NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Win2KSecurity Advice> 2000-q2

192 messages sorted by: [ author ] [ date ] [ thread ]

Starting: Wed Apr 12 2000 - 09:29:50 CDT
Ending: Sun Jul 02 2000 - 10:58:12 CDT

"Netscape engineers are weenies" [ More DLLs ]
- Microsoft Security Response Center (Fri Apr 28 2000 - 20:22:56 CDT)
- MJE (Fri Apr 28 2000 - 18:03:56 CDT)
**Nav-Solutions** SupportNow! Virus Warning!-New Loveletter worm variant discovered
- Steve Topilnycky (Fri May 19 2000 - 07:21:15 CDT)
[COVERT-2000-05] Microsoft Windows Computer Browser Reset Vulnerability
- COVERT Labs (Thu May 25 2000 - 21:21:12 CDT)
[ISN] Video Trojan hoax scares up publicity for security firm
- Guy Rosinbaum (Sat Jun 10 2000 - 15:17:21 CDT)
Advisory: Microsoft Office 2000 Scripting
- Weld Pond (Fri May 12 2000 - 23:41:42 CDT)
Alert: Buffer overflow in Rockliffe's MailSite
- Cerberus Security Team (Wed May 17 2000 - 09:33:20 CDT)
ALERT: Bypassing Warnings For Invalid SSL Certificates In Internet Explorer
- Mitja Kolsek (Mon Jun 05 2000 - 19:37:00 CDT)
ALERT: Bypassing Warnings For Invalid SSL Certificates In Netscape Navigator
- Mitja Kolsek (Wed May 10 2000 - 04:46:52 CDT)
Alert: Carello File Creation flaw
- Cerberus Security Team (Wed May 17 2000 - 11:00:46 CDT)
Alert: Cart32 secret password backdoor (CISADV000427)
- Alan Maddison (Tue May 02 2000 - 18:45:29 CDT)
- rain forest puppy (Tue May 02 2000 - 17:16:41 CDT)
- rain forest puppy (Tue May 02 2000 - 17:24:30 CDT)
- John Howie (Thu Apr 27 2000 - 11:50:13 CDT)
- steve.banksSHELLGASDIRECT.CO.UK (Thu Apr 27 2000 - 09:32:00 CDT)
- Astral (Thu Apr 27 2000 - 10:56:50 CDT)
- Matthew Pemble (Thu Apr 27 2000 - 09:01:10 CDT)
- Steve (Thu Apr 27 2000 - 08:30:41 CDT)
- Mike Kalinovich (Thu Apr 27 2000 - 07:14:28 CDT)
- Cerberus Security Team (Thu Apr 27 2000 - 00:42:28 CDT)
Alert: Cart32 secret password backdoor (Full Disclosure Debat e)
- Steve (Thu Apr 27 2000 - 11:43:38 CDT)
Alert: DMailWeb buffer overflow
- Cerberus Security Team (Wed May 03 2000 - 20:10:47 CDT)
Alert: DNewsWeb buffer overflow
- Cerberus Security Team (Fri May 05 2000 - 10:51:56 CDT)
Alert: IIS ism.dll exposes file contents
- Cerberus Security Team (Thu May 11 2000 - 12:27:20 CDT)
Alert: Listserv Web Archives (wa) buffer overflow
- Cerberus Security Team (Wed May 03 2000 - 17:23:55 CDT)
Alert: PDG Cart Overflows
- Cerberus Security Team (Thu May 25 2000 - 20:43:20 CDT)
Alert: Windows NT Browser Service DoS
- Cerberus Security Team (Tue May 30 2000 - 10:57:40 CDT)
Allaire Security Bulletin (ASB00-15) Workaround available for vu lnerabilities exposed by JRun 2.3.x code sample
- Jesse Noller (Thu Jun 22 2000 - 15:27:35 CDT)
Another variation of ILOVEYOU alert addressed from Symantec
- Rob Brun (Fri May 05 2000 - 14:07:48 CDT)
Any LAN user can crash Sygate
- Marc (Fri Jun 30 2000 - 19:03:41 CDT)
AVM Ken! + Statement
- eAX [Teelicht] (Wed Apr 19 2000 - 10:52:17 CDT)
BindView Security Advisory: jolt2 - Remote DoS against NT, W2K, 9x
- BindView Security Advisory (Fri May 19 2000 - 19:22:10 CDT)
Buffer Overflows with long file extensions in Windows
- Zoa_Chien (Fri Jun 02 2000 - 09:22:17 CDT)
- Ussr Labs (Wed Aug 02 2000 - 06:58:25 CDT)
can anyone decrypt this attachment?
