[Lockergnome] Computer Security ~ June 27, 2009

Lockergnome's Computer Security ~ June 27, 2009    MS .NET Framework update KB963707 Is new HDD being recognised. Any free online classifieds similar to Craigslist? microsoft updates of june 8th 9th or 10th mess up. Can't delete file on desktop links in web sites picture it. program error Stereo audio recording my computer is playing random shows on its own. Internet Explorer won't work Gmail log in https How to distribute large PDF (or convert?) IE 8 does ..... what makes this happen? SSH connections Lockergnome e-mails FolderSizes: One of the things we all hate to deal with is the anxiety of running out of space on our systems. It's an instant source of frustration. That's where a program called FolderSizes from Key Metric Software comes in. The program opens into a window with four panes - Folder Browser, Folder, Drive Space, and the File/Folder Detail Pane. Each is synchronized with the others and they're all controlled by global settings and filters... [Click Here to Download] Lockergnome help - Antivirus Discussions Avira a bit misleading Bitdefender, .dbx files and gmail computer desktop and laptop Win32.Brontok smsstoraqge.lst free antivirus for old notebook Search Engine Result Page Hijacked TT Livescan Update Disabling AVG Freebie AV For Windows Home Server? AV for old Win ME laptop Recycler etc... F-Prot for DOS - what are sign2.def and fssign2.def differ.. bar311 got me, logs on & right back off ! AVG problem with AutoIt scripts ... ? What to do to stop A.. Lockergnome help - Trojans/Spyware Discussions System Security 2009 Google Hijack Virus I need help!! i think i have malware avg updates are "forbidden" Can't seem to remove uacinit.dll. Help please? spyware hi, i have a malware infection i think :-( nother hijacked google in firefox and IE Google Hijack- Unable to update anti-virus Search hijacked -- AVG Can't Update - Frequent crashes Plethora of problems from one stupid action. Spyware Doctor Offer Help for yet another search engine hijack? I've been hijacked... google, yahoo, etc. results redirected Momma told me not to get Hijacked.... Lockergnome help - Antivirus Discussions - General Discussions Avira a bit misleading computer desktop and laptop Win32.Brontok smsstoraqge.lst Search Engine Result Page Hijacked TT Livescan Update AV for old Win ME laptop Recycler etc... bar311 got me, logs on & right back off ! More Spam 83378 Sears/Kenmore Air Cleaner Replacement Filter 14OZ Propane Torch Kit Panasonic EY4542LN2M 14.4-Volt Li-ion Multi Purpose Metal .. Can a PDF file contain a virus? Network Tools for Windows Lockergnome help - Antivirus Discussions - McAfee McAfee Annoying Restart Computer Warning Anybody had to deal with McAfee's new Download Manager? Norton vs McAfee? McAfee Uninstall has crippled me McAfee ePO CMA Install Issues w/ Framework Service AVS is no more, AOL now using McAfee McAfee Enterprise AV Problem McAfee Virus Scan Enterprise Update problem help please Uninstall McAfee Firewall Kaspersky vs McAfee and Norton McAfee isn't picking up a pest!!! Infamous McAfee framework service problem McAfee updated then msconfig gives "access denied, log in .. McAfee, Vista and Dell- an installation from hell McAfee SLOWS my computer to a snail's pace! Lockergnome help - Antivirus Discussions - Symantec/Norton Will Norton AV 2002 run on Win98se? Online attackers feed off Norton forum purge Can't login to Norton Internet Security are going to buy norton 2009? How do I "reset" Symantec scan history? Secure storage system svichoost.exe anyone? How to un-install NORTON suite? AVG vs Norton NAV 2007 total removal ??? Infostealer cancelling Norton subscriptions Norton 360 vs. printer/scanner issues Norton Internet Security 2007 Problem With Norton SystemWorks and Windows XP Login Lockergnome help - Antivirus Discussions - AVG Disabling AVG AVG problem with AutoIt scripts ... ? What to do to stop A.. Defrag AVG files AVG Free AntiVirus -some problems lately- anyone else? Avast vs. AVG and Zip files AVG 8.0 Problems Galore AVG Free Edition 8.0.175 Unable to install AVG free 8.0 Problem installing paid AVG 8.0 - ewido conflict AVG free command line Problems uninstalling AVG Free 7.5 stop AVG Gaelicum removal tool running on startup Network question with AVG 8.0 Quick Scan? AVG 8.0 and ZoneAlarm = Vista crash Lockergnome help - Antivirus Discussions - F-PROT F-Prot for DOS - what are sign2.def and fssign2.def differ.. F-Prot FP-DEF.ZIP now too big for 1.44M F-PROT Is F-Prot for DOS no longer supported? F-Prot Fisk Intl' F-Prot What is latest version of F-Prot for DOS free version? F-Prot for Dos not scanning all files F-Prot server down? F-Prot Antivirus ftp://ftp.f-prot updates taking forever