|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Network Computing and The SANS Institute (sans+ZZ21095609697874681_at_sans.org)
Date: Thu Aug 08 2002 - 15:05:12 CDT
Re: Your personalized newsletter
-- Security Alert Consensus --
Number 031 (02.31)
Thursday, August 8, 2002
Created for you by
Network Computing and the SANS Institute
Powered by Neohapsis
----------------------------------------------------------------------
Welcome to the latest edition of Security Alert Consensus! Below
you should find information pertaining only to the categories you
requested. Information on how to manage your subscription can be found
at the bottom of the newsletter. If you have any problems or questions,
please e-mail us at <consensus
nwc.com>.
----------------------------------------------------------------------
This issue is sponsored by Vericept, the premier provider of information
security solutions.
Does your current Web filter capture IM, chat, e-mail, Webmail and P2P?
If the answer is no, click here.
http://io52.deuxo.com/o2/webcapture/webcapture3.asp?coname=vcdx52&id=wc-7-42-16-11-5-8-2002&custno=
----------------------------------------------------------------------
Various Unix RPC services contain a bug derived from the main RPC
reference implementation. Solaris systems, glibc-based systems and
BSD-derived libc-based systems are affected, as are specific RPC
packages such as OpenAFS. More general information is available in
item {02.31.009} in the Cross-Platform category. Additional specific
RPC services will be included as individual entries in future SAC
newsletters as they become known.
Also this week, Microsoft released Windows 2000 Service Pack 3
(item {02.31.019}) and IBM released an APAR security rollup for July
(item {02.31.012}).
Until next week,
--Security Alert Consensus Team
************************************************************************
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
TABLE OF CONTENTS:
{02.31.019} Win - Windows 2000 SP3 released
{02.31.027} Win - MS02-040: MDAC OpenRowSet() buffer overflow
{02.31.030} Win - Update {02.30.029}: IPSwitch IMail GET request
overflow
{02.31.031} Win - Winhlp32.exe item parameter overflow
{02.31.038} Win - Eudora boundary string overflow
{02.31.040} Win - Update {02.30.020}: VMWare GSX auth service GLOBAL
parameter overflow
{02.31.002} Linux - Update {02.29.004}: libpng progressive image
loading overflows
{02.31.006} Linux - Update {02.30.002}: libmm temporary file
vulnerability
{02.31.017} Linux - Update {02.29.016}: wwwoffle negative content len
field overflow
{02.31.034} Linux - munpack buffer overflow
{02.31.036} Linux - Update {02.22.028}: Sendmail 8.12.4 released, with
security fix
{02.31.016} BSD - pppd file chmod race condition
{02.31.032} Sol - AnswerBook2 dwhttpd server format string vulnerability
{02.31.011} AIX - errpt buffer overflow
{02.31.012} AIX - July 2002 APAR security rollup
{02.31.004} HPUX - TCP weak ISN randomness
{02.31.003} NApps - Update {02.30.016}: HP JetDirect exposes
administrative password
{02.31.005} NApps - Update {02.30.011}: HP Procurve switch SNMP write
DoS
{02.31.007} NApps - Update {02.30.013}: Lucent Brick Firewall ARP
vulnerabilities
{02.31.037} NApps - Lucent/Avaya Cajun hard-coded SNMP string
{02.31.033} Other - Update {02.30.019}: Tru64 su parameter overflow
{02.31.001} Cross - Update {02.30.001}: OpenSSL multiple overflows and
ASN1 parse vulnerabilities
{02.31.008} Cross - OpenSSH tarballs trojaned
{02.31.009} Cross - RPC XDR array decoding overflow
{02.31.010} Cross - Super syslog format string vulnerability
{02.31.013} Cross - Perl temporary file handling vulnerabilities
{02.31.014} Cross - OpenAFS RPC service overflow
{02.31.015} Cross - Sendform CGI BlurbFilePath parameter file retrieval
{02.31.018} Cross - GAIM Jabber plugin buffer overflow
{02.31.020} Cross - Easy Homepage Creator CGI print_html_to_file()
vulnerability
{02.31.021} Cross - Easy Guestbook CGI arbitrary delete and config.cgi
{02.31.022} Cross - dotProject CGI user_cookie authentication bypass
{02.31.023} Cross - fakeidentd multiple overflows
{02.31.024} Cross - ShoutBOX CGI site parameter CSS vulnerability
{02.31.025} Cross - Sympoll CGI file viewing
{02.31.026} Cross - Eupload CGI password.txt recovery
{02.31.028} Cross - Gallery CGI GALLERY_BASEDIR parameter command
execution
{02.31.029} Cross - IBM UniVerse ODBC DoS
{02.31.039} Cross - qmailadmin QMAILADMIN_TEMPLATEDIR overflow
{02.31.035} Tools - NMAP 3.0 released
- --- Windows News -------------------------------------------------------
*** {02.31.019} Win - Windows 2000 SP3 released
Microsoft released SP3 for Windows 2000. It can be downloaded from:
http://download.microsoft.com/download/win2000platform/SP/SP3/NT5/EN-US/w2ksp3.exe
Source: NTBugtraq
http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0042.html
*** {02.31.027} Win - MS02-040: MDAC OpenRowSet() buffer overflow
Microsoft released MS02-040 ("MDAC OpenRowSet() buffer overflow"). MDAC
versions 2.5 through 2.7 contain a buffer overflow in the handling
of queries using the OpenRowSet() function against SQL Servers. This
may allow an attacker, who can run arbitrary SQL queries, to execute
arbitrary code on the target system.
