Section: .. / advisories / cert /
|
See the CERT website for more information.
|
| /// File Name: |
CA-2003-06.sip |
Description:
|
CERT Advisory CA-2003-06 - Numerous vulnerabilities have been reported in multiple vendor implementations of the Session Initiation Protocol, or SIP, which may allow an attacker to gain unauthorized privileged access, cause denial-of-service attacks, or cause unstable system behavior.
| | Homepage: | http://www.cert.org | | File Size: | 16973 | | Last Modified: | Feb 21 18:04:53 2003 |
| MD5 Checksum: | 967409fbce6d95e1ba77b3f2800714d8 |
|
| /// File Name: |
CA-2003-07.sendmail |
Description:
|
CERT Advisory CA-2003-07 - Sendmail prior to 8.12.8 has a remote root vulnerability which can be exploited by a malicious mail message, allowing non-vulnerable MTA's to relay the exploit message to unpatched MTA's on an internal network. A successful attack against an unpatched sendmail system will not leave any messages in the logs. All Sendmail Pro, Sendmail Switch, and Sendmail for NT are also vulnerable. Fix available here.
| | Homepage: | http://www.cert.org | | File Size: | 12357 | | Related CVE(s): | CAN-2002-1337 | | Last Modified: | Mar 4 06:06:00 2003 |
| MD5 Checksum: | 137522a297a47bd898379d3ef460199c |
|
| /// File Name: |
CA-2003-08.winshares |
Description:
|
CERT Advisory CA-2003-08 - There is increased activity targeting Windows shares over ports 137, 138, 139, and 445.
| | Homepage: | http://www.cert.org | | File Size: | 19413 | | Last Modified: | Mar 18 14:36:16 2003 |
| MD5 Checksum: | c6a335f230856f5bc465110717f36e8d |
|
| /// File Name: |
CA-2003-09.iis-webdav |
Description:
|
CERT Advisory CA-2003-09 - A buffer overflow vulnerability exists in Microsoft IIS 5.0 running on Microsoft Windows 2000. An overflow in ntdll.dll of WebDAV allows remote users to execute code in the local system context. See also ms03-007.
| | Homepage: | http://www.cert.org | | File Size: | 7125 | | Related CVE(s): | CAN-2003-0109 | | Last Modified: | Mar 18 14:39:13 2003 |
| MD5 Checksum: | ffa2899810162a68e9c91d8cae8f7803 |
|
| /// File Name: |
CA-2003-10.rpcxdr |
Description:
|
CERT Advisory CA-2003-10 - A buffer overflow vulnerability in SunRPC-derived XDR libraries causes several applications which use the rpcbind service to allow execution of arbitrary code or disclosure of sensitive information. In addition, intruders may be able to crash the MIT KRB5 kadmind or cause it to leak sensitive information, such as secret keys. Vulnerable code includes GNU Glibc 2.3.1 and below, Solaris 2.6, 7, 8 and 9, AIX 4.3.3 through 5.2.0, and MIT Kerberos vulnerabilities.
| | Homepage: | http://www.cert.org | | File Size: | 14357 | | Last Modified: | Mar 25 05:47:53 2003 |
| MD5 Checksum: | a1dc824b3db44b8751af7ba3c83beb73 |
|
| /// File Name: |
CA-2003-11.lotus.domino |
Description:
|
CERT Advisory CA-2003-11 - Multiple vulnerabilities have been reported to affect Lotus Notes clients and Domino servers v5.0.12 through 6.0.1 including six exploitable buffer overflows. TCP port 1352 is a likely conduit for attack, however Lotus Notes often listens to Netbios, SPX, or XPC ports.
| | Homepage: | http://www.cert.org | | File Size: | 9867 | | Last Modified: | Mar 27 09:29:44 2003 |
| MD5 Checksum: | faf6d46160e65b496113291bafcb82ee |
|
| /// File Name: |
CA-2003-12.sendmail |
Description:
|
CERT Advisory CA-2003-12 - A remote stack overflow in Sendmail 8.12.8 and below was discovered by Michal Zalewski which allows remote code execution as root. This bug is in the prescan code and is different than the recent sendmail bug described in CA-2003-07. Patch available here.