to download F-PROT for Linux - Trying to check bootsector F-prot DOS run in Windows DOS BOX or real mode MS-DOS modifying memory usage of a program (F-Prot)? AdAware 1.06 conflict with F-Prot 3.16b Lockergnome help - Antivirus Discussions - Panda Problem with Panda mother-in-law's computer riddled pfdnnt program not found after uninstalling Panda IS unable to install Panda Panda 2007 - internet/lan problem Panda and PATH command problem with panda antivirus 2007 How about Panda PANDA FIREWALL ALLOW IP RANGE OF LAN Panda Titanium 2006 virus and anti spyware a scan schedule.. problems found with panda dont no how to get rid panda titanium antivirus plus antispyware 2006 renew license how to move panda businesSecure panda update script panda for linux free? Lockergnome help - Antivirus Discussions - Free Antivirus free antivirus for old notebook Freebie AV For Windows Home Server? Free Anti-Virus programs eEye Blink free anti-malware and firewall System files protected Has anyone tried the free Spyware Doctor Starter Edition -.. 4 windows XP installation ! Trend Micro 2008 compared to Avast 7.5 task bar pop-up spyware malware fix problem with the Resident Shield of AVG7.5 BugHunter Signature Update August 4th, 2007 - 10,953 signa.. Freeware Software BugHunter Update! 07.09.2007 BugHunter Signature Update 06.24.2007 free anti virus software? Lockergnome help - Antivirus Discussions - Others Bitdefender, .dbx files and gmail Google-Redirect virus? Zone Alarm Trial - Running Firewall only Bit Defender uninstall Unable To UnInstall TrendMicro's PC-Cillin?? G-Data Antivirus or NOD32? Trend Micro PC-Cillin Internet Security 2007 Issue RunScanner 0.9.5 released! Bit Defender Finds This Trend Micro Pc-cillin Trend PC-Cillin and Windows 98SE Upgrade? Trend Micro PC-cillin trendmicro internet security restore quarantines problem BitDefender on demand only Network Tools for Windows Lockergnome help - Trojans/Spyware Discussions - General Discussions System Security 2009 Google Hijack Virus I need help!! i think i have malware avg updates are "forbidden" Can't seem to remove uacinit.dll. Help please? spyware hi, i have a malware infection i think :-( nother hijacked google in firefox and IE Google Hijack- Unable to update anti-virus Search hijacked -- AVG Can't Update - Frequent crashes Plethora of problems from one stupid action. Spyware Doctor Offer Help for yet another search engine hijack? I've been hijacked... google, yahoo, etc. results redirected Momma told me not to get Hijacked.... Lockergnome help - Trojans/Spyware Discussions - Lavasoft Ad-Aware Ad-Aware crashes on Opera cookies - why? Adaware error whist scanning problem ad-aware & spybot spybot and addaware ADAWARE 2007 ADAWARE SE COMMAND LINE OPTIONS Ad-Aware Updates Adaware will not finish Adaware definitions "588 days old" ??? Does BitDefender interfere with Ad-Aware? Ad-Aware ref file problem Kaspersky and Ad Aware Pinging all the experts here -->Zone Alarm anti-spyware ju.. Updates: Latest Defs. Jun. 15th?! AdAware found regkey items...advice? Lockergnome help - Trojans/Spyware Discussions - Webroot Spy Sweeper Vietnampathfinder Travel Spy Sweeper v 6.0.2.39 stopping spysweeper spy sweeper under vista Spy Sweeper Interface Problem Allow specific ad sites in v5.5? Webroot Antivirus any good? XP Shutdown/Restart Problem after installing Spy Sweeper. Not Sure Spysweeper 5.3.2.2361 is Working Restart Problem (Spy Sweeper) webroot spysweeper How good is SpySweeper Antivirus extra module? spy sweeper 5.0 problems? Spy Sweeper: ma vi sembra possibile? SpySweeper dected Perfect Keylogger. Now what? Lockergnome help - Trojans/Spyware Discussions - Spybot S&D Trojan horse virus SHeur.BSLA Spybot-B I am SICK of w32.spybot.worm spybot search and destroy Spybot 1.4 & Win 95 k6ber.exe hacktool and msnsgrs.exe spybot TeaTimer Issues Spybot S&D Allow Change Problem SpywareBlaster and Spybot Search & Destroy. Spybot Search and Destroy Updates Folder Tea-Timer (Spybot) spybot question Hits with Spybot Spybot & The Bane of the '!!bad checksum!' Spybot Gunner 2: If you're looking for original 3D-shooter software, Gunner 2 will provide adrenaline-pumping action. The game has three episodes: World War II-style Episode I, with old-fashioned crafts and weapons Episode II with modern crafts and weapons Futuristic Episode III with UFOs and plasma weapons Now for the surprise: All your targets are up in the air! Gunner 2 comes equipped with 9 types of weapons, 19 enemy crafts, great graphics, and addictive gameplay! [Download Free Trial]... [Click Here to Download] Administrivia © 1996-2008, Lockergnome LLC. ISSN: 1095-3965. ISIPP Accredited. All Rights Reserved. Web site hosted by the folks who bring us Lockergnome.net.

