NIPC CyberNotes #2000-11 Page 2 of 19 06/05/2000
Hardware/
Operating
System/
Vendor
Equipment/
Software
Name
Vulnerability/
Impact
Patches/Workarounds/Alerts
Common
Name
Risk* Attacks/Scripts
Cayman
3
3220-H DSL
Router 1.0,
GatorSurf
5.5Build R1,
5.5Build R0,
5.3Build R2,
5.3Build R1,
GatorSurf 5.3
A “ping of death”
vulnerability exists when
an oversized ICMP echo
request is sent to the
router.
No workaround or patch available
at time of publishing.
Cayman
3220H DSL
Router "ping of
death"
Low Bug discussed in
newsgroups and
websites.
Exploit has been
published.
Cisco
4
TACACS+
Server
Developer’s
Kit
Several vulnerabilities
exist in the TACACS+
protocol. The discussion
can be read at
http://www.openwall.com/ad
visories/
Cisco has publically released a
statement that no patches will be
released.
An unofficial workaround exists
at:
http://www.openwall.com/advisories/
Cisco
TACACS+
Multiple
Vulnerability
High
Bug discussed in
newsgroups and
websites.
Exploit has been
published.
Cobalt
5
RaQ2, RaQ3
FrontPage
A vulnerability in the
FrontPage extensions on
the Cobalt RaQ2 and
RaQ3 web hosting
appliances allows any
local user the ability to
modify the FrontPage site.
Patch available at:
RaQ3i (Intel x86):
ftp://ftp.cobaltnet.com/pub/experiment
al/security/frontpage/fpx_patch1.tar.g
z
RaQ2 (MIPS):
ftp://ftp.cobaltnet.com/pub/experiment
al/security/frontpage/fpx_patch1.tar.g
z
Cobalt
FrontPage
Vulnerability
Medium Bug discussed in
newsgroups and
websites.
Exploit has been
published.
Danware
6
Windows
3x/95/98/
NT 4.0/2000
NetOp 6.0.
6.50
The file transfer
mechanism requires no
authentication, which
could give a remote
malicious user full
read/write access to the
system’s file system.
NetOp version 6.50 has the ability
to use either NetOp or Windows
security to authenticate users
immediately upon connection,
although this is not enabled by
default.
NetOp
Remote
Control
Unauthent-
icated File
Transfer
Medium Bug discussed in
newsgroups and
websites.
Exploit has been
published.
Deerfield
Communi-
cations
7
Windows
95/98/NT
4.0/2000
Mdaemon
3.0.3
A denial of service
condition exists if greater
than 256 characters are
passed to the username on
login.
Patch available at:
ftp://ftp.altn.com/Mdaemon/Release/
Mdaemon
Denial of
Service
Low Bug discussed in
newsgroups and
websites.
Exploit has been
published.
Ecommerce
Exchange
8
Quick
Commerce
A vulnerability exists that
allows a malicious user
the ability to download a
form purchase page and
alter the contents to obtain
free products.
No patch or workaround available
at time of publishing.
Quick
Commerce
Insecure
Transaction
Process
Low Bug discussed in
newsgroups and
websites.
Exploit has been
published.
3
Bugtraq, May 25, 2000.
4
Solar Designer, May 30, 2000.
5
Chris Adams, May 23, 2000.
6
b0f-SA2000-002, April 12, 2000.
7
Bugtraq, May 24, 2000.
8
14x Network Security Inc., May 22, 2000.
(57 páginas)
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentários a estes Manuais