FreeBSD Security Advisory FreeBSD-SA-00:46 - The screen port, versions 3.9.5 and before, contains a vulnerability which allows local users to gain root privileges. This is accomplished by inserting string-formatting operators into configuration parameters, which may allow arbitrary code to be executed.
42fc636e75dec72d9698572a3e19f2c6947bfa82773535479548ca93c2d63d53
jew.c v1.1 is a linux based bluebox program. Features DTMF dialing, CCITT 5 dialing, some c5 toys, ACTS tone generation, and more. Dosn't studder like ADM's linux tone generation program.
d885f5f4273ab67eb9826c4627253a1fe638e6aa037101077d2dfa0c2e663614
chkrootkit V. 0.17 locally checks for signs of a rootkit. Includes detection of LKM rootkits, ifpromisc.c to check and see if the interface is in promisc mode, chklastlog.c to check lastlog for deletions, and chkwtmp.c to check wtmp for deletions. Tested on Linux, FreeBSD, and Solaris.
bc34744b5328306b93b47066622634a50b5c355452a1f2b68495fe700faa53b4
Nessus is a free, up-to-date, and full featured remote security scanner for Linux, BSD, Solaris and some other systems. It is multithreaded, plugin-based, has a nice GTK interface, and currently performs over 509 remote security checks. It has powerful reporting capabilities (HTML, LaTeX, ASCII text) and not only points out problems, but suggests a solution for each of them.
675ea6db964d4d0a9825d2c09e5d4e0a6e31cebf39a3f970c265e9dad7e91878
Winfingerprint 229: Advanced remote windows OS detection. Current Features: Determine OS using SMB Queries, PDC (Primary Domain Controlller), BDC (Backup Domain Controller), NT member server, NT Workstation, SQLServer, Novell Netware Server, Windows for Workgroups, Windows 9X, Enumerate Servers, Enumerate Shares including Administrative ($), Enumerate Global Groups, Enumerate Users, Displays Active Services, Ability to Scan Network Neighborhood, Ability to establish NULL IPC$ session with host, Ability to Query Registry (currently determines Service Pack Level & Applied Hotfixes.
40bf57d3f8c13c4a064696eb6aaa5bf41ad2424ba19056cdec86c41a41e74938
Weekly Newsletter from Help Net Security - Covers weekly roundups of security events that were in the news the past week. In this issue: Microsoft "un-removable user" vulnerability, Wavelink 2458 vulnerability, IE 5.5 cross frame vulnerability, WFTPD dos vulnerability, Screen 3.9.5 local root vulnerability, php file upload vulnerability, QNX voyager issues, Glibc update, SunFTP vulnreable, and much more.
c898ce77ac0700892b460049f5f830a5924ec38d27ef1f526debe3ae6c0e33fb
A security hole was discovered in syslogd distributed with SuSE 6.2 and 6.3. Local denial of service. Patches available here.
f9eda213e0b80c0aada004c3af66d392c1f5e5c90aea89f48c4d4610eab0854d
Slackware Security Advisory - Xchat has an input validation bug which allows remote command execution.
30dc8aac1f0ccab4ffb1e0ba8491d2439abe3a70956951c5f2cf47f52ecaed0e
Multihtml.c is a remote exploit for /cgi-bin/multihtml.pl, versions previous to 2.2 which spawns a remote shell.
1cb8b402e54df7815270db3a85536296536997d3459dfb03bc464424e639323c
Weekly Newsletter from Help Net Security - Covers weekly roundups of security events that were in the news the past week. In this issue: WebSphere application server pligin issue, Mdaemon web services heap overflow, Camshot server vulnerability, Microsoft re-releases the NTML patch, Sambar server search CGI vulernability, Screen format string exploit. Also includes articles on the security of electronic banking, virus scanner inadequacies with NTFS, bi-lingual servers, Building a bastion host using HP-UX 11, Network Intrusion Detection of third party effects, Format String attacks, Mail Abuse prevention organization stands up to Harris Interactive, and much more.
42e75b75a52f4dea98cd72f8c46e09c594f8554e905a37edd3b42a0833bdec9c