SecurityFocus

remote exploit for mod_gzip (with debug_mode) 2003-11-20
Crazy Einstein (crazy_einstein yahoo com)

=====
[xCrZx]

__________________________________
Do you Yahoo!?
Free Pop-Up Blocker - Get it now
http://companion.yahoo.com/

[ more ] [ reply ]

GLSA: hylafax (200311-03) 2003-11-20
Rajiv Aaron Manglani (rajiv gentoo org)

[CLA-2003:786] Conectiva Security Announcement - zebra 2003-11-20
Conectiva Updates (secure conectiva com br)

GLSA: opera (200311-02) 2003-11-20
Rajiv Aaron Manglani (rajiv gentoo org)

GLSA: kdebase (200311-01) 2003-11-20
Rajiv Aaron Manglani (rajiv gentoo org)

GLSA: apache (200310-03) 2003-11-20
Rajiv Aaron Manglani (rajiv gentoo org)

SGI Advanced Linux Environment security update #5 2003-11-19
SGI Security Coordinator (agent99 sgi com)

Re: IA WebMail 3.x PoC Code 2003-11-19
Peter Winter-Smith (peter4020 hotmail com)

Hello again,

I'm afraid that I have had a couple of reports which state that the

Proof of Concept code which I have written for IA WebMail does not work.

This is often due to the fact that I close the socket immediately as the

malicious data is sent, and so the server does not follow the

[ more ] [ reply ]

HPUX dtmailpr buffer overflow vulnerability 2003-11-19
Davide Del Vecchio (dante alighieri org)

=======================================================
HPUX dtmailpr buffer overflow vulnerability
=======================================================

Davide Del Vecchio Adv#8

Discovered in: 14/07/2003
Date: 19/11/2003
Tested on HP-UX B.11.00

Description:

The dtmailpr program reads a

[ more ] [ reply ]

Microsoft SharePoint Portal and Team Services 2003-11-19
arkanian hacker am

There is a bug in how the authentication mode works with the web-based

administration page.

This page resides, in the Web Servers with Sharepoint, in

http://www.example.com/_layouts/settings.htm or

http://www.example.com/some_directory/_layouts/settings.htm

This page is usually protecte

[ more ] [ reply ]

MDKSA-2003:107 - Updated glibc packagess fix vulnerabilities 2003-11-19
Mandrake Linux Security Team (security linux-mandrake com)

IA WebMail 3.x PoC 2003-11-19
Peter Winter-Smith (peter4020 hotmail com)

Hello all,

As I stated in my advisory I would release a proof of concept code

after a short period of time which the vendor could use to fix this

and any other bugs for the new release. It has now been in excess

of two weeks, and I have been informed that a fix is almost if not

completely r

[ more ] [ reply ]

Router Worm? 2003-11-19
Chris Strom (cstrom cos com) (4 replies)

I've received a strange HTTP request on my web site from two different sources. The request is logged as:

SEARCH /\x90\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x0
2

\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02
\xb1\x02

\xb1\x02\xb1\x02\xb1\x0

[ more ] [ reply ]

Re: Router Worm? 2003-11-19
Jay Jacobson (jay edgeos com)

Re: Router Worm? 2003-11-19
Jay D. Dyson (jdyson treachery net) (1 replies)

Re: Router Worm? 2003-11-20
Jose Nazario (jose monkey org)

Re: Router Worm? 2003-11-19
Niels Bakker (niels=bugtraq bakker net)

Re: Router Worm? 2003-11-19
Fred Laxton (securitynotice laxton net)

Half Life dedicated server information leak and DoS 2003-11-19
3APA3A (3APA3A SECURITY NNOV RU)

Dear bugtraq (at) securityfocus (dot) com [email concealed],

Probably is known, but is not documented:

Vendor: Valve software
Software: hlds, all versions (including steam).
Problem: Information leak, DoS
Author: SYZo[SND]

Problem:

in server configuration, if allowdownload = 1, it's possible to download
any file from direct

[ more ] [ reply ]

RE: Security researchers organization 2003-11-19
Jeremy Epstein (jeremy epstein webmethods com)

I like the idea of this, but am concerned by the terminology.

<flame-bait>
What's being proposed is an organization of *vulnerability* researchers.
There are MANY other kinds of security researchers, including those who
design new forms of access controls, security models, intrusion detection
syste

[ more ] [ reply ]

[securitylab.ru & security.nnov] Kerio Winroute Firewall Xroxy problem 2003-11-19
3APA3A (3APA3A SECURITY NNOV RU)

Application: Kerio Winroute Firewall 5.10
Vendor: Kerio Technologies Inc.
Vendor Site: http://www.kerio.com
Remote: Yes
Exploitable: Yes
Risk level: Critical (if proxy requires authentication)
Authors: Alexander Antipov & 3APA3A (aka Pig Killer)
Authors Sites: http://www.securitylab.ru http://www.s

[ more ] [ reply ]

YAK! 2.1.0 still vulnerable 2003-11-19
bil (bil_912 coolgoose com)

YAK! 2.1.0 still vulnerable

===========================

for file transfer yak uses ftp mode. Yak!

listens on port 3535 for file transfer in ftp mode.

vulnerability in the previous version was, they

were using constant username and pass

combination for ftp login.

2.1.0 version seems to

[ more ] [ reply ]

FW: Security researchers organization 2003-11-18
Keving Wong (kevin wong bbc co uk)

>> I don't think those capable of actually doing research require hand holding by anyone.

I don't think there is any need to be so negative : -(

Bugtraq is such a group in existence already, but is more of informal
gathering of like-minded people.

In Asia and the Middle East, Security Associates

[ more ] [ reply ]

Re: Security researchers organization 2003-11-18
Steven M. Christey (coley mitre org)

Thor and Russ,

Adam Shostack and I have been thinking about a researchers'
organization for a while, too. We thought that an important first
step would be to host a vulnerability research workshop that would
discuss many of the key issues facing researchers, including the needs
for a researcher-f

[ more ] [ reply ]