Latest Advisories

Live Virus Advisory Feeds
2004-02-20

*Live Feeds are from Panda, Trend Micro, and Symantec

Live Virus Advisory Feeds

National Cyber Alert System (US-Cert)


Secunia

Secunia Highlights:
Microsoft Windows ASN.1 Library Integer Overflow Vulnerabilities
eEye Digital Security has discovered some vulnerabilities in Microsoft Windows, which can be exploited by malicious people to compromise a vulnerable system.
Linux Kernel mremap() Missing Return Value Checking Privilege Escalation
Paul Starzetz has reported a vulnerability in the Linux kernel, which can be exploited by malicious, local users to gain escalated privileges on a vulnerable system.
ZoneAlarm SMTP Processing Buffer Overflow Vulnerability
eEye has discovered a vulnerability in ZoneAlarm and Integrity client, allowing users to escalate their privileges and potentially also allowing malicious people to compromise a user's system.

Latest 15 Secunia Security Advisories:
2004-02-20
- OpenLinux update for fetchmail

- OpenLinux update for BIND

- OpenLinux update for mpg123

- OpenLinux update for saned

- Oracle9i Database and Application Server SOAP DTD Denial of Service

- TANDBERG Products H.323 Protocol Implementation Vulnerabilities

- Cisco ONS 15000 Multiple Vulnerabilities

- Red Hat update for kernel

- Debian update for XFree86

- AOL Instant Messenger Predictable File Location Weakness

2004-02-19
- Small ftpd Denial of Service Vulnerability

- NetBSD IPv6 Traffic Handling Denial of Service Vulnerability

- Cesar FTP RETR Command Handling Denial of Service Vulnerability

- NetBSD update for OpenSSL

- NetBSD update for racoon

Top 5 Most Read Secunia Security Advisories (Last 24 hours):
- ZoneAlarm SMTP Processing Buffer Overflow Vulnerability

- Internet Explorer URL Spoofing Vulnerability

- Linux kernel ncpfs Privilege Escalation Vulnerability

- Linux Kernel mremap() Missing Return Value Checking Privilege Escalation

- Microsoft Windows ASN.1 Library Integer Overflow Vulnerabilities

Security Tracker

Special Alerts - Serious flaw in Microsoft ASN.1 Library allows remote users to execute arbitrary code with
System privileges by exploiting any of several commonly used services.

PunkBuster Input Validation Flaw Lets Remote Users Inject SQL Commands

A vulnerability was reported in PunkBuster. A remote user can inject SQL commands to gain full control of the database.

Impact: Disclosure of user information, Execution of arbitrary code via network, Modification of user information

Oracle9i Application Server XML SOAP Processing Flaw Lets Remote Users Deny Service

A vulnerability was reported in the Oracle9i Application Server in the processing of Simple Object Access Protocol (SOAP) messages with specially crafted XML data type definitions (DTDs). A remote user can cause denial of service conditions on the target system.

Impact: Denial of service via network

Oracle9i Database Server XML SOAP Processing Flaw Lets Remote Users Deny Service

A vulnerability was reported in the Oracle9i Database Server in the processing of Simple Object Access Protocol (SOAP) messages with specially crafted XML data type definitions (DTDs). A remote user can cause denial of service conditions on the target system.

Impact: Denial of service via network

Oracle Database Server Lets Remote Authenticated Users Hijack User Sessions

A vulnerability was reported in Oracle9i Database Server Release 1 and 2. A remote authenticated user can hijack a user session or deny service to users.

Impact: Denial of service via network, User access via network

Oracle Lite Mobile Server Lets Remote Authenticated Users Access the Oracle Database Server

A vulnerability was reported in the Oracle 9i Lite Mobile Server (part of Oracle9i Lite). A remote authenticated user can gain access to a connected Oracle database server.

