SecurityFocus Microsoft Newsletter #202
From: Marc Fossi (mfossi_at_securityfocus.com)
Date: 08/19/04
- Previous message: Mark Burnett: "Re: MS binary integrity baseline"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 19 Aug 2004 08:16:37 -0600 (MDT) To: Focus-MS <focus-ms@securityfocus.com>
SecurityFocus Microsoft Newsletter #202
----------------------------------------
This Issue is Sponsored By: SecurityFocus
Want to keep up on the latest security vulnerabilities? Don't have time to
visit a myriad of mailing lists and websites to read the news? Just add the
new SecurityFocus RSS feeds to your freeware RSS reader, and see all the
latest posts for Bugtraq and the SF Vulnernability database in one
convenient place. Or, pull in the latest news, columnists and feature
articles in the SecurityFocus aggregated news feed, and stay on top of
what's happening in the community!
http://www.securityfocus.com/rss/index.shtml
------------------------------------------------------------------------
I. FRONT AND CENTER
1. Examining a Public Exploit, Part 1
2. Detecting Worms and Abnormal Activities with NetFlow, Part 1
3. Big Brother's Last Mile
II. MICROSOFT VULNERABILITY SUMMARY
1. PluggedOut Blog Blog_Exec.PHP Cross-Site Scripting Vulnerabi...
2. RhinoSoft Serv-U FTP Server Default Administration Account V...
3. Xine-Lib Remote Buffer Overflow Vulnerability
4. PluggedOut Blog Calendar Module Cross-Site Scripting Vulnera...
5. Microsoft Windows XP SP2 Released - Multiple Vulnerabilities...
6. Microsoft Windows 2000/XP CRL File Failed Integrity Check De...
7. Microsoft Exchange Outlook Web Access HTTP Response Splittin...
8. VentaFax System Tray Application Local Privilege Escalation ...
9. Multiple Vendor Graphics Driver Large JPEG Processing Remote...
10. WIDCOMM Bluetooth Communication Software Multiple Unspecifie...
11. Internet Security Systems BlackICE PC Protection Firewall.IN...
12. Shuttle FTP Suite TFTP Server Directory Traversal Vulnerabil...
13. IceWarp Web Mail Multiple Undisclosed Remote Vulnerabilities
14. MapInfo Discovery Multiple Remote Vulnerabilities
15. Microsoft Windows Internet Connection Firewall Filter Bypass...
16. Adobe Acrobat Reader Shell Metacharacter Remote Arbitrary Co...
17. Keene Digital Media Server Directory Traversal and Authentic...
18. RealNetwork RealPlayer Unspecified Remote Vulnerability
19. Kerio Mailserver Embedded HTTP Server Multiple Unspecified V...
20. Clearswift MAILsweeper For SMTP PowerPoint Files Denial of S...
21. HanSoft 4tH Unspecified Vulnerability
III. MICROSOFT FOCUS LIST SUMMARY
1. Windows 2000 Administrator lockout (Thread)
2. most avtive attack type (Thread)
3. RE : most avtive attack type (Thread)
4. Article Announcement: Redmond's Salvation (Thread)
5. SecurityFocus Microsoft Newsletter #201 (Thread)
IV. NEW PRODUCTS FOR MICROSOFT PLATFORMS
1. WiSSH
2. Firewall RuleMaker
3. CAT Cellular Authentication Token and eAuthentication Servic...
4. KeyCaptor Keylogger
5. SpyBuster
6. FreezeX
V. NEW TOOLS FOR MICROSOFT PLATFORMS
1. IDS Policy Manager v1.4.1
2. cenfw 0.3b
3. zigstack 5
4. MonitorMagic - Server & Network Monitor 6.0
5. CipherPack Pro 3.2
6. Savungan - Stateful Inspection Firewall for Windows with FUL... 2.0
VI. UNSUBSCRIBE INSTRUCTIONS
VII. SPONSOR INFORMATION
I. FRONT AND CENTER
-------------------
1. Examining a Public Exploit, Part 1
By Don Parker
The purpose of this article is to analyze a public exploit in a lab
environment, see the alerts generated by an intrusion detection system, and
then do some packet analysis of the malicious binary in order to better
understand it.
http://www.securityfocus.com/infocus/1795
2. Detecting Worms and Abnormal Activities with NetFlow, Part 1
By Yiming Gong
This paper discusses the use of NetFlow, a traffic profile monitoring
technology available on many routers, for use in the early detection of
worms, spammers, and other abnormal network activity in large enterprise
networks and service providers.
