[AusNOG] AusCERT Week in Review - Week Ending 20/07/2007 (fwd)
Matthew Aburn
maburn at auscert.org.au
Fri Jul 20 17:39:14 EST 2007
AusCERT Week in Review
20 July 2007
AusCERT in the Media:
-----------------------
Sophos names and shames the top spam relaying countries
Computerworld Australia, Australia
Jul 18, 2007
http://www.computerworld.com.au/index.php/id;1529124582;fp;2;fpid;1
UPDATE - Australian banks not hot on .bank
Webwereld, Netherlands
Jul 13, 2007
http://www.webwereld.nl/articles/47213/update---australian-banks-not-hot-on--bank-domain.html
Java flaw poses widespread security threat
ZDNet UK, UK
Jul 13, 2007
http://news.zdnet.co.uk/security/0,1000000189,39288009,00.htm
Papers, Articles and other documents:
---------------------------------------
Alerts, Advisories and Updates:
---------------------------------
Title: AU-2007.0018 -- AusCERT Update - [Win] - Multiple vendors may be
affected by Windows URI handler vulnerability
Date: 20 July 2007
URL: http://www.auscert.org.au/7879
Title: AL-2007.0087 -- [Win][UNIX/Linux] -- Oracle Critical Patch Update - 45
vulnerabilities in Oracle and Peoplesoft products
Date: 19 July 2007
URL: http://www.auscert.org.au/7872
Title: AL-2007.0086 -- [Win] -- Computer Associates Alert Notification Server
Multiple Buffer Overflow Vulnerabilities
Date: 18 July 2007
URL: http://www.auscert.org.au/7861
Title: AA-2007.0059 -- [UNIX/Linux] -- Asterisk vulnerabilities allow denial
of service or remote compromise
Date: 18 July 2007
URL: http://www.auscert.org.au/7863
Title: AL-2007.0085 -- [Win][UNIX/Linux][Mac] -- Multiple vulnerabilities in
Symantec products
Date: 17 July 2007
URL: http://www.auscert.org.au/7851
Title: AA-2007.0058 -- [Win][Netware][UNIX/Linux] -- Novell eDirectory 8.7.3
SP9 FTF1 release fixes several vulnerabilities
Date: 16 July 2007
URL: http://www.auscert.org.au/7853
Title: AA-2007.0057 -- [Linux] -- Novell KDC - three Kerberos vulnerabilities
allow remote compromise
Date: 16 July 2007
URL: http://www.auscert.org.au/7852
External Security Bulletins:
------------------------------
Title: ESB-2007.0548 -- [Win] -- Ipswitch IMail Server 2006 IMAP Search
Command Buffer Overflow Vulnerability
Date: 20 July 2007
OS: Windows 2003, Windows 2000
URL: http://www.auscert.org.au/7878
Title: ESB-2007.0547 -- [Win] -- Microsoft DirectX RLE Compressed Targa Image
File Heap Overflow
Date: 20 July 2007
OS: Windows Vista, Windows 2003, Windows 2000, Windows NT 4, Windows ME,
Windows XP, Windows 98/98SE
URL: http://www.auscert.org.au/7877
Title: ESB-2007.0546 -- [Win][UNIX/Linux] -- Multiple RSA products affected by
Progress Server heap overflow vulnerability
Date: 20 July 2007
OS: HP Tru64 UNIX, Solaris, IRIX, HP-UX, Debian GNU/Linux, Other Linux
Variants, Red Hat Linux, AIX, Windows 2003, Windows 2000, Windows NT 4,
Windows XP
URL: http://www.auscert.org.au/7876
Title: ESB-2007.0545 -- [Win][UNIX/Linux] -- Opera Software Opera Web Browser
BitTorrent Dangling Pointer Vulnerability
Date: 20 July 2007
OS: Solaris, OpenBSD, Other BSD Variants, FreeBSD, Debian GNU/Linux, Other
Linux Variants, Red Hat Linux, Windows Vista, Windows 2003, Windows
2000, Windows NT 4, Windows ME, Windows XP, Windows 98/98SE, Mac OS X
URL: http://www.auscert.org.au/7875
Title: ESB-2007.0544 -- [Win][UNIX/Linux] -- Vulnerability in Java Runtime
Environment May Allow an Untrusted Applet to Circumvent Network Access
Restrictions
Date: 20 July 2007
OS: Solaris, FreeBSD, Debian GNU/Linux, Other Linux Variants, Red Hat
Linux, Windows Vista, Windows 2003, Windows 2000, Windows ME, Windows
XP, Windows 98/98SE, Mac OS X
URL: http://www.auscert.org.au/7874
Title: ESB-2007.0543 -- [Cisco] -- Denial of Service Vulnerability in Cisco
Wide Area Application Services (WAAS) Software