Impact: User access via network


SecurityFocus BugTraq
SecurityFocus Vulnerabilities

02/19/2004 OpenLinux: Multiple vulnerabilities were discovered in the saned daemon please_reply_to_security sco com
02/19/2004 OpenLinux: Fetchmail 6.2.4 and earlier remote dennial of service please_reply_to_security sco com
02/19/2004 PGP signatures on recent NetBSD Security Advisories NetBSD Security-Officer
02/19/2004 OpenLinux: Bind: cache poisoning BIND 8 prior to 8.3.7 and BIND 8.4.x prior 8.4.2 please_reply_to_security sco com
02/19/2004 OpenLinux: mpg123 remote denial of service and heap-based buffer overflow please_reply_to_security sco com
02/19/2004 Re: APC 9606 SmartSlot Web/SNMP management card backdoor - Telnet can't be disabled. Keith Clifton
02/19/2004 RE: APC 9606 SmartSlot Web/SNMP management card backdoor - Telnet can't be disabled. Miskell, Craig
02/19/2004 LiveJournal XSS Joshua Miller
02/19/2004 EEYE: ZoneLabs SMTP Processing Buffer Overflow Marc Maiffret
02/19/2004 RE: Aol Instant Messenger/Microsoft Internet Explorer remote code execution Thor Larholm
02/19/2004 Cisco Security Advisory: Cisco ONS 15327, ONS 15454, ONS 15454 SDH, and ONS 15600 Vulnerabilities Cisco Systems Product Security Incident Response Team
02/19/2004 APC 9606 SmartSlot Web/SNMP management card backdoor - Telnet can't be disabled. David Monosov
02/19/2004 iMail 8.05 LDAP service remote exploit Iván Rodriguez Almuiña
02/19/2004 RE: Multiple WinXP kernel vulns can give user mode programs kernel mode privileges first last
02/19/2004 Re: Fw: APC 9606 SmartSlot Web/SNMP management card backdoor - MORE PROBLEMS Tom
02/19/2004 RE: Multiple WinXP kernel vulns can give user mode programs kernel mode privileges Alun Jones
02/19/2004 NetBSD Security Advisory 2004-004: shmat reference counting bug NetBSD Security-Officer
02/19/2004 NetBSD Security Advisory 2004-003: OpenSSL 0.9.6 ASN.1 parser vulnerability NetBSD Security-Officer
02/19/2004 NetBSD Security Advisory 2004-002: Inconsistent IPv6 path MTU discovery handling NetBSD Security-Officer
02/19/2004 NetBSD Security Advisory 2004-001: Insufficient packet validation in racoon IKE daemon NetBSD Security-Officer
02/19/2004 Re: Multiple WinXP kernel vulns can give user mode programs kernel mode privileges 3APA3A
02/19/2004 [SECURITY] [DSA 442-1] New Linux 2.4.17 packages fix local root exploits and more (s390) joey infodrom org (Martin Schulze)
02/19/2004 Re: Second critical mremap() bug found in all Linux kernels Dan Yefimov
02/19/2004 PunkBuster SQL Injection Attack Just1n T1mberlake
02/19/2004 Re: Fw: APC 9606 SmartSlot Web/SNMP management card backdoor - MORE PROBLEMS Keith Clifton
02/19/2004 Aol Instant Messenger/Microsoft Internet Explorer remote code execution Michael Evanchik
02/19/2004 MDKSA-2004:014 - Updated metamail packages fix buffer overflow vulnerabilities Mandrake Linux Security Team
02/19/2004 Microsoft Internet Explorer Unspecified CHM File Processing Arbitrary Code Execution Vulnerability (bid 9658) K-OTiK Security
