Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

SecurityFocus Microsoft Newsletter #241

from [Marc Fossi] Network Security [Permanent Link]
Subject: SecurityFocus Microsoft Newsletter #241
Date: Wed, 18 May 2005 13:16:20 -0600 (MDT) 
SecurityFocus Microsoft Newsletter #241
----------------------------------------

Need to know what's happening on YOUR network? Symantec DeepSight Analyzer
is a free service that gives you the ability to track and manage attacks.
Analyzer automatically correlates attacks from various Firewall and network
based Intrusion Detection Systems, giving you a comprehensive view of your
computer or general network. Sign up today!

http://www.securityfocus.com/sponsor/Symantec_sf-news_041130

------------------------------------------------------------------------
I. FRONT AND CENTER
     1. Web Browser Forensics, Part 2
     2. Microsoft Anti-Virus?
     3. Permission to Simplify
II. MICROSOFT VULNERABILITY SUMMARY
     1. PHPBB Unspecified BBCode.PHP Vulnerability
     2. Orenosv HTTP/FTP Server FTP Commands Remote Buffer Overflow ...
     3. Orenosv HTTP/FTP Server CGISSI.EXE Remote Buffer Overflow Vu...
     4. PHP Nuke Double Hex Encoded Input Validation Vulnerability
     5. DataTrac Remote Denial of Service Vulnerability
     6. Positive Software H-Sphere Winbox Sensitive Logfile Content ...
     7. Microsoft SQL Server 2000 Multiple Vulnerabilities
     8. Apple iTunes MPEG4 Parsing Buffer Overflow Vulnerability
     9. WowBB View_User.PHP SQL Injection Vulnerability
     10. MyServer Cross-Site Scripting Vulnerability
     11. MyServer Remote Directory Listing Vulnerability
     12. ASP Virtual News Manager Admin_Login.ASP SQL Injection Vulne...
     13. LibTIFF TIFFOpen Buffer Overflow Vulnerability
     14. Gaim Remote URI Handling Buffer Overflow Vulnerability
     15. Gaim Remote MSN Empty SLP Message Denial Of Service Vulnerab...
     16. Bugzilla Authentication Information Disclosure Vulnerability
     17. Bugzilla Hidden Product Information Disclosure Vulnerability
     18. Microsoft Windows Media Player Digital Rights Management Arb...
     19. OllyDbg INT3 Format String Vulnerability
     20. Kerio MailServer Multiple Remote Denial of Service Vulnerabi...
     21. OpenBB Read.PHP SQL Injection Vulnerability
     22. OpenBB Member.PHP Cross-Site Scripting Vulnerability
     23. Yahoo! Messenger URL Handler Remote Denial Of Service Vulner...
III. MICROSOFT FOCUS LIST SUMMARY
     1. Set ACL on Application and Security logs (Thread)
     2. To disable SMB packet and secure channel signing enf... (Thread)
     3. Encrypting remote files with EFS (Thread)
     4. M$ SQL Server SP 4 (Thread)
     5. SecurityFocus Microsoft Newsletter #240 (Thread)
IV. NEW PRODUCTS FOR MICROSOFT PLATFORMS
     1. CoreGuard Core Security System
     2. KeyCaptor Keylogger
     3. SpyBuster
     4. FreezeX
     5. NeoExec for Active Directory
     6. Secrets Protector v2.03
V. NEW TOOLS FOR MICROSOFT PLATFORMS
     1. tcpdump for Windows 1.0 beta
     2. Assimilator 1.0.0
     3. Cenzic Hailstorm 2.0
     4. VForce 2.1.008
     5. Multiple Interface Watcher 1.0
     6. LC 5 5
VI. UNSUBSCRIBE INSTRUCTIONS
VII. SPONSOR INFORMATION

