-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

=====================================================================
secondmotion-SM-SA-02-02 Security Advisory
=====================================================================
Topic: ZoneEdit Account Hijack Vulnerabilit

[ more ]  [ reply ]

In-Reply-To: <20021104171742.GA941 (at) oisec (dot) net [email concealed]>

>

>The D-Link DI-614+ (which is based on the GL2422RT) is not vulnerable to

this problem

>

This is not true. Also the DI-614+ (Firmware v2.03) is affected! We were

able to download all these files using TFTP the same way it is possible on

the

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----

________________________________________________________________________
______

SuSE Security Announcement

Package: perl-MailTools
Announcement-ID: SuSE-SA:2002:041
Date: Tue

[ more ]  [ reply ]

----------------------------------------------------------------------
SNS Advisory No.58
Microsoft IIS Local Cross-site Scripting Vulnerability

Problem first discovered: Tue, 28 May 2002
Published: Tue, 5 Nov 2002
Reference: http://www.lac.co.jp/security/intelligence/SNSAdvisory/58.html
----------

[ more ]  [ reply ]

The Linksys WAP11-V2.2 appears to be at least partially susceptible to
this trick:

$ ./ksn-wap
Type : GL2422AP-00-0M0 T1.0 -02

Announced Name : yyy
Admin Username :
Admin Password :

PaulM

-----Original Message-----
From: Tom Knienieder [mailto:knienieder (at) khamsin (dot) ch [email concealed]]
Sent: Sunday,

[ more ]  [ reply ]

NGSSoftware Insight Security Research Advisory

Name: Oracle iSQL*Plus buffer overflow
Systems: Oracle Database 9i R1,2 on all operating systems
Severity: High Risk
Vendor URL: http://www.oracle.com/
Author: David Litchfield (david (at) ngssoftware (dot) com [email concealed])
Advisory URL: http://www.ngssoftware.com/advisories

[ more ]  [ reply ]

KHAMSIN Security News
KSN Reference: 2002-11-01 0001 ULO
------------------------------------------------------------------------
---

Title
-----
Accesspoints disclose wep keys, password and mac filter

Date
----
2002-11-01

Description:
------------

GlobalSunTech develops Wireles

[ more ]  [ reply ]

Hi guys from all over the world. I'm very happy to announce the world,
the new development version of AngeL. AngeL is linux kernel module
designed with security as goal.

However, it is not AngeL's purpose to defend your host from your network
neighbours. AngeL prevents your host from becoming a ho

[ more ]  [ reply ]

*** A3 Security Consulting: CR@K Vulnerability Research ***

Title : MS IIS out of process privilege elevation
vulnerability(A3CR@K-Vul-2002-06-002)
Reporter : li0n (li0n (at) a3sc.co (dot) kr [email concealed])
Affected software : IIS 4.0, 5.0, 5.1
Risk : High
Local/Remote : Local
Category : Windows - IIS - Privilege elevati

[ more ]  [ reply ]

In-Reply-To: <Pine.LNX.4.44.0209270208190.21585-100000 (at) datacontact (dot) hu [email concealed]>

Hello,

Allot has addressed all security problems mentioned in the

posting of Boldizsar Bencsath in our new version,

4.2.4, scheduled end November 2002. To be more

specific, the following fixes were implemented:

1. SSH p

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

iDEFENSE Security Advisory 11.04.02a:
http://www.idefense.com/advisory/11.04.02a.txt
Pablo FTP Server DoS Vulnerability
November 4, 2002

I. BACKGROUND

Pablo Software Solutions' FTP Server is a multi-threaded FTP server
for Windows 98, NT 4.0, 2000 an

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

iDEFENSE Security Advisory 11.04.02b:
http://www.idefense.com/advisory/11.04.02b.txt
Denial of Service Vulnerability in Xeneo Web Server
November 4, 2002

I. BACKGROUND

Northern Solutions' Xeneo Web Server is a "fast, compact web server
that makes it

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
--
Debian Security Advisory DSA 187-1 security (at) debian (dot) org [email concealed]
http://www.debian.org/security/ Martin Schulze
November 4th, 2002

[ more ]  [ reply ]

=================================================
Advisory: Weak Password Encryption Scheme (Modified) in MS SQL Server
Software: SQL Server, All Versions
Severity: Low
Vendor: Microsoft, http://www.microsoft.com
Type of Vulnerability: Weak Password Encryption
Author: K. K. Mookhey (cto (at) nii.co (dot) in [email concealed])
C

[ more ]  [ reply ]

Hi,

> ion-p.exe allows Remote File Retrieving
>
> www.Server.com/cgi-bin/ion-p.exe?page=c:\winnt\repair\sam
>

The 'ion-p' *NIX version is also vulnerable. Directory traversal chars can be used, too:

/cgi-bin/ion-p?page=../../../../../etc/hosts

Bye,

Stuart

--
Stuart Moore
SecurityTracker.c

[ more ]  [ reply ]

Heysoft Security Bulletin
--------------------------------------------------------------------

Title: Bug in EventSave and EventSave+

Date: 01 November 2002

Software: EventSave prior to version 5.3
EventSave+ prior to version 5.3

Vendor: Frank Heyne Software
http://www.heysoft.de/

Impa

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

iDEFENSE Security Advisory 11.01.02:
http://www.idefense.com/advisory/11.01.02.txt
Buffer Overflow Vulnerability in Abuse
October 31, 2002

I. BACKGROUND

Abuse is a popular side-scrolling video game. More information can be
found at http://jonathancla

[ more ]  [ reply ]

There is a major correction to this data. Netscreen contacted me a couple
of minutes after posting this. When they confirmed it was vulnerable to
CRC32, it appears they were actually confirming there was a 'problem', and
not the actual CRC32 bug.

This DoS is unrelated to the CRC32 bug, howeve

[ more ]  [ reply ]

Discovered by: HD Moore
Products Tested: Netscreen-25 (All models expected to be vulnerable)
Vendor contacted: October 23rd
Vendor confirmed: October 23rd
CVE: CVE-2001-0144 covered this bug.

Original Bug discovered by: Michal Zalewski of the BindView RAZOR Team.

In February of 2001, BindView's R

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: MD5

Mindwall is an advanced network security system. It is a combined software
that provides you with information, alerts and controls to protect your
system from external attacks and intrusions, and internal abuses.

Mindwall major features are:

- - Networ

[ more ]  [ reply ]

ion-p.exe allows Remote File Retrieving

Exploit Example:

www.Server.com/cgi-bin/ion-p.exe?page=c:\winnt\repair\sam

Zero X, member of www.lobnan.de
--

Powered by Outblaze

[ more ]  [ reply ]

I recently tested an Iomega NAS A300U and discovered that it has several
security and inter-operability issues as outlined in the following.

Affected Systems:

Device: Iomega NAS A300U
O/S: FreeBSD 3.5 (this has not been verified)
Manager Version: Iomega NAS Manage

[ more ]  [ reply ]

In-Reply-To: <3DC19BF6.7734.81AE5A5@localhost>

I tested this vulnerability on a Linksys Wireless Access Point Router

with 4-Port Switch - BEFW11S4 Version 2 with firmware 1.42.7 and the

vulnerability is there too. It hangs the router for about 5 seconds,

after that it turns to normal function

[ more ]  [ reply ]

[Note to Moderator:
This vulnerability would probably affect only the 500,000 or so Indian
subscribers of the Indian ISP - VSNL. But there being no India-specific
forum to post bugs we are posting it here.]

========================================
Name: Integrated Dialer Software for VSNL
Version:

[ more ]  [ reply ]