|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Network Computing and The SANS Institute (sans
sans.org)Date: Thu May 03 2001 - 14:08:07 CDT
Re: Your personalized newsletter
-- Security Alert Consensus --
Number 095 (01.18)
Thursday, May 3, 2001
Created for you by
Network Computing and the SANS Institute
Powered by Neohapsis
----------------------------------------------------------------------
Welcome to the latest edition of Security Alert Consensus! Below you
should find information pertaining only to the categories you requested.
If you have any problems or questions, please e-mail us at
<consensusnwc.com>.
----------------------------------------------------------------------
*** Sponsored by VeriSign- The Internet Trust Company ***
Secure all your Web servers now - with a proven 5-part strategy.
The FREE Server Security Guide shows you how:
* DEPLOY THE LATEST ENCRYPTION and authentication techniques
* DELIVER TRANSPARENT PROTECTION without disrupting users.
Get your FREE Guide now:
http://www.verisign.com/cgi-bin/go.cgi?a=n094430110013000
----------------------------------------------------------------------
Windows/IIS administrators should take note of what appears to be a
brutal buffer overflow in IIS v5 .printer ISAPI extensions {01.18.001}.
The overflow was reported on May 2nd, and we've already seen exploit
code circulating. The extension is enabled by default, so there is a
good chance that this vulnerability will effect a large number of
organizations.
While administrators are encouraged first and foremost to patch, those
running intrusion detection systems might consider getting updated
detection signatures from their vendors this week. We also noticed that
http://www.whitehats.com/ had signatures posted for the Enterasys Dragon
and the open-source SNORT IDS products within 48 hours of the initial
vulnerability announcement.
Until next week,
- Security Alert Consensus Team
************************************************************************
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
TABLE OF CONTENTS:
{01.18.001} Win - MS01-023: Buffer overflow in IIS .printer extension
handler
{01.18.006} Win - Update {01.16.008}: MS01-021: Invalid Web request
crashes ISA Web proxy service
{01.18.010} Win - Winamp AIP file parsing buffer overflow
{01.18.012} Win - IIS NTLM authentication DoS
{01.18.018} Win - RaidenFTP server reverse directory traversal
vulnerability
{01.18.020} Win - Netcruiser Web server DOS device name vulnerability
{01.18.021} Win - Small HTTP server DOS device causes system to crash
{01.18.022} Win - IPSwitch IMail mailing list To: header buffer overflow
{01.18.026} Win - WebXQ Web server reverse directory traversal
vulnerability
{01.18.028} Win - ICQ WebFront plugin multiple % in URL causes DoS
{01.18.030} Win - BRS WebWeaver Web/ftp server reverse directory
traversal
{01.18.032} Win - Alex ftp server reverse directory traversal
{01.18.033} Win - BearShare arbitrary file retrieval
{01.18.004} Linux - Update {01.17.009}: Nirvana editor (nedit) insecure
temp file handling
{01.18.005} Linux - Progeny FTP server updates
{01.18.007} Linux - Update {01.15.001}: ntpd/xntpd control request
parsing buffer overflow
{01.18.011} Linux - Update {01.16.030}: Hylafax hfaxd -q parameter
format string vulnerability
{01.18.013} Linux - Update {01.09.026}: Multiple Zope vulnerabilities
{01.18.029} Linux - rpmdrake temp file handling vulnerability
{01.18.036} Linux - Immunix updated GnuPG
{01.18.024} Sol - Update {01.08.006}: USER_LDT allows call gates to
execute protected kernel code
{01.18.002} AIX - RST packet crashes snmpd
{01.18.003} AIX - Multiple imap buffer overflows
{01.18.015} NW - Update {01.14.020}: BorderManager VPN connection flood
DoS
{01.18.008} HPUX - pcltotiff denial of service
{01.18.009} Other - Tektronix/Xerox PhaserLink admin Web server
vulnerabilities
{01.18.031} Other - IRIX netprint -n symbols vulnerability
{01.18.014} Cross - gftp format string vulnerability
{01.18.016} Cross - Bugzilla remote command execution
{01.18.017} Cross - kdesu creates world-readable temp file to hold
authentication info
{01.18.019} Cross - Perl Web server reverse directory traversal
vulnerability
{01.18.023} Cross - Update {01.15.011}: Multivendor FTP glob
functionality buffer overflow
{01.18.025} Cross - iScouter PHP Web portal config file disclosure
{01.18.027} Cross - PerlCal cal_make.pl reverse directory traversal
vulnerability
{01.18.034} Cross - OpenSSL 0.9.6a released
{01.18.035} Svc - PayPal incorrect login DoS
- --- Windows News -------------------------------------------------------
*** {01.18.001} Win - MS01-023: Buffer overflow in IIS .printer
extension handler
Microsoft has released MS01-023 ("Buffer overflow in IIS .printer
extension handler"). There is a buffer overflow in the handling of the
Host header used by the printer ISAPI extension shipped with all
installations of IIS 5.0 (on Windows 2000). The buffer overflow allows
a remote attacker to execute arbitrary code under local system
privileges.
