|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: X-Force (xforce_at_iss.net)
Date: Mon Feb 24 2003 - 14:42:55 CST
-----BEGIN PGP SIGNED MESSAGE-----
Internet Security Systems Security Alert Summary AS03-08
February 24, 2003
X-Force Vulnerability and Threat Database:
http://www.iss.net/security_center
To receive these Alert Summaries, as well as other Alerts and
Advisories, subscribe to the Internet Security Systems Alert
mailing list at:
http://www.iss.net/security_center/maillists
This summary is available at the following address:
http://www.iss.net/security_center/alerts/AS03-08.php
_____
Contents:
* 45 Reported Vulnerabilities
* Risk Factor Key
_____
Date Reported: 02/13/2003
Brief Description: SuckBot mod_mysql_logger denial of service
Risk Factor: Low
Attack Type: Network Based
Platforms: Linux Any version, Solaris Any version, FreeBSD Any
version, SuckBot 0.006 and earlier
Vulnerability: suckbot-modmysqllogger-dos
X-Force URL: http://www.iss.net/security_center/static/11340.php
Date Reported: 02/14/2003
Brief Description: IndyNews delMediaFile() file deletion
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, Windows Any version, Unix Any
version, IndyNews Any version
Vulnerability: indynews-delmediafile-delete-files
X-Force URL: http://www.iss.net/security_center/static/11348.php
Date Reported: 02/14/2003
Brief Description: IndyNews manageMedia() file deletion and
modification
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, Windows Any version, Unix Any
version, IndyNews Any version
Vulnerability: indynews-managemedia-delete-files
X-Force URL: http://www.iss.net/security_center/static/11349.php
Date Reported: 02/14/2003
Brief Description: IndyNews ALT tag HTML injection
Risk Factor: Medium
Attack Type: Host Based / Network Based
Platforms: Windows Any version, IndyNews Any version
Vulnerability: indnews-alt-html-injection
X-Force URL: http://www.iss.net/security_center/static/11350.php
Date Reported: 02/15/2003
Brief Description: php-Board login.php plaintext passwords
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, Windows Any version, Unix Any
version, php-Board 1
Vulnerability: phpboard-login-plaintext-passwords
X-Force URL: http://www.iss.net/security_center/static/11338.php
Date Reported: 02/15/2003
Brief Description: Kietu hit.php remote PHP file include
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, Windows Any version, Unix Any
version, Kietu 2.0, Kietu 2.3
Vulnerability: kietu-hit-file-include
X-Force URL: http://www.iss.net/security_center/static/11341.php
Date Reported: 02/15/2003
Brief Description: DotBr foo.php3 information disclosure
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, Windows Any version, Unix Any
version, DotBr 0.1
Vulnerability: dotbr-foo-info-disclosure
X-Force URL: http://www.iss.net/security_center/static/11353.php
Date Reported: 02/15/2003
Brief Description: DotBr config.inc information disclosure
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, Windows Any version, Unix Any
version, DotBr 0.1
Vulnerability: dotbr-config-info-disclosure
X-Force URL: http://www.iss.net/security_center/static/11354.php
Date Reported: 02/15/2003
Brief Description: DotBr exec.php3 and system.php3 command execution
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, Windows Any version, Unix Any
version, DotBr 0.1
Vulnerability: dotbr-exec-execute-commands
X-Force URL: http://www.iss.net/security_center/static/11355.php
Date Reported: 02/16/2003
Brief Description: D-Forum header.php3 or footer.php3 script PHP file
include
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, Windows Any version, Unix Any
version, D-Forum 1.00 to 1.11
