Outsmart Technical Advisories

Friday 29 August 2008 00:31 BST

ADVISORIES

Last Updated 1st February 2002 13:10 GMT

Number Description

MS02-001
Trusting Domains Do Not Verify Domain Membership of SIDs in Authorization Data

AS02-04 Internet Security Systems Security Alert Summary AS02-04

AS01-11 Internet Security Systems Security Alert Summary AS01-11

CERT2001-37 Buffer Overflow in UPnP Service On Microsoft Windows

CERT2001-35 Recent Activity Against Secure Shell Daemons

CERT2001-34 Buffer overflow in system V derived login

AS01-1212 Buffer Overflow in /bin/login

AS01-10 Internet Security Systems Security Alert Summary AS01-10

MS01-057
Specially Formed Script in HMTL Mail can Execute in Exchange 5.5 OWA

AS01-09 Internet Security Systems Security Alert Summary AS01-09

CERT2001-33 Multiple vulnerabilities in WU-FTPD

AS01-2911 WU-FTPD Heap Corruption Vulnerability

AS01-08 Internet Security Systems Security Alert Summary AS01-08

MS01-056
Windows Media Player .ASF Processor Contains Unchecked Buffer

AS01-07 Internet Security Systems Security Alert Summary AS01-07

AS01-06 Internet Security Systems Security Alert Summary AS01-06

CERT2001-31 Buffer Overflow in CDE Subprocess Control Service

ISS01-3010 Widespread Exploitation of SSH CRC32 Compensation Attack

AS01-04 Internet Security Systems Security Alert Summary AS01-04

CERT2001-29 Oracle9iAS Web Cache vulnerable to buffer overflow

MS01-053
Downloaded Applications Can Execute on Mac IE 5.1 for OS X

AS01-03 Internet Security Systems Security Alert Summary AS01-03

MS01-052 REVISED Invalid RDP Data can Cause Terminal Service Failure

ISS01-1710 Citrix MetaFrame Remote Denial of Service Vulnerability

AS01-02 Internet Security Systems Security Alert Summary AS01-02

MS01-051
Malformed Dotless IP Address Can Cause Web Page to be Handled in Intranet Zone

ISS01-0910 Weekly Systems alert summary

CERT2001-28 Automatic Execution of Macros

RHSA-2001:110-05 Insecure setserial init script

CERT2001-27 Format String Vulnerability in CDE ToolTalk

MS01-050
Malformed Excel or PowerPoint Document Can Bypass Macro Security

CERT2001-26 Nimda Worm

ISS01-1809 Aggressive propagation of nimda worm

RHSA-2001097-04 New squid packages for Red Hat Linux 7.0

RHSA-2001107-07 New Bugzilla packages available

RHSA-2001093-03 Procmail handles calls unsafely

RHSA-2001:051-18 A flaw has also been found in the pseudo-random number generator used in versions of OpenSSL prior to 0.9.6b.

MS01-048
Malformed Request to RPC Endpoint Mapper can Cause RPC Service to Fail

F8-DLINK20010906 DLink Firewall/Router Vulnerable to Malformed Fragmented

RHSA-2001106-06 New sendmail packages available which fix a local root exploit

RHSA-2001103-04 Updated fetchmail packages available

ISS01-1009 Code Blue Worm

MS01-047
OWA Function Allows Unauthenticated User to Enumerate Global Address List

CERT2001-25
Buffer Overflow in Gauntlet Firewall allows intruders to execute arbitrary code

ISS01-0709s
Internet Security Systems Security Alert Summary September 5, 2001 Volume 6 Number 10

ISS01-0609 Multiple Vendor IDS Unicode Bypass Vulnerability

ISS01-3008 Remote Buffer Overflow Vulnerability in BSD Line Printer Daemon

ISS01-2808 Remote Buffer Overflow Vulnerability in HP-UX Line Printer Daemon

MS01-046
Access Violation in Windows 2000 IRDA Driver Can Cause System to Restart