An exploit has been published.
FAQ and patch:
http://www.microsoft.com/technet/security/bulletin/MS01-023.asp
Source: Microsoft
http://archives.neohapsis.com/archives/vendor/2001-q2/0023.html
*** {01.18.006} Win - Update {01.16.008}: MS01-021: Invalid Web request
crashes ISA Web proxy service
We just wanted to pass along a brief note regarding the vulnerability
discussed in {01.16.008} ("MS01-021: Invalid Web request crashes ISA
Web proxy service"). There has been some public discussion indicating
that arbitrary code execution may be possible due to this buffer
overflow. This fact has not been confirmed, but a notable security
researcher posted it. A few of the pertinent posts are indicated below,
in case you wish to look into the matter further.
Source: Win2KSecurityAdvice
http://archives.neohapsis.com/archives/win2ksecadvice/2001-q2/0036.html
http://archives.neohapsis.com/archives/win2ksecadvice/2001-q2/0038.html
*** {01.18.010} Win - Winamp AIP file parsing buffer overflow
Winamp versions 2.60 through 2.73 (and possibly others) have been
indicated to have a buffer overflow in the parsing of AIP files. The
vulnerability is escalated because Winamp will automatically download
and parse AIP files by default. The vulnerability allows local execution
of arbitrary code.
This vulnerability has not been confirmed.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0518.html
*** {01.18.012} Win - IIS NTLM authentication DoS
We wanted to indicate a potential denial of service found in IIS server
(versions 4 and 5). If your Web server is part of a domain that has
lockout enabled and you allow NTLM authentication (which is allowed for
every directory by default), then it's possible for an attacker to cause
the IIS IUSR and IWAM accounts to become locked out, rendering the Web
server unusable. Even worse, it's possible for the attacker to lock out
other system accounts (such as SQL server and backup agent accounts),
as well.
To properly avoid this denial of service, you must either:
- -- Not use account lockout for service accounts (creation of a separate
resource domain will help) or
- -- Not allow NTLM authentication on any of Web files or directories.
Source: NTBugtraq
http://archives.neohapsis.com/archives/ntbugtraq/2001-q2/0010.html
*** {01.18.018} Win - RaidenFTP server reverse directory traversal
vulnerability
RaidenFTP server prior to build 952 has been found to allow a remote
attacker to access arbitrary files outside the ftp root by using reverse
directory traversal ('..') notation in particular ftp commands. The
attacker must have a valid ftp account to exploit this vulnerability.
The vendor has confirmed this vulnerability and released build 952 to
fix the problem. It can be downloaded at:
http://playstation2.idv.tw/raidenftpd/download.html
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0465.html
*** {01.18.020} Win - Netcruiser Web server DOS device name
vulnerability
A report has surfaced that indicates the Netcruiser Web server version
0.1.2.8 (and possibly prior) contains a vulnerability in the handling
of DOS device names in URL requests.