Vulnerability: dform-header-file-include
X-Force URL: http://www.iss.net/security_center/static/11342.php
Date Reported: 02/16/2003
Brief Description: Windows riched20.dll attribute label buffer
overflow
Risk Factor: Low
Attack Type: Host Based / Network Based
Platforms: Windows Any version
Vulnerability: win-riched20-dll-bo
X-Force URL: http://www.iss.net/security_center/static/11344.php
Date Reported: 02/16/2003
Brief Description: BitchX IRC client RPL_NAMREPLY message denial of
service
Risk Factor: Low
Attack Type: Network Based
Platforms: Linux Any version, Solaris Any version, Windows NT
Any version, FreeBSD Any version, OpenBSD Any
version, Gentoo Linux Any version, Mac OS Any
version, BitchX 75p3, BitchX 1.0c16, BitchX 1.0c19,
BitchX 1.0c20cvs
Vulnerability: bitchx-irc-namreply-dos
X-Force URL: http://www.iss.net/security_center/static/11363.php
Date Reported: 02/17/2003
Brief Description: Lotus Domino iNotes buffer overflow
Risk Factor: High
Attack Type: Network Based
Platforms: AIX Any version, Linux Any version, Solaris Any
version, Windows NT Any version, Windows 2000 Any
version, Lotus Domino 6.0
Vulnerability: lotus-domino-inotes-bo
X-Force URL: http://www.iss.net/security_center/static/11336.php
Date Reported: 02/17/2003
Brief Description: Lotus Domino Host: header redirect buffer overflow
Risk Factor: High
Attack Type: Network Based
Platforms: Windows 2000 Any version, Lotus Domino 6.0, AIX Any
version, Linux Any version, Solaris Any version,
Windows NT Any version
Vulnerability: lotus-domino-hostname-bo
X-Force URL: http://www.iss.net/security_center/static/11337.php
Date Reported: 02/17/2003
Brief Description: Lotus Notes client iNotes ActiveX control buffer
overflow
Risk Factor: High
Attack Type: Network Based
Platforms: Windows Any version, Lotus Notes 6.0
Vulnerability: lotus-notes-activex-bo
X-Force URL: http://www.iss.net/security_center/static/11339.php
Date Reported: 02/17/2003
Brief Description: PHP could allow access to the CGI SAPI
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, Windows Any version, Unix Any
version, OpenPKG CURRENT, Gentoo Linux Any version,
OpenPKG 1.2, PHP 4.3.0
Vulnerability: php-cgi-sapi-access
X-Force URL: http://www.iss.net/security_center/static/11343.php
Date Reported: 02/17/2003
Brief Description: NetCharts chunked encoding buffer overflow
Risk Factor: Medium
Attack Type: Network Based
Platforms: Windows 2000 Any version, NetCharts 4.0.0
Vulnerability: netcharts-chunked-encoding-bo
X-Force URL: http://www.iss.net/security_center/static/11345.php
Date Reported: 02/17/2003
Brief Description: BisonFTP Server LS or CWD command denial of service
Risk Factor: Low
Attack Type: Network Based
Platforms: Windows Any version, BisonFTP Server 4 release 2
Vulnerability: bisonftp-ls-cwd-dos
X-Force URL: http://www.iss.net/security_center/static/11346.php
Date Reported: 02/17/2003
Brief Description: BisonFTP Server LS command could allow an attacker
to view files
Risk Factor: Medium
Attack Type: Network Based
Platforms: Windows Any version, BisonFTP Server 4 release 2
Vulnerability: bisonftp-ls-view-files
X-Force URL: http://www.iss.net/security_center/static/11347.php
Date Reported: 02/17/2003
Brief Description: SYSLINUX privilege elevation
Risk Factor: High
Attack Type: Host Based
Platforms: Linux Any version, Gentoo Linux Any version,
SYSLINUX prior to 2.02
Vulnerability: syslinux-gain-privileges
X-Force URL: http://www.iss.net/security_center/static/11351.php
Date Reported: 02/17/2003
Brief Description: Yahoo! Mobile Service information disclosure
Risk Factor: Low
Attack Type: Network Based
Platforms: Yahoo! Mobile Service Any version, Any PDA Any
version
