Buqtraq Archiv September 2002
- The ScrollKeeper Root Trap,
Spybreak
- XSS in Null HTTPd,
Matthew Murphy
- [RHSA-2002:186-07] Updated scrollkeeper packages fix tempfile vulnerability,
bugzilla
- One step easier password guessing on Windows,
NP-completer
- SECNAP Security Alert: Radmin Default install options vulnerability,
Michael Scheidell
- Re: Trillian XML parser buffer overflow,
soulshock
- Happy Labor Day from Snosoft,
KF
- Outlook S/MIME Vulnerability,
Mike Benham
- Windows .NET Server (RC1) and MSDE (#NISR03092002B),
NGSSoftware Insight Security Research
- Microsoft SQL Server Stored procedures [sp_MSSetServerPropertiesn and sp_MSsetalertinfo] (#NISR03092002A),
NGSSoftware Insight Security Research
- New Paper: Threat profiling Microsoft SQL Server,
NGSSoftware Insight Security Research
- SWS Web Server v0.1.0 Exploit,
saman
- [SECURITY] [DSA 160-1] New scrollkeeper packages fix insecure temporary file creation,
Martin Schulze
- Compaq mount patch broken,
Paul Szabo
- Re: CacheFlow CacheOS Cross-site Scripting Vulnerability,
Blue
- SecuRemote usernames can be guessed or sniffed using IKE exchange,
Roy Hills
- Cisco Security Advisory: Cisco VPN 3000 Concentrator Multiple Vulnerabilities,
Cisco Systems Product Security Incident Response Team
- MSIEv6 % encoding causes a problem again,
Liu Die Yu
- Re: SUMMARY: Disabling Port 445 (SMB) Entirely,
Shaolin Tiger
- Re: Security side-effects of Word fields,
Woody Leonhard
- [security bulletin] SSRT2310a HP Tru64 UNIX & HP OpenVMS Potential OpenSSL Security Vulnerability (fwd),
Dave Ahmad
- [CLA-2002:522] Conectiva Linux Security Announcement - mailman,
secure
- Cross-Site Scripting in Aestiva's HTML/OS,
eax
- GLSA: scrollkeeper,
Daniel Ahlberg
- Cacti security issues,
Knights of the Routing Table
- AFD 1.2.14 multiple local root compromises,
Bert Vanmanshoven
- [SECURITY] [DSA 161-1] New Mantis package fixes privilege escalation,
Martin Schulze
- TRU64 formal disclosure from Snosoft.,
KF
- SPIKE 2.6 Released...,
Dave Aitel
- Bypassing the Finjan SurfinGate URL filter,
Marc Ruef
- SuSE Security Announcement: glibc (SuSE-SA:2002:031),
Roman Drahtmueller
- GLSA: amavis,
Daniel Ahlberg
- Cisco Security Advisory: Cisco VPN Client Multiple Vulnerabilities - Second Set,
Cisco Systems Product Security Incident Response Team
- advisory,
UkR security team™
- RE: (Fwd) MSIEv6 % encoding causes a problem again,
Thor Larholm
- zero-width gif: exploit PoC for NS6.2.3 (fixed in 7.0) [Was: GIFs Good, Flash Executable Bad],
zen-parse
- Foundstone Labs Advisory - Remotely Exploitable Buffer Overflow in PGP,
Foundstone Labs
- Rapid 7 Advisory R7-0005: ZMerge Insecure Default ACLs,
Rapid 7 Security Advisories
- Veritas Backup Exec opens networks for NetBIOS based attacks?,
Geoff Craig
- [SECURITY] [DSA 162-1] New ethereal packages fix buffer overflow,
Martin Schulze
- UPDATE: (Was Veritas Backup Exec opens networks for NetBIOS based attacks?),
Geoff Craig
- Next-hop scanning for open firewall ports,
David G. Andersen
- KSTAT (and maybe others) bypass,
Dark Angel
- MDKSA-2002:054-1 - gaim update,
Mandrake Linux Security Team
- All versions of windows infected?,
Iamhatingit
