CastleCops, Internet Crime Fighters
Need help? Click here to register for free! Absolutely zero advertisements on this site!

$9736.22 of $21422.68
left sidedonated so farneed $11686.46 donated to reach our goalright side, our goal
Help CastleCops serve the community on new servers, Donate Here to reach our goal.

Donation/Premium
spacer
Donations. Become Premium Today! Premium Icon
block bottom
Security Central
spacer
· Home
· PIRT/Fried Phish
· MIRT
· SIRT
· Deutsch
· Wiki
· Newsletter
· O16/ActiveX
· CLSID List
· Contest2007
· Downloads
· Feedback (send)
· Forums
· HijackThis
· Hijacktrend
· LSPs
· My Downloads
· O18
· O20
· O21
· O22
· O23
· O9
· Premium
· Private Messages
· Proxomitron
· Reviews
· Search
· StartupList
· Stories Archive
· Submit News
· WsIRT
· Your Account
· Acceptable Use Policy
block bottom
Survey
spacer
Was 2007 a good year?

Yes it was a wonderful year
Yes, but there is always room for improvement
Status quo
It was a challenge
Other (leave comment)



Results
Polls

Votes: 952
Comments: 28
block bottom
spacer spacer
image Advisories!: Latest Advisories & Live Feeds (10/29/03) image
Cyber Security
Latest Advisories
Live Feeds
2003-10-29
Secunia
Security Tracker
Security Focus
Symantec
*Live Feeds are from Panda, Trend Micro, and Symantec

Live Feeds

Secunia

Secunia Highlights:
Mac OS X Updated Version Addresses Thirteen Vulnerabilities
Multiple vulnerabilities have been reported in Mac OS X, where the impact spans from local DoS (Denial of Service) vulnerabilities to privilege escalation, security bypasses and information disclosure.
Microsoft Windows Buffer Overflow in Messenger Service
Microsoft has issued patches for Microsoft Windows to fix a buffer overflow vulnerability in Messenger Service, which could lead to execution of arbitrary code.
AOL Instant Messenger File Transfer Error Message Buffer Overflow Vulnerability
A vulnerability has been identified in AOL Instant Messenger (AIM), which potentially can be exploited by malicious people to compromise a user's system.

Latest 15 Secunia Security Advisories:
2003-10-29
- thttpd defang() Buffer Overflow Vulnerability

- VMware ESX and GSX update for OpenSSL

- Oracle Collaboration Suite May Expose Restricted Files

- Mac OS X Unspecified Quicktime Java System Compromise

- Mac OS X Updated Version Addresses Thirteen Vulnerabilities

- mod_security Server Output Buffer Overflow

- FirstClass /Search Exposes Web Root Contents

- Nokia IPSO Cluster Unspecified Denial of Service Vulnerability

- byteHoard files.inc.php Directory Traversal Vulnerability

2003-10-28
- sh-httpd Directory Traversal Vulnerability

- Chi Kien Uong Guestbook Cross Site Scripting Vulnerability

- Les Visiteurs Arbitrary File Inclusion Vulnerability

- WebTide Directory Content Disclosure Vulnerability

- WU-FTPD S/KEY Authentication Buffer Overflow Vulnerability

- Libnids TCP Reassembly Buffer Overflow Vulnerability

Top 5 Most Read Secunia Security Advisories (Last 24 hours):
- Yahoo! Messenger File Transfer Denial of Service Vulnerability

- WU-FTPD S/KEY Authentication Buffer Overflow Vulnerability

- Norton Internet Security Blocked Site Cross-Site Scripting Vulnerability

- Microsoft HTML Help Control Privilege Escalation Vulnerability

- AOL Instant Messenger File Transfer Error Message Buffer Overflow Vulnerability


Security Tracker

sh-httpd Discloses Files to Remote Users

A vulnerability was reported in the 'sh-httpd' web server. A remote user can view files on the target system.

Impact: Disclosure of system information, Disclosure of user information

Musicqueue Buffer Overflow May Let Local Users Gain Elevated Privileges

Several vulnerabilities were reported in Musicqueue. A local user may be able to gain elevated privileges on the target system.

Impact: Execution of arbitrary code via local system, Modification of system information, Modification of user information, Root access via local system, User access via local system

Les Visiteurs Include File Error Lets Remote Users Execute Arbitrary Commands on the Target Server

An include file vulnerability was reported in the Les Visiteurs PHP-based script. A remote user can execute arbitary PHP code, including operating system commands, on the target system.