FAQ and patch:
http://www.microsoft.com/technet/security/bulletin/MS02-040.asp
Source: Microsoft (NTBugtraq)
http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0047.html
*** {02.31.030} Win - Update {02.30.029}: IPSwitch IMail GET request
overflow
IpSwitch released updated IMail packages that fix the vulnerability
discussed in {02.30.029} ("IPSwitch IMail GET request overflow").
Version 7.12 can be downloaded at:
ftp://ftp.ipswitch.com/Ipswitch/Product_Support/IMail/imail712.exe
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0466.html
*** {02.31.031} Win - Winhlp32.exe item parameter overflow
The Winhlp32.exe control contains a remotely exploitable buffer
overflow in the handling of the 'item' object parameters that allows
a malicious Web site or e-mail to execute arbitrary code on the
user's system.
Microsoft confirmed this vulnerability and included a fix in Windows
2000 SP3.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0467.html
*** {02.31.038} Win - Eudora boundary string overflow
A released advisory indicates Eudora version 5.x contains a buffer
overflow in the handling of long MIME boundary strings that allows
a malicious e-mail to execute arbitrary code on the user's system.
The advisory indicates the vendor confirmed this vulnerability and
stated it will be fixed in the next release.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0521.html
*** {02.31.040} Win - Update {02.30.020}: VMWare GSX auth service
GLOBAL parameter overflow
VMWare released updated VMWare GSX packages that fix the vulnerability
discussed in {02.30.020} ("VMWare GSX auth service GLOBAL parameter
overflow").
VMWare GSX version 2.0.1 is available at:
http://www.vmware.com/download/gsx_download.html
Source: NTBugtraq
http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0057.html
- --- Linux News ---------------------------------------------------------
*** {02.31.002} Linux - Update {02.29.004}: libpng progressive image
loading overflows
Debian released updated libpng packages that fix the vulnerability
discussed in {02.29.004} ("libpng progressive image loading
overflows").
Updated DEBs are listed at:
http://archives.neohapsis.com/archives/vendor/2002-q3/0019.html
Source: Debian
http://archives.neohapsis.com/archives/vendor/2002-q3/0019.html
*** {02.31.006} Linux - Update {02.30.002}: libmm temporary file
vulnerability
SuSE and Red Hat released updated libmm packages that fix
the vulnerability discussed in {02.30.002} ("libmm temp file
vulnerability").
Updated SuSE RPMs:
http://archives.neohapsis.com/archives/linux/suse/2002-q3/0511.html
Updated Red Hat RPMs:
http://archives.neohapsis.com/archives/linux/redhat/2002-q3/0027.html
Source: SuSE, Red Hat
http://archives.neohapsis.com/archives/linux/suse/2002-q3/0511.html
http://archives.neohapsis.com/archives/linux/redhat/2002-q3/0027.html
*** {02.31.017} Linux - Update {02.29.016}: wwwoffle negative content
len field overflow
Debian and SuSE released updated wwwoffle packages that fix the
vulnerability discussed in {02.29.016} ("wwwoffle negative content
len field overflow").
