GnomixLand :: Manuali, immagini, fotografie e tanto altro a portata di un click

"Linux Advisory Watch - April 12th 2002"
http://www.ziobudda.net/news/see_comments.php?id_notizia=6546

EMERGE IL PRIMO VIRUS PER SAP R/3
Gli esperti di sicurezza hanno scoperto il primo virus scritto per infettare la nota e diffusa piattaforma industriale
URL: http://punto-informatico.it/pi.asp?i=39796

Watchguard SOHO Denial of Service
http://www.net-security.org/text/bugs/1018349524,51702,.shtml

IE Word ActiveX DoS Loop
http://www.net-security.org/text/bugs/1018442259,66851,.shtml

Windows 2000 and NT4 IIS .ASP Remote Buffer Overflow http://www.net-security.org/text/bugs/1018532806,92586,.shtml

Watchguard SOHO IP Restrictions Flaw
http://www.net-security.org/text/bugs/1018532669,50131,.shtml

.htr Heap Overflow in IIS 4.0 and 5.0
http://www.net-security.org/text/bugs/1018532587,94877,.shtml

Remote Code Execution in few CGIscript.net Scripts http://www.net-security.org/text/bugs/1018442558,30606,.shtml

Vulnerabilities
Source: Network World Fusion
Date Written: April 15, 2002
Date Collected: April 15, 2002
Title: Put to the test
As cyber attacks become more sophisticated, for example, employing polymorphic buffer overflow attack techniques as used by the ADMutate tool, signature-based intrusion detection systems (IDS) will increasingly become overwhelmed. In order to adapt to the new generation of threats, IDS defenses must continue to evolve to anomaly and behavior-based detection methods.
http://www.nwfusion.com/news/2002/0415idsevad.html

"Web Services Security (WS-Security)"
Da IBM una nuova buona lettura. Dall'abstract: "WS-Security describes enhancements to SOAP messaging to provide quality of protection through message integrity, message confidentiality, and single message authentication. These mechanisms can be used to accommodate a wide variety of security models and encryption technologies."
http://www.ziobudda.net/news/see_comments.php?id_notizia=6566

"Kernel 2.5.8"
Questa volta è il turno di Torvalds che rilascia una nuova versione del kernel di sviluppo. E non sono poche le novità.
http://www.ziobudda.net/news/see_comments.php?id_notizia=6557

"OpenBSD local root compromise found and fixed"
Scoperto un Bug all'interno di OpenBSD tramite il quale è possibile "prendere" i privilegi di root utilizzando semplicemente il comando mail.
http://www.ziobudda.net/news/see_comments.php?id_notizia=6552

Technology
Source: EWeek.com
Date Written: April 15, 2002
Date Collected: April 16, 2002
Title: Flaws in Microsoft Tool Mount
Reports of problems with Microsoft Corp.'s free Baseline Security Analyzer tool have been mounting since its release last week. The Analyzer, which is meant to be a more user-friendly version of the HFNetChk command-line tool, scans a variety of Microsoft systems for vulnerabilities and provides information on missing security patches. However, application of the tool reportedly leads to the discovery of some non-existent flaws, while some existing patches are ignored.
http://www.eweek.com/article/0,3658,s=712&a=25576,00.asp

Vulnerabilities
Source: OSAC Cybernews
Date Written: April 16, 2002
Date Collected: April 16, 2002
Title: Default Settings: The Hacker's Way Into Your System Default settings on Microsoft systems often open up many doors for malicious hackers by automatically enabling functions and services, often without the user's knowledge. In fact, default installations of operating systems and applications are listed as the top security vulnerability on the SANS/FBI top twenty list.
http://www.ds-osac.org/edb/cyber/news/story.cfm?KEY=7879

"Kernel 2.4.19-pre7"
E' uscita un'altra pre-release del kernel di linux.
Ecco il changelog:
http://www.kernel.org/pub/linux/kernel/v2.4/testing/patch-2.4.19.log
http://www.ziobudda.net/news/see_comments.php?id_notizia=6582

Vulnerabilities
Source: vnunet.com
Date Written: April 17, 2002
Date Collected: April 17, 2002
Title: Microsoft patches 'critical' Office flaw Microsoft Corp. issued a security patch, on April 16, 2002, to address a critical flaw in several versions of Mac Office. The buffer overflow vulnerability, which was discovered by Josha Bronson at AngryPacket Security in January 2002, potentially allows an attacker to run malicious code on a system or make it crash by exploiting input to a certain HTML (Hypertext Markup Language) feature.
http://www.vnunet.com/News/1130982
Also - http://zdnet.com.com/2100-1104-884577.html
Also - http://www.infoworld.com/articles/hn/xml/02/04/17/020417hnmac.xml

"Linux VPN Masquerade HOWTO"
Come al solito i creatori dei vari HOWTO danno ancora una volta segno della loro bravura.
http://www.ziobudda.net/news/see_comments.php?id_notizia=6592

"SecurityFocus Newsletter #140"
http://www.ziobudda.net/news/see_comments.php?id_notizia=6587

"SecurityFocus Linux Newsletter #76"
http://www.ziobudda.net/news/see_comments.php?id_notizia=6585

Net Security
The IE back-button attack. We're not making this up http://www.theregister.co.uk/content/55/24902.html

The Nessus Team is pleased to announce the availability of Nessus 1.2.0 Nessus is available at :
ftp://ftp.nessus.org/pub/nessus/nessus-1.2.0/