Think Green! Swype SSD Video Camera Diet eBook How to Broadcast a Wireless Audio / Video Signal from PC to TV Seattle Sunshine How to Visualize CSS Font Properties What's the Best Hard Drive Enclosure to Buy? Will Code for Green: Make Money! How to Play Chess on Twitter Toledo Vader Should Parents Share a Kid's Life Online? More Headlines Dull Days of Summer ? Time to Tune Up the Computer Macy?s: Employees Get Fired If They Don?t Meet Credit Card Sign Up Quota Magic Jack - A Recession Winner We May See Firefox 3.5 By Tuesday June 30, 2009 Google - Spike In Michael Jackson Traffic Thought To Be An Attack Todd Weeks on Hammond Cast 174 Justice For Jazz Artists J4JA special KYOU Radio Preorder Microsoft Windows 7 up to 50% off + Free Shipping! Opera ? 10.00 rev 1606 Gets Many Fixes Hitler?s Stealth Fighter? Mythbuster Host Busted By iPhone Charges From AT&T Two Weeks for Windows 7 On the Cheap ? Will You Be Enticed to Buy? Michael Jackson - We Are The World; Rogers, Richie, Simon, et el Google vs Bing - Is There Really User Loyalty? Michael Jackson - Dangerous Unfortunately, Scott McNealy Was Absolutely Correct MSI Releases Military Class Graphics Cards Play More Formats in QuickTime The Life Cycle Of Your Social Networking Account WeatherBug Accuracy Win Over TWC - The Numbers Tell All Is Your Copy Of Windows Misbehaving? Further Help Find Conference Mobile Blogs eBooks Buy Coupons Domains Games Sponsor Download Help Join MP3s Home

TrendLabs | Malware Blog - by Trend Micro - MSN Bot Plays on Controversy over Michael Jackson’s Death

 