http://www.securityfocus.com/infocus/1796
3. Big Brother's Last Mile
By Mark Rasch
The FCC's new ruling on broadband wiretaps will force customers to pay for
the privilege of making the Internet less secure.
http://www.securityfocus.com/columnists/261
II. MICROSOFT VULNERABILITY SUMMARY
-----------------------------------
1. PluggedOut Blog Blog_Exec.PHP Cross-Site Scripting Vulnerabi...
BugTraq ID: 10885
Remote: Yes
Date Published: Aug 07 2004
Relevant URL: http://www.securityfocus.com/bid/10885
Summary:
PluggedOut Blog is reported prone to a cross-site scripting vulnerability.
This could allow for execution of hostile HTML and script code in the web client of a user who visits a malicious link to the vulnerable site. This code execution would occur in the security context of the site hosting the vulnerable software.
Exploitation could allow for theft of cookie-based authentication credentials. Other attacks are also possible.
2. RhinoSoft Serv-U FTP Server Default Administration Account V...
BugTraq ID: 10886
Remote: No
Date Published: Aug 08 2004
Relevant URL: http://www.securityfocus.com/bid/10886
Summary:
It is reported that the RhinoSoft Serv-U FTP server has a default administration account that is used to authenticate to the site maintenance interface.
The weak account can be used to log into the site maintenance interface on the loopback interface only, and to create user accounts. An ftp user account created with execute rights, may permit a local attacker to execute arbitrary binaries in the context of the vulnerable server.
3. Xine-Lib Remote Buffer Overflow Vulnerability
BugTraq ID: 10890
Remote: Yes
Date Published: Aug 08 2004
Relevant URL: http://www.securityfocus.com/bid/10890
Summary:
It is reported that the xine media library is affected by a remote buffer overflow vulnerability. This issue can allow a remote attacker to gain unauthorized access to a vulnerable computer.
xine-lib rc-5 and prior versions are reportedly affected by this issue. xine versions 0.99.2 and prior are also vulnerable.
4. PluggedOut Blog Calendar Module Cross-Site Scripting Vulnera...
BugTraq ID: 10894
Remote: Yes
Date Published: Aug 09 2004
Relevant URL: http://www.securityfocus.com/bid/10894
Summary:
The Blog 'calendar' module does not sufficiently sanitize data supplied via URI parameters, making it prone to cross-site scripting attacks. This could allow for execution of hostile HTML and script code in the web client of a user who visits a malicious link to the vulnerable site.
5. Microsoft Windows XP SP2 Released - Multiple Vulnerabilities...
BugTraq ID: 10897
Remote: Yes
Date Published: Aug 09 2004
Relevant URL: http://www.securityfocus.com/bid/10897
Summary:
Microsoft has released Windows XP Service Pack 2. This release addresses a number of bugs, including some potential security vulnerabilities and weaknesses. Many of the bugs that have been fixed in this Service Pack may have a security impact that may be exploited by a local or remote attacker. Possible consequences include privilege escalation, lowered security settings, denial of service attacks, policy bypass, and remote code execution. The release also includes various security enhancements and roll-ups for previous security updates.
6. Microsoft Windows 2000/XP CRL File Failed Integrity Check De...
BugTraq ID: 10901
Remote: No
Date Published: Aug 09 2004
Relevant URL: http://www.securityfocus.com/bid/10901
Summary:
It is reported that Microsoft Windows 2000/XP does not verify the integrity of CRL (Certificate Revocation Lists) files prior to accepting them as valid.
A local attacker, who has sufficient privileges to write to a CRL file, may exploit this vulnerability to deny X.509 based services to legitimate users.
This BID will be updated as further analysis of this vulnerability is completed.
7. Microsoft Exchange Outlook Web Access HTTP Response Splittin...
BugTraq ID: 10902
Remote: Yes
Date Published: Aug 10 2004
Relevant URL: http://www.securityfocus.com/bid/10902
Summary:
Microsoft Exchange Outlook Web Access (OWA) is prone to HTTP response splitting attacks.
This issue could permit hostile script to be injected into client sessions, which could gain access to properties of the OWA server and Web pages hosted on the site.
