SecurityNews Archive

From SecurityForest

Loni 11:41, 7 Oct 2005 (EDT)

Image:Icon_news.png

OSsurance Software Found to Secure Firefox Before Patches Available (http://ca.prweb.com/releases/2005/5/prweb239525.htm)
Ossecurity 14:55, 13 July 2005 (EST)
What would happen if a developer were to combine buffer overflow protection, a whitelist approach to running only authorized software, and the halt of injected dlls? Nothing. Nothing unwanted, that is. Tested at http://kareldjag.over-blog.com/article-498061.html, OSsurance Desktop 4.0 takes a serious stab at securing Windows.

Image:Icon_news.png

Symantec Research Labs Creates New Worm Simulator (http://enterprisesecurity.symantec.com/content.cfm?articleid=5479)
Loni 06:52, 15 May 2005 (EDT)
When a new worm spreads around the world, people want to know if they are protected. How fast is it? How does it spread? A new simulation program developed by Symantec Research Labs not only has the answers, it also provides pictures. (A download is available of the Worm Simulator and its documentation).

Image:Icon_leaf.png

New Mini Challenge 01 is out
Loni 09:57, 24 Apr 2005 (EDT)
Check out the new mini challenge...

Image:Icon_idea.png

Behind-the-scenes look at google technology - video presentation (http://www.uwtv.org/programs/displayevent.asp?rid=2459)
Loni 04:54, 5 Apr 2005 (EDT)
Search is one of the most important applications used on the internet and poses some of the most interesting challenges in computer science. Providing high-quality search requires understanding across a wide range of computer science disciplines. In this program, Jeff Dean of Google describes some of these challenges, discusses applications Google has developed, and highlights systems they've built, including GFS, a large-scale distributed file system, and MapReduce, a library for automatic parallelization and distribution of large-scale computation. He also shares some interesting observations derived from Google's web data.

Image:Icon_tree.png

Site software update
 Loni 20:22, 31 Mar 2005 (EST)
You might notice the site is looking abit different and might be acting weird. This is because I have just updated the site software and the old version config files are not compatible with the new versions. I hope to get on top of the situation and get the site back to normal operations asap. In the meantime, the links in the left toolbar are available here:
ExploitTree, ToolTree, EducationTree, LinkTree, BookTree, GreenHouse, Todo List
Loni 21:37, 31 Mar 2005 (EST)
Looks like everything is working, if someone comes across a bug or something, leave me a msg on the discussion page.

Image:Icon_tool.png

SecurityForest Exploitation Framework Beta has been released!
 Loni 15:10, 17 Mar 2005 (EST)
SecurityForest's Exploitation Framework is similar in concept to the open-source Metasploit Framework (http://www.metasploit.com) and the commercial offerings such as Immunity's CANVAS (http://www.immunitysec.com) and Core Security Technology's Impact (http://www.corest.com). The major difference between the above mentioned frameworks and the SecurityForest Exploitation Framework is that it leverages the massive amount of exploits available in the ExploitTree.

Image:Icon_tool.png

MS Visio 2003 Connector for the MBSA (http://www.microsoft.com/technet/security/tools/mbsavisio.mspx)
Loni 09:58, 9 Mar 2005 (EST)
Microsoft Office Visio 2003 Connector for the Microsoft Baseline Security Analyzer (MBSA).Securing your network has just gotten easier. The Visio Connector for MBSA lets you view the results of a Microsoft Baseline Security Analyzer scan in a clear, comprehensive Microsoft Office Visio 2003 network diagram. You must have both Visio 2003 and the Microsoft Baseline Security Analyzer — a free security tool from Microsoft — for this connector to function.

Image:Icon_news.png

Windows Server 2003 and XP SP2 LAND attack vulnerability (http://seclists.org/lists/bugtraq/2005/Mar/0112.html)
ports 18:51, 8 Mar 2005 (EST)
Windows Server 2003 and XP SP2 LAND attack vulnerability. As you might read in Windows Server 2003 and XP SP2 LAND attack vulnerability (http://seclists.org/lists/bugtraq/2005/Mar/0112.html) Dejan Levaja discovered a bug in Windows XP with SP2 and Windows 2003 which was already fixed about 8 years ago. We tested this bug with a Windows XP Pro SP2 machine and were able to raise the cpu utilization to 100%.

