News Archives from 2001 (November 01 - November 30, 2001)
______________________________________________________________
[Jump to Amiga] [Jump to Windows] [Jump to Mac]
[Jump to Linux] [Jump to Misc]
______________________________________________________________
Amiga
20 November 2001 - Update Report on Ottawa Amiga Show With Pics
Amiga.info (pronounced Amiga dot info), has an update of the time we
had at the Ottawa Amiga Show that we attended on Sat Nov 17th, 2001.
They also have some pictures on the OAS site, if you'd care to take a
peek. All in all we had a good time and got to put some faces to people
I know. Best part for me, was my winning ticket for a NewTek DigiView
system from Wayne Schaler of Cinereal Pro-Video, one of the sponsors of
the show. As far as I know, this was the first video digitizer for our
Amiga, and in production before the DCTV digitizer.
20 November 2001 - ReqTools Library v39.3 by AROS Team Available
The Reqtools.library is needed by a few anti-virus programs, and is
available at VHT-Canada. This in the updated version done by the AROS
Team. The archive contains only the library! For all the other stuff
like prefs program, catalogs you still have to download ReqToolsUser
unless you have it already!
New in v39.3:
- Fixed some bugs which were introduced in V39.2.
18 November 2001 - Chatroom Open To Visitors of All Virus Help Teams
We have been busy modifying the chatroom. The link will now be available
on all the various Virus Help Teams around the world. The same rules of
conduct apply. You can use the [ Click here to Exit ] link, to go to your
choice of Virus Teams. Please fill in the two quick ballots found on the
exit screen, as it will give us valuable information on how we are doing.
Most important, have fun and Enjoy!
18 November 2001 - MUI Security Bug-Fix (update)
Since the time of the original release of Jörg Strohmayer, having come
up with a fix for all MUI programs, there has been a few public posts
by other interested parties. David 'zapek' Gerber, of Vapor, has quite
a few comments that are well worth reading by any Amiga MUI user. Either
finger zapek@vapor.com or visit http://v3.vapor.com/?finger=zapek by
following the above link. My personal decision after reading Zapek's
comments, was to remove the newly installed muilowlevel.library done
by Jörg Strohmayer.
13 November 2001 - Amiga-news News: MUI Security Bug-Fix (Update)
In case any mui users did not notice this posted at Amiga-News, I thought
I'd let any interested parties know that Jörg Strohmayer has done a
security fix (muilowlevel.library 19.10) for Stefan Stuntz v19.9
muilowlevel.library.
Joerg Strohmayer wrote in part:
"This patch protects all MUI-programs but not all
other programs that use APIPE or AwnPIPE."
* Jörg Strohmayer page with muilowlevel.library Security Fix
* Serious security leak in Internet programs? (Amiga-News)
11 November 2001 - Safe v17.4 Released
Zbigniew `Zeeball` Trzcionkowski released his latest freeware virus
dicovering system. Safe informs about attack and removes virus from
memory if possible. The archive is named Safe174.lha, and can be found
on the downloads page, by following the above link.
New in v17.4
- added new version of HTML document
(thanks to Herve Dupont for decompression!)
- fixed default tool to be more OS conform
(thanks to Harry Sintonen for hint)
- fixed ROM recalc in VECS/S
(thanks to Harry Sintonen for the report)
- fixed little bit the stealth detector
(if you get "suspicious actions" message each time you execute Safe
please report)
* French and Polish Documentaion for Safe
* Click here for SafeDocs-Extras v1.0
* Click here for SimpleHTML to read Safe Docs
11 Novemver 2001 - VHT-Denmark Latest News
Virus Help Denmark announced that new virus translations have been
added to the Amiga Virus Encyclopedia.
10 November 2001 - Major Escape Sequence Exploit In MUI
The Internet News section of Amiga.org has this posted by Wayne Martin:
Warning: A major exploit in MUI internet software has been found, The
exploit would allow commands to be executed on your machine. Everything
from STRICQ to YAM is effected, although a fix for YAM is coming soon.
