SecurityFocus

to moderator! [re: Multiple* bug's associated with Win xp default zip Manager...] 2003-09-11
hUNTER 007 (door_hunt3r blackcodemail com)

the mirror of the exploit hosted on geocities exceeded its bandwith limit

so please update the url [proof of concept of the exploit]

http://www.ysgnet.com/hn/advisory/exploit/winxp_zip_bug.zip

http://www.ysgnet.com/hn/advisory/exploit/zip_long.zip

http://www.ysgnet.com/hn/advisory/explo

[ more ] [ reply ]

Computer Sabotage by Microsoft 2003-09-11
Stefan Esser (s esser e-matters de)

Hi,

well it finally happened. I came back home after work, connected my
XBOX to the internet and went into the XBOX-Live menu configuration.
Well what happened. The XBOX started automaticly downloading the new
crappy XBOX-Live dashboard, which is of course fixed.

This is IMHO an act of computer s

[ more ] [ reply ]

SRT2003-09-11-1200 - setgid man MANPL overflow 2003-09-12
KF (dotslash snosoft com)

The full version of this advisory can be found at.
http://www.secnetops.com/research/advisories/SRT2003-09-11-1200.txt

Quick Summary:
************************************************************************

Advisory Number : SRT2003-09-11-1200
Product : Andries Brouwer man

[ more ] [ reply ]

Windows 2003 Server - Defeating the stack protection mechanism 2003-09-11
NGSSoftware Insight Security Research (nisr nextgenss com)

For those interested, NGSS has just published a paper describing how to
defeat the mechanism built into Windows 2003 Server to prevent exploitation
of stack based buffer overflow vulnerabilities. Previous work done in this
area presented methods that only worked in highly specific scenarios - the
ne

[ more ] [ reply ]

Symantec wants to criminalize security info sharing 2003-09-11
Richard M. Smith (rms computerbytesman com)

Hi,

Here's an interesting quote from John Schwarz, the COO of Symantec, in a
Wired.com article from today:

Just Say No to Viruses and Worms
http://www.wired.com/news/infostructure/0,1377,60391,00.html

"But perhaps the most controversial suggestion came
from John Schwarz, president an

[ more ] [ reply ]

[ESA-20030911-022] Multiple 'pine' remote vulnerabilities. 2003-09-11
EnGarde Secure Linux (security guardiandigital com)

Invision Power Board : XSS in [FONT] and [COLOR] tags. 2003-09-11
Frog Man (leseulfrog hotmail com)

Informations :
°°°°°°°°°°°°°°
Language : PHP
Version : 1.2 FINAL
Website : http://www.invisionboard.com/
Problem : Permanent XSS

Dev :
°°°°°
[FONT=expression(alert(document.cookie))]text[/FONT] will made the HTML :
<span style='font-family:expression(alert(document.cookie))'>text</span>
[COLOR=expr

[ more ] [ reply ]

SuSE Security Announcement: pine (SuSE-SA:2003:037) 2003-09-11
Thomas Biege (thomas suse de)

[SECURITY] [DSA 379-1] New sane-backends packages fix several vulnerabilities 2003-09-11
joey infodrom org (Martin Schulze)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
Debian Security Advisory DSA 379-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Martin Schulze
September 11th, 2003

[ more ] [ reply ]

LiuDieYu's missing files are here. 2003-09-11
Liu Die Yu (liudieyuinchina vip sina com cn)

related files of the following documents are attached.

(+)AT TODAY'S BUGTRAQ:
MSIE->WsOpenJpuInHistory
MSIE->WsOpenFileJPU
MSIE->WsFakeSrc
MSIE->WsBASEjpu
MSIE->RefBack
MSIE->NAFjpuInHistory
MSIE->NAFfileJPU
MSIE->LinkillerSaveRef:another caller-based authorization
MSIE->LinkillerJPU:another caller

[ more ] [ reply ]

myPHPNuke : Copy/Upload/Include Files 2003-09-11
Frog Man (leseulfrog hotmail com)

Informations :
°°°°°°°°°°°°°
Language : PHP
Version : 1.8.8_7
Website : http://www.myphpnuke.com
Problems : - Upload/Copy/Include Files

PHP Code/Location :
°°°°°°°°°°°°°°°°°°°

gallery/displayCategory.php :

------------------------------------------
[...]
<?php

include ("$basepath/imageFunctions

[ more ] [ reply ]

