Slashdot Mirror

← Back to Domains

Domain: securitytracker.com

Stories and comments across the archive that link to securitytracker.com.

Stories · 3

  1. Exploit Based On Leaked Windows Code Released

    It · Security · · posted by simoniker · from the nda-never-signed dept. · 952 comments
    mischief writes "A post to Bugtraq from SecurityTracker.com reports an Internet Explorer 5 exploit that has been released based on the Win2K code leak: 'It is reported that a remote user can create a specially crafted bitmap file that, when loaded by IE, will trigger an integer overflow and execute arbitrary code.' Only affects IE 5 apparently, but still - it didn't take long!"

  2. Security Vulnerability in Microsoft .NET Passport

    It · Security · · posted by michael · from the doh dept. · 433 comments
    Stuart Moore writes "A vulnerability was reported in Microsoft .NET Passport, also affecting Hotmail user accounts. The simple flaw allows an attacker to change any person's password to an arbitrary value. The attacker can then gain access to the victim's accounts, as well as to the victim's personal information (if any is stored w/ Passport). Muhammad Faisal Rauf Danka posted a note to the Full-Disclosure security e-mail list after multiple unsuccessful attempts to contact Microsoft." There's a news report as well.

  3. Security Vulnerability in Microsoft .NET Passport

    It · Security · · posted by michael · from the doh dept. · 433 comments
    Stuart Moore writes "A vulnerability was reported in Microsoft .NET Passport, also affecting Hotmail user accounts. The simple flaw allows an attacker to change any person's password to an arbitrary value. The attacker can then gain access to the victim's accounts, as well as to the victim's personal information (if any is stored w/ Passport). Muhammad Faisal Rauf Danka posted a note to the Full-Disclosure security e-mail list after multiple unsuccessful attempts to contact Microsoft." There's a news report as well.