Updated Debian DEBs:
http://archives.neohapsis.com/archives/vendor/2002-q3/0022.html
Updated SuSE RPMs:
http://archives.neohapsis.com/archives/linux/suse/2002-q3/0542.html
Source: Debian, SuSE
http://archives.neohapsis.com/archives/vendor/2002-q3/0022.html
http://archives.neohapsis.com/archives/linux/suse/2002-q3/0542.html
*** {02.31.034} Linux - munpack buffer overflow
An advisory released by Debian indicates the munpack utility contains
a buffer overflow that may allow a malicious e-mail or news article
to execute arbitrary code under the viewing user's privileges.
Updated Debian DEBs are listed at:
http://archives.neohapsis.com/archives/vendor/2002-q3/0018.html
Source: Debian
http://archives.neohapsis.com/archives/vendor/2002-q3/0018.html
*** {02.31.036} Linux - Update {02.22.028}: Sendmail 8.12.4 released,
with security fix
Conectiva released updated sendmail packages that fix the vulnerability
discussed in {02.22.028} ("Sendmail 8.12.4 released, with security
fix").
Updated RPMs are listed at:
http://archives.neohapsis.com/archives/linux/conectiva/2002-q3/0010.html
Source: Conectiva
http://archives.neohapsis.com/archives/linux/conectiva/2002-q3/0010.html
- --- BSD News -----------------------------------------------------------
*** {02.31.016} BSD - pppd file chmod race condition
The pppd daemon included in FreeBSD and NetBSD contains a race
condition before a call to chmod() that allows a local attacker to
potentially change the permissions of an arbitrary file on the system.
The vendor confirmed this vulnerability.
FreeBSD as of July 30, 2002, contains the fixed versions.
NetBSD-current as of July 31, 2002, contains a fix. Other branches
are not currently fixed.
Source: FreeBSD, NetBSD
http://archives.neohapsis.com/archives/freebsd/2002-07/0530.html
http://archives.neohapsis.com/archives/netbsd/2002-q3/0076.html
- --- Solaris News -------------------------------------------------------
*** {02.31.032} Sol - AnswerBook2 dwhttpd server format string
vulnerability
Versions 4.x of the Sun AnswerBook2 Web server (dwhttpd) contain
a format string vulnerability in the handling of URL requests that
allows a remote attacker to execute arbitrary code on the system.
This vulnerability is not confirmed.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0486.html
- --- AIX News -----------------------------------------------------------
*** {02.31.011} AIX - errpt buffer overflow
IBM released APAR IY31997, which fixes a vague buffer overflow in
the errpt utility.
Source: IBM
http://archives.neohapsis.com/archives/aix/2002-q3/0007.html
*** {02.31.012} AIX - July 2002 APAR security rollup
IBM released APAR IY33256, a 'critical patch' rollup that contains
the latest security and critical patches.
Source: IBM
http://archives.neohapsis.com/archives/aix/2002-q3/0007.html
- --- HP-UX News ---------------------------------------------------------
*** {02.31.004} HPUX - TCP weak ISN randomness
HP released a patch that fixes a weak initial sequence number
generation vulnerability in TCP packets. The update is for HPUX 11.x.
Apply the appropriate patch:
HPUX 11.00: PHNE_26771
HPUX 11.04: PHNE_26101
HPUX 11.11: PHNE_25644
Source: HP
http://archives.neohapsis.com/archives/hp/2002-q3/0031.html
- --- Network Appliances News --------------------------------------------
*** {02.31.003} NApps - Update {02.30.016}: HP JetDirect exposes
administrative password
HP released updates that fix the vulnerability discussed in {02.30.016}
("HP JetDirect exposes administrative password").
Update information is available at:
http://www.hp.com/cposupport/networking/support_doc/bpj05999.html#P26_2431
Source: HP
http://archives.neohapsis.com/archives/hp/2002-q3/0031.html
*** {02.31.005} NApps - Update {02.30.011}: HP Procurve switch SNMP
write DoS
HP released updates that fix the vulnerability discussed in {02.30.011}
("HP Procurve switch SNMP write DoS").
Download firmware version C.09.13 or later from:
http://www.hp.com/rnd/software/switches.htm
Source: HP
http://archives.neohapsis.com/archives/hp/2002-q3/0031.html
*** {02.31.007} NApps - Update {02.30.013}: Lucent Brick Firewall ARP
vulnerabilities
Lucent released a response to the vulnerabilities discussed in
{02.30.013} ("Lucent Brick Firewall ARP vulnerabilities").
