Section: .. / advisories / cert /
|
See the CERT website for more information.
|
| /// File Name: |
CA-2002-18.openssh |
Description:
|
CERT Advisory CA-2002-18 - Openssh v2.3.1p1 to 3.3 contains two related vulnerabilities. A vulnerability in the PAM modules that use interactive keyboard authentication (PAMAuthenticationViaKbdInt) can allow remote execution of code. In addition, challenge response configuration option is set to yes and the system is using SKEY or BSD_AUTH, an intruder can execute code remotely.
| | Homepage: | http://www.cert.org | | File Size: | 17273 | | Last Modified: | Jun 29 19:50:09 2002 |
| MD5 Checksum: | 0c96f5bb1420a25e4545fcee7cee3a22 |
|
| /// File Name: |
CA-2002-08.oracle |
Description:
|
CERT Advisory CA-2002-08 - Multiple vulnerabilities have been discovered in Oracle's "Unbreakable" Application server, including buffer overflows, insecure default settings, failures to enforce access controls, and failure to validate input.
| | Homepage: | http://www.cert.org | | File Size: | 17123 | | Last Modified: | Jun 6 07:54:20 2002 |
| MD5 Checksum: | 0f76675f83d91b4badbdb694ba176a47 |
|
| /// File Name: |
CA-97.11.libXt |
Description:
|
This advisory reports a buffer overflow vulnerability in the Xt library of the X Windowing System. Vendor vulnerability and patch information are included.
| | File Size: | 17094 | | Last Modified: | Sep 14 07:49:24 1999 |
| MD5 Checksum: | 3a4279e4f162c827e93903e696e012d1 |
|
| /// File Name: |
CA-2003-06.sip |
Description:
|
CERT Advisory CA-2003-06 - Numerous vulnerabilities have been reported in multiple vendor implementations of the Session Initiation Protocol, or SIP, which may allow an attacker to gain unauthorized privileged access, cause denial-of-service attacks, or cause unstable system behavior.
| | Homepage: | http://www.cert.org | | File Size: | 16973 | | Last Modified: | Feb 21 18:04:53 2003 |
| MD5 Checksum: | 967409fbce6d95e1ba77b3f2800714d8 |
|
| /// File Name: |
CA-99-15.rsaref |
Description:
|
Some versions of sshd1 are vulnerable to a remote buffer overflow, which can be combined with the RSAREF2 overflow, to execute arbitrary code remotely as root. Only versions of SSH compiled with RSAREF support, via the --with-rsaref option, are vulnerable to these issues. Other RSAREF2 applications are affected.
| | File Size: | 16834 | | Last Modified: | Dec 14 22:41:59 1999 |
| MD5 Checksum: | 020f4afbf4b1dc3e46bc6a7a6296281b |
|
| /// File Name: |
CA-97.14.metamail |
Description:
|
This advisory reports a vulnerability in metamail, a package that implements MIME. All versions of metamail through 2.7 are vulnerable.
| | File Size: | 16489 | | Last Modified: | Sep 14 07:49:27 1999 |
| MD5 Checksum: | 5c1d19788a50977d4215a1bdb7660951 |
|
| /// File Name: |
CA-95:06.satan |
Description:
|
An overview of the Security Administrator Tool for Analyzing Networks (SATAN) based on the CERT staff's review of beta version 0.51. Includes list of vulnerabilities probed and advice on securing systems.
| | File Size: | 16156 | | Last Modified: | Sep 14 07:48:12 1999 |
| MD5 Checksum: | 1bb58a38e81fa46cce5931a7388bfd6f |
|
| /// File Name: |
CA-93:14.Internet.Security.Scanner |
Description:
|
This advisory alerts Internet sites to a new software tool that is widely available. The advisory describes vulnerabilities probed by the Internet Security Scanner (ISS) software.
| | File Size: | 16137 | | Last Modified: | Sep 14 07:47:36 1999 |
| MD5 Checksum: | 93adaffbce00482e7dcdc9c555938107 |
|
| /// File Name: |
CA-2002-07.zlib |
Description:
|
CERT Advisory CA-2002-07 - A bug in the zlib compression library prior to v1.1.4 manifests itself as a vulnerability in any of the many programs that are linked with zlib, and allows an attackers to mount a dos attack, gather info, or execute arbitrary code. Passing a specially-crafted block of invalid compressed data to a program that includes zlib, the program's attempt to decompress the crafted data can cause the zlib routines to corrupt the internal data structures. Fix available here. A list of over 500 applications, including ssh and openssh, linked to zlib is here.