Impact: Execution of arbitrary code via network, User access via network

Symantec Norton Internet Security Blocked Page Message Lets Remote Users Conduct Cross-Site Scripting Attacks

An input validation vulnerability was reported in Symantec's Norton Internet Security 2003. A remote user can conduct cross-site scripting attacks.

Impact: Disclosure of authentication information, Disclosure of user information, Execution of arbitrary code via network, Modification of user information

Libnids TCP Reassembly Memory Error May Let Remote Users Execute Arbitrary Code

A vulnerability was reported in Libnids. A remote user may be able to execute arbitrary code on the target system, depending on the application using libnids.

Impact: Execution of arbitrary code via network, User access via network


SecurityFocus BugTraq
SecurityFocus Vulnerabilities

10/28/2003 Wildcard exportfs issue in NFS on IRIX SGI Security Coordinator
10/28/2003 FirstClass 7.1 HTTP Server: Remote Directory Listing Richard Maudsley
10/28/2003 mod_security 1.7RC1 to 1.7.1 vulnerability Adam Dyga
10/28/2003 Re: sh-httpd `wildcard character' vulnerability Richard Brittain
10/28/2003 Re: Internet Explorer and Opera local zone restriction bypass Bipin Gautam hUNT3R
10/28/2003 RE: Norton Internet Security Blocked Sites XSS Sym Security
10/28/2003 Re: Mac OS X vulnerabilities Thor Larholm
10/28/2003 Local root vuln in kpopup b0f www.b0f.net
10/28/2003 Mac OS X Long argv[] buffer overflow @stake Advisories
10/28/2003 Mac OS X Systemic Insecure File Permissions @stake Advisories
10/28/2003 Mac OS X Arbitrary File Overwrite via Core Files @stake Advisories
10/28/2003 [securemac] Local vulnerability: MacOSX Screensaver locking bypass. kang
10/28/2003 [OpenPKG-SA-2003.046] OpenPKG Security Advisory (apache) OpenPKG
10/28/2003 Fastream NetFile FTP/WebServer 6.0 CSS Vulnerability Oliver Karow
10/28/2003 Re: [LSD] Security vulnerability in SUN's Java Virtual Machine implementation Alla Bezroutchko
10/28/2003 Re: a dangerous fast spreading (yet simple) trojan horse (Now IRC.Trojan.Fgt) K-OTiK Security
10/28/2003 RE: Internet Explorer and Opera local zone restriction bypass Thor Larholm
10/28/2003 Re: Internet Explorer and Opera local zone restriction bypass jelmer
10/28/2003 a dangerous fast spreading (yet simple) trojan horse. Gadi Evron
10/28/2003 Re: Nachi/Welchia/LovSan.D version 2 appears to be spreading Peter Kieser
10/27/2003 Re: a dangerous fast spreading (yet simple) trojan horse. Craig Holmes
10/27/2003 Re: Java 1.4.2_02 InsecurityManager JVM crash Marc Schoenefeld
10/27/2003 Nachi/Welchia/LovSan.D version 2 appears to be spreading Young, Keith
10/27/2003 Re: [LSD] Security vulnerability in SUN's Java Virtual Machine implementation Marc Schoenefeld
10/27/2003 Remote overflow in thttpd advisories(-at-)texonet.com
10/27/2003 Re: Internet Explorer and Opera local zone restriction bypass Andreas Sandblad
10/27/2003 [slackware-security] fetchmail security update (SSA:2003-300-02) Slackware Security Team
10/27/2003 [slackware-security] gdm security update (SSA:2003-300-01) Slackware Security Team
10/27/2003 Re: Java 1.4.2_02 InsecurityManager JVM crash Francisco Andrades
10/27/2003 Norton Internet Security 2003 XSS DigitalPranksters
10/27/2003 Re: [LSD] Security vulnerability in SUN's Java Virtual Machineimplementation Michael Earls
10/27/2003 Libnids Symantec SSR