| | Homepage: | http://www.cert.org | | File Size: | 9454 | | Related CVE(s): | CAN-2003-0161 | | Last Modified: | Apr 1 07:51:51 2003 |
| MD5 Checksum: | 5f9042c50705af2bf508c8b6bf27dc38 |
|
| /// File Name: |
CA-2003-13.snort |
Description:
|
CERT Advisory CA-2003-13 - Two remote vulnerabilities in the Snort IDS, versions 1.8 through 2.0 RC allow remote execution of code as root. It is not necessary for the attacker to know the IP address of the Snort device they wish to attack; merely sending malicious traffic where it can be observed by an affected Snort sensor is sufficient to exploit these vulnerabilities. Fix available here.
| | Homepage: | http://www.cert.org | | File Size: | 9583 | | Last Modified: | Apr 18 10:06:53 2003 |
| MD5 Checksum: | 30fa60b771ff2e6ee35376d17f2619f4 |
|
| /// File Name: |
CA-2003-14.mswin.txt |
Description:
|
CERT Advisory CA-2003-14 - A buffer overflow vulnerability exists in a shared HTML conversion library included in Microsoft Windows. An attacker could exploit this vulnerability to execute arbitrary code or cause a denial of service.
| | Homepage: | http://www.cert.org | | File Size: | 7062 | | Last Modified: | Jul 18 01:54:32 2003 |
| MD5 Checksum: | 8c5b5e631a493151fcc60504744b1dc0 |
|
| /// File Name: |
CA-88:01.ftpd.hole |
Description:
|
Warning about BSD sendmail 5.59 debug command; general warning about getting latest version of ftpd; other general warnings. ** The sendmail portion of this advisory is superseded by CA-96.20, CA-96.24, and CA-96.25. **
| | File Size: | 5080 | | Last Modified: | Sep 14 07:46:19 1999 |
| MD5 Checksum: | 7da18e65d1ed29f7ac0e6ab944db4fce |
|
| /// File Name: |
CA-89:01.passwd.hole |
Description:
|
Report from Keith Bostic of BSD patch for passwd(1) program.
| | File Size: | 6097 | | Last Modified: | Sep 14 07:46:20 1999 |
| MD5 Checksum: | cf8384d2ad4bed56cdeb8d0871c39b18 |
|
| /// File Name: |
CA-89:02.sun.restore.hole |
Description:
|
Vulnerability in SunOS 4.0.* restore(8) command.
| | File Size: | 3678 | | Last Modified: | Sep 14 07:46:21 1999 |
| MD5 Checksum: | cc9fa31c90d14c28431acbd58b135dca |
|
| /// File Name: |
CA-89:03.telnet.breakin.warning |
Description:
|
Warning about a series of break-ins in which an intruder replaced the telnet(1) program with a Trojan horse that captured passwords. Contains some general hints about securing systems.
| | File Size: | 5963 | | Last Modified: | Sep 14 07:46:21 1999 |
| MD5 Checksum: | 9b933d2cc5364f424a5fceba2ecc77bc |
|
| /// File Name: |
CA-89:04.decnet.wank.worm |
Description:
|
Warning about the "WANK" worm which attacked DECnet hosts.
| | File Size: | 9931 | | Last Modified: | Sep 14 07:46:22 1999 |
| MD5 Checksum: | 519ff2f53903f7f35624042e69183724 |
|
| /// File Name: |
CA-89:05.ultrix3.0.hole |
Description:
|
Warning about attacks on DEC/Ultrix 3.0 machines. Advises users to check for Trojan horses, insecure tftp, simple passwords.
