Opera
Vendor: Opera Software
An undisclosed vulnerability was reported in version 7 of the Opera web browser. A remote user can read files on the target user's computer and can execute scripting code in any security domain.
Impact: Disclosure of system information
Alert: http://securitytracker.com/alerts/2002/Nov/1005634.html

Mozilla Browser
Vendor: Mozilla.org
A heap overflow vulnerability involving the processing of 'jar:' URIs was reported in the Mozilla browser. A remote user can cause arbitrary code to be executed on a target user's browser when the target user views a malicious GIF file.
Impact: Execution of arbitrary code via network
Alert: http://securitytracker.com/alerts/2002/Nov/1005633.html

Tcpdump
Vendor: Tcpdump.org
It was reported that the tcpdump and libpcap source code distributions may have been modified to contain malicious code.
Impact: Execution of arbitrary code via network
Alert: http://securitytracker.com/alerts/2002/Nov/1005625.html

KDE
Vendor: KDE.org
A vulnerability was reported in KDE's KIO subsystem in the rlogin and telnet protocol implementation. A remote user can cause arbitrary commands to be executed on the system.
Impact: Execution of arbitrary code via network
Alert: http://securitytracker.com/alerts/2002/Nov/1005609.html

BIND
Vendor: ISC (Internet Software Consortium) Several vulnerabilities were reported in BIND4 and BIND8 implementations of the Domain Name Service (DNS) protocol. A remote user can cause the service to crash. A remote user may be able to execute arbitrary code on the server.
Impact: Denial of service via network
Alert: http://securitytracker.com/alerts/2002/Nov/1005605.html

TCP/IP Stack Implementation
Vendor: IBM
A denial of service vulnerability was reported in IBM's AIX operating system. A remote user can cause the system to crash in a certain configuration.
Impact: Denial of service via network
Alert: http://securitytracker.com/alerts/2002/Nov/1005604.html

KGPG
Vendor: y0k0
A vulnerability was reported in KGPG, a front-end for GnuPG. A local user could gain access to a target user's key.
Impact: Disclosure of authentication information
Alert: http://securitytracker.com/alerts/2002/Nov/1005594.html

"RedHat: nel kernel vulnerabilità di tipo DoS"
Un bollettino di sicurezza denuncia gravi bugs sul kernel di RadHat: si consiglia l'aggiornamento immediato http://www.ziobudda.net/news/see_comments.php?id_notizia=9200

"Installazione ed ottimizzazione della RedHat"
La documentazione proveniente da IBM è sempre stata di ottimo livello e Linux è ormai da tempo uno dei principali argomenti coperti nei suoi tutorial.
http://www.ziobudda.net/news/see_comments.php?id_notizia=9199

"New kernel fixes local denial of service issue"
The kernel in Red Hat Linux 7.1, 7.1K, 7.2, 7.3, and 8.0 are vulnerable to a local denial of service attack.
http://www.ziobudda.net/news/see_comments.php?id_notizia=9192

Vulnerabilities
Title: Advisory 02-009: "Multiple Vulnerabilities in ISC BIND versions 4 and 8"
Source: NIPC Daily Report
Date Written: November 15, 2002
Date Collected: November 18, 2002
The National Infrastructure Protection Center (NIPC) and CERT C/C of Carnegie Mellon University have issued warnings about "several new vulnerabilities in the Internet Software Consortium's (ISC) Berkeley Internet Name Domain (BIND) software, which is used by many ISPs to provide DNS services." The vulnerabilities affect almost all "currently deployed recursive Domain Name System (DNS) servers on the Internet," and could lead to a denial of service attack or a remote execution of arbitrary code. The NIPC strongly advises affected users upgrade to BIND version 9.2.1 or apply all available patches from their vendors.
http://www.nipc.gov/warnings/advisories/2002/02-009.htm
Also - http://www.cert.org/advisories/CA-2002-31.html
Also - http://techupdate.zdnet.com/techupdate/stories/main/0,14179,2897711,00.html

SECURE TWICE, OPEN ONCE
The increasing popularity of VPN technology has exposed a number of serious vulnerabilities in the software used to connect thousands of remote offices and workers to their corporate networks.
>> http://www.net-security.org/news.php?id=1417

TECHNOLOGY HACKERS BEWARE: QUANTUM ENCRYPTION IS COMING Quantum encryption pioneers promise to put the world's first uncrackably secure networks online by early 2003.
>> http://www.net-security.org/news.php?id=1426

ENCRYPTED NFS WITH OPENSSH AND LINUX
NFS is a protocol that allows computers to share files over a network. It has several security related problems. This article provides a solution to most of these problems for Linux clients and servers.
>> http://www.net-security.org/news.php?id=1440

MAINTAINING CREDIBLE IIS LOG FILES
This article will offer advice on how to maintain the credibility of IIS log files.
>> http://www.net-security.org/news.php?id=1447

Spoofing - Arts of attack and defense
>> http://www.net-security.org/article.php?id=262

"La guida al ''sistema sicuro''"
Nella prefazione di questa interessante guida l'autore illustra quali motivazioni hanno sotteso la stesura di questo documento: il desiderio di liberarsi di una certa parte di responsabilità per l'enorme numero di sistemi mal configurati da parte di programmatori e sistemisti incompetenti.
http://www.ziobudda.net/news/see_comments.php?id_notizia=9221