This vulnerability has not been confirmed.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0427.html
*** {01.18.021} Win - Small HTTP server DOS device causes system to
crash
A report has been released indicating that the Small HTTP server version
2.03 has been found to crash when given a URL request that contains DOS
device names.
This vulnerability has not been confirmed.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0428.html
*** {01.18.022} Win - IPSwitch IMail mailing list To: header buffer
overflow
IPSwitch's IMail version 6.06 SMTP server has been found to contain a
buffer overflow in the handling of the To: header used when processing
incoming mailing list traffic. This vulnerability allows a remote
attacker to execute arbitrary code under local system privileges.
The vendor has confirmed this vulnerability and released a patch, which
is available at:
http://ipswitch.com/support/IMail/patch-upgrades.html
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0433.html
*** {01.18.026} Win - WebXQ Web server reverse directory traversal
vulnerability
The WebXQ Web server version 2.1.204 has been found to allow a remote
attacker to embed reverse directory traversal ('..') notation in a URL
request.
The vendor has confirmed this vulnerability and released a patch, which
is available at:
http://www.datawizard.net/Free_Software/WebXQ_Free/Webxq_free.htm
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0490.html
*** {01.18.028} Win - ICQ WebFront plugin multiple % in URL causes DoS
The ICQ WebFront plugin has been reported to contain a denial of service
when the included Web server receives multiple '%' characters in a
request that could result in the application becoming unresponsive.
This vulnerability has not been confirmed.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0511.html
*** {01.18.030} Win - BRS WebWeaver Web/ftp server reverse directory
traversal
BRS WebWeaver Web and ftp server version 0.63 has been found vulnerable
to a reverse directory traversal attack in the included Web server. This
vulnerability would allow a remote attacker to access files outside the
Web root. A glob/filename vulnerability in the ftp server handling also
would allow a remote attacker to access files outside the ftp root.
These vulnerabilities have not been confirmed.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0519.html
*** {01.18.032} Win - Alex ftp server reverse directory traversal
Alex ftp server version 0.7 (from www.alex.feedback.net) contains a
reverse directory traversal bug that would allow a remote attacker to
access arbitrary files contained outside the ftp root.
This vulnerability has not been confirmed.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0523.html
*** {01.18.033} Win - BearShare arbitrary file retrieval
BearShare versions 2.2.2 and prior have been found to allow remote
attackers to retrieve arbitrary files from the system via the included
Web server.
The report indicates confirmation by the vendor, which has released an
updated version. Vendor homepage:
http://www.bearshare.com/
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0525.html
- --- Linux News ---------------------------------------------------------
*** {01.18.004} Linux - Update {01.17.009}: Nirvana editor (nedit)
insecure temp file handling
Debian, Progeny and Mandrake have released updated nedit packages that
fix the vulnerability discussed in {01.17.009} ("Nirvana editor (nedit)
insecure temp file handling").
Updated Debian DEBs:
http://archives.neohapsis.com/archives/vendor/2001-q2/0022.html
Updated Progeny DEBs:
http://archives.neohapsis.com/archives/bugtraq/2001-04/0501.html
Updated Mandrake RPMs:
http://archives.neohapsis.com/archives/bugtraq/2001-04/0472.html
Source: Debian, Progeny, Mandrake (SF Bugtraq)
http://archives.neohapsis.com/archives/vendor/2001-q2/0022.html
http://archives.neohapsis.com/archives/bugtraq/2001-04/0501.html
http://archives.neohapsis.com/archives/bugtraq/2001-04/0472.html
*** {01.18.005} Linux - Progeny FTP server updates
Progeny has released an advisory reviewing any recent security updates
in the eight (!) different FTP servers it make available in its
distribution. Users of ftpd prior to 0.3.2-7 or bsd-ftpd prior to 0.17-3
should update their packages.
Source: Progeny (SF Bugtraq)
http://archives.neohapsis.com/archives/bugtraq/2001-04/0494.html
*** {01.18.007} Linux - Update {01.15.001}: ntpd/xntpd control request
parsing buffer overflow
EnGarde has released updated xntpd packages that fix the vulnerability
discussed in {01.15.001} ("ntpd/xntpd control request parsing buffer
overflow").