Image:Icon_idea.png

Building Your Own PBX with Asterisk (http://techdatapros.com/asterisk/)
Loni 06:12, 7 Mar 2005 (EST)
What would it mean to you to have your own full-featured PBX system at your home or small office? What would it mean to you if you could build an entire PBX system (minus the phones) on hardware you probably have laying around, AND that it can probably also save you money on your phone bill? Sounds too hard to believe doesn't it, but using old hardware and some open source software, you really can build a commercial quality phone system that would normally cost thousands of dollars.

Image:Icon_tool.png

New Bot Section in the ToolTree
Loni 20:22, 3 Mar 2005 (EST)
A new section in the ToolTree under Maintaining Access that includes just less than 200 bots is now online. The branch includes these sections: DSNX Bot Section, Evil Bot Section, GT Bot Section, SD Bot Section, Spy Bot Section, TK Bot Section and LOTS more. As always, this section is for educational purposes only. If you know of other bots that do not appear in the "bot branch", please update the list.

Image:Icon_news.png

SHA-1 has been broken (http://www.schneier.com/blog/archives/2005/02/sha1_broken.html)
Loni 08:04, 16 Feb 2005 (EST)
Bruce Schneier announced on his blog that "SHA-1 has been broken. Not a reduced-round version. Not a simplified version. The real thing. The research team of Xiaoyun Wang, Yiqun Lisa Yin, and Hongbo Yu (mostly from Shandong University in China) have been quietly circulating a paper announcing their results..." Schneier also writes that "The paper isn't generally available yet. At this point I can't tell if the attack is real, but the paper looks good and this is a reputable research team."

Image:Icon_exploit.png

ExploitTree v.2 has been released!
Loni 23:48, 12 Feb 2005 (EST)
Originally, the ExploitTree (v1) could be updated by all registered members. After recieving alot of uncertainty about the contents of the ExploitTree due to the openess, it has been decided that only a few trusted members will have access to update the ExploitTree. ExploitTree (v2) includes all exploits from v1, the ExploitTree_Update_Phase_1, some private stashes, some compiled exploits for use with the Exploitation Framework and is more categorized and organized than ever before. It is also now open for read-only anonymous access.

Image:Icon_news.png

FBI shuts down public e-mail system (http://www.cnn.com/2005/TECH/02/04/fbi.email.ap/index.html)
Loni 20:22, 9 Feb 2005 (EST)
WASHINGTON (AP) -- The FBI said Friday it has shut down an e-mail system that it uses to communicate with the public because of a possible security breach.


Image:Icon_exploit.png

SecurityForest Exploitation Framework soon to be released!
Loni 07:10, 6 Feb 2005 (EST)
The SecurityForest Exploitation Framework leverages off the massive amount of exploits available in the ExploitTree and sort of acts as its Graphical User Interface. It's database is updated when the ExploitTree is sync'ed.
Screenshots and demo movies are available.

Loni 20:33, 3 Mar 2005 (EST)

Image:Icon_tree.png

SecurityForest.com has moved servers
Loni 14:07, 5 Feb 2005 (EST)
If you find any problems with the new server, please report them to loni@securityforest.com (mailto:loni@securityforest.com) so they may be fixed.

Image:Icon_news.png

English-language version of K-OTik.COM launched (http://www.k-otik.com/english/)
ports 16:47, 25 Jan 2005 (IST)
Today K-OTik launched the english-language version of their security and vulnerability monitoring portal K-OTik.COM (http://www.k-otik.com/english). English advisories (http://www.k-otik.com/english/alladvisories.php) and alerts are now available through email (http://www.k-otik.com/english/mailing), Web Site (http://www.k-otik.com/english), and RSS/XML (http://www.k-otik.com/advisorieseng.xml) feeds.

Image:Icon_news.png

Phrack - Final call for papers (http://www.phrack.org/)
Blad3 12:46, 22 Jan 2005 (IST)
"...a glorious era comes to an end. #63 will be our last PHRACK RELEASE -- EVER..."
Since 1985, PHRACK MAGAZINE has been providing the hacker community with information on operating systems, network technologies and telephony, as well as relaying features of interest for the international computer underground. PHRACK MAGAZINE is made available to the public, as often as possible, free of charge.

