[AusNOG] AusCERT Week in Review - Week Ending 16/11/2007 (AUSCERT#20073F686)
Macleonard Starkey
macleonard at auscert.org.au
Fri Nov 16 21:51:53 EST 2007
G'day AusNOG,
Please find below the AusCERT week in review.
As always, we'd appreciate your feedback:
* As Australia's network operators, what do you want to see?
* Is AusCERT providing useful information for your operation?
And as always, have a great weekend.
MacLeonard
--
MacLeonard Starkey, Security Analyst | Hotline: +61 7 3365 4417
AusCERT | Fax: +61 7 3365 7031
Australia's National CERT | WWW: www.auscert.org.au
Brisbane QLD Australia | Email: auscert at auscert.org.au
---
AusCERT Week in Review
16 November 2007
Web Log Entries:
- ----------------
Title: Banner Ad Malware
Date: 13 November 2007
URL: http://www.auscert.org.au/8360
Title: Drive-by malware on the increase
Date: 12 November 2007
URL: http://www.auscert.org.au/8351
Alerts, Advisories and Updates:
- -------------------------------
Title: AL-2007.0120 -- [UNIX/Linux] -- Multiple Vulnerabilities in Samba
Date: 16 November 2007
URL: http://www.auscert.org.au/8369
Title: AA-2007.0102 -- [Win][UNIX/Linux] -- PHP 5.2.5 released correcting
several vulnerabilities
Date: 16 November 2007
URL: http://www.auscert.org.au/8381
Title: AA-2007.0103 -- [Win][UNIX/Linux] -- Thunderbird 2.0.0.9 has been
released fixing arbitrary code execution
Date: 16 November 2007
URL: http://www.auscert.org.au/8385
Title: AL-2007.0118 -- [Win] -- URL Handling Vulnerability in Windows XP and
Windows Server 2003 with Windows Internet Explorer 7 Could Allow Remote
Code Execution
Date: 14 November 2007
URL: http://www.auscert.org.au/8354
Title: AL-2007.0119 -- [Win] -- Microsoft Security Bulletin MS07-062 -
Vulnerability in DNS Could Allow Spoofing
Date: 14 November 2007
URL: http://www.auscert.org.au/8355
External Security Bulletins:
- ----------------------------
Title: ESB-2006.0944 -- [Solaris] -- Security Vulnerability With RSA
Signatures Affects Solaris WAN Boot
Date: 13 November 2007
OS: Solaris
URL: http://www.auscert.org.au/7144
Title: ESB-2007.0933 -- [Ubuntu] -- VMWare vulnerabilities
Date: 16 November 2007
OS: Ubuntu
URL: http://www.auscert.org.au/8386
Title: ESB-2007.0932 -- [Solaris] -- A Security Vulnerability in unzip(1L) May
Set Unintended Permissions on Extracted Files
Date: 16 November 2007
OS: Solaris
URL: http://www.auscert.org.au/8384
Title: ESB-2007.0931 -- [UNIX/Linux][RedHat] -- Moderate: net-snmp security
update
Date: 16 November 2007
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
HP-UX, AIX
URL: http://www.auscert.org.au/8383
Title: ESB-2007.0930 -- [RedHat] -- Moderate: openldap security and
enhancement update
Date: 16 November 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/8382
Title: ESB-2007.0929 -- [RedHat] -- Moderate: openssl security and bug fix
update
Date: 16 November 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/8380
Title: ESB-2007.0928 -- [RedHat] -- Moderate: util-linux security update
Date: 16 November 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/8379
Title: ESB-2007.0927 -- [RedHat] -- Low: mailman security and bug fix update
Date: 16 November 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/8378
Title: ESB-2007.0926 -- [RedHat] -- Moderate: httpd security, bug fix, and
enhancement update
Date: 16 November 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/8377
Title: ESB-2007.0925 -- [RedHat] -- Moderate: pam security, bug fix, and
enhancement update
