New User? Need help? Click here to register for free! Registering removes the advertisements.

Computer Cops
image image image image image image image image
Donations
If you found this site helpful, please donate to help keep it online
Don't want to use PayPal? Try our physical address
image
Prime Choice
· Head Lines
· Advisories (All)
· Dnld of the Week!
· CCSP News Ltrs
· Find a Cure!
· Ian T's (AR 23)
· Marcia's (CO8)
· Bill G's (CO11)
· Paul's (AR 5)
· Robin's (AR 2)
· Ian T's Archive
· Marcia's Archive
· Bill G's Archive
· Paul's Archive
· Robin's Archive
image
Security Central
· Home
· Wireless
· Bookmarks
· CLSID
· Columbia
· Community
· Downloads
· Encyclopedia
· Feedback (send)
· Forums
· Gallery
· Giveaways
· HijackThis
· Journal
· Members List
· My Downloads
· PremChat
· Premium
· Private Messages
· Proxomitron
· Quizz
· RegChat
· Reviews
· Google Search
· Sections
· Software
· Statistics
· Stories Archive
· Submit News
· Surveys
· Top
· Topics
· Web Links
· Your Account
image
CCSP Toolkit
· Email Virus Scan
· UDP Port Scanner
· TCP Port Scanner
· Trojan TCP Scan
· Reveal Your IP
· Algorithms
· Whois
· nmap port scanner
· IPs Banned [?]
image
Survey
How much can you give to keep Computer Cops online?
$10 up to $25 per year?
$25 up to $50 per year?
$10 up to $25 per month?
$25 up to $50 per month?
More than $50 per year?
More than $50 per month?
One time only?
Other (please comment)



Results
Polls

Votes: 1002
Comments: 21
image
Translate
English German French
Italian Portuguese Spanish
Chinese Greek Russian
image
image cybsec: Advisories!: Latest Advisories (10/09/03) image
Cyber Security
Latest Advisories
2003-10-09
Secunia
Security Tracker
Security Focus
Symantec


Secunia
Secunia Highlights:
Microsoft Internet Explorer Multiple Vulnerabilities
Multiple vulnerabilities have been identified in Microsoft Internet Explorer. Some could expose sensitive information others may lead to execution of arbitrary code.
Microsoft Internet Explorer Update fixes the Object Data Vulnerability
Microsoft has released a new cumulative patch for Internet Explorer. This fixes the Object Data vulnerability, which was inadequatedly addressed in MS03-32.

Latest 15 Secunia Security Advisories:
2003-10-09
- EnGarde update for OpenSSL

- Red Hat update for MySQL

- OpenOffice UNO Denial of Service Vulnerability

- HP-UX dtprintinfo DISPLAY Buffer Overflow Vulnerability

- HP-UX AAA Server OpenSSL Vulnerabilities

- HP SCM update for MySQL

- HP WBEM Services for HP-UX OpenSSL Vulnerabilities

- DeskPRO SQL Injection Vulnerability

2003-10-08
- SuSE Linux SuSEconfig.susewm Privilege Escalation

- SuSE Linux SuSEconfig.javarunt Privilege Escalation

- FirstClass Internet Services Heap Overflow Vulnerability

- Adobe SVG Viewer Multiple Vulnerabilities

- Geeklog Cross Site Scripting and Weak Session Control

- Red Hat update for SANE

- slocate User Database Privilege Escalation Vulnerability
More Advisories
Top 5 Most Read Secunia Security Advisories (Last 24 hours):

- Microsoft Internet Explorer Update fixes the Object Data Vulnerability

- Microsoft Internet Explorer Multiple Vulnerabilities

- Adobe SVG Viewer Multiple Vulnerabilities

- Microsoft Windows Media Player DHTML Local Zone Access

- Red Hat update for SANE
Security Tracker
Special Alerts - OpenSSL ASN.1 decoding flaws may result in remote code execution.
Various applications using OpenSSL may be affected.

Medieval Total War Game Can Be Crashed By Remote Users

Two vulnerabilities were reported in the Medieval Total War game software. A remote user can crash the target server. A remote user can also crash a match before the match has started.

Impact: Denial of service via network

ltrace Heap Overflow May Let Local Users Execute Arbitrary Code With Root Privileges

A buffer overflow vulnerability was reported in 'ltrace'. A local user may be able to execute arbitrary code with root privileges.

Impact: Execution of arbitrary code via local system, Root access via local system

Adobe SVG Viewer Cross-Domain Access Flaw Lets Remote Users Execute Code in Arbitrary Domains

Another cross-domain security vulnerability was reported in the Adobe SVG Viewer. A remote user can execute arbitrary commands and write files on the target user's system.

Impact: Disclosure of system information, Disclosure of user information, Execution of arbitrary code via network, Modification of system information, Modification of user information, User access via network

Adobe SVG Viewer Discloses Arbitrary Files to Remote Users

An information disclosure vulnerability was reported in the Adobe SVG Viewer and browser control. A remote user can view files on the target user's system and remotely located files that are readable by the target user's browser.

Impact: Disclosure of system information, Disclosure of user information


PeopleSoft PeopleTools May Disclose Exported Searches to Remote Users

A vulnerability was reported in the PeopleSoft PeopleTools application. A remote user can view certain files on the system due to a flaw in the grid option.

