Section: .. / advisories / cert /
|
See the CERT website for more information.
|
| /// File Name: |
CA-2001-03.OnTheFly |
Description:
|
CERT Advisory CA-2001-03 - The "VBS/OnTheFly" malicious code is a VBScript virus that spreads via email to users of Microsoft Outlook who have not applied previously available security updates. When the malicious code executes, it attempts to send copies of itself, using Microsoft Outlook, to all entries in each of the address books. Outlook update available here. Document on Outlook security here.
| | Homepage: | http://www.cert.org | | File Size: | 10331 | | Last Modified: | Feb 14 08:32:20 2001 |
| MD5 Checksum: | 4eed8c06b6d60117b802ac95697fb8d9 |
|
| /// File Name: |
CA-2001-06.mime.execute |
Description:
|
CERT Advisory CA-2001-06 - All versions of Microsoft Internet Explorer 5.5 SP1 or earlier and any software which utilizes vulnerable versions of Internet Explorer to render HTML allows an intruder to construct malicious content that, when viewed in Internet Explorer (or any program that uses the IE HTML rendering engine), can execute arbitrary code.
| | Homepage: | http://www.cert.org | | File Size: | 8873 | | Last Modified: | Apr 10 04:24:56 2001 |
| MD5 Checksum: | 401206084c421cb5b0974756de5668d2 |
|
| /// File Name: |
CA-2001-07.ftp.glob |
Description:
|
CERT Advisory CA-2001-07 - Many FTP servers have remote vulnerabilities in filename expansion due to the glob() function which allow arbitrary code execution. Vulnerable FTP servers include OpenBSD, NetBSD, FreeBSD, Irix, HPUX 11, and Solaris 8.
| | Homepage: | http://www.cert.org | | File Size: | 8975 | | Last Modified: | Apr 10 22:25:35 2001 |
| MD5 Checksum: | affce6442bd731ae8d4c7a694b8c8c00 |
|
| /// File Name: |
CA-2001-08.alcatel.dsl |
Description:
|
CERT Advisory CA-2001-08 - The Alcatel Speed Touch Asymmetric Digital Subscriber Line (ADSL) modem has weak authentication and access control policies, allowing remote attackers to do many things, including unauthorized access, unauthorized monitoring, information leakage, denial of service, and permanent disability of affected devices. More information available here.
| | Homepage: | http://www.cert.org | | File Size: | 15349 | | Last Modified: | Apr 13 03:11:35 2001 |
| MD5 Checksum: | aa381a887611f71ae36122cb18d735be |
|
| /// File Name: |
CA-2001-09.isn |
Description:
|
Cert Advisory CA-2001-09 - Many systems are vulnerable to Initial Sequence Number (ISN) attacks, allowing attackers to manipulate and spoof tcp connections. Many systems use the Central Limit Theorem to protect the ISN, however these machines are still vulnerable to statistical attack. If the ISNs of future connections of a system are guessed exactly, an attacker will be able to complete a TCP three-way handshake, establish a phantom connection, and spoof TCP packets delivered to a victim. Affected systems include Cisco, FreeBSD prior to 4.3-RELEASE, OpenBSD prior to 2.8-current, Fujitsu, HP/UX, and SGI.
| | Homepage: | http://www.cert.org | | File Size: | 38438 | | Last Modified: | May 3 03:44:14 2001 |
| MD5 Checksum: | 966363ab08fc30683f982ab8819c3d81 |
|
| /// File Name: |
CA-2001-10.iis5 |
Description:
|
CERT Advisory CA-2001-10 - Buffer Overflow Vulnerability in Microsoft IIS 5.0. A vulnerability exists in Microsoft IIS 5.0 running on Windows 2000 that allows a remote intruder to run arbitrary code on the victim machine, allowing them to gain complete administrative control of the machine.