Image:Icon_tree.png

ExploitTree_Update_Phase_1 is now complete!
Loni 05:40, 18 Jan 2005 (IST)
The ExploitTree CVS has been made Read-Only while we sort, clean and update the scheme. Due to this, if you attempt to update the repository, you will recieve the following error: cvs [server aborted]: "add" requires write access to the repository Please Note: You can still download the repository. Special thanks to all those who contributed to the update, especially to Laramies.

Image:Icon_news.png

FBI Retires Carnivore (http://www.theregister.co.uk/2005/01/15/fbi_retires_carnivore/)
Loni 03:03, 16 Jan 2005 (IST)
FBI surveillance experts have put their once-controversial Carnivore Internet surveillance tool out to pasture, preferring instead to use commercial products to eavesdrop on network traffic, according to documents released Friday.

Image:Icon_news.png

GMail Messages are Vulnerable to Interception (http://dump.hbx.us/gmail_bug_hack/)
Blad3 21:14, 12 Jan 2005 (IST)
"MrYowler opened up his mailbox, and noticed the email had arrived just fine. He clicked on the subject line, and as expected, the message showed correctly. However, when he clicked the "Show options" link, the "Reply To" field in the email header that GMail displayed contained what appeared to be HTML code! Upon further inspection, we realized that it was the message body of another person's HTML-formatted email message."

Image:Icon_tool.png

Metasploit Framework version 2.3 has been released (http://metasploit.com/projects/Framework/downloads.html)
Loni 02:22, 12 Jan 2005 (IST)
After nearly five months of development, version 2.3 of the Metasploit Framework has been released. Version 2.3 includes a dozen new exploits (http://metasploit.com/projects/Framework/exploits.html), new and improved payloads (http://metasploit.com/shellcode.html), a new msfweb interface (http://metasploit.com:55555/), the Meterpreter (http://metasploit.com/projects/Framework/docs/meterpreter.pdf), and many speed and functionality enhancements. Please see the release notes (http://metasploit.com/projects/Framework/docs/RELEASE_2.3.txt) for more information. Additionally, the Opcode Database has been refactored (http://metasploit.com/opcode_beta.html) and is currently in beta mode (http://metasploit.com/users/opcode/msfopcode.cgi).

Image:Icon_exploit.png

Microsoft Windows LPC heap overflow (http://www.appsecinc.com/resources/alerts/general/07-0001.html),
Microsoft Windows Improper Token Validation (http://www.appsecinc.com/resources/alerts/general/06-0001.html)
Loni 06:15, 11 Jan 2005 (IST)
2 local privilege elevation vulnerabilities exists on the Windows operating systems. These vulnerabilities allow any user to take complete control over the system and affects Windows NT, Windows 2000, Windows XP, and Windows 2003 (all service packs). The vulnerabilities were discovered and researched by Cesar Cerrudo.
A POC exploit (Windows Improper Token Validation) is available in the ExploitTree: system\microsoft\local\ImperExploit.cpp - c0ded by Cesar Cerrudo.

Image:Icon_news.png

Metasploit Framework Version 2.3 is almost ready for release (http://www.metasploit.com/)
Loni 03:04, 11 Jan 2005 (IST)
Version 2.3 of the Metasploit Framework is almost ready for release. The new msfweb interface is online (http://metasploit.com:55555/) and ready for demonstrations. It looks great and has alot more exploits, payloads, features and more...Screen shots (http://metasploit.com/projects/Framework/screenshots.html) are available of version 2.3. Credits to HD Moore and the rest of the great c0ders (http://www.metasploit.com/projects/Framework/modules/exploits/Credits.pm) who made this project possible.

Image:Icon_news.png

Google exposes web surveillance cams (http://www.theregister.co.uk/2005/01/08/web_surveillance_cams_open_to_all/)
Loni 13:08, 11 Jan 2005 (IST)
Blogs and message forums buzzed this week with the discovery that a pair of simple Google searches permits access to well over 1,000 unprotected surveillance cameras around the world - apparently without their owners' knowledge. Searching on certain strings within a URL sniffs out networked cameras that have Web interfaces permitting their owners to view them remotely, and even direct the cameras' motorized pan-and-tilt mechanisms from the comfort of their own desktop.