02/19/2004 Zone Labs Security Advisory ZL04-08 - SMTP processing vulnerability Zone Labs Product Security
02/19/2004 APC Security Advisory - Static factory password vulnerability security advisory apcc com
02/18/2004 Re: Fw: APC 9606 SmartSlot Web/SNMP management card backdoor - MORE PROBLEMS Frank Louwers
02/18/2004 RE: 9660 : Microsoft IIS Unspecified Remote Denial Of Service Vu lnerability kquest toplayer com
02/18/2004 Re: APC 9606 SmartSlot Web/SNMP management card backdoor Charles R. Anderson
02/18/2004 SUSE Security Announcement: Linux Kernel (SuSE-SA:2004:005) thomas suse de (Thomas Biege)
02/18/2004 Multiple WinXP kernel vulns can give user mode programs kernel mode privileges first last
02/18/2004 Re: SNMP community string disclosure in Linksys WAP55AG Hugo van der Kooij
02/18/2004 RE: Second critical mremap() bug found in all Linux kernels tlarholm pivx com
02/18/2004 metamail format string bugs and buffer overflows Ulf Härnhammar
02/18/2004 RE: Remote Administrator 2.x: highly possible remote hole or backdoor LordInfidel directionweb com
02/18/2004 Re: Microsoft ASN.1 (Half a sploit) Joshua Levitsky
02/18/2004 Re: EarlyImpact ProductCart shopping cart software multiple security vulnerabilities Massimo Arrigoni
02/18/2004 Re: [RHSA-2004:065-01] Updated kernel packages resolve security vulnerabilities Ulrich Keil
02/18/2004 Re: ASN.1 vulnerability -is- on Win98 Joshua Levitsky
02/18/2004 Re: APC 9606 SmartSlot Web/SNMP management card backdoor Fredrik Björk
02/18/2004 article: Alleged Trojan horse in Israeli Anti-Ballistic Missile System Gadi Evron
02/18/2004 Re: Second critical mremap() bug found in all Linux kernels Jared M Breland
02/18/2004 Re: Second critical mremap() bug found in all Linux kernels Steve Bremer
02/18/2004 [SECURITY] [DSA 441-1] New Linux 2.4.17 packages fix local root exploit (mips+mipsel) joey infodrom org (Martin Schulze)
02/18/2004 bid: 9660 : Microsoft IIS Unspecified Remote Denial Of Service Vulnerability kquest toplayer com
02/18/2004 [SECURITY] [DSA 440-1] New Linux 2.4.17 packages fix several local root exploits (powerpc/apus) joey infodrom org (Martin Schulze)
02/18/2004 [SECURITY] [DSA 439-1] New Linux 2.4.16 packages fix several local root exploits (arm) joey infodrom org (Martin Schulze)
02/18/2004 WebCortex Webstores2000 version 6.0 multiple security vulnerabilities Nick Gudov
02/18/2004 [SECURITY] [DSA 438-1] New Linux 2.4.18 packages fix local root exploit (alpha+i386+powerpc) joey infodrom org (Martin Schulze)
02/18/2004 [ GLSA 200402-07 ] Clamav 0.65 DoS vulnerability Tim Yamin
02/18/2004 [slackware-security] metamail security update (SSA:2004-049-02) Slackware Security Team
02/18/2004 [slackware-security] Kernel security update (SSA:2004-049-01) Slackware Security Team
02/18/2004 TSLSA-2004-0007 - kernel Trustix Security Advisor
02/18/2004 [RHSA-2004:065-01] Updated kernel packages resolve security vulnerabilities bugzilla redhat com