Here are the latest updates for security-news@awsoda.net "TrendLabs | Malware Blog - by Trend Micro" - 1 new article MSN Bot Plays on Controversy over Michael Jackson's Death More Recent Articles Search TrendLabs | Malware Blog - by Trend Micro MSN Bot Plays on Controversy over Michael Jackson's Death Following the sudden and shocking death of The King of Pop, Senior Threat Researcher Loucif Kharouni reports that a slew of malicious links related to Michael Jackson’s last moments in the hospital before his death are now being proliferated in the wild via the instant messaging (IM) application, MSN. Below is a sample screenshot of an MSN IM window containing various templates of the said malicious links: When recipients of such messages click on any of these links, they are then prompted to save a file named PIC-IMG029-www.hi5.com.exe (with the MD5 checksum of 031429fc14151f94c8651a3fb110c19b), instead of being led to an image site or gallery. Initial analysis shows that the said file is a variant of the SDBOT family. More updates shortly. Stay tuned. Post from: TrendLabs | Malware Blog - by Trend Micro MSN Bot Plays on Controversy over Michael Jackson's Death • Email to a friend • Article Search • Related • View comments • Track comments • • More Recent Articles Koobface Tweets Italy: Political Controversy Spam Blackhat SEO Quick to Abuse Farrah Fawcett Death Google Cash Club Makes Headlines in Phishing Attack Another Sex Tape, Another Malware Attack

---

Click here to safely unsubscribe now from "TrendLabs | Malware Blog - by Trend Micro" or change your subscription or subscribe

---

 

---

Unsubscribe from all current and future newsletters powered by FeedBlitz

---

Your requested content delivery powered by FeedBlitz, LLC, 9 Thoreau Way, Sudbury, MA 01776, USA. +1.978.776.9498

 

