iss.00-03-14.sql-weak
http://packetstorm.securify.com/advisories/iss/iss.00-03-14.sql-weak
Thu Mar 16 15:52:05 2000
ISS Security Advisory - Enterprise Manager for Microsoft SQL Server 7.0 uses we
ak encryption when storing the password in registry.  It can be read and decode
d by other users.  ISS homepage <a href="http://xforce.iss.net">here.</a>


freebsd.sa-00.07.mh
http://packetstorm.securify.com/advisories/freebsd/freebsd.sa-00.07.mh
Thu Mar 16 15:45:38 2000
FreeBSD Security Advisory - MH and its successor NMH are popular Mail User Agen
ts, availabe in the FreeBSD ports collection. EXMH and EXMH2 are TCL/TK-based f
ront-ends to the MH system.  The mhshow command used for viewing MIME attachmen
ts contains a buffer overflow which can be exploited by a specially-crafted ema
il attachment, which will allow the execution of arbitrary code as the local us
er when the attachment is opened.  FreeBSD Security Homepage <a href="http://ww
w.freebsd.org/security">here.</a>


freebsd.sa-00.09.lynx
http://packetstorm.securify.com/advisories/freebsd/freebsd.sa-00.09.lynx
Thu Mar 16 15:40:59 2000
FreeBSD Security Advisory - The lynx software is written in a very insecure sty
le and contains numerous potential and several proven security vulnerabilities 
exploitable by a malicious server.  No simple fix is available until a full rev
iew of lynx is done.  FreeBSD Security Homepage <a href="http://www.freebsd.org
/security">here.</a>


freebsd.sa-00.09.mtr
http://packetstorm.securify.com/advisories/freebsd/freebsd.sa-00.09.mtr
Thu Mar 16 15:38:42 2000
FreeBSD Security Advisory - mtr, from the ports collection, fails to correctly 
drop setuid root privileges during operation, allowing a local root compromise.
  FreeBSD Security Homepage <a href="http://www.freebsd.org/security">here.</a>


freebsd.sa-00.10.orville
http://packetstorm.securify.com/advisories/freebsd/freebsd.sa-00.10.orville
Thu Mar 16 15:36:16 2000
FreeBSD Security Advisory - Orville-write, provided in the ports collection, is
 a replacement for the write command, which provides improved control over mess
age delivery and other features.  One of the commands installed by the port is 
incorrectly installed with setuid root permissions. The 'huh' command should no
t have any special privileges since it is intended to be run by the local user 
to view his saved messages.  FreeBSD Security Homepage <a href="http://www.free
bsd.org/security">here.</a>


suse.imap.txt
http://packetstorm.securify.com/advisories/suse/suse.imap.txt
Thu Mar 16 15:28:53 2000
SuSE Security Advisory - A security hole was discovered in the SuSE IMAP server
 which allows remote attackers to receive imap administrator privilige which ca
n be used e.g. to create or delete folders.  This is unrelated to the SuSE linu
x distribution, which is unaffected.  SuSE security site <a href="http://www.su
se.de/security">here.</a>


labs36.htm
http://packetstorm.securify.com/advisories/ussr/labs36.htm
Thu Mar 16 15:21:50 2000
USSR Advisory #36 - Remote / local dos attack in MERCUR WebView WebMail-Client 
1.0 for Windows 98/NT.  UssrLabs found a buffer overflow in MERCUR WebView WebM
ail-Client 1.0 (port 1080) where they do not use proper bounds checking in the 
code who handle the GET commands The following all result in a Denial of Servic
e against the service in question.  Homepage <a href="http://www.ussrback.com">
here.</a>


labs35.htm
http://packetstorm.securify.com/advisories/ussr/labs35.htm
Thu Mar 16 15:19:08 2000
USSR Advisory #35 - Remote / local dos overflow attack in MERCUR v3.2* Mail ser
ver, pop server, and imap server for Windows.  Homepage <a href="http://www.uss
rback.com">here.</a>


ip-fil3.3.12.tar.gz
http://packetstorm.securify.com/UNIX/firewall/ipfilter/ip-fil3.3.12.tar.gz
Thu Mar 16 15:05:09 2000
IP Filter is a TCP/IP packet filter suitable for use in a firewall environment.
 To use, it can either be run as a loadable kernel module (recommended) or inco
rporated into your UNIX kernel. Scripts are provided to install and patch syste
m files as required.  Changes: Code to address the FTP proxy problem currently 
being talked about on bugtraq, and the current kernel proxy has been "beefed up
".  Homepage <a href="http://coombs.anu.edu.au/~avalon/">here.</a>  By <a href=
"mailto:darrenr@pobox.com">Darren Reed</a>


Bastille-1.0.4.pre1.tar.gz
http://packetstorm.securify.com/linux/firewall/bastille/Bastille-1.0.4.pre1.tar
.gz
Thu Mar 16 14:58:15 2000
Bastille Linux aims to be the most comprehensive, flexible, and educational Sec
urity Hardening Program for Red Hat Linux 6.0/6.1. Virtually every task it perf
orms is optional, providing immense flexibility. It educates the installing adm
in regarding the topic at hand before asking any question. The interactive natu
re allows the program to be more thorough when securing, while the educational 
component produces an admin who is less likely to compromise the increased secu
rity.  Changes: Redid user interface, use of ssh when downloading, and small bu
gfixes.  Homepage <a href="http://bastille-linux.sourceforge.net/">here.</a>  B
y <a href="mailto:jbeale1@gl.umbc.edu">Jay Beale</a>


