I apologize, but I am using these mailing lists to try and contact the
different */CERT teams for different countries.

As we all know, ASN.1 is a new very easy to exploit vulnerability. It
attacks both the server and the end user (IIS and IE).

We expect a new massive worm to come out exploiting

[ more ]  [ reply ]

John Compton john_compton24 (at) yahoo (dot) com [email concealed] wrote:
>Another possibility for remote code execution would be to trigger a
>context-switch mid-memcpy which would halt the memory copy operation
>before it hits an unpaged address. This, if possible, might leave the
>heap in a corrupted state but allow another

[ more ]  [ reply ]

On Mon, 16 Feb 2004 08:42:23 PST, John Compton <john_compton24 (at) yahoo (dot) com [email concealed]> said:

> You are likely not going to see any more than the DoS exploit that has
> already come out. For those of you interested in the technical explanation of
> why, it is included below (it's honestly beyond my complete und

[ more ]  [ reply ]

[ more ]  [ reply ]

Can you please publish the following advisory on your site?

http://www.security-protocols.com/modules.php?name=News&file=article&sid
=1746

Thanks,

----------------------------------------
badpack3t
founder
www.security-protocols.com
----------------------------------------

[ more ]  [ reply ]

ZH2004-06SA (security advisory): ShopCartCGI v2.3 Remote arbitrary file retrieving

Published: 17 february 2004

Released: 17 february 2004

Name: ShopCartCGI

Affected Systems: 2.3

Issue: Remote arbitrary file retrieving

Author: G00db0y from Zone-h Security Labs - g00db0y (at) zone-h (dot) org [email concealed]

[ more ]  [ reply ]

YABB is a popular web-based bulletin board system, written in perl and
available from <http://www.yabbforum.com/>. While evaluating it, I
found a minor issue where an attacker trying to log in to the forums can
extract some useful information making his job easier than it needs to
be.

Most YABB fo

[ more ]  [ reply ]

Donato Ferrante

Application: Vizer Web Server
http://sourceforge.net/projects/vizerwebserver/

Version: 1.9.1

Bug: Denial Of Service

Author: Donato Ferrante
e-mail: fdonato (at) autistici (dot) org [email concealed]
web: www.autistic

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200402-06
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
~

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200402-05
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
~

[ more ]  [ reply ]

Based on our experiences in CVE, many advisories frequently have (a)
incomplete, (b) inaccurate, or (c) inconsistent information.

To use the eEye / ASN.1 issue as a *single* example of many that I run
across:

- eEye published 2 advisories that each said there were "multiple"
integer overflo

[ more ]  [ reply ]

Sorry, an error in the report.

Underlying OS: Windows (Any).

[ more ]  [ reply ]

In-Reply-To: <002a01c3f4c3$d6eecc40$381e5a0a@desanet69>

Correction... the code change needs to be as follows:

Find:

$quotemsg = $quote;

Change to:

if ( $quote && !is_numeric($quote) )

{

die('Go out C==|=======>');

}

$quotemsg = $quote;

----

Otherwise you won't be ab

[ more ]  [ reply ]

I wrote an article about how do bypass the Execution Path Analysis

used by PatchFinder utility, avoiding Windows 2k/XP rootkit detection.

http://www.geocities.com/embarbosa/bypass/bypassEPA.pdf

Soon, will be a version for Linux Kernel.

[ more ]  [ reply ]

I can verify that the attached Proof of Concept bitmap produced a DoS on
several IE versions, including

IE5.01 SP1 5.00.2614.3500 on Windows 2000 Pro SP2
IE5.01 SP1 5.00.2920.0000 on Windows 2000 Pro SP2
IE5.01 SP2 5.00.3315.1000 on Windows 2000 Pro SP2

The latter configuration is still supported

[ more ]  [ reply ]

Summary
YaBB SE is a PHP/MySQL port of the popular forum software YaBB (yet another
bulletin board).

An SQL injection vulnerability allows a remote attacker to execute malicious
SQL statements on the database remotely

Details
Vulnerable Systems:
* YaBB SE versions 1.5.4, 1.5.5, possibly others

T

[ more ]  [ reply ]

******** AllMyLinks PHP Code Injection vulnerability ********

Product : AllMyLinks

Vendor : www.php-resource.net

Date : February 14, 2004

Problem : PHP Code Injection

Vendor Contacted ? : No

************************** Source ****************************

in /include/footer.inc.php

-

[ more ]  [ reply ]

************************************************************************
************
Netwosix Linux Security Advisory #2004-0001 <http://www.netwosix.org>
------------------------------------------------------------------------
-----------

Package name: mutt
Summary: remote crash
Date

[ more ]  [ reply ]

******** AllMyVisitors PHP Code Injection vulnerability ********

Product : AllMyVisitors

Vendor : www.php-resource.net

Date : February 14, 2004

Problem : PHP Code Injection

Vendor Contacted ? : No

************************** Source ****************************

in /include/info.inc.php

[ more ]  [ reply ]

Application: Robot FTP Server

http://www.robotftp.com/

Versions: 1.0/2.0 beta 1

Platforms: Windows NT

Bug: Buffer Overflow

Exploitation: remote

Date: 15 Feb 2004

Author: gsicht

e-mail: nothing.king (at) firemail (dot) de [email concealed]

#################

[ more ]  [ reply ]