SecurityFocus

RE: Browser bugs [DoS] ... where will you draw a line? 2004-04-09
Drew Copley (dcopley eeye com)

> -----Original Message-----
> From: Bipin Gautam [mailto:visitbipin (at) hotmail (dot) com [email concealed]]
> Sent: Friday, April 09, 2004 8:07 AM
> To: bugtraq (at) securityfocus (dot) com [email concealed]
> Subject: Browser bugs [DoS] ... where will you draw a line?
>
>
>
> Browser bugs [DoS] ... where will you draw a line?
>
>
>
> Shouldn

[ more ] [ reply ]

Re: Full-Disclosure is now ILLEGAL in France ! (Vulnerabilties, Technical details, Exploits ...) 2004-04-09
Chris Wysopal (cwysopal atstake com)

In-Reply-To: <E1BBxu4-0000l0-00 (at) smtp01.mrf.mail.rcn (dot) net [email concealed]>

>From: "Richard M. Smith" <rms (at) computerbytesman (dot) com [email concealed]>

>

>Would this new French law apply to an American (or other foreigner) who

>travels to France for business or on a vacation if this person has >published exploit code on a Web site?

W

[ more ] [ reply ]

Re: DoS in Rsniff 1.0 2004-04-09
Luigi Auriemma (aluigi altervista org)

> 153 {
> 154 printf ("RSniff Server: Authentication failed!\n");
> 155 continue;
> 156 close (new_sockfd); /* PATCH */
> 157 }

Excuse me but I have made an error here (lines 155 and 156) the close()
naturally must be located before the "continue;":

153 {
154

[ more ] [ reply ]

DoS in Rsniff 1.0 2004-04-09
Luigi Auriemma (aluigi altervista org)

#######################################################################

Luigi Auriemma

Application: RSniff (Remote Sniff)
http://www.cse.sc.edu/~madamanc/projects.html
Versions: 1.0
Platforms: Linux
Bug: Denial of Service
Risk:

[ more ] [ reply ]

[ GLSA 200404-09 ] Cross-realm trust vulnerability in Heimdal 2004-04-09
Kurt Lieber (klieber gentoo org)

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200404-09
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org
- - - - - -

[ more ] [ reply ]

Browser bugs [DoS] ... where will you draw a line? 2004-04-09
Bipin Gautam (visitbipin hotmail com)

Browser bugs [DoS] ... where will you draw a line?

Shouldn't developers [of Browsers] draw a line... between a DoS bug and a "can be troublesome" feature in their web-browsern and put necessary measures in their code to protect form such nasty codes. These days... I?ve been seeing lot of stupi

[ more ] [ reply ]

DoS in Crackalaka 1.0.8 2004-04-09
Donato Ferrante (fdonato autistici org)

Donato Ferrante

Application: Crackalaka
http://www.stalphonsos.com/~attila/crackalaka

Version: 1.0.8

Bug: Denial Of Service

Date: 09-Apr-2004

Author: Donato Ferrante
e-mail: fdonato (at) autistici (dot) org [email concealed]

[ more ] [ reply ]

[ GLSA 200404-12 ] Scorched 3D server chat box format string vulnerability 2004-04-09
Kurt Lieber (klieber gentoo org)

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200404-12
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org
- - - - - -

[ more ] [ reply ]

[ GLSA 200404-11 ] Multiple Vulnerabilities in pwlib 2004-04-09
Aida Escriva-Sammer (aescriva gentoo org)

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200404-11
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org
- - - - - -

[ more ] [ reply ]

monit 4.1 POC 2004-04-09
gsicht gsicht (nothing king firemail de)

#!/usr/bin/perl

# cobain-monit.pl

#

# monit <= 4.1 remote root exploit

# coded by gsicht (08.04.04)

# kurt cobain died 10 years ago ;(

#

# tested on mandrake 9.1

# 0x40b389cf esp+3

#

use IO::Socket::INET;

$socket = 0;

my $shellcode = # 8 + 88 = 96 bytes portbind 31337

"\x90\x90\x

[ more ] [ reply ]

MDKSA-2004:027 - Updated ipsec-tools packages fix vulnerability in racoon 2004-04-09
Mandrake Linux Security Team (security linux-mandrake com)