It is noted that the attacker must authenticate to OWA to be in a position to exploit this issue. If successfully exploited, this could allow for various attacks, such as session hijacking, and content spoofing. This issue could also be used to exploit latent vulnerabilities in Web client software.
8. VentaFax System Tray Application Local Privilege Escalation ...
BugTraq ID: 10906
Remote: No
Date Published: Aug 10 2004
Relevant URL: http://www.securityfocus.com/bid/10906
Summary:
It is reported that a privilege escalation vulnerability exists in the VentaFax System Tray application. The issue is due to the software starting with SYSTEM privileges, to enable access to the modem hardware, and subsequently failing to drop the privileges.
Although only VentaFax version 5.4 is reported vulnerable, it is likely that other versions are prone as well.
9. Multiple Vendor Graphics Driver Large JPEG Processing Remote...
BugTraq ID: 10913
Remote: Yes
Date Published: Aug 10 2004
Relevant URL: http://www.securityfocus.com/bid/10913
Summary:
Multiple vendor graphics device drivers are reported prone to a denial of service vulnerability. The issue is alleged to manifest when a malicious JPEG image is rendered in a browser on an affected platform.
It is reported that this issue exists in the Intel VGA display drivers, it is also reported that the vulnerability is present in ATI display drivers. The discoverer of this issue reports that the issue may be triggered on a Microsoft Windows XP platform (SP1 & SP2), using Mozilla Firefox or Microsoft Internet Explorer.
This BID will be updated as further analysis of this vulnerability is completed.
10. WIDCOMM Bluetooth Communication Software Multiple Unspecifie...
BugTraq ID: 10914
Remote: Yes
Date Published: Aug 11 2004
Relevant URL: http://www.securityfocus.com/bid/10914
Summary:
WIDCOMM Bluetooth Communication Software is reported prone to multiple unspecified remote buffer overflow vulnerabilities. These vulnerabilities exist due to insufficient boundary checks performed by the application.
It is reported that an unauthenticated remote attacker can trigger the overflow conditions by supplying malformed service requests.
Various devices from multiple vendors are thought to be affected by these issues, as they are implemented with WIDCOMM software. These issues have been verified by the researchers in BTStackServer version 1.3.2.7 and 1.4.2.10 running on Microsoft Windows XP and Windows 98. HP IPAQ 5450 running WinCE 3.0 with Bluetooth software version 1.4.1.03 is reported prone as well.
WIDCOMM Bluetooth Communication Software BTW & BT-CE/PPC 3.0 do not appear to be affected by these issues.
This BID will be updated when more information is available.
11. Internet Security Systems BlackICE PC Protection Firewall.IN...
BugTraq ID: 10915
Remote: No
Date Published: Aug 11 2004
Relevant URL: http://www.securityfocus.com/bid/10915
Summary:
It is reported that BlackICE PC Protection is prone to a local buffer overrun when handling excessive input in certain configuration directives parsed from the firewall.ini file included with the software.
It is reported that when the system is restarted, and the affected software reads the malicious firewall.ini file both the blackice.exe and blackd.exe executables will crash.
12. Shuttle FTP Suite TFTP Server Directory Traversal Vulnerabil...
BugTraq ID: 10916
Remote: Yes
Date Published: Aug 11 2004
Relevant URL: http://www.securityfocus.com/bid/10916
Summary:
It is reported that the Shuttle FTP Suite TFTP server is susceptible to a directory traversal vulnerability.
This vulnerability allows a remote attacker to read and write files outside of the TFTP document root directory. An attacker may read and write files with the privileges of the TFTP server process.
An attacker may retrieve or overwrite sensitive files on the hosting computer, potentially aiding them in further system compromise.
Version 3.2 has been reported susceptible to this vulnerability. Other versions may also be affected.
13. IceWarp Web Mail Multiple Undisclosed Remote Vulnerabilities
BugTraq ID: 10920
Remote: Yes
Date Published: Aug 11 2004
Relevant URL: http://www.securityfocus.com/bid/10920
Summary:
IceWarp Web Mail is reported prone to multiple unspecified vulnerabilities. It is reported that these issues may be exploited by a remote attacker to conduct SQL Injection, Account Manipulation, Cross-site Scripting, Information disclosure, Local file system access, and other attacks. Few details regarding the specific vulnerabilities are known.
This BID will be updated as further details regarding these vulnerabilities are released.
