
	Where results make sense

Topic: Security vulnerabilities

In the News (Fri 17 Feb 12)

EXECUTIVE POWER

Iran

ANALYSIS

Pakistan

Family compact

	CVE - Common Vulnerabilities and Exposures (Site not responding. Last check: 2007-10-22)
		A list of standardized names for vulnerabilities and other information security exposures — CVE aims to standardize the names for all publicly known vulnerabilities and security exposures.
		Use of the Common Vulnerabilities and Exposures List and the associated references from this Web site are subject to the Terms of Use.
		CVE is sponsored by the US-CERT at the U.S. Department of Homeland Security.
	cve.mitre.org (465 words)

	Common Security Vulnerabilities in e-commerce Systems
		Wherever examples of such vulnerabilities are given in advisories published by Bugtraq, we have given the Bugtraq ID in square brackets.
		Similar vulnerabilities have also been found in third-party software such as in the 3D3 ShopFactory Shopping Cart [bid 6296], where price and item-related information was stored in client-side cookies, which could easily be manipulated by an attacker.
		It is of paramount importance for designers and developers of web applications to consider security as a primary design goal and to follow secure coding guidelines in order to provide the highest possible degree of assurance to their customers.
	www.securityfocus.com /infocus/1775 (2619 words)

	Cisco Security Advisory: Vulnerabilities in Kerberos 5 Implementation
		Vulnerable Cisco devices using versions of Kerberos based on the MIT implementation to authenticate users are affected by two vulnerabilities.
		This vulnerability can be exploited by an attacker impersonating a legitimate Kerberos KDC or application server to cause a client program to hang inside an infinite loop, and thus creating a Denial of Service condition.
		Complete information on reporting security vulnerabilities in Cisco products, obtaining assistance with security incidents, and registering to receive security information from Cisco, is available on Cisco's worldwide website at http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html.
	www.cisco.com /warp/public/707/cisco-sa-20040831-krb5.shtml (1218 words)

	BIND Vulnerabilities
		It is possible to construct a response to a DNS query issued by an application linked to vulnerable versions of the stub resolver library included in the BIND distributions mentioned above that may potentially result in a buffer overflow of a few bytes.
		To remove this vulnerability, ALL applications linked to a vulnerable version of the stub resolver library must be re-linked with a non-vulnerable version.
		Because of the placement of the buffer which might be overflowed, it is unlikely this bug will result in serious consequences, however the possibility of a remotely triggered server crash cannot be ruled out.
	www.isc.org /sw/bind/bind-security.php (1446 words)

	Security Center
		Security Advisory (September 21, 2005) The Mozilla Foundation is aware of the Linux.RST.b virus that infected Linux Korean contributed versions of Mozilla Suite 1.7.6 and Thunderbird 1.0.2, as reported by Kaspersky Lab.
		Security Advisory (September 9, 2005) The Mozilla Foundation is aware of a potentially critical security vulnerability in Mozilla and Firefox browsers' support for IDN, as reported publicly on September 8.
		Security Advisory (May 8, 2005) The Mozilla Foundation is aware of two potentially critical Firefox security vulnerabilities as reported publicly Saturday, May 7.
	www.mozilla.org /security (1193 words)

	SANS Top 20 Vulnerabilities - The Experts Consensus
		Whilst this has been changed to a 'secure by default' posture for IIS 6.0, it is crucial that administrators take the time to fully understand their web server and adjust the configuration to allow only those features and services required.
		In addition, Securing Apache: Step-by-Step by Artur Maj is a very helpful paper found in the SANS Reading Room that covers in detail the tasks of securing an Apache server.
		While having current service packs and security hotfixes addresses many software design-related problems (such as buffer overflows, code design errors etc), there are a number of dangerous features in Windows OS that have legitimate and documented functionality, but can be safely disabled or secured in many cases in order to harden system security.
	www.sans.org /top20 (12712 words)