| | Homepage: | http://www.cert.org | | File Size: | 15969 | | Last Modified: | Mar 13 05:37:32 2002 |
| MD5 Checksum: | 1a332cb92b45067adbc3e8f20fcee995 |
|
| /// File Name: |
CA-95:10.ghostscript |
Description:
|
This advisory describes a vulnerability involving the -dSAFER option in ghostscript versions 2.6 through 3.22 beta. The advisory includes instructions for fixing the problem and pointers to version 3.33 of ghostscript.
| | File Size: | 15940 | | Last Modified: | Sep 14 07:48:34 1999 |
| MD5 Checksum: | fd4023068d8fe25142b6ca2995ddba00 |
|
| /// File Name: |
CA-2000-04.loveletter |
Description:
|
CA-2000-04 - The "Love Letter" worm is a malicious VBScript program which spreads in a variety of ways. As of 2:00pm EDT(GMT-4) May 4, 2000 -- the CERT Coordination Center has received reports from more than 250 individual sites indicating more than 300,000 individual systems are affected.
| | Author: | CERT | | Homepage: | http://www.cert.org/ | | File Size: | 15792 | | Last Modified: | May 5 21:00:07 2000 |
| MD5 Checksum: | 332a85ab02b9d095ef94ee3d81982c28 |
|
| /// File Name: |
CA-99-06-explorezip.txt |
Description:
|
This advisory discusses a malicious Trojan Horse.
| | File Size: | 15766 | | Last Modified: | Sep 14 07:50:11 1999 |
| MD5 Checksum: | ceab4f2d37518ac9edcdfa7b2edab491 |
|
| /// File Name: |
CA-98.09.imapd |
Description:
|
This advisory reports a buffer overflow in some implementations of IMAP servers.
| | File Size: | 15461 | | Last Modified: | Sep 14 07:50:02 1999 |
| MD5 Checksum: | 7ec5271a95dbb46b5ae1d95be242e1c7 |
|
| /// File Name: |
CA-97.22.bind |
Description:
|
** This advisory supersedes CA-96.02 ** It describes a vulnerability in all versions of BIND before release 4.9.6, suggests several solutions, and provides pointers to the current version of bind.
| | File Size: | 15425 | | Last Modified: | Sep 14 07:49:42 1999 |
| MD5 Checksum: | e5aa2f1ac093fd0fffd1967d02c28331 |
|
| /// File Name: |
CA-2002-31.bind |
Description:
|
CERT Advisory CA-2002-31 - BIND 8 has vulnerabilities that may allow remote attackers to execute arbitrary code with the privileges of the user running named which is usually root, or with the privileges of vulnerable client applications. The other vulnerabilities will allow remote attackers to disrupt the normal operation of DNS name service running on victim servers.
| | Homepage: | http://www.cert.org/ | | File Size: | 15378 | | Last Modified: | Nov 15 09:21:15 2002 |
| MD5 Checksum: | 7911dbfee02e3e41e0f329b0d8fdff46 |
|
| /// File Name: |
CA-2001-08.alcatel.dsl |
Description:
|
CERT Advisory CA-2001-08 - The Alcatel Speed Touch Asymmetric Digital Subscriber Line (ADSL) modem has weak authentication and access control policies, allowing remote attackers to do many things, including unauthorized access, unauthorized monitoring, information leakage, denial of service, and permanent disability of affected devices. More information available here.
| | Homepage: | http://www.cert.org | | File Size: | 15349 | | Last Modified: | Apr 13 03:11:35 2001 |
| MD5 Checksum: | aa381a887611f71ae36122cb18d735be |
|
| /// File Name: |
CA-95:07a.REVISED.satan.vul |
Description:
|
** This advisory replaces CA-95:07.** It is a revision that provides new information the problem described in CA-95:07, and includes precautions to take when running SATAN. A tutorial by the SATAN authors, "SATAN Password Disclosure" is appended to the advisory.
| | File Size: | 14979 | | Last Modified: | Sep 14 07:48:13 1999 |
| MD5 Checksum: | c3b643701b8842ae4102585860474562 |
|
| /// File Name: |
CA-2000-13.ftpd |
Description:
|
CERT Advisory CA-2000-13 Two Input Validation vulnerabilities in FTPD. Wu-Ftpd 2.6.0 has a site exec vulnerability, and BSD ftpd vulnerability involving a missing character-formatting argument in setproctitle(). Both of these can be exploited by remote attackers to gain root access.