Vulnerability: yahoo-mobile-information-disclosure
X-Force URL: http://www.iss.net/security_center/static/11352.php
Date Reported: 02/17/2003
Brief Description: petitforum liste.txt information disclosure
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, Windows Any version, Unix Any
version, petitforum Any version
Vulnerability: petitforum-liste-info-disclosure
X-Force URL: http://www.iss.net/security_center/static/11358.php
Date Reported: 02/17/2003
Brief Description: petitforum message.php authentication bypass
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, Windows Any version, Unix Any
version, petitforum Any version
Vulnerability: petitforum-message-auth-bypass
X-Force URL: http://www.iss.net/security_center/static/11359.php
Date Reported: 02/17/2003
Brief Description: Lotus Domino incomplete HTTP POST denial of service
Risk Factor: Medium
Attack Type: Network Based
Platforms: AIX Any version, Linux Any version, Solaris Any
version, Windows NT Any version, Windows 2000 Any
version, Lotus Domino 6.0, Lotus Domino 5.0.12
Vulnerability: lotus-incomplete-post-dos
X-Force URL: http://www.iss.net/security_center/static/11360.php
Date Reported: 02/17/2003
Brief Description: Lotus Domino invalid HTTP POST field denial of
service
Risk Factor: Medium
Attack Type: Network Based
Platforms: AIX Any version, Linux Any version, Solaris Any
version, Windows NT Any version, Windows 2000 Any
version, Lotus Domino 6.0, Lotus Domino 5.0.12
Vulnerability: lotus-invalid-field-dos
X-Force URL: http://www.iss.net/security_center/static/11361.php
Date Reported: 02/18/2003
Brief Description: cPanel guestbook.cgi command execution
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, cPanel 5 and earlier
Vulnerability: cpanel-guestbook-command-execution
X-Force URL: http://www.iss.net/security_center/static/11356.php
Date Reported: 02/18/2003
Brief Description: cPanel SCRIPT_FILENAME privilege elevation
Risk Factor: High
Attack Type: Host Based
Platforms: Linux Any version, cPanel 5 and earlier
Vulnerability: cpanel-scriptfilename-gain-privileges
X-Force URL: http://www.iss.net/security_center/static/11357.php
Date Reported: 02/18/2003
Brief Description: Norton AntiVirus 2002 email scanning long file name
buffer overflow
Risk Factor: Medium
Attack Type: Network Based
Platforms: Norton AntiVirus 2002, Windows 2000 SP3, Windows
2000 Prof. Japanese Ed.
Vulnerability: nav-email-filename-bo
X-Force URL: http://www.iss.net/security_center/static/11365.php
Date Reported: 02/18/2003
Brief Description: HP-UX Bastille information disclosure
Risk Factor: Medium
Attack Type: Network Based
Platforms: HP-UX 11.00, HP-UX 11.11, HP-UX Bastille B.02.00.00
Vulnerability: hp-bastille-info-disclosure
X-Force URL: http://www.iss.net/security_center/static/11366.php
Date Reported: 02/18/2003
Brief Description: Solaris UDP RPC denial of service
Risk Factor: Low
Attack Type: Network Based
Platforms: Solaris 2.5.1 and earlier, Solaris 2.6, Solaris 7,
Solaris 8, Solaris 9
Vulnerability: solaris-udp-rpc-dos
X-Force URL: http://www.iss.net/security_center/static/11368.php
Date Reported: 02/19/2003
Brief Description: Proxomitron parameter length buffer overflow
Risk Factor: Medium
Attack Type: Network Based
Platforms: Windows Any version, Proxomitron Naoko 4.4 and
earlier
Vulnerability: proxomitron-parameter-length-bo
X-Force URL: http://www.iss.net/security_center/static/11364.php
Date Reported: 02/19/2003
Brief Description: myPHPNuke links.php cross-site scripting
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, Windows Any version, Unix Any
version, myPHPNuke Any version
Vulnerability: myphpnuke-links-xss
X-Force URL: http://www.iss.net/security_center/static/11367.php