	Gentoo Linux Documentation -- Gentoo Linux Security
		Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us.
		The Gentoo Linux Security Project is tasked with providing timely information about security vulnerabilities in Gentoo Linux, along with patches to secure those vulnerabilities.
		Gentoo Linux Security Announcements are notifications that we send out to the community to inform them of security vulnerabilities related to Gentoo Linux or the packages contained in our portage repository.
	www.gentoo.org /security/en/index.xml (561 words)

	Secunia - Advisories - Microsoft Internet Explorer Multiple Vulnerabilities
		Some vulnerabilities have been discovered in Internet Explorer, which can be exploited by malicious people to compromise a user's system, conduct cross-site/zone scripting and bypass a security feature in Microsoft Windows XP SP2.
		Vulnerability 1 and 2, or 3 alone, in combination with an inappropriate behaviour where the ActiveX Data Object (ADO) model can write arbitrary files can be exploited to compromise a user's system.
		Various Mozilla browsers are vulnerable to the Mozilla Arbitrary Memory Exposure Vulnerability.
	secunia.com /advisories/12889 (712 words)

	Critical Patch Updates and Security Alerts (Site not responding. Last check: 2007-10-22)
		The Map of Public Vulnerability to Advisory/Alert indicates which public vulnerabilities are fixed in each Critical Patch Update and Security Alert.
		The results of the security analysis are reflected in the severity of the CPU or Security Alert and the associated documentation describing, for example, the type of vulnerability, the conditions required to exploit it and the result of a successful exploit.
		Oracle's policy and process for fixing security vulnerabilities explains the security vulnerability fixing lifecycle, including the correlation between Critical Patch Updates, patch sets and new releases.
	www.oracle.com /technology/deploy/security/alerts.htm (915 words)

	Apache httpd 1.3 vulnerabilities - The Apache HTTP Server Project
		Each vulnerability is given a security impact rating by the Apache security team - please note that this rating may well vary from platform to platform.
		Cross-site scripting (XSS) vulnerability in the default error page of Apache 2.0 before 2.0.43, and 1.3.x up to 1.3.26, when UseCanonicalName is "Off" and support for wildcard DNS is present, allows remote attackers to execute script as other web page visitors via the Host: header.
		This vulnerability introduced no identified means to compromise the server other than introducing a possible denial of service.
	httpd.apache.org /security/vulnerabilities_13.html (1546 words)

	CERT Advisory CA-2001-02 Multiple Vulnerabilities in BIND
		The vulnerable buffer is a locally defined character array used to build an error message intended for syslog.
		This vulnerability is an information leak in the query processing code of both BIND 4 and BIND 8 that allows a remote attacker to access the program stack, possibly exposing program and/or environment variables.
		It may also be possible to minimize the impact of the exploitation of these vulnerabilities by configuring your DNS environment to separate DNS servers used for the public dissemination of information about your hosts from the DNS servers used by your internal hosts to connect to other hosts on the Internet.
	www.cert.org /advisories/CA-2001-02.html (2455 words)

	Stack Smashing Security Vulnerabilities (Site not responding. Last check: 2007-10-22)
		By combining permission features of UNIX operating system and features of the C programming language, it is possible for an unprivileged user or process to gain unrestricted system privilege.
		Common to many high profile UNIX security incidents, this page contains links that analyze how these exploits are constructed, why they work and what can be done to prevent the problem.
		This paper begins by assuming the reader has little/no knowledge of security exploits in the UNIX world, and then moves into more detailed material.
	destroy.net /machines/security (174 words)

	Securing Windows: Inside Microsoft's Battle to Deliver Secure Software - eWEEK.com
		Security researchers highlight more errors in Microsoft's patch creation process and warn that the mistakes are proving costly for users.
		A security researcher finds that Microsoft's MS05-001 update does not adequately patch a critical and exploitable flaw; Redmond says this is a new, unrelated vulnerability.
		Separate vulnerability was patched with same cumulative patch as the SSL vulnerability being exploited in recent days.
	www.eweek.com /category2/0,1738,1252525,00.asp (3297 words)

	[No title]
		From a security perspective, the more superfluous functionality offered by a language and the less intuitive the possibilities, the more difficult it is to secure applications written in it.
		Obviously this could be a simple security issue if the user can set $filename and get the script to expose /etc/passwd for example but one non intuitive this code could end up doing is reading data from another web/ftp site.
		They have no understanding whatsoever of the security implications of the code they are writing.
	www.securereality.com.au /studyinscarlet.txt (4035 words)