14. MapInfo Discovery Multiple Remote Vulnerabilities
BugTraq ID: 10927
Remote: Yes
Date Published: Aug 12 2004
Relevant URL: http://www.securityfocus.com/bid/10927
Summary:
Multiple remote vulnerabilities are reported in MapInfo Discovery.
The first issue is reported to be an information disclosure vulnerability. An attacker may gain access to potentially sensitive error log information that could aid an attacker in further system compromise.
The second issue is reported to be a cross-site scripting vulnerability. The application fails to properly sanitize user-supplied URI argument data. This could allow for execution of hostile HTML and script code in the web client of a user who visits a malicious link to the vulnerable site. This code execution would occur in the security context of the site hosting the vulnerable software. Exploitation could allow for theft of cookie-based authentication credentials. Other attacks are also possible.
The third issue is reported to be a plaintext password information disclosure vulnerability. An attacker with the ability to sniff network traffic could capture user and SQL database credentials.
The fourth issue is reported to be an administrative login authentication bypass vulnerability. An attacker with a regular user account on the application can gain administrative access.
MapInfo Discovery versions 1.0 and 1.1 are reported susceptible to these vulnerabilities.
15. Microsoft Windows Internet Connection Firewall Filter Bypass...
BugTraq ID: 10930
Remote: Yes
Date Published: Aug 12 2004
Relevant URL: http://www.securityfocus.com/bid/10930
Summary:
It is reported that the Internet Connection Firewall is susceptible to a filter bypass vulnerability.
This issue presents itself during the boot process of Microsoft Windows operating systems.
This vulnerability allows packets to pass, possibly in violation of the firewall rules. By exploiting this vulnerability, a remote attacker may be able to make network connections to services protected by the firewall. This may open up avenues of attack that were thought to have been protected by the firewall, providing a false sense of security.
Windows XP Service Pack 2 is reported to fix this vulnerability.
16. Adobe Acrobat Reader Shell Metacharacter Remote Arbitrary Co...
BugTraq ID: 10931
Remote: Yes
Date Published: Aug 12 2004
Relevant URL: http://www.securityfocus.com/bid/10931
Summary:
A remote code execution vulnerability is identified in Adobe Acrobat Reader. This issue may allow an attacker gain unauthorized access to a vulnerable computer.
Acrobat Reader is affected by a shell metacharacter command execution vulnerability. This issue exists due to insufficient sanitization of user-supplied data by Acrobat Reader for Unix and Linux platforms. Successful exploitation can allow an attacker to use a specially crafted file name to execute arbitrary commands and applications through the shell.
Adobe Acrobat Reader version 5.0 for Unix and Linux platforms is reported vulnerable to this issue. Acrobat Reader for Microsoft Windows platforms is not affected by this issue.
17. Keene Digital Media Server Directory Traversal and Authentic...
BugTraq ID: 10933
Remote: Yes
Date Published: Aug 12 2004
Relevant URL: http://www.securityfocus.com/bid/10933
Summary:
It is reported that DMS is susceptible to a directory traversal vulnerability, and an administrative access authentication bypass vulnerability.
The directory traversal issue is due to insufficient sanitization of user-supplied data. An attacker may exploit this vulnerability in order to disclose web server readable files that exist outside of the web root on the vulnerable server.
The administrative access authentication bypass vulnerability is present when an attacker directly accesses the URI of the administrative script.
These vulnerabilities allow a remote attacker to administer the application, or retrieve potentially sensitive files, possibly aiding them in further system compromise.
Version 1.0.2 of the software is reported vulnerable to these issues. Other versions may also be affected.
18. RealNetwork RealPlayer Unspecified Remote Vulnerability
BugTraq ID: 10934
Remote: Yes
Date Published: Aug 12 2004
Relevant URL: http://www.securityfocus.com/bid/10934
Summary:
It is reported that RealNetwork RealPlayer contains an unspecified vulnerability that allows for execution of arbitrary code in the context of the user running the player.
No further information is available at this time. This BID will be updated as further information is disclosed.
19. Kerio Mailserver Embedded HTTP Server Multiple Unspecified V...
BugTraq ID: 10936
Remote: Yes
Date Published: Aug 12 2004
Relevant URL: http://www.securityfocus.com/bid/10936
Summary:
Kerio MailServer version 6.0.1 has been released. This release addresses various unspecified security vulnerabilities in the embedded HTTP server implemented with the Kerio MailServer application. The cause and impact of these issues is currently unknown.
