Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

SecurityFocus Microsoft Newsletter #202

from [Marc Fossi] Network Security [Permanent Link]
Subject: SecurityFocus Microsoft Newsletter #202
Date: Thu, 19 Aug 2004 08:16:37 -0600 (MDT) 
SecurityFocus Microsoft Newsletter #202
----------------------------------------

This Issue is Sponsored By: SecurityFocus

Want to keep up on the latest security vulnerabilities? Don't have time to
visit a myriad of mailing lists and websites to read the news? Just add the
new SecurityFocus RSS feeds to your freeware RSS reader, and see all the
latest posts for Bugtraq and the SF Vulnernability database in one
convenient place. Or, pull in the latest news, columnists and feature
articles in the SecurityFocus aggregated news feed, and stay on top of
what's happening in the community!

http://www.securityfocus.com/rss/index.shtml

------------------------------------------------------------------------
I. FRONT AND CENTER
     1. Examining a Public Exploit, Part 1
     2. Detecting Worms and Abnormal Activities with NetFlow, Part 1
     3. Big Brother's Last Mile
II. MICROSOFT VULNERABILITY SUMMARY
     1. PluggedOut Blog Blog_Exec.PHP Cross-Site Scripting Vulnerabi...
     2. RhinoSoft Serv-U FTP Server Default Administration Account V...
     3. Xine-Lib Remote Buffer Overflow Vulnerability
     4. PluggedOut Blog Calendar Module Cross-Site Scripting Vulnera...
     5. Microsoft Windows XP SP2 Released - Multiple Vulnerabilities...
     6. Microsoft Windows 2000/XP CRL File Failed Integrity Check De...
     7. Microsoft Exchange Outlook Web Access HTTP Response Splittin...
     8. VentaFax System Tray Application Local Privilege Escalation ...
     9. Multiple Vendor Graphics Driver Large JPEG Processing Remote...
     10. WIDCOMM Bluetooth Communication Software Multiple Unspecifie...
     11. Internet Security Systems BlackICE PC Protection Firewall.IN...
     12. Shuttle FTP Suite TFTP Server Directory Traversal Vulnerabil...
     13. IceWarp Web Mail Multiple Undisclosed Remote Vulnerabilities
     14. MapInfo Discovery Multiple Remote Vulnerabilities
     15. Microsoft Windows Internet Connection Firewall Filter Bypass...
     16. Adobe Acrobat Reader Shell Metacharacter Remote Arbitrary Co...
     17. Keene Digital Media Server Directory Traversal and Authentic...
     18. RealNetwork RealPlayer Unspecified Remote Vulnerability
     19. Kerio Mailserver Embedded HTTP Server Multiple Unspecified V...
     20. Clearswift MAILsweeper For SMTP PowerPoint Files Denial of S...
     21. HanSoft 4tH Unspecified Vulnerability
III. MICROSOFT FOCUS LIST SUMMARY
     1. Windows 2000 Administrator lockout (Thread)
     2. most avtive attack type (Thread)
     3. RE : most avtive attack type (Thread)
     4. Article Announcement: Redmond's Salvation (Thread)
     5. SecurityFocus Microsoft Newsletter #201 (Thread)
IV. NEW PRODUCTS FOR MICROSOFT PLATFORMS
     1. WiSSH
     2. Firewall RuleMaker
     3. CAT Cellular Authentication Token and eAuthentication Servic...
     4. KeyCaptor Keylogger
     5. SpyBuster
     6. FreezeX
V. NEW TOOLS FOR MICROSOFT PLATFORMS
     1. IDS Policy Manager v1.4.1
     2. cenfw 0.3b
     3. zigstack 5
     4. MonitorMagic - Server & Network Monitor 6.0
     5. CipherPack Pro 3.2
     6. Savungan - Stateful Inspection Firewall for Windows with FUL... 2.0
VI. UNSUBSCRIBE INSTRUCTIONS
VII. SPONSOR INFORMATION