Loni 04:15, 2 Feb 2005 (IST)

Image:Icon_tree.png

SecurityForest New Design
Loni 23:38, 10 Jan 2005 (IST)
The Main_Page of SecurityForest has a new design. What do you think? Post your comments on the Discussion page. The old design is here for archive purposes.

Image:Icon_exploit.png

A couple of new vulnerabilities worth noting...
Loni 23:28, 10 Jan 2005 (IST)
Linux Kernel 2.4.x / 2.6.x uselib() Local Privilege Escalation Exploit (http://www.k-otik.com/exploits/20050107.elflbl.c.php)
Mozilla / Mozilla Firefox Download Dialog Source Spoofing (http://secunia.com/secunia_research/2004-15/advisory/)
Secunia announced PoC for arbitrary command execution with IE+SP2 (http://secunia.com/internet_explorer_command_execution_vulnerability_test/)

Image:Icon_idea.png

Top 25 Innovations of the Past 25 Years (http://www.cnn.com/2005/TECH/01/03/cnn25.top25.innovations/index.html)
Loni 12:56, 10 Jan 2005 (IST)
Back in 1980, the expression "you can't take it with you" carried a lot more weight than it does today -- mainly because "it" weighed too much. Over the past quarter century, though, scientific innovation has made almost everything portable. That's how the cell phone and the laptop computer landed at Nos. 2 and 7, respectively, on a list of the top 25 innovations of the past 25 years, according to a panel of technology leaders assembled by the Lemelson-MIT Program, which promotes inventiveness in teens.

Image:Icon_news.png

Gates endures PC crash during keynote speech at U.S. tech show (http://www.canada.com/news/story.html?id=7d5a65b1-8260-44c6-8354-ff4a1ef5d39b)
Loni
Despite suffering through an embarrassing computer crash that prompted jokes and guffaws, Bill Gates promised that Microsoft Corp. would help consumers stay plugged into technology, during a keynote speech Wednesday.

Image:Icon_funny.png

A Pizza Box for Your Laptop (http://www.humanbeans.net/powerpizza/)
Loni
Desirable laptops are desirable to thieves too. Disguise your laptop with a PowerPizza and reduce the risk of getting it nicked.

Image:Icon_news.png

Anatomy of a Spy Satellite (http://story.news.yahoo.com/news?tmpl=story&u=/space/20050103/sc_space/anatomyofaspysatellite&e=1)
Loni
For military and intelligence communities, outer space has become a highground, hide-and-seek arena , a kind of "now you see me, now you don't" espionage playing field. Over the decades, spying from space has always earned super-secret status. They are the black projects, fulfilling dark tasks and often bankrolled by blank check.

Image:Icon_tool.png

Whoppix 2.6 has been released (http://www.whoppix.net/download.php) and includes Securityforest's ExploitTree
Loni
Whoppix is a Knoppix remaster designed to be a standalone penetration testing toolkit. Whoppix includes a full set of penetration testing tools and a huge repository of exploits (Framework 2.2, Packetstorm, Securityforest and Securityfocus exploit archives).

Image:Icon_advisory.png

Response from Marc Maiffret (Eeye) (http://archives.neohapsis.com/archives/fulldisclosure/2004-12/0697.html)
Loni
The reason you could not provide any real details about these backdoors are because there are no backdoors in Iris nor SecureIIS.

Image:Icon_advisory.png

Multiple Backdoors found in eEye Products (IRIS and SecureIIS) (http://archives.neohapsis.com/archives/fulldisclosure/2004-12/0684.html)
Loni
During meticulous testing of both eEye's IRIS and SecureIIS products, we (my testing team) have discovered multiple backdoors in the latest of both mentioned products and some older versions we could acquire.


Loni 23:03, 10 Jan 2005 (IST)


Loni 02:58, 29 Dec 2004 (IST)


Loni 10:53, 25 Dec 2004 (IST)


Loni 12:51, 16 Dec 2004 (IST)


Loni 02:18, 1 Dec 2004 (IST)


Loni 01:44, 6 Nov 2004 (IST)


Loni 17:14, 14 Oct 2004 (IST)

Retrieved from "http://www.securityforest.com/wiki/index.php/SecurityNews_Archive"
Advertisement