First of all, here's the headers:
Microsoft Mail Internet Headers Version 2.0
Received: from mail.gmx.net ([194.221.183.20]) by hexch01.robhughes.com with
Microsoft SMTPSVC(5.0.2195.2966);
Mon, 16 Jul 2001 21:07:01 -0500
X-Proxy: fwall.robhughes.com protected by Firewall
Received: (qmail
Oracle has an ftp server that allows anonymous downloads. You can get the
patches from there.
ftp://oracle-ftp.oracle.com/server/patchsets/
Aaron C. Newman
CTO/Founder
Application Security, Inc.
212-490-6022
[EMAIL PROTECTED]
www.appsecinc.com
-Protection Where It Counts-
> I dont want support a
- Forwarded message from Charles Stevenson <[EMAIL PROTECTED]> -
From: Charles Stevenson <[EMAIL PROTECTED]>
To: Bugtraq <[EMAIL PROTECTED]>, [EMAIL PROTECTED]
CC: Kevin Finisterre <[EMAIL PROTECTED]>
Subject: Samsung ML-85G Printer Linux Helper/Driver Binary Exploit (Mandrake:
ghostscr
Below is qflood.c, inspired by a bored Sunday and a bugtraq
post from 1998. This will fill up a Quake server with
spoofed "unconnected" clients, disallowing other players the
ability to connect to the server since the player limit
fills up quickly. Additionally, if the server does not
suppo
# lsmod
Module Size Used by
chmod656 0 (unused)
pcmcia_core41792 0
ppp_deflate39008 0 (unused)
ppp_async 6864 0 (unused)
ppp_generic19280 0 [ppp_deflate ppp_async]
slip8416 0
This does sound like a bug in the Task Manager,
and maybe there are MINOR security implications
in the fact that the Task Manager tells the
administrator "This is a critical system process"
when it's not...but the fact that the system
administrator is trying to kill the process
seems to suggest th
In message <[EMAIL PROTECTED]>, "Jarno Huuskonen"
writes:
> If you look a little below you'll see a call to FileDelete(strName); So
> first you create a file with mkstemp and then unlink it. And because
> cFileArchive::OpenReadWrite(line 708) then opens the same file(name) without
> O_EXCL there
> The simplest of these, in terms of retrofitting existing systems that use
> one of the constructions Ishikawa mentions, is
>
> H(password || H(password || known-string))
Which is very close to CRAM-MD5. That uses:
H( (password XOR 0x5C) || H( (password XOR 0x36) || challenge-str
Hi Marcin,
> > After doing a check on my SuSE linux 7.0 x86 i found something interesting:
> >
> > hegi@faust:~ > ls -la /usr/sbin/dip
> > -rwsr-xr-- 1 root dialout 62056 Jul 29 2000 /usr/sbin/dip
> >
> > DIP: Dialup IP Protocol Driver version 3.3.7p-uri (25 Dec 96)
> > Written by Fred
-
Red Hat, Inc. Red Hat Security Advisory
Synopsis: New elm packages available for Red Hat Linux 5.2, 6.2, 7 and 7.1
Advisory ID: RHSA-2001:091-07
Issue date:2001-07-03
Updated on:
> Known to who? Is it documented anywhere?
MS KB Q172190 discusses this behavior, NTFS Tunneling. It's covered in
the Microsoft Official Curriculum course # 922, as well. (I know the MOC is
not the most widely looked-at reference, but the KB is fair game.)
I can confirm this; I created a simple Win32 app named "Winlogon.exe" and
Task Manager refused to terminate it. However, I discovered something
interesting: Microsoft's "kill" utility will terminate the faux
winlogon.exe, but will not terminate the real one.
See below- pid 1692 is the pid for my
I've been asked by Raymond Sundland to forward this reply to my post.
He has an alternative (and very clever) way this security issue can
be "exploited".
Nobody from CSI has been in any further contact with me, and I think
they've pretty much ignored my phone call from last week. Anyone on th
hello
>The claim that he makes is surely interesting. I tried running the md5crack
>on my system which is a linux6.1 Intel pentium 3 733 MHz and I was able to
>get around 1/100 of what he claims. Although he uses a 1GHz AMD can the
>performances be so different ???
try without -v/-V (verbose),
> -Original Message-
> From: Martin Werner [mailto:[EMAIL PROTECTED]]
> Sent: Monday, July 16, 2001 3:31 AM
> To: [EMAIL PROTECTED]
> Subject: AW: Windows MS-DOS Device Name DoS vulnerabilities
>
>
> Just want to give a new thought.