I. FRONT AND CENTER
-------------------
1. Examining a Public Exploit, Part 1
By Don Parker

The purpose of this article is to analyze a public exploit in a lab
environment, see the alerts generated by an intrusion detection system, and
then do some packet analysis of the malicious binary in order to better
understand it.

http://www.securityfocus.com/infocus/1795



2. Detecting Worms and Abnormal Activities with NetFlow, Part 1
By Yiming Gong

This paper discusses the use of NetFlow, a traffic profile monitoring
technology available on many routers, for use in the early detection of
worms, spammers, and other abnormal network activity in large enterprise
networks and service providers.

http://www.securityfocus.com/infocus/1796


3. Big Brother's Last Mile
By Mark Rasch

The FCC's new ruling on broadband wiretaps will force customers to pay for
the privilege of making the Internet less secure.

http://www.securityfocus.com/columnists/261

II. MICROSOFT VULNERABILITY SUMMARY
-----------------------------------
1. PluggedOut Blog Blog_Exec.PHP Cross-Site Scripting Vulnerabi...
BugTraq ID: 10885
Remote: Yes
Date Published: Aug 07 2004
Relevant URL: http://www.securityfocus.com/bid/10885
Summary:
PluggedOut Blog is reported prone to a cross-site scripting vulnerability.

This could allow for execution of hostile HTML and script code in the web 
client of a user who visits a malicious link to the vulnerable site. This code 
execution would occur in the security context of the site hosting the 
vulnerable software.

Exploitation could allow for theft of cookie-based authentication credentials. 
Other attacks are also possible.

2. RhinoSoft Serv-U FTP Server Default Administration Account V...
BugTraq ID: 10886
Remote: No
Date Published: Aug 08 2004
Relevant URL: http://www.securityfocus.com/bid/10886
Summary:
It is reported that the RhinoSoft Serv-U FTP server has a default 
administration account that is used to authenticate to the site maintenance 
interface.

The weak account can be used to log into the site maintenance interface on the 
loopback interface only, and to create user accounts. An ftp user account 
created with execute rights, may permit a local attacker to execute arbitrary 
binaries in the context of the vulnerable server.

3. Xine-Lib Remote Buffer Overflow Vulnerability
BugTraq ID: 10890
Remote: Yes
Date Published: Aug 08 2004
Relevant URL: http://www.securityfocus.com/bid/10890
Summary:
It is reported that the xine media library is affected by a remote buffer 
overflow vulnerability.  This issue can allow a remote attacker to gain 
unauthorized access to a vulnerable computer.

xine-lib rc-5 and prior versions are reportedly affected by this issue.  xine 
versions 0.99.2 and prior are also vulnerable.

4. PluggedOut Blog Calendar Module Cross-Site Scripting Vulnera...
BugTraq ID: 10894
Remote: Yes
Date Published: Aug 09 2004
Relevant URL: http://www.securityfocus.com/bid/10894
Summary:
The Blog 'calendar' module does not sufficiently sanitize data supplied via URI 
parameters, making it prone to cross-site scripting attacks. This could allow 
for execution of hostile HTML and script code in the web client of a user who 
visits a malicious link to the vulnerable site.

5. Microsoft Windows XP SP2 Released - Multiple Vulnerabilities...
BugTraq ID: 10897
Remote: Yes
Date Published: Aug 09 2004
Relevant URL: http://www.securityfocus.com/bid/10897
Summary:
Microsoft has released Windows XP Service Pack 2.  This release addresses a 
number of bugs, including some potential security vulnerabilities and 
weaknesses.  Many of the bugs that have been fixed in this Service Pack may 
have a security impact that may be exploited by a local or remote attacker.  
Possible consequences include privilege escalation, lowered security settings, 
denial of service attacks, policy bypass, and remote code execution. The 
release also includes various security enhancements and roll-ups for previous 
security updates.