I. FRONT AND CENTER
-------------------
1. Web Browser Forensics, Part 2
By Keith J. Jones and Rohyt Belani
Part 2 of this web browser forensics series looks at reconstructing Mozilla
Firefox's cache in order to catch an internal hacker using an
administrator's account.
http://www.securityfocus.com/infocus/1832

2. Microsoft Anti-Virus?
By Kelly Martin
Microsoft's announcement that it will enter the AV market next year, with
initial trials starting next week, could be a sign of many things to come.
http://www.securityfocus.com/columnists/325

3. Permission to Simplify
By Mark Burnett
Complexity in Microsoft's software does little but hinder people from using
their good security features, and the current state of Windows file
permissions is a perfect example.
http://www.securityfocus.com/columnists/326

II. MICROSOFT VULNERABILITY SUMMARY
-----------------------------------
1. PHPBB Unspecified BBCode.PHP Vulnerability
BugTraq ID: 13545
Remote: Yes
Date Published: May 09 2005
Relevant URL: http://www.securityfocus.com/bid/13545
Summary:
The phpbb vendor reports that a critical unspecified vulnerability exists in 
the BBCode handling routines of the 'bbcode.php' script.

Very little is known about this vulnerability except that the vendor has 
reported that it is addressed in phpBB version 2.0.15.

This BID will be updated when further analysis of this issue is complete.

2. Orenosv HTTP/FTP Server FTP Commands Remote Buffer Overflow ...
BugTraq ID: 13546
Remote: Yes
Date Published: May 08 2005
Relevant URL: http://www.securityfocus.com/bid/13546
Summary:
The FTP server shipped with Orenosv HTTP/FTP is prone to a remote buffer 
overflow vulnerability.

This issue presents itself when the application handles excessive values 
supplied as file names through various FTP commands.

If a successful attack results in memory corruption, this issue can be 
leveraged to cause a denial of service condition or arbitrary code execution.

Orenosv HTTP/FTP Server 0.8.1 is reportedly vulnerable, however, other versions 
may be affected as well.

3. Orenosv HTTP/FTP Server CGISSI.EXE Remote Buffer Overflow Vu...
BugTraq ID: 13549
Remote: Yes
Date Published: May 09 2005
Relevant URL: http://www.securityfocus.com/bid/13549
Summary:
Orenosv HTTP/FTP server is prone to a remote buffer overflow vulnerability that 
affects 'cgissi.exe'.

This issue presents itself when the application handles excessive values 
supplied through an SSI command name.

A successful attack can result in memory corruption and can be leveraged to 
cause a denial of service condition or arbitrary code execution. Arbitrary code 
execution can result in a remote compromise in the context of the server.

Orenosv HTTP/FTP Server 0.8.1 is reportedly vulnerable, however, other versions 
may be affected as well.

4. PHP Nuke Double Hex Encoded Input Validation Vulnerability
BugTraq ID: 13557
Remote: Yes
Date Published: May 09 2005
Relevant URL: http://www.securityfocus.com/bid/13557
Summary:
PHP Nuke is prone to an input validation vulnerability. Reports indicate the 
script fails to correctly identify potentially dangerous characters when the 
characters are double hex-encoded (i.e. %25%41 == %41 == A).

A remote attacker may exploit this issue to bypass PHP Nuke protections and 
exploit issues that exist in the underlying PHP Nuke installation.

5. DataTrac Remote Denial of Service Vulnerability
BugTraq ID: 13558
Remote: Yes
Date Published: May 09 2005
Relevant URL: http://www.securityfocus.com/bid/13558
Summary:
DataTrac is prone to a remote denial of service vulnerability.

The program crashes if a long string is sent to the service.  A malformed 
unexpected request may trigger this issue as well.

DataTrac 1.1 was reported to be vulnerable.

6. Positive Software H-Sphere Winbox Sensitive Logfile Content ...
BugTraq ID: 13559
Remote: No
Date Published: May 09 2005
Relevant URL: http://www.securityfocus.com/bid/13559
Summary:
It is reported that Positive Software H-Sphere Winbox stores user account 
information in a plaintext format inside of application log files.