Full update information and potential workaround configuration options
are discussed at the reference URL below.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0458.html
*** {02.31.037} NApps - Lucent/Avaya Cajun hard-coded SNMP string
A released advisory indicates there is a hard-coded SNMP read-write
string in Lucent/Avaya Cajun P33x series switches.
The vendor confirmed this vulnerability and released updated firmware,
which is available at:
http://support.avaya.com
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0519.html
- --- Other News ---------------------------------------------------------
*** {02.31.033} Other - Update {02.30.019}: Tru64 su parameter overflow
Compaq released ERPs (Early Release Patches) that fix the vulnerability
discussed in {02.30.019} ("Tru64 su parameter overflow").
The full list of ERPs is available at the reference URL listed below.
Source: Compaq
http://archives.neohapsis.com/archives/tru64/2002-q3/0019.html
- --- Cross-Platform News ------------------------------------------------
*** {02.31.001} Cross - Update {02.30.001}: OpenSSL multiple overflows
and ASN1 parse vulnerabilities
Multiple vendors released updated packages that fix the vulnerability
discussed in {02.30.001} ("OpenSSL multiple overflows and ASN1 parse
vulnerabilities").
ISC BIND contains vulnerable code in version 9.1.x, and version 9.2.x
may be vulnerable if built with the '--with-openssl' configuration
option. The solution is to upgrade to version 9.2.x and rebuild with
a fixed OpenSSL library.
Updated Conectiva RPMs:
http://archives.neohapsis.com/archives/linux/conectiva/2002-q3/0003.html
Updated Caldera RPMs:
http://archives.neohapsis.com/archives/linux/caldera/2002-q3/0008.html
Source: BIND, Conectiva, Caldera
http://archives.neohapsis.com/archives/bind/2002/0015.html
http://archives.neohapsis.com/archives/linux/conectiva/2002-q3/0003.html
http://archives.neohapsis.com/archives/linux/caldera/2002-q3/0008.html
*** {02.31.008} Cross - OpenSSH tarballs trojaned
The OpenSSH tarballs on the primary and mirror FTP sites were
trojaned between July 30 and August 1, 2002. Downloads of the
openssh-3.4p1.tar.gz, openssh-3.4.tgz and openssh-3.2.2p1.tar.gz
files during that time may contain the trojaned source code, thereby
allowing a particular server to execute arbitrary commands on the
system running the included 'configure' script.
Source: CERT
http://archives.neohapsis.com/archives/cc/2002-q3/0004.html
*** {02.31.009} Cross - RPC XDR array decoding overflow
The xdr_array function used in various RPC services contains a buffer
overflow in the handling of malformed data, potentially allowing
a remote attacker to execute arbitrary code on the system. Solaris
systems are vulnerable, as are systems using a BSD-based libc and glibc
(Linux). In addition, the MIT krb5 distribution is vulnerable.
A patch for MIT krb5 version 1.2.5 is available at:
http://archives.neohapsis.com/archives/bugtraq/2002-07/0503.html
NetBSD 1.5 and 1.6 as of August 2, 2002, contain the fix. NetBSD 1.4
is not yet fixed.
FreeBSD as of August 1, 2002, contains the fixes.
Updated Debian DEBs:
http://archives.neohapsis.com/archives/vendor/2002-q3/0021.html
Source: CERT, VulnWatch, NetBSD, FreeBSD, Debian, SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/cc/2002-q3/0005.html
http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0048.html
http://archives.neohapsis.com/archives/netbsd/2002-q3/0077.html
http://archives.neohapsis.com/archives/freebsd/2002-07/0584.html
http://archives.neohapsis.com/archives/vendor/2002-q3/0021.html
http://archives.neohapsis.com/archives/bugtraq/2002-07/0503.html
*** {02.31.010} Cross - Super syslog format string vulnerability
The super utility, which is a sudo-like application, contains a
format string vulnerability in the syslog() function that allows
a local attacker to gain root privileges. Versions prior to 3.19
are vulnerable.
