CERT Summary CS-2002-02 released
Each quarter, the CERT Coordination Center (CERT/CC) issues the CERT summary to draw attention to the types of attacks reported to our incident response team, as well as other noteworthy incident and vulnerability information. The summary includes pointers to sources of information for dealing with the problems.
Since the last regularly scheduled CERT summary, issued in February 2002 (CS-2002-01), CERT released several advisories addressing vulnerabilties in Microsoft's IIS server, Oracle Database and Application Servers, Sun Solaris cachefsd, and MSN Instant Messenger. In addition, they have published statistics for the first quarter of 2002, numerous white papers, and a collection of frequently asked questions about the OCTAVE Method.
[ Read more ]
- Advisory: Buffer Overflow in Microsoft's MSN Chat ActiveX Control (11 May 2002)
- Advisory: Format String Vulnerability in ISC DHCPD (9 May 2002)
- Advisory: Heap Overflow in Cachefs Daemon (7 May 2002)
- Advisory: Format String Vulnerability in rpc.rwalld (2 May 2002)
- Advisory: Multiple vulnerabilities in Oracle Servers (2 May 2002)