02/18/2004 Second critical mremap() bug found in all Linux kernels Paul Starzetz
02/18/2004 ZH2004-08SA (security advisory): OWLS 1.0 Remote arbitrary files retrieving ZetaLabs
02/18/2004 EarlyImpact ProductCart shopping cart software multiple security vulnerabilities S-Quadra Security Research
02/18/2004 Re[2]: [Full-Disclosure] ASN.1 telephony critical infrastructure warning - VOIP 3APA3A
02/18/2004 ZH2004-07SA (security advisory): Multiple Sql injection vulnerabilities in Online Store Kit 3.0 Products (Lite - Standard and Pro) ZetaLabs
02/18/2004 Re: [Full-Disclosure] ASN.1 telephony critical infrastructure warning - VOIP Michael Samuel
02/18/2004 Re: ASN.1 telephony critical infrastructure warning - VOIP Michael H. Warfield
02/17/2004 SNMP community string disclosure in Linksys WAP55AG NN Poster
02/17/2004 Re: Fw: APC 9606 SmartSlot Web/SNMP management card backdoor - MORE PROBLEMS James Green
02/17/2004 Smallftpd 1.0.3 DoS intuit e.b.
02/17/2004 Re: Fw: APC 9606 SmartSlot Web/SNMP management card backdoor - MORE PROBLEMS Thomas M. Payerle
02/17/2004 CesarFTP 0.99 : 100% employment of computer resources intuit e.b.
02/17/2004 Re: [Full-Disclosure] ASN.1 telephony critical infrastructure warning - VOIP Florian Weimer
02/17/2004 iDEFENSE Security Advisory 02.17.04: Ipswitch IMail LDAP Daemon Remote Buffer Overflow iDefense Labs
02/17/2004 ASN.1 vulnerability -is- on Win98 Joshua Levitsky
02/17/2004 Re: Apache Http Server Reveals Script Source Code to Remote Users And Any Users Can Access The Forbidden Directory (/WEB-INF/) Peter J. Holzer
02/17/2004 Re: ASN.1 telephony critical infrastructure warning - VOIP RJ Auburn
02/17/2004 Beagle.b@mm spreading at a steady pace. dotsecure hushmail com
02/17/2004 Fw: APC 9606 SmartSlot Web/SNMP management card backdoor - MORE PROBLEMS thiago vazquez light com br
02/17/2004 RE: Apache Http Server Reveals Script Source Code to Remote Users And Any Users Can Access The Forbidden Directory (/WEB-INF/) Alun Jones
02/17/2004 RE: [Full-Disclosure] ASN.1 telephony critical infrastructure warning - VOIP Zak Dechovich
02/17/2004 Re: [Full-Disclosure] ASN.1 telephony critical infrastructure warning - VOIP Michal Zalewski
02/17/2004 Re: [Full-Disclosure] ASN.1 telephony critical infrastructure warning - VOIP 3APA3A
02/17/2004 Broker FTP DoS (Message Server) Aviram Jenik
02/17/2004 ASN.1 telephony critical infrastructure warning - VOIP Gadi Evron
02/17/2004 Re: Misinformation in Security Advisories (ASN.1) Slawek
02/17/2004 Re: AIX password enumeration possible Darren Tucker
02/17/2004 Re: [Full-Disclosure] ASN.1 telephony critical infrastructure warning - VOIP daniel uriah clemens
02/17/2004 YABB information leakage on failed login David Cantrell
02/17/2004 Denial Of Service in Vizer Web Server 1.9.1 Donato Ferrante
02/17/2004 ZH2004-06SA (security advisory): ShopCartCGI v2.3 Remote arbitrary file retrieving ZetaLabs
02/17/2004 KarjaSoft Sami HTTP Server 1.0.4 Buffer Overflow badpack3t