All versions of Kerio MailServer prior to 6.0.1 are considered vulnerable.
20. Clearswift MAILsweeper For SMTP PowerPoint Files Denial of S...
BugTraq ID: 10937
Remote: Yes
Date Published: Aug 13 2004
Relevant URL: http://www.securityfocus.com/bid/10937
Summary:
MAILsweeper for SMTP is reported prone to a remote denial of service vulnerability. This issue presents itself when the application processes malformed Microsoft PowerPoint files.
MAILsweeper for SMTP versions 4.3.14 and prior are considered vulnerable to this issue.
21. HanSoft 4tH Unspecified Vulnerability
BugTraq ID: 10939
Remote: Unknown
Date Published: Aug 13 2004
Relevant URL: http://www.securityfocus.com/bid/10939
Summary:
An unspecified vulnerability is reported in the HanSoft 4tH compiler.
This vulnerability is reported to be fixed in version 3.4e-pre4.
No further information was reported. This BID will be updated as new information is disclosed.
III. MICROSOFT FOCUS LIST SUMMARY
---------------------------------
1. Windows 2000 Administrator lockout (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/371847
2. most avtive attack type (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/371746
3. RE : most avtive attack type (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/371701
4. Article Announcement: Redmond's Salvation (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/371494
5. SecurityFocus Microsoft Newsletter #201 (Thread)
Relevant URL:
http://www.securityfocus.com/archive/88/371435
IV. NEW PRODUCTS FOR MICROSOFT PLATFORMS
----------------------------------------
1. WiSSH
By: Digital Labs, LLC
Platforms: Windows 2000, Windows NT, Windows XP
Relevant URL: http://www.wissh.com
Summary:
WiSSH (Windows over SSH) utilizes SSH tunneling technology to secure Microsoft's RDP protocol. Allows access to multiple hosts behind your network perimeter with only a single host's SSH port open to the Internet
2. Firewall RuleMaker
By: The Net Memetic Pte Ltd
Platforms: Windows 2000, Windows 95/98, Windows NT, Windows XP
Relevant URL: http://firewall.rulemaker.net
Summary:
Firewall RuleMaker is a Windows-based firewall configuration version control software product for managers of Cisco PIX and Netscreen firewalls.
3. CAT Cellular Authentication Token and eAuthentication Servic...
By: Mega AS Consulting Ltd
Platforms: Java, Linux, OpenBSD, Os Independent, SecureBSD, Solaris, UNIX, Windows 2000, Windows NT
Relevant URL: http://www.megaas.co.nz
Summary:
Low cost, easy to use Two Factor Authentication One Time Password token using the Cellular. Does not use SMS or communication, manages multiple OTP accounts - new technology. For any business that want a safer access to its Internet Services. More information at our site.
We also provide eAuthentication service for businesses that will not buy an Authentication product but would prefer to pay a monthly charge for authentication services from our our CAT Server.
4. KeyCaptor Keylogger
By: Keylogger Software
Platforms: MacOS, Windows 2000, Windows 95/98, Windows NT, Windows XP
Relevant URL: http://www.keylogger-software.com/keylogger/keylogger.htm
Summary:
KeyCaptor is your solution for recording ALL keystrokes of ALL users on your computer! Now you have the power to record emails, websites, documents, chats, instant messages, usernames, passwords, and MUCH MORE!
With our advanced stealth technology, KeyCaptor will not show in your processes list and cannot be stopped from running unless you say so!
5. SpyBuster
By: Remove Spyware
Platforms: Windows 2000, Windows 95/98, Windows NT, Windows XP
Relevant URL: http://www.remove-spyware.com/spybuster.htm
Summary:
Our award winning spyware / adware scanner and removal software, SpyBuster will scan your computer for over 4,000 known spyware and adware applications. SpyBuster protects your computer from data stealing programs that can expose your personal information.
SpyBuster scanning technology allows for a quick and easy sweep, so you can resume your work in minutes.
