Section: .. / advisories / cert /
|
See the CERT website for more information.
|
| /// File Name: |
01-README |
Description:
|
This file.
| | File Size: | 51626 | | Last Modified: | Sep 16 21:12:15 1999 |
| MD5 Checksum: | 1c4c2e4f6920afc609e9d6c1a8da3e2b |
|
| /// Directory: |
/ bulletins / |
Description:
|
Unavailable.
| | Total Files: | 69 | | Last Modified: | Sep 14 08:51:04 2004 |
|
| /// File Name: |
CA-2000-01.distributed |
Description:
|
CERT Advisory CA-2000-01 - Denial-of-Service Developments. A distributed denial-of-service tool called "Stacheldraht" has been discovered on multiple compromised hosts at several organizations. X-Force released a paper on trin00 and TFN. CERT DoS homepage here.
| | File Size: | 9319 | | Last Modified: | Jan 4 09:19:35 2000 |
| MD5 Checksum: | da7ed5f5bf820da50da365eabdaecace |
|
| /// File Name: |
CA-2000-02.htmltags |
Description:
|
CERT Advisory CA-2000-02 - Malicious HTML Tags Embedded in Client Web Requests. A web site may inadvertently include malicious HTML tags or script in a dynamically generated page based on unvalidated input from untrustworthy sources. Users may unintentionally execute scripts written by an attacker when they follow untrusted links in web pages, mail messages, or newsgroup postings.
| | File Size: | 18957 | | Last Modified: | Feb 3 21:26:26 2000 |
| MD5 Checksum: | 1e798bbe7bbbc42c9608ea1f03b49483 |
|
| /// File Name: |
CA-2000-03.dns |
Description:
|
CERT Advisory CA-2000-03 - Continuing Compromises of DNS servers. Many systems are vulnerable to remote root bind bugs which are increasingly being exploited. A significant number of delegates DNS servers in the in-addr.arpa tree are running outdated version of DNS software as well. CERT
| | Homepage: | http://www.cert.org | | File Size: | 7898 | | Last Modified: | Apr 27 03:01:29 2000 |
| MD5 Checksum: | 32549c6a877570f9948d9f777077df64 |
|
| /// File Name: |
CA-2000-04.loveletter |
Description:
|
CA-2000-04 - The "Love Letter" worm is a malicious VBScript program which spreads in a variety of ways. As of 2:00pm EDT(GMT-4) May 4, 2000 -- the CERT Coordination Center has received reports from more than 250 individual sites indicating more than 300,000 individual systems are affected.
| | Author: | CERT | | Homepage: | http://www.cert.org/ | | File Size: | 15792 | | Last Modified: | May 5 21:00:07 2000 |
| MD5 Checksum: | 332a85ab02b9d095ef94ee3d81982c28 |
|
| /// File Name: |
CA-2000-05.dns |
Description:
|
There are continuing compromises of machines running the Domain Name System (DNS) server software that is part of BIND ("named"), including compromises of machines that are not being used as DNS Servers.
| | Homepage: | http://www.ciac.org/ciac/bulletins/k-036.shtml | | File Size: | 10978 | | Last Modified: | May 2 23:01:30 2000 |
| MD5 Checksum: | 9fc310fe57b28cf58bcd938e7be80ccd |
|
| /// File Name: |
CA-2000-05.netscape |
Description:
|
CERT Advisory CA-2000-05 - Netscape Navigator Improperly Validates SSL Sessions. ACROS advisory included with exploit details and information. All systems running Netscape Navigator 4.72, 4.61, and 4.07 are affected.
| | Homepage: | http://www.cert.org/ | | File Size: | 23233 | | Last Modified: | May 13 04:41:17 2000 |
| MD5 Checksum: | 04fa21f7914d9e4710a5484e5b6688c4 |
|
| /// File Name: |
CA-2000-06.kerberos |
Description:
|
CERT Advisory CA-2000-06 - Multiple Buffer Overflows in MIT Kerberos Authenticated Services. Several buffer overflow vulnerabilities exist in the Kerberos authentication software version 4, including implementations included for backwards compatibility in Kerberos 5 implementations. The most severe vulnerability allows remote intruders to gain root privileges on systems running services using Kerberos authentication. If vulnerable services are enabled on the Key Distribution Center (KDC) system, the entire Kerberos domain may be compromised. All known Kerberos 4 implementations derived from MIT sources are believed to be vulnerable. krshd has a remote root vulnerability and v4rcp and ksu have local vulnerabilities. MIT Kerberos team advisory here.
| | File Size: | 19175 | | Last Modified: | May 18 10:55:41 2000 |
| MD5 Checksum: | 6bf467d452adbcdbdb58fa9d7c7f5a0e |
|
| /// File Name: |
CA-2000-07.ua.activex |
Description:
|
CERT Advisory CA-2000-07 - Severe Microsoft Office 2000 UA ActiveX Control Vulnerability. Arbitrary code can be executed without any warnings by simply viewing an HTML document via a web page, newsgroup posting, or email message. Systems with Internet Explorer and Microsoft Office 2000 components are vulnerable, including Word 2000, Excel 2000, PowerPoint 2000, Access 2000, Photodraw 2000, FrontPage 2000, Project 2000, Outlook 2000, Publisher 2000, and Works 2000 Suite.