So far Vapor has confirmed its applications such as AmIRC etc are not
succeptable to this exploit. To help prevent the use of this exploit on
your system, make sure PIPE: and similar PIPE devices are not mounted
on your system. You may also wish to rename or password protect your
important system commands such as delete, format and so forth.
* abraxis Security Advisory 2001-08-11 Escape Sequence Exploit
08 November 2001 - Corrected VirusWarning.Guide v3.4a Available
Jan at Virus Help Denmark put in some extra work, and corrected the
couple of text errors in the original guide, first released yesterday.
The version 3.4 has been completly replaced with the new v3.4a one, so
it is not in the archive section on the site. The archive is named
vht-vg34a.lha, and can be found on the downloads page.
- Thanks Jan :)
07 November 2001 - VirusWarning.Guide v3.4 Available
A new update of VirusWarning.guide has been released today, by Virus
Help Denmark. The archive is named vht-vg34.lha, and can be found on
the downloads page.
Side note from VHT-Canada:
a) The readme is not available for this version
b) Within the guide, it states that the unpacked size is 391.474 bytes,
when actually the size for v3.4 is 391.696 bytes when unpacked
c) The guides link button will not go to the vht-dk106 section, as there
is a space between the '@' and the 'node' text. To correct this, you
can edit the guide in a text editor, and delete the space between the
two characters. Either you can go to line 9569 or do a search for
'@ node', without the quotes, to find the extra space.
Top of Page
Windows
22 November 2001 - DAT / SDAT 4172 McAfee Total Virus Defense Update
DAT File for weekly v4x 4169, and SuperDat File for v4x 4150/4172
are now available on Network Associates website.
Dr Solomon's VirusScan customers download here.
For more information on the use of the dat files, please see the
NAI's readme.txt. or download VirusScan v4.5 Admin Guide.
* Click here for VirusScan Emergency DATS
* Click here for NAI FTP Site
22 November 2001 - Updated .def Files Available for F-PROT
Frisk Software International has new Sign.def file available. Also there
is the Sign2.zip file which contains only the sign2.def without the
sign.def file and, as a result, it is quite a bit smaller than both def
files together. These updates have been available since Nov 20, 2001
* The updates are available now at ftp://ftp.complex.is/pub/
fp-def.zip 829Kb plus fp-def.asc
sign2.zip ? Kb
22 November 2001 - Microsoft Security Bulletin MS01-056
Microsoft TechNet Security's latest bulletin outlines "Windows Media
Player .ASF Processor Contains Unchecked Buffer". One of the streaming
media formats supported b Windows Media Player is Advanced Streaming
Format (ASF). A security vulnerability occurs in Windows Media Player
6.4 because the code that processes ASF files contains an unchecked
buffer. Maximum Severity Rating: Critical, amd customers running
affected products should apply the patch immediately.
22 November 2001 - Microsoft Security Bulletin MS01-055
Microsoft TechNet Security's latest bulletin outlines "13 November 2001
Cumulative Patch for IE". In addition to eliminating all previously
discussed vulnerabilities affecting IE 5.5 Service Pack 2 and IE 6, the
patch also eliminates three newly discovered ones.
18 November 2001 - DAT / SDAT 4171 McAfee Total Virus Defense Update
DAT File for weekly v4x 4169, and SuperDat File for v4x 4150/4171
are now available on Network Associates website.
Dr Solomon's VirusScan customers download here.
For more information on the use of the dat files, please see the
NAI's readme.txt. or download VirusScan v4.5 Admin Guide.
* Click here for VirusScan Emergency DATS
* Click here for NAI FTP Site
18 November 2001 - Updated .def Files Available for F-PROT
Frisk Software International has new Sign.def file available. Also there
is the Sign2.zip file which contains only the sign2.def without the
sign.def file and, as a result, it is quite a bit smaller than both def
files together. These updates have been available since Nov 13, 2001
* The updates are available now at ftp://ftp.complex.is/pub/
fp-def.zip 806Kb plus fp-def.asc
sign2.zip 161Kb
18 November 2001 - Latest Macro.def for F-PROT Released
Frisk Software International has a new Macro.def for F-PROT. This version
of Macro.def was last modified/changed on: November 15, 2001
* See ftp://ftp.complex.is/pub/ for:
macrdef2.zip 207Kb
18 November 2001 - F-Prot *NOT* infected with W32.Nimda.enc(dr)
Frisk Software International news, says Symantec's Antivirus software,
Norton Antivirus, has been reporting F-Prot Antivirus for Windows as
being infected with W32.Nimda.enc(dr) following the November 9th
release of Symantec's virus definitions. This is a false positive due
to what appears to be a lack of quality assurance on their part.
