Search:Vulnerability:25.04.2003 - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

mICQ DoS
Published: 25.04.2003
Source: BUGTRAQ
SecurityVulns ID: 2770
Type: remote
Level: 5/10
Description: Messages with type without 0xFE terminatro cause program to crash.

Affected: MICQ : mICQ 0.4

Original document REDHAT, [RHSA-2003:118-01] Updated mICQ packages fix vulnerability (25.04.2003)

Discuss: Read or add your comments to this news (0 comments)

VisNetic ActiveDefense DoS
Published: 25.04.2003
Source: BUGTRAQ
SecurityVulns ID: 2772
Type: remote
Level: 5/10
Description: Oversized request to web server protected by this tool causes service to hang.

Affected: DEERFIELD : VisNetic ActiveDefense 1.3

Original document PTSECURITY, Positive Technologies SA2003-0310: DoS-attack in VisNetic ActiveDefense (25.04.2003)

Discuss: Read or add your comments to this news (0 comments)

Multiple bugs in Internet Explorer/Outlook Express
updated since 25.04.2003
Published: 14.07.2003
Source: BUGTRAQ
SecurityVulns ID: 2771
Type: client
Level: 7/10
Description: New cumulative patch announced.

Affected: MICROSOFT : Internet Explorer 5.5
MICROSOFT : Internet Explorer 6.0

Original document Liu Die Yu, MSIE:patched&undisclosed XSS vuln (14.07.2003)

Jouko Pynnonen, [Full-Disclosure] URLMON.DLL buffer overflow - technical details (02.07.2003)

Jouko Pynnonen, Buffer overflow in Internet Explorer's HTTP parsing code (28.04.2003)

MICROSOFT, Microsoft Security Bulletin MS03-014: Cumulative Patch for Outlook Express (330994) (25.04.2003)

document NGSSoftware Insight Security Research, Internet Explorer Plugin.ocx heap overflow (#NISR24042003) (25.04.2003)

MICROSOFT, Microsoft Security Bulletin MS03-015: Cumulative Patch for Internet Explorer (813489) (25.04.2003)

Discuss: Read or add your comments to this news (0 comments)

DNS birthday attacks
updated since 25.04.2003
Published: 17.04.2007
Source: BUGTRAQ
SecurityVulns ID: 2773
Type: remote
Level: 6/10
Description: DNS uses 2-bytes message identificator to prevent spoofing attack. The problem is if few same requests came in same time they are forwarded with different IDs from same UDP port. It increases chances to spoof reply (so called birthdey effect: probability that among 60 randomely choosen persons there are 2 with same bithdate is under 95%).

CVE: CVE-2002-2213 (The DNS resolver in unspecified versions of Infoblox DNS One, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed responses, which increases the possibility of successfully spoofing a response in a way that is more efficient than brute force methods.)
CVE-2002-2212 (The DNS resolver in unspecified versions of Fujitsu UXP/V, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed responses, which increases the possibility of successfully spoofing a response in a way that is more efficient than brute force methods.)
CVE-2002-2211 (BIND 4 and BIND 8, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed responses, which increases the possibility of successfully spoofing a response in a way that is more efficient than brute force methods.)

Original document Makoto Shiotsuki, Windows DNS Cache Poisoning by Forwarder DNS Spoofing (17.04.2007)

Ramon Izaguirre, An Implementation of a Birthday Attack in a DNS Spoofing (25.04.2003)

Files: Implementation of DNS birthday attack
Discuss: Read or add your comments to this news (0 comments)