The vendor confirmed this vulnerability and released version 3.19,
which is available at:
ftp://ftp.ucolick.org/pub/users/will/super-3.19.0.tar.gz
Updated Debian DEBs:
http://archives.neohapsis.com/archives/vendor/2002-q3/0013.html
Source: VulnWatch, Debian
http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0045.html
http://archives.neohapsis.com/archives/vendor/2002-q3/0013.html
*** {02.31.013} Cross - Perl temporary file handling vulnerabilities
Perl distribution version 5.6.0 has various files and libraries that
contain temporary file handling vulnerabilities.
These vulnerabilities are not confirmed.
Source: LSAP
http://archives.neohapsis.com/archives/linux/lsap/2002-q3/0010.html
*** {02.31.014} Cross - OpenAFS RPC service overflow
The OpenAFS suite versions 1.3.2 and prior contain buffer overflows
in its various RPC services that allow a remote attacker to execute
arbitrary code on the system.
The vendor confirmed this vulnerability and released updates, which
are available at:
http://www.openafs.org/release/latest.html
Updated Debian DEBs:
http://archives.neohapsis.com/archives/vendor/2002-q3/0020.html
Source: Debian, SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0514.html
http://archives.neohapsis.com/archives/vendor/2002-q3/0020.html
*** {02.31.015} Cross - Sendform CGI BlurbFilePath parameter file
retrieval
Rod Clark's Sendform CGI script contains a vulnerability in the
handling of the 'BlurbFilePath' URL parameter that allows remote
attackers to have files readable by the Web server e-mailed to them.
The vendor confirmed this vulnerability and released an update,
which is available at:
http://www.scn.org/~bb615/scripts/sendform.html
Source: VulnWatch
http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0046.html
*** {02.31.018} Cross - GAIM Jabber plugin buffer overflow
GAIM versions prior to 0.58 contain a buffer overflow in the Jabber
plugin. Further information is not available.
Updated Red Hat RPMs are listed at:
http://archives.neohapsis.com/archives/linux/redhat/2002-q3/0032.html
http://archives.neohapsis.com/archives/linux/redhat/2002-q3/0033.html
Source: Red Hat
http://archives.neohapsis.com/archives/linux/redhat/2002-q3/0032.html
http://archives.neohapsis.com/archives/linux/redhat/2002-q3/0033.html
*** {02.31.020} Cross - Easy Homepage Creator CGI print_html_to_file()
vulnerability
The Easy Homepage Creator CGI suite version 1.0 does not properly
validate user credentials in the print_html_to_file() function,
thereby allowing a remote attacker to modify arbitrary user Web pages.
This vulnerability is not confirmed.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0350.html
*** {02.31.021} Cross - Easy Guestbook CGI arbitrary delete and
config.cgi
The Easy Guestbook CGI suite version 1.0 contains two vulnerabilities:
potential reconfiguration of the CGI if config.cgi is not removed and
deletion of arbitrary posts caused by improper access validation in
deletion routines.
These vulnerabilities are not confirmed.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0356.html
*** {02.31.022} Cross - dotProject CGI user_cookie authentication bypass
The dotProject CGI suite version 0.2.1.5 allows remote attackers to
bypass authentication if they submit a cookie value of 'user_cookie=1'.
This vulnerability is not confirmed.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0366.html
*** {02.31.023} Cross - fakeidentd multiple overflows
Tomi Ollila's fake identd prior to version 1.5 contains multiple
remotely exploitable buffer overflows that allow an attacker to
execute arbitrary code with root privileges.
The vendor confirmed these vulnerabilities and released version 1.5,
which is available at:
http://iki.fi/too/sw/releases/identd.c
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0370.html
*** {02.31.024} Cross - ShoutBOX CGI site parameter CSS vulnerability
The ShoutBOX CGI suite contains a cross-site scripting vulnerability
in the handling of the 'site' URL parameter.
This vulnerability is not confirmed.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0389.html
*** {02.31.025} Cross - Sympoll CGI file viewing
Versions of the Sympoll CGI suite prior to 1.3 allow a remote attacker
to view arbitrary files. Further details were not provided.
This vulnerability is confirmed and fixed in version 1.3, which is
available at:
http://www.ralusp.net/sympoll/
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0401.html
*** {02.31.026} Cross - Eupload CGI password.txt recovery
The Eupload CGI suite version 1.0 stores user information (including
plain-text passwords) in the password.txt file, which is available
by HTTP request to a remote attacker.