[Lockergnome] Computer Security ~ June 26, 2009

Lockergnome's Computer Security ~ June 26, 2009    MS .NET Framework update KB963707 Is new HDD being recognised. Any free online classifieds similar to Craigslist? microsoft updates of june 8th 9th or 10th mess up. Can't delete file on desktop links in web sites picture it. program error Stereo audio recording my computer is playing random shows on its own. Internet Explorer won't work Gmail log in https How to distribute large PDF (or convert?) IE 8 does ..... what makes this happen? SSH connections Lockergnome e-mails Runic One: Explore a fanciful land with a furry friend in this brain-bending inlay challenge. Use colorful tiles to complete the mosaics and restore the unique objects of an ancient landscape. A delightfully playful pet provides help and bonuses, but it's going to take smarts and strategy to complete your journey. Simple as a wag of the tail, yet challenging as well, this beautiful and fun game, with over 200 different mosaics and 45 unique environments, is... [Click Here to Download] Lockergnome help - Antivirus Discussions Avira a bit misleading Bitdefender, .dbx files and gmail computer desktop and laptop Win32.Brontok smsstoraqge.lst free antivirus for old notebook Search Engine Result Page Hijacked TT Livescan Update Disabling AVG Freebie AV For Windows Home Server? AV for old Win ME laptop Recycler etc... F-Prot for DOS - what are sign2.def and fssign2.def differ.. bar311 got me, logs on & right back off ! AVG problem with AutoIt scripts ... ? What to do to stop A.. Lockergnome help - Trojans/Spyware Discussions System Security 2009 Google Hijack Virus I need help!! i think i have malware avg updates are "forbidden" Can't seem to remove uacinit.dll. Help please? spyware hi, i have a malware infection i think :-( nother hijacked google in firefox and IE Google Hijack- Unable to update anti-virus Search hijacked -- AVG Can't Update - Frequent crashes Plethora of problems from one stupid action. Spyware Doctor Offer Help for yet another search engine hijack? I've been hijacked... google, yahoo, etc. results redirected Momma told me not to get Hijacked.... Lockergnome help - Antivirus Discussions - General Discussions Avira a bit misleading computer desktop and laptop Win32.Brontok smsstoraqge.lst Search Engine Result Page Hijacked TT Livescan Update AV for old Win ME laptop Recycler etc... bar311 got me, logs on & right back off ! More Spam 83378 Sears/Kenmore Air Cleaner Replacement Filter 14OZ Propane Torch Kit Panasonic EY4542LN2M 14.4-Volt Li-ion Multi Purpose Metal .. Can a PDF file contain a virus? Network Tools for Windows Lockergnome help - Antivirus Discussions - McAfee McAfee Annoying Restart Computer Warning Anybody had to deal with McAfee's new Download Manager? Norton vs McAfee? McAfee Uninstall has crippled me McAfee ePO CMA Install Issues w/ Framework Service AVS is no more, AOL now using McAfee McAfee Enterprise AV Problem McAfee Virus Scan Enterprise Update problem help please Uninstall McAfee Firewall Kaspersky vs McAfee and Norton McAfee isn't picking up a pest!!! Infamous McAfee framework service problem McAfee updated then msconfig gives "access denied, log in .. McAfee, Vista and Dell- an installation from hell McAfee SLOWS my computer to a snail's pace! Lockergnome help - Antivirus Discussions - Symantec/Norton Will Norton AV 2002 run on Win98se? Online attackers feed off Norton forum purge Can't login to Norton Internet Security are going to buy norton 2009? How do I "reset" Symantec scan history? Secure storage system svichoost.exe anyone? How to un-install NORTON suite? AVG vs Norton NAV 2007 total removal ??? Infostealer cancelling Norton subscriptions Norton 360 vs. printer/scanner issues Norton Internet Security 2007 Problem With Norton SystemWorks and Windows XP Login Lockergnome help - Antivirus Discussions - AVG Disabling AVG AVG problem with AutoIt scripts ... ? What to do to stop A.. Defrag AVG files AVG Free AntiVirus -some problems lately- anyone else? Avast vs. AVG and Zip files AVG 8.0 Problems Galore AVG Free Edition 8.0.175 Unable to install AVG free 8.0 Problem installing paid AVG 8.0 - ewido conflict AVG free command line Problems uninstalling AVG Free 7.5 stop AVG Gaelicum removal tool running on startup Network question with AVG 8.0 Quick Scan? AVG 8.0 and ZoneAlarm = Vista crash Lockergnome help - Antivirus Discussions - F-PROT F-Prot for DOS - what are sign2.def and fssign2.def differ.. F-Prot FP-DEF.ZIP now too big for 1.44M F-PROT Is F-Prot for DOS no longer supported? F-Prot Fisk Intl' F-Prot What is latest version of F-Prot for DOS free version? F-Prot for Dos not scanning all files F-Prot server down? F-Prot Antivirus ftp://ftp.f-prot updates taking forever to download F-PROT for Linux - Trying to check bootsector F-prot DOS run in Windows DOS BOX or real mode MS-DOS modifying memory usage of a program (F-Prot)? AdAware 1.06 conflict with F-Prot 3.16b Lockergnome help - Antivirus Discussions - Panda Problem with Panda mother-in-law's computer riddled pfdnnt program not found after uninstalling Panda IS unable to install Panda Panda 2007 - internet/lan problem Panda and PATH command problem with panda antivirus 2007 How about Panda PANDA FIREWALL ALLOW IP RANGE OF LAN Panda Titanium 2006 virus and anti spyware a scan schedule.. problems found with panda dont no how to get rid panda titanium antivirus plus antispyware 2006 renew license how to move panda businesSecure panda update script panda for linux free? Lockergnome help - Antivirus Discussions - Free Antivirus free antivirus for old notebook Freebie AV For Windows Home Server? Free Anti-Virus programs eEye Blink free anti-malware and firewall System files protected Has anyone tried the free Spyware Doctor Starter Edition -.. 4 windows XP installation ! Trend Micro 2008 compared to Avast 7.5 task bar pop-up spyware malware fix problem with the Resident Shield of AVG7.5 BugHunter Signature Update August 4th, 2007 - 10,953 signa.. Freeware Software BugHunter Update! 07.09.2007 BugHunter Signature Update 06.24.2007 free anti virus software? Lockergnome help - Antivirus Discussions - Others Bitdefender, .dbx files and gmail Google-Redirect virus? Zone Alarm Trial - Running Firewall only Bit Defender uninstall Unable To UnInstall TrendMicro's PC-Cillin?? G-Data Antivirus or NOD32? Trend Micro PC-Cillin Internet Security 2007 Issue RunScanner 0.9.5 released! Bit Defender Finds This Trend Micro Pc-cillin Trend PC-Cillin and Windows 98SE Upgrade? Trend Micro PC-cillin trendmicro internet security restore quarantines problem BitDefender on demand only Network Tools for Windows Lockergnome help - Trojans/Spyware Discussions - General Discussions System Security 2009 Google Hijack Virus I need help!! i think i have malware avg updates are "forbidden" Can't seem to remove uacinit.dll. Help please? spyware hi, i have a malware infection i think :-( nother hijacked google in firefox and IE Google Hijack- Unable to update anti-virus Search hijacked -- AVG Can't Update - Frequent crashes Plethora of problems from one stupid action. Spyware Doctor Offer Help for yet another search engine hijack? I've been hijacked... google, yahoo, etc. results redirected Momma told me not to get Hijacked.... Lockergnome help - Trojans/Spyware Discussions - Lavasoft Ad-Aware Ad-Aware crashes on Opera cookies - why? Adaware error whist scanning problem ad-aware & spybot spybot and addaware ADAWARE 2007 ADAWARE SE COMMAND LINE OPTIONS Ad-Aware Updates Adaware will not finish Adaware definitions "588 days old" ??? Does BitDefender interfere with Ad-Aware? Ad-Aware ref file problem Kaspersky and Ad Aware Pinging all the experts here -->Zone Alarm anti-spyware ju.. Updates: Latest Defs. Jun. 15th?! AdAware found regkey items...advice? Lockergnome help - Trojans/Spyware Discussions - Webroot Spy Sweeper Vietnampathfinder Travel Spy Sweeper v 6.0.2.39 stopping spysweeper spy sweeper under vista Spy Sweeper Interface Problem Allow specific ad sites in v5.5? Webroot Antivirus any good? XP Shutdown/Restart Problem after installing Spy Sweeper. Not Sure Spysweeper 5.3.2.2361 is Working Restart Problem (Spy Sweeper) webroot spysweeper How good is SpySweeper Antivirus extra module? spy sweeper 5.0 problems? Spy Sweeper: ma vi sembra possibile? SpySweeper dected Perfect Keylogger. Now what? Lockergnome help - Trojans/Spyware Discussions - Spybot S&D Trojan horse virus SHeur.BSLA Spybot-B I am SICK of w32.spybot.worm spybot search and destroy Spybot 1.4 & Win 95 k6ber.exe hacktool and msnsgrs.exe spybot TeaTimer Issues Spybot S&D Allow Change Problem SpywareBlaster and Spybot Search & Destroy. Spybot Search and Destroy Updates Folder Tea-Timer (Spybot) spybot question Hits with Spybot Spybot & The Bane of the '!!bad checksum!' Spybot Beeline: Go on daring adventures with a small bee! Guide the bee through the fields of honeycombs filling them with honey. Feel like an expert skillfully passing levels and catching bonuses for figuring out puzzles. Wind your way through the hive tunnels to find the exit, and smother hapless beekeepers by swarming with the rest of your hive to show the puny humans your queen is boss! Okay, maybe we were kidding about the beekeepers, but... [Click Here to Download] Administrivia © 1996-2008, Lockergnome LLC. ISSN: 1095-3965. ISIPP Accredited. All Rights Reserved. Web site hosted by the folks who bring us Lockergnome.net.