As a result, user credentials could be exposed to other local users who have 
permissions to access the log files.

7. Microsoft SQL Server 2000 Multiple Vulnerabilities
BugTraq ID: 13564
Remote: Yes
Date Published: May 09 2005
Relevant URL: http://www.securityfocus.com/bid/13564
Summary:
Microsoft has released Microsoft SQL Server 2000 Service Pack 4.  This release 
addresses various potential security vulnerabilities.  If exploited, these 
issues may allow remote attackers to cause denial of service conditions, bypass 
database policy, disclose sensitive information, and potentially execute 
arbitrary code.

8. Apple iTunes MPEG4 Parsing Buffer Overflow Vulnerability
BugTraq ID: 13565
Remote: Yes
Date Published: May 09 2005
Relevant URL: http://www.securityfocus.com/bid/13565
Summary:
Apple iTunes MPEG4 file parsing is prone to a buffer overflow.  A specifically 
malformed MPEG4 file could trigger this overflow, causing a denial of service 
or execution of arbitrary code.

This vulnerability was addressed in iTunes 4.8; all earlier versions are likely 
affected.

9. WowBB View_User.PHP SQL Injection Vulnerability
BugTraq ID: 13569
Remote: Yes
Date Published: May 10 2005
Relevant URL: http://www.securityfocus.com/bid/13569
Summary:
WowBB is prone to an SQL injection vulnerability.  This issue is due to a 
failure in the application to properly sanitize user-supplied input prior to 
using it in an SQL query.

Successful exploitation could result in a compromise of the application, 
disclosure or modification of data, or may permit an attacker to exploit 
vulnerabilities in the underlying database implementation.

10. MyServer Cross-Site Scripting Vulnerability
BugTraq ID: 13578
Remote: Yes
Date Published: May 10 2005
Relevant URL: http://www.securityfocus.com/bid/13578
Summary:
myServer is prone to a cross-site scripting vulnerability.  This issue is due 
to a failure in the application to properly sanitize user-supplied input.

An attacker may leverage this issue to have arbitrary script code executed in 
the browser of an unsuspecting user.  This may facilitate the theft of 
cookie-based authentication credentials as well as other attacks.

This issue reportedly affects myServer version 0.8 for Microsoft Windows; other 
versions may also be affected.

11. MyServer Remote Directory Listing Vulnerability
BugTraq ID: 13579
Remote: Yes
Date Published: May 10 2005
Relevant URL: http://www.securityfocus.com/bid/13579
Summary:
myServer is prone to a remote directory listing vulnerability.  This issue is 
due to a failure in the application to properly sanitize user-supplied input.

A remote attacker can disclose the contents of the directory above the 
configured Web document root.

An attacker may leverage this issue to gain access to sensitive information by 
disclosing a directory listing; information disclosed in this way could lead to 
further attacks against the target system.

This issue reportedly affects myServer version 0.8 for Microsoft Windows; other 
versions may also be affected.

12. ASP Virtual News Manager Admin_Login.ASP SQL Injection Vulne...
BugTraq ID: 13580
Remote: Yes
Date Published: May 10 2005
Relevant URL: http://www.securityfocus.com/bid/13580
Summary:
ASP Virtual News Manager is prone to an SQL injection vulnerability.  This 
issue is due to a failure in the application to properly sanitize user-supplied 
input before using it in an SQL query.

Successful exploitation could result in a compromise of the application, 
disclosure or modification of data, or may permit an attacker to exploit 
vulnerabilities in the underlying database implementation.

13. LibTIFF TIFFOpen Buffer Overflow Vulnerability
BugTraq ID: 13585
Remote: Yes
Date Published: May 10 2005
Relevant URL: http://www.securityfocus.com/bid/13585
Summary:
LibTIFF is prone to a buffer overflow vulnerability.  The issue occurs in the 
TIFFOpen() function when malformed TIFF files are opened.  Successful 
exploitation could lead to arbitrary code execution.