W32.HLLW.Gaobot.BM
W32/Gaobot.worm.gen [McAfee] October 28, 2003 October 29, 2003
Backdoor.IRC.Bot.B
Backdoor.IRC.Bot, BackDoor-BBB [McAfee], BKDR_FOLLA.A [Trend] October 27, 2003 October 28, 2003
W32.HLLW.Gaobot.BI
W32/Gaobot.worm.gen [McAfee] October 27, 2003 October 28, 2003
Backdoor.Ranck.C
TROJ_RANCK.A [Trend], TrojanProxy.Win32.Ranck [Kaspersky], Proxy-FBSR [McAfee] October 27, 2003 October 28, 2003
W32.HLLW.Gaobot.BH October 27, 2003 October 28, 2003
W32.HLLW.Gaobot.BF October 27, 2003 October 28, 2003
Downloader.Tooncom
TrojanDownloader.Win32.Tooncom.c October 27, 2003 October 27, 2003
Trojan.Retsam October 26, 2003 October 27, 2003
IRC.Trojan.Fgt
IRC-Worm.Fagot [Kaspersky], Fagot [F-Secure] October 26, 2003 October 27, 2003
W32.HLLW.Theug October 25, 2003 October 27, 2003
PWSteal.Bancos.C October 25, 2003 October 27, 2003
Backdoor.Kutex October 25, 2003 October 27, 2003
W32.Adclicker.G.Trojan October 24, 2003 October 27, 2003
W32.Randex.R
W32/Sdbot.worm.gen [McAfee], Backdoor.SdBot.gen [Kaspersky] October 24, 2003 October 27, 2003
W32.HLLW.Reckus
Worm.P2P.Delf.k [Kaspersky] October 24, 2003 October 27, 2003
W32.HLLW.Gaobot.BE
W32.HLLW.Gaobot.BD, W32/Gaobot.worm [McAfee], Backdoor.Agobot.3.h [Kaspersky] October 24, 2003 October 27, 2003
W32.Wintoo.B.Worm
I-Worm.Sexer [Kaspersky], W32/Sexer.worm [McAfee] October 24, 2003 October 24, 2003
W32.Jermy.A
IRC/Jeremy.A, Wom32/VBTrojan.gen, I-Worm.Kazus.c [Kaspersky] October 24, 2003 October 24, 2003
W32.Marque.Worm
W32.Marque@mm, W32/Marque.worm [McAfee], W32/Marq-A [Sophos], Win32/Marq.A [Eset], I-Worm.Voltan [Kaspersky] October 24, 2003 October 24, 2003
W32.Sober@mm
W32/Sober@MM [McAfee], I-Worm.Sober [Kaspersky], W32/Sober-A [Sophos], WORM_SOBER.A [Trend]. Sober [F-Secure], W32/Sober.A@mm [Frisk], W32/Sober.A [Norman], Win32/Sober.A [Eset], Win32.Sober.A [Computer Associates] October 24, 2003 October 24, 2003
JS.Fortnight.D
VBS/Flea-A [Sophos], JS/Flea@M [McAfee] October 24, 2003 October 24, 2003
X97M.Sysbin October 24, 2003 October 24, 2003
W32.HLLW.Gaobot.BC
W32/Gaobot.worm.gen [McAfee] October 24, 2003 October 24, 2003
W32.Kwbot.R.Worm
Worm.P2P.SpyBot.gen [KAV], W32/Spybot.worm.gen [McAfee] October 24, 2003 October 24, 2003
W32.HLLW.Gaobot.BB
W32/Gaobot.worm.gen [McAfee] October 23, 2003 October 23, 2003
Backdoor.Remocy October 22, 2003 October 22, 2003
Download.Magicon October 22, 2003 October 22, 2003
Trojan.Loome October 20, 2003 October 21, 2003
Backdoor.Lixy.B October 20, 2003 October 21, 2003
W32.HLLW.Repeatld
W32/Generic.worm!p2p [McAfee] October 19, 2003 October 20, 2003
Backdoor.Evilbot.C October 19, 2003 October 20, 2003
Backdoor.Frango October 18, 2003 October 20, 2003
W32.Mafeg
Bloodhound.W32.1, Worm.Win32.Dupate.4180 [Kaspersky], W32/MGF [McAfee] October 18, 2003 October 20, 2003
W32.HLLP.Zodiak October 18, 2003 October 20, 2003
W32.HLLW.Mantas October 17, 2003 October 20, 2003
W32.Sakao
W32.HLLW.Sakao October 17, 2003 October 17, 2003
W32.Cesca October 16, 2003 October 17, 2003
PWSteal.Firum October 16, 2003 October 17, 2003
W32.HLLW.Gaobot.AZ
W32/Gaobot.worm.gen.b [McAfee] October 16, 2003 October 17, 2003
W32.Remabl.Worm October 16, 2003 October 16, 2003
W32.Tofazzol October 16, 2003 October 16, 2003
W32.HLLW.Reur
W32.HLLW.Wanado, W32/Reur.worm!p2p [McAfee], Worm.P2P.Reur.c [Kaspersky] October 15, 2003 October 16, 2003
W32.Wintoo.Worm October 15, 2003 October 16, 2003
W97M.Rochitz.C
Macro.Word97.Rochitz [KAV], W97M/Generic [McAfee] October 15, 2003 October 16, 2003
VBS.Notup.A@mm
Bloodhound.VBS.Worm, I-Worm.WCGen [Kaspersky], VBS/Pica.worm.gen [McAfee] October 15, 2003 October 16, 2003
Backdoor.MeteorShell
Backdoor.MeteorShell.58 [KAV], BackDoor-AWI [McAfee] October 14, 2003 October 14, 2003
PP97M.Lacoph October 14, 2003 October 14, 2003
PWSteal.Banpaes October 14, 2003 October 14, 2003
Trojan.Sinkin
VBS/Sinkin, APSTrojan.gen18 [McAfee], Trojan.VBS.Sinkin [Kaspersky] October 14, 2003 October 14, 2003