| | Homepage: | http://www.cert.org | | File Size: | 5419 | | Last Modified: | May 3 23:11:13 2001 |
| MD5 Checksum: | abdf83b85b5b3db8c344eeb1cc4d0b18 |
|
| /// File Name: |
CA-2001-11.iisworm |
Description:
|
Cert Advisory CA-2001-11 - A worm which uses the sadmind overflow and the IIS unicode bug is propagating on the internet. Solaris systems compromised by this worm are being used to scan and compromise other Solaris and IIS systems. IIS systems compromised by this worm can suffer modified web content.
| | Homepage: | http://www.cert.org | | File Size: | 9061 | | Last Modified: | May 9 01:02:16 2001 |
| MD5 Checksum: | e570ec4ca2764bfc26430d8e5f738e9f |
|
| /// File Name: |
CA-2001-12.superfluous.iis |
Description:
|
CERT Advisory CA-2001-12 - A serious vulnerability in Microsoft IIS allows remote intruders to execute commands on an IIS web server, as discussed in ms01-026. This vulnerability closely resembles a previous vulnerability in IIS that was widely exploited.
| | Homepage: | http://www.cert.org | | File Size: | 6385 | | Last Modified: | May 17 22:46:22 2001 |
| MD5 Checksum: | 8b7a04fb8cb3aa8ec26645d1f4d7a58b |
|
| /// File Name: |
CA-2001-18.ldap |
Description:
|
CERT Advisory CA-2001-18 - Several implementations of the Lightweight Directory Access Protocol (LDAP) protocol contain vulnerabilities that may allow denial-of-service attacks and unauthorized privileged access. Vulnerable services include the iPlanet directory server, IBM SecureWay running under Solaris and Windows 2000, Lotus Domino R5 Servers, Teamware Office for Windows NT and Solaris, Qualcomm Eudora WorldMail for Windows NT, Microsoft Exchange 5.5 LDAP Service, Network Associates PGP Keyserver 7.0, prior to Hotfix 2, Oracle 8i Enterprise Edition, and OpenLDAP, 1.x prior to 1.2.12 and 2.x prior to 2.0.8.
| | Homepage: | http://www.cert.org | | File Size: | 23358 | | Last Modified: | Jul 18 02:50:34 2001 |
| MD5 Checksum: | 79332efa3535f9e75b175ec12691c9ce |
|
| /// File Name: |
CA-2001.interbase |
Description:
|
CERT Advisory CA-2001-01 - Interbase is an open source database package that had previously been distributed in a closed source fashion by Borland/Inprise. Both the open and closed source versions of the Interbase server contain a compiled-in back door account with a known password which allows any local or remote user able to access port 3050/tcp [gds_db] to manipulate any database object and run arbitrary code on the system.
| | Homepage: | http://www.cert.org | | File Size: | 8473 | | Last Modified: | Jan 13 01:29:09 2001 |
| MD5 Checksum: | 4ccfa403993e47c8ebf067e978169831 |
|
| /// File Name: |
CA-2002-02.aol.icq |
Description:
|
There is a remotely exploitable buffer overflow in ICQ v2001A and below. Attackers that are able to exploit the vulnerability can execute arbitrary code with the privileges of the victim user. There are 122 million vulnerable clients. Full details are discussed in VU#570167. An exploit is known to exist. Voice Video & Games plugin installed with AOL Mirabilis ICQ Versions 2001B Beta v5.18 Build #3659 and prior is also vulnerable.
| | Homepage: | http://www.cert.org | | File Size: | 9471 | | Last Modified: | Jan 25 08:27:22 2002 |
| MD5 Checksum: | c8d272590ca4613ec1a4cac1ae2b3505 |
|
| /// File Name: |
CA-2002-03.snmp |
Description:
|
CERT Advisory CA-2002-03 - Multiple vulnerabilities have been discovered in various Simple Network Management Protocol (SNMP) implementations. These vulnerabilities may allow unauthorized privileged access, denial-of-service attacks, or cause unstable behavior. It is urged that administrators turn off SNMP altogether if it is not currently necessary. Research and discovery made by the University of OULU.