- Dragos Ruiu (Thu Apr 20 2000 - 12:30:19 CDT)
- Steve Topilnycky (Thu Apr 20 2000 - 12:34:46 CDT)
- Simple Nomad (Thu Apr 20 2000 - 12:16:42 CDT)
- alex-g (Thu Apr 20 2000 - 10:28:36 CDT)
Cartfix Secret Backdoor Patch tool for cart32
- Weld Pond (Thu Apr 27 2000 - 16:10:03 CDT)
CERT Advisory CA-2000-12
- Steve (Tue Jun 20 2000 - 08:24:13 CDT)
CMD.EXE overflow (CISADV000420)
- Todd Sabin (Fri Apr 21 2000 - 10:37:28 CDT)
- Cerberus Security Team (Fri Apr 21 2000 - 10:47:45 CDT)
Cold Fusion Server 4.5.1 DoS Vulnerability.
- Malcolm Gin (Wed May 17 2000 - 15:31:03 CDT)
- Ryan Hill (Fri May 12 2000 - 01:03:20 CDT)
- Ryan Hill (Fri May 12 2000 - 01:02:57 CDT)
Contemplations : Melissa, I love you - not!
- Cerberus Security Team (Mon May 08 2000 - 12:37:48 CDT)
Default configuration of SYSKEY permits compromise of Encrypting File System
- Hayday, John (ISSReading) (Fri May 12 2000 - 05:41:55 CDT)
DOYOUFEELLOVED?
- rain forest puppy (Fri May 05 2000 - 16:55:04 CDT)
DST2K0003 : Buffer Overrun in NAI WebShield SMTP v4.5.44 Managem ent Tool
- Security Team (Thu May 25 2000 - 11:40:13 CDT)
DST2K0004b: Authentication issue in WebShield SMTP v4.5.44 Manage ment Tool
- Security Team (Thu May 25 2000 - 11:39:22 CDT)
DST2K0006: Denial of Service Possibility in Imate WebMail Server v2.5
- Security Team (Thu Jun 01 2000 - 02:43:27 CDT)
DST2K0007: Buffer Overrun in ITHouse Mail Server v1.04
- Security Team (Thu Jun 01 2000 - 02:43:38 CDT)
DST2K0008: Buffer Overrun in Sambar Server 4.3
- Security Team (Thu Jun 01 2000 - 09:43:51 CDT)
DST2K0010: DoS & Path Revealing Vulnerability in Ceilidh v2.60a
- Security Team (Thu Jun 08 2000 - 08:21:55 CDT)
DST2K0011: DoS & BufferOverrun in CMail v2.4.7 WebMail
- Security Team (Thu Jun 08 2000 - 08:20:05 CDT)
DST2K0012: BufferOverrun in HP Openview Network Node Manager v6.1
- Security Team (Thu Jun 08 2000 - 08:21:02 CDT)
DST2K0018: Multiple BufferOverruns in WebBBS HTTP Server v1.15
- Security Team (Tue Jun 20 2000 - 02:25:57 CDT)
DST2K0019: Multiple BufferOverruns in WebBBS v1.17
- Security Team (Sun Jul 02 2000 - 10:07:28 CDT)
DVWSSR.dll Buffer Overflow Vulnerability in Microsoft IIS 4.0 Web Servers
- Steve (Sat Apr 15 2000 - 10:04:22 CDT)
DVWSSR.dll Vulnerability and revised MS00-025
- Steve (Mon Apr 17 2000 - 08:24:31 CDT)
DVWSSR.dll Vulnerability in Microsoft IIS 4.0 Web Servers
- eEye Digital Security (Fri Apr 14 2000 - 16:51:22 CDT)
- Russ (Fri Apr 14 2000 - 14:44:37 CDT)
el8.org advisory - Win 95/98 DoS (RFParalyze.c)
- dmJUGGERNAUT.EL8.ORG (Tue May 02 2000 - 11:44:09 CDT)
Fix for I-LOVE-YOU Virus
- Wade Grimm (Fri May 05 2000 - 16:36:45 CDT)
Force Feeding
- http-equivexcite.com (Mon Jun 26 2000 - 05:10:20 CDT)
Has anyone seen this is the wild?