PWSteal.Reanet October 13, 2003 October 14, 2003
PWSteal.Salira October 13, 2003 October 14, 2003
Trojan.Bootconf
Trojan.Qhosts.A, Trojan.Qhosts.B, TrojanClicker.Win32.Qhost.a [KAV] October 13, 2003 October 13, 2003
W32.HLLW.Torvel.B@mm
W32.HLLW.Torvil@mm, W32/Torvil@MM [McAfee] October 12, 2003 October 13, 2003
Downloader.Slime
PE_Slime (Trend) October 12, 2003 October 13, 2003
W32.HLLP.Gogo October 11, 2003 October 13, 2003
Trojan.Kalshi
W32.Kalshi.A@mm October 10, 2003 October 10, 2003
Backdoor.Sdbot.R October 10, 2003 October 10, 2003
Backdoor.Mxsender
Trojan Horse, TrojanSpy.Win32.Mxsender [AVP], Mxsender [Mcafee] October 10, 2003 October 10, 2003
W32.Inmota.Worm
Trojan.Win32.Inmota [AVP] October 10, 2003 October 10, 2003
W32.HLLW.Gaobot.AP October 10, 2003 October 10, 2003
Backdoor.Sincom
TrojanSpy.Win32.Sincom.ab (AVP) October 9, 2003 October 10, 2003
Backdoor.Daemonize
TrojanProxy.Win32.Daemonize [AVP] October 9, 2003 October 10, 2003
Backdoor.Sinit October 9, 2003 October 10, 2003
Trojan.Cuydoc
W32/Cuydoc [McAfee] October 9, 2003 October 10, 2003
Hacktool.Dase
Bloodhouhd.Exploit.1, Exploit.Win32.DCom.au [AVP], Exploit-DcomRpc.gen [Mcafee] October 9, 2003 October 9, 2003
W32.HLLW.Moega.D
Backdoor.Sdbot.gen [KAV], W32/Sdbot.worm.gen [McAfee] October 9, 2003 October 9, 2003
W32.HLLW.Donk.C
Backdoor.SdBot.gen [KAV] October 9, 2003 October 9, 2003
Backdoor.Usirf October 9, 2003 October 9, 2003
W32.HLLW.Logpole
Worm.P2P.Log52 [KAV] October 8, 2003 October 9, 2003
Backdoor.Spigot.C
Backdoor.G_Spot.20 [KAV], BackDoor-AAG [McAfee] October 8, 2003 October 9, 2003
Backdoor.Lixy October 8, 2003 October 8, 2003
PWSteal.Nikana October 8, 2003 October 8, 2003
W32.Gramos October 7, 2003 October 8, 2003
Backdoor.SDBot.Q October 7, 2003 October 8, 2003
W32.IRCBot.B
Win32.SdBot.18976 [CA], Troj/Ircbot-M [Sophos], Backdoor.IRCBot.gen [KAV], W32/Sdbot.worm.gen [McAfee] October 7, 2003 October 7, 2003
W32.Kromber October 6, 2003 October 7, 2003
Backdoor.Smokodoor
Backdoor:Win32/Smokodoor [RAV], BackDoor-APO [McAfee], BackDoor-APO.dll [McAfee] October 6, 2003 October 7, 2003
W32.HLLW.Repsan October 5, 2003 October 6, 2003
W32.Ogid October 5, 2003 October 6, 2003
W32.Spacemark October 5, 2003 October 6, 2003
Backdoor.OptixPro.14
Backdoor.Optix.Pro.13 [KAV], BackDoor-ACH [McAfee] October 5, 2003 October 6, 2003
W32.HLLW.Syney.B@mm
W32/Syney@MM [McAfee] October 4, 2003 October 6, 2003
Backdoor.Hacarmy
Backdoor.Hackerarmy [KAV], BackDoor-AZV[McAfee] October 3, 2003 October 6, 2003
PWSteal.Finero October 3, 2003 October 6, 2003
W32.HLLW.Kazwin October 3, 2003 October 6, 2003
W32.Randex.Q October 3, 2003 October 6, 2003
JS.Rad@mm October 3, 2003 October 3, 2003
Trojan.Myss.B
Backdoor.Avstral, Backdoor.Avstral [KAV], BackDoor-AWW [McAfee], MultiDropper-GP trojan [McAfee], Win32.Myss [CA] October 3, 2003 October 3, 2003
Backdoor.Jittar October 3, 2003 October 3, 2003
Backdoor.Lassrv October 3, 2003 October 3, 2003
Downloader.Dluca.C
TrojanDownloader.Win32.Dluca.a October 2, 2003 October 3, 2003
Trojan.Qhosts
QHosts-1 [McAfee], VBS.QHOSTS [CA] October 1, 2003 October 2, 2003
W32.Logitall.A@mm October 1, 2003 October 2, 2003
VBS.Mill.H October 1, 2003 October 2, 2003
JS.Seeker.K
Trojan.JS.Seeker[AVP] October 1, 2003 October 1, 2003
W32.Zezer.Worm
W32/Zezer.worm.gen [Mcafee], I-Worm.Zezer [AVP] October 1, 2003 October 1, 2003
W32.HLLW.Gaobot.AO
W32/Gaobot.worm.gen.b [McAfee], Backdoor.Agobot.3.x [Kaspersky] September 30, 2003 October 1, 2003
Backdoor.IRC.Tastyred
Backdoor.IRCBot.gen[AVP] September 30, 2003 October 1, 2003
Hacktool.XalerDCOM September 30, 2003 September 30, 2003
W97M.Tabi.Trojan September 30, 2003 September 30, 2003
W32.HLLW.Gaobot.AN
W32.HLLW.Gaobot.AF September 29, 2003 September 30, 2003
Trojan.Mumuboy.B
PWS-SinCom [McAfee] September 29, 2003 September 29, 2003
Trojan.PWS.QQPass.E September 28, 2003 September 29, 2003
Trojan.Vardo September 28, 2003 September 29, 2003
W32.Galil.C@mm September 28, 2003 September 29, 2003