14. Gaim Remote URI Handling Buffer Overflow Vulnerability
BugTraq ID: 13590
Remote: Yes
Date Published: May 11 2005
Relevant URL: http://www.securityfocus.com/bid/13590
Summary:
Gaim is susceptible to a remote buffer overflow vulnerability when handling 
long URIs. This issue is due to a failure of the application to properly bounds 
check user-supplied input data prior to copying it to a fixed-size stack buffer.

Due to the multiple protocol support of Gaim, and the nature of the differing 
IM protocols, only some of the IM networks are reported vulnerable. This is due 
to message length limits imposed by the IM networks. Currently, the Jabber, and 
SILC IM network protocols are known to be vulnerable. Other protocols may also 
be affected.

This vulnerability allows remote attackers to execute arbitrary machine code in 
the context of the affected application.

Gaim versions prior to 1.3.0 are vulnerable to this issue.

15. Gaim Remote MSN Empty SLP Message Denial Of Service Vulnerab...
BugTraq ID: 13591
Remote: Yes
Date Published: May 11 2005
Relevant URL: http://www.securityfocus.com/bid/13591
Summary:
Gaim is susceptible to a remote denial of service vulnerability in its MSN 
protocol handling code.


This vulnerability allows remote attackers to crash affected clients, denying 
service to them.

Gaim versions prior to 1.3.0 are vulnerable to this issue.

16. Bugzilla Authentication Information Disclosure Vulnerability
BugTraq ID: 13605
Remote: Yes
Date Published: May 12 2005
Relevant URL: http://www.securityfocus.com/bid/13605
Summary:
Bugzilla is prone to a vulnerability that could allow username and password 
information to be disclosed in generated links.  Any user with access to the 
server's Web logs could potentially gain access to the user's authentication 
information.

17. Bugzilla Hidden Product Information Disclosure Vulnerability
BugTraq ID: 13606
Remote: Yes
Date Published: May 12 2005
Relevant URL: http://www.securityfocus.com/bid/13606
Summary:
Bugzilla is prone to an information disclosure vulnerability due to improper 
access validation.  This could allow a user to determine the existence of a 
product in the Bugzilla database even if it should not be visible to them.

18. Microsoft Windows Media Player Digital Rights Management Arb...
BugTraq ID: 13607
Remote: Yes
Date Published: May 12 2005
Relevant URL: http://www.securityfocus.com/bid/13607
Summary:
Media Player Digital Rights Management (DRM) is prone to a weakness that could 
permit the launch of an arbitrary Web page.

This issue has been addressed and updates are available for Media Player 10 and 
for Windows Media Player 9.

19. OllyDbg INT3 Format String Vulnerability
BugTraq ID: 13615
Remote: Yes
Date Published: May 13 2005
Relevant URL: http://www.securityfocus.com/bid/13615
Summary:
OllyDbg is prone to a format string vulnerability when a module with a 
malformed name makes a call to INT3.  Debugging a malicious program that is 
designed to exploit this issue could lead to an application crash or execution 
of arbitrary code in the context of the user running the debugger.

This issue was reported to affect OllyDbg 1.10; other versions are likely 
vulnerable.

20. Kerio MailServer Multiple Remote Denial of Service Vulnerabi...
BugTraq ID: 13616
Remote: Yes
Date Published: May 13 2005
Relevant URL: http://www.securityfocus.com/bid/13616
Summary:
Kerio MailServer is affected by multiple remote denial of service 
vulnerabilities.

Kerio MailServer running on Linux platforms is prone to a remote denial of 
service vulnerability when handling specially crafted e-mail messages.

Kerio MailServer is reportedly affected by another remote denial of service 
vulnerability when emails for IMAP or Outlook are download.