- dave.trupkinLVVWD.COM (Fri Jun 09 2000 - 10:35:41 CDT)
- R. Padilla (Fri Jun 09 2000 - 10:02:26 CDT)
- Michael D. Hunter-Linville (Fri Jun 09 2000 - 09:52:23 CDT)
- Barry R. Ladan (Fri Jun 09 2000 - 09:53:25 CDT)
- Kristopher Rosenberg (Fri Jun 09 2000 - 09:31:40 CDT)
- Stegman, Thomas (Fri Jun 09 2000 - 09:34:31 CDT)
- Rustin Ross (Fri Jun 09 2000 - 07:49:22 CDT)
Hmm...
- LEVIATHAN (Sun Apr 30 2000 - 14:54:13 CDT)
Hotmail security hole - injecting JavaScript in IE using "import url(http://host/hostile.css)"
- Georgi Guninski (Mon Apr 24 2000 - 08:10:36 CDT)
HP Web JetAdmin Version 5.6 Web interface Server Directory Traversal Vulnerability
- Ussr Labs (Wed May 24 2000 - 03:48:29 CDT)
HP Web JetAdmin Version 6.0 Remote DoS attack Vulnerability
- Ussr Labs (Wed May 24 2000 - 03:49:27 CDT)
IE 5 and Access 2000 vulnerability - executing programs
- Jesper M. Johansson (Wed Jun 28 2000 - 07:00:05 CDT)
- Bernard, Norm (Tue Jun 27 2000 - 11:50:14 CDT)
- Georgi Guninski (Tue Jun 27 2000 - 06:47:18 CDT)
IE 5 and Excel 2000, PowerPoint 2000 vulnerability - executing programs
- Georgi Guninski (Tue Jun 27 2000 - 06:47:13 CDT)
IE 5 Cross-frame security vulnerability using IFRAME and WebBrowser control
- Georgi Guninski (Tue Jun 06 2000 - 07:34:12 CDT)
IE 5 security vulnerablity - circumventing Cross-frame security policy using Java/JavaScript (and disabling Active Scripting is not that easy)
- Georgi Guninski (Tue Apr 18 2000 - 08:22:36 CDT)
L0pht Advisory - AntiSniff DNS overflow
- Steve (Wed May 17 2000 - 11:31:25 CDT)
Microsoft Kerberos
- MJE (Tue May 02 2000 - 16:22:37 CDT)
Microsoft Security Bulletin (MS00-020)
- Microsoft Product Security (Thu Jun 15 2000 - 14:12:28 CDT)
Microsoft Security Bulletin (MS00-023)
- Microsoft Product Security (Wed Apr 12 2000 - 14:34:54 CDT)
Microsoft Security Bulletin (MS00-024)
- Microsoft Product Security (Wed Apr 12 2000 - 22:57:36 CDT)
Microsoft Security Bulletin (MS00-025)
- Microsoft Product Security (Mon Apr 17 2000 - 12:33:30 CDT)
- Microsoft Product Security (Sat Apr 15 2000 - 01:51:55 CDT)
- Microsoft Product Security (Fri Apr 14 2000 - 18:54:59 CDT)
Microsoft Security Bulletin (MS00-026)
- Microsoft Product Security (Thu Apr 20 2000 - 15:03:11 CDT)
Microsoft Security Bulletin (MS00-027)
- Microsoft Product Security (Thu Apr 20 2000 - 23:54:41 CDT)
Microsoft Security Bulletin (MS00-029)
- Microsoft Product Security (Fri May 19 2000 - 18:47:24 CDT)
Microsoft Security Bulletin (MS00-030)
- Microsoft Product Security (Thu May 11 2000 - 15:33:07 CDT)
Microsoft Security Bulletin (MS00-031)
- Microsoft Product Security (Wed May 10 2000 - 20:54:14 CDT)
Microsoft Security Bulletin (MS00-032)
- Microsoft Product Security (Fri Jun 02 2000 - 12:42:36 CDT)