Date: 16 November 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/8376
Title: ESB-2007.0924 -- [RedHat] -- Low: wireshark security and bug fix update
Date: 16 November 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/8375
Title: ESB-2007.0923 -- [RedHat] -- Moderate: openssh security and bug fix
update
Date: 16 November 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/8374
Title: ESB-2007.0922 -- [UNIX/Linux][RedHat] -- Low: xterm security update
Date: 16 November 2007
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
HP-UX, AIX
URL: http://www.auscert.org.au/8373
Title: ESB-2007.0921 -- [RedHat] -- Moderate: tcpdump security and bug fix
update
Date: 16 November 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/8372
Title: ESB-2007.0920 -- [RedHat] -- Critical: samba security update
Date: 16 November 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/8371
Title: ESB-2007.0919 -- [HP-UX] -- HP-UX Running Java JRE and JDK, Remote
Unauthorized Access
Date: 16 November 2007
OS: HP-UX
URL: http://www.auscert.org.au/8370
Title: ESB-2007.0918 -- [OSX] -- Mac OS X v10.5.1 Update
Date: 16 November 2007
OS: Mac OS X
URL: http://www.auscert.org.au/8368
Title: ESB-2007.0917 -- [Ubuntu] -- poppler vulnerabilities
Date: 15 November 2007
OS: Ubuntu
URL: http://www.auscert.org.au/8367
Title: ESB-2007.0916 -- [Ubuntu] -- flac vulnerability
Date: 15 November 2007
OS: Ubuntu
URL: http://www.auscert.org.au/8366
Title: ESB-2007.0915 -- [Win] -- Safari 3 Beta Update 3.0.4 (Windows)
Date: 15 November 2007
OS: Windows 2003, Windows XP, Windows Vista
URL: http://www.auscert.org.au/8364
Title: ESB-2007.0914 -- [UNIX/Linux][Ubuntu] -- Emacs vulnerability
Date: 15 November 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X, HP-UX,
AIX
URL: http://www.auscert.org.au/8363
Title: ESB-2007.0913 -- [OSX] -- Mac OS X v10.4.11 and Security Update
2007-008
Date: 15 November 2007
URL: http://www.auscert.org.au/8362
Title: ESB-2007.0912 -- [HP-UX][Solaris] -- HP OpenView Operations (OVO)
Running on HP-UX and Solaris, Remote Unauthorized Access, Denial of
Service (DoS)
Date: 15 November 2007
OS: Solaris, HP-UX
URL: http://www.auscert.org.au/8361
Title: ESB-2007.0911 -- [Win] -- Update available for ColdFusion MX 7 and
ColdFusion 8 potential session hijacking issue
Date: 14 November 2007
OS: Windows 2003, Windows 2000, Windows XP, Windows Vista
URL: http://www.auscert.org.au/8359
Title: ESB-2007.0910 -- [Win][UNIX/Linux][RedHat] -- Moderate: ruby security
update
Date: 14 November 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux Variants,
Windows XP, Red Hat Linux, Mac OS X, HP-UX, AIX, Windows Vista
URL: http://www.auscert.org.au/8358
Title: ESB-2007.0909 -- [Win] -- Novell NetWare Client Local Privilege
Escalation Vulnerability
Date: 14 November 2007
OS: Windows 2003, Windows XP, Windows Vista
URL: http://www.auscert.org.au/8357
Title: ESB-2007.0908 -- [Win][UNIX/Linux] -- Mozilla-based browsers jar: URI
cross-site scripting vulnerability
Date: 14 November 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux Variants,
Windows XP, Red Hat Linux, Windows NT 4, Mac OS X, HP-UX, AIX, Windows
Vista
URL: http://www.auscert.org.au/8356
Title: ESB-2007.0907 -- [UNIX/Linux][RedHat] -- Important: kdegraphics
security update
Date: 13 November 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, HP-UX, AIX
URL: http://www.auscert.org.au/8353
Title: ESB-2007.0906 -- [Win] -- WinPcap NPF.SYS bpf_filter_init Arbitrary