Kerio MailServer 6.0.9 and prior versions are affected by these issues.

21. OpenBB Read.PHP SQL Injection Vulnerability
BugTraq ID: 13624
Remote: Yes
Date Published: May 13 2005
Relevant URL: http://www.securityfocus.com/bid/13624
Summary:
OpenBB is prone to an SQL injection vulnerability.  This issue is due to a 
failure in the application to properly sanitize user-supplied input before 
using it in an SQL query.

Successful exploitation could result in a compromise of the application, 
disclosure or modification of data, or may permit an attacker to exploit 
vulnerabilities in the underlying database implementation.

This issue reportedly affects OpenBB version 1.0.8; other versions may also be 
vulnerable.

22. OpenBB Member.PHP Cross-Site Scripting Vulnerability
BugTraq ID: 13625
Remote: Yes
Date Published: May 13 2005
Relevant URL: http://www.securityfocus.com/bid/13625
Summary:
OpenBB is prone to a cross-site scripting vulnerability.  This issue is due to 
a failure in the application to properly sanitize user-supplied input.

An attacker may leverage this issue to have arbitrary script code executed in 
the browser of an unsuspecting user.  This may facilitate the theft of 
cookie-based authentication credentials as well as other attacks.

This issue reportedly affects OpenBB version 1.0.8; other versions may also be 
vulnerable.

23. Yahoo! Messenger URL Handler Remote Denial Of Service Vulner...
BugTraq ID: 13626
Remote: Yes
Date Published: May 13 2005
Relevant URL: http://www.securityfocus.com/bid/13626
Summary:
Yahoo! Messenger is prone to a denial of service vulnerability.  This issue is 
due to a failure in the application to handle exceptional conditions.

A remote user can cause Yahoo! Messenger to disconnect through malicious emails 
or Web pages.

This issue is reported to affect Yahoo! Messenger versions 5.x to 6.0 Windows; 
other versions on other operating systems may also be affected.

III. MICROSOFT FOCUS LIST SUMMARY
---------------------------------
1. Set ACL on Application and Security logs (Thread)
Relevant URL:

http://www.securityfocus.com/archive/88/398327

2. To disable SMB packet and secure channel signing enf... (Thread)
Relevant URL:

http://www.securityfocus.com/archive/88/397978

3. Encrypting remote files with EFS (Thread)
Relevant URL:

http://www.securityfocus.com/archive/88/397976

4. M$ SQL Server SP 4 (Thread)
Relevant URL:

http://www.securityfocus.com/archive/88/397972

5. SecurityFocus Microsoft Newsletter #240 (Thread)
Relevant URL:

http://www.securityfocus.com/archive/88/397927

IV. NEW PRODUCTS FOR MICROSOFT PLATFORMS
----------------------------------------
1. CoreGuard Core Security System
By: Vormetric
Platforms: AIX, Linux, Solaris, Windows 2000, Windows XP
Relevant URL: http://www.vormetric.com/products/#overview
Summary:

CoreGuard System profile

The CoreGuard System is the industry's first solution that enforces
acceptable use policy for sensitive digital information assets and
protects personal data privacy across an enterprise IT environment.
CoreGuard's innovative architecture and completeness of technology
provide a comprehensive, extensible solution that tightly integrates all
the elements required to protect information across a widespread,
heterogeneous enterprise network, while enforcing separation of duties
between security and IT administration. At the same time, CoreGuard is
transparent to users, applications and storage infrastructures for ease
of deployment and system management.

