Distances were longer in the past
because space is measured according to time.
Jorge Luis Borges (1899-1986); Argentinian author.

- Weekly Summary -
Oxygen3 24h-365d, by Panda Software (http://www.pandasoftware.com)

Madrid, April 10 2004 - This week, Oxygen3 24h-365d has focused on the news
summarized below, which are available at:
http://www.pandasoftware.com/about/press/oxygen3/oxygen.asp

- Top Ten viruses most frequently detected by Panda ActiveScan in March
(04/05/04).
The effects of the wave of viruses that began in February, and is still
affecting computer users around the world, can be seen in the results of the
March ranking of the viruses most frequently detected by Panda ActiveScan.
Throughout March, the D and B variants of the Netsky worm were recorded as
the most virulent malicious codes, with Netsky.D responsible for 14.67
percent of all infections and Netsky.B the culprit in 11.59 percent of
positive cases. Baglepwd.zip was in third place (7.62% of infections)
followed by Downloader.L (6.42%), Nachi.B (6.18%), Netsky.P (5.89%),
Netsky.C (4.98%) and finally Mydoom.A (4.00%). The last two places in the
ranking were held by the veteran Bugbear.B (2.71 %) and Parite.B (2.67%)
viruses.

- A vulnerability in eMule allows code to be run (04/06/04).
SecurityTracker has reported a vulnerability in eMule that could allow
arbitrary code to be run on affected systems. This flaw stems from a buffer
overflow which occurs when hexadecimal strings are decoded through function
DecodeBase16(). This flaw can be exploited from a remote computer by
sending, for example, a specially crafted IRC SENDLINK command to the
attacked computer. Version 0.42e of eMule, which fixes this vulnerability,
is already available to users.

- Potential Risk in Dreamweaver Remote Database Connectivity (04/07/04).
Macromedia has published a security bulletin informing of a potential risk
in Dreamweaver's remote database connectivity. According to the bulletin,
connection to remote databases in Dreamweaver -for building dynamic
database-driven websites- installs scripts that can unveil DSNs (*) to
attackers. As a result, an attacker could use those scripts to send SQL
commands to the server and take control of the database server.

- Update for Citrix MetaFrame Password Manager 2.0 (04/08/04).
Foundstone has announced availability of an update for Citrix MetaFrame
Password Manager 2.0, which fixes a security vulnerability in the software.
This flaw could, under certain circumstances, make it possible for users'
credentials to be stored unencrypted locally, and leave them accessible to
attackers.

- Viruses inside compressed files: an avoidable risk (04/09/04).
Under normal circumstances, any high-quality antivirus program will have no
problem scanning and disinfecting compressed files, provided that the user
has configured it to do so. The problem, however, arises when these files
are password-protected. When a password-protected compressed file reaches a
computer, not even the antivirus protection can access it in order to scan
its contents, as to decompress the file the user needs to enter a password
to view the content. This is not usually a problem for a good antivirus
solution, as if the compressed file is infected, it will detect it as soon
as the user runs the file. This process, however, can cause problems in
corporate networks, as even if the mail server has an updated antivirus
installed, it cannot scan it and the infected file will therefore reach the
workstations without any problems. If the workstations are protected against
malicious code, the virus will not be able to carry out its infection, but
imagine what would happen if they weren't.

NOTE: The address above may not show up on your screen as a single line.
This would prevent you from using the link to access the web page. If this
happens, just use the 'cut' and 'paste' options to join the pieces of the
URL.