Linux Kernel Flaws in Several Drivers May Let Local Users Gain Elevated Privileges Some unspecified vulnerabilities were reported in the Linux kernel in several drivers. A local user can gain access to kernel memory or gain elevated privileges on the target system. Red Hat and Trustix reported that during a review of the Linux 2.6 source code, some vulnerabilities were discovered. Some of the flaws are also reported to apply to the 2.4 kernel.
http://newsvac.newsforge.com/article.pl?sid=04/06/19/1618209

Linux Kernel
Vendor: kernel.org
Some unspecified vulnerabilities were reported in the Linux kernel in several drivers. A local user can gain access to kernel memory or gain elevated privileges on the target system.
Impact: Disclosure of authentication information
Alert: http://securitytracker.com/alerts/2004/Jun/1010531.html

Linux Kernel
Vendor: kernel.org
An integer overflow vulnerability was reported in the Linux kernel in the i2c driver. A local user can crash the kernel or gain kernel-level privilges.
Impact: Denial of service via network
Alert: http://securitytracker.com/alerts/2004/Jun/1010512.html

Linux Kernel
Vendor: kernel.org
A vulnerability was reported in the Linux kernel. A local user can cause denial of service conditions.
Impact: Denial of service via local system
Alert: http://securitytracker.com/alerts/2004/Jun/1010501.html

Symantec Enterprise Firewall (Raptor)
Vendor: Symantec
A vulnerability was reported in the Symantec Enterprise Firewall DNSD proxy when functioning as a caching name server. A remote user can poison the name server cache.
Impact: Modification of system information
Alert: http://securitytracker.com/alerts/2004/Jun/1010500.html

Microsoft Internet Explorer (IE)
Vendor: Microsoft
Rafel Ivgi (The-Insider) reported a vulnerability in Microsoft Internet Explorer (IE). A remote user can create a link that will cause the target user's browser to crash when attempting to save the link.
Impact: Denial of service via local system
Alert: http://securitytracker.com/alerts/2004/Jun/1010491.html

Microsoft Internet Explorer (IE)
Vendor: Microsoft
A vulnerability was reported in Microsoft Internet Explorer in the parsing of URLs containing the '%2F' character. A remote user can spoof Trusted Site and Local Computer zone URLs.
Impact: Modification of system information
Alert: http://securitytracker.com/alerts/2004/Jun/1010482.html

Sygate Personal Firewall
Vendor: Sygate
Tan Chew Keong of SIG^2 reported a vulnerability in Sygate Personal Firewall PRO. A local user or application can disable the firewall's fail-safe feature.
Impact: Host/resource access via network
Alert: http://securitytracker.com/alerts/2004/Jun/1010480.html

Linux NTFS 2.1.14 (NTFS TNG Driver)
Linux NTFS provides Linux drivers and user space tools for the proprietary filesystem used by Windows NT, 2000, XP, and 2003. It also provides support for the Logical Disk Manager (LDM) that controls Windows' Dynamic Disks and is used to create software Mirrors, Stripes, RAID, etc.
http://freshmeat.net/releases/164293/

LinuxDefender 1.5.6
LinuxDefender Live! CD is a Rescue CD based on Knoppix. It features full NTFS write support (using Captive). It also includes instant antivirus and antispam SMTP protection, which is managed via Webmin. Desktop antivirus protection is integrated into the KDE interface, using BitDefender for Linux technology.
http://freshmeat.net/releases/164300/

Recovery Is Possible! 9.5 (Stable)
Recovery Is Possible (RIP) is a CD or floppy boot/rescue/backup/maintenance system. It has support for a lot of filesystem types (Reiserfs, Reiser4, ext2/3, iso9660, UDF, XFS, JFS, UFS, HPFS, HFS, MINIX, MS DOS, NTFS, and
VFAT) and contains a bunch of utilities for system recovery. It also has IDE/SCSI/SATA, PCMCIA, RAID, LVM2, and Ethernet/DSL/cable/PPP/PPPOE network support.
http://freshmeat.net/releases/164336/

DANNO DA SPAM: ARRIVANO LE MULTE
Un giudice di Pace napoletano colpisce una societa' accusata di spam:
sanzioni per mille euro, rimborso delle spese legali e pubblicazione della sentenza sui giornali
URL: http://punto-informatico.it/pi.asp?i=48708