| | Homepage: | http://www.cert.org | | File Size: | 54503 | | Last Modified: | Feb 12 23:54:19 2002 |
| MD5 Checksum: | 39a786620e344c73c71845fa9739eb9d |
|
| /// File Name: |
CA-2002-04.ie-overflow |
Description:
|
CERT Advisory CA-2002-04 - Microsoft Internet Explorer contains a buffer overflow vulnerability in its handling of embedded objects in HTML documents. This vulnerability allows attackers to execute arbitrary code on the victim's system when the victim visits a web page or views an HTML email message. This bug was discussed in MS02-005.
| | Homepage: | http://www.cert.org | | File Size: | 9677 | | Related CVE(s): | CAN-2002-0022 | | Last Modified: | Feb 26 07:41:47 2002 |
| MD5 Checksum: | 86fd6e68bbf8b3c6283cb00313852ed7 |
|
| /// File Name: |
CA-2002-05.php.upload |
Description:
|
CERT Advisory CA-2002-05 - File upload vulnerabilities in php_mime_split allow remote attackers to execute arbitrary code with the privileges of the PHP process in v4.1.1 and below. More information available here. Patch available here.
| | Homepage: | http://www.cert.org | | File Size: | 7777 | | Last Modified: | Feb 28 03:52:42 2002 |
| MD5 Checksum: | 0013da4bfe2284dd9bd31c2fe86d2b62 |
|
| /// File Name: |
CA-2002-06.radius |
Description:
|
CERT Advisory CA-2002-06 - Multiple remote vulnerabilities have been discovered in several implementations of the RADIUS protocol. One of the bugs is a denial of service which allows attackers to execute arbitrary code if they know the shared secret. Affected systems include: Ascend RADIUS versions 1.16 and prior, Cistron RADIUS versions 1.6.4 and prior, FreeRADIUS versions 0.3 and prior, GnuRADIUS versions 0.95 and prior, ICRADIUS versions 0.18.1 and prior, Livingston RADIUS versions 2.1 and earlier, RADIUS (commonly known as Lucent RADIUS) versions 2.1 and prior, RADIUSClient versions 0.3.1 and prior, YARD RADIUS 1.0.19 and prior, and XTRADIUS 1.1-pre1 and prior.
| | Homepage: | http://www.cert.org | | File Size: | 17830 | | Last Modified: | Mar 6 05:11:57 2002 |
| MD5 Checksum: | c70a071e85c79d3fec92ca46819dab3b |
|
| /// File Name: |
CA-2002-07.zlib |
Description:
|
CERT Advisory CA-2002-07 - A bug in the zlib compression library prior to v1.1.4 manifests itself as a vulnerability in any of the many programs that are linked with zlib, and allows an attackers to mount a dos attack, gather info, or execute arbitrary code. Passing a specially-crafted block of invalid compressed data to a program that includes zlib, the program's attempt to decompress the crafted data can cause the zlib routines to corrupt the internal data structures. Fix available here. A list of over 500 applications, including ssh and openssh, linked to zlib is here.
| | Homepage: | http://www.cert.org | | File Size: | 15969 | | Last Modified: | Mar 13 05:37:32 2002 |
| MD5 Checksum: | 1a332cb92b45067adbc3e8f20fcee995 |
|
| /// File Name: |
CA-2002-08.oracle |
Description:
|
CERT Advisory CA-2002-08 - Multiple vulnerabilities have been discovered in Oracle's "Unbreakable" Application server, including buffer overflows, insecure default settings, failures to enforce access controls, and failure to validate input.
| | Homepage: | http://www.cert.org | | File Size: | 17123 | | Last Modified: | Jun 6 07:54:20 2002 |
| MD5 Checksum: | 0f76675f83d91b4badbdb694ba176a47 |
|
| /// File Name: |
CA-2002-10.rpc.walld |
Description:
|
CERT Advisory CA-2002-10 - Solaris v2.5.1, 2.6, 2.7, and 2.8 rpc.walld contains a remotely exploitable format string overflow.