MS01-045 ISA Server H.323 Gatekeeper Service Contains Memory Leak

MS01-044 Cumulative Patch for IIS

MS01-043
NNTP Service in Windows NT 4.0 and Windows 2000 contains memory leak

CERT2001-24 Vulnerability in OpenView and NetView

ISS01-0708 Remote Vulnerabilities in Macromedia ColdFusion Example Applications

ISS01-06082 Resurgence of "Code Red" Worm Derivatives

ISS01-0608 Multiple Buffer Overflow Vulnerabilities in Raytheon SilentRunner

MS01-042
Windows Media Player .NSC Processor Contains Unchecked Buffer

MS01-041 Malformed RPC Request Can Cause Service Failure

CERT2001-23 Continued threat from "Code Red"

CERT2001-22 W32/Sircam Malicious Code

MS01-040
Invalid RDP Data Can Cause Memory Leak in Terminal Services

MS01-039
Services for Unix 2.0 Telnet and NFS Services Contain Memory Leaks

ISS01-2407 SSH Secure Shell Authentication Bypass Vulnerability

CERT2001-21 Buffer Overflow in telnetd

CERT2001-19
"Code Red" Worm Exploiting Buffer Overflow In IIS Indexing Service DLL

CERT2001-18 Multiple vulnerabilities in LDAP implementations

MS01-038 Outlook View Control Exposes Unsafe Functionality

CERT2001-17 Check Point RDP Bypass Vulnerability

ISS01-1207 Internet Security Systems Security Alert Summary

ISS01-0507 Remote Buffer Overflow in Multiple RADIUS Implementations

CERT2001-15 Buffer Overflow In Sun Solaris in.lpd Print Daemon

CERT2001-14 Cisco IOS HTTP Server Authentication Vulnerability

MS01-036
Function Exposed via LDAP over SSL Could Enable Passwords to be Changed

ISS01-2506 Remote FrontPage Server Extensions Buffer Overflow

ISS01-21062 Multiple Vendor 802.11b Access Point SNMP authentication flaw

ISS01-2106 Wired-side SNMP WEP key exposure in 802.11b Access Points

ISS01-2006 Multiple Oracle listnener denial or service vulnerabilities

ISS01-19062 Remote Buffer Overflow Vulnerability in Solaris Print Protocol Daemon

ISS01-1906 Oracle Redirect denial of service

CERT2001-13 Buffer Overflow In IIS Indexing Service DLL

MS01-032
SQL Query Method Enables Cached Administrator Connection to be Reused

ISS01-1106 BIND Inadvertent Local Exposure of HMAC-MD5 (TSIG) Keys

MS01-031 Predictable Name Pipes Could Enable Privilege Elevation

ISS01-0607 ISS ALert Summary Volume 6 Number 7

MS01-030
Incorrect Attachment Handling in Exchange 2000 OWA Can Execute Script

MS01-029
Windows Media Player .ASX Processor Contains Unchecked buffer

MS01-028
RTF document linked to template can run macros without warning

MS01-027
Flaws in Web Server Certificate Validation Could enable Spoofing

eEYE01-1105 iPlanet - Netscape Enterprise web publisher buffer overrun

ISS01-1505 IIS URL Decoding Vulnerability

MS01-026
Superfluous Decoding Operation Could Allow Command Execution via IIS

ISS01-1405 ISS Alert summary Volume 6 Number 6

MS01-025 Index Server Search Function Contains Unchecked Buffer Index Server Search Function Contains Unchecked Buffer

MS01-024 Malformed request to domain controller can cause memory exhaustion

CERT2001-11 Sadmind / IIS worm exploit

MS01-023 Unchecked buffer in ISAPI extension could allow compromise of IIS 5.0

MS01-021 Invalid web request can cause access violation in ISA Server web proxy service

