February 11, 2000 - Four new risks were discovered: Paul Timmons
reported a DoS condition within BTT Software's SNMP Trap Watcher;
Nubuo Miwa reported two DoS conditions within True North Software's
Internet Anywhere mail server; James McDonald and Thomas Lopatic
reported a means to open unauthorized TCP ports on Checkpoint's
Firewall-1; and Robert van der Meulen/Emphyrio and Willem Pinckaers
reported a means to bypass complete password authentication on MySQL.

For complete details on any of these matters, please visit the URLs
listed below:

  * SNMP Trap Watcher DoS
    http://www.ntsecurity.net/go/load.asp?iD=/security/trap1.htm

  * Internet Anywhere DoS
    http://www.ntsecurity.net/go/load.asp?iD=/security/ia1.htm

  * Unauthorized Firewall-1 TCP Connections
    http://www.ntsecurity.net/go/load.asp?iD=/security/fw1-1.htm

  * Bypass Complete Password Checking on MySQL
    http://www.ntsecurity.net/go/load.asp?iD=/security/mysql1.htm


Thanks for subscribing to Security UPDATE.

Please tell your friends about this newsletter and alert list!

Sincerely,
The Security UPDATE Team
security@ntsecurity.net

=======================================================================
TO UNSUBSCRIBE from this alert list DO NOT REPLY, instead send e-mail
to listserv@listserv.ntsecurity.net with the words "unsubscribe
securityupdate" in the body of the message without the quotes.

TO SUBSCRIBE to this alert list, send e-mail to the same address listed
above with the words "subscribe securityupdate anonymous" in the body
of the message without the quotes.
=======================================================================
             Security UPDATE is powered by LISTSERV(R) software
                 http://www.lsoft.com/LISTSERV-powered.html
=======================================================================
Copyright (c) 2000 Duke Communications Intl. Inc. - ALL RIGHTS RESERVED
Forwarding this email is permitted, as long as the entire message body,
the mail header, and this notice are included.