Denial of Service developments including description, impact, and solutions.

Description of how intruders use name servers to execute packet flooding denial of service attacks.

Paper discussing general name server security, with a focus on BIND. By Allen Householder and Brian King of CERT/CC.

Affects all versions of SSH 1.2.27 and lower when built with RSAREF (all US versions.)

"There are four remotely exploitable buffer overflows in OpenSSL. There are also encoding problems in the ASN.1 library used by OpenSSL. Several of these vulnerabilities could be used by a remote attacker to execute arbitrary code on the target system...

Studies Internet security vulnerabilities, provides incident response services to sites that have been the victims of attack, publishes a variety of security alerts, researches security and survivability in wide-area-networked computing, and develops ...

"Multiple Kerberos distributions contain a remotely exploitable buffer overflow in the Kerberos administration daemon. A remote attacker could exploit this vulnerability to gain root privileges on a vulnerable system."

Covers two vulnerabilities: the digest calculation buffer overflow, and the inadequate validation of the vendor-length of vendor-specific attributes.

CERT is the Computer Emergency Response Team that was founded at Carnegie Mellon shortly after the first worm, the Morris worm, caused havoc over a decade ago. CERT offers training to organizations to mitigate security vulnerabilities and respond to s...

Advisory published jointly by the CERT Coordination Center, DoD-CERT, the DoD Joint Task Force for Computer Network Defense (JTF-CND), the Federal Computer Incident Response Capability (FedCIRC), and the National Infrastructure Protection Center (NIPC).