02/17/2004 Re: Microsoft ASN.1 (Half a sploit) WebHead
02/17/2004 [ GLSA 200402-06 ] Linux kernel AMD64 ptrace vulnerability Tim Yamin
02/17/2004 OT: reports of a Trojan horse in the Arrow project Gadi Evron
02/17/2004: [ GLSA 200402-05 ] phpMyAdmin Vulnerability 2.5.6-rc1 directory traversal attack
2004-02-17: SLocate User-Supplied Database Heap Overflow Vulnerability
2004-02-17: Linux Kernel 32 Bit Ptrace Emulation Full Kernel Rights Vulnerability
2004-02-17: phpMyAdmin Export.PHP File Disclosure Vulnerability
2004-02-16: RhinoSoft Serv-U FTP Server SITE CHMOD Buffer Overflow Vulnerability
2004-02-16: YABB SE Quote Parameter SQL Injection Vulnerability
2004-02-16: Coreutils LS Width Argument Integer Overflow Vulnerability
2004-02-16: RSync Daemon Mode Undisclosed Remote Heap Overflow Vulnerability
2004-02-16: GnuPG External HKP Format String Vulnerability
2004-02-16: 3Com DSL Router Administrative Interface Long Request Router Denial Of Service Vulnerability
2004-02-16: EvolutionX Multiple Remote Buffer Overflow Vulnerabilities
2004-02-16: RobotFTP Server Username Buffer Overflow Vulnerability
2004-02-16: Microsoft Outlook Express Arbitrary Program Execution Vulnerability
2004-02-16: Samba Mksmbpasswd.sh Insecure User Account Creation Vulnerability
2004-02-16: Bonobo EFSTool Commandline Argument Buffer Overflow Vulnerability
2004-02-16: Voice Of Web AllMyPHP Remote File Include Vulnerabilities
2004-02-16: XLight FTP Server Remote Send File Request Denial Of Service Vulnerability
2004-02-16: FreeRADIUS Tag Field Heap Corruption Vulnerability
2004-02-16: Freeform Interactive Purge/Purge Jihad Game Client Remote Buffer Overflow Vulnerability
2004-02-16: Gaim Multiple Remote Boundary Condition Error Vulnerabilities
2004-02-16: Computer Associates eTrust Antivirus Malicious Code Detection Bypass Vulnerability
2004-02-16: Mutt Menu Drawing Remote Buffer Overflow Vulnerability
2004-02-16: mnoGoSearch UdmDocToTextBuf Buffer Overflow Vulnerability
2004-02-16: Microsoft Internet Explorer Bitmap Processing Integer Overflow Vulnerability
2004-02-16: Symantec AntiVirus Scan Engine For Red Hat Linux Insecure Temporary File Vulnerabilities
2004-02-16: Paul Daniels SignatureDB sdbscan Local Buffer Overflow Vulnerability
2004-02-14: Microsoft IIS Unspecified Remote Denial Of Service Vulnerability
2004-02-14: Multiple ASP Portal Vulnerabilities
2004-02-14: GnuPG ElGamal Signing Key Private Key Compromise Vulnerability
2004-02-13: GNU Mailman Admin Page Multiple Cross-Site Scripting Vulnerabilities
2004-02-13: GNU Mailman Malformed Message Remote Denial Of Service Vulnerability
2004-02-13: JelSoft VBulletin Search.PHP Cross-Site Scripting Vulnerability
2004-02-13: Sami FTP Server Multiple Denial Of Service Vulnerabilities
2004-02-13: Multiple RealPlayer/RealOne Player Supported File Type Buffer Overrun Vulnerabilities
2004-02-13: RealPlayer/RealOne Player RMP Skin File Handler Directory Traversal Vulnerability





