Cayman Systems 3220-H Spezifikationen Seite 1

SAFER SECURITY ALERT FOR ENTERPRISE RESOURCESVolume 3 Issue 6 June 2000A monthly publication of The Relay Group. Copyright © 2000 All rights reserved

SAFER – Vol. 3, Issue 6 10 © 2000 The Relay GroupMDBMS Buffer Overflow VulnerabilityReleased May 24, 2000Affects MDBMS .9xbxReference http://www.secur

SAFER – Vol. 3, Issue 6 11 © 2000 The Relay GroupPGP5i Automatic Key Generation Routine VulnerabilityReleased May 24, 2000Affects PGPi 5.0iReference h

SAFER – Vol. 3, Issue 6 12 © 2000 The Relay GroupCobalt RaQ2/RaQ3 Web Server Appliance cgiwrap bypass VulnerabilityReleased May 23, 2000Affects Cobalt

SAFER – Vol. 3, Issue 6 13 © 2000 The Relay GroupMetaProducts Offline Explorer Directory Traversal VulnerabilityReleased May 19, 2000Affects MetaProdu

SAFER – Vol. 3, Issue 6 14 © 2000 The Relay GroupLotus Domino Server ESMTP Buffer Overflow VulnerabilityReleased May 18, 2000Affects Lotus Domino Ente

SAFER – Vol. 3, Issue 6 15 © 2000 The Relay GroupKDE kscd SHELL Environmental Variable VulnerabilityReleased May 16, 2000Affects KDE 2.0 BETA, 1.2, 1.

SAFER – Vol. 3, Issue 6 16 © 2000 The Relay GroupMultiple Vendor Kerberos 5/4 Compatibility krb_rd_req() Buffer Overflow VulnerabilityReleased May 16,

SAFER – Vol. 3, Issue 6 17 © 2000 The Relay GroupSeattle Lab Emurl 2.0 Email Account Access VulnerabilityReleased May 15, 2000Affects Seattle Lab Soft

SAFER – Vol. 3, Issue 6 18 © 2000 The Relay GroupSolaris netpr Buffer Overflow VulnerabilityReleased May 12, 2000Affects Sun Solaris 2.6, 7.0, 8.0Refe

SAFER – Vol. 3, Issue 6 19 © 2000 The Relay GroupNTMail Server 5.x Proxy Access VulnerabilityReleased May 12, 2000Affects NTMailserver.com NTMail 5.0R

SAFER – Vol. 3, Issue 6 2 © 2000 The Relay GroupCONTENTSCONTENTS...

SAFER – Vol. 3, Issue 6 20 © 2000 The Relay GroupMicrosoft Windows 2000 Default SYSKEY Configuration VulnerabilityReleased May 11, 2000Affects Microso

SAFER – Vol. 3, Issue 6 21 © 2000 The Relay GroupMatt Wright FormMail Environmental Variables Disclosure VulnerabilityReleased May 10, 2000Affects Mat

SAFER – Vol. 3, Issue 6 22 © 2000 The Relay GroupNetStructure 7110 Undocumented Password VulnerabilityReleased May 08, 2000Affects Intel Corporation N

SAFER – Vol. 3, Issue 6 23 © 2000 The Relay GroupGossamer Threads DBMan Information Leakage VulnerabilityReleased May 05, 2000Affects DBMan 2.0.4Refer

SAFER – Vol. 3, Issue 6 24 © 2000 The Relay GroupMultiple Linux Vendor pam_console VulnerabilityReleased May 03, 2000Affects RedHat Linux 6.0 up to 6.

SAFER – Vol. 3, Issue 6 25 © 2000 The Relay GroupL-Soft Listserv 1.8 Web Archives Buffer Overflow VulnerabilityReleased May 03, 2000Affects L-Soft Lis

SAFER – Vol. 3, Issue 6 26 © 2000 The Relay GroupFileMaker Pro 5.0 Web Companion Software Multiple VulnerabilitiesReleased May 02, 2000Affects FileMak

SAFER – Vol. 3, Issue 6 27 © 2000 The Relay GroupSECURITY ADVISORIESThis section contains official advisories as released by various vendors or securi

SAFER – Vol. 3, Issue 6 28 © 2000 The Relay GroupMicrosoft Security Bulletin (MS00-035)Released May 30, 2000Affects Microsoft SQL Server 7.0 Service P

SAFER – Vol. 3, Issue 6 29 © 2000 The Relay GroupSuSE Security Announcement: muftiReleased May 29, 2000Affects SuSE Linux 6.1-6.4Reference http://www.

SAFER – Vol. 3, Issue 6 3 © 2000 The Relay GroupMICROSOFT IIS SHTML.EXE PATH DISCLOSURE VULNERABILITY...