Updated RPMs are listed at:
http://archives.neohapsis.com/archives/bugtraq/2001-04/0127.html
Source: EnGarde (SF Bugtraq)
http://archives.neohapsis.com/archives/bugtraq/2001-04/0127.html
*** {01.18.011} Linux - Update {01.16.030}: Hylafax hfaxd -q parameter
format string vulnerability
Mandrake has released updated hylafax packages that fix the
vulnerability discussed in {01.16.030} ("Hylafax hfaxd -q parameter
format string vulnerability").
Updated RPMs are listed at:
http://archives.neohapsis.com/archives/bugtraq/2001-04/0435.html
Source: Mandrake (SF Bugtraq)
http://archives.neohapsis.com/archives/bugtraq/2001-04/0435.html
*** {01.18.013} Linux - Update {01.09.026}: Multiple Zope
vulnerabilities
Debian has rereleased updated Zope packages that fix the vulnerability
discussed in {01.09.026} ("Multiple Zope vulnerabilities"). The
previously released updates were found to not correctly function.
Updated DEBs are listed at:
http://archives.neohapsis.com/archives/vendor/2001-q2/0021.html
Source: Debian
http://archives.neohapsis.com/archives/vendor/2001-q2/0021.html
*** {01.18.029} Linux - rpmdrake temp file handling vulnerability
Mandrake's rpmdrake application has been found vulnerable to a temporary
file handling attack.
Updated RPMs are listed at:
http://archives.neohapsis.com/archives/bugtraq/2001-04/0514.html
Source: Mandrake (SF Bugtraq)
http://archives.neohapsis.com/archives/bugtraq/2001-04/0514.html
*** {01.18.036} Linux - Immunix updated GnuPG
Immunix has released an updated GnuPG application that fixes various
vulnerabilities previously reported.
Updated RPMs are listed at:
http://archives.neohapsis.com/archives/linux/immunix/2001-q2/0015.html
Source: Immunix
http://archives.neohapsis.com/archives/linux/immunix/2001-q2/0015.html
- --- Solaris News -------------------------------------------------------
*** {01.18.024} Sol - Update {01.08.006}: USER_LDT allows call gates to
execute protected kernel code
Sun has released patch 108529-07 to fix the vulnerability discussed in
{01.08.006} ("USER_LDT allows call gates to execute protected kernel
code"). The vulnerability effects Solaris 2.6, 7 and 8 on x86 platforms
(only).
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0463.html
- --- AIX News -----------------------------------------------------------
*** {01.18.002} AIX - RST packet crashes snmpd
The SNMP server shipped with AIX 4.3 has been found to crash if a remote
attacker sends an RST packet immediately after the three-way TCP
handshake, but before the SNMP daemon actually has accepted -- accept()
- -- the connection. This results in a denial of service because the SNMP
services of that system become unavailable.
IBM has confirmed the problem and released APAR IY17630 to fix it.
Source: IBM
http://archives.neohapsis.com/archives/aix/2001-q2/0005.html
*** {01.18.003} AIX - Multiple imap buffer overflows
IBM has released APAR IY17932 for AIX 4.3, which fixes buffer overruns
resulting in "security issues" in imapd. We're not sure of the extent
of exploitability, but if IBM is willing to mention that a bug has
security implications, it must be serious.
Source: IBM
http://archives.neohapsis.com/archives/aix/2001-q2/0005.html
- --- NetWare News -------------------------------------------------------
*** {01.18.015} NW - Update {01.14.020}: BorderManager VPN connection
flood DoS
Novell has released a patch for the vulnerability discussed in
{01.14.020} ("BorderManager VPN connection flood DoS").
A patch can be downloaded at:
http://support.novell.com/cgi-bin/search/tidfinder.cgi?2958995
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-05/0000.html
- --- HP-UX News ---------------------------------------------------------
*** {01.18.008} HPUX - pcltotiff denial of service
HP has released an advisory indicating a potential denial of service in
the pcltotiff script shipped with HP-UX 10.x. The denial of service
seems to be due to improper file permissions.
