The following is a Security Bulletin from the Microsoft Product Security
Notification Service.
Please do not reply to this message, as it was sent from an unattended
mailbox.
Microsoft Security Bulletin (MS99-052)
-
-- Forwarded message --
Date: Mon, 29 Nov 1999 17:18:19 -0800
From: Microsoft Product Security <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: Microsoft Security Bulletin (MS99-051)
The following is a Security Bulletin from the Microsoft Product Security
Notification Service.
Mike Boto wrote:
> Netscape Communicator 4.7 - Navigator Overflow
To add, I've done a successful 'overflow', among other things, to Netscape
Navigator 4.6, and while compsing this message, Composer, moments ago, by
putting, at the end of a .asp, ?+2k of characters, causing a complete software
fr
I guess some people hope to find here remote shell xploit, huehue.
Calm down, not this time ;) OK, let's go. Everything happens on
vanilla RH 6.1 box.
$ man ftpaccess
guestserver []
Controls which hosts may be used for anonymous or
guest access. If used withou
Crispin Cowan wrote:
> > > I think one of the major problems with the Linux implementation, and
> > > apparently windows too, is that noone pays attention to the added security
> > > provided by segmentation (at least to the point of putting the stack on a
> > > different segment?)
> >
> > Having
We've addressed this problem by creating 2 accounts 1 that owns the
procedures to be executed (www_user) and 1 that is called by the listener
(www_connect). www_connect is only granted execute rights on the procedure
and packages it needs to execute. Since Oracle Stored procedure execute as
the
Hi!
> The 386 and up supports no-exec, but only on differing segments. Most OS
> systems aren't properly implemented on the 386+ architecture. The 386+
> supports read-only pages in the paging architecture, but to separate
> executable code from stack and data, you have to point the segment
> r
Aleph, please kill my article if someone else says it better/first. I've been
waiting in silence for Solar Designer to speak up and end the debate about how
to do this, but I guess he's away from his e-mail.
Glynn Clements wrote:
> Christopher Rhodes wrote:
> > I think one of the major problems
Hi,
>EXECS_NOT_TO_UNSET="oracle dbsnmp"
>From what I've read on the Oracle support page, the "oracle" program MUST be
>setuid-oracle if it is in a multi-user environment
No, it does not need to. If you connect through sqlnet (that is: a listener
running as oracle which starts the oracle
binary),
TOORCON COMPUTER SECURITY EXPO PRE-REGISTRATION INFORMATION
Please continue reading for information on what TooRcon is, where is it,
how much is it and other pertinent information.
Thanks!
- The Staff of TooRcon Computer Security Expo
1.0 - When is TooRcon
2.0 - What is TooRcon
3.0 - Where is
I have received a few letters concerning whether this is specific to .asp
files. It is not. I have successfully tried it on .html?, .cgi?
, and .pl? files as well. Please let me know if there are any
"interactive" files it does not work with, as well as how it affects other
operating systems.
Symantec Mail-Gear 1.0 Web interface Server Directory Traversal
Vulnerability
PROBLEM
UssrLabs found a Symantec Mail-Gear 1.0 Web interface Server Directory
Traversal Vulnerability
Using the string '../' in a URL, an attacker can gain read access to
any file outside of the intended web-publish
Finally NTInfoScan has been updated though what's even better is that it is
no longer NT specific - it'll
root out holes in UNIX systems now too and much more functionality and
checking has been added.
Oh, and it's now been reborn as the Cerberus Internet Scanner or CIS for
short.
Checks for ftp
Blue Boar writes:
> A Cisco security guy posted a message to the list asking that they be given
> advanced warning before posts about Cisco bugs are allowed through. I
> explained that the nature of the list is vulnerabilities that are still in
> development, but that I would be happy to make sur
- Original Message -
From: Glynn Clements <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Saturday, November 27, 1999 7:22 AM
Subject: Re: WordPad/riched20.dll buffer overflow
> Christopher Rhodes wrote:
>
> > I think one of the major problems with the Linux implementation, and
> > app
I'm not certain this is the appropriate forum to discuss this,
however I've been unable to locate any documentation about this
on 3Com's website nor has technical support been helpful in
enlightening me (I have called their 800 number).
The 3Com external cablemodem (CMX) allows the upstream provi
Hello
The mailer programs (mailtool and dtmail) and mail message print filter
(dtmailpr) which are installed on Solaris7 have exploitable buffer
overflow bug. These programs are sgid (mail group) programs, local user
can obtain mail group. The mail files are generated with 660 permission,
so any
17 matches
Mail list logo