- NetGear FM114P URL filter bypassing vulnerability,
Marc Ruef
- PHP header() CRLF Injection,
Matthew Murphy
- Vulnerabilities in Microsoft's Java implementation,
Jouko Pynnonen
- Who framed Internet Explorer (GM#010-IE),
GreyMagic Software
- Guardent Client Advisory: Multiple wordtrans-web Vulnerabilities,
Allen . Wilson
- GLSA: glibc,
Daniel Ahlberg
- [SECURITY] [DSA 159-2] New Python packages fix problem introduced by security fix,
Martin Schulze
- phpGB: cross site scripting bug,
ppp-design
- [RHSA-2002:188-08] New wordtrans packages fix remote vulnerabilities,
bugzilla
- phpGB: mysql injection bug,
ppp-design
- phpGB: DoS and executing_arbitrary_commands,
ppp-design
- sql injection vulnerability in WBB 2.0 RC1 and below,
Cano2
- Trillian weakly encrypts saved passwords,
Evan Nemerson
- Unmask 1.0 Release Party at My House!,
Dave Aitel
- [SECURITY] [DSA 163-1] New mhonarc packages fix cross site scripting problems,
Martin Schulze
- Small bug crashes OE,
Raistlin
- Small correction...,
Raistlin
- PHP fopen() CRLF Injection,
Ulf Harnhammar
- Strange Attractors and TCP/IP Sequence Number Analysis - One Year Later,
Michal Zalewski
- MDKSA-2002:058 - kdelibs update,
Mandrake Linux Security Team
- [SECURITY] [DSA 164-1] New cacti package fixes arbitrary code execution,
Martin Schulze
- IE6 SP1 Notes,
Thor Larholm
- MDKSA-2002:057 - krb5 update,
Mandrake Linux Security Team
- [RHSA-2002:189-08] Updated gaim client fixes URL vulnerability,
bugzilla
- Password Security Policy Question,
L. Adrian Griffis
- Apple QuickTime ActiveX v5.0.2 Buffer Overrun (a091002-1),
@stake Advisories
- Foundstone Labs Advisory - Buffer Overflow in Savant Web Server,
Foundstone Labs
- [security bulletin] SSRT-547 HP Tru64 UNIX Potential Security Vulnerabilities TPC/IP, FTPD, ARP (fwd),
Dave Ahmad
- Buffer over/underflows in ssldump prior to 0.9b3,
Eric Rescorla
- KDE Security Advisory: Secure Cookie Vulnerability,
Dirk Mueller
- KDE Security Advisory: Konqueror Cross Site Scripting Vulnerability,
Dirk Mueller
- MDKSA-2002:059 - php update,
Mandrake Linux Security Team
- Final Speakers for HiverCon 2002 Announced,
Mark Anderson
- Norton AntiVirus 2001 POP3 Proxy local DoS,
Berend-Jan Wever
- slashdot / slashcode disclosing passwords,
Michal Zalewski
- Privacy leak in mozilla,
Sven Neuhaus
- Some unpatched vulnerabilities fixed,
Auriemma Luigi
- efstool slackware 7.1 local root exploit exploit included,
Cloud Ass
- Bypassing SMTP Content Protection with a Flick of a Button,
Aviram Jenik
- ht://Check XSS,
Ulf Harnhammar
- the attachement,
jelmer
- LEVERAGING CROSS-PROTOCOL SCRIPTING IN MSIE,
jelmer
- [SECURITY] [DSA 165-1] New PostgreSQL packages fix several vulnerabilities,
Martin Schulze
- Bypassing TrendMicro InterScan VirusWall,
Vincent Royer
- xbreaky symlink vulnerability,
Marco van Berkum
- [CLA-2002:523] Conectiva Linux Security Announcement - util-linux,
secure
- [SECURITY] [DSA 166-1] New purity packages fix potential buffer overflows,
Martin Schulze
- Scan against Enterasys SSR8000 crash the system,
Mella Marco
- [securitydigest.org]: Changes in August/September 2002,
Curator at Security Digest Archives
- RE: Apache worm in the wild,
Sandu Mihai