Date: 19 July 2007
OS: Cisco Products
URL: http://www.auscert.org.au/7873
Title: ESB-2007.0542 -- [Win][UNIX/Linux][RedHat] -- Critical: seamonkey
security update
Date: 19 July 2007
OS: Solaris, HP Tru64 UNIX, Windows 98/98SE, Debian GNU/Linux, Other BSD
Variants, IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other
Linux Variants, Windows XP, Red Hat Linux, Windows NT 4, Mac OS X,
HP-UX, AIX, Windows Vista, Windows ME
URL: http://www.auscert.org.au/7871
Title: ESB-2007.0541 -- [RedHat] -- Moderate: thunderbird security update
Date: 19 July 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/7870
Title: ESB-2007.0540 -- [RedHat] -- Critical: firefox security update
Date: 19 July 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/7869
Title: ESB-2007.0539 -- [Debian] -- New gimp packages fix arbitrary code
execution
Date: 19 July 2007
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/7868
Title: ESB-2007.0538 -- [UNIX/Linux][Debian] -- New curl and libcurl packages
fix certificate handling
Date: 19 July 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X, HP-UX,
AIX
URL: http://www.auscert.org.au/7867
Title: ESB-2007.0537 -- [Win] -- Trillian Instant Messenger client fails to
properly handle malformed URIs
Date: 20 July 2007
OS: Windows Vista, Windows 2003, Windows 2000, Windows NT 4, Windows ME,
Windows XP, Windows 98/98SE
URL: http://www.auscert.org.au/7862
Title: ESB-2007.0536 -- [Win][UNIX/Linux] -- Mozilla Updates for Multiple
Vulnerabilities in Firefox and Thunderbird
Date: 19 July 2007
OS: HP Tru64 UNIX, Solaris, IRIX, OpenBSD, Other BSD Variants, FreeBSD,
HP-UX, Debian GNU/Linux, Other Linux Variants, Red Hat Linux, AIX,
Windows Vista, Windows 2003, Windows 2000, Windows NT 4, Windows ME,
Windows XP, Windows 98/98SE, Mac OS X
URL: http://www.auscert.org.au/7866
Title: ESB-2007.0535 -- [Win][Linux] -- Cisco Unified Communications Manager
and Presence Server Unauthorized Access Vulnerabilities
Date: 18 July 2007
OS: Debian GNU/Linux, Windows 2003, Windows 2000, Other Linux Variants,
Windows XP, Red Hat Linux, Windows Vista
URL: http://www.auscert.org.au/7860
Title: ESB-2007.0534 -- [Win] -- Grisoft AVG Anti-Virus local privilege
exploit
Date: 18 July 2007
OS: Windows 2003, Windows 2000, Windows XP, Windows NT 4, Windows Vista
URL: http://www.auscert.org.au/7859
Title: ESB-2007.0533 -- [Win][UNIX/Linux][Solaris][AIX][OSX] -- IBM Tivoli
Provisioning Manager for OS Deployment TFTP Blocksize DoS Vulnerability
Date: 18 July 2007
OS: Solaris, HP Tru64 UNIX, Windows 98/98SE, Debian GNU/Linux, Other BSD
Variants, IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other
Linux Variants, Windows XP, Red Hat Linux, Windows NT 4, Mac OS X,
HP-UX, AIX, Windows Vista, Windows ME
URL: http://www.auscert.org.au/7858
Title: ESB-2007.0532 -- [RedHat] -- Moderate: tomcat security update
Date: 18 July 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/7857
Title: ESB-2007.0531 -- [Win] -- Multiple vulnerabilities in McAfee software
Date: 17 July 2007
OS: Windows 98/98SE, Windows 2003, Windows 2000, Windows XP, Windows NT 4,
Windows Vista, Windows ME
URL: http://www.auscert.org.au/7856
Title: ESB-2007.0530 -- [RedHat] -- HP ServiceGuard for Linux, Local
Unauthorized Access, Increase in Privilege
Date: 17 July 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/7855
Title: ESB-2007.0529 -- [OpenBSD] -- Erratum 009: heap overflow vulnerability
in file(1)
Date: 16 July 2007
OS: OpenBSD
URL: http://www.auscert.org.au/7854
Title: ESB-2007.0528 -- [RedHat] -- Critical: flash-plugin security update
Date: 13 July 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/7850
Title: ESB-2007.0527 -- [Win][UNIX/Linux] -- MySQL Community Server 5.0.45
released
Date: 18 July 2007