Microsoft Security Bulletin (MS00-033)
- Microsoft Product Security (Wed May 17 2000 - 19:45:45 CDT)
Microsoft Security Bulletin (MS00-034)
- Microsoft Product Security (Fri May 12 2000 - 21:36:23 CDT)
Microsoft Security Bulletin (MS00-035)
- Microsoft Product Security (Tue May 30 2000 - 15:09:56 CDT)
Microsoft Security Bulletin (MS00-036)
- Microsoft Product Security (Fri May 26 2000 - 09:17:45 CDT)
Microsoft Security Bulletin (MS00-037)
- Microsoft Product Security (Fri Jun 02 2000 - 19:29:27 CDT)
Microsoft Security Bulletin (MS00-038)
- Microsoft Product Security (Tue May 30 2000 - 19:45:21 CDT)
Microsoft Security Bulletin (MS00-039)
- Microsoft Product Security (Mon Jun 05 2000 - 20:52:41 CDT)
Microsoft Security Bulletin (MS00-040)
- Microsoft Product Security (Thu Jun 08 2000 - 18:56:31 CDT)
Microsoft Security Bulletin (MS00-041)
- Microsoft Product Security (Wed Jun 14 2000 - 16:37:28 CDT)
Microsoft Security Bulletin (MS00-042)
- Microsoft Product Security (Fri Jun 30 2000 - 18:41:00 CDT)
- Microsoft Product Security (Fri Jun 30 2000 - 00:06:27 CDT)
Microsoft Security Bulletin MS00-038 Update
- Microsoft Product Security (Tue Jun 20 2000 - 19:14:47 CDT)
More info on MS00-019
- Alan Monaghan (Thu Apr 13 2000 - 09:16:02 CDT)
- mockACTIVESTATE.COM (Wed Apr 12 2000 - 19:16:26 CDT)
More vulnerabilities in FP
- Narrow (Wed Apr 19 2000 - 12:15:54 CDT)
Multiples Remotes DoS Attacks in Dragon Server v1.00 and v2.00 Vulnerability
- Ussr Labs (Fri Jun 16 2000 - 00:10:45 CDT)
netscape POP3 passwd and mails prefs
- Hans Aikema (Wed Apr 19 2000 - 10:25:45 CDT)
- Alexandre Da Fonseca (Wed Apr 19 2000 - 09:49:07 CDT)
- Robert Sherman (Wed Apr 19 2000 - 09:29:02 CDT)
- Simon (Wed Apr 19 2000 - 05:03:33 CDT)
new vulnerability in Netscape effectively disables SSL server auth
- Kevin Fu (Fri May 26 2000 - 15:07:43 CDT)
NEWDSN.EXE DoS Attack - NT 4.0 SP5 - LOW RISK
- Michael Howard (Mon May 01 2000 - 11:53:22 CDT)
- Marc (Sun Apr 30 2000 - 17:15:56 CDT)
- Steve (Sun Apr 30 2000 - 12:31:52 CDT)
NTMail Proxy Exploit
- Geo. (Fri May 12 2000 - 06:46:00 CDT)
Outlook/IE VBasic Script virus (love letters)
- Aaron Michal (Thu May 04 2000 - 16:01:01 CDT)
- Benjamin Leidner (Thu May 04 2000 - 11:34:32 CDT)
Outlook/IE VBasic Script virus also affects IRC!!! (love lett ers)
- Ken Williams (Thu May 04 2000 - 11:49:16 CDT)
- Jason Wicker (Thu May 04 2000 - 11:30:18 CDT)
Outlook/IE VBasic Script virus also affects IRC!!! (love letters)
- Craig Lett (Thu May 04 2000 - 11:46:18 CDT)
- Sunder (Thu May 04 2000 - 11:13:04 CDT)
PcAnywhere weak password encryption
- Steve Topilnycky (Thu Apr 13 2000 - 08:06:23 CDT)
- Dug Song (Wed Apr 12 2000 - 12:14:26 CDT)
- Steve Topilnycky (Wed Apr 12 2000 - 08:05:17 CDT)
portscan virus?