SAFER – Vol. 3, Issue 6 30 © 2000 The Relay GroupNetBSD Security Advisory 2000-003: Exploitable Vulnerability in XlockmoreReleased May 27, 2000Affects

SAFER – Vol. 3, Issue 6 31 © 2000 The Relay GroupTurboLinux Security Announcement TLSA2000011-1: gpm-1.19.1 and earlierReleased May 26, 2000Affects Tu

SAFER – Vol. 3, Issue 6 32 © 2000 The Relay GroupMicrosoft Security Bulletin (MS00-036)Released May 25, 2000Affects Microsoft Windows NT4.0, 2000Refer

SAFER – Vol. 3, Issue 6 33 © 2000 The Relay GroupSGI Security Advisory 20000501-01-P: Vulnerability in infosrch.cgiReleased May 22, 2000Affects IRIX 6

SAFER – Vol. 3, Issue 6 34 © 2000 The Relay GroupRatHat Security Advisory-2000:028-02: Netscape 4.73 availableReleased May 19, 2000Affects Netscape Co

SAFER – Vol. 3, Issue 6 35 © 2000 The Relay GroupMicrosoft Security Bulletin (MS00-033)Released May 17, 2000Affects Microsoft Internet Explorer 4.0, 4

SAFER – Vol. 3, Issue 6 36 © 2000 The Relay GroupCERT Advisory CA-2000-06: Multiple Buffer Overflows in Kerberos Authenticated ServicesReleased May 17

SAFER – Vol. 3, Issue 6 37 © 2000 The Relay GroupMicrosoft Security Bulletin (MS00-034)Released May 12, 2000Affects Microsoft Office 2000Reference htt

SAFER – Vol. 3, Issue 6 38 © 2000 The Relay GroupMicrosoft Security Bulletin (MS00-031)Released May 10, 2000Affects Microsoft IIS 4.0 and 5.0Reference

SAFER – Vol. 3, Issue 6 39 © 2000 The Relay GroupNetBSD Security Advisory 2000-002: IP options processing Denial of ServiceReleased May 07, 2000Affect

SAFER – Vol. 3, Issue 6 4 © 2000 The Relay GroupHP SECURITY ADVISORY #00104 REVISED: SEC. VULNERABILITY REGARDING AUTOMOUNTD (REV. 01)...41DENIA

SAFER – Vol. 3, Issue 6 40 © 2000 The Relay GroupNAI Security Advisory-May042000: Trend Micro InterScan VirusWall Remote OverflowReleased May 04, 2000

SAFER – Vol. 3, Issue 6 41 © 2000 The Relay GroupHP Security Advisory #00104 revised: Sec. Vulnerability regarding automountd (rev. 01)Released May 02

SAFER – Vol. 3, Issue 6 42 © 2000 The Relay GroupDENIAL-OF-SERVICEDenial-of-Service attacks are becoming an increasing concern. Below is a compilation

SAFER – Vol. 3, Issue 6 43 © 2000 The Relay GroupNite Server FTPd Multiple DoS VulnerabilitiesReleased May 19, 2000Affects Nite Server 1.7, 1.6, 1.5Re

SAFER – Vol. 3, Issue 6 44 © 2000 The Relay GroupXFree86 Xserver Denial of Service VulnerabilityReleased May 18, 2000Affects XFree86 X11R6 4.0, 3.3.6,

SAFER – Vol. 3, Issue 6 45 © 2000 The Relay GroupAllaire ColdFusion 4.5.1 Cached File Request DoS VulnerabilityReleased May 10, 2000Affects Allaire Co

SAFER – Vol. 3, Issue 6 46 © 2000 The Relay GroupSECURITY BUGSMany security problems are too specific to become a full advisory. Below is a list of se

SAFER – Vol. 3, Issue 6 47 © 2000 The Relay GroupUNDERGROUND TOOLSHere are the new tools that hackers/crackers will soon use against your systems. We

SAFER – Vol. 3, Issue 6 48 © 2000 The Relay Grouplo.cExploit for AntiSniff DNS Overflow Vulnerabilityantisniffexpl2.cExploit for AntiSniff DNS Overflo

SAFER – Vol. 3, Issue 6 49 © 2000 The Relay GroupDENIAL-OF-SERVICEcproxy_expl.cExploit for CProxy 3.3 SP2 Buffer Overflow DoS VulnerabilityRFProwl.cEx

SAFER – Vol. 3, Issue 6 5 © 2000 The Relay GroupEXECUTIVE NEWSWhat follows is the author’s selection of rumors and noises of concern to the security c

SAFER – Vol. 3, Issue 6 6 © 2000 The Relay Group- The European ministers of Foreign Affairs are expected to decide to lift all barriers to theexport

SAFER – Vol. 3, Issue 6 7 © 2000 The Relay Group- SECURITY ALERTSWe try to inform you of vulnerabilities as soon as they become a threat to your resou

SAFER – Vol. 3, Issue 6 8 © 2000 The Relay GroupSecurity Vulnerability in IPFilter 3.3.15 and 3.4.3Released May 26, 2000Affects IPFilter 3.3.15 and 3.

SAFER – Vol. 3, Issue 6 9 © 2000 The Relay GroupOmnis Studio 2.4 Weak Database Field Encryption VulnerabilityReleased May 25, 2000Affects Omnis Studio