* More info on this false positive can be acquired from Symantec link
14 November 2001 - F-Prot antivirus NOT infected with Nimda virus
This just in from Virus Help Denmark on Nov 13th. Symantec's Antivirus
software, Norton Antivirus, has been reporting F-Prot Antivirus for
Windows as being infected with W32.Nimda.enc(dr) following the November
9th release of Symantec's virus definitions. This is a false positive
due to what appears to be a lack of quality assurance on their part.
* Click here for InstallShield's alert to their customers
08 November 2001 - Microsoft Security Bulletin MS01-054
Microsoft TechNet Security's latest bulletin outlines "Invalid Universal
Plug and Play Request can Disrupt System Operation". The Universal Plug
and Play (UPnP) service allows computers to discover and use network-
based devices. Affected Software: Microsoft Windows 98/98SE/ME/XP.
08 November 2001 - DAT / SDAT 4169 McAfee Total Virus Defense Update
DAT File for weekly v4x 4169, and SuperDat File for v4x 4150/4169
are now available on Network Associates website.
Dr Solomon's VirusScan customers download here.
For more information on the use of the dat files, please see the
NAI's readme.txt. or download VirusScan v4.5 Admin Guide.
* Click here for VirusScan Emergency DATS
* Click here for NAI FTP Site
08 November 2001 - Updated .def Files Available for F-PROT
Frisk Software International has new Sign.def file available. Also there
is the Sign2.zip file which contains only the sign2.def without the
sign.def file and, as a result, it is quite a bit smaller than both def
files together. These updates have been available since Nov 6, 2001
* The updates are available now at ftp://ftp.complex.is/pub/
fp-def.zip 805Kb plus fp-def.asc
sign2.zip 161Kb
08 November 2001 - PC-to-Phone Exposes Account Number and Password
MSNBC Bug Of The Day reports that Deltathree's PC-to-Phone version
3.0.3 saves the user's account number and password in a file called
temp.html. The file is stored in an unsecure directory readable by
everyone. This is a concern for users with systems like Windows NT
and Windows 2000 that support multiple users. This is more of a
business scenario, so home users are at low risk.
01 November 2001 - DAT / SDAT 4168 McAfee Total Virus Defense Update
DAT File for weekly v4x 4168, and SuperDat File for v4x 4150/4168
are now available on Network Associates website.
Dr Solomon's VirusScan customers download here.
For more information on the use of the dat files, please see the
NAI's readme.txt. or download VirusScan v4.5 Admin Guide.
* Click here for VirusScan Emergency DATS
* Click here for NAI FTP Site
01 November 2001 - Updated .def Files Available for F-PROT
Frisk Software International has new Sign.def file available. Also there
is the Sign2.zip file which contains only the sign2.def without the
sign.def file and, as a result, it is quite a bit smaller than both def
files together. These updates have been available since Oct 31, 2001
* The updates are available now at ftp://ftp.complex.is/pub/
fp-def.zip 803Kb plus fp-def.asc
sign2.zip 161Kb
01 November 2001 - Latest Macro.def for F-PROT Released
Frisk Software International has a new Macro.def for F-PROT. This version
of Macro.def was last modified/changed on: October 31, 2001
* See ftp://ftp.complex.is/pub/ for:
macrdef2.zip 207Kb
01 November 2001 - "Nimda" Is Breeding
Kaspersky Lab says 5 modifications of the worm have already been detected
Since "Nimda" was discovered on September 18, 2001. Some of them have
already been seen "in-the-wild" but fortunately none of them has caused
an epidemic compared to the original one. Read the report for Kaspersky
Labs recommendations.