The Fake Poll - Il sondaggio falso
Illustrando le debolezze della maggior parte dei sondaggi web e con la spiegazione di qualche possibile soluzione, questo articolo vuole essere di aiuto a tutta la gente che non sa come funziona un sondaggio web ed in particolar modo ai webmaster che vogliono utilizzare sul loro sito un
sondaggio: "VERO" e "SICURO".
http://www.siforge.org/articles/2004/06/21-the_fake_poll_ita.html

Installing Windows Server 2003: Making Decisions Windows Server 2003 has the most intuitive installation procedure of any Microsoft operating system to date. However, the server will not install itself. Get a walk-through that will help you make the correct choices for your environment.
http://www.informit.com/articles/article.asp?p=174359

ANTIVIRUS VENDORS AWAIT MAJOR LINUX WORM "Although some Linux antivirus software is now available, vendors are waiting for a major attack before pushing their wares..."
http://nl.internet.com/ct.html?rtr=on&s=1,yuw,1,5plo,751m,85jl,7pty

DEBIAN GNU/LINUX ADVISORIES: RLPR, WWW-SQL, SUP, SUPER Four security advisories from the Debian Project.
http://nl.internet.com/ct.html?rtr=on&s=1,yuw,1,bzyq,cdqu,85jl,7pty

GENTOO LINUX ADVISORY: ASPELL
"A bug in the aspell utility word-list-compress can allow an attacker to execute arbitrary code..."
http://nl.internet.com/ct.html?rtr=on&s=1,yuw,1,ft0i,8ysa,85jl,7pty

BUILDING OPENSSH--TOOLS AND TRADEOFFS
"OpenSSH is designed for strong authentication, for improved privacy, for secure X11 sessions, and to not trust the network..."
http://nl.internet.com/ct.html?rtr=on&s=1,yuw,1,arcy,m044,85jl,7pty

MONITORING FROM THE LINUX COMMAND LINE
System administration can be a time consuming and difficult job, and many web developers specifically assign these duties to a staff or contract sysadmin to insure servers are running optimally.
http://nl.internet.com/ct.html?rtr=on&s=1,yuu,1,e6x4,872g,85jl,7pty

FILTERING IDS PACKETS
"For many network security analysts this vast ocean of packets flagged for further inspection quickly becomes an unruly beast to tame. How then to tame the beast...?"
http://nl.internet.com/ct.html?rtr=on&s=1,yuu,1,cdq8,eabc,85jl,7pty

MICROSOFT RELEASES SECURITY-MINDED WINDOWS CODE Microsoft on Monday released what it hopes is a nearly final test version of a security-oriented Windows upgrade.
http://www.net-security.org/news.php?id=5403

WEB VULNERABILITY ASSESSMENT FOR SMBS
One modest-priced and nicely featured solution SMBs must consider is Syhunt's Sandcat Suite. This security software suite includes a security hardening tool, a vulnerability scanner, data mining and log analysis tools, and more.
http://www.net-security.org/news.php?id=5420

HNS AUDIO LEARNING SESSION: ALTERNATIVES TO PASSWORDS John Stuart, Signify CEO, discusses what are the alternatives to passwords.
There are three fundamental technologies which users could take into
consideration: one time passcodes (token based systems), digital certificates and biometrics. Mr. Stuart talks about all of these technologies and provides background and benefits on each of these security systems.
http://www.net-security.org/article.php?id=700

Vulnerabilities & Exploits
Title: Outlook's security compromised by spammers
Source: ZDNet UK
Date Written: June 21, 2004
Date Collected: June 21, 2004
Spammers have found an exploit to deliver unsolicited e-mails past Microsoft Outlook 2003's anti-spam technology. Outlook 2003 comes with a Bayesian filter which examines the text of e-mails and calculates the probability the message is spam. It also gives users the option of blocking e-mails from downloading Internet content. John Cheney of BlackSpider Technologies notes that spammers are attaching pornographic images to e-mails, then including HTML links to the attachment; since the HTML does not connect to the Internet, Outlook will display the image within the message body. The image can also contain words and web addresses that otherwise would have been caught by the filter. However, spammers will be unable to keep track of how many times their images are viewed, a technique previously used to record active e-mail addresses.
http://news.zdnet.co.uk/internet/0,39020369,39158241,00.htm

