Imagination is more important than knowledge.
Albert Einstein (1879 - 1955) Swiss-German-US physicist.

- Weekly summary -
Oxygen3 24h-365d, by Panda Software (http://www.pandasoftware.com)

Madrid, March 27, 2004 - This week, Oxygen3 24h-365d has focused on the new
summarized below, which can be accessed at:
http://www.pandasoftware.com/about/press/oxygen3/oxygen.asp

- Vulnerability in administrative access to Borland Interbase (03/22/04).
SecurityTracker has announced that there is a security problem in Borland
Interbase which could allow an attacker to gain administrator rights over
the database and thereby compromising any information stored on it. The
vulnerability stems from the fact that the user database file admin.ib is
installed with read and write permission for all users, so that any local
user could add or edit the database accounts.

- Viruses are hitting harder (03/23/04).
According to ICSA Labs latest annual report on virus incidents, which is
also reported by The Register, virus attacks in 2003 were more frequent and
costly. Last year, nearly one in three (30 percent) of the 300 organizations
surveyed by ICSA Labs were hit by a serious virus infection, doubling the
percentage reported in 2002 (which was around 15 percent). Similarly,
recovery costs increased by 23 percent in 2003. Each virus disaster cost
each organization surveyed approximately $ 100,000 (EUR 80,500).

- Vulnerability in Web-based e-mail services (03/24/04).
GreyMagic has reported a new technique for injecting malicious code in
e-mail messages. This technique uses the HTML+TIME features of the browser
Internet Explorer. Tests have show that this technique can be successfully
used in Hotmail and Yahoo Web mail services, but does not rule out the
possibility that other mail services could be vulnerable. This problem has
already been fixed in Hotmail. These types of vulnerabilities lie in
security filters for preventing Cross-Site Scripting attacks. These can have
serious consequences on user confidentiality, as malicious users could steal
user names and passwords, access all the messages in all mailboxes or use
the accounts to send out viruses.

- Firewall updates (03/25/04).
Even though it is essential to keep corporate firewalls updated, as a
security hole in the firewall could leave the entire network vulnerable to
attack, according to a survey carried out by Secure Computing, they are not
given the importance they deserve. From the key conclusions of this survey
we can highlight that 24% of network administrators said that they were not
at all concerned about the potential for a vulnerability to develop in their
corporate firewalls.

- Vulnerabilities in HP Web Jetadmin (03/26/04).
According to SecurityTracker, several security problems have been detected
in HP Web Jetadmin, which could allow a remote authenticated user to read
and write files on the system and execute scripts. These vulnerabilities
stem from several weak HTS scripts, which can be accessed through HP's HTTP
server Web Jetadmin 7.5.2546. The combination of these two problems allows
an HTS script to be uploaded to the firmware directory in the printer and
called in order to run it. Similarly, it has also been discovered that
Denial of Service (DoS) attacks can be launched through specially-crafted
scripts.

NOTE: The address above may not show up on your screen as a single line.
This would prevent you from using the link to access the web page. If this
happens, just use the 'cut' and 'paste' options to join the pieces of the
URL.