I read, some time ago, about a new form of attack on
the AES algorithm: Rijndael...

Since then I have not heard any more about it, so I
was wondering what the latest thoughts on this method
are ? Is is currently being researched, etc, etc...

-- Michael

XLS Attack: http://www.minrank.org/aes/#AESb

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
CONECTIVA LINUX SECURITY ANNOUNCEMENT
- ------------------------------------------------------------------------
--

PACKAGE : anonftp
SUMMARY : Remote denial of service vu

[ more ]  [ reply ]

Internet Explorer and Opera local zone restriction bypass.
=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=

----------------------
Vendor Information:
----------------------

Homepage : http://www.microsoft.com
Vendor : informed
Mailed advisory: 23/10/03
Vender Response : None yet

----

[ more ]  [ reply ]

=====================================================================
= HTML Help API - Privilege Escalation
=
= Tested against:
= HTML Help Control Version 5.2.3735.1
=
= brett.moore (at) security-assessment (dot) com [email concealed]
= http://www.security-assessment.com
=
= Originally posted: October 24th, 2003
===========

[ more ]  [ reply ]

this news was found on irchelp, DCC Exploit Affecting mIRC 6.12 :

another exploit was identified which can crash even the recently released version 6.12. It only seems to affect people who minimize DCC get dialog windows (manually or by default), and then open those windows to get a file with a

[ more ]  [ reply ]

Intro

-----

Brett Moore from Security Assesment put me onto this one. XP's Visual Styles, the feature that makes various controls in Windows XP look a less dated, also introduce a new shatter type vulnerability into the OS.

Vuln

-------

Applications which have the new XPified appearan

[ more ]  [ reply ]

Hello,

A cross site scripting vulnerability exists in the CensorNet Proxy Service
(www.censornet.com) that allows scripting (and html) to be passed to the
cgi script and displayed in the web browser.

Exploit:
http://SERVER/cgi-bin/dansguardian.pl?DENIEDURL=</a><script>alert('Count
er-Strike__server

[ more ]  [ reply ]

Hello,

We have found a security vulnerability in the SUN's implementation of the Java
Virtual Machine, which affects the following SDK and JRE releases:
- SDK and JRE 1.4.1_03 and earlier
- SDK and JRE 1.3.1_08 and earlier
- SDK and JRE 1.2.2_015 and earlier.

SUN was informed about this iss

[ more ]  [ reply ]

In a recent post, Florian Weimer said:

>> PACKAGE : ircd
>> SUMMARY : Local denial of service vulnerability
>
>Actually it's *remote* in the usual terminology on this list.
>
>[snip]
>
>When IRC server developers talk about "local vulnerabilities"
>vs. "remote vulnerabilities", they mean the d

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
CONECTIVA LINUX SECURITY ANNOUNCEMENT
- ------------------------------------------------------------------------
--

PACKAGE : sane
SUMMARY : Vulnerabilities in saned and i

[ more ]  [ reply ]

In-Reply-To: <18150849207.20031022004135 (at) hex.net (dot) ru [email concealed]>

>Received: (qmail 24988 invoked from network); 21 Oct 2003 22:17:00 -0000

>Received: from outgoing3.securityfocus.com (205.206.231.27)

> by mail.securityfocus.com with SMTP; 21 Oct 2003 22:17:00 -0000

>Received: from lists2.securityfocus.com

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
CONECTIVA LINUX SECURITY ANNOUNCEMENT
- ------------------------------------------------------------------------
--

PACKAGE : fileutils
SUMMARY : Denial of service vulnera

[ more ]  [ reply ]

In-Reply-To: <1066826686.3696.32.camel@falcon>

>Hi,

>the following HTML/JS/CSS-Code crashes IE6 immediately through a

>combination of:

>1. textarea in table in div

>2. css:overflow-y:hidden

>3. changing the scrollbar-base-color

>4. moving the div

This looks like a benign crash to me. On

[ more ]  [ reply ]

Hi,
the following HTML/JS/CSS-Code crashes IE6 immediately through a
combination of:
1. textarea in table in div
2. css:overflow-y:hidden
3. changing the scrollbar-base-color
4. moving the div

I think IE tries to move the native OS-scrollbar-widget, which is not in
place.

If point 3 is removed, th

[ more ]  [ reply ]

did an audit of mah-jong after seeing something about a debian advisory...the bug(s) found weren't mentioned, but were fixed in the overall (giant) patch for mah-jong, which is provided on debian's website(1.4-2 patch). anyways, here is an exploit for the bug(s) found.

original reference:

ht

[ more ]  [ reply ]

On October 15th, Microsoft released an advisory stating that both Exchange
5.5 and Exchange 2000 were vulnerable to a denial of service attack in
the code which processes extended verb requests. This advisory also
stated that Exchange 2000 was vulnerable to a buffer overrun that would
allow a re

[ more ]  [ reply ]

Informations :
°°°°°°°°°°°°
Language : ASP
Bugged Version : Web Wiz Forums ver. 7.01 (and less ?)
Patched version : none
Website : http://www.webwizforums.com
Problems : Permanent XSS

Objects :
°°°°°°°
- forum_members.asp
- members.asp

- pm_buddy_list.asp

Exploits :
°°°°°°°°
http://[TARGET]/forum

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

be prepared that your IE6 will be blocked if you
run the java plugin (any 1.4.x including 1.4.2_02)
with the following applet:

http://www.illegalaccess.org/exploits/java/applet/MyFloppySucks.html

Of course this only work when you have a drive a:.

[ more ]  [ reply ]

To: announce (at) lists.caldera (dot) com [email concealed] bugtraq (at) securityfocus (dot) com [email concealed] full-disclosure (at) lists (dot) n [email concealed]
etsys.com

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

________________________________________________________________________
______

SCO Security Advisory

Subject: OpenServer 5.0.5 : Insecure creation of fil

[ more ]  [ reply ]

SQL Injection Vulnerability in FuzzyMonkey MyClassifieds SQL Version
18 October 2003

Original Advisory
http://www.sintelli.com/adv/sa-2003-04-myclassified.pdf

Background
My Classifieds SQL is a Perl/CGI/MySQL script which will quickly and easily
allow the hosting of a classifieds forum on a websit

[ more ]  [ reply ]

-----------------------------------------------------------------------
Immunix Secured OS Security Advisory

Packages updated: fetchmail, fetchmailconf
Affected products: Immunix OS 7+
Bugs fixed: CAN-2002-1365, CAN-2003-0792, CAN-2003-0790
Date: Fri Oct 17 2003
Advisory ID: IMNX-2003-7+-023-0

[ more ]  [ reply ]

A default Windows 98SE installation is several years behind in patches.

This does not reproduce on any IE browser that has been patched the last
year or so.

If in doubt about your IE patch level apply the latest cumulative patch
MS03-040, which can be found at

http://www.microsoft.com/technet/sec

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - - ------------------------------------------------------------
NATOK security labs natok at hush.com
October 20st, 2003 Privilege Escalation
- - - --------------------------------------------------

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Cross-Site Java breaks Sandbox Isolation for Unsigned Applets
=============================================================

Product : Java Plugin
Version : 1.4.2_01
OS : Win32 (should apply for other OSs too)
URL : http://java.sun.com
Foun

[ more ]  [ reply ]

Multiple SQL Injection Vulnerabilities in DeskPRO
------------------------------------------------------------------------
-

Article reference:
http://www.securiteam.com/unixfocus/6R0052K8KM.html

SUMMARY

DeskPRO (http://www.deskpro.com) is "an integrated script to manage your
customer sales and

[ more ]  [ reply ]