>
> Fact is, that on the one hand side, its merely impo
Task Manager in Windows 2000 refuses to kill any process named
- winlogon.exe
- csrss.exe
- smss.exe
- services.exe
showing a message box stating that this is a critical system process and
cannot be ended by task manager.
Although these processes were and are still protected by their ACL (Access
On Thu, 12 Jul 2001, 3APA3A wrote:
> GNU tar (all platforms):
>
> tar below 1.13.19 including latest releases has no any ".." or
> absolute path protection. Tar development team was contacted. They
> replied they're aware of problem and current development version
> 1.13.19 i
> -Original Message-
> From: Ishikawa [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, July 12, 2001 11:50 AM
>From the discussion, I think some readers missed
> the point of the original poster.
> Using "||" as string concatination operator, it seems that
>
> MD5 (given-long-string || s
Hello all,
Just wanted to provide y'all with some info.
> >
> > On Wed, 11 Jul 2001, Acryl wrote:
> >
> > > Again the 3 files were created, but the Creation time/date was set
> > > wrong, namely it was set to the very first creation time
> ( before I
> > > deleted them by hand ). Any follow
-
Red Hat, Inc. Red Hat Security Advisory
Synopsis: New util-linux packages available to fix vipw permissions problems
Advisory ID: RHSA-2001:095-04
Issue date:2001-07-12
Updated on:
Just want to give a new thought.
Fact is, that on the one hand side, its merely impossible to write an safe
ftp server using Microsofts Filesystem, because device names can cause
trouble (and I think, this is not a bug, but it's been discussed)
So I think, good coding practice is not using a fun
I am running Win2k w/Sp1, WinZip 8.0 (3105) locks up, just right click and
close the window on the taskbar... however WinAce Archiver 2.03 locks up and
must be killed via the task manager.
Les Ault
-Original Message-
From: 3APA3A [mailto:[EMAIL PROTECTED]]
Sent: Friday, July 13, 2
Hello Les,
It means you have no printer installed on PRN:. Install any
printer on lpt1:. You need not connect physical device -
simply install printer and check new document will appear in
queue.
--Monday, July 16, 2001, 11:13:20 AM, you wrote to [EMAIL PROTECTED]:
LA> I am running Win2k w
I posted this to the linux kernel mailing last Friday, July 13th 2001:
Submitted by : Josh ([EMAIL PROTECTED]), lockdown
([EMAIL PROTECTED]) on July 16th, 2001
Vulnerability : /lib/modules/2.4.5/modules.dep
Tested On : Slackware 8.0. 2.4.5
Local : Yes
Remote:
The file /usr/X11R6/bin/xman isn't setuid in slackware 7.1/7.2/8.0
but...\
s0t4ipv6@gohan:~$ export MANPATH=`perl -e 'print "A" x 7000'`
s0t4ipv6@gohan:~$ xman
Xman Error: No manual pages found.
s0t4ipv6@gohan:~$ export MANPATH=`perl -e 'print "A" x 7'`
s0t4ipv6@gohan:~$ xman
Segmentation fa
On Wed, Jul 11, 2001 at 09:56:29AM +0530, Gaurav Agarwal wrote:
> > > Uh huh. So you are saying that, given MD5(password), password
> > > may be recovered by brute force. And this is new/interesting in
> > > what way?
> >
> > The interesting thing is he can (allegedly) do it at 2.5e6
> > tries/s
On Mon, 16 Jul 2001, Ken Brown wrote:
> Known to who? Is it documented anywhere?
Sorry :-) I spend a lot of time in Samba development and I should have
clarified that we (SAMBA developmers) have known about it for some time.
I assumed it was documented in the KB somewhere. Should have checked.
my cayman 2e allows anyone to login with any character string (but does not
grant admin abilities)
paul allman
-Original Message-
From: Joshua Fritsch [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, July 11, 2001 6:50 PM
To: 'Russell Handorf '; '[EMAIL PROTECTED] ';
'[EMAIL PROTECTED] '
Subj
These kinds of issues with sudo have been around for years. Even if you
deleted vi from the system, you can still do anything you want if you have
root privs to the right binaries:
tar: (to perform backups, etc) Untar a new password file overwriting the
old, or untar a setuid root shell leaving
Gerald Carter wrote:
>
> On Wed, 11 Jul 2001, Acryl wrote:
>
> > Again the 3 files were created, but the Creation time/date was set
> > wrong, namely it was set to the very first creation time ( before I
> > deleted them by hand ). Any following runs of the program produced the
> > same result
Hello,
> I accidently stumbled accross this error when I made a program of mine
> create 3 text files containing different debug output.
...
> When I ran my program the very first time it created the 3 text files and
> set all of the 3 values properly as the should.
> After viewing the files I de
31 matches
Mail list logo