This vulnerability is not confirmed.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0412.html
*** {02.31.028} Cross - Gallery CGI GALLERY_BASEDIR parameter command
execution
The Gallery CGI suite allows attackers to override the GALLERY_BASEDIR
configuration parameter, thereby allowing them to execute arbitrary
command-line commands under the privileges of the Web server.
This vulnerability is confirmed.
Updated Debian DEBs:
http://archives.neohapsis.com/archives/vendor/2002-q3/0010.html
Source: Debian
http://archives.neohapsis.com/archives/vendor/2002-q3/0010.html
*** {02.31.029} Cross - IBM UniVerse ODBC DoS
IBM's UniVerse ODBC connectivity package reportedly contains a denial
of service that may allow attackers capable of running queries to
render the service unavailable.
This vulnerability is not confirmed.
Source: SecurityFocus Bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-07/0442.html
*** {02.31.039} Cross - qmailadmin QMAILADMIN_TEMPLATEDIR overflow
The optional qmailadmin SUID CGI (not included with qmail itself)
version 1.0.2 contains a buffer overflow in the handling of the
QMAILADMIN_TEMPLATEDIR environment variable, potentially allowing
local attackers to execute arbitrary code with elevated privileges.
This vulnerability is not confirmed.
Source: SecurityFocus Vuln-Dev
http://archives.neohapsis.com/archives/vuln-dev/2002-q3/0450.html
- --- Tool Announcements News --------------------------------------------
*** {02.31.035} Tools - NMAP 3.0 released
The latest stable version of NMAP (3.0) was released. It contains
many features over the last stable release (2.53).
It is available for download from:
http://www.insecure.org/nmap/
Source: NMAP
http://archives.neohapsis.com/archives/nmap/2002/0037.html
************************************************************************
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (BSD/OS)
Comment: For info see http://www.gnupg.org
iD8DBQE9UszJ+LUG5KFpTkYRAoLZAJ0f/CjFTWN7yJjeLDBxUZnIZH9SpACeNMUk
SVhLZpRXkeSkVXD7PTKBFfw=
=Iuwt
-----END PGP SIGNATURE-----
------------------------------------------------------------------------
This issue is sponsored by Vericept, the premier provider of information
security solutions.
Does your current Web filter capture IM, chat, e-mail, Webmail and P2P?
If the answer is no, click here.
http://io52.deuxo.com/o2/webcapture/webcapture3.asp?coname=vcdx52&id=wc-7-42-16-11-5-8-2002&custno=
----------------------------------------------------------------------
Become a Security Alert Consensus member! If this e-mail was passed
to you and you would like to begin receiving our security e-mail
newsletter on a weekly basis, we invite you to subscribe today.
http://www.networkcomputing.com/consensus/.
We are signing the Consensus newsletter
with PGP. The new SANS PGP key is posted at:
http://www.pgp.net:11371/pks/lookup?op=get&search=0xA1694E46 and can
also be accessed from the SANS Web site (http://www.sans.org).
Special Note: To better secure your confidential information,
we will no longer include personal URLs in our Consensus
newsletter mailings. Instead, we have created a new form
(http://www.sans.org/sansurl). On this form you can enter the SD
number located near your name at the top of the newsletter. When you
submit this form, an e-mail containing a URL will be sent to you at
the e-mail address on record. With this URL you can make changes to
your account (edit the content of your Consensus mailing, for example)
without endangering the security of your personal URL. If you'd like
to change your e-mail address or other information, please visit your
new URL as described above. If you have any problems or questions,
e-mail us at <consensusnwc.com>.
If you would like to unsubscribe from this newsletter, grab your SD
number (next to your name at the top of this message) and visit the
URL below. You will be sent a personal URL via E-mail, from which
you can unsubscribe. http://www.sans.org/sansurl
Missed an issue? You can find all back issues of
Security Alert Consensus (and Security Express) online.
http://archives.neohapsis.com/
Your opinion counts. We'd like to hear your thoughts on Security Alert
Consensus. E-mail any questions or comments to <consensusnwc.com>.
Copyright (c) 2002 Network Computing, a CMP Media LLC
publication. All Rights Reserved. Distributed by Network
Computing (http://www.networkcomputing.com) and The SANS Institute
(http://www.sans.org). Powered by Neohapsis Inc., a Chicago-based
security assessment and integration services consulting group
(infoneohapsis.com | http://www.neohapsis.com/).
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]