Symantec SSR

W97M.Saver.H
Macro.Word97.Saver [Kaspersky], W97M/Doccopy.A [F-Prot] February 19, 2004 February 20, 2004
W32.Netsky.B@mm
W32/Netsky.b@MM [McAfee], W32/Netsky.B.worm [Panda], WORM_NETSKY.B [Trend Micro], Moodown.B [F-Secure], I-Worm.Moodown.b [Kaspersky] February 18, 2004 February 18, 2004
W32.Beagle.B@mm
W32.Alua@mm, Win32/Bagle.B.Worm [Computer Associates], Bagle.B [F-Secure], W32/Bagle.b@MM [McAfee], W32/Bagle.B@mm [Norman], WORM_BAGLE.B [Trend Mirco], W32/Bagle.B.worm [Panda], W32/Tanx-A [Sophos], I-Worm.Bagle.b [Kaspersky] February 17, 2004 February 17, 2004
W32.HLLW.Antinny.E February 17, 2004 February 17, 2004
X97M.Ellar.F February 16, 2004 February 16, 2004
W32.Kifer.B February 16, 2004 February 16, 2004
W32.Netsky@mm
WORM_NETSKY.A [Trend] February 16, 2004 February 16, 2004
W32.HLLW.Cult.M@mm February 15, 2004 February 16, 2004
W32.Rusty@m February 15, 2004 February 16, 2004
W32.Welchia.C.Worm
WORM_NACHI.C [Trend], W32/Nachi.worm.c [McAfee], W32/Nachi-C [Sophos], Win32.Nachi.C [Computer Associates], Worm.Win32.Welchia.c [Kaspersky] February 15, 2004 February 17, 2004
VBS.Laske@mm February 13, 2004 February 13, 2004
W32.Doomhunter February 12, 2004 February 13, 2004
W32.HLLW.Deadhat.B
W32/Deadhat.B.worm [Panda] February 12, 2004 February 13, 2004
X97M.Esab February 12, 2004 February 13, 2004
Trojan.Bansap February 12, 2004 February 12, 2004
Trojan.PWS.QQPass.F February 12, 2004 February 12, 2004
W32.HLLP.Shodi February 11, 2004 February 12, 2004
W32.Welchia.B.Worm
W32/Nachi.worm.b [McAfee], W32/Nachi-B [Sophos], Win32.Nachi.B [Computer Associates], WORM_NACHI.B [Trend], Worm.Win32.Welchia.b [Kaspersky] February 11, 2004 February 11, 2004
W32.HLLW.Doomjuice.B
W32/Doomjuice.worm.b [McAfee], WORM_DOOMJUICE.B [Trend], Win32.Doomjuice.B [Computer Associates], W32/Doomjuice-B [Sophos] February 11, 2004 February 11, 2004
W32.Dumaru.AH@mm
W32/Mimail.u@MM [McAfee], Win32.Mimail.U[Computer Associates] February 10, 2004 February 11, 2004
VBS.Bootconf.B February 10, 2004 February 11, 2004
W32.Kifer
TrojanDropper.Win32.Kifer [Kaspersky] February 10, 2004 February 10, 2004
W32.HLLP.Yero.Worm
W32.HLLP.Yero.Worm.dr, W32/Fesber.worm [McAfee] February 10, 2004 February 10, 2004
W32.HLLW.Moega.AG February 10, 2004 February 10, 2004
W32.Yenik.A@mm
W32/Yenik.worm [McAfee] February 10, 2004 February 10, 2004
Trojan.Gutta February 9, 2004 February 10, 2004
W32.HLLW.Doomjuice
W32/Doomjuice.worm.a [McAfee], WORM_DOOMJUICE.A [Trend], Win32.Doomjuice.A [Computer Associates], Worm.Win32.Doomjuice [Kaspersky], W32/Doomjuice-A [Sophos] February 9, 2004 February 9, 2004
Backdoor.IRC.Aladinz.J February 8, 2004 February 9, 2004
W32.HLLW.Deadhat
Vesser [F-Secure], W32/Deadhat.worm.a [McAfee], WORM_DEADHAT.A [Trend], Win32.Deadhat.A [Computer Associates], Worm.Win32.Vesser [Kaspersky] February 6, 2004 February 9, 2004
W32.Dinfor.Worm
WORM_SDBOT.FP [Trend] February 6, 2004 February 6, 2004
Backdoor.Domwis February 6, 2004 February 6, 2004
Backdoor.OptixPro.13.C February 6, 2004 February 6, 2004
W32.Mimail.T@mm
WORM_MIMAIL.T [Trend], W32/Mimail.t@MM [McAfee] February 5, 2004 February 6, 2004
W32.HLLW.Gaobot.JB February 4, 2004 February 5, 2004
W32.Blaster.K.Worm
W32.Blaster.Worm, WORM_MSBLAST.H [Trend], Worm.Win32.Lovesan.a [Kaspersky], W32/Lovsan.worm.gen [McAfee] February 3, 2004 February 4, 2004
W32.Hostidel.Trojan.C February 3, 2004 February 4, 2004