	Customer Support - Real Security Updates
		RealNetworks Inc. has recently been made aware of security vulnerabilities that could potentially allow an attacker to run arbitrary or malicious code on a user's machine.
		While we have not received reports of anyone actually being attacked with this exploit, all security vulnerabilities are taken very seriously by RealNetworks Inc. Real has found and fixed the problem.
		RealNetworks would also like to acknowledge John Heasman, eEye Digital Security, as well as other contributors for bringing these exploits to our attention and to all those who subsequently worked with us to correct the vulnerabilities.
	www.service.real.com /help/faq/security/040928_player/EN (411 words)

	SecuriTeam.com ™ - Outlook Express 6 Security Vulnerabilities
		Two major security vulnerabilities have been confirmed in Outlook Express version 6.
		The above may be of interest to SA's who might block active content and html tags at their gateways using only the Content-Type: text/html; MIME header.
		You should also note with interest that a now 10-month-old vulnerability; referred to as html.dropper has been carried over to Outlook Express 6.
	www.securiteam.com /windowsntfocus/5HP0D1P5FC.html (415 words)

	ISC BIND
		Before submitting a bug report please ensure you are running a current version also see the the list of upcoming fixes for BIND 8.4, BIND 9.2 and BIND 9.3.
		If you are running BIND 4.x.x, and cannot upgrade to BIND 9.2.x or BIND 8.x, we recommend you use BIND Version 4.9.11 rather than any lower 4.x releases.
		It is possible to obtain older versions of BIND via ftp ; however, they are provided for reference only and should not be used.
	www.isc.org /products/BIND/bind-security.html (385 words)

	Reporting Security Problems with Apache - The Apache HTTP Server Project
		All mail sent to this address that does not relate to security problems in the Apache source code will be ignored.
		Note that all networked servers are subject to denial of service attacks, and we cannot promise magic workarounds to generic problems (such as a client streaming lots of data to your server, or re-requesting the same URL repeatedly).
		In general our philosophy is to avoid any attacks which can cause the server to consume resources in a non-linear relationship to the size of inputs.
	httpd.apache.org /security_report.html (194 words)

	P-152: RealNetworks Security Vulnerabilities
		Two security vulnerabilities were discovered in RealNetworks software.
		Updated March 1, 2005 RealNetworks, Inc. has addressed recently discovered security vulnerabilities that offered the potential for an attacker to run arbitrary or malicious code on a customer's machine.
		The views and opinions of authors expressed herein do not necessarily state or reflect those of the United States Government or the University of California, and shall not be used for advertising or product endorsement purposes.
	www.ciac.org /ciac/bulletins/p-152.shtml (777 words)

	Top 10 External & Internal Vulnerabilities - Qualys
		The Top 10 external and internal vulnerabilities are dynamic lists of the most prevalent and critical security vulnerabilities in the real world.
		Based on the "Laws of Vulnerabilities", this information is computed anonymously from nearly 2 Mio vulnerability scans globally.
		The Top 10 External Vulnerabilities are the most prevalent and critical vulnerabilities which have been identified on Internet facing systems.
	www.qualys.com /research/rnd/top10 (268 words)

	Mozilla Flaw Lets Links Run Arbitrary Programs
		The Mozilla Foundation has confirmed findings that its Mozilla and Firefox browsers are vulnerable to attacks using the "shell:" scheme, which execute arbitrary code under Windows without the user having to click a link.
		Security researchers are reporting another security issue in Web browsing under Windows, but this time Internet Explorer is not the culprit.
		A new report by security firm Secunia finds that Internet Explorer may share a similar shell hole.
	www.eweek.com /article2/0,1759,1621438,00.asp (1046 words)

	[No title] (Site not responding. Last check: 2007-10-22)
		A number of security vulnerabilities have been identified by ourselves and other researchers.
		Overview of 802.11 Security, can be found here.
		An Initial Security Analysis of the IEEE 802.1X Protocol is here.
	www.cs.umd.edu /~waa/wireless.html (338 words)