HP has not yet released patches. A work around can be found at:
http://archives.neohapsis.com/archives/hp/2001-q2/0018.html
Source: HP
http://archives.neohapsis.com/archives/hp/2001-q2/0018.html
- --- Other News ---------------------------------------------------------
*** {01.18.009} Other - Tektronix/Xerox PhaserLink admin Web server
vulnerabilities
An advisory was released that indicated problems in Tektronix/Xerox
PhaserLink 850 network printers. It's possible for a remote attacker to
use the included Web administration interface to recover the
administrator user name and password used to log into the printer. It's
also possible to cause a denial of service by reconfiguring the printer.
The advisory indicates potential for physical damage.
This vulnerability has not been confirmed.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0482.html
*** {01.18.031} Other - IRIX netprint -n symbols vulnerability
A vulnerability has been found in both the netprint command and the
import of various symbols (triggered by the -n command line option).
This allows users in the 'LP Administrators' group to gain root access.
This vulnerability has not been confirmed.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0475.html
http://archives.neohapsis.com/archives/bugtraq/2001-04/0502.html
- --- Cross-Platform News ------------------------------------------------
*** {01.18.014} Cross - gftp format string vulnerability
The gftp ftp client contained a format string vulnerability that could
allow a malicious ftp server to execute arbitrary code under the uid of
the user running gftp.
Updated RedHat RPMs:
http://archives.neohapsis.com/archives/linux/redhat/2001-q2/0043.html
Updated Immunix RPMs:
http://archives.neohapsis.com/archives/linux/immunix/2001-q2/0014.html
Updated Mandrake RPMs:
http://archives.neohapsis.com/archives/bugtraq/2001-04/0509.html
Source: RedHat, Immunix, Mandrake
http://archives.neohapsis.com/archives/linux/redhat/2001-q2/0043.html
http://archives.neohapsis.com/archives/linux/immunix/2001-q2/0014.html
http://archives.neohapsis.com/archives/bugtraq/2001-04/0509.html
*** {01.18.016} Cross - Bugzilla remote command execution
The bugzilla bug tracking Web CGI suite has been found to contain a
vulnerability that allows remote attackers to execute arbitrary command
line commands if they embed certain shell metacharacters into their
e-mail address.
A third-party workaround is available at:
http://archives.neohapsis.com/archives/bugtraq/2001-04/0530.html
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0530.html
*** {01.18.017} Cross - kdesu creates world-readable temp file to hold
authentication info
RedHat has released an advisory that indicates kdesu creates a
world-readable temporary file that contains authentication information.
This could allow a local attacker to access the X server and execute
arbitrary commands under the account kdesu was attempting to access.
Updated RedHat RPMs:
http://archives.neohapsis.com/archives/bugtraq/2001-04/0529.html
Source: RedHat (SF Bugtraq)
http://archives.neohapsis.com/archives/bugtraq/2001-04/0529.html
*** {01.18.019} Cross - Perl Web server reverse directory traversal
vulnerability
A reverse directory traversal vulnerability in the Perl Web server
version 0.3 allows a remote attacker to access arbitrary files that are
outside the WebÕs root directory and readable by the Web server uid.
This vulnerability has not been confirmed.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0426.html
*** {01.18.023} Cross - Update {01.15.011}: Multivendor FTP glob
functionality buffer overflow
MIT has released an updated version of its Kerberos-enabled ftp server
to address the vulnerability discussed in {01.15.011} ("Multivendor FTP
glob functionality buffer overflow"). The vulnerability allows a remote
attacker to gain root privileges on the server. All releases of MIT
Kerberos version 5 are vulnerable.
Patches are available at:
http://archives.neohapsis.com/archives/bugtraq/2001-04/0460.html
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0460.html
*** {01.18.025} Cross - iScouter PHP Web portal config file disclosure
The iScouter PHP Web portal application stores database authentication
and other application configuration information in a 'config.inc' file
within the Web root. This allows a local attacker to retrieve the
contents of the file.