Vulnerabilities & Exploits
Title: IBM faces highly critical support security hole
Source: Techworld
Date Written: June 21, 2004
Date Collected: June 21, 2004
eEye Digital Security has announced flaws in two IBM ActiveX controls that could allow an attacker to write files to a computer's hard disk through a special webpage and Internet Explorer. The two flaws lie in the eGatherer
2.0.0.16 and acpRunner 1.2.5.0 ActiveX controls; eGatherer comes default in many IBM personal computers. Since the controls are signed by IBM, users who have chosen to always trust IBM components face compromise. IBM has posted a fix on its website. Linux vendors also fixed a series of flaws in drivers in the 2.6 kernel that would allow an escalation of privileges or access to kernel memory.
http://www.techworld.com/security/news/index.cfm?newsid=1770

AUTHORITY, DAL 30 GIUGNO BLOCCARE I TELEFONINI RUBATI I gestori permetteranno di bloccare il telefono cellulare rubato o smarrito.
Attraverso il codice IMEI
http://www.studiocelentano.it/newsansa.asp?id=35583

SOS PHISHING, NUOVA TRUFFA ON LINE
Si chiama phishing la nuova forma di truffa online. Utilizza e-mail false per sottrarre dati personali. E numeri di carte di credito
http://www.studiocelentano.it/newsflash_dett.asp?id=8411

** L'ANTIVIRUS DI CASA MICROSOFT **
Microsoft si prepara a entrare nel mondo della sicurezza informatica con il proprio antivirus.
>> di Salvatore Aranzulla
http://www.zeusnews.it/news.php?cod=3216

Memory Hygiene in C and C++ Part 3: Safe Programming with Risky Data In the first two installments in this series, I emphasized how crucial memory management is for C and C++ development - arguably our most difficult single coding job. I've also discussed the most prominent techniques for engineering it safely: programming discipline, and commercial memory-debugging tools. This time, let's look at a few of the memory debuggers which are available at no charge, along with other memory techniques you can try on your own.
http://www.informit.com/articles/article.asp?p=102648&f1=nl;67;2004-06-22

Protecting Yourself From Identity Theft
You can't guarantee you'll never be a victim of identity theft but there are measures you can take to make yourself less of a target. This tutorial examines some of these measures.
http://www.wftv.com/money/2811679/detail.html

Biometrics: An In-Depth Examination
This white paper gives the reader a fundamental understanding of biometric security systems by examining the biometric process as a whole. It provides an overview of the types of biometrics and their applications, as well as the problems and issues related to biometric security systems.
http://www.sans.org/rr/papers/index.php?id=1329

Securing Apache 2: Step-by-Step
Continuing the very popular "Securing" series from last year, this article discusses step-by-step how to compile, install, chroot and configure a secure Apache 2 web server.
http://www.securityfocus.com/infocus/1786

CLI FOR NOOBIES: HACK THE COMMENT
"Ok, you GUI-potatoes, listen up. I'm not talking about hacking an RFC (Request for Comment) here. I'm talking about a program called Comment that you can run on your own system..."
http://nl.internet.com/ct.html?rtr=on&s=1,yy0,1,hjc8,224x,85jl,7pty

HANDY WIRELESS NETWORKING WITH KNOPPIX LINUX "For secure wireless Linux surfing, I was determined to find some configuration that would work with minimal intervention at boot time and that was easy enough that my wife could load it..."
http://nl.internet.com/ct.html?rtr=on&s=1,yy0,1,bide,8pb6,85jl,7pty

Vulnerabilities & Exploits
Title: Symantec fixes DNS cache poisoning flaw
Source: SearchSecurity
Date Written: June 22, 2004
Date Collected: June 22, 2004
Symantec has released a patch for a moderately critical DNS (domain name
system) cache poisoning vulnerability in its Enterprise Firewall and Gateway Security software and VelociRaptor operating system. A poisoned cache would allow an attacker to redirect traffic to a fake website even when users type in the URL (uniform resource locator) for the real website; DNS is used to translate URLs into numerical Internet addresses. Such a problem must be addressed by the systems administrator of the local network, rather than end users. Symantec has found no instances of the exploit being used in the wild.
http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci989627,00.html