CoreGuard enables customers to:
* Protect customer personal data privacy and digital information assets
* Protect data at rest from unauthorized viewing by external attackers
and unauthorized insiders
* Enforce segregation of duties between IT administrators and security
administration
* Ensure host & application integrity * Block malicious code, including
zero-day exploits

2. KeyCaptor Keylogger
By: Keylogger Software
Platforms: MacOS, Windows 2000, Windows 95/98, Windows NT, Windows XP
Relevant URL: http://www.keylogger-software.com/keylogger/keylogger.htm
Summary:

KeyCaptor is your solution for recording ALL keystrokes of ALL users on your 
computer!  Now you have the power to record emails, websites, documents, chats, 
instant messages, usernames, passwords, and MUCH MORE!

With our advanced stealth technology, KeyCaptor will not show in your processes 
list and cannot be stopped from running unless you say so!

3. SpyBuster
By: Remove Spyware
Platforms: Windows 2000, Windows 95/98, Windows NT, Windows XP
Relevant URL: http://www.remove-spyware.com/spybuster.htm
Summary:

Our award winning spyware / adware scanner and removal software, SpyBuster will 
scan your computer for over 4,000 known spyware and adware applications. 
SpyBuster protects your computer from data stealing programs that can expose 
your personal information.

SpyBuster scanning technology allows for a quick and easy sweep, so you can 
resume your work in minutes.

4. FreezeX
By: Faronics Technologies USA Inc
Platforms: Windows 2000, Windows 95/98, Windows XP
Relevant URL: http://www.faronics.com/html/Freezex.asp
Summary:

FreezeX prevents all unauthorized programs, including viruses, keyloggers and 
spy ware from executing. Powerful and secure, FreezeX ensures that any new 
executable, program, or application that is downloaded, introduced via 
removable media or the network will never install

5. NeoExec for Active Directory
By: NeoValens
Platforms: Windows 2000, Windows XP
Relevant URL: http://www.neovalens.com
Summary:

NeoExec® is an operating system extension for Windows 2000/XP that allows the 
setting of privileges at the application level rather than at the user level.

NeoExec® is the ideal solution for applications that require elevated 
privileges to run as the privileges are granted to the application, not the 
user.

NeoExec® is the only solution on the market capable of modifying at runtime the 
processes' security context -- without requiring a second account as with RunAs 
and RunAs-derived products.

6. Secrets Protector v2.03
By: E-CRONIS
Platforms: Windows 2000, Windows XP
Relevant URL: http://www.e-cronis.com/download/sp.exe
Summary:

It's the end of your worries about top-secret data of your company, your 
confidential files or the pictures from the last party. All these will be 
hidden beyond the reach of ANY intruder and you will be the only one able to 
handle them. And what you want to delete will be DELETED. It is the ultimate 
security tool to protect your sensitive information on PC, meeting the three 
most important security issues: Integrity, Confidentiality and Availability. 
This product gives you the features of a "folder locker" and a "secure eraser".

Your secret information is available only trough this software and there is no 
other mean to access it. The information is protected at file system level and 
it cannot be accidentally deleted or overwritten neither in Safe mode nor in 
other operating system. This program doesn't make your operating system 
unstable as other related product do and protects your information from being 
seen, altered or deleted by an unauthorized user with or without his wish. The 
program allows you to permanently erase your sensitive data using secure wiping 
methods leaving no trace of your information. Depending on the selected wiping 
method your data is unrecoverable using software or even hardware recovery 
techniques.

V. NEW TOOLS FOR MICROSOFT PLATFORMS
------------------------------------
1. tcpdump for Windows 1.0 beta
By: microOLAP Technologies
Relevant URL: http://microolap.com/products/network/tcpdump/
Platforms: Windows 2000, Windows 95/98, Windows NT, Windows XP
Summary:

MicroOLAP TCPDUMP for Windows accurately reproduces all features of
the original tcpdump by LBNL's Network Research Group , developed for the UNIX
systems. Since MicroOLAP TCPDUMP for Windows is compiled with the Packet 
Sniffer SDK,
it has the following advantages:
 - does not require any third-party preinstalled drivers;
 - works from the single 300K .EXE file;
 - supports 1Gbit networks.