Date Reported: 02/19/2003
Brief Description: Multiple SSL/TLS implementation CBC ciphersuites
information leak
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, Mandrake Linux 7.2, Mandrake
Linux 8.0, Mandrake Single Network Firewall 7.2,
Mandrake Linux 8.1, EnGarde Secure Linux Community
Edition, Mandrake Linux 8.2, OpenPKG CURRENT,
Gentoo Linux Any version, OpenPKG 1.1, Mandrake
Linux 9.0, Mandrake Multi Network Firewall 8.2,
OpenPKG 1.2, OpenSSL prior to 0.9.7a
Vulnerability: ssl-cbc-information-leak
X-Force URL: http://www.iss.net/security_center/static/11369.php
Date Reported: 02/19/2003
Brief Description: Sage $mod cross-site scripting
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, Windows Any version, Unix Any
version, Sage 1.0b3
Vulnerability: sage-mod-xss
X-Force URL: http://www.iss.net/security_center/static/11371.php
Date Reported: 02/19/2003
Brief Description: Sage non-existent module request path disclosure
Risk Factor: Low
Attack Type: Network Based
Platforms: Linux Any version, Windows Any version, Unix Any
version, Sage 1.0b3
Vulnerability: sage-module-path-disclosure
X-Force URL: http://www.iss.net/security_center/static/11372.php
Date Reported: 02/19/2003
Brief Description: Multiple operating system boot disks could be used
to gain unauthorized system access
Risk Factor: Medium
Attack Type: Host Based
Platforms: Linux Any version, Windows Any version, Unix Any
version
Vulnerability: boot-disk-unauth-access
X-Force URL: http://www.iss.net/security_center/static/11378.php
Date Reported: 02/20/2003
Brief Description: Cisco IOS OSPF neighbor buffer overflow
Risk Factor: High
Attack Type: Network Based
Platforms: Cisco IOS 11.2.x to 12.0.x
Vulnerability: cisco-ios-ospf-bo
X-Force URL: http://www.iss.net/security_center/static/11373.php
Date Reported: 02/20/2003
Brief Description: login_ldap bypass password authentication
Risk Factor: Medium
Attack Type: Network Based
Platforms: login_ldap Any version, OpenLDAP 2.0.x, OpenLDAP
2.1.x
Vulnerability: loginldap-password-bypass
X-Force URL: http://www.iss.net/security_center/static/11374.php
Date Reported: 02/20/2003
Brief Description: PHP-Nuke search module SQL injection
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, Windows Any version, Unix Any
version, PHP-Nuke 5.6, PHP-Nuke 6.0
Vulnerability: phpnuke-search-sql-injection
X-Force URL: http://www.iss.net/security_center/static/11375.php
Date Reported: 02/20/2003
Brief Description: phpBB index.php SQL injection
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, Windows Any version, Unix Any
version, phpBB 2.0, phpBB 2.0.1, phpBB 2.0.2
Vulnerability: phpbb-index-sql-injection
X-Force URL: http://www.iss.net/security_center/static/11376.php
Date Reported: 02/21/2003
Brief Description: Multiple vendor SIP INVITE message handling issues
discovered using the PROTOS C07-SIP Test-Suite
Risk Factor: High
Attack Type: Network Based
Platforms: Cisco IOS 12.2X, Cisco IOS 12.2T, Cisco IP Phone
7940, Cisco IP Phone 7960, Cisco PIX Firewall
5.2(1) and later, IPTel SIP Express Router 0.8.9
and prior, Nortel Succession Communication Server
2000, Nortel Succession Communication Server 2000 -
Compact
Vulnerability: sip-invite
X-Force URL: http://www.iss.net/security_center/static/11379.php
Date Reported: 02/21/2003
Brief Description: zlib gzprintf() buffer overflow
Risk Factor: Low
Attack Type: Host Based
Platforms: BSD Any version, Linux Any version, Windows Any
version, Unix Any version, zlib 1.1.4-1
Vulnerability: zlib-gzprintf-bo
X-Force URL: http://www.iss.net/security_center/static/11381.php
Date Reported: 02/21/2003
Brief Description: Rogue save_into_file() buffer overflow