| | Homepage: | http://www.cert.org | | File Size: | 12738 | | Last Modified: | May 25 03:28:41 2000 |
| MD5 Checksum: | 740d01f4d5a95b7e71cc0a08f2958086 |
|
| /// File Name: |
CA-2000-08.netscape |
Description:
|
CERT Advisory CA-2000-08 - Inconsistent Warning Messages in Netscape Navigator. A flaw exists in Netscape Navigator that could allow an attacker to masquerade as a legitimate web site if the attacker can compromise the validity of certain DNS information. Within one Netscape session, if a user clicks on "continue" in response to a "hostname does not match name in certificate" error, then that certificate is incorrectly validated for future use in the Netscape session, regardless of the hostname or IP address of other servers that use the certificate.
| | Homepage: | http://www.cert.org | | File Size: | 12566 | | Last Modified: | May 26 23:28:40 2000 |
| MD5 Checksum: | 4156df58e4f9c04a2d7e7b7f304881a2 |
|
| /// File Name: |
CA-2000-09.pgp |
Description:
|
CERT Advisory CA-2000-09 - Flaw in PGP 5.0 Key Generation. UNIX systems having a /dev/random device running any version of PGP 5.0 are affected. When keys are generated non-interactively and without user-added randomness, on some systems PGP v5.0 generates keys that are not random enough, allowing an attacker to predict keys and therefore recover information encrypted with that key. Additionally, an attacker may be able to forge a digital signature corresponding to a vulnerable key. CERT homepage here.
| | File Size: | 11133 | | Last Modified: | May 31 06:29:20 2000 |
| MD5 Checksum: | 8429f133ed63058392165435c075a58c |
|
| /// File Name: |
CA-2000-10.ie |
Description:
|
CERT Advisory CA-2000-10 - Several flaws exist in Microsoft Internet Explorer that could allow an attacker to masquerade as a legitimate web site if the attacker can compromise the validity of certain DNS information. These problems are different from the problems reported in CERT Advisory CA-2000-05 and CERT Advisory CA-2000-08, but they have a similar impact.
| | Homepage: | http://www.cert.org | | File Size: | 10038 | | Last Modified: | Jun 6 23:30:05 2000 |
| MD5 Checksum: | 998d54720cafa23578e89d1b913a1445 |
|
| /// File Name: |
CA-2000-11.kerberos |
Description:
|
CERT Advisory CA-2000-11 - MIT Kerberos vulnerable to denial-of-service attacks. Several new buffer overflow vulnerabilities were found in Kerberos 4, Kerberos 5 with v4 support, KerbNet, and Cygnus Kerberos. Due to the use of static buffers, these vulnerabilities do not allow remote execution of arbitrary code.
| | Homepage: | http://www.cert.org | | File Size: | 9355 | | Last Modified: | Jun 12 18:07:45 2000 |
| MD5 Checksum: | 1e504f377be057c78ce8d432d3fced78 |
|
| /// File Name: |
CA-2000-12.activex |
Description:
|
CERT Advisory CA-2000-12 - HHCtrl ActiveX Control allows local files to be executed. The HHCtrl ActiveX control has a serious vulnerability that allows remote intruders to execute arbitrary code, if the intruder can cause a compiled help file (CHM) to be stored "locally." Microsoft has released a security bulletin and a patch for this vulnerability, but the patch does not address all circumstances under which the vulnerability can be exploited. This document discusses additional ways in which this vulnerability can be exploited.
| | Homepage: | http://www.cert.org | | File Size: | 25732 | | Last Modified: | Jun 20 22:33:08 2000 |
| MD5 Checksum: | 4460438001a408f57e48c9f6af7b8b30 |
|
| /// File Name: |
CA-2000-13.ftpd |
Description:
|
CERT Advisory CA-2000-13 Two Input Validation vulnerabilities in FTPD. Wu-Ftpd 2.6.0 has a site exec vulnerability, and BSD ftpd vulnerability involving a missing character-formatting argument in setproctitle(). Both of these can be exploited by remote attackers to gain root access.
| | Homepage: | http://www.cert.org | | File Size: | 14969 | | Last Modified: | Jul 7 23:14:39 2000 |
| MD5 Checksum: | afa5867a879e3daf0ec835e9e1241e84 |
|
| /// File Name: |
CA-2000-14.outlookcache |
Description:
|
CERT Advisory CA-2000-14 - Microsoft Outlook and Outlook Express Cache Bypass vulnerability allows an attacker to use an HTML-formatted message to read certain types of files on the victim's machine. In addition, because this vulnerability also allows the attacker to store files on the victim's machine, it can be used in conjunction with existing vulnerabilities to execute arbitrary code on the target system.
