Friday, May 21, 2004


Well I had an early start today, had to drop my little sister to school. Any ways there is not much news today except for the usual exploits and such ; ). Happy reading.



Open-source group says no to SCO
Mozzila 1.8 Alpha 1 released download.

Linux News:

AbiWord v2.0.7 Released

uwog writes "While our current development series is bound to be a great success, we have not forgotten our stable releases. Therefore, the AbiWord development team is proud to release AbiWord v2.0.7. This release benefits greatly from the feature freeze currently active on our development series, which means that all our efforts are focussed on fixing bugs; bugs that might be present the stable versions as well.
This release is a bugfix release only, with the addition of a new officially supported build system: MS Visual C++. The changes from 2.0.6 to 2.0.7 include, amongst others:
* Added MSVC6 support
* Fix full-screen mode on Windows
* Fix the incorrect height of the line after an image
* Fix crashers when merging table cells
* ... and a LOT more
The full ChangeLog can be found here. We encourage all users to upgrade to this latest stable release.
If you happen to run into a bug in this release, we would very much appreciate it if you would take some time to file a report in our bug database.
Main site (EU): http://www.abisource.com/download/.
More information
Main site (EU): http://www.abisource.com/.

Fedora Core 2 Review
Interview with Everaldo and Jimmac
Sun Java Desktop System review
PearPC 0.1: Is It A Miracle?
[Mono-list] Is it Mono safe?
20 May 2004: More patents.
Helix Player and RealPlayer 10 for Linux Alpha available!
Is a Whole New Approach to Linux on the Way from MS?
AbiWord v2.0.7 Released
IBM Goes on the Offensive and Asks for Partial Summary Judgment Now
Certification: A First Look at SUSE Certification


Cyber Security News:

Bugtraq: Internet explorer .clsid vulnerability
Bugtraq: [slackware-security] cvs (SSA:2004-140-01)
Symantec Norton AntiVirus Email Header Case Scan Bypass
Honeynet Project's Bug tracking site
Site Redesign proposal for insecure.org
Buffer Overflow books???
Hacker group gets dose of own medicine
Linux Advisory Watch - May 21st 2004
New evidence points to Cisco network hack
Cisco Still Mum On Reported Code Theft


Viruses and Worms

Backdoor.Leniv is a Backdoor Trojan horse that allows unauthorized remote access to an infected computer.
Also Known As: BackDoor-BCZ [McAfee], Backdoor.Leniv [Kaspersky], Troj/Leniv-A [Sophos]
Type: Trojan Horse
Infection Length: 78,848 bytes
Systems Affected: Windows 95, Windows 98, Windows Me, Windows NT, Windows XP
Systems Not Affected: DOS, Linux, Macintosh, Novell Netware, OS/2, UNIX, Windows 3.x

W32.Donk.Q is a worm that spreads through open network shares and attempts to exploit the Microsoft DCOM RPC vulnerability (as described in Microsoft Security Bulletin MS03-026).
The worm can also open a backdoor on an infected computer.
Symantec Security Response has developed a removal tool to clean the infections of W32.Donk.Q.
Also Known As: W32/Sdbot.worm.gen.b [McAfee]
Type: Worm
Infection Length: 68,099 bytes
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
Systems Not Affected: DOS, Linux, Macintosh, OS/2, UNIX
CVE References: CAN-2003-0352

More on the Bobax worms
There's now four different versions of the Bobax worm. All of them are used by spammers and controlled through a handful of websites. Some of the variants now even do bandwidth testing to find the most useful machines for spammers to send their spam from.
Also, later variants in the family spread also through the RPC DCOM hole (135/TCP) in addition of the LSASS hole (445/TCP) - and they fingerprint target systems through UPnP (5000/TCP).

Person who tipped off Microsoft about Sasser author also under suspicion? Sophos comments
17 May 2004
Person who tipped off Microsoft about Sasser author also under suspicion? Sophos comments
According to reports in the German media, the person who gave Microsoft valuable information which lead to the arrest of Sven Jaschan, the suspected author of the Sasser worm, may themselves be under suspicion.
It has been widely reported that the German office of Microsoft was approached on Wednesday 5 May by someone inquiring about whether a cash award was available for information leading to the capture of Sasser's author. According to Microsoft $250,000 was duly offered.
As well as Sven Jaschan, five other students at Jaschan's college are also being investigated. According to the German-language Focus news magazine, one of these five students was involved in passing information to Microsoft about Jaschan, and is now being investigated concerning computer sabotage.
Speaking of the five students who have been questioned and had their houses raided and computer systems examined, the public prosecutor's spokesman Detlev Dyballa was reported as saying: "I cannot rule out that these include the person who has tipped off Microsoft about the author of Sasser."
The person suspected of informing Microsoft has been reportedly named only as "Marle B". Dyballa refused to give more detailed information as the investigation continues.
Microsoft spokesman Thomas Baumgärtner has said that the software giant will not hand out a reward to those involved in the crime: "If they were involved in the Sasser case, they won't get anything".
"Mystery continues to surround the identity of the Sasser informants, and security experts have publicly speculated that maybe they are involved in the computer underground," said Graham Cluley, senior technology consultant for Sophos. "If Sven Jaschan's identity as the author of Sasser was revealed by one of his fellow students then it's possible there was a violent disagreement between those engaged in spreading the viruses."

Hackers spread virus, force shutdown of Gaston County e-mails
Sasser fan club stops rattling tin
Person who tipped off Microsoft about Sasser author also under suspicion? Sophos comments


Goggle News:

Google Image Ads…
Google Gmail Beta



Worst Explanation From Tech Support?
Examining the Blackout
Blackout Bug Proves Limits of Software Testing
California town for sale on eBay finally sold
Italy approves 'jail for P2P users' law
Blogging at Microsoft Backgrounder
C Programming




Post a Comment

<< Home

Get Firefox!