zipcracker-0.1.1.tar.gz
http://packetstorm.securify.com/Crackers/zipcracker-0.1.1.tar.gz
Thu Mar 16 14:50:54 2000
Zipcracker for linux cracks password protected zip archives with brute force. C
hanges: BeoWulf (PVM) support and a Swedish translation.  Homepage <a href="htt
p://zipcracker.sourceforge.net/">here.</a>  By <a href="mailto:jonas_b@bitsmart
.com">Jonas Borgstrom</a>


crypto-gram-0003.txt
http://packetstorm.securify.com/mag/crypto-gram/crypto-gram-0003.txt
Thu Mar 16 14:47:10 2000
CRYPTO-GRAM March 15, 2000.  In this issue: Kerberos and Windows 2000, AES News
, Counterpane Internet Security News, Software as a Burglary Tool, The Doghouse
: The Virginia Legislature, Software Complexity and Security, Comments from Rea
ders.  Homepage <a href="http://www.counterpane.com">here.</a>  By <a href="mai
lto:schneier@counterpane.com">Bruce Schneier</a>


urlsnuff.c
http://packetstorm.securify.com/DoS/urlsnuff.c
Thu Mar 16 14:30:26 2000
Urlsnuff is a urlsniff (By Dug Song - From Dsniff 1.6) dos attack.  If urlsniff
 sees this malformed combination of HTTP Requests.  Homepage <a href="http://ce
lerity.bartoli.org">here</a>  By <a href="mailto:obecian@celerity.bartoli.org">
Obecian</a>


hellkit-1.2.tar.gz
http://packetstorm.securify.com/groups/teso/hellkit-1.2.tar.gz
Thu Mar 16 14:25:57 2000
Hellkit is a shellcode generator.  You write the your shellcode in C, and it ge
ts converted to ASM for use with both heap and stack based overflows.  Many exa
mples included.  Changes: Added generic shellcode decoder which can handle shel
lcode up to 64kb in length containing any bytes, added encoder for this type of
 decoder, and fixed some signedness issues in array accessment.  Homepage <a hr
ef="http://teso.scene.at">here.</a>  By Stealth


adv7.tar.gz
http://packetstorm.securify.com/groups/teso/adv7.tar.gz
Thu Mar 16 14:24:45 2000
TESO Security Advisory - A vulnerability within the kreatecd application for Li
nux has been discovered. An attacker can gain local root-access.  Exploit inclu
ded.  Homepage <a href="http://www.cs.uni-potsdam.de/homepages/students/linuxer
/">here.</a>  By S. Krahmer


adv6.tar.gz
http://packetstorm.securify.com/groups/teso/adv6.tar.gz
Thu Mar 16 14:23:13 2000
TESO Security Advisory - A vulnerability within the imwheel application for Lin
ux has been discovered. Some of these packages are shipped with an suid-root wr
apper-script that invokes the insecure program 'imwheel' with UID 0.  Exploit i
ncluded.  Homepage <a href="http://www.cs.uni-potsdam.de/homepages/students/lin
uxer/">here.</a>  By S. Krahmer


vtun-2.1b3.tar.gz
http://packetstorm.securify.com/UNIX/firewall/vtun/vtun-2.1b3.tar.gz
Mon Mar 13 21:36:34 2000
VTun is the easiest way to create Virtual Tunnels over TCP/IP networks with tra
ffic shaping, compression, and encryption. It is a user space implementation an
d doesn't need modification of any kernel parts. VTun supports IP, PPP, SLIP, E
thernet, and other tunnel types. VTun is easily and highly configurable; it can
 be used for various network tasks like VPN, Mobil IP, Shaped Internet access, 
Ethernet tunnel, IP address saving, etc. Changes: Correct closing of unsuccessf
ully connected sockets, correct handling of single quotes and escaping '\', a l
ocking code rewrite to fix race conditions, initialization fixes, UDP session i
nitialization fixes, support for inetd and TCP wrappers, bug fixes.  Homepage <
a href="http://vtun.sourceforge.net/">here.</a>


etherape-0.2.7.tar.gz
http://packetstorm.securify.com/sniffers/etherape/etherape-0.2.7.tar.gz
Mon Mar 13 16:42:24 2000
Etherape is an etherman clone which displays network activity graphically. Acti
ve hosts are shown as circles of varying size, and traffic among them is shown 
as lines of varying width. It is GNOME and pcap based.  Changes: A fix for SIGS
EGV when a small link times out, node info now pops up and shows Name, IP addre
ss and MAC address again, name is FQDN only in IP and TCP modes, links age the 
moment they are not used, addition of 802.2 and 802.3 to ethernet protocols.  S
creenshots <a href="http://etherape.sourceforge.net/screenshots.html">here.</a>
  Homepage <a href="http://etherape.sourceforge.net/">here.</a> By <a href="mai
lto:toledo@users.sourceforge.net">Juan Toledo</a>


etherape-0.2.10.tgz
http://packetstorm.securify.com/sniffers/etherape/etherape-0.2.10.tgz
Mon Mar 13 16:42:24 2000
Etherape is an etherman clone which displays network activity graphically. Acti
ve hosts are shown as circles of varying size, and traffic among them is shown 
as lines of varying width. It is GNOME and pcap based.  Changes: Much better no
w.  Screenshots <a href="http://etherape.sourceforge.net/screenshots.html">here
.</a>  Homepage <a href="http://etherape.sourceforge.net/">here.</a> By <a href
="mailto:toledo@users.sourceforge.net">Juan Toledo</a>


htdump-0.9t.tar.gz
http://packetstorm.securify.com/web/htdump-0.9t.tar.gz
Mon Mar 13 16:38:00 2000
htdump directs an HTTP query to stdout. It has many options and SSL support, ma
king it a good debugging and learning tool for Web/CGI developers or a powerful
 automation tool.  Homepage <a href="http://arak.cs.hro.nl/~ren/linux/">here.</
a>  By <a href="mailto:ren@arak.cs.hro.nl">Ren Hoek</a>