- bugtraq.c httpd apache ssl attack,
Fernando Nunes
- Re: Multiple vulnerabilities in Avaya Argent Office,
Russell Garrett
- Race condition in BRU Workstation 17.0,
prophecy
- OpenSSL worm in the wild,
Ben Laurie
- Security Issue with Mac OS X,
Christopher Allene
- Cobalt 6.0 Local Root,
Brendan C. Johnson
- Savant 3.1 multiple vulnerabilities,
Auriemma Luigi
- [RHSA-2002:036-26] Updated ethereal packages available,
bugzilla
- nidump on OS X,
Dale Harris
- NSSI-2002-sygatepfw5: Sygate Personal Firewall IP Spoofing Vulnerability,
Abraham Lincoln
- OpenSSH 3.4p1 Privsep,
Andrew Danforth
- iDEFENSE Security Advisory 09.16.2002: FreeBSD Ports libkvm Security Vulnerabilities,
David Endler
- [SECURITY] [DSA-136-2] Multiple OpenSSL problems (update),
Michael Stone
- Re: Linux Slapper Worm code,
KF
- [SECURITY] [DSA 167-1] New kdelibs fix cross site scripting bug,
Martin Schulze
- NetBSD Security Advisory 2002-011: Sun RPC XDR decoder contains buffer overflow,
NetBSD Security Officer
- NetBSD Security Advisory 2002-009:,
NetBSD Security Officer
- NetBSD Security Advisory 2002-017: shutdown(s, SHUT_RD) on TCP socket does not work as intended,
NetBSD Security Officer
- Microsoft Windows XP Remote Desktop denial of service vulnerability,
Ben Cohen
- Microsoft Windows Remote Desktop Protocol checksum and keystroke vulnerabilities,
Ben Cohen
- NetBSD Security Advisory 2002-007: Repeated TIOCSCTTY ioctl can corrupt session hold counts,
NetBSD Security Officer
- [SECURITY] [DSA-136-3] Multiple OpenSSL problems (update),
Michael Stone
- Lycos HTMLGear Guestbook Script Injection Vulnerability,
Matthew Murphy
- NetBSD Security Advisory 2002-006: buffer overrun in libc/libresolv DNS resolver,
NetBSD Security Officer
- NetBSD Security Advisory 2002-012: buffer overrun in setlocale,
NetBSD Security Officer
- joe editor backup problem,
Ondrej Suchy
- NetBSD Security Advisory 2002-013: Bug in NFS server code allows remote denial of service,
NetBSD Security Officer
- Advisory: File disclosure in DB4Web,
Stefan . Bagdohn
- Bug in Opera and Konqueror,
Zeux
- Remote detection of vulnerable OpenSSL versions,
Florian Weimer
- NetBSD Security Advisory 2002-010: symlink race in pppd,
NetBSD Security Officer
- Planet Web Software Buffer Overflow,
UkR security team™
- Multiple NetBSD Security Advisories Released/Updated,
NetBSD Security Officer
- FreeBSD Security Advisory FreeBSD-SA-02:39.libkvm,
FreeBSD Security Advisories
- Analysis of Modap worm,
Mario van Velzen
- NetBSD Security Advisory 2002-018: Multiple security isses with kfd daemon,
NetBSD Security Officer
- [SECURITY] [DSA 168-1] New PHP packages fix several vulnerabilities,
Martin Schulze
- Microsoft Windows Terminal Services vulnerabilities,
Ben Cohen
- Advisory: TCP-Connection risk in DB4Web,
Stefan . Bagdohn
- Cisco VPN 5000 client buffer overflow vulnerabilities.,
Niels Heinen
- Trillian .74 and below, ident flaw.,
Lance Fitz-Herbert
- IRIX default root umask and coredumps,
SGI Security Coordinator
- Cisco Security Advisory: Cisco VPN 5000 Client Multiple Vulnerabilities,
Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: Microsoft Windows SMB Denial of Service Vulnerabilities in Cisco Products - MS02-045,