CERT2001-10 Buffer overflow vulnerability with IIS 5.0

CERT2001-09 Statistical Weakness in TCPIP initial sequence numbers

CERT2001-08 Multiple vulnerabilities in Alcatel ADSL Modems

CERT2001-07 Globbing vulnerabilities in various FTP servers

CERT2001-05 Exploitation of snmpXdmid

MS01-020 Incorrect MIME header can cause IE to execute Email attachment

MS01-019 Passwords on compressed folders are recoverable

CERT2001-04 Unauthentic Microsoft Corporation certificates

ISS01-1503 New IDS stress tester presents opportunities for DOS

ISS01-1203 New version of Subseven backdoor

MS01-016 Malformed WebDAV request can cause IIS to exhaust CPU resources

NIPC01-003 FBI advise of continued attacks on e-business sites

MS01-014 Malformed URL can cause service failure in IIS5.0 and Exchange 2000

CERTS2001-01 Cert 1st Quarter Summary

MS01-013 Windows 2000 Event view contains unchecked buffer

MS01-011 Malformed request to domain controller may cause denial of service

ST27022001 @Stake warns of vulnerability in MS Outlook Vcard handling

MS01-010 Patch available for "Windows media player skins file download" Vulnerability

MS01-009 Patch available for "malformed pptp packet stream vulnerability

ISS-0603 ISS Alert Summary Volume 6 Number 3

CERT2001-03 VBS On the fly (Anna Kournikova) malicious Code

ST09122000 SQL Server 7.00 extended stored procedure vulnerability

XATO-122000-01 Multiple Vulnerabilities in CMD line mailers

CERT2000-22 Input validation problems in LPRng

CERT2000-21 Denial of Service vulnerabilities in TCP/IP stacks

ST24112000 @Stake Outlines buffer overrun vulnerability in Windows 2000

GG00-029 George Guninski's advisory on IE 5.5

MS00-089 Patch available for "Domain account lockout" Vulnerability

CERTS2000-04 CERT 4th Quarter Summary

MS00-088 Patch available for "Exchange 2000 User account" Vulnerability

CERT2000-20 Multiple denial-of-service problems in BIND

MS00-087 Terminal Server login buffer overflow

MS00-086 Patch available for "web server file request parsing" vulnerability

MS00-084 Patch available for "Indexing services cross site scripting" vulnerability

MS00-060 Patch available for "IIS Cross-site scripting" vulnerabilities

MS00-085 Patch available for "Active X parameter validation" vulnerability

ISS00-0211 Buffer overflow in Windows Network Monitor

IS00-2610 Vulnerabilities in Oracle listener program

CERT2000-19 Revocation of Sun Microsystems Browser Certificates

MS00-079 Buffer overrun in hyperterminal

MS00-077 Patch available for "Net meeting desktop sharing" vulnerability

MS00-076 Patch available for "cached web credentials" Vulnerability

MS00-073 Windows "malformed IPX NMPI packet" Vulnerability

ISS00-059 ISS Alert Summary

MS00-072 Windows "Share level password" Vulnerability

ISS00-0810 Widespread Incidents of Subseven DEFCON8 Backdoor

ST04102000 @Stake Outlines "Unauthorised directory listing" vulnerability under IIS 5.0

MS00-070 Multiple vulnerabilities in LPC

ISS00-2709 Multiple Vulnerabilities in Check Point Firewall-1

ISS00-2509 New variants of Stracheldraht and Trinity found in wild

A091400-1 NTLM Replaying via Windows 2000 Telnet Client

ISS00-058 ISS Alert Summary

MS00-066 Patch available for "Malformed RPC packet" vulnerability

MS00-065 Patch available for "Still image privilege escalation" vulnerability

MS00-064 Patch available for "Unicast race condition" vulnerability

ISS00-TV3 Trinity v3 Distributed denial of service tool

MS00-063 Patch available for "invalid URL" vulnerability

CERTS2000-03 CERT 3rd Quarter summary

MS00-062 Patch available for "Local security policy corruption" vulnerability

CERT2000-18 PGP may encrypt data with unauthorised ADK's

CERT2000-16 Microsoft IE Script /access/object tag vulnerability

ISS00-BRO Brown Orifice - A platform independent java vulnerability in Netscape

MS00-053 Patch available for "Service control manager named pipe impersonation" vulnerability

