DEBATE CONTINUES OVER SECURITY OF WINDOWS XP
Differences of opinion continue to swirl over a potentially problematic Universal Plug and Play service in Microsoft Corp.'s Windows XP operating system.
Link: http://www.cnn.com/2002/TECH/ptech/01/09/xp.security.idg/index.html

ICQ REMOTE BUFFER OVERFLOW VULNERABILITY
This is very similar to the AIM overflow recently discovered. ICQ protocol uses the same TLV (2711) packet and there is a similar weakness in the parsing of the packet.
Link: http://www.net-security.org/text/bugs/1010500333,45987,.shtml
Also - http://www.zdnet.com/zdnn/stories/news/0,4586,5101721,00.html
Also - http://punto-informatico.it/pi.asp?i=38679


LINUX INTRUSION DETECTION SYSTEM VULNERABILITY
The use of LD_PRELOAD can make a program with privileges given by LIDS execute attackers code. This mean that a root intruder can get every capability or fs access you configured LIDS to grant. Moreover, if you granted CAP_SYS_RAWIO or CAP_SYS_MODULE to a program, an attacker could deactivate LIDS and thus, access any file. In some configurations, this also lead to users being able to become root. (there must be a program granted CAP_SETUID which is not setuid)
Link: http://www.net-security.org/text/bugs/1010674784,32458,.shtml


Vulnerabilities
Source: Newsbytes
Date Written: January 14, 2002
Date Collected: January 14, 2002
Title: Details On Severe IE Hole Posted Online
The exploit instructions for the Internet Explorer file execution vulnerability of Microsoft's Internet Explorer were published today on the Internet. Oy Online of Finland discovered the vulnerability, and the company agreed to wait 30 days before publication to give users a chance to patch the holes in the system.
http://www.newsbytes.com/news/02/173622.html


Correggete 'sudo'
Mandrake e RedHat hanno messo in guardia i propri utenti da un potenziale baco di sicurezza che affligge il programma "sudo" e consigliano il suo upgrade. Il link rimanda all'Advisory di Mandrake.
http://www.ziobudda.net/Admin/redir_news.php?id=5339

Anche'at' a rischio
Momentaccio per la sicurezza in ambiente Linux. Dopo i bug rivelati ieri oggi e' il turno del comando 'at' e di 'stunell'
http://www.ziobudda.net/Admin/redir_news.php?id=5355


Non usate quel Kernel
A.Hedrick avverte tutti gli sviluppatori del kernel linux che la versione 2.5.3-pre1 del kernel stesso non è per nulla stabile e invita tutti a non applicare nessuna patch.
http://www.ziobudda.net/Admin/redir_news.php?id=5357


PRIVACY A RISCHIO COL WIN MEDIA PLAYER
A dirlo e' un noto esperto di sicurezza che fa notare come alcune versioni del player di Microsoft rendano possibile tracciare gli utenti da parte dei siti Web. Con la complicita' di Internet Explorer. Ma l'azienda ribatte
URL: http://punto-informatico.it/pi.asp?i=38696
Also - http://www.theregister.co.uk/content/55/23700.html

NetBSD: Multiple kernel vulnerabilities
Gli utenti dei sistemi BSD sono in aumento. Ma i pericoli sono dietro l'angolo, specialmente se a soffrire e' il cuore del sistema (Kernel).
http://www.ziobudda.net/Admin/redir_news.php?id=5365

Linux Advisory Watch - January 18th 2002
Linux Advisory Watch is a comprehensive newsletter that outlines the security vulnerabilities that have been announced throughout the week.It includes pointers to updated packages and descriptions of each
http://www.ziobudda.net/Admin/redir_news.php?id=5370

g00d reading! 'n' bye
Security News Staff:
The Jackal < -jackal-@libero.it >