Technology
Source: Info World
Date Written: April 17, 2002
Date Collected: April 18, 2002
Title: Microsoft defends Baseline Security Analyzer tool Microsoft Corp. has responded to mounting criticism of its recently-released Microsoft Baseline Security Analyzer (MBSA) vulnerability scanning tool by saying that the problem may lie with users misinterpreting the results offered by the product.
http://www.infoworld.com/articles/hn/xml/02/04/17/020417hnmsbsa.xml

Technology
Source: ZDNet News
Date Written: April 17, 2002
Date Collected: April 18, 2002
Title: Not just sci-fi: Uncrackable encryption Dr. Richard Hughes, a researcher with the Physics Division at the Los Alamos National Laboratory, is developing a way to transmit encryption keys that cannot be broken by hackers because, doing so, would violate the Heisenberg Uncertainty Principle of quantum mechanics. The technique involves encoding information on individual photons.
http://techupdate.zdnet.com/techupdate/stories/main/0,14179,2861716,00.html

Vulnerabilities
Source: Info World
Date Written: April 18, 2002
Date Collected: April 18, 2002
Title: Microsoft patches up SQL Server Microsoft Corp. released a security patch, on April 17, 2002, to close a buffer overflow vulnerability in its SQL Server 7.0 and 2000 databases. The flaw, which is classified as a moderate threat, could potentially be exploited by a malicious attacker to run arbitrary code or crash a vulnerable machine http://www.infoworld.com/articles/hn/xml/02/04/18/020418hnsqlhole.xml

Vulnerabilities
Source: vnunet.com
Date Written: April 18, 2002
Date Collected: April 18, 2002
Title: DoS attack storms port 445
According to analysis from KPMG Denmark, default registry settings on desktop and server versions of Windows 2000 could make systems vulnerable to denial of service (DoS) attacks through port 445. Specifically, the flaw, which is said to be easy to exploit, affects the Windows 2000 Lanman network management service. Microsoft has already released a paper describing the problem and suggesting possible solutions.
http://www.vnunet.com/News/1131065

Vulnerabilities
Source: Wired News
Date Written: April 17, 2002
Date Collected: April 18, 2002
Title: Another Big MS Browser Hole Found A vulnerability has been discovered in several different versions of Microsoft Corp.'s popular Internet Explorer web browser software. The flaw potentially allows an attacker to run JavaScript code on a machine on which the user hits the back or refresh buttons on his browser while visiting a malicious site. In this fashion, malicious code can be executed and the "browser's security settings for the 'Internet' zone can be bypassed". The vulnerability was first discovered and reported to Microsoft by Andreas Sandblad, a Swedish engineering student, but the software giant responded that the flaw did not meet its definition of a security vulnerability because it requires "specific user interaction."
http://www.wired.com/news/technology/0,1282,51899,00.html
Also - http://www.vnunet.com/News/1131017
Also - http://www.theregister.co.uk/content/4/24902.html
Also - http://www.ziobudda.net/news/see_comments.php?id_notizia=6604

"LDP Weekly News 2002-04-16"
Tutto quello che è successo nel mondo della documentazione linux nella settimana appena passata.
http://www.ziobudda.net/news/see_comments.php?id_notizia=6605

MAC, AGGIORNATI MACOSX E OUTLOOK EXPRESS Mentre Apple ha rilasciato un nuovo aggiornamento per Mac OS X, il 10.1.4, Microsoft ha reso disponibili una nuova versione di Outlook Express ed una patch per Office 2001
URL: http://punto-informatico.it/pi.asp?i=39873

-->> WinXP e problemi con GDI new
Microsoft ha rilasciato una patch per risolvere alcuni problemi rilegati nella libreria GDIPLUS.DLL, utilizzata da Windows XP.
URL: http://www.hwfiles.it/news/227.html

Cybercrime-Hacking
Source: Gibson Research Corporation
Date Written: February 22, 2002
Date Collected: April 19, 2002
Title: Distributed Reflection Denial of Service This interesting tutorial offers an analysis of a so-called distributed reflection denial of service (DRDoS) attack launched against the Gibson Research Corporation's site on January 11, 2002. This novel form of DoS attack was apparently perpetrated by hundred of the Internet's core routers, which were responding to spoofed connection requests claiming to come from the site.
http://grc.com/dos/drdos.htm

Vulnerabilities
Source: Techweb
Date Written: April 17, 2002
Date Collected: April 19, 2002
Title: Cookies Take A Bite Out Of Security One of the latest security threats to emerge in the past year are website-based intrusions, utilizing "unencrypted cookies, shopping carts, or vulnerable CGI scripts." With users increasingly blocking off other potential avenues for intrusions, hackers are turning to websites to help them gain access to vulnerable machines and personal data.
http://content.techweb.com/tech/security/20020417_security

Vulnerabilities
Source: NewsFactor
Date Written: April 19, 2002
Date Collected: April 19, 2002
Title: Hacking Through the Wireless Jungle Wireless local area networks (WLANs) have become more common in recent years, but many such networks are highly vulnerable to hackers wishing to gain unauthorized access to sensitive information or launch denial of service
(DoS) attacks against the system. This vulnerability can be ascribed to "the weak level of security inherent in the WEP (wired equivalency protocol), which is the encryption used on WLANs", as well as the fact that many WLANs are run with WEP turned off. For a higher degree of wireless security, setting up a virtual private network (VPN) may be the best solution.
http://www.newsfactor.com/perl/story/17342.html

g00d reading! 'n' bye
Security News Staff:
The Jackal a.k.a. jAcKa||0
< -jackal-@libero.it >