ISS00-057 ISS Alert Summary

MS00-047 Patch available for "Netbios name server spoofing" vulnerability

NT1043 Windows 2000 Encrypted autoexec.bat DOS

CERT-2000-14 Outlook cache bypass vulnerability

ISS00-OL Buffer overflow exploit in Outlook and Outlook express

CAN-2000-0566 Insecure temporary file handling in Linux makewhatis

CERT-2000-13 Input validation problems in FTPD

MS00-042 Patch available for "Active setup download" vulnerability

ISS00-56 ISS Alert Summary

CERT2000-12 Active X Control allows local files to be executed

MS00-041 Patch available for "DTS Password" Vulnerability

CI-00.03 Cisco IOS Telnet Option handling vulnerability

CERT2000-10 Inconsistent warning messages in Internet Explorer

MS00-039 Patch available for "SSL Certificate Validation vulnerabilities"

SND00-02 Linux capabilities bug

MS00-040 patch available for "Remote Registry Access Authentication" vulnerability

MS00-032 Patch & Tool available for "Protected store key length" vulnerability

MS00-037 Patch available for "HTML Help file codes execution" Vulnerability

ISS00-055 ISS Alert Summary

CERTS2000-02 CERT 2nd Quarter summary

NT1042 Master Browser DOS

NT1041 Windows Computer Browser DOS

CERT2000-09 Flaw in PGP key generation

ISSTOP10 Top 10 Vulnerabilities exploited

MS00-035 SQL 7.0 service pack password

MS00-038 Malformed windows media encoder request

CERT2000-07 Office 2000 UA Active X Controlled incorrectly marked "safe for scripting"

MS00-020 Desktop separation vulnerability

MS00-029 Windows "IP Fragment reassembly" Vulnerability

CERT2000-05 Netscape Navigator improperly validates SSL signatures

CERT2000-03 Continuing compromise of DNS servers

CERTS2000-01 CERT Quarterly Summary

CERT2000-01 Denial of service developments

SAMBA-029 Luke Kenneth Casson Leighton findings on PDC - BDC communications

SA-02 Securax - malformed filename causes windows modules to overflow

SAMBA-028 Luke Kenneth Casson Leighton findings on NT admin password algorithms

SAMBA-027 Windows 2000 BSOD

SAMBA-026 Anonymous SMB service Dos on NT5 (and tcp Dos on NT4)

The above advisories have been compiled or represented here from a variety of resources and from our own information and research. Where possible the originator or source of the information has been accredited and a point of contact for the author or further information on the vulnerability or topic discussed provided.

