Fwd: Information on MS99-022

From: Vanja Hrustic (vanjaat_private)
Date: Sat Jul 03 1999 - 13:49:54 PDT

Next message: aleph1at_private: "ISSalert: ISS Security Advisory: Bad Permissions on Passwords"

Previous message: Andreas Bogk: "Re: cfingerd 1.3.2"
Next in thread: Marc: "Re: Fwd: Information on MS99-022"
Reply: Marc: "Re: Fwd: Information on MS99-022"
Reply: Vanja Hrustic: "Re: Fwd: Information on MS99-022"
Reply: Darren Reed: "Re: Fwd: Information on MS99-022"
Reply: Renaud Deraison: "Re: Fwd: Information on MS99-022"
Reply: Darren Reed: "Re: Fwd: Information on MS99-022"
Reply: Renaud Deraison: "Re: Fwd: Information on MS99-022"
Reply: Russ: "Re: Fwd: Information on MS99-022"
Reply: Darren Reed: "Re: Fwd: Information on MS99-022"
Reply: Renaud Deraison: "Re: Fwd: Information on MS99-022"
Reply: Mike C.: "Re: Fwd: Information on MS99-022"
Reply: Weld Pond: "Re: Fwd: Information on MS99-022"
Reply: Aleph One: "Re: Fwd: Information on MS99-022"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I haven't seen this on the Bugtraq, but it's very interesting...

--
>Wanted to advise that we are making information available regarding the
>technical details involved in the "Double Byte Code Page" vulnerability
>(http://www.microsoft.com/security/bulletins/ms99-022.asp).  We've provided
>a full description to the ICSA, for dissemination within their Intrusion
>Detection Consortium.  This will allow security vendors to have access to
>the information that they need to develop scanning tools that will check for
>this attack.  However, we are not planning to do a general release of the
>information.  If you are running IIS 3.0 or 4.0 on a server whose default
>language is set to Chinese, Japanese, or Korean, you should apply the patch.
>
>Cheers,
>
>Secureat_private
--

So, if I have my custom-developed IDS running, I won't be able to implement
a pattern for this, because I am not a member of 'Intrusion Detection
Consortium'?

Note the words...

"This will allow security vendors to have access to the information..." -
why only security vendors? What better they are than Bugtraq folks?

"Security through obscurity" comes to mind...

Vanja

Next message: aleph1at_private: "ISSalert: ISS Security Advisory: Bad Permissions on Passwords"
Previous message: Andreas Bogk: "Re: cfingerd 1.3.2"
Next in thread: Marc: "Re: Fwd: Information on MS99-022"
Reply: Marc: "Re: Fwd: Information on MS99-022"
Reply: Vanja Hrustic: "Re: Fwd: Information on MS99-022"
Reply: Darren Reed: "Re: Fwd: Information on MS99-022"
Reply: Renaud Deraison: "Re: Fwd: Information on MS99-022"
Reply: Darren Reed: "Re: Fwd: Information on MS99-022"
Reply: Renaud Deraison: "Re: Fwd: Information on MS99-022"
Reply: Russ: "Re: Fwd: Information on MS99-022"
Reply: Darren Reed: "Re: Fwd: Information on MS99-022"
Reply: Renaud Deraison: "Re: Fwd: Information on MS99-022"
Reply: Mike C.: "Re: Fwd: Information on MS99-022"
Reply: Weld Pond: "Re: Fwd: Information on MS99-022"
Reply: Aleph One: "Re: Fwd: Information on MS99-022"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:51:26 PDT