	OWASP - Home (Site not responding. Last check: 2007-10-22)
		Whether you are a developer of web sites, manage development teams, responsible for securing your network’s firewalls and IDS systems and wondering where the next threats will be, or just interested in learning more about the topic, this is the meeting for you to learn and network.
		The focus of application security is "evolving from the perimeter," said Wendy Walasek, VP at Morgan Stanley & Co., at the Cyber Security Executive Summit in New York Thursday.
		OWASP is glad that there's attention on security, but hyperfocus on encryption at the expense of all the other security areas can be damaging too.
	www.owasp.org (5708 words)

	Citadel Security Software (Site not responding. Last check: 2007-10-22)
		With the world’s largest active library of remediations spanning all classes of vulnerabilities and a proven delivery methodology to dramatically streamline vulnerability management and security compliance, Citadel provides ROI from the first use.
		Citadel’s solutions enable you to be proactive about complying with rigorous security policies which is the best way to prevent harmful attacks and their repercussions while satisfying auditors, managers and IT staff.
		The Hercules 4.0 Enterprise Vulnerability Management (EVM) Suite is a comprehensive solution for vulnerability management, security compliance and automated remediation and consists of the components, Compliance Manager for compliance audits, AssetGuard for asset inventory and security risk assessment, Remediation Manager for vulnerability remediation, ConnectGuard for endpoint security and Enterprise Reporting Manager for enterprise-wide reporting.
	www.citadel.com (639 words)

	WITHERSPOON SECURITY CONSULTING: Professional Services
		Help with identification of your critical assets, threats, risk, and vulnerability with an independent audit or survey of your current security measures with developing cost-effective counter-measures with program development such as Workplace Violence...
		Witherspoon Security Consulting, with over 30-years of practical experience, might be that partner.
		Additionally, Witherspoon Security Consulting is totally independent we have no affiliation with any product or security guard services provider.
	www.security-expert.org (304 words)

	SGI - Services & Support: Security Home Page
		SGI is firmly committed to providing an infrastructure that supports our customers' computer security needs, and provides a complete response to immediate concerns.
		We are a member of FIRST, a coalition of individual response teams around the world, and other industry-wide security organizations.
		SGI tracks security issues, alerts, advisories and updates, and rapidly addresses software breaches with immediate patches and longer-term solutions as soon as possible.
	www.sgi.com /support/security (178 words)

	Internet Security Systems - Worldwide Home Page
		Internet Security Systems (ISS) has served as the trusted security advisor to global enterprises and world governments for over a decade.
		The Proventia integrated security appliance was recently awarded NSS Approved status in the unified threat management (UTM) test conducted by The NSS Group.
		Frost and Sullivan highlighted ISS' Managed Security Services Customer Portal in particular because it provides customers with a user-friendly, comprehensive view of their security posture and current Internet threats around the clock.
	www.iss.net (366 words)

	Apache Week. Apache security (Site not responding. Last check: 2007-10-22)
		We highlight the security vulnerabilities found during the lifecycle of Apache 1.3, from Apache 1.3.0 (released on the 6th June 1998)
		We highlight the security vulnerabilities found during the lifecycle of Apache 2.0, from Apache 2.0.35 (April 2002)
		Requests to Apache 1.3 and Apache 2.0 can cause various effects ranging from a relatively harmless increase in system resources through to denial of service attacks and in some cases the ability to be remotely exploited.
	www.apacheweek.com /security (280 words)

	Network Security, Vulnerability Assessment, Intrusion Prevention
		The eEye Digital Security Research Team is dedicated to finding and educating the public about new and existing security vulnerabilities.
		This advisory information does not contain any "exploit" or "payload" code and is intended solely as technical, in-depth analysis of the various vulnerabilities discovered by the eEye Research Team.
		This advisory information provided adheres to eEye's responsible disclosure policy and supports the Company's goal to eliminate security vulnerabilities within computing networks.
	www.eeye.com /html/Research/Advisories (293 words)

Try your search on: Qwika (all wikis)