Array Indexing Vulnerability
Date: 13 November 2007
OS: Windows 2003, Windows 2000, Windows XP, Windows Vista
URL: http://www.auscert.org.au/8352
Title: ESB-2007.0905 -- [Appliance] -- iPhone v1.1.2 and iPod Touch v1.1.2
Date: 13 November 2007
URL: http://www.auscert.org.au/8350
Title: ESB-2007.0904 -- [UNIX/Linux][RedHat] -- Important: pcre security
update
Date: 16 November 2007
OS: AIX, HP-UX, Red Hat Linux, Other Linux Variants, FreeBSD, OpenBSD,
IRIX, Other BSD Variants, Debian GNU/Linux, HP Tru64 UNIX, Solaris
URL: http://www.auscert.org.au/8349
Title: ESB-2007.0903 -- [HP-UX] -- HP-UX Running HP Secure Shell, Remotely
Gain Extended Privileges
Date: 13 November 2007
OS: HP-UX
URL: http://www.auscert.org.au/8348
Title: ESB-2007.0902 -- [Win][UNIX/Linux][Debian] -- New horde3 packages fix
several vulnerabilities
Date: 12 November 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux Variants, Red
Hat Linux, HP-UX, AIX
URL: http://www.auscert.org.au/8347
Title: ESB-2007.0901 -- [Win][UNIX/Linux][Debian] -- New zope-cmfplone
packages fix arbitrary code execution
Date: 12 November 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux Variants, Red
Hat Linux, Mac OS X, HP-UX, AIX
URL: http://www.auscert.org.au/8346
Title: ESB-2007.0900 -- [UNIX/Linux] -- IBM Informix Dynamic Server DBLANG
Directory Traversal Vulnerability
Date: 12 November 2007
OS: Solaris, Debian GNU/Linux, Other Linux Variants, Red Hat Linux, HP-UX,
AIX
URL: http://www.auscert.org.au/8345
Title: ESB-2007.0899 -- [Win] -- AOL AmpX ActiveX Control Multiple Buffer
Overflow Vulnerabilities
Date: 12 November 2007
OS: Windows 98/98SE, Windows 2003, Windows 2000, Windows XP, Windows NT 4,
Windows Vista, Windows ME
URL: http://www.auscert.org.au/8344
Title: ESB-2007.0898 -- [Solaris] -- Multiple Security Vulnerabilities in the
JavaScript Engine in Mozilla 1.7 for Solaris 8, 9 and 10
Date: 12 November 2007
OS: Solaris
URL: http://www.auscert.org.au/8343
Title: ESB-2006.0897 -- [Solaris] -- Security Vulnerability With RSA
Signatures Affects OpenSSL Shipped With Solaris
Date: 14 November 2007
OS: Solaris
URL: http://www.auscert.org.au/7060
Title: ESB-2007.0790 -- [Solaris] -- Multiple Security Vulnerabilities in the
Solaris Tag Image File Format Library libtiff(3)
Date: 14 November 2007
OS: Solaris
URL: http://www.auscert.org.au/8204
Title: ESB-2007.0778 -- [Solaris] -- Multiple Security Issues Within The X
Font Server (xfs(1)) QueryXBitmaps and QueryXExtents Protocol Handlers
Date: 16 November 2007
OS: Solaris
URL: http://www.auscert.org.au/8192
Title: ESB-2007.0618 -- [Win][OSX] -- Vulnerability in Virtual PC and Virtual
Server Could Allow Elevation of Privilege (937986)
Date: 15 November 2007
OS: Windows ME, Windows Vista, Mac OS X, Windows NT 4, Windows XP, Windows
2000, Windows 2003, Windows 98/98SE
URL: http://www.auscert.org.au/7976
Title: ESB-2007.0473 -- [Solaris] -- Security Vulnerabilities in OpenSSL May
Lead to a Denial of Service (DoS) to Applications or Execution of
Arbitrary Code With Elevated Privileges
Date: 14 November 2007
OS: Solaris
URL: http://www.auscert.org.au/7782
Title: ESB-2007.0271 -- [Solaris] -- Security Vulnerabilities in OpenSSL May
Lead to a Denial of Service (DoS) to Applications
Date: 14 November 2007
OS: Solaris
URL: http://www.auscert.org.au/7524
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert at auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
More information about the AusNOG
mailing list