Swype SSD Video Camera Diet eBook How to Broadcast a Wireless Audio / Video Signal from PC to TV Seattle Sunshine How to Visualize CSS Font Properties What's the Best Hard Drive Enclosure to Buy? Will Code for Green: Make Money! How to Play Chess on Twitter Toledo Vader Should Parents Share a Kid's Life Online? Picnik More Headlines Preorder Microsoft Windows 7 up to 50% off + Free Shipping! Opera ? 10.00 rev 1606 Gets Many Fixes Hitler?s Stealth Fighter? Mythbuster Host Busted By iPhone Charges From AT&T Two Weeks for Windows 7 On the Cheap ? Will You Be Enticed to Buy? Michael Jackson - We Are The World; Rogers, Richie, Simon, et el Google vs Bing - Is There Really User Loyalty? Michael Jackson - Dangerous Unfortunately, Scott McNealy Was Absolutely Correct MSI Releases Military Class Graphics Cards Play More Formats in QuickTime The Life Cycle Of Your Social Networking Account WeatherBug Accuracy Win Over TWC - The Numbers Tell All Is Your Copy Of Windows Misbehaving? Michael Jackson-Billie Jean-30th Anniversary Special Today Is The Day To Pre-Order Windows 7 Remembering Michael Jackson So much For Groups of Three Internet Strategy Forum Summit Interview: Katherine Durham Internet Strategy Forum Summit Interview: Lisa Welchman Further Help Find Conference Mobile Blogs eBooks Buy Coupons Domains Games Sponsor Download Help Join MP3s Home

iDefense Security Advisory 06.26.09: HP Network Node Manager rping Stack Buffer Overflow Vulnerability