Live Feeds
Posted on Wednesday, 29 October 2003 @ 08:30:32 UTC by phoenix22 (2696 reads)
[ Trackback ]		image

"Advisories!: Latest Advisories & Live Feeds (10/29/03)" | Login/Create an Account | 0 comments
Threshold
The comments are owned by the poster. We aren't responsible for their content.

No Comments Allowed for Anonymous, please register
 
Login
spacer
Nickname

Password

Security Code: Type Security Code: Usage signifies AUP acceptance
· New User? · Click here to create a registered account.
block bottom
Related Links
spacer
· del.icio.us!
· digg it!
· reddit!
· TrackBack (0)
· PHP HomePage
· Slackware
· Microsoft
· Microsoft
· HotScripts
· Apache Web Server
· W3 Consortium
· CSS Standard
· HTML Standard
· Oracle
· America Online
· More about Cyber Security
· News by phoenix22

Most read story about Cyber Security:
Booby Trapped software!
block bottom
Article Rating
spacer
Average Score: 0
Votes: 0

Please take a second and vote for this article:

Bad
Regular
Good
Very Good
Excellent
block bottom
Options
spacer

Printer Friendly Page  Printer Friendly Page
block bottom
2002-2008 © Computer Cops LLC dba CastleCops®. All rights reserved.
Acceptable Use Policy. Use signifies your agreement.
184ppm 0.871s (0.011s)
Making cybercriminals unhappy since 2002*
In Memory of Trpm
spacer spacer