"Linux 2.5.48"
Ecco a voi la nuova release del kernel linux ramo 2.5 (unstable). Molti i piccoli fix e poche le nuove features.
http://www.ziobudda.net/news/see_comments.php?id_notizia=9246

Vulnerabilities
Title: Vulnerability Note VU#457875
Source: CERT
Date Written: November 19, 2002
Date Collected: November 20, 2002
The CERT Coordination Center of Carnegie Mellon University issued a vulnerability note focused on a vulnerability in DNS services whereby "multiple simultaneous queries for the same resource record... [could allow] an attacker to apply probabilistic techniques to improve their odds of successful DNS spoofing."
http://www.kb.cert.org/vuls/id/457875

MICROSOFT ISSUES CRITICAL PATCH
By Shawna McAlearney
Microsoft yesterday issued a patch for a critical vulnerability in its Data Access Components (MDAC) and Internet Explorer (IE) that could allow an attacker to run code of his choice on vulnerable systems. Microsoft recommends affected users apply the patch immediately. Web server administrators running an affected version of MDAC should install the patch, disable MDAC and/or RDS, or upgrade to MDAC 2.7.
http://www.microsoft.com/technet/security/bulletin/MS02-065.asp
End User Bulletin:
http://www.microsoft.com/security/security_bulletins/ms02-065.asp

"Configurare ed usare un proxy FTP"
Come aumentare la sicurezza del vostro server FTP? Un proxy a livello di firewall può fare molto. Una guida all'installazione e all'uso sul Linux Journal.
http://www.ziobudda.net/news/see_comments.php?id_notizia=9270

BRECCIA IN WINDOWS, SEI SPIFFERI IN IE
Microsoft ha corretto quella che lei stessa definisce una delle piu' gravi vulnerabilita' di Windows degli ultimi tempi: i PC a rischio potrebbero essere milioni. Rilasciata anche una megapatch per IE che corregge sei nuove falle
URL: http://punto-informatico.it/pi.asp?i=42240
Also - http://www.newsfactor.com/perl/story/20050.html
Also - http://zdnet.com.com/2100-1105-966575.html
Also - http://www.net-security.org/article.php?id=272
Also - http://www.nytimes.com/cnet/CNET_2100-1001-966575.html
Also - http://www.eweek.com/article2/0,3959,717062,00.asp

SICUREZZA WINDOWS XP
Un'analisi ottimamente scritta in merito alle problematiche di Windows XP legate alla sicurezza, alla privacy e alla stabilità.
http://www.hevanet.com/peace/microsoft.htm

"Linux Kernel 2.5 Status"
Kernelnewbies come ogni settimana ci spiega fino a che punto si sono spinti i "coders" del kernel 2.5.
http://www.ziobudda.net/news/see_comments.php?id_notizia=9293

Vulnerabilities
Title: Microsoft Warns of Windows, Explorer Security Hole
Source: Reuters
Date Written: November 22, 2002
Date Collected: November 22, 2002
A critical security bulletin was released by Microsoft Corp. about a flaw that "would let cyber-attackers run programs on Web servers and computers in homes and businesses...the "hole" can be exploited to gain access to Microsoft's database components in Web servers that make up the Internet as well as software running on desktops that are used to access the Web." A patch is available to fix the problem, which is a flaw in the Microsoft Data Access Components (MDAC) software package. Affected systems include Microsoft Windows 2000, Windows Me, Windows 98 SE, Windows 98, and Windows NT 4.0, but not Windows XP. The flaw was discovered by Foundstone researchers, who informed Microsoft of the issue and helped develop a fix.
http://www.reuters.com/newsArticle.jhtml?type=technologyNews&storyID=1788715
Also - http://www.newscientist.com/news/news.jsp?id=ns99993095
Also - http://www.vnunet.com/News/1137005

Vulnerabilities
Title: Another Serious Microsoft IE Problem Exposed
Source: NewsFactor
Date Written: November 19, 2002
Date Collected: November 22, 2002
A vulnerability in Microsoft's Internet Explorer (IE) could allow an attacker to use a specifically formed e-mail or Web site to gain control of the hard drive. The flaw affects Microsoft Window's users running IE versions 5.5 and 6.0, and possibly Outlook or Outlook Express users.
Details of the vulnerability were published to BugTraq and included code of the exploit. Publication of the exploit code before Microsoft released a patch has sparked a debate about the best way to disclose software vulnerabilities. Some believe that software users and security professionals should be informed immediately to take steps to overcome the vulnerability. Others believe allowing the software vendor to create a fix is necessary, or cyberattackers could use information about the vulnerability to exploit effected systems.
http://www.newsfactor.com/perl/story/20035.html

*******SPOT*******
Stai cercando un nuovo sfondo da mettere sul tuo Desktop? Cosa aspetti vai subito in http://wallpapers.gnomixland.com , ne trovi più di 1400 suddivisi in 22 gallerie, ovviamente tutto FREE
*******/SPOT*******

g00d reading! 'n' bye
Security News MainTainer:
The Jackal a.k.a. jAcKallO < -jackal-@libero.it >
(AreaSessantuno Member) / (SpiPPolatori Collaborator)
(HackerAlliance Member) / (Daily DisInfo CreaTor & MainTainer)