SecurityFocus

[CLA-2003:758] Conectiva Security Announcement - vixie-cron 2003-10-03
Conectiva Updates (secure conectiva com br)

RE: Half-Life 2 source code stolen through IE exploit 2003-10-03
Thor Larholm (thor pivx com)

I can positively confirm that the source code has been leaked, including model and level editors and early work on the next version of counter-strike.

Thor

-----Original Message-----
From: Mattox, Norman [mailto:NMattox (at) scor (dot) com [email concealed]]
Sent: Friday, October 03, 2003 9:34 AM
To: Thor Larholm; bugtraq@s

[ more ] [ reply ]

Cisco LEAP Insecurities + POC 2003-10-03
evol ruiner halo nu

1 month of audits by l33t security companies: No vulnerabilities
1 month of architecture research by CCIE's: No vulnerabilities
2 days of hacking by DaBubble, Bishop, and Evol: Root.
There's some things that fackers should audit (WEBAPPS) for everything
else, get a real hacker.

If you can't get the

[ more ] [ reply ]

RE: New IE crash: CSS + HTML 2003-10-03
Robert Ahnemann (rahnemann affinity-mortgage com)

Cutting and pasting that into a simple HTML file gets IE to crash as
soon as its opened.

IE version: 6.0.2800.1106

> -----Original Message-----
> From: arachnid__notdot_net (at) meta.net (dot) nz [email concealed]
> [mailto:arachnid__notdot_net (at) meta.net (dot) nz [email concealed]]
> Sent: Friday, October 03, 2003 12:43 AM
> To: bugtraq@securityfocus

[ more ] [ reply ]

patch for vulnerability in cgiemail 2003-10-03
Matt Riffle (matt pair com)

Recently we've seen a marked rise in attempts to exploit the bug in MIT's
cgiemail that's documented here:

http://www.securitytracker.com/alerts/2002/Jun/1004549.html

Appended below is a quick patch to the cgilib.c file of the distribution,
designed to prevent abuse of the program.

Basically,

[ more ] [ reply ]

[CLA-2003:757] Conectiva Security Announcement - vixie-cron 2003-10-03
Conectiva Updates (secure conectiva com br)

TSLSA-2003-0003 - openssl 2003-10-03
Tawie Security Advisor (tsl tawie org)

Re: Webmails + Internet Explorer can create unwanted javascript execution 2003-10-03
Jason Munro (jason stdbev com)

On October 2, 4:39 pm Jedi/Sector One <j (at) pureftpd (dot) org [email concealed]> wrote:

FWIW, Hastymail, (a lesser known webmail IMAP client written in PHP i'm
working on) does filter out this nastyness.

HTML before:
> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN"
> "http://www.w3.org/TR/xhtml11/DTD/xht

[ more ] [ reply ]

RE: Process Killing - Playing with PostThreadMessage 2003-10-03
Vitor Ventura (vventura sia pt)

I've done a test with softice to check if the pskill of sysinternals sends
any WM_QUIT to the process that you want to kill, the breakpoint didn't
break so I guess these are two diferent things, with the same objective.

-----Original Message-----
From: Thor Larholm [mailto:thor (at) pivx (dot) com [email concealed]]
Sent: qui

[ more ] [ reply ]

New IE crash: CSS + HTML 2003-10-03
arachnid__notdot_net meta net nz (2 replies)

While designing a page today, I stumbled across a combination of HTML and CSS
that causes IE (6.0.2600.0000 on 2k v5.00.2195 and 6.0.3790 on 2k3 server
v5.2.3790 are the only versions tested so far) to crash with a GPF. After a
little work, I distilled the required code down to this:

--------------

[ more ] [ reply ]

RE: New IE crash: CSS + HTML 2003-10-03
Drew Copley (dcopley eeye com)

RE: New IE crash: CSS + HTML 2003-10-03
Brian Paulson (bpaulson chieftain com) (1 replies)

RE: New IE crash: CSS + HTML 2003-10-03
Russ Uhte (Lists) (russlists mailtest parallax ws)

OpenServer 5.0.7 : OpenSSH: multiple buffer handling problems 2003-10-02
security sco com

To: announce (at) lists.sco (dot) com [email concealed] bugtraq (at) securityfocus (dot) com [email concealed] full-disclosure (at) lists.netsys (dot) com [email concealed]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

________________________________________________________________________
______

SCO Security Advisory

Subject: OpenServer 5.0.7 : OpenSSH: multiple buffer handl

[ more ] [ reply ]

PINE-CERT-20030901: Integer Overflow in FreeBSD Kernel [fhold] 2003-10-02
Joost Pol (joost pine nl)