Vulnerabilities & Exploits
Title: Vulnerability in ZoneAlarm Pro
Source: SearchSecurity
Date Written: June 22, 2004
Date Collected: June 22, 2004
Kurczaba Associates has announced a flaw in Zone Lab's ZoneAlarm Pro that could allow an attacker to trick users into running malicious code. Testing ZoneAlarm Pro on a Windows XP machine with Internet Explorer 6.0 and all patches, Kurczaba found that while the filter blocks potentially dangerous ActiveX, Java applets, and certain MIME (Multipurpose Internet Mail
Extensions) objects, it does not filter content on the Secure Socket Layer (SSL). An attacker could transmit malicious code over SSL, however, an exploit would require user action, such as downloading code from a malicious website. Kurczaba classifies the threat as 'medium'.
http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci989633,00.html

hping 3.0-alpha-2
hping is a network tool able to send custom ICMP/UDP/TCP packets and to display target replies like ping does with ICMP replies. It handles fragmentation and arbitrary packet body and size, and can be used to transfer files under supported protocols. Using it you can test firewall rules, perform (spoofed) port scanning, test net performance using different protocols, packet size, TOS (type of service), and fragmentation, do path MTU discovery, transfer files (even between fascist firewalls), perform traceroute-like actions under different protocols, fingerprint remote OSs, audit a TCP/IP stack, etc. It is a good tool for learning TCP/IP.
http://freshmeat.net/releases/164676/

Slackware 10.0 is released!
Summer's here, and the time is right for a new release of Slackware (so start dancin')! As always, thanks to the many dozens of people who contributed during this development cycle to help make this the best release of Slackware ever. Highlights of the 10.0 release include GCC 3.3.4 (with GCC 3.4.0 as an alternate in /testing), the Linux 2.4.26 kernel (with Linux
2.6.7 as an alternate choice in /testing), X11R6.7.0 from X.Org, Mozilla 1.7, GNOME 2.6.1, and KDE 3.2.3. Of course, there are many more improvements than can be listed here:
http://www.slackware.com/changelog/i386/ChangeLog-stable.txt
Read the official announcement:
http://www.slackware.com/announce/10.0.php
ISO images are available through BitTorrent here:
http://www.slackware.com/torrents/index.html

BUG PER LE CPU AMD OPTERON
Un bug nell'esecuzione di una specifica istruzione potrebbe portate ad un blocco di sistema in soluzioni opteron. Un fix è già in cantiere
URL: http://news.hwupgrade.it/12671.html

Le dieci vie dell'Hacker
Un documento eccezionale SANS/FBI ha rivelato i 10 metodi più utilizzati dagli cracker per introdursi da Internet nel nostro sistema. Vi sveliamo passo passo tutti i segreti dell'attacco e della difesa. Capire come ci attaccano è l'unico modo per difenderci!
http://www.raulken.it/article2781.html&mode=&order=0&thold=0

FUORI DALLA RETE I PC DEI NEWBIE
Chi dispone di un computer che spara spam e virus perche' infettato da codici virali potra' essere scollegato da Internet. La proposta shock arriva da alcuni dei maggiori ISP del mondo. Mano dura contro spam e virus
URL: http://punto-informatico.it/pi.asp?i=48738

UNA FALLA MINACCIA I VIDEOGIOCATORI
Un esperto di sicurezza italiano ha scovato nel diffuso motore di Unreal, alla base di diversi giochi di successo, un bug che potrebbe minacciare la sicurezza dei patiti del multiplayer via Internet
URL: http://punto-informatico.it/pi.asp?i=48728

L'esperienza di una persona che ha cercato di rendere sicuro Windows.
Uno spunto interessante: dopo aver fatto un'installazione pulita, non ha avuto il tempo di scaricare tutte le patch di sicurezza: il computer era già infettato da software maligno. Una lettura consigliata.
http://www.techuser.net/index.php?id=47

Gli spammer utilizzano finti messaggi con firma digitale PGP per aggirare i filtri anti-spam http://smh.com.au/articles/2004/06/01/1086058836957.html
http://www.math.org.il/PGP-JoeJob.txt

Articolo interessante sui rischi di dirottamento dei browser Web, nello specifico i rischi di essere incastrati per reati non commessi:
http://www.theregister.co.uk/2004/05/13/browser_hijacking_risks/
http://www.wired.com/news/infostructure/0,1377,63391,00.html

MANDRAKELINUX ADVISORY: DHCP
"A vulnerability in how ISC's DHCPD handles syslog messages can allow a malicious attacker with the ability to send special packets to the DHCPD listening port to crash the daemon, causing a Denial of Service..."
http://nl.internet.com/ct.html?rtr=on&s=1,z1k,1,actg,d0yn,85jl,7pty

CAT /DEV/DIBONA/BRAIN: WHAT ABOUT E-MAIL SECURITY?
"Does anyone use Telnet anymore? I hope not. We have better tools now; SSH and SCP are the way most sane people hop around systems on which they might have accounts..."
http://nl.internet.com/ct.html?rtr=on&s=1,z1k,1,b6uc,du16,85jl,7pty