2. Assimilator 1.0.0
By: Black List Software
Relevant URL: http://hackinoutthebox.com/sub5.index.php
Platforms: Windows XP
Summary:

Assimilation is the result of assimilating something which is dissimilated. In 
other words, assimilation is the result of making two dissimilar things 
similar. Assimilation can be based on a baseline. A baseline is a standard or 
protocol which is in place for the sake of governing events. In the case of 
Assimilator v1.0.0, our baseline is a replication of the good processes which 
run locally on our computers.

3. Cenzic Hailstorm 2.0
By: Cenzic, Inc.
Relevant URL: http://www.cenzic.com/prod_application_security.html
Platforms: Windows XP
Summary:

Cenzic Hailstorm automates penetration testing for your web applications.  
Cenzic Hailstorm provides various groups ? Information Security, QA, and 
Developers ? throughout the enterprise an ability to test applications for 
security vulnerabilities, for enforcement of internal security policies, and 
for regulatory compliancecrafted policy library to address new and unique 
vulnerabilities.

4. VForce 2.1.008
By: Virtual Forge
Relevant URL: http://solutions.virtualforge.net/sol_download_en.php
Platforms: Windows NT, Windows XP
Summary:

V-Force is an instrument with whose help attacks on web server or applications 
can be simulated and the results logged and analyzed.

5. Multiple Interface Watcher 1.0
By: Carsten Schmidt
Relevant URL: http://software.ccschmidt.de/#MIW
Platforms: Windows 2000, Windows NT, Windows XP
Summary:

Multiple Interface Watcher is a graph utility that shows the utilisation of up 
to 10 different interfaces. The data is requested from the devices using SNMP. 
MIW is an advanced development of Interface Traffic Indicator that focuses more 
on the utilization overview of many interfaces than on much information of one 
interface.

6. LC 5 5
By: @stake
Relevant URL: http://www.atstake.com/products/lc/
Platforms: Windows 2000, Windows 95/98, Windows NT
Summary:

LC 5 is the latest version of L0phtCrack, the award-winning password auditing 
and recovery application used by thousands of companies worldwide.

Using multiple assessment methods, LC 5 reduces security risk by helping 
administrators to:

    * Identify and remediate security vulnerabilities that result from the use 
of weak or easily guessed passwords
    * Recover Windows and Unix account passwords to access user and 
administrator accounts whose passwords are lost or to streamline migration of 
users to another authentication system
    * Rapidly process accounts using pre-computed password tables* that contain 
trillions of passwords

VI. UNSUBSCRIBE INSTRUCTIONS
----------------------------
To unsubscribe send an e-mail message to 
ms-secnews-unsubscribe@securityfocus.com from the subscribed address. The 
contents of the subject or message body do not matter. You will receive a 
confirmation request message to which you will have to answer. Alternatively 
you can also visit http://www.securityfocus.com/newsletters and unsubscribe via 
the website.

If your email address has changed email listadmin@securityfocus.com and ask to 
be manually removed.

VII. SPONSOR INFORMATION
-----------------------

Need to know what's happening on YOUR network? Symantec DeepSight Analyzer
is a free service that gives you the ability to track and manage attacks.
Analyzer automatically correlates attacks from various Firewall and network
based Intrusion Detection Systems, giving you a comprehensive view of your
computer or general network. Sign up today!

http://www.securityfocus.com/sponsor/Symantec_sf-news_041130

------------------------------------------------------------------------

---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • SecurityFocus Microsoft Newsletter #241, Marc Fossi <=
Previous by Date:  RE: Set ACL on Application and Security logs, Kern, Tom
Next by Date:  Re: Encrypting remote files with EFS, AnthonyBlumfield
Previous by Thread:  Set ACL on Application and Security logs, Z E
Next by Thread:  SecurityFocus Microsoft Newsletter #242, Marc Fossi
Indexes:  [Date] [Thread] [Top] [All Lists]