* Also: F-Secure warns about Nimda.E network worm
01 November 2001 - InoculateIT Personal Edition AntiVirus Newsletter
Computer Associates published version 01.25 of its newsletter. In this
issue they have the Weekly Top 5 virus and malware files submitted to
CAI during the last week. They also have an IPE update reminder on how
to download the latest signature file for IPE.
NOTE: IPE users will continue to receive signature updates at no
cost from http://www.antivirus.ca.com.
To download the latest signature file for IPE without going through your
Web browser, you can use the new "Auto Download" feature inside IPE
(Tools, AutoDownload) or the AutoDownload application to check for
updated signatures, download, and install them. Alternatively, the update
file can be obtained at the following URL:
http://antivirus.ca.com/update.htm
Top of Page
Macintosh
18 October 2001 - DAT File Update for Virex 7 Available
Networks Associates Technology,Inc. has updated the McAfee Virex 7 Update
to DAT Version: 4164. This software can only be used to update Virex 7.
Further information in Virex 7 Release Notes for this DAT Update.
03 October 2001 - Virex Update To Virus DAT For Scan Engine Available
Networks Associates Technology, Inc. has the current Macintosh anti-virus
software Virex Scan Engine Version: 4131, which includes this updated
Virus Definition file: 4163. Further information in Virex Release Notes
for this Virus Update.
* Virex FTP Site at ftp://ftp.nai.com/pub/antivirus/datfiles/mac/virex
Top of Page
Linux
22 November 2001 - Latest Linux Weekly News Released
LWN.net Weekly Edition for November 22nd, 2001 has been published. Some
of the security items are: Quickstart security guides; OpenSSH 3.0.1.
22 November 2001 - New Linux Journal Site
LWN.net Daily news announced that the Linux Journal has put up an all
new web site built with PhpNuke. It includes a bunch of new features
(i.e. discussion groups) as well as extensive archives.
18 November 2001 - Latest Debian Weekly News for November 14
LWN.net Daily news announced that the the Debian Weekly News for
November 14 is out.
18 November 2001 - Latest CRYPTO-GRAM Newsletter for Nov 15
LWN.net Daily news announced that the Bruce Schneier's CRYPTO-GRAM
Newsletter for November 15 is available.
18 November 2001 - Latest Embedded Linux Newsletter
LWN.net Daily news announced that the the LinuxDevices.com Embedded
Linux Newsletter for November 15 is out, with the usual collection of
interesting stuff from the Embedded Linux community.
18 November 2001 - Latest LWN.net Weekly Edition for November 15
LWN.net Daily news announced that the LWN.net weekly edition for
November 15, 2001 is available.
08 November 2001 - Latest Linux Weekly News Released
LWN.net Weekly Edition for November 8th, 2001 has been published. Some
of the security items are: OpenSSH 3.0; another kernel vulnerability.
08 November 2001 - Latest Embedded Linux Newsletter
LWN.net Daily news announced that the LinuxDevices.com Embedded Linux
Newsletter for November 8 is out, with the usual roundup of goodies
from the embedded Linux world.
01 November 2001 - Latest Linux Weekly News Released
LWN.net Weekly Edition for November 1st, 2001 has been published. Some
of the Security items are 2.2 kernel updates, the ANX secure network,
openssh, squid, and uucp updates.
01 November 2001 - Latest Embedded Linux Newsletter
LWN.net Daily news announced that LinuxDevices has posted the latest
Embedded Linux Newsletter. This issue covers LinuxDevices.com's 2nd
birthday, a review of the Sharp Zaurus Linux PDA, Commercial YOPY PDAs
about to ship, and more.
Top of Page
Miscellaneous
22 November 2001 - New Virus Downloads Itself From Web Pages
The Nimda virus uses every trick in the book to spread, say virus
experts, including email and IRC - it can even download itself through
a browser from infected Web servers. (Hackers ZDNet)
22 November 2001 - Aliz: The Second Attempt Finds Fertile Ground
Aliz, the Internet worm detected in May, has brought forth an epidemic
Kaspersky Labs, an international data-security software developer,
warns users about the active spreading of the Internet worm, "Aliz."