LINUX VENDORS TACKLE SECURITY HOLES
"Linux vendors have begun releasing fixes for two critical security bugs in a networking component that could allow a denial-of-service attack or enable an attacker to take control of a system..."
http://nl.internet.com/ct.html?rtr=on&s=1,z1k,1,k0km,euia,85jl,7pty

GENTOO LINUX ADVISORY: IPSEC-TOOLS
"racoon provided as part of IPsec-Tools fails do proper authentication..."
http://nl.internet.com/ct.html?rtr=on&s=1,z1k,1,eowd,bknn,85jl,7pty

SysAdmin to SysAdmin: Programming with bash Face it, you can't become any kind of respectable administrator without knowing a decent bit about shell scripting. You don't have to be the "Bashmeister General" or anything, but having a firm grasp on the basics will get you out of a lot of jams, and provide a foundation for furthering your experience and your skill. In this article we'll cover some programming functionality of the bash shell.
http://www.newsforge.com/article.pl?sid=04/06/16/1611235

Malware
Title: The Next Big Virus Threat: Instant Messaging
Source: PC Magazine
Date Written: June 23, 2004
Date Collected: June 24, 2004
In recent years computer viruses and worms have spread ever more quickly and have become more independent, often infecting systems automatically through unpatched software vulnerabilities. According to Eric Chien, chief of research at Symantec Security Response, the next big virus threat will exploit flaws in free instant messaging (IM) clients. "An instant-messaging threat could spread to a half a million machines in 30 or 35 seconds," Mr.
Chien says, eclipsing past virus outbreaks. IM clients contain security vulnerabilities, the buddy lists offer a ready supply of possible new victims, and they are constantly exposed to the Internet. A new IM virus could be particularly worrying because at least 26% of US companies make use of IM software for business operations, according to the Radicati Group.
http://www.pcmag.com/article2/0,1759,1616327,00.asp
Also - http://www.internetweek.com/breakingNews/showArticle.jhtml?articleID=22101033

Vulnerabilities & Exploits
Title: Critical flaw found in game software
Source: ZDNet
Date Written: June 22, 2004
Date Collected: June 24, 2004
Security firm Secunia has issued an advisory about a critical flaw in the "Unreal" game engine. Malicious hackers can overflow the buffers of the security tool used to verify online game servers to execute arbitrary code on a vulnerable machine. The flaw can be found not only in five versions of "Unreal", but also the first-person shooters "Postal 2" and "Deus Ex". The flaw was discovered by independent researcher Luigi Auriemma, known for investigating online games as attack vectors. Most game publishers using the "Unreal" engine have issued patches for the flaw.
http://zdnet.com.com/2100-1105_2-5244067.html

Vulnerabilities & Exploits
Title: Linux vendors tackle security holes
Source: Techworld
Date Written: June 23, 2004
Date Collected: June 24, 2004
The United States Computer Emergency Readiness Team (US-CERT) has released an advisory on two critical flaws in the Internet Systems Consortium's DHCP (Dynamic Host Configuration Protocol) 3, included in most Linux and Unix distributions. The flaws could allow an attacker to crash systems running the DHCP daemon, and possibly run code with the daemon's privileges, typically root. Secunia notes that in most cases an attacker would have to be on the local network to exploit the flaws. The first flaw, a buffer overflow in log line storage, can be exploited on any operating system, while the second, a buffer overflow in the vsnprintf() function, affects a limited range of systems. As Linux grows in popularity, it has come under increased security scrutiny, bringing more flaws to light.
http://www.techworld.com/news/index.cfm?fuseaction=displaynews&NewsID=1789

Securing Public-Access WiFi
The Wireless Wizards, T.K. "Ranga" Rengarajan, Pronto Networks, Dan Simone, Trapeze Networks, and Chantry Networks answer the questions; What is the best approach to securing public access WiFi? And what is needed to accomplish this?
http://www.nwfusion.com/columnists/2004/0621wizards.html

Security and Vulnerability Analysis of an Ethernet-based attack on Cisco Foxworth examines the July 2003 Denial of Service attack on Cisco routers and develops a test regimen utilizing two Cisco routers from the 2500-series class, IP-based network traffic devices, a hardware-based Ethernet traffic generator, Ethernet packet capturing devices and support devices with the goal of developing additional information about the type and behavior of the vulnerability. The paper consists of a narrative, details and other reference and supporting information.
http://www.sans.org/rr/papers/index.php?id=1407

