SANS Internet Storm Center; Cooperative Network Security Community

Diary Archive Sep 2006

Search Diaries:

2003	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2004	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2005	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2006	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2007	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2008	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2009	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov

Date	Author	Title
2006-09-11	Swa Frantzen	Microsoft August 2006 Patches: STATUS
2006-09-01	Swa Frantzen	Tip of the Day: Audit
2006-09-01	Joel Esler	MS06-040 Worm
2006-09-02	Joel Esler	Another IE Exploit makes the rounds...
2006-09-01	Swa Frantzen	Out Share! Now it's up to you.
2006-09-01	Joel Esler	Fred Flintstone, we'd like to help...
2006-09-01	Joel Esler	Cogent having problems...
2006-09-01	Joel Esler	CA eTrust Antivirus [was] flagging lsass.e x e
2006-09-02	Brian Granier	Media sanitization
2006-09-02	Brian Granier	UDP Port 47290
2006-09-03	Michael Haisley	Media sanitization NIST website
2006-09-03	Michael Haisley	Trojan.Mdropper.Q / Email Attachment Practices
2006-09-04	Pedro Bueno	Bots looking for FlashChat App
2006-09-04	Joel Esler	Browzar, the privacy that may not be
2006-09-05	Joel Esler	Reports of Bots exploiting pmwiki and tikiwiki
2006-09-05	Bojan Zdrnja	More about the host based firewall on Windows XP SP2
2006-09-05	Bojan Zdrnja	The Sleuth Kit (TSK) for Windows released
2006-09-06	Johannes Ullrich	Updated Packet Attack flash animation
2006-09-06	Joel Esler	Internet Systems Consortium BIND Denial of Service Vulnerabilities
2006-09-06	Michael Haisley	DUNZIP32.dll Buffer Overflow
2006-09-06	Tom Liston	Quick plug: Netcat in the Hat
2006-09-07	Joel Esler	Microsoft's September Updates
2006-09-08	donald smith	AOL ICQ vulnerabilities
2006-09-08	donald smith	Is someone watching your internet traffic or telephone calls?
2006-09-09	Jim Clausing	Log Analysis tips?
2006-09-09	Jim Clausing	New feature at isc.sans.org
2006-09-10	Lenny Zeltser	Early Discussions of Computer Security in the Media
2006-09-09	Jim Clausing	A few preliminary log analysis thoughts
2006-09-10	Lenny Zeltser	Off-Site Backup for Home Users
2006-09-11	Daniel Wesemann	Log analysis and marketing decisions don't mix
2006-09-11	Daniel Wesemann	TOR servers seized by police in Germany
2006-09-12	Michael Haisley	Microsoft Security Bulletin MS06-054
2006-09-12	Swa Frantzen	Microsoft security patches for September 2006
2006-09-12	Michael Haisley	Microsoft Security Bulletin MS06-052
2006-09-12	Michael Haisley	Microsoft Security Bulletin MS06-053
2006-09-12	Swa Frantzen	Apple Quicktime 7.1.3 released
2006-09-12	Swa Frantzen	Adobe Flash player upgrade time
2006-09-13	Joel Esler	Qwest having problems?
2006-09-13	Swa Frantzen	PHP - shared hosters, take note.
2006-09-13	Jim Clausing	Happy birthday, disk drive
2006-09-14	donald smith	cisco vtp vulnerabilities
2006-09-14	Deborah Hale	CSO Online E-Crime Survey Results
2006-09-14	Deborah Hale	Another 0-Day Exploit - CVE-2006-4777
2006-09-15	Joel Esler	Get your fresh Firefox updates
2006-09-15	Joel Esler	Adaware corrects their false positives
2006-09-15	Swa Frantzen	MSIE DirectAnimation ActiveX 0-day update
2006-09-15	Tom Liston	Killbit apps for current IE exploit
2006-09-15	Joel Esler	Snort rule update
2006-09-16	Patrick Nolan	Multiple vulnerabilities fixed in Firefox, Thunderbird and Seamonkey
2006-09-16	Patrick Nolan	Citrix Access Gateway Advanced Access Control remote and local vulnerability reported
2006-09-16	Patrick Nolan	Haxdoor Incident Details at Honeyblog.Org
2006-09-16	Tony Carothers	Update/Fix for MS06-049
2006-09-18	Jim Clausing	Log analysis follow up
2006-09-19	Swa Frantzen	Yet another MSIE 0-day: VML
2006-09-19	William Salusky	Are you a security pirate?
2006-09-19	Jim Clausing	Rant-of-the-day: on the dangers of orphaned software (the dark side of open source)
2006-09-19	William Salusky	Malware analysts rejoice! A public submission interface for the CWSandox
2006-09-19	William Salusky	0day this, 0day that, I've got the 0day blah's, as does Microsoft Office 2000 PPT
2006-09-19	donald smith	PDF vulnerabilities
2006-09-20	Scott Fendley	2222/tcp Probe Increase
2006-09-21	Patrick Nolan	MS Desktop Search add-on vulnerabilities - Trustworty Computing gone too far
2006-09-21	Chris Carboni	2222/tcp Probes
2006-09-21	Chris Carboni	Updated MSIE VML Remote Buffer Overflow Exploit Code Released
2006-09-21	Johannes Ullrich	Apple updates Airport Drivers
2006-09-22	Ed Skoudis	Security Challenges and Games
2006-09-22	Ed Skoudis	Zeroday Emergency Response Team (ZERT)
2006-09-22	Swa Frantzen	Yellow: MSIE VML exploit spreading
2006-09-22	Jim Clausing	Issues with e-mail notifier
2006-09-23	Patrick Nolan	MSN-Worms exploit MS pif filter vulnerability
2006-09-23	Patrick Nolan	Mailbag Q&A concerning MS Desktop Search add-on vulnerabilities
2006-09-23	Patrick Nolan	Netcraft Report - HostGator servers exploited via cPanel, allowing redirection & VML exploitation
2006-09-24	Daniel Wesemann	VML exploits with OS version detection
2006-09-25	Adrien de Beaupre	Using ISA to help block VML exploit
2006-09-25	Adrien de Beaupre	VML vuln being actively exploited
2006-09-25	Adrien de Beaupre	De-registering vgx.dll in an enterprise
2006-09-26	Patrick Nolan	Deja Vu - Request for W32.Pasobir Malware Sample
2006-09-26	Robert Danford	* VML Update Released
2006-09-26	Jim Clausing	MS06-049 re-release
2006-09-28	Swa Frantzen	Powerpoint, yet another new vulnerability
2006-09-28	Swa Frantzen	MSIE: One patched, one pops up again (setslice)
2006-09-28	Tom Liston	Setslice Killbit Apps
2006-09-28	Jim Clausing	OpenSSH 4.4 (and 4.4p1) released
2006-09-28	Mike Poor	Openssl patches ASN.1 flaw
2006-09-29	Kevin Liston	A Report from the Field
2006-09-29	Joel Esler	Apple updates to 10.4.8 and Security Update 2006-006
2006-09-30	Robert Danford	*WebViewFolderIcon ActiveX control exploit(s) in the wild
2006-09-30	Koon Yaw Tan	SunJava 1.5.0_09 Released
2006-09-30	Swa Frantzen	Yellow: WebViewFolderIcon setslice exploit spreading

Handler's Diary: IE6 and IE7 0-Day Reported;

Diary Archive Sep 2006