Cisco Systems Product Security Incident Response Team
- SuSE Security Announcement: xf86 (SuSE-SA:2002:032),
Sebastian Krahmer
- NetBSD Security Advisory 2002-014: fd_set overrun in mbone tools and pppd,
NetBSD Security Officer
- Execution Rights Not Checked Correctly For 16-bit Applications,
Torbjörn Hovmark
- Fw: [ut2003bugs] remote denial of service in ut2003 demo,
Arne Schwerdtfegger
- Web browser certificate Validation flaw: Netscape, Mozilla, MSIE vulnerable - still?,
Pidgorny, Slav
- Firewall-1 –HTTP Security Server - Proxy vulnerability,
Mark van Gelder
- iDEFENSE Security Advisory 09.18.2002: Security Vulnerabilities in OSF1/Tru64 3.,
David Endler
- RE: Execution Rights Not Checked Correctly For 16-bit Application s,
Vigneau, Steve
- Foundstone Research Labs Advisory - Remotely Exploitable Buffer Overflow in ISS Scanner,
Marshall Beddoe
- trillian DoS: trillian 1.0 pro also vulnerable,
Jose Nazario
- Mozilla vulnerabilities, an update,
Thor Larholm
- The Art of Unspoofing,
eric.prince
- NetMeeting 3.01 Local RDS Session Hijacking,
Paul A Roberts
- KPMG-2002035: IBM Websphere Large Header DoS,
Peter Gründl
- The Trivial Cisco IP Phones Compromise,
Ofir Arkin
- Trillian .73 & .74 "PRIVMSG" Overflow.,
Lance Fitz-Herbert
- http://online.securityfocus.com/archive/1/291358/2002-09-08/2002-09-14/0, Subj: Norton AintiVirus 2001 POPROXY DoS,
Sym Security
- [CLA-2002:524] Conectiva Linux Security Announcement - postgresql,
secure
- Re: [Full-Disclosure] iDEFENSE Security Advisory 09.18.2002: Security Vulnerabilities in OSF1/Tru64 3.,
Steven M. Christey
- Squirrel Mail 1.2.7 XSS Exploit,
DarC KonQuesT
- More vulnerabilities (Re: Security side-effects of Word fields),
Alex Gantman
- CanSecWest/core03,
Dragos Ruiu
- [CLA-2002:525] Conectiva Linux Security Announcement - kdelibs,
secure
- ANNOUNCE: Egads 0.9.5,
EGADS Team
- ANNOUNCE: RATS 2.0,
RATS Team
- Yet Another. Trillian 'JOIN' Overflow.,
Lance Fitz-Herbert
- SuSE Security Announcement: Slapper worm (SuSE-SA:2002:033),
Olaf Kirch
- Re: [UPDATED] Advisory: Multiple 602Pro LAN SUITE 2002 Denial of Service Attacks,
Brandon Sturgeon
- And Again. Trillian 'raw 221' Overflow.,
Lance Fitz-Herbert
- Sendmail logging and short string precision allows anonymous commands/relay,
netmask {enZo}
- *sigh* Trillian multiple DoS's flaws.,
Lance Fitz-Herbert
- remote exploitable heap overflow in Null HTTPd 0.5.0,
Bert Vanmanshoven
- JAWmail XSS,
Ulf Harnhammar
- ToorCon 2002 This Weekend,
h1kari
- NetBSD Security Advisory 2002-009: Multiple vulnerabilities in OpenSSL code (updated 2002/9/22),
NetBSD Security Officer
- Technical information about the vulnerabilities fixed by MS-02-52,
Jouko Pynnonen
- IE6 SSL Certificate Chain Verification,
Zoltán Nochta
- PHP source injection in phpWebSite,
Tim Vandermeersch
- [security bulletin] SSRT2362 WEBES Service Tools (HP Tru64 UNIX, HP OpenVMS, Windows) Potential File Access Vulnerability (fwd),
Dave Ahmad
- iDEFENSE Security Advisory 09.23.2002: Directory Traversal in Dino's Webserver,
David Endler
- [CLA-2002:526] Conectiva Linux Security Announcement - xchat,
secure
- Wireless Networking Frailty,
gregh