This vulnerability has not been confirmed.
Source: Vuln-Dev
http://archives.neohapsis.com/archives/vuln-dev/2001-q2/0286.html
*** {01.18.027} Cross - PerlCal cal_make.pl reverse directory traversal
vulnerability
The cal_make.pl CGI shipped with the PerlCal application has been found
vulnerable to a reverse directory traversal attack. This vulnerability
allows a remote attacker to view the contents of arbitrary files
readable by the Web server.
This vulnerability has not been confirmed.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0506.html
*** {01.18.034} Cross - OpenSSL 0.9.6a released
OpenSSL version 0.9.6a has been released. This version contains multiple
security fixes, and all users are recommended to upgrade.
The updated version is available at:
http://www.openssl.org/
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0446.html
- --- Services News ------------------------------------------------------
*** {01.18.035} Svc - PayPal incorrect login DoS
This is more of an interesting consequence than anything else, but if
someone incorrectly attempts to log into your PayPal.com account
(frequently used by Ebay bidders to exchange money), your account will
be locked and a new password be sent via postal mail. Since it's
potentially easy to deduce PayPal account names from Ebay auction
information, this could result in a potential headache because
disgruntled losing bidders really could cause havoc.
Source: Vuln-Dev
http://archives.neohapsis.com/archives/vuln-dev/2001-q2/0307.html
************************************************************************
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (BSD/OS)
Comment: For info see http://www.gnupg.org
iD8DBQE68aqW+LUG5KFpTkYRAjChAJ0ZZfiMMkk7pOktOGwH5GZfkujYwwCgnF5i
GgU7WXk+eqmhxt6coO4MXbk=
=QYpR
-----END PGP SIGNATURE-----
------------------------------------------------------------------------
*** Sponsored by VeriSign- The Internet Trust Company ***
Secure all your Web servers now - with a proven 5-part strategy.
The FREE Server Security Guide shows you how:
* DEPLOY THE LATEST ENCRYPTION and authentication techniques
* DELIVER TRANSPARENT PROTECTION without disrupting users.
Get your FREE Guide now:
http://www.verisign.com/cgi-bin/go.cgi?a=n094430110013000
----------------------------------------------------------------------
Become a Security Alert Consensus member! If this e-mail was passed to
you and you would like to begin receiving our security e-mail newsletter
on a weekly basis, we invite you to subscribe today at:
http://www.networkcomputing.com/consensus/.
We are signing the Consensus newsletter with PGP. The new SANS PGP key
is posted at:
http://certserver.pgp.com:11371/pks/lookup?op=get&search=0xA1694E46 and
can be accessed from the SANS Web site: http://www.sans.org.
Special Note: To better secure your confidential information, we will
no longer include personal URLs in our Consensus newsletter mailings.
Instead, we have created a new form, located at:
http://www.sans.org/sansurl. On this form you can enter the SD number
located near your name at the top of the newsletter. When you submit
this form, an e-mail containing a URL will be sent to you at the e-mail
address on record. With this URL you can make changes to your account
(edit the content of your Consensus mailing, for example) without
endangering the security of your personal URL. If you'd like to change
your e-mail address or other information, or unsubscribe to this
newsletter, please visit your new URL as described above. If you have
any problems or questions, e-mail us at <consensusnwc.com>.
Missed an issue? You can find all back issues of Security Alert
Consensus (and Security Express) online at:
http://archives.neohapsis.com/.
Your opinion counts. We'd like to hear your thoughts on Security Alert
Consensus. E-mail any questions or comments to <consensusnwc.com>.
Copyright (c) 2001 Network Computing, a CMP Media LLC publication. All
Rights Reserved. Distributed by Network Computing
(http://www.networkcomputing.com) and The SANS Institute
(http://www.sans.org). Powered by Neohapsis Inc., a Chicago-based
security assessment and integration services consulting group
(infoneohapsis.com | http://www.neohapsis.com/).
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]