6. Microsoft Windows 2000/XP CRL File Failed Integrity Check De...
BugTraq ID: 10901
Remote: No
Date Published: Aug 09 2004
Relevant URL: http://www.securityfocus.com/bid/10901
Summary:
It is reported that Microsoft Windows 2000/XP does not verify the integrity of 
CRL (Certificate Revocation Lists) files prior to accepting them as valid.

A local attacker, who has sufficient privileges to write to a CRL file, may 
exploit this vulnerability to deny X.509 based services to legitimate users.

This BID will be updated as further analysis of this vulnerability is completed.

7. Microsoft Exchange Outlook Web Access HTTP Response Splittin...
BugTraq ID: 10902
Remote: Yes
Date Published: Aug 10 2004
Relevant URL: http://www.securityfocus.com/bid/10902
Summary:
Microsoft Exchange Outlook Web Access (OWA) is prone to HTTP response splitting 
attacks.

This issue could permit hostile script to be injected into client sessions, 
which could gain access to properties of the OWA server and Web pages hosted on 
the site.

It is noted that the attacker must authenticate to OWA to be in a position to 
exploit this issue.  If successfully exploited, this could allow for various 
attacks, such as session hijacking, and content spoofing.  This issue could 
also be used to exploit latent vulnerabilities in Web client software.

8. VentaFax System Tray Application Local Privilege Escalation ...
BugTraq ID: 10906
Remote: No
Date Published: Aug 10 2004
Relevant URL: http://www.securityfocus.com/bid/10906
Summary:
It is reported that a privilege escalation vulnerability exists in the VentaFax 
System Tray application.  The issue is due to the software starting with SYSTEM 
privileges, to enable access to the modem hardware, and subsequently failing to 
drop the privileges.

Although only VentaFax version 5.4 is reported vulnerable, it is likely that 
other versions are prone as well.

9. Multiple Vendor Graphics Driver Large JPEG Processing Remote...
BugTraq ID: 10913
Remote: Yes
Date Published: Aug 10 2004
Relevant URL: http://www.securityfocus.com/bid/10913
Summary:
Multiple vendor graphics device drivers are reported prone to a denial of 
service vulnerability. The issue is alleged to manifest when a malicious JPEG 
image is rendered in a browser on an affected platform.

It is reported that this issue exists in the Intel VGA display drivers, it is 
also reported that the vulnerability is present in ATI display drivers. The 
discoverer of this issue reports that the issue may be triggered on a Microsoft 
Windows XP platform (SP1 & SP2), using Mozilla Firefox or Microsoft Internet 
Explorer.

This BID will be updated as further analysis of this vulnerability is completed.

10. WIDCOMM Bluetooth Communication Software Multiple Unspecifie...
BugTraq ID: 10914
Remote: Yes
Date Published: Aug 11 2004
Relevant URL: http://www.securityfocus.com/bid/10914
Summary:
WIDCOMM Bluetooth Communication Software is reported prone to multiple 
unspecified remote buffer overflow vulnerabilities.  These vulnerabilities 
exist due to insufficient boundary checks performed by the application.

It is reported that an unauthenticated remote attacker can trigger the overflow 
conditions by supplying malformed service requests.

Various devices from multiple vendors are thought to be affected by these 
issues, as they are implemented with WIDCOMM software.  These issues have been 
verified by the researchers in BTStackServer version 1.3.2.7 and 1.4.2.10 
running on Microsoft Windows XP and Windows 98.  HP IPAQ 5450 running WinCE 3.0 
with Bluetooth software version 1.4.1.03 is reported prone as well.

WIDCOMM Bluetooth Communication Software BTW & BT-CE/PPC 3.0 do not appear to 
be affected by these issues.

This BID will be updated when more information is available.

11. Internet Security Systems BlackICE PC Protection Firewall.IN...
BugTraq ID: 10915
Remote: No
Date Published: Aug 11 2004
Relevant URL: http://www.securityfocus.com/bid/10915
Summary:
It is reported that BlackICE PC Protection is prone to a local buffer overrun 
when handling excessive input in certain configuration directives parsed from 
the firewall.ini file included with the software.