OS: Windows Vista, AIX, HP-UX, Mac OS X, Red Hat Linux, Windows XP, Other
Linux Variants, FreeBSD, Windows 2000, OpenBSD, Windows 2003, IRIX,
Other BSD Variants, Debian GNU/Linux, HP Tru64 UNIX, Solaris
URL: http://www.auscert.org.au/7849
Title: ESB-2007.0526 -- [Win][UNIX/Linux] -- Moderate: perl-Net-DNS security
update
Date: 13 July 2007
OS: Solaris, HP Tru64 UNIX, Windows 98/98SE, Debian GNU/Linux, Other BSD
Variants, IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other
Linux Variants, Windows XP, Red Hat Linux, Windows NT 4, Mac OS X,
HP-UX, AIX, Windows Vista, Windows ME
URL: http://www.auscert.org.au/7848
Title: ESB-2007.0525 -- [RedHat] -- Moderate: xorg-x11-xfs security update
Date: 13 July 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/7847
Title: ESB-2007.0524 -- [UNIX/Linux][FreeBSD] -- Errors handling corrupt tar
files in libarchive(3)
Date: 13 July 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X, HP-UX,
AIX
URL: http://www.auscert.org.au/7846
Title: ESB-2007.0522 -- [Win][UNIX/Linux] -- Security Vulnerability in Java
Web Start URL Parsing Code May Allow Untrusted Applications to Elevate
Privileges
Date: 13 July 2007
OS: Windows Vista, AIX, HP-UX, Red Hat Linux, Windows XP, Other Linux
Variants, FreeBSD, Windows 2000, OpenBSD, Windows 2003, IRIX, Other BSD
Variants, Debian GNU/Linux, HP Tru64 UNIX, Solaris
URL: http://www.auscert.org.au/7844
Title: ESB-2007.0520 -- [Win] -- Symantec AntiVirus symtdi.sys Local Privilege
Escalation Vulnerability
Date: 17 July 2007
OS: Windows Vista, Windows XP, Windows 2000, Windows 2003
URL: http://www.auscert.org.au/7842
Title: ESB-2007.0512 -- [Win][Linux] -- Cisco Unified Communications Manager
Overflow Vulnerabilities
Date: 17 July 2007
OS: Windows ME, Windows Vista, Windows NT 4, Red Hat Linux, Cisco Products,
Windows XP, Other Linux Variants, Windows 2000, Windows 2003, Debian
GNU/Linux, Windows 98/98SE
URL: http://www.auscert.org.au/7834
Title: ESB-2007.0504 -- [Win] -- MS07-036 - Vulnerabilities in Microsoft Excel
Could Allow Remote Code Execution
Date: 17 July 2007
OS: Mac OS X, Windows NT 4, Windows XP, Windows 2000, Windows 2003, Windows
98/98SE, Windows Vista, Windows ME
URL: http://www.auscert.org.au/7824
Title: ESB-2007.0503 -- [AIX] -- A buffer overflow vulnerability exists in
libodm.
Date: 17 July 2007
OS: AIX
URL: http://www.auscert.org.au/7823
Title: ESB-2007.0480 -- [Solaris] -- Security Vulnerability in the Kerberos
Administration Daemon (kadmind(1M)) May Lead to Arbitrary Code
Execution
Date: 20 July 2007
OS: Solaris
URL: http://www.auscert.org.au/7789
Title: ESB-2007.0468 -- [Win][UNIX/Linux][RedHat] -- Moderate: apache security
update
Date: 16 July 2007
OS: Windows Vista, AIX, HP-UX, Mac OS X, Windows NT 4, Red Hat Linux,
Windows XP, Other Linux Variants, FreeBSD, Windows 2000, OpenBSD,
Windows 2003, IRIX, Other BSD Variants, Debian GNU/Linux, HP Tru64
UNIX, Solaris
URL: http://www.auscert.org.au/7776
Title: ESB-2007.0400 -- [UNIX/Linux][Debian] -- New freetype packages fix
integer overflow
Date: 19 July 2007
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/7694
Title: ESB-2007.0270 -- [Solaris] -- Security Vulnerability in libX11 for
Solaris
Date: 13 July 2007
OS: Solaris
URL: http://www.auscert.org.au/7523
Title: ESB-2007.0207 -- [Win][Linux][HP-UX][Solaris] -- Sun advisory for
security vulnerabilities in the NSS May Affect SSL Clients and SSL
Servers
Date: 16 July 2007
OS: HP-UX, Red Hat Linux, Windows XP, Other Linux Variants, Windows 2000,
Windows 2003, Debian GNU/Linux, Solaris
URL: http://www.auscert.org.au/7437
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert at auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
More information about the AusNOG
mailing list