[ESA-20031003-028] Potential OpenSSL DoS. 2003-10-03
EnGarde Secure Linux (security guardiandigital com)

Free OverflowGuard Personal Edition Released 2003-10-02
Paul Webster (ptwebster datasecuritysoftware com)

A free personal edition of OverflowGuard has been released. This program
protects Internet Explorer and all Active-X controls it uses from stack
buffer overflow exploits. The protection is provided by making the stack
non-executable. You can download this free tool from
http://www.datasecuritysof

[ more ] [ reply ]

EartStation 5 P2P application contains malicious code 2003-10-03
random nut (randnut yahoo com)

EartStation 5 P2P application contains malicious code
-----------------------------------------------------

ES5 info
--------
EarthStation 5 (aka ES5, aka ESV) (http://www.earthstation5.com and
http://forums2.es5.com/) is a P2P application first released about 6-12
months ago. The people behind ES

[ more ] [ reply ]

FreeBSD Security Advisory FreeBSD-SA-03:16.filedesc 2003-10-02
FreeBSD Security Advisories (security-advisories freebsd org)

Half-Life 2 source code stolen through IE exploit 2003-10-03
Thor Larholm (thor pivx com) (1 replies)

http://www.halflife2.net/forums/showthread.php?s=e6e7d0ce0abe19997425ef5
0fa7fe1df&threadid=10692

Regards
Thor Larholm
PivX Solutions, LLC - Senior Security Researcher
http://pivx.com/larholm/unpatched - 31 Unpatched IE Security Vulnerabilities

[ more ] [ reply ]

Re: Half-Life 2 source code stolen through IE exploit 2003-10-03
spackard fastlink com

UnixWare 7.1.3 Open UNIX 8.0.0 UnixWare 7.1.1 : OpenSSL Multiple Vulnerabilities 2003-10-02
security sco com

To: announce (at) lists.sco (dot) com [email concealed] bugtraq (at) securityfocus (dot) com [email concealed] full-disclosure (at) lists.netsys (dot) com [email concealed]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

________________________________________________________________________
______

SCO Security Advisory

Subject: UnixWare 7.1.3 Open UNIX 8.0.0 UnixWare 7.1.1 :

[ more ] [ reply ]

Is it safe yet? 2003-10-02
HCTITS Security Division (security humancentrictech com)

Hello Bugtraq members.
I've been watching with keen interest the recent developments
concerning SSL vulnerabilities, most notably involving remote
compromises in SSH. When the first note came through about the remote
SSH vulnerabilities, I quickly plugged up port 22 in my company's
firewall. Unf

[ more ] [ reply ]

Dictionary attack against Cisco's LEAP, Wireless LANs vulnerable 2003-10-03
Michael Renzmann (security dylanic de)

Hi.

Cisco released a security notice [1] in August about possible dictionary
attacks against their proprietary LEAP (Lightweight Extensible
Authentication Protocol, used with 802.1x). But according to
Computerworld [2] it seems that this information has not been spread
well enough.

In addition

[ more ] [ reply ]

Webmails + Internet Explorer can create unwanted javascript execution 2003-10-02
Jedi/Sector One (j pureftpd org) (1 replies)

Summary : Multiple web-based mail systems browsed through Internet Explorer
can allow arbitrary javascript execution.
Date : 02/10/2003
Author : Frank Denis <j (at) pureftpd (dot) org [email concealed]>

------------------------[ Description ]------------------------

The issue described here doesn't

[ more ] [ reply ]

RE: Webmails + Internet Explorer can create unwanted javascript execution 2003-10-03
Drew Copley (dcopley eeye com)

exploiting fortigate firewall through webinterface 2003-10-02
Maarten Hartsuijker (secfocus hartsuijker com)

Issue: Several vulnerabilities in web interface of Fortigate firewall of
which the most serious one will allow a remote attacker to obtain a username
and password of the Fortigate.
Release: pre 2.50 maintenance release 4
Fixed in: Fortinet OS 2.50 MR4, available from FTP as of 29 Sept. 2003
Date: 14

[ more ] [ reply ]

PINE-CERT-20030902: Integer Overflow in FreeBSD Kernel [uio] 2003-10-02
Joost Pol (joost pine nl)

Class-action suit points to Microsoft security flaws 2003-10-02
Richard M. Smith (rms computerbytesman com)

Class-action suit points to Microsoft security flaws
http://news.com.com/2100-1009-5085730.html

Microsoft faces a proposed class-action lawsuit in California based on the claim that its software's market dominance and
vulnerability to viruses could lead to "massive, cascading failures" in global c

[ more ] [ reply ]