| | Homepage: | http://www.cert.org | | File Size: | 14969 | | Last Modified: | Jul 7 23:14:39 2000 |
| MD5 Checksum: | afa5867a879e3daf0ec835e9e1241e84 |
|
| /// File Name: |
CA-96.10.nis+_configuration |
Description:
|
This advisory was originally released as AUSCERT advisory AA-96.02a. It describes a vulnerability and workarounds for versions of NIS+ in which the access rights on the NIS+ passwd table are left in an unsecure state.
| | File Size: | 14851 | | Last Modified: | Sep 14 07:48:51 1999 |
| MD5 Checksum: | fd10eb63eb797fe3f5352e55ef3c65d5 |
|
| /// File Name: |
CA-95:03a.telnet.encryption.vulnera..> |
Description:
|
** This advisory supersedes CA-95:03. ** Description and patch information for a security problem in the Berkeley Telnet clients that support encryption and Kerberos V4 authentication. It provides additional information.
| | File Size: | 14466 | | Last Modified: | Sep 14 07:48:09 1999 |
| MD5 Checksum: | ac934c64565e33ccc82a2d351435ebbf |
|
| /// File Name: |
CA-2002-26.tooltalk |
Description:
|
CERT Advisory CA-2002-26 - The Common Desktop Environment (CDE) ToolTalk RPC database server contains a heap overflow vulnerability that could allows remote attackers to execute arbitrary code.
| | Homepage: | http://www.cert.org | | File Size: | 14456 | | Related CVE(s): | CAN-2002-0679 | | Last Modified: | Aug 13 08:33:39 2002 |
| MD5 Checksum: | 82c668c15b22cbde6c13d68197828cdc |
|
| /// File Name: |
CA-2002-25.xdr |
Description:
|
CERT Advisory CA-2002-25 - The Sun Microsystems XDR library contains overflows which lead to exploitable vulnerabilities in many applications. The xdr_array() function commonly used in RPC calls is the source of the vulnerabilities. Specific impacts reported include the ability to execute arbitrary code with root privileges (by exploiting dmispd, rpc.cmsd, or kadmind, for example). In addition, intruders who exploit the XDR overflow in MIT KRB5 kadmind may be able to gain control of a Key Distribution Center (KDC) and improperly authenticate to other services within a trusted Kerberos realm.
| | Homepage: | http://www.cert.org | | File Size: | 14450 | | Related CVE(s): | CAN-2002-0391 | | Last Modified: | Aug 6 08:09:27 2002 |
| MD5 Checksum: | bf6565a3708b0fc74081256d5054d6dd |
|
| /// File Name: |
CA-2003-10.rpcxdr |
Description:
|
CERT Advisory CA-2003-10 - A buffer overflow vulnerability in SunRPC-derived XDR libraries causes several applications which use the rpcbind service to allow execution of arbitrary code or disclosure of sensitive information. In addition, intruders may be able to crash the MIT KRB5 kadmind or cause it to leak sensitive information, such as secret keys. Vulnerable code includes GNU Glibc 2.3.1 and below, Solaris 2.6, 7, 8 and 9, AIX 4.3.3 through 5.2.0, and MIT Kerberos vulnerabilities.
| | Homepage: | http://www.cert.org | | File Size: | 14357 | | Last Modified: | Mar 25 05:47:53 2003 |
| MD5 Checksum: | a1dc824b3db44b8751af7ba3c83beb73 |
|
| /// File Name: |
CA-98.07.PKCS |
Description:
|
The advisory describes a vulnerability in PKCS#1, which allows an intruder to recover the encrypted information from an SSL-protected web-session.
| | File Size: | 14153 | | Last Modified: | Sep 14 07:49:58 1999 |
| MD5 Checksum: | 4807dfeaee12fa391a6e2bec3891f15b |
|
| /// File Name: |
CA-97.28.Teardrop_Land |
Description:
|
This advisory reports on two IP Denial-of-Service attacks.
| | File Size: | 13938 | | Last Modified: | Sep 14 07:49:50 1999 |
| MD5 Checksum: | 83b0888f397aad90538de341288fbd25 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