- Now Online: OWASP Guide to Building Secure Web Applications v1.1,
David Endler
- Trillian Remote DoS Attack - AIM,
Spikeman
- Kondara MNU/Linux,
Kurt Seifried
- HP Procurve 4000M Stacked Switch HTTP Reset Vulnerability,
Brook Powers
- Slapper worm redux;,
Ron DuFresne
- JSP source code exposure in Tomcat 4.x,
Rossen Raykov
- Xoops RC3 script injection vulnerability,
das
- Apache 2.0.(39|40) DOS (PHP!),
shaddup
- PHPNUKE 6 XSS Vulnerabilities,
Mark Grimes
- Information Disclosure with Invision Board installation (fwd),
Gossi The Dog
- [RHSA-2002:060-17] Updated Zope packages are available,
bugzilla
- Shana Informed 3.05 information disclosure,
sullo
- IIL Advisory: Format String bug in Null Webmail (0.6.3),
DownBload
- IIL Advisory: Vulnerabilities in acWEB HTTP server,
DownBload
- OpenVMS POP server local vulnerability,
Mike Riley
- GLSA: tomcat,
Daniel Ahlberg
- ECHU Alert #2: IMG Attack in the news : 6 CMS vulnerables,
das
- IIL Advisory: Reverse traversal vulnerability in Monkey (0.1.4) HTTP server,
DownBload
- PHP-Nuke x.x SQL Injection,
Pedro Inacio
- Fwd: QuickTime for Windows ActiveX security advisory,
Marc Bejarano
- Borland Interbase local root exploit,
grazer
- iDEFENSE Security Advisory 09.26.2002: Exploitable Buffer Overflow in gv,
David Endler
- Re: Xoops RC3 script injection vulnerability fixed,
Sergio
- Errata: iDEFENSE Security Advisory 09.26.2002: Exploitable Buffer Overflow in gv,
David Endler
- Microsoft PPTP Server and Client remote vulnerability,
sh
- [SECURITY] [DSA 149-2] New glibc packages fix,
Martin Schulze
- Postnuke XSS issues,
Mark Grimes
- PHP-Nuke x.x AND PostNuke SQL Injection,
Pedro Inacio
- Postnuke XSS issues [correction],
Mark Grimes
- remote SYSTEM compromise in WASD OpenVMS http server,
Jean-loup Gailly
- Watchguard firewall appliances security issues,
Joao Gouveia
- GLSA: dietlibc,
Daniel Ahlberg
- Yet another XSS vulnerability in PHP NUKE,
ersatz
- GLSA: glibc (update),
Daniel Ahlberg
- Allot Netenforcer problems, GNU TAR flaw,
Bencsath Boldizsar
- Re: Hacking Citrix Faq (fwd),
Dave Ahmad
- Another possible RFC 2046 vulnerability.,
Jose Marcio Martins da Cruz
- Software Update Available for Legacy RapidStream Appliances and W atchGuard Firebox Vclass appliances,
Steve Fallin
- Jetty jsp/servlet engine xss / uname disclosure vuln,
skinnay
- SafeTP coughs up internal server IP addresses,
Jonathan G. Lampe
- iDEFENSE Security Advisory 09.30.2002: Buffer Overflow in WN Server,
David Endler
- Advisory 03/2002: Fetchmail remote vulnerabilities,
Stefan Esser
- [RHSA-2002:096-24] Updated unzip and tar packages fix vulnerabilities,
bugzilla
- [LoWNOISE] "Get Knowledge" SunONE Starter Kit - Sun Microsystems/Astaware,
ET LoWNOISE
- XSS bug in Monkey (0.5.0) HTTP server,
DownBload
- QT Assistant leaves port unfiltered,
Rohit Sharma
- SuSE Security Announcement: heimdal (SuSE-SA:2002:034),
Sebastian Krahmer
- MyNewsGroups :) XSS patch,
Ulf Harnhammar
- IIL Advisory: Winamp 3 (1.0.0.488) XML parser buffer overflow vulnerability,
annihilator
- local exploitable overflow in rogue/FreeBSD,
stanojr
- NETGEAR FVS318 Information Disclosure,
Fab\\AIS
- XSS bug in MyMarket 1.71,
qber66
Mail converted by MHonArc