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

iDefense Security Advisory 06.26.09
http://labs.idefense.com/intelligence/vulnerabilities/
Jun 26, 2009

I. BACKGROUND

HP Network Node Manager (NNM) is an application suite that is used to
map out and manage network topography. NNM runs on a variety of
platforms, including Linux and multiple versions of Windows. For more
information, see the vendor's site at the following link.

http://www.openview.hp.com/products/nnm/index.html

II. DESCRIPTION

Remote exploitation of a stack based buffer overflow vulnerability in
Hewlett-Packard Development Co. LP (HP)'s Network Node Manager could
allow an attacker to execute arbitrary code with the privileges of the
affected service.

The vulnerability exists within the 'rping' application, which is
distributed with the Linux version of NNM. It is possible for a remote
attacker to launch the 'rping' application and trigger a stack based
buffer overflow.

III. ANALYSIS

Exploitation of this vulnerability results in the execution of arbitrary
code with the privileges of the affected service. On RedHat Enterprise
4, the application is started as the user 'bin'. 'rping' is not
compiled with compiler protections such as stack cookies or the -pie
flag, which makes exploitation less difficult.

IV. DETECTION

iDefense has confirmed the existence of this vulnerability in Network
Node Manager version 7.53 for Linux. Previous versions may also be
affected. The Windows version is not affected.

V. WORKAROUND

By default, the webappmon.exe CGI application does not require a user to
be authenticated. By changing the session.conf file and setting
UserLogin to ON, it is possible to require valid credentials in order
to run. The 'ovhtpasswd' application can then be used to add valid
credentials.

VI. VENDOR RESPONSE

Hewlett-Packard Development Co. LP (HP) has released a patch which
addresses this issue. Directly downloadable vendor updates for this
report are accessible via the iDefense Intelligence web portal
(https://ialert.idefense.com) and the iDefense Intelligence XML web
service. Information about non-directly downloadable vendor updates can
be found by clicking on the URLs shown.

http://support.openview.hp.com/selfsolve/patches

VII. CVE INFORMATION

The Common Vulnerabilities and Exposures (CVE) project has assigned the
name CVE-2009-1420 to this issue. This is a candidate for inclusion in
the CVE list (http://cve.mitre.org/), which standardizes names for
security problems.

VIII. DISCLOSURE TIMELINE

05/19/2008 - Initial Contact
07/10/2008 - Initial Vendor Reply
06/30/2008 - Vendor validated issue
06/30/2008 - Vendor requested PoC
07/10/2008 - PoC sent to vendor
06/09/2009 - Vendor Patched
06/25/2009 - Requested Status from Vendor
06/25/2009 - Vendor provides disclosure details
06/26/2009 - Coordinated Public Disclosure

IX. CREDIT

The discoverer of this vulnerability wishes to remain anonymous.

Get paid for vulnerability research
http://labs.idefense.com/methodology/vulnerability/vcp.php

Free tools, research and upcoming events
http://labs.idefense.com/

X. LEGAL NOTICES

Copyright © 2009 iDefense, Inc.

Permission is granted for the redistribution of this alert
electronically. It may not be edited in any way without the express
written consent of iDefense. If you wish to reprint the whole or any
part of this alert in any other medium other than electronically,
please e-mail customerservice@idefense.com for permission.

Disclaimer: The information in the advisory is believed to be accurate
at the time of publishing based on currently available information. Use
of the information constitutes acceptance for use in an AS IS condition.
There are no warranties with regard to this information. Neither the
author nor the publisher accepts any liability for any direct,
indirect, or consequential loss or damage arising from use of, or
reliance on, this information.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFKRSsxbjs6HoxIfBkRAk9jAKDfhbX3bEY0EbeYyb0NCrx2YwcE/gCgh1i/
T28FN2Pcovnv+qQWK0ABAl8=
=XIC1
-----END PGP SIGNATURE-----
_______________________________________________
To unsubscribe, go here:
http://www.idefense.com/mailman/listinfo/idlabs-advisories