Risk Factor: High
Attack Type: Host Based
Platforms: BSD Any version, Linux Any version, Rogue 5.2-2
Vulnerability: rogue-saveintofile-bo
X-Force URL: http://www.iss.net/security_center/static/11382.php
Date Reported: 02/22/2003
Brief Description: SuSE Linux Eject information disclosure
Risk Factor: Low
Attack Type: Host Based
Platforms: SuSE Linux 7.3, Eject 2.0.10
Vulnerability: linux-eject-information-disclosure
X-Force URL: http://www.iss.net/security_center/static/11380.php
Date Reported: 02/22/2003
Brief Description: WWWBoard message cross-site scripting
Risk Factor: Medium
Attack Type: Network Based
Platforms: Linux Any version, Windows Any version, Unix Any
version, WWWBoard 2.0A2.1 and prior
Vulnerability: wwwboard-message-xss
X-Force URL: http://www.iss.net/security_center/static/11383.php
_____
Risk Factor Key:
High Security issues that allow immediate remote, or local access
or immediate execution of code or commands, with unauthorized
privileges. Examples are most buffer overflows, backdoors,
default or no password, and bypassing security on firewalls
or other network components.
Medium Security issues that have the potential of granting access or
allowing code execution by means of complex or lengthy exploit
procedures, or low risk issues applied to major Internet
components. Examples are cross-site scripting, man-in-the-middle
attacks, SQL injection, denial of service of major applications,
and denial of service resulting in system information disclosure
(such as core files).
Low Security issues that deny service or provide non-system
information that could be used to formulate structured attacks
on a target, but not directly gain unauthorized access. Examples
are brute force attacks, non-system information disclosure
(configurations, paths, etc.), and denial of service attacks.
______
About Internet Security Systems (ISS)
Founded in 1994, Internet Security Systems (ISS) (Nasdaq: ISSX) is a
pioneer and world leader in software and services that protect critical
online resources from an ever-changing spectrum of threats and misuse.
Internet Security Systems is headquartered in Atlanta, GA, with
additional operations throughout the Americas, Asia, Australia, Europe
and the Middle East.
Copyright (c) 2003 Internet Security Systems, Inc. All rights reserved
worldwide.
Permission is hereby granted for the electronic redistribution of this
document. It is not to be edited or altered in any way without the
express written consent of the Internet Security Systems X-Force. If you
wish to reprint the whole or any part of this document in any other
medium excluding electronic media, please email xforce
iss.net for
permission.
Disclaimer: The information within this paper may change without notice. Internet
Security Systems provides this information on an AS IS basis with NO warranties,
implied or otherwise. Any use of this information is at the user’s risk. In no event
shall Internet Security Systems be held liable for any damages whatsoever arising
out of or in connection with the use or dissemination of this information.
X-Force PGP Key available on MIT's PGP key server and PGP.com's key server,
as well as at http://www.iss.net/security_center/sensitive.php
Please send suggestions, updates, and comments to: X-Force
xforceiss.net of Internet Security Systems, Inc.
-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
iQCVAwUBPlqDuDRfJiV99eG9AQFx1wQAqqfkLwSJ6EQILAT01tKLyg1wRrL53BXw
UrJfMdpH2Q75deBmTSLYi8Lt/3+9Eil6HXdImBzlfku8UwEuRNVGFSBWi0gKAhma
ZYgp7QmoRWgtB0ogUW4yvIMl8740bSpPvREwEudjW/yOA6PqOoQ5f830bSiRyaHK
XvC8ohmqykg=
=rJqF
-----END PGP SIGNATURE-----
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]