| | Homepage: | http://www.cert.org | | File Size: | 6526 | | Last Modified: | May 7 09:33:11 2002 |
| MD5 Checksum: | 4653bcc808b8d76746723c186ffc665c |
|
| /// File Name: |
CA-2002-11.cachefsd |
Description:
|
CERT Advisory CA-2002-11 - Sun's NFS/RPC file system cachefs daemon (cachefsd) installed by default with Sun Solaris 2.5.1, 2.6, 7, and 8, contains a remotely exploitable heap overflow which allows attackers to execute code as root.
| | Homepage: | http://www.cert.org | | File Size: | 7079 | | Last Modified: | May 7 09:36:50 2002 |
| MD5 Checksum: | 842f0179954995b6d4c0f25e885ed5d3 |
|
| /// File Name: |
CA-2002-12-ISC-DHCP |
Description:
|
CERT Advisory CA-2002-12 - A format string vulnerability in ISC DHCP 3 to 3.0.1rc8 can be used to remotely execute code through this application. Because ISC DHCP runs with root privileges, exploitation of this vulnerability can lead to a root compromise.
| | Homepage: | http://www.cert.org | | File Size: | 9193 | | Last Modified: | May 10 07:44:11 2002 |
| MD5 Checksum: | 95cc636e9bbdd703e6ba5a6658603d96 |
|
| /// File Name: |
CA-2002-13.MSN.Chat.control.txt |
Description:
|
CERT Advisory CA-2002-13 - A buffer overflow in the MSN Chat control allows remote attackers to run arbitrary code if a user runs MSN Messenger or Exchange Instant Messenger. It is also possible to exploit this vulnerability via a web site or HTML email. Additional information can be found in the Microsoft bulletin MS02-22.
| | Homepage: | http://www.cert.org | | File Size: | 7931 | | Last Modified: | May 13 03:23:39 2002 |
| MD5 Checksum: | 7f908068e4f7db69361f9a16ecbf85d9 |
|
| /// File Name: |
CA-2002-14.jrun |
Description:
|
CERT Advisory CA-2002-14 - A remotely exploitable buffer overflow in Macromedia JRun v3.0 and 3.1 when running with IIS 4 or 5 allows remote attackers to execute code with SYSTEM privileges. According to Macromedia, JRun is deployed at over 10,000 organizations worldwide.
| | Homepage: | http://www.cert.org | | File Size: | 5071 | | Last Modified: | Jun 3 06:33:35 2002 |
| MD5 Checksum: | c591addd3e41a1868e5f53ddd2c37f3c |
|
| /// File Name: |
CA-2002-15.bind9 |
Description:
|
CERT Advisory CA-2002-15 - Domain Name System (DNS) servers running ISC BIND 9 prior to 9.2.1 are vulnerable to a remote denial of service attack. ISC BIND versions 8 and 4 are not affected. This vulnerability is also being referenced as CAN-2002-0400.
| | Homepage: | http://www.cert.org | | File Size: | 10871 | | Last Modified: | Jun 5 06:41:26 2002 |
| MD5 Checksum: | fcb6c431e493d238ddcf4397636252ae |
|
| /// File Name: |
CA-2002-16.yahoo |
Description:
|
CERT Advisory CA-2002-16 - Yahoo! Messenger version 5,0,0,1064 and prior for Microsoft Windows contain multiple vulnerabilities which can be exploited to execute arbitrary code with the privileges of the victim user.
| | Homepage: | http://www.cert.org | | File Size: | 9549 | | Last Modified: | Jun 6 05:03:45 2002 |
| MD5 Checksum: | 01b983276b9dab2470d4c32241d73f0d |
|
| /// File Name: |
CA-2002-17.apache |
Description:
|
CERT Advisory CA-2002-17 - Apache v1.3.24 and 2.0.36 and below contains a remotely exploitable vulnerability in chunk encoded data support that is present by default. Remote code execution is possible on some platforms, denial of service attacks are possible against others. Fix available here.
| | Homepage: | http://www.cert.org | | File Size: | 9259 | | Last Modified: | Jun 19 07:49:30 2002 |
| MD5 Checksum: | 33aac8d5526df98677412567f1f82ac3 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