It is reported that when the system is restarted, and the affected software 
reads the malicious firewall.ini file both the blackice.exe and blackd.exe 
executables will crash.

12. Shuttle FTP Suite TFTP Server Directory Traversal Vulnerabil...
BugTraq ID: 10916
Remote: Yes
Date Published: Aug 11 2004
Relevant URL: http://www.securityfocus.com/bid/10916
Summary:
It is reported that the Shuttle FTP Suite TFTP server is susceptible to a 
directory traversal vulnerability.

This vulnerability allows a remote attacker to read and write files outside of 
the TFTP document root directory. An attacker may read and write files with the 
privileges of the TFTP server process.

An attacker may retrieve or overwrite sensitive files on the hosting computer, 
potentially aiding them in further system compromise.

Version 3.2 has been reported susceptible to this vulnerability. Other versions 
may also be affected.

13. IceWarp Web Mail Multiple Undisclosed Remote Vulnerabilities
BugTraq ID: 10920
Remote: Yes
Date Published: Aug 11 2004
Relevant URL: http://www.securityfocus.com/bid/10920
Summary:
IceWarp Web Mail is reported prone to multiple unspecified vulnerabilities. It 
is reported that these issues may be exploited by a remote attacker to conduct 
SQL Injection, Account Manipulation, Cross-site Scripting, Information 
disclosure, Local file system access, and other attacks. Few details regarding 
the specific vulnerabilities are known.

This BID will be updated as further details regarding these vulnerabilities are 
released.

14. MapInfo Discovery Multiple Remote Vulnerabilities
BugTraq ID: 10927
Remote: Yes
Date Published: Aug 12 2004
Relevant URL: http://www.securityfocus.com/bid/10927
Summary:
Multiple remote vulnerabilities are reported in MapInfo Discovery.

The first issue is reported to be an information disclosure vulnerability. An 
attacker may gain access to potentially sensitive error log information that 
could aid an attacker in further system compromise.

The second issue is reported to be a cross-site scripting vulnerability. The 
application fails to properly sanitize user-supplied URI argument data. This 
could allow for execution of hostile HTML and script code in the web client of 
a user who visits a malicious link to the vulnerable site. This code execution 
would occur in the security context of the site hosting the vulnerable 
software. Exploitation could allow for theft of cookie-based authentication 
credentials. Other attacks are also possible.

The third issue is reported to be a plaintext password information disclosure 
vulnerability. An attacker with the ability to sniff network traffic could 
capture user and SQL database credentials.

The fourth issue is reported to be an administrative login authentication 
bypass vulnerability. An attacker with a regular user account on the 
application can gain administrative access.

MapInfo Discovery versions 1.0 and 1.1 are reported susceptible to these 
vulnerabilities.

15. Microsoft Windows Internet Connection Firewall Filter Bypass...
BugTraq ID: 10930
Remote: Yes
Date Published: Aug 12 2004
Relevant URL: http://www.securityfocus.com/bid/10930
Summary:
It is reported that the Internet Connection Firewall is susceptible to a filter 
bypass vulnerability.

This issue presents itself during the boot process of Microsoft Windows 
operating systems.

This vulnerability allows packets to pass, possibly in violation of the 
firewall rules. By exploiting this vulnerability, a remote attacker may be able 
to make network connections to services protected by the firewall. This may 
open up avenues of attack that were thought to have been protected by the 
firewall, providing a false sense of security.

Windows XP Service Pack 2 is reported to fix this vulnerability.

16. Adobe Acrobat Reader Shell Metacharacter Remote Arbitrary Co...
BugTraq ID: 10931
Remote: Yes
Date Published: Aug 12 2004
Relevant URL: http://www.securityfocus.com/bid/10931
Summary:
A remote code execution vulnerability is identified in Adobe Acrobat Reader.  
This issue may allow an attacker gain unauthorized access to a vulnerable 
computer.