| | Homepage: | http://www.cert.org | | File Size: | 5770 | | Last Modified: | Jul 27 02:40:18 2000 |
| MD5 Checksum: | 7ca5506752c407cdefdd08cbc5e7ab29 |
|
| /// File Name: |
CA-2000-15.netscape |
Description:
|
CERT Advisory CA-2000-15 - Systems running Netscape Communicator version 4.04 through 4.74 with Java enabled ship with Java classes that allow an unsigned Java applet to access local and remote resources in violation of the security policies for applets.
| | Homepage: | http://www.cert.org | | File Size: | 9477 | | Last Modified: | Aug 11 03:29:12 2000 |
| MD5 Checksum: | a3ff2b199bbc69101c3f98c4bc81dcf7 |
|
| /// File Name: |
CA-2000-16.ie |
Description:
|
CERT Advisory CA-2000-16 - Internet Explorer can open Microsoft Access database or project files containing malicious code and execute the code without giving a user prior warning. Access files that are referenced by OBJECT tags in HTML documents can allow attackers to execute arbitrary commands using Visual Basic for Applications (VBA) or macros. A remote intruder can send malicious HTML via an email message, newsgroup posting, or downloaded Web page and may be able to execute arbitrary code on a victim machine.
| | Homepage: | http://www.cert.org | | File Size: | 10726 | | Last Modified: | Aug 12 01:24:28 2000 |
| MD5 Checksum: | 60c8a5ded6fbc559e74931a39ff620ac |
|
| /// File Name: |
CA-2000-17.rpc.statd |
Description:
|
Cert Advisory CA-2000-17 - There is an input validation vulnerability in rpc.statd where the program passes user-supplied data to the syslog() function as a format string. Exploit allows user to execute arbitrary commands with the priviledges of the rpc.statd process, typically root.
| | Homepage: | http://www.cert.org | | File Size: | 7594 | | Last Modified: | Aug 21 21:44:26 2000 |
| MD5 Checksum: | 1809cac4740e7151a10387d86aaf37e1 |
|
| /// File Name: |
CA-2000-18.PGP |
Description:
|
There is a serious problem in the handling of certificates when encrypting with PGP versions 5.5.x through 6.5.3. The vulnerability lies within PGP's handling of Additional Decryption Keys (ADK) allowing a malicious user to insert an additional public key into the unsigned part of the user's public key-certificate. The malicious user may then be able to recover the plaintext of any encrypted text sent to the victim using the altered certificate.
| | Homepage: | http://www.cert.org | | File Size: | 12832 | | Last Modified: | Aug 25 18:17:34 2000 |
| MD5 Checksum: | a893bf7bbb7dfabcdccf6b67cda14bcc |
|
| /// File Name: |
CA-2000-20.bind |
Description:
|
CERT Advisory CA-2000-20 - Name servers running ISC bind v8.2 through 8.2.2-P6 contains two denial of service vulnerabilities. The first vulnerability is referred to by the ISC as the "zxfr bug" and affects ISC BIND version 8.2.2, patch levels 1 through 6. The second vulnerability, the "srv bug", affects ISC BIND versions 8.2 through 8.2.2-P6. More information about these vulnerabilities available here.
| | Homepage: | http://www.cert.org | | File Size: | 11495 | | Last Modified: | Nov 14 03:32:39 2000 |
| MD5 Checksum: | fc3ac876330d29b24b986176e0d22625 |
|
| /// File Name: |
CA-2000-21.naptha |
Description:
|
CERT Advisory CA-2000-21 Denial-of-Service Vulnerabilities in TCP/IP Stacks. A variety of denial-of-service vulnerabilities has been explored and documented by BindView's RAZOR Security Team. These vulnerabilities allow attackers to consume limited resources on victim machines. BindView's RAZOR Security Team has referred to these vulnerabilities as Naptha vulnerabilities.
| | Homepage: | http://www.cert.org | | File Size: | 13634 | | Last Modified: | Dec 6 00:28:44 2000 |
| MD5 Checksum: | 41ac0c93a5aefbb69e2d123ae5c3f22b |
|
| /// File Name: |
CA-2000-22.lprng |
Description:
|
CERT Advisory CA-2000-22 - Input Validation Problems in LPRng. A popular replacement software package to the BSD lpd printing service called LPRng contains at least one format string vulnerability in the syslog() function, which allows remote users with access to TCP port 515 to execute arbitrary code on vulnerable systems as root. Fix available here.
| | Homepage: | http://www.cert.org | | File Size: | 9251 | | Last Modified: | Dec 15 04:09:32 2000 |
| MD5 Checksum: | f66eaa57326f7eec805db9c183469a6f |
|
| /// File Name: |
CA-2001-02.bind |
Description:
|
CERT Advisory CA-2001-02 - Multiple Vulnerabilities in BIND. Remote bugs have been found in v4.9.x prior to v4.9.8 and v8.2.x prior to v8.2.3 which allow remote attackers to run code as root.
| | Homepage: | http://www.cert.org | | File Size: | 20171 | | Last Modified: | Feb 1 00:26:50 2001 |
| MD5 Checksum: | 2c68dc20f41e984653e136302fc8cebd |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