The Linux Registry 0.2.6
The Linux Registry is an alternative back-end for text configuration files.
Instead of each program having its own text configuration files, the Registry tries to provide a universal and secure framework for configuration parameters in a hierarchical key-value pair mechanism. This way, any program can read and save its configuration using a consistent API and can be aware of other applications configurations, permitting easy application integration. While architecturally similar to other OS registries, the Linux Registry does not have most of the problems those implementations have.
http://freshmeat.net/releases/164919/

Sicurezza: attacco diffuso in corso, come difendersi da Download.Ject E' in corso un diffuso attacco contro siti di ogni genere, comprese alcune banche, che usano il software Microsoft (Internet Information Server).
L'attacco introduce in siti apparentemente insospettabili del codice ostile che ha effetto sugli utenti che usano Internet Explorer per visitare i siti infetti.
http://www.raulken.it/gate.html?name=News&file=article&sid=2809&mode=&order=0&thold=0
Also - http://www.pcworld.com/news/article/0,aid,116689,00.asp
Also - http://zdnet.com.com/2100-1105_2-5247187.html
Also - http://www.computerworld.com/securitytopics/security/holes/story/0,10801,94114,00.html
Also - http://www.washingtonpost.com/wp-dyn/articles/A4279-2004Jun25.html
Also - http://www.eweek.com/article2/0,1759,1617234,00.asp
Also - http://www.newsfactor.com/story.xhtml?story_title=Warning--Widespread-Internet-Attack-Possible&story_id=25575

MAC OS X SECURITY 'MYTH' EXPOSED
"Windows is more secure than you think, and Mac OS X is worse than you ever imagined. That is according to statistics published by Danish security firm Secunia..." And, yes, Linux is compared, too.
http://nl.internet.com/ct.html?rtr=on&s=1,z7q,1,8qg,eex9,85jl,7pty

GET MORE OUT OF YOUR PIPE WITH APACHE AND MOD_GZIP "Webmasters who are serious about running high-performance Web servers, and who want pleased and delighted visitors, have a great tool in Apache 1.3's mod_gzip..."
http://nl.internet.com/ct.html?rtr=on&s=1,z7o,1,7n2v,4idj,85jl,7pty

Malware
Title: Beastie Boys CD installs virus
Source: The Register
Date Written: June 23, 2004
Date Collected: June 25, 2004
According to unconfirmed reports, including a recent thread on the BugTraq mailing list, versions of a new Beastie Boys CD from Capitol Records ('To the Five Boroughs'), which is being distributed worldwide except in the USA and UK, contain what could be labeled as a computer virus. Based on these reports, when the CD is loaded, an executable file is "automatically and silently" installed on the user's machine. The file in question is said to prevent copying of the CD, but it can be viewed as affecting a "computer's functionality, without first obtaining informed consent: a likely violation of pretty much every jurisdiction's anti-hacking laws."
http://www.theregister.co.uk/2004/06/23/beastie_boy_cd_virus

Malware
Title: Could Search Sites Spawn Worms?
Source: PC World
Date Written: June 24, 2004
Date Collected: June 25, 2004
A number of security experts warn that future worms could use search engines to find vulnerable websites to attack. Search engines have web crawlers, or 'bots', that go through web links cataloging and categorizing websites based on various criteria. According to Shlomo Kramer, president of Imperva, Google, Yahoo, and other search engines categorize websites by vulnerability. While search engine companies protect such data, it may be available to third party applications and clients. Gartner's John Pescatore compares a search engine worm to Code Red and Nimda; while these worms targeted every site they could, attracting attention while spreading, a search engine worm could move quietly by targeting sites already known to be vulnerable. However, such a worm would require a high-level of coding skill, making it impractical for script kiddies. Such worms, however, could attack applications rather than just network infrastructure, giving them a wider range of targets. Companies can protect themselves by checking search engines to see what information is available about their sites, and investing in firewalls that block access to vulnerabilities themselves.
http://www.pcworld.com/news/article/0,aid,116669,00.asp

g00d reading! 'n' bye
Security News MainTainer:

The Jackal a.k.a. jAcKallO < jackal [at] capitanlug.it >

(AreaSessantuno Member) / (SpiPPolatori Collaborator) (HackerAlliance Member) / (Security News MainTainer) (Socio fondatore e Membro del CapitanLUG.iT)