Bottom Menu

Number	Description
MS02-001	Trusting Domains Do Not Verify Domain Membership of SIDs in Authorization Data
AS02-04	Internet Security Systems Security Alert Summary AS02-04
AS01-11	Internet Security Systems Security Alert Summary AS01-11
CERT2001-37	Buffer Overflow in UPnP Service On Microsoft Windows
CERT2001-35	Recent Activity Against Secure Shell Daemons
CERT2001-34	Buffer overflow in system V derived login
AS01-1212	Buffer Overflow in /bin/login
AS01-10	Internet Security Systems Security Alert Summary AS01-10
MS01-057	Specially Formed Script in HMTL Mail can Execute in Exchange 5.5 OWA
AS01-09	Internet Security Systems Security Alert Summary AS01-09
CERT2001-33	Multiple vulnerabilities in WU-FTPD
AS01-2911	WU-FTPD Heap Corruption Vulnerability
AS01-08	Internet Security Systems Security Alert Summary AS01-08
MS01-056	Windows Media Player .ASF Processor Contains Unchecked Buffer
AS01-07	Internet Security Systems Security Alert Summary AS01-07
AS01-06	Internet Security Systems Security Alert Summary AS01-06
CERT2001-31	Buffer Overflow in CDE Subprocess Control Service
ISS01-3010	Widespread Exploitation of SSH CRC32 Compensation Attack
AS01-04	Internet Security Systems Security Alert Summary AS01-04
CERT2001-29	Oracle9iAS Web Cache vulnerable to buffer overflow
MS01-053	Downloaded Applications Can Execute on Mac IE 5.1 for OS X
AS01-03	Internet Security Systems Security Alert Summary AS01-03
MS01-052 REVISED	Invalid RDP Data can Cause Terminal Service Failure
ISS01-1710	Citrix MetaFrame Remote Denial of Service Vulnerability
AS01-02	Internet Security Systems Security Alert Summary AS01-02
MS01-051	Malformed Dotless IP Address Can Cause Web Page to be Handled in Intranet Zone
ISS01-0910	Weekly Systems alert summary
CERT2001-28	Automatic Execution of Macros
RHSA-2001:110-05	Insecure setserial init script
CERT2001-27	Format String Vulnerability in CDE ToolTalk
MS01-050	Malformed Excel or PowerPoint Document Can Bypass Macro Security
CERT2001-26	Nimda Worm
ISS01-1809	Aggressive propagation of nimda worm
RHSA-2001097-04	New squid packages for Red Hat Linux 7.0
RHSA-2001107-07	New Bugzilla packages available
RHSA-2001093-03	Procmail handles calls unsafely
RHSA-2001:051-18	A flaw has also been found in the pseudo-random number generator used in versions of OpenSSL prior to 0.9.6b.
MS01-048	Malformed Request to RPC Endpoint Mapper can Cause RPC Service to Fail
F8-DLINK20010906	DLink Firewall/Router Vulnerable to Malformed Fragmented
RHSA-2001106-06	New sendmail packages available which fix a local root exploit
RHSA-2001103-04	Updated fetchmail packages available
ISS01-1009	Code Blue Worm
MS01-047	OWA Function Allows Unauthenticated User to Enumerate Global Address List
CERT2001-25	Buffer Overflow in Gauntlet Firewall allows intruders to execute arbitrary code
ISS01-0709s	Internet Security Systems Security Alert Summary September 5, 2001 Volume 6 Number 10
ISS01-0609	Multiple Vendor IDS Unicode Bypass Vulnerability
ISS01-3008	Remote Buffer Overflow Vulnerability in BSD Line Printer Daemon
ISS01-2808	Remote Buffer Overflow Vulnerability in HP-UX Line Printer Daemon
MS01-046	Access Violation in Windows 2000 IRDA Driver Can Cause System to Restart
MS01-045	ISA Server H.323 Gatekeeper Service Contains Memory Leak
MS01-044	Cumulative Patch for IIS
MS01-043	NNTP Service in Windows NT 4.0 and Windows 2000 contains memory leak
CERT2001-24	Vulnerability in OpenView and NetView
ISS01-0708	Remote Vulnerabilities in Macromedia ColdFusion Example Applications
ISS01-06082	Resurgence of "Code Red" Worm Derivatives
ISS01-0608	Multiple Buffer Overflow Vulnerabilities in Raytheon SilentRunner
MS01-042	Windows Media Player .NSC Processor Contains Unchecked Buffer
MS01-041	Malformed RPC Request Can Cause Service Failure
CERT2001-23	Continued threat from "Code Red"
CERT2001-22	W32/Sircam Malicious Code
MS01-040	Invalid RDP Data Can Cause Memory Leak in Terminal Services
MS01-039	Services for Unix 2.0 Telnet and NFS Services Contain Memory Leaks
ISS01-2407	SSH Secure Shell Authentication Bypass Vulnerability
CERT2001-21	Buffer Overflow in telnetd
