CRIME FW: [Information_technology] Daily News 12/03/03

From: George Heuston (GeorgeH@private)
Date: Wed Dec 03 2003 - 09:34:32 PST

Next message: Andrew Plato: "CRIME Portland ITEC - Scientific Methods for Security Program Development"

Previous message: George Heuston: "FW: [INFRAGARD] CRIME Meeting, 2 Dec, 10AM-Noon @ Zoo Conference center - Last Call"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hey, folks, we had an outstanding meeting yesterday.  Over 80 attended
to see SSA Dave Vanzant, FBI Portland, present on the Regional Computer
Forensics Lab.  Special thanks to him, to Ann Richardson who was there
representing Congressman Wu in support of the RCFL, and to Ron Fowler of
Structured, who sponsored the meeting venue.  

Geo

-----Original Message-----
From: information_technology-admin@private
[mailto:information_technology-admin@private] On Behalf
Of InfraGard
Sent: Wednesday, December 03, 2003 6:39 AM
To: Information Technology
Subject: [Information_technology] Daily News 12/03/03

December 01, eWEEK - Researchers find serious vulnerability in Linux
kernel.
Security professionals took note of a critical new vulnerability in the
Linux kernel that could enable an attacker to gain root access to a
vulnerable machine and take complete control of it. An unknown hacker
recently used this weakness to compromise several of the Debian
Project's
servers, which led to the discovery of the new vulnerability. This
discovery
has broad implications for the Linux community. Because the flaw is in
the
Linux kernel itself, the problem affects virtually every distribution of
the
operating system and several vendors have confirmed that their products
are
vulnerable. The vulnerability is in all releases of the kernel from
Version
2.4.0 through 2.5.69, but has been fixed in Releases 2.4.23-pre7 and
2.6.0-test6. RedHat Inc. and the Debian Project have both released
advisories warning customers of the issue and providing information on
fixes. Products from other vendors, including, MandrakeSoft S.A., SuSE
Linux
AG and Caldera International Inc., are also vulnerable. Source:
http://www.eweek.com/article2/0,4149,1400446,00.asp



Internet Alert Dashboard
Current Alert Levels
AlertCon: 1 out of 4
https://gtoc.iss.net

Security Focus
ThreatCon: 1 out of 4
http://analyzer.securityfocus.com/

Current Virus and Port Attacks
Virus: #1 Virus in the United States: WORM_LOVGATE.F
Source: http://wtc.trendmicro.com/wtc/wmap.html, Trend World Micro Virus
Tracking Center
[Infected Computers, North America, Past 24 hours, #1 in United States]

Top 10 Target Ports
445 (microsoft?ds), 80 (www), 135 (epmap), 137 (netbios?ns),
1434(ms?sql?m),
17300 (Kuang2TheVirus), 139 (netbios?ssn), 1433 (ms?sql?s), 38293
(NortonAntiVirus), 898 (???)
Source: http://isc.incidents.org/top10.html; Internet Storm Center


_______________________________________________
Information_technology mailing list
Information_technology@listserv

Next message: Andrew Plato: "CRIME Portland ITEC - Scientific Methods for Security Program Development"
Previous message: George Heuston: "FW: [INFRAGARD] CRIME Meeting, 2 Dec, 10AM-Noon @ Zoo Conference center - Last Call"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Dec 03 2003 - 10:27:40 PST