Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security NTBugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Alert: Microsoft Security Bulletin MS05-034 - Cumulative Security Update

from [Cooper, Russ] Network Security [Permanent Link]
Subject: Alert: Microsoft Security Bulletin MS05-034 - Cumulative Security Update for ISA Server 2000 (899753)
Date: Tue, 14 Jun 2005 13:41:01 -0400 
Microsoft Security Bulletin MS05-034:
Cumulative Security Update for ISA Server 2000 (899753)

Bulletin URL:
<http://www.microsoft.com/technet/security/Bulletin/MS05-034.mspx>

Version Number: 1.0
Issued Date: Tuesday, June 14, 2005
Impact of Vulnerability: Elevation of Privilege Maximum Severity Rating:
Moderate
Patch(es) Replaced: None
Caveats: None

Tested Software:
Affected Software:
------------------
* Microsoft Internet Security and Acceleration (ISA) Server 2000 Service
Pack 2 Note The following software programs include ISA Server 2000.
Customers who use these software programs should install the provided
ISA Server 2000 security update.
- Microsoft Small Business Server 2000
- Microsoft Small Business Server 2003 Premium Edition ISA Server 2000
Service Pack 2, Small Business Server 2000, Small Business Server 2000
Service Pack 1, Small Business Server 2003 <http://tinyurl.com/9dgcz>

Technical Description:
----------------------
* HTTP Content Header Vulnerability - CAN-2005-1215: A vulnerability
exists in ISA Server 2000 because of the way that it handles malformed
HTTP requests. An attacker could exploit the vulnerability by
constructing a malicious HTTP request that could potentially allow an
attacker to poison the cache of the affected ISA server. As a result,
the attacker could either bypass content restrictions and access content
that they would normally not have access to or they could cause users to
be directed to unexpected content. Additionally, an attacker could use
this in combination with a separate Cross Site Scripting vulnerability
to obtain sensitive information such as logon credentials.

* NetBIOS Predefined Filter Vulnerability - CAN-2005-1216: An elevation
of privilege vulnerability exists in ISA Server 2000 that could allow an
attacker who successfully exploited this vulnerability to create a
NetBIOS connection with an ISA Server by utilizing the NetBIOS (all)
predefined packet filter. The attacker would be limited to services that
use the NetBIOS protocol running on the affected ISA Server.

This email is sent to NTBugtraq automagically as a service to my
subscribers. (v4.01.1975.38886)

Cheers,
Russ Cooper - Senior Scientist - Cybertrust/NTBugtraq Editor

--
NTBugtraq Editor's Note:

Most viruses these days use spoofed email addresses. As such, using an 
Anti-Virus product which automatically notifies the perceived sender of a 
message it believes is infected may well cause more harm than good. Someone who 
did not actually send you a virus may receive the notification and scramble 
their support staff to find an infection which never existed in the first 
place. Suggest such notifications be disabled by whomever is responsible for 
your AV, or at least that the idea is considered.
--
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Alert: Microsoft Security Bulletin MS05-034 - Cumulative Security Update for ISA Server 2000 (899753), Cooper, Russ <=
Previous by Date:  Alert: Microsoft Security Bulletin MS05-033 - Vulnerability in Telnet Client Could Allow Information Disclosure (896428), Cooper, Russ
Next by Date:  MajorRev: v2.0 Microsoft Security Bulletin MS05-023 - Vulnerabilities in Microsoft Word May Lead to Remote Code Execution (890169), Cooper, Russ
Previous by Thread:  Alert: Microsoft Security Bulletin MS05-033 - Vulnerability in Telnet Client Could Allow Information Disclosure (896428), Cooper, Russ
Next by Thread:  MajorRev: v2.0 Microsoft Security Bulletin MS05-023 - Vulnerabilities in Microsoft Word May Lead to Remote Code Execution (890169), Cooper, Russ
Indexes:  [Date] [Thread] [Top] [All Lists]