Reports of infection by this worm already have been reported in many
countries throughout the world.
22 November 2001 - Latest Headings From Bug of the Day Department
MSNBC Bug Of The Day reports that
* Nov. 21: Office 2000 security can be bypassed
* Nov. 20: Don't mess with RedHat Package Manager files
* Nov. 19: Imail allows e-mail address harvesting
* Nov. 16: Win NT, 2000 have DoS vulnerability
* Nov. 15: Hackers can get in through LiveUpdate
* Nov. 14: Spoof in IE can fake your desktop
* Nov. 13: Users can get root access in OS X
22 November 2001 - F-Secure Reports: Hotmail Account HOAX
There is also other versions of this hoax that propagate as a JPEG image
of a page that looks like a letter or message from Microsoft. If you
receive any of these messages or similar please do not pass it on. MS
has better ways to inform customers than rely on people forwarding a
message from them.
22 November 2001 - NAI Reports: 48 Hours HOAX
This email message is just a HOAX, currently we know of no other message
that the user will receive about the HOAX as the initial email states.
AVERT has not received any report of a user's hard drive being erased by
receiving the email. Network Associates says to ignore or delete this
email and do not forward to others.
22 November 2001 - NAI Reports: Osama vs Bush HOAX
This email message is just a HOAX, currently we know of no other
message that the user will receive about the HOAX as the initial email
states. AVERT has not received any report of a user's hard drive being
erased by opening the email. Network Associates says to ignore or delete
this email and do not forward to others.
18 November 2001 - Stiller Research: The O'hare Atheist HOAX
Stiller Research virus hoax news, has a report on the The (Touched by an
Angel) O'hara Atheist Hoax. They say "Any warning (like the above) which
says to '..send this to anyone that you know' should never be forwarded."
10 November 2001 - VHT-CAN Once Again Listed In Amiga.org Link Directory
Due to the Amiga.org database lose, all links had been lost. Everyone has
had to re-register, and place their site once again in the database. This
has now been completed. You can find us in the Anti-Virus Sites section.
Our Main Page has newcbeen corrected to reflect the ratecode change.
* Go to Amiga.org and rate Virus Help Team Canada
or
* Stay here and rate Virus Help Team Canada on our Main Page
08 November 2001 - NAI Reports: WTC Survivor HOAX
Network Associates asks you to ignore or delete this email and do not
forward to others. Read the report at NAI for the full text of message,
which says in part:
"I received this from a reliable family friend this morning. 10/28/01
BIG TROUBLE !!!! DO NOT OPEN "WTC Survivor" It is a virus that will
erase your whole "C" drive. It will come to you in the form of an
E-Mail from a familiar person..."
08 November 2001 - CERT Incident Note IN-2001-12
Exploitation of vulnerability in SSH1 CRC-32 compensation attack detector
The CERT Coordination Center has received multiple reports of systems
being compromised via the CRC-32 compensation attack detector
vulnerability described in VU#945216. They are also receiving reports of
increased scanning activity for the SSH service (22/tcp).
08 November 2001 - MS To Force IT-security Censorship
Security Focus has an article by The Register writer, that says in part,
"We all know how Microsoft likes to bully its many 'partners', so it
comes as no surprise that the Beast has decided to apply its
partnership muscle to silence the software and network security
research community."
01 November 2001 - Latest HOAX Information
Hoax Name: Money Transfer hoax
* Click here for F-Secure Money Transfer Hoax Report
Aliases: Money Transfer From Nigeria hoax
Variant:
Release Note: Variants of Money transfer hoax have been circulating
for years around the internet. And there are several variants of the
hoax or scam circulating at any given moment. Please ignore all these
hoaxes and do not pass them on.
Hoax Name: Manicomium Hoax
* Click here for NAI Manicomium Hoax Report
Release Note: McAfee AVERT Labs would like to inform you of a new email
HOAX. We are advising users who receive the email to delete it and DO
NOT pass it on as this is how an email HOAX propagates.
Top of Page
Back to the News Archives page