NT Service Pack requirements (Bell Atlantic DSL)

I just learned that Bell Atlantic (major ISP on the US East coast) requires its Windows NT DSL customers to remove the latest service packs, rolling back the installed service packs two levels (back to SP4), thus re-installing all of the bugs and security holes corrected by the most recent SPs. B

ASP Security Hole (fwd)

Forwarded with permission of the author. Please direct all replies to [EMAIL PROTECTED] Ben Greenbaum Director of Site Content Security Focus http://www.securityfocus.com -- Forwarded message -- Description: Active server pages (ASP) with runtime errors expose a secu

Re: application proxies?

DO NOT USE DELEGATE. Here are some of my findings with delegate, and I'm still not done yet. -- snip -- Delegate Problems = Start of access.c: * Line 41 defines a fixed-length variable (authority - 1024 bytes). - scan_AUTH() does no bound checking and blindly uses strcat() to

crash windows boxes on your local network (twinge.c)

Hi Everyone. I've had this sitting on my hard drive for awhile but it still works, so I figured it was time to see this get fixed. Crashes almost any windows box on your local network. Compiles on Linux. If you can't figure it out you shouldn't be using it anyways. =) -sinkhole -- BEGIN twing

Re: 'cross site scripting' CERT advisory and MS

After a bit of dinking in vi, I removed the HTML, AND got it properly indented for response, so... >Mark Slemko wrote: > 2. Do not use a mail reader that forces you to display HTML messages. >Using something like Outlook Express is very dangerous, since it >means that you can be exploited if

Re: cookies - nothing new

On Mon Feb 07 2000 17:11:13 you wrote: >Amazing what a simple search engine can reveal. >http://homepages.paradise.net.nz/~glineham/cookiemonster.html >> More info used to be here: >> >> Does anyone know where it went? Yes, it moved

Re: Tempfile vulnerabilities

Seth David Schoen <[EMAIL PROTECTED]> said: [...] > An intermediate possibility is to have multiple RNGs with multiple sources > of entropy, or multiple RNGs with entropy divided among them somehow, or > a single RNG which enforces a reasonable policy of some sort when multiple > processes want

Re: Random Sequence Numbers

On 2000-Feb-09 20:27:08 +1100, Omachonu Ogali <[EMAIL PROTECTED]> wrote: >I don't know if anyone else attempted, but I whipped up a little patch for >FreeBSD that randomizes the sequence/acknowledgment numbers sent by TCP >instead of incrementing it by one each time. Apply using 'patch'. Note tha

FireWall-1 FTP Server Vulnerability

FireWall-1 FTP Server Vulnerability Background Paper #1, data protect AG John McDonald <[EMAIL PROTECTED]> Thomas Lopatic <[EMAIL PROTECTED]> References -- Please reference the recent vuln-dev posting by Mikael Olsson entitled, "Breaking through FTP ALGs -- is it possible?" At the time

Re: Novell BorderManager 3.5 Remote Slow Death

I have confirmed it is also an issue with BorderManager 3.0 on NetWare 5d (I think it's service pack 4, don't remeber. :P). It replicates both the CPU usage and the high memory usage. I have also verified you don't need to keep the offending telnet session open to continue hosing the server. Tha

Multiple firewalls: FTP Application Level Gateway "PASV" Vulnerability

Multiple firewalls: FTP Application Level Gateway "PASV" Vulnerability Synopsis It is possible to cause certain firewalls to open up any TCP port of your choice against FTP servers that are "protected" by those firewalls. This is done by fooling the FTP server into echoing "227 P

remote DoS on Internet Anywhere Mail Server Ver.3.1.3

Hello, I've reported DoS probrems on Internet Anywhere Mail Server Ver.3.1.3 to [EMAIL PROTECTED] on 3rd Dec,99. They started to develop the fix. But they said "we'll release the fix in couple of weeks" three times. I've discussed with Jeff Moll(President of True North Software, Inc.) and he allo

Re: RFP2K01 - "How I hacked Packetstorm" (wwwthreads advisory)

"Smith, Eric V." wrote: > > Not true, at least for the case of MS Sql Server 7. The following > statement: > > insert into customer (name, primary_contact) > values ('a', '4') > > succeeds where primary_contact is of type int (I also tried numeric just to > be sure). I write code like this all o

No Subject

-BEGIN PGP SIGNED MESSAGE- __ SuSE Security Announcement Package: make-3.77-44 and earlier Date:Wed Feb 9 17:28:43 CET 2000 Affected SuSE versions: 6.1, 6.3