Full-Disclosure is now ILLEGAL in France ! (Vulnerabilties, Technical details, Exploits ...) 2004-04-08
K-OTiK Security (Special-Alerts k-otik com) (2 replies)

A new anti-security law was voted yesterday in France, this law called LEN (loi pour la confiance dans l'économie numérique), the article 34 with his 323-3-1 says :

"The fact, without legitimate reason, of holding, of offering, of

yielding or of placing at the disposal equipment, instrument, a

[ more ] [ reply ]

RE: Full-Disclosure is now ILLEGAL in France ! (Vulnerabilties, Technical details, Exploits ...) 2004-04-09
Richard M. Smith (rms computerbytesman com)

Re: Full-Disclosure is now ILLEGAL in France ! (Vulnerabilties, Technical details, Exploits ...) 2004-04-09
Chris Johnson (johnson nmr mgh harvard edu) (1 replies)

Re: Full-Disclosure is now ILLEGAL in France ! (Vulnerabilties, Technical details, Exploits ...) 2004-04-09
Geoffrey (esoteric 3times25 net) (1 replies)

Re: Full-Disclosure is now ILLEGAL in France ! (Vulnerabilties, Technical details, Exploits ...) 2004-04-09
Chris Johnson (johnson nmr mgh harvard edu) (1 replies)

Re: Full-Disclosure is now ILLEGAL in France ! (Vulnerabilties, Technical details, Exploits ...) 2004-04-09
Romain Francoise (romain orebokech com)

US-CERT Technical Cyber Security Alert TA04-099A -- Vulnerability in Internet Explorer ITS Protocol Handler 2004-04-08
CERT Advisory (cert-advisory cert org)

PSR - #2004-002 Remote - LCDProc 2004-04-08
Priv8 Security Research (security priv8security com)

[ more ] [ reply ]

RE: New Worm/Virus April 8th 2004-04-08
securityguy dslextreme com

What's the propagation method? Is it through email?

- SG

-----Original Message-----
From: Polazzo Justin [mailto:Justin.Polazzo (at) facilities.gatech (dot) edu [email concealed]]
Sent: Thursday, April 08, 2004 6:53 AM
To: appsec-research (at) linuxbox (dot) org [email concealed]
Cc: bugtraq (at) securityfocus (dot) com [email concealed]
Subject: New Worm/Virus April 8th

Concernin

[ more ] [ reply ]

PSR - #2004-001 Remote - LCDProc 2004-04-08
Priv8 Security Research (security priv8security com)

[ more ] [ reply ]

Microsoft IE iframe src DoS already reported to Microsoft 2004-04-08
'ken'@FTU (ken ftusecurity com) (1 replies)

Security Professionals,

On Wednesday, April 7, 2004, Emmanouel Kellinis reported to Bugtraq that
the following HTML tag would cause IE to crash:

<iframe src="?">

Please see post:
http://www.securityfocus.com/archive/1/359767/2004-04-05/2004-04-11/0

I discovered this bug in January 2004 and repor

[ more ] [ reply ]

Re: Microsoft IE iframe src DoS already reported to Microsoft 2004-04-08
Valdis Kletnieks vt edu

LNSA-#2004-0009: GNU Automake symbolic link vulnerability 2004-04-08
Vincenzo Ciaglia (ciaglia netwosix org)

RE: [AppSec-research] New Worm/Virus April 8th 2004-04-08
Polazzo Justin (Justin Polazzo facilities gatech edu)

I know that it is bad form to reply to your own post, but here it goes anyway:

There is an accompanying file called nwiz.exe in the \Winnt folder.

The worm/virus writes the following to an infected machines hosts file

127.0.0.1 www.symantec.com
127.0.0.1 securityresponse.symantec.com
127.0.0.1 sy

[ more ] [ reply ]

LNSA-#2004-0010: login may leak sensitive data 2004-04-08
Vincenzo Ciaglia (ciaglia netwosix org)

Re: IPv4 fragmentation --> The Rose Attack 2004-04-08
Paul Starzetz (ihaquer isec pl)

gandalf (at) digital (dot) net [email concealed] wrote:

>The attack is simple. Two parts of a fragmented packet are sent to the
>machine being attacked. The first fragment (payload 32 bytes long) is the
>initial offset zero fragment of a SYN packet. The final (second) fragment
>of the SYN packet is also 32 bytes in size, b

[ more ] [ reply ]