Author Archive
Critical Overflow in FrontPage Server Extensions
September 25, 2002
Microsoft has issued security bulletin MS02-053 for a vulnerability in FrontPage Server Extensions 2000 and 2002. The SmartHTML Interpreter (shtml.dll), which is included in all FPSE editions, has a buffer overflow that can be exploited by a malformed HTTP request. For systems running FPSE 2000, this could allow an attacker to consume all of a […]
Slapper, Take Three; Suspect Arrested in Ukraine
September 24, 2002
Just a day after a second version of the Slapper worm was discovered, ISS has updated its advisories to report on Slapper.C, the third incarnation of this automated OpenSSL exploit. The most nefarious feature of this variant is that it attempts to overwrite every executable file on an infected system with copies of itself. It […]
OpenSSL Worm Slowing Down
September 20, 2002
A little over a week after being discovered, the OpenSSL Slapper worm has started slowing down. Some 7,000-10,000 servers have been infected, which pales in comparison to Code Red’s 400,000 or Nimda’s 86,000 last year. Fortunately, the worm’s P2P network was not utilized to cause any severe damage, although Symantec claims that a few companies […]
« Older Entries Newer Entries »