[RHSA-2003:273-01] Updated pine packages fix vulnerabilities 2003-09-11
bugzilla redhat com

[slackware-security] security issues in pine (SSA:2003-253-01) 2003-09-11
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] security issues in pine (SSA:2003-253-01)

Upgraded pine packages are available for Slackware 8.1, 9.0 and
- -current. These fix two security problems found by iDEFENSE Labs
which could lead to arbitrary code execution when a spec

[ more ] [ reply ]

Question on MS03-039 2003-09-10
Larry Mosley (lemosley01 wowway com)

I see Microsoft references COM Internet Services and RPC over HTTP in the

FAQ section of this bulletin, but nowhere else (like the technical

description). Everywhere else, they reference only RPCSS. I am assuming

that this vulnerability exists regardless of the installation status of

CIS o

[ more ] [ reply ]

[UPDATED] OpenServer 5.0.5 OpenServer 5.0.6 OpenServer 5.0.7 : Samba security update available avaliable for download. 2003-09-10
security sco com

To: full-disclosure (at) lists.netsys (dot) com [email concealed] bugtraq (at) securityfocus (dot) com [email concealed] announce (at) lists.caldera (dot) com [email concealed]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

________________________________________________________________________
______

SCO Security Advisory

Subject: OpenServer 5.0.5 OpenServer 5.0.6 OpenServer

[ more ] [ reply ]

Buffer overflow in MySQL 2003-09-10
Jedi/Sector One (j c9x org)

Product : MySQL
Date : 10/09/2003
Author : Frank Denis <j (at) pureftpd (dot) org [email concealed]>

------------------------[ Product description ]------------------------

From the web site :

MySQL is the world's most popular open source database, recognized for its
speed and reliability.

Today MySQL is the

[ more ] [ reply ]

CERT Advisory CA-2003-23 RPCSS Vulnerabilities in Microsoft Windows 2003-09-10
CERT Advisory (cert-advisory cert org)

EEYE: Microsoft RPC Heap Corruption Vulnerability - Part II 2003-09-10
Marc Maiffret (marc eeye com)

Microsoft RPC Heap Corruption Vulnerability - Part II

Release Date:
September 10, 2003

Severity:
High (Remote Code Execution)

Systems Affected:
Microsoft Windows NT Workstation 4.0
Microsoft Windows NT Server 4.0
Microsoft Windows NT Server 4.0, Terminal Server Edition
Microsoft Windows 2000
Micr

[ more ] [ reply ]

FTGate Pro Server - Multiple Vulnerabilities 2003-09-10
Phuong Nguyen (dphuong yahoo com)

Release Date: 09/01/2003

TITLE
=====
FTGate Pro - Multiple Vulnerabilities

DESCRIPTION
============
?FTGate is a professional, award winning family of
mail server applications that offer you exceptional
performance, comprehensive features, ease of use and
advanced security features in a cost effec

[ more ] [ reply ]

iDEFENSE Security Advisory 09.10.03: Two Exploitable Overflows in PINE 2003-09-10
iDEFENSE Labs (labs idefense com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

iDEFENSE Security Advisory 09.10.03:
http://www.idefense.com/advisory/09.10.03.txt
Two Exploitable Overflows in PINE
September 10, 2003

I. BACKGROUND

PINE (The Program for Internet News & Email) is a popular e-mail client
shipped with many Linux and

[ more ] [ reply ]

MSIE->Findeath: break caller-based authorization 2003-09-10
Liu Die Yu (liudieyuinchina yahoo com cn)

Findeath: break caller-based authorization.

("that's all" is end of file if you are in a hurry)

[tested]

Browser Ver

{

MS Internet Explorer: 6.0.2600.0000.xpclnt_qfe.021108-2107;

Encryption: 128-bit;

Patch:; Q810847;

}

(So, it's far from fully patched.)

OS Ver: "Windows XP Cn ver"

[ more ] [ reply ]

Gordano Messaging Suite - Multiple Vulnerabilities 2003-09-10
Phuong Nguyen (dphuong yahoo com)

Release Date: 09/04/2003

TITLE
=====
Gordano Messaging Suite ? Multiple Vulnerabilities

DESCRIPTION
===========
?Gordano Messaging Suite is the powerful messaging
server running on Windows, Linux, Solaris and AIX. It
is being used by over twenty four thousand customers,
in more than ninety c

[ more ] [ reply ]