Acrobat Reader is affected by a shell metacharacter command execution 
vulnerability.  This issue exists due to insufficient sanitization of 
user-supplied data by Acrobat Reader for Unix and Linux platforms.  Successful 
exploitation can allow an attacker to use a specially crafted file name to 
execute arbitrary commands and applications through the shell.

Adobe Acrobat Reader version 5.0 for Unix and Linux platforms is reported 
vulnerable to this issue.  Acrobat Reader for Microsoft Windows platforms is 
not affected by this issue.

17. Keene Digital Media Server Directory Traversal and Authentic...
BugTraq ID: 10933
Remote: Yes
Date Published: Aug 12 2004
Relevant URL: http://www.securityfocus.com/bid/10933
Summary:
It is reported that DMS is susceptible to a directory traversal vulnerability, 
and an administrative access authentication bypass vulnerability.

The directory traversal issue is due to insufficient sanitization of 
user-supplied data. An attacker may exploit this vulnerability in order to 
disclose web server readable files that exist outside of the web root on the 
vulnerable server.

The administrative access authentication bypass vulnerability is present when 
an attacker directly accesses the URI of the administrative script.

These vulnerabilities allow a remote attacker to administer the application, or 
retrieve potentially sensitive files, possibly aiding them in further system 
compromise.

Version 1.0.2 of the software is reported vulnerable to these issues. Other 
versions may also be affected.

18. RealNetwork RealPlayer Unspecified Remote Vulnerability
BugTraq ID: 10934
Remote: Yes
Date Published: Aug 12 2004
Relevant URL: http://www.securityfocus.com/bid/10934
Summary:
It is reported that RealNetwork RealPlayer contains an unspecified 
vulnerability that allows for execution of arbitrary code in the context of the 
user running the player.

No further information is available at this time. This BID will be updated as 
further information is disclosed.

19. Kerio Mailserver Embedded HTTP Server Multiple Unspecified V...
BugTraq ID: 10936
Remote: Yes
Date Published: Aug 12 2004
Relevant URL: http://www.securityfocus.com/bid/10936
Summary:
Kerio MailServer version 6.0.1 has been released.  This release addresses 
various unspecified security vulnerabilities in the embedded HTTP server 
implemented with the Kerio MailServer application.  The cause and impact of 
these issues is currently unknown.

All versions of Kerio MailServer prior to 6.0.1 are considered vulnerable.

20. Clearswift MAILsweeper For SMTP PowerPoint Files Denial of S...
BugTraq ID: 10937
Remote: Yes
Date Published: Aug 13 2004
Relevant URL: http://www.securityfocus.com/bid/10937
Summary:
MAILsweeper for SMTP is reported prone to a remote denial of service 
vulnerability.  This issue presents itself when the application processes 
malformed Microsoft PowerPoint files.

MAILsweeper for SMTP versions 4.3.14 and prior are considered vulnerable to 
this issue.

21. HanSoft 4tH Unspecified Vulnerability
BugTraq ID: 10939
Remote: Unknown
Date Published: Aug 13 2004
Relevant URL: http://www.securityfocus.com/bid/10939
Summary:
An unspecified vulnerability is reported in the HanSoft 4tH compiler.

This vulnerability is reported to be fixed in version 3.4e-pre4.

No further information was reported. This BID will be updated as new 
information is disclosed.

III. MICROSOFT FOCUS LIST SUMMARY
---------------------------------
1. Windows 2000 Administrator lockout (Thread)
Relevant URL:

http://www.securityfocus.com/archive/88/371847

2. most avtive attack type (Thread)
Relevant URL:

http://www.securityfocus.com/archive/88/371746

3. RE : most avtive attack type (Thread)
Relevant URL:

http://www.securityfocus.com/archive/88/371701

4. Article Announcement: Redmond's Salvation (Thread)
Relevant URL:

http://www.securityfocus.com/archive/88/371494

5. SecurityFocus Microsoft Newsletter #201 (Thread)
Relevant URL:

http://www.securityfocus.com/archive/88/371435

IV. NEW PRODUCTS FOR MICROSOFT PLATFORMS
----------------------------------------
1. WiSSH
By: Digital Labs, LLC
Platforms: Windows 2000, Windows NT, Windows XP
Relevant URL: http://www.wissh.com
Summary:

WiSSH (Windows over SSH) utilizes SSH tunneling technology to secure 
Microsoft's RDP protocol. Allows access to multiple hosts behind your network 
perimeter with only a single host's SSH port open to the Internet

2. Firewall RuleMaker
By: The Net Memetic Pte Ltd
Platforms: Windows 2000, Windows 95/98, Windows NT, Windows XP
Relevant URL: http://firewall.rulemaker.net
Summary:

Firewall RuleMaker is a Windows-based firewall configuration version control 
software product for managers of Cisco PIX and Netscreen firewalls.

3. CAT Cellular Authentication Token and eAuthentication Servic...
By: Mega AS Consulting Ltd
Platforms: Java, Linux, OpenBSD, Os Independent, SecureBSD, Solaris, UNIX, 
Windows 2000, Windows NT
Relevant URL: http://www.megaas.co.nz
Summary:

Low cost, easy to use Two Factor Authentication One Time Password token using 
the Cellular. Does not use SMS or communication, manages multiple OTP accounts 
- new technology. For any business that want a safer access to its Internet 
Services. More information at our site.

We also provide eAuthentication service for businesses that will not buy an 
Authentication product but would prefer to pay a monthly charge for 
authentication services from our our CAT Server.

4. KeyCaptor Keylogger
By: Keylogger Software
Platforms: MacOS, Windows 2000, Windows 95/98, Windows NT, Windows XP
Relevant URL: http://www.keylogger-software.com/keylogger/keylogger.htm
Summary:

KeyCaptor is your solution for recording ALL keystrokes of ALL users on your 
computer!  Now you have the power to record emails, websites, documents, chats, 
instant messages, usernames, passwords, and MUCH MORE!

With our advanced stealth technology, KeyCaptor will not show in your processes 
list and cannot be stopped from running unless you say so!

5. SpyBuster
By: Remove Spyware
Platforms: Windows 2000, Windows 95/98, Windows NT, Windows XP
Relevant URL: http://www.remove-spyware.com/spybuster.htm
Summary:

Our award winning spyware / adware scanner and removal software, SpyBuster will 
scan your computer for over 4,000 known spyware and adware applications. 
SpyBuster protects your computer from data stealing programs that can expose 
your personal information.

SpyBuster scanning technology allows for a quick and easy sweep, so you can 
resume your work in minutes.

6. FreezeX
By: Faronics Technologies USA Inc
Platforms: Windows 2000, Windows 95/98, Windows XP
Relevant URL: http://www.faronics.com/html/Freezex.asp
Summary:

FreezeX prevents all unauthorized programs, including viruses, keyloggers and 
spy ware from executing. Powerful and secure, FreezeX ensures that any new 
executable, program, or application that is downloaded, introduced via 
removable media or the network will never install

V. NEW TOOLS FOR MICROSOFT PLATFORMS
------------------------------------
1. IDS Policy Manager v1.4.1
By: ActiveWorx
Relevant URL: http://www.activeworx.com/idspm/
Platforms: Windows 2000, Windows XP
Summary:

IDS Policy Manager - is a powerful way to modify the snort configuration and 
rule files. Some key features are: Graphical interface for easily manageability 
of snort rule and configuration files  - Merge new official snort rules into 
existing rule files  - Merge Whitehat (arachNIDS) rules into existing rule 
files  - Make quick changes to snort rules  - Easy to manage multiple sensors 
with multiple policy files  - Upload policy files via FTP or SCP  - Full 
support for all Snort 1.8 Preprocessors  - Full support for all Snort 1.8 
output processors  - Easy to learn more information about a signature from 
popular databases such as - - - CVE, BugTraq, Mcafee, arachNIDS and custom 
URL's  - Add rules easily by line, multiple lines or make your own custom 
signatures

2. cenfw 0.3b
By: Peter Robinson
Relevant URL: http://www.securegateway.org
Platforms: Linux, Windows 2000, Windows NT, Windows XP
Summary:

The Centron IPTables Firewall Gui is an object oriented, database driven, 
windows interface to linux IPtables firewall rules.