- Gary Buckmaster (Wed May 24 2000 - 11:03:52 CDT)
- Geo. (Wed May 24 2000 - 10:37:55 CDT)
possible new "e-mail virus" concept ? + bypassing IE settings
- Josemiguel.GilICEX.ES (Thu May 18 2000 - 04:00:20 CDT)
- Jaro Sterbik-Lamina (Wed May 17 2000 - 09:16:16 CDT)
- Zoa_Chien (Wed May 17 2000 - 05:49:42 CDT)
pwdump2 for Active Directory
- Todd Sabin (Tue Apr 18 2000 - 13:14:22 CDT)
RAZOR Analysis of dvwssr.dll
- David LeBlanc (Mon Apr 17 2000 - 18:04:30 CDT)
- Simple Nomad (Mon Apr 17 2000 - 16:05:35 CDT)
Re-release of IIS 5.0 Patch for MS00-031
- Microsoft Product Security (Fri Jun 16 2000 - 18:31:17 CDT)
RELEASED: LibnetNT by eEye Digital Security
- Marc (Thu Jun 01 2000 - 15:16:24 CDT)
Reminder: MaxClientRequestBuffer
- Marc (Wed May 03 2000 - 17:32:51 CDT)
Remote DoS attack in AnalogX SimpleServer WWW Version 1.05 Vulnerability
- Ussr Labs (Thu Jun 15 2000 - 10:00:48 CDT)
Remote DoS attack in CASSANDRA NNTPServer v1.10 from ATRIUM SOFTWARE Vulnerability
- Ussr Labs (Mon May 01 2000 - 10:15:13 CDT)
Remote DoS attack in Internet Information Server 4.0 & 5.0 "Malformed Extension Data in URL" Vulnerability
- Ussr Labs (Thu May 11 2000 - 15:29:05 CDT)
Remote DoS attack in Networks Associates PGP Certificate Server Version 2.5 Vulnerability
- Ussr Labs (Wed Jun 14 2000 - 07:14:47 CDT)
Remote DoS attack in Real Networks Real Server (Strike #2) Vulnerability
- Ussr Labs (Tue Aug 01 2000 - 05:58:06 CDT)
Remote DoS attack in Real Networks Real Server Vulnerability
- Ussr Labs (Thu Apr 20 2000 - 02:15:23 CDT)
Remote DoS Attack in Small HTTP Server ver. 1.212 Vulnerability
- Ussr Labs (Fri Jun 16 2000 - 00:10:54 CDT)
Reporting Security Issues to Micro soft)
- Carl Friedberg (Fri Jun 09 2000 - 03:24:36 CDT)
Reporting Security Issues to Microsoft
- Microsoft Security Response Center (Thu Jun 08 2000 - 16:46:01 CDT)
Revision 2: Analysis of jolt2.c (MS00-029)
- David LeBlanc (Mon May 29 2000 - 22:39:57 CDT)
- Mikael Olsson (Sat May 27 2000 - 10:38:29 CDT)
RFP2K02: "Netscape engineers are weenies!"