CERT2001-19	"Code Red" Worm Exploiting Buffer Overflow In IIS Indexing Service DLL
CERT2001-18	Multiple vulnerabilities in LDAP implementations
MS01-038	Outlook View Control Exposes Unsafe Functionality
CERT2001-17	Check Point RDP Bypass Vulnerability
ISS01-1207	Internet Security Systems Security Alert Summary
ISS01-0507	Remote Buffer Overflow in Multiple RADIUS Implementations
CERT2001-15	Buffer Overflow In Sun Solaris in.lpd Print Daemon
CERT2001-14	Cisco IOS HTTP Server Authentication Vulnerability
MS01-036	Function Exposed via LDAP over SSL Could Enable Passwords to be Changed
ISS01-2506	Remote FrontPage Server Extensions Buffer Overflow
ISS01-21062	Multiple Vendor 802.11b Access Point SNMP authentication flaw
ISS01-2106	Wired-side SNMP WEP key exposure in 802.11b Access Points
ISS01-2006	Multiple Oracle listnener denial or service vulnerabilities
ISS01-19062	Remote Buffer Overflow Vulnerability in Solaris Print Protocol Daemon
ISS01-1906	Oracle Redirect denial of service
CERT2001-13	Buffer Overflow In IIS Indexing Service DLL
MS01-032	SQL Query Method Enables Cached Administrator Connection to be Reused
ISS01-1106	BIND Inadvertent Local Exposure of HMAC-MD5 (TSIG) Keys
MS01-031	Predictable Name Pipes Could Enable Privilege Elevation
ISS01-0607	ISS ALert Summary Volume 6 Number 7
MS01-030	Incorrect Attachment Handling in Exchange 2000 OWA Can Execute Script
MS01-029	Windows Media Player .ASX Processor Contains Unchecked buffer
MS01-028	RTF document linked to template can run macros without warning
MS01-027	Flaws in Web Server Certificate Validation Could enable Spoofing
eEYE01-1105	iPlanet - Netscape Enterprise web publisher buffer overrun
ISS01-1505	IIS URL Decoding Vulnerability
MS01-026	Superfluous Decoding Operation Could Allow Command Execution via IIS
ISS01-1405	ISS Alert summary Volume 6 Number 6
MS01-025	Index Server Search Function Contains Unchecked Buffer Index Server Search Function Contains Unchecked Buffer
MS01-024	Malformed request to domain controller can cause memory exhaustion
CERT2001-11	Sadmind / IIS worm exploit
MS01-023	Unchecked buffer in ISAPI extension could allow compromise of IIS 5.0
MS01-021	Invalid web request can cause access violation in ISA Server web proxy service
CERT2001-10	Buffer overflow vulnerability with IIS 5.0
CERT2001-09	Statistical Weakness in TCPIP initial sequence numbers
CERT2001-08	Multiple vulnerabilities in Alcatel ADSL Modems
CERT2001-07	Globbing vulnerabilities in various FTP servers
CERT2001-05	Exploitation of snmpXdmid
MS01-020	Incorrect MIME header can cause IE to execute Email attachment
MS01-019	Passwords on compressed folders are recoverable
CERT2001-04	Unauthentic Microsoft Corporation certificates
ISS01-1503	New IDS stress tester presents opportunities for DOS
ISS01-1203	New version of Subseven backdoor
MS01-016	Malformed WebDAV request can cause IIS to exhaust CPU resources
NIPC01-003	FBI advise of continued attacks on e-business sites
MS01-014	Malformed URL can cause service failure in IIS5.0 and Exchange 2000
CERTS2001-01	Cert 1st Quarter Summary
MS01-013	Windows 2000 Event view contains unchecked buffer
MS01-011	Malformed request to domain controller may cause denial of service
ST27022001	@Stake warns of vulnerability in MS Outlook Vcard handling
MS01-010	Patch available for "Windows media player skins file download" Vulnerability
MS01-009	Patch available for "malformed pptp packet stream vulnerability
ISS-0603	ISS Alert Summary Volume 6 Number 3
CERT2001-03	VBS On the fly (Anna Kournikova) malicious Code
ST09122000	SQL Server 7.00 extended stored procedure vulnerability
XATO-122000-01	Multiple Vulnerabilities in CMD line mailers
CERT2000-22	Input validation problems in LPRng
CERT2000-21	Denial of Service vulnerabilities in TCP/IP stacks
ST24112000	@Stake Outlines buffer overrun vulnerability in Windows 2000
GG00-029	George Guninski's advisory on IE 5.5
MS00-089	Patch available for "Domain account lockout" Vulnerability
CERTS2000-04	CERT 4th Quarter Summary
MS00-088	Patch available for "Exchange 2000 User account" Vulnerability