6. FreezeX
By: Faronics Technologies USA Inc
Platforms: Windows 2000, Windows 95/98, Windows XP
Relevant URL: http://www.faronics.com/html/Freezex.asp
Summary:
FreezeX prevents all unauthorized programs, including viruses, keyloggers and spy ware from executing. Powerful and secure, FreezeX ensures that any new executable, program, or application that is downloaded, introduced via removable media or the network will never install
V. NEW TOOLS FOR MICROSOFT PLATFORMS
------------------------------------
1. IDS Policy Manager v1.4.1
By: ActiveWorx
Relevant URL: http://www.activeworx.com/idspm/
Platforms: Windows 2000, Windows XP
Summary:
IDS Policy Manager - is a powerful way to modify the snort configuration and rule files. Some key features are: Graphical interface for easily manageability of snort rule and configuration files - Merge new official snort rules into existing rule files - Merge Whitehat (arachNIDS) rules into existing rule files - Make quick changes to snort rules - Easy to manage multiple sensors with multiple policy files - Upload policy files via FTP or SCP - Full support for all Snort 1.8 Preprocessors - Full support for all Snort 1.8 output processors - Easy to learn more information about a signature from popular databases such as - - - CVE, BugTraq, Mcafee, arachNIDS and custom URL's - Add rules easily by line, multiple lines or make your own custom signatures
2. cenfw 0.3b
By: Peter Robinson
Relevant URL: http://www.securegateway.org
Platforms: Linux, Windows 2000, Windows NT, Windows XP
Summary:
The Centron IPTables Firewall Gui is an object oriented, database driven, windows interface to linux IPtables firewall rules.
3. zigstack 5
By: Alexander 'xaitax' Hagenah
Relevant URL: http://xaitax.de
Platforms: Windows 2000, Windows NT, Windows XP
Summary:
hardening your tcp/ip stack (e.g. against dos-attacks) of windowsnt/2k/xp/2003-based workstations and servers.
new* incl. 7 new methods and remote-registry functions.
4. MonitorMagic - Server & Network Monitor 6.0
By: Tools4ever
Relevant URL: http://www.tools4ever.com/products/monitormagic/
Platforms: Windows 2000, Windows NT, Windows XP
Summary:
MonitorMagic is a proactive server and network monitoring and reporting tool for Windows 2003/XP/2000/NT servers, workstations and SNMP devices and supports agentless monitoring. MonitorMagic supports Windows and UNIX based resources such as memory, disk and CPU load and optionally records the values into a database to enable graphical trending and reporting. MonitorMagic ships with predefined policies for popular hardware and applications.
5. CipherPack Pro 3.2
By: VIO Systems Limited
Relevant URL: http://www.cipherpack.com
Platforms: Windows 2000, Windows 95/98, Windows NT, Windows XP
Summary:
Encrypts and compresses files and data into a single Windows executable. The user just runs it and when the correct key is supplied, the file decrypts. Without the correct key, the original file contents can never be seen.
6. Savungan - Stateful Inspection Firewall for Windows with FUL... 2.0
By: Egemen Tas
Relevant URL: http://www.ModemWall.com/savungan.htm
Platforms: Windows 2000, Windows 95/98, Windows NT, Windows XP
Summary:
Savungan is a stateful inspection firewall designed for Microsoft Windows platforms available with FULL SOURCE CODE. It is an advanced filtering agent for TCP/IP based networks, having very flexible rule language to make packet inspection more powerful and effective. Security administrators have had some difficulties to build and maintain a suitable filtering infrastructure after deploying a firewall.
VI. UNSUBSCRIBE INSTRUCTIONS
----------------------------
To unsubscribe send an e-mail message to ms-secnews-unsubscribe@securityfocus.com from the subscribed address. The contents of the subject or message body do not matter. You will receive a confirmation request message to which you will have to answer. Alternatively you can also visit http://www.securityfocus.com/newsletters and unsubscribe via the website.
If your email address has changed email listadmin@securityfocus.com and ask to be manually removed.
VII. SPONSOR INFORMATION
-----------------------
This Issue is Sponsored By: SecurityFocus
Want to keep up on the latest security vulnerabilities? Don't have time to
visit a myriad of mailing lists and websites to read the news? Just add the
new SecurityFocus RSS feeds to your freeware RSS reader, and see all the
latest posts for Bugtraq and the SF Vulnernability database in one
convenient place. Or, pull in the latest news, columnists and feature
articles in the SecurityFocus aggregated news feed, and stay on top of
what's happening in the community!
http://www.securityfocus.com/rss/index.shtml
------------------------------------------------------------------------
---------------------------------------------------------------------------
---------------------------------------------------------------------------
- Previous message: Mark Burnett: "Re: MS binary integrity baseline"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