3. zigstack 5
By: Alexander 'xaitax' Hagenah
Relevant URL: http://xaitax.de
Platforms: Windows 2000, Windows NT, Windows XP
Summary:

hardening your tcp/ip stack (e.g. against dos-attacks) of 
windowsnt/2k/xp/2003-based workstations and servers.
new* incl. 7 new methods and remote-registry functions.

4. MonitorMagic - Server & Network Monitor 6.0
By: Tools4ever
Relevant URL: http://www.tools4ever.com/products/monitormagic/
Platforms: Windows 2000, Windows NT, Windows XP
Summary:

MonitorMagic is a proactive server and network monitoring and reporting tool 
for Windows 2003/XP/2000/NT servers, workstations and SNMP devices and supports 
agentless monitoring. MonitorMagic supports Windows and UNIX based resources 
such as memory, disk and CPU load and optionally records the values into a 
database to enable graphical trending and reporting. MonitorMagic ships with 
predefined policies for popular hardware and applications.

5. CipherPack Pro 3.2
By: VIO Systems Limited
Relevant URL: http://www.cipherpack.com
Platforms: Windows 2000, Windows 95/98, Windows NT, Windows XP
Summary:

Encrypts and compresses files and data into a single Windows executable. The 
user just runs it and when the correct key is supplied, the file decrypts. 
Without the correct key, the original file contents can never be seen.

6. Savungan - Stateful Inspection Firewall for Windows with FUL... 2.0
By: Egemen Tas
Relevant URL: http://www.ModemWall.com/savungan.htm
Platforms: Windows 2000, Windows 95/98, Windows NT, Windows XP
Summary:

Savungan is a stateful inspection firewall designed for Microsoft Windows 
platforms available with FULL SOURCE CODE. It is an advanced filtering agent 
for TCP/IP based networks, having very flexible rule language to make packet 
inspection more powerful and effective. Security administrators have had some 
difficulties to build and maintain a suitable filtering infrastructure after 
deploying a firewall.

VI. UNSUBSCRIBE INSTRUCTIONS
----------------------------
To unsubscribe send an e-mail message to 
ms-secnews-unsubscribe@securityfocus.com from the subscribed address. The 
contents of the subject or message body do not matter. You will receive a 
confirmation request message to which you will have to answer. Alternatively 
you can also visit http://www.securityfocus.com/newsletters and unsubscribe via 
the website.

If your email address has changed email listadmin@securityfocus.com and ask to 
be manually removed.

VII. SPONSOR INFORMATION
-----------------------

This Issue is Sponsored By: SecurityFocus

Want to keep up on the latest security vulnerabilities? Don't have time to
visit a myriad of mailing lists and websites to read the news? Just add the
new SecurityFocus RSS feeds to your freeware RSS reader, and see all the
latest posts for Bugtraq and the SF Vulnernability database in one
convenient place. Or, pull in the latest news, columnists and feature
articles in the SecurityFocus aggregated news feed, and stay on top of
what's happening in the community!

http://www.securityfocus.com/rss/index.shtml

------------------------------------------------------------------------

---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • SecurityFocus Microsoft Newsletter #202, Marc Fossi <=
Previous by Date:  Re: MS binary integrity baseline, Mark Burnett
Next by Date:  Re: MS binary integrity baseline, Sam Baskinger
Previous by Thread:  MS binary integrity baseline, Chris Conacher
Next by Thread:  Python Hash File Builder/Checker, Sam Baskinger
Indexes:  [Date] [Thread] [Top] [All Lists]