CERT2000-20	Multiple denial-of-service problems in BIND
MS00-087	Terminal Server login buffer overflow
MS00-086	Patch available for "web server file request parsing" vulnerability
MS00-084	Patch available for "Indexing services cross site scripting" vulnerability
MS00-060	Patch available for "IIS Cross-site scripting" vulnerabilities
MS00-085	Patch available for "Active X parameter validation" vulnerability
ISS00-0211	Buffer overflow in Windows Network Monitor
IS00-2610	Vulnerabilities in Oracle listener program
CERT2000-19	Revocation of Sun Microsystems Browser Certificates
MS00-079	Buffer overrun in hyperterminal
MS00-077	Patch available for "Net meeting desktop sharing" vulnerability
MS00-076	Patch available for "cached web credentials" Vulnerability
MS00-073	Windows "malformed IPX NMPI packet" Vulnerability
ISS00-059	ISS Alert Summary
MS00-072	Windows "Share level password" Vulnerability
ISS00-0810	Widespread Incidents of Subseven DEFCON8 Backdoor
ST04102000	@Stake Outlines "Unauthorised directory listing" vulnerability under IIS 5.0
MS00-070	Multiple vulnerabilities in LPC
ISS00-2709	Multiple Vulnerabilities in Check Point Firewall-1
ISS00-2509	New variants of Stracheldraht and Trinity found in wild
A091400-1	NTLM Replaying via Windows 2000 Telnet Client
ISS00-058	ISS Alert Summary
MS00-066	Patch available for "Malformed RPC packet" vulnerability
MS00-065	Patch available for "Still image privilege escalation" vulnerability
MS00-064	Patch available for "Unicast race condition" vulnerability
ISS00-TV3	Trinity v3 Distributed denial of service tool
MS00-063	Patch available for "invalid URL" vulnerability
CERTS2000-03	CERT 3rd Quarter summary
MS00-062	Patch available for "Local security policy corruption" vulnerability
CERT2000-18	PGP may encrypt data with unauthorised ADK's
CERT2000-16	Microsoft IE Script /access/object tag vulnerability
ISS00-BRO	Brown Orifice - A platform independent java vulnerability in Netscape
MS00-053	Patch available for "Service control manager named pipe impersonation" vulnerability
ISS00-057	ISS Alert Summary
MS00-047	Patch available for "Netbios name server spoofing" vulnerability
NT1043	Windows 2000 Encrypted autoexec.bat DOS
CERT-2000-14	Outlook cache bypass vulnerability
ISS00-OL	Buffer overflow exploit in Outlook and Outlook express
CAN-2000-0566	Insecure temporary file handling in Linux makewhatis
CERT-2000-13	Input validation problems in FTPD
MS00-042	Patch available for "Active setup download" vulnerability
ISS00-56	ISS Alert Summary
CERT2000-12	Active X Control allows local files to be executed
MS00-041	Patch available for "DTS Password" Vulnerability
CI-00.03	Cisco IOS Telnet Option handling vulnerability
CERT2000-10	Inconsistent warning messages in Internet Explorer
MS00-039	Patch available for "SSL Certificate Validation vulnerabilities"
SND00-02	Linux capabilities bug
MS00-040	patch available for "Remote Registry Access Authentication" vulnerability
MS00-032	Patch & Tool available for "Protected store key length" vulnerability
MS00-037	Patch available for "HTML Help file codes execution" Vulnerability
ISS00-055	ISS Alert Summary
CERTS2000-02	CERT 2nd Quarter summary
NT1042	Master Browser DOS
NT1041	Windows Computer Browser DOS
CERT2000-09	Flaw in PGP key generation
ISSTOP10	Top 10 Vulnerabilities exploited
MS00-035	SQL 7.0 service pack password
MS00-038	Malformed windows media encoder request
CERT2000-07	Office 2000 UA Active X Controlled incorrectly marked "safe for scripting"
MS00-020	Desktop separation vulnerability
MS00-029	Windows "IP Fragment reassembly" Vulnerability
CERT2000-05	Netscape Navigator improperly validates SSL signatures
CERT2000-03	Continuing compromise of DNS servers
CERTS2000-01	CERT Quarterly Summary
CERT2000-01	Denial of service developments
SAMBA-029	Luke Kenneth Casson Leighton findings on PDC - BDC communications
SA-02	Securax - malformed filename causes windows modules to overflow
SAMBA-028	Luke Kenneth Casson Leighton findings on NT admin password algorithms
SAMBA-027	Windows 2000 BSOD
SAMBA-026	Anonymous SMB service Dos on NT5 (and tcp Dos on NT4)