W32.HLLW.Chemsvy
Worm.P2P.Apsiv [Kaspersky], W32/Apsiv.worm!p2p [McAfee] February 3, 2004 February 3, 2004
W32.Dumaru.AD@mm
I-Worm.Dumaru.gen [Kaspersky], W32/Dumaru.gen@MM [McAfee] February 3, 2004 February 3, 2004
W32.Galil.F@mm
W32/Holar.gen@MM [McAfee], I-Worm.Holar.f [Kaspersky] February 2, 2004 February 3, 2004
VBS.Shania
Backdoor.VBS.Shania [Kaspersky], VBS/Pica.worm.gen [McAfee] February 2, 2004 February 2, 2004
Keylogger.Stawin
Keylogger.Trojan, Keylog-Stawin [McAfee], Troj/Stawin-A [Sophos], TrojanSpy.Win32.Keylogger.aa [Kaspersky], Win32.Elkong.D [Computer Associates], TROJ_KEYLOG.AA [Trend] January 29, 2004 January 30, 2004
W32.Randex.FC
Backdoor.IRCBot.gen [KAV] January 29, 2004 January 30, 2004
W32.HLLW.Anig
W32/Anig.worm [McAfee], WORM_ANIG.A [Trend], Win32.Dfcsvc.A [Computer Associates], Worm.Win32.Anig [Kaspersky] January 29, 2004 January 30, 2004
PWSteal.Olbaid January 29, 2004 January 29, 2004
W32.Mimail.S@mm
W32/Mimail-S [Sophos], WORM_MIMAIL.S [Trend], Win32.Mimail.S [Computer Associates], W32/Mimail.s@MM [McAfee] January 29, 2004 January 29, 2004
Backdoor.Aphexdoor
Backdoor.Aphexdoor.10 [Kaspersky] January 28, 2004 January 28, 2004
W32.IRCBot.C
Backdoor.IRCBot.gen [Kaspersky] January 28, 2004 January 28, 2004
W32.Mydoom.B@mm
Mydoom.B [F-Secure], W32/Mydoom.b@MM [McAfee], WORM_MYDOOM.B [Trend], Win32.Mydoom.B [Computer Associates], I-Worm.Mydoom.b [Kaspersky], W32/MyDoom-B [Sophos] January 28, 2004 January 28, 2004
Trojan.Bookmarker.E January 27, 2004 January 28, 2004
W32.HLLW.Pokibat January 27, 2004 January 28, 2004
W32.Mydoom.A@mm
W32.Novarg.A@mm, W32/Mydoom@MM [McAfee], WORM_MIMAIL.R [Trend], Win32.Mydoom.A [Computer Associates], W32/Mydoom-A [Sophos], I-Worm.Novarg [Kaspersky] January 26, 2004 January 26, 2004
W32.Mimail.Q@mm
W32/Mimail.q@MM [McAfee], WORM_MIMAIL.Q [Trend], W32/Mimail-Q [Sophos] January 26, 2004 January 26, 2004
W32.Dumaru.Z@mm
W32/Dumaru.z@MM [McAfee], Win32.Dumaru.Z [Computer Associates], I-Worm.Dumaru.l [Kaspersky], WORM_DUMARU.Z [Trend] January 25, 2004 January 26, 2004
W32.Dumaru.Y@mm
W32/Dumaru.y@MM [McAfee], I-Worm.Dumaru.j [Kaspersky], Win32.Dumaru.Y [Computer Associates], W32/Dumaru-Y [Sophos], WORM_DUMARU.Y [Trend] January 23, 2004 January 26, 2004
Trojan.Bookmarker.D January 23, 2004 January 26, 2004
W32.HLLW.Sanker January 22, 2004 January 23, 2004
Backdoor.OptixPro.13b
Backdoor.Optix.Pro.13 [Kaspersky] January 21, 2004 January 22, 2004
Backdoor.Tuxder January 20, 2004 January 20, 2004
Trojan.Httpdos
Backdoor.Snart.j[Kaspersky] January 20, 2004 January 20, 2004
Trojan.Mitglieder.C
Mitglieder [F-Secure], TrojanProxy.Win32.Mitglieder.c [Kaspersky], Proxy-Mitglieder [McAfee], TROJ_MITGLIEDR [Trend] January 20, 2004 January 20, 2004


NAV Daily Definitions (Go!)


*Note: The i32 Intelligent Updater package cannot be used to update Symantec AntiVirus Corporate Edition 8.0 servers or Norton AntiVirus Corporate Edition 7.6 servers, but can be used to update Corporate Edition clients. The x86 Intelligent Updater package can be used to update corporate Edition clients and servers.

National Cyber Alert System (US-Cert)

Technical
TA04-041A:Multiple Vulnerabilities in Microsoft ASN.1 Library
SB04-049:Summary of Security Items from February 4 through February 17, 2004

Non-technical
SA04-041A:Multiple Vulnerabilities in Microsoft Windows
ST04-002:Choosing and Protecting Passwords


Live Virus Advisory Feed