| | File Size: | 3830 | | Last Modified: | Sep 14 07:46:23 1999 |
| MD5 Checksum: | 875a123062dfaadaed19342c540fc114 |
|
| /// File Name: |
CA-89:06.ultrix3.0.update |
Description:
|
A repost of the 10/17 Ultrix advisory with checksums for several Ultrix system programs.
| | File Size: | 4275 | | Last Modified: | Sep 14 07:46:24 1999 |
| MD5 Checksum: | 8c187e25ada74d041f8445a430b2310a |
|
| /// File Name: |
CA-89:07.sun.rcp.vulnerability |
Description:
|
Vulnerability in SunOS 4.0.x rcp command.
| | File Size: | 2581 | | Last Modified: | Sep 14 07:46:24 1999 |
| MD5 Checksum: | a5da4f2f47c018b0a55f10d0693fd488 |
|
| /// File Name: |
CA-90:02.intruder.warning |
Description:
|
Warning about a series of attacks on Internet systems. Includes a list of 14 points to check on Unix and VMS systems. The points cover possible signs of a break-in as well as possible system configuration vulnerabilities.
| | File Size: | 8691 | | Last Modified: | Sep 14 07:46:25 1999 |
| MD5 Checksum: | ba4bd611e6e3473307178c2fa9f05030 |
|
| /// File Name: |
CA-90:03.unisys.warning |
Description:
|
Warning about Unisys U5000 systems. Some of the logins supplied when the system was shipped did not have passwords, and intruders were taking advantage of this vulnerability.
| | File Size: | 3869 | | Last Modified: | Sep 14 07:46:26 1999 |
| MD5 Checksum: | 8d00333dfd6ff45c9e356a33baadda34 |
|
| /// File Name: |
CA-90:04.apollosuid.vulnerability |
Description:
|
Vulnerability in Hewlett Packard/Apollo Domain/OS version sr10.2 and some beta versions of sr10.3. File /etc/suid_exec contained a security flaw.
| | File Size: | 5110 | | Last Modified: | Sep 14 07:46:26 1999 |
| MD5 Checksum: | de2c4d00577647babb12097769cfa7fa |
|
| /// File Name: |
CA-90:05.sunselection.vulnerability |
Description:
|
Vulnerability in SunOS 3.*, 4.0.3, and 4.1 SunView selection_svc facility.
| | File Size: | 4221 | | Last Modified: | Sep 14 07:46:27 1999 |
| MD5 Checksum: | c77f37521a83c42be1426213198c04f7 |
|
| /// File Name: |
CA-90:06a.NeXT.vulnerability |
Description:
|
Describes several vulnerabilities in NeXT system software. The advisory was originally issued as 90:06; 90:06a includes several corrections.
| | File Size: | 8481 | | Last Modified: | Sep 14 07:46:40 1999 |
| MD5 Checksum: | 49bd246bb2fdaf35822775d30d1fd897 |
|
| /// File Name: |
CA-90:07.VMS.ANALYZE.vulnerability |
Description:
|
Vulnerability in DEC VMS versions 4.0 through 5.4. Problem with ANALYZE/PROCESS_DUMP routine.
| | File Size: | 4471 | | Last Modified: | Sep 14 07:46:41 1999 |
| MD5 Checksum: | 511cc23f8ab353b65b76c18e6ae45df7 |
|
| /// File Name: |
CA-90:08.irix.mail |
Description:
|
Vulnerability in Silicon Graphics IRIX 3.3 and 3.3.1 systems. /usr/sbin/Mail has a security flaw.
| | File Size: | 2748 | | Last Modified: | Sep 14 07:46:42 1999 |
| MD5 Checksum: | fb50923168e7d5675af0171ae3171b41 |
|
| /// File Name: |
CA-90:09.vms.breakins.warning |
Description:
|
Warning about techniques intruders were using to get access to VMS systems. No new vulnerabilities described; intruders were using weak password attacks.
| | File Size: | 5077 | | Last Modified: | Sep 14 07:46:42 1999 |
| MD5 Checksum: | 5b0de24a4726851dd095375d9b3e694a |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
