimization & new tool 2004-08-17 Jérôme ATHIAS (jerome athias caramail com) Hi, some of guys here may have seen multiple articles and links about the "new" way to break windows' LM hashes using the Time-Memory Trade-Off technique described by Philippe Oechslin. Remember the RainbowCrack tool (http://www.antsight.com/zsl/rainbowcrack/)... I've seen many sites which p [ more ] [ reply ] SHA-0 Broken, MD5 Rumored Broken 2004-08-18 Jérôme ATHIAS (jerome athias caramail com) (1 replies) MD5 Collision Nearly Found Following up on yesterday's discussion about new attacks on cryptographic hashfunctions, Eric Rescorla points to a new paper (http://eprint.iacr.org/2004/199.pdf) from Chinese computer scientists, which claims to have found a collision in MD5. MD5 is a cousin of the S [ more ] [ reply ] [SECURITY] [DSA 540-1] New mysql packages fix insecure temporary file creation 2004-08-18 joey infodrom org (Martin Schulze) Cisco Security Advisory: Cisco IOS Malformed OSPF Packet Causes Reload 2004-08-18 Cisco Systems Product Security Incident Response Team (psirt cisco com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco IOS Malformed OSPF Packet Causes Reload Revision 1.0 For Public Release 2004 August 18 15:00 UTC (GMT) - ------------------------------------------------------------------------ ---- Contents Summary Affected P [ more ] [ reply ] Open Security Group Advisory #6 2004-08-17 c0ntex open-security org List, In May, Open Security Group started a media player security audit to drive out defects in popular media player code with the hope of helping secure our networks, machines and users from malicious attackers. As the second stage of this project, I released an advisory on August 8th, 2 [ more ] [ reply ] Re: IpSwitch IMail Server <= ver 8.1 User Password Decryption 2004-08-17 Jérôme ATHIAS (jerome athias caramail com) In-Reply-To: <1092676733.4120ec7d5c7c1 (at) www.hotmail (dot) kg [email concealed]> You could be interested by the new Luigi Auriemma's tools : Ipswitch Ws FTP client passwords decoder 0.1 IpSwitch Notification server passwords decoder 0.1 IpSwitch Instant Messaging server passwords decoder 0.1 IpSwitch Instant Messaging [ more ] [ reply ] MDKSA-2004:083 - Updated rsync packages fix remotely-exploitable vulnerability 2004-08-17 Mandrake Linux Security Team (security linux-mandrake com) RE: [Full-Disclosure] IpSwitch IMail Server <= ver 8.1 User Password Decryption 2004-08-16 Bill Roemhild (broemhild positiveplace org) This has been well documented. I remember a tool from 2002 that would decrypt the hash from command line. printf ("IMail Password Decryptor\n"); printf ("Usage: %s <account name> <encrypted string>\n", name); printf ("E.g., %s crypto CCE5DFE5E2\n ^^^^^^^^^^---CAPITAL LETTERS\n\n", name); printf ( [ more ] [ reply ] |
|
Privacy Statement |
Let's commence by giving credit where credit is due. The
thinking is that the manufacturer of Windows XP has done a
splendid job in patching their little operating system with 300
million dollar's worth of fixes. This is not exactly 'pocket
change'.
But this is:
1. trivial scripting in the l
[ more ] [ reply ]