- rain forest puppy (Fri Apr 14 2000 - 07:30:17 CDT)
RFP2K03: Contemplations on dvwssr.dll and how it affects
- Steve (Fri Apr 21 2000 - 12:17:28 CDT)
RFP2K03: Contemplations on dvwssr.dll and how it affects life
- Greg Small (Fri Apr 21 2000 - 12:56:26 CDT)
- eEye Digital Security (Fri Apr 21 2000 - 12:30:49 CDT)
- Steve (Fri Apr 21 2000 - 12:11:51 CDT)
- Paul L Schmehl (Fri Apr 21 2000 - 11:39:27 CDT)
- Steve (Fri Apr 21 2000 - 10:11:43 CDT)
RFP2K03: Contemplations on dvwssr.dll and its affects on life
- Federico G. Schwindt (Tue Apr 25 2000 - 16:49:34 CDT)
- Rustin Ross (Tue Apr 25 2000 - 14:04:12 CDT)
- Russ (Mon Apr 24 2000 - 20:16:13 CDT)
- rain forest puppy (Mon Apr 24 2000 - 20:14:41 CDT)
- rain forest puppy (Mon Apr 24 2000 - 20:39:07 CDT)
- rain forest puppy (Mon Apr 24 2000 - 21:05:18 CDT)
RFP2K04: Mining BlackICE with RFPickAxe
- rain forest puppy (Wed May 17 2000 - 11:21:08 CDT)
RFP2K05: NetProwler vs. RFProwler
- rain forest puppy (Fri May 19 2000 - 13:05:32 CDT)
RFPolicy for vulnerability disclosure
- rain forest puppy (Mon Jun 12 2000 - 18:51:26 CDT)
SANS Alert on Resume and KAK Viruses
- Steve (Sat May 27 2000 - 14:27:43 CDT)
Securax-SA-03 Advisory
- Steve (Fri May 26 2000 - 08:55:58 CDT)
Server Extensions Security Vulnerability 4-20-00 - Microsoft Bulletin
- Steve (Sat Apr 22 2000 - 08:13:40 CDT)
Support:Car32 Backdoor fix.
- Steve (Mon May 01 2000 - 13:30:34 CDT)
Trend Micro InterScan VirusWall Remote Overflow
- NAI Labs (Thu May 04 2000 - 14:03:12 CDT)
Update to DST2K0011: DoS & BufferOverrun in CMail v2.4.7 WebMail
- Security Team (Sat Jun 10 2000 - 11:39:47 CDT)
VBS.NewLove.A- Follow Up
- Steve Topilnycky (Fri May 19 2000 - 07:30:33 CDT)
vf.exe anti-worm tool
- Cerberus Security Team (Mon May 08 2000 - 12:46:28 CDT)
Windows 2000 Nul bug
- Daniel Doèekal (Sat Apr 29 2000 - 12:55:28 CDT)
- Michael Hendy (Sat Apr 29 2000 - 12:38:42 CDT)
- leventHUSHMAIL.COM (Sat Apr 29 2000 - 11:55:15 CDT)
- Rolf (Sat Apr 29 2000 - 11:18:09 CDT)
- DDOCEKAL (Sat Apr 29 2000 - 11:32:24 CDT)
- Mousse (Sat Apr 29 2000 - 10:44:58 CDT)
- auto45040HUSHMAIL.COM (Fri Apr 28 2000 - 23:04:27 CDT)
Windows DoS code (jolt2.c)
- Phonix (Fri May 26 2000 - 12:14:46 CDT)
- David LeBlanc (Fri May 26 2000 - 12:24:59 CDT)
- Mats Remman (Fri May 26 2000 - 11:24:48 CDT)
- Microsoft Security Response Center (Fri May 26 2000 - 11:23:33 CDT)
- Steve (Fri May 26 2000 - 11:16:55 CDT)
- Pepin, Dany (Fri May 26 2000 - 10:08:34 CDT)
- Craig Williams (Fri May 26 2000 - 09:10:49 CDT)
- SMILER (Fri May 26 2000 - 08:11:59 CDT)
- Steve (Thu May 25 2000 - 15:48:05 CDT)

Last message date: Sun Jul 02 2000 - 10:58:12 CDT
Archived on: Sun Jul 02 2000 - 10:58:12 CDT

192 messages sorted by: [ author ] [ date ] [ thread ]