Impact: Disclosure of system information, Disclosure of user information

SecurityFocus BugTraq
SecurityFocus Vulnerabilities

10/08/2003 Re: [PAPER] Juggling with packets: floating data storage Michal Zalewski
10/08/2003 Re: [PAPER] Juggling with packets: floating data storage David Heigl
10/08/2003 Re: [PAPER] Juggling with packets: floating data storage Eugen Leitl
10/08/2003 Re: [PAPER] Juggling with packets: floating data storage Doug Moen
10/08/2003 Re: [Full-Disclosure] Re: [PAPER] Juggling with packets: floating data storage Valdis Kletnieks vt edu
10/08/2003 Re: [PAPER] Juggling with packets: floating data storage Rick Wash
10/08/2003 Re: [PAPER] Juggling with packets: floating data storage Nicholas Weaver
10/08/2003 Re: [PAPER] Juggling with packets: floating data storage Michal Zalewski
10/08/2003 Re: [Full-Disclosure] RE: [PAPER] Juggling with packets: floating data storage Michal Zalewski
10/08/2003 Re: [Full-Disclosure] Re: I have fixes for the Geeklog vulnerabilities Chris Kulish us ing com
10/08/2003 RE: [PAPER] Juggling with packets: floating data storage Alun Jones
10/08/2003 Re: PHP-Nuke SQL Injection 3APA3A
10/08/2003 RE: IE 6 XML Patch Bypass GreyMagic Software
10/08/2003 Microsoft Windows Server 2003 Shell Folders Directory Traversal Vulnerability Eiji James Yoshida
10/08/2003 PHP-Nuke SQL Injection mod
10/08/2003 ZH2003-28SA (security advisory): file inclusion vulnerability in PayPal Store Front Astharot
10/08/2003 HPUX dtprintinfo buffer overflow vulnerability Davide Del Vecchio
10/08/2003 Openoffice 1.1.0 DoS Marc Schoenefeld
10/08/2003 Betr.: IE 6 XML Patch Bypass Philip Wagenaar
10/08/2003 Re: [Full-Disclosure] Re: I have fixes for the Geeklog vulnerabilities jelmer
2003-10-05: ProFTPD ASCII File Transfer Buffer Overrun Vulnerability
2003-10-05: GuppY Remote File Access Vulnerability
2003-10-05: GuppY Cross-Site Scripting Vulnerability
2003-10-05: CFEngine CFServD Transaction Packet Buffer Overrun Vulnerability
2003-10-04: EternalMart Multiple Remote File Include Vulnerabilities
2003-10-04: Microsoft Internet Explorer Absolute Position Block Denial Of Service Vulnerability
2003-10-04: PHP-Nuke mailattach.php Remote File Upload Vulnerability
2003-10-04: Microsoft Windows Media Player IE Zone Access Control Bypass Vulnerability
2003-10-04: Cisco CatOS Password Prompt Unauthorized Remote Command Execution Vulnerability
2003-10-04: Microsoft Internet Explorer Browser Popup Window Object Type Validation Vulnerability
2003-10-04: Multiple Vendor C Library realpath() Off-By-One Buffer Overflow Vulnerability

Symantec SSR
Backdoor.Spigot.C
Backdoor.G_Spot.20 [KAV], BackDoor-AAG [McAfee] October 8, 2003 October 9, 2003
Backdoor.Lixy October 8, 2003 October 8, 2003
PWSteal.Nikana October 8, 2003 October 8, 2003
W32.Gramos October 7, 2003 October 8, 2003
Backdoor.SDBot.Q October 7, 2003 October 8, 2003
Posted on Thursday, 09 October 2003 @ 09:33:05 EDT by phoenix22
image

 
Login
Nickname

Password
· New User? ·
Click here to create a registered account.
image
Related Links
· TrackBack (0)
· Linux.com
· PHP HomePage
· Red Hat
· Microsoft
· Microsoft
· PHP-Nuke
· MySQL Database Server
· SuSE
· HotScripts
· W3 Consortium
· Open Office
· Hewlett Packard
· More about Cyber Security
· News by phoenix22
Most read story about Cyber Security:
Booby Trapped software!

image
Article Rating
Average Score: 0
Votes: 0

Please take a second and vote for this article:

Bad
Regular
Good
Very Good
Excellent

image
Options

Printer Friendly Page  Printer Friendly Page
image
"Login" | Login/Create an Account | 0 comments
Threshold
The comments are owned by the poster. We aren't responsible for their content.

No Comments Allowed for Anonymous, please register
Home · Topics · Submit News · Top 10
This entire site, Cops Themes, and Computer Cops are © 2002 - 2004 Computer Cops, LLC. All rights reserved.
You can syndicate our news using the file RSS 0.91, ultramode.txt, or RSS 1.0.
Acceptable Use Policy. Use signifies your agreement.
Engine Copyright © 2002 by PHP-Nuke, GNU/GPL Licensed. ICRA Member.
Paul Laudanski, Member of Computer Cops, LLC
Server Load: 1212 pages served in previous 5 minutes. Page Rendered: 0.364 seconds.