Windows 2000 & NT4.0 Tool: Urlscan-SRP

Security 10918 Published by Philipp Esselbach 0

Microsoft has released an updated version of the URLScan security tool, 2.5, with additional functionality that provides greater security and functionality than previous versions of the tool. URLScan 2.5 is an update to URLScan 1.0 and URLScan 2.0.

Important Urlscan stops many types of attacks but is not a substitute for staying up to date on patches. Microsoft strongly recommends that customers apply security patches to keep the server secure and fix known security vulnerabilities.

Download

Microsoft Baseline Security Analyzer

Security 10918 Published by Philipp Esselbach 0

Microsoft has created a new tool, the Microsoft Baseline Security Analyzer (MBSA), to analyze Windows systems for common security misconfigurations. Version 1.0 of MBSA includes a graphical and command line interface that can perform local or remote scans of Windows systems. MBSA runs on Windows 2000 and Windows XP systems and will scan for missing hotfixes and vulnerabilities in the following products: Windows NT 4.0, Windows 2000, Windows XP, Internet Information Server (IIS) 4.0 and 5.0, SQL Server 7.0 and 2000, Internet Explorer (IE) 5.01 and later, and Office 2000 and XP.

Download

Cumulative Patch for Internet Explorer

Security 10918 Published by Philipp Esselbach 0

Microsoft has released a new security patch for Internet Explorer

This is a cumulative patch that includes the functionality of all previously released patches for IE 5.01, 5.5 and IE 6. In addition, it eliminates the following two newly discovered vulnerabilities:

- A vulnerability in the zone determination function that could allow a script embedded in a cookie to be run in the Local Computer zone. While HTML scripts can be stored in cookies, they should be handled in the same zone as the hosting site associated with them, in most cases the Internet zone. An attacker could place script in a cookie that would be saved to the user's hard disk. When the cookie was opened by the site the script would then run in the Local Computer zone, allowing it to run with fewer restrictions than it would otherwise have.

- A vulnerability in the handling of object tags that could allow an attacker to invoke an executable already present on the user's machine. A malicious user could create HTML web page that includes this object tag and cause a local program to run on the victim's machine.

Read more

DebPloitFix

Security 10918 Published by Philipp Esselbach 0

DebPloitFix is a hotfix that closes the security hole (DebPloit exploit) discovered by Radim EliCZ Picha.

DebPloitFix is implemented as a kernel mode driver that can be run dinamically (no need to restart your system). DebPloitFix assigns the new security descriptor to the DbgSsApiPort LPC port so only the local system (SYSTEM user) will be able to access this port.

Download
More informations

About DebPloit: DebPloit is an exploit that shows weakness of the Windows NT/2000 security. It uses the security hole in the NT/2000 debugging subsystem and allows to any user (even Guest) execute processes in the security context of an administrator or a local system. Thus any person who have a local access to the computer running Windows NT or Windows 2000 can became an administrator and do everything he/she wants.

Previous Page

Next Page

Windows

Linux

macOS

Community

  • SeveG
    need some help here... situationPC= Packard BellOS= win1 ...
  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...
  • StephanX
    Hi friends, i am new in the Linux universe but i try to ...