SANS Internet Storm Center; Cooperative Network Security Community

Diary Archive Dec 2006

Search Diaries:

2003	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2004	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2005	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2006	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2007	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2008	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2009	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov

Date	Author	Title
2006-12-01	Johannes Ullrich	US DHS banking alert
2006-12-01	Marcus Sachs	Technical Mujahid Magazine
2006-12-01	Johannes Ullrich	Port 80 UDP Malware
2006-12-01	Johannes Ullrich	New Data Retention Rules Effective Today
2006-12-01	Johannes Ullrich	404dnserror Adware
2006-12-02	Koon Yaw Tan	MySpace QuickTime Worm
2006-12-02	Koon Yaw Tan	Phishing and Spamming via IM (SPIM)
2006-12-04	Ed Skoudis	New Hacker Challenge
2006-12-04	Deborah Hale	McAfee's Top 10 Predictions for 2007
2006-12-04	Deborah Hale	Phishers Don't Like Monday
2006-12-04	Deborah Hale	Speaking of Predictions
2006-12-04	Deborah Hale	Is your banks Online security policy making it more of a target for Phisher's?
2006-12-05	Ed Skoudis	Fun With Windows Netstat
2006-12-05	Ed Skoudis	IBM Tivoli Storage Manager Buffer Overflow Vulns and Patches
2006-12-05	Ed Skoudis	Word Zero-Day, So Sayeth Microsoft
2006-12-06	Mark Hofman	IPv6 and Security
2006-12-06	Jim Clausing	GnuPG new versions-upgrade now
2006-12-06	Mark Hofman	Adobe Acrobat Update
2006-12-07	Tom Liston	Climb a small mountain...
2006-12-07	Tom Liston	Malformed MIMEs can bypass AV
2006-12-07	Tom Liston	Follow the Bouncing EMule
2006-12-07	Tom Liston	Intel LAN Driver Buffer Overflow Local Privilege Escalation
2006-12-07	Tom Liston	Windows Media Player - ASX Playlist Buffer Overflow
2006-12-08	Jim Clausing	Microsoft December advance patch notification
2006-12-08	Jim Clausing	nmap-4.20 released
2006-12-08	Jim Clausing	What will the big security stories of 2007 be?
2006-12-10	Patrick Nolan	Another new Word 0-day, information & dat released by McAfee
2006-12-12	Swa Frantzen	PHP security: the scene might change
2006-12-12	Swa Frantzen	ICMP - call for packets ?
2006-12-12	Swa Frantzen	Microsoft Black Tuesday - December 2006 overview
2006-12-12	Johannes Ullrich	MS06-073: WMI Object Broker Vulnerability (CVE-2006-4704)
2006-12-12	John Bambenek	MS06-077: Remote Installation Service (RIS) remote exploit
2006-12-12	Johannes Ullrich	MS06-074: SNMP Buffer Overflow (CVE2006-5583)
2006-12-12	Jim Clausing	MS06-075: csrss local privilege escalation (CVE-2006-5585)
2006-12-12	Lorna Hutcheson	MS06-072: Cumulative Security Update for Internet Explorer (925454)
2006-12-12	Scott Fendley	MS06-076: Windows Address Book Contact Record flaw (CVE-2006-2386)
2006-12-12	Robert Danford	MS06-078: 2 Windows Media Format Vulnerabilities (CVE-2006-4702, CVE-2006-6134)
2006-12-12	Swa Frantzen	Microsoft Office 2004 - Mac OS X updated
2006-12-12	Swa Frantzen	SAV botnet revival ?
2006-12-12	Swa Frantzen	Offline Microsoft Patching
2006-12-12	Swa Frantzen	The missing Microsoft patches
2006-12-13	Kyle Haugsness	IBM/ISS protection suites - content update problem
2006-12-14	Kyle Haugsness	/dev/random
2006-12-14	donald smith	Port 7212 spike
2006-12-14	donald smith	sav worm and its cc
2006-12-15	Jim Clausing	Yahoo Messenger critical update
2006-12-16	Koon Yaw Tan	SAV Worm Update
2006-12-16	Koon Yaw Tan	Virus spreads from Asus Server
2006-12-17	William Stearns	Ping floods at multiple sites
2006-12-18	Toby Kohlenberg	ORDB Shutting down
2006-12-18	Toby Kohlenberg	4242/TCP Activity is up
2006-12-18	Toby Kohlenberg	Skype worm
2006-12-19	Tom Liston	Soap Boxing
2006-12-19	Tom Liston	Skype 'worm' whinnies...
2006-12-19	Tom Liston	A cavity in Linux Bluetooth?
2006-12-19	Tom Liston	It's baaaaaaaack...
2006-12-19	Tom Liston	FF/TB Updates
2006-12-19	Tom Liston	APPLE-SA-2006-12-19
2006-12-20	Bojan Zdrnja	Sun JDK 5.0 Update 10
2006-12-21	Bojan Zdrnja	Multiple vulnerabilities in Symantec Veritas NetBackup
2006-12-21	Lorna Hutcheson	The Twelve Days of Christmas Packet Challenge
2006-12-22	Lorna Hutcheson	All I want for christmas are my exploits....
2006-12-22	Mark Hofman	Challenge Update
2006-12-22	Mark Hofman	PoC for local elevation of privilege on Windows 2000 SP4 upwards
2006-12-22	Mark Hofman	Port 8555 and 2967 activity
2006-12-23	Joel Esler	Christmas . exe is making the rounds
2006-12-24	Swa Frantzen	phpBB 2.0.22 - upgrade time
2006-12-24	Swa Frantzen	Careful with the seasonal attachments!
2006-12-24	Mark Hofman	'Twas the night before Christmas, when all through the house Not a creature was stirring, not even a mouse.
2006-12-25	Marcus Sachs	Merry Christmas to All!
2006-12-25	Kevin Liston	A Security Sampler
2006-12-25	Kevin Liston	Changing Threat Models
2006-12-26	Swa Frantzen	Vista: better security [Y/N] ?
2006-12-26	Marcus Sachs	Ghost of Christmas Botnets?
2006-12-26	Marcus Sachs	DNS Misbehaving
2006-12-27	Marcus Sachs	US President Ford Dies
2006-12-27	George Bakos	Taiwan Earthquakes cut undersea cables
2006-12-27	Marcus Sachs	Christmas Botnet Follow-up
2006-12-27	Joel Esler	The Snort Top 10
2006-12-28	Jim Clausing	Archiving the snort tips
2006-12-29	Daniel Wesemann	Pain reliever with serious side effects
2006-12-28	Jim Clausing	Port 32000 spike, got packets?
2006-12-28	Jim Clausing	What should I do with these gift cards?
2006-12-28	Jim Clausing	Cacti remote code and SQL injection vulnerability
2006-12-29	Daniel Wesemann	postcard.exe
2006-12-30	Brian Granier	Postcard.exe - Let the mutations begin
2006-12-31	Deborah Hale	Update on Postcard virus emails
2006-12-31	Deborah Hale	Windows Defender expires today
2006-12-31	Deborah Hale	A Look Inside a Dirty Computer

Handler's Diary: IE6 and IE7 0-Day Reported;

Diary Archive Dec 2006