[AusNOG] AusCERT Week in Review - Week Ending 01/08/2008 (AUSCERT#20073F686)

mdb at auscert.org.au mdb at auscert.org.au
Fri Aug 1 16:28:43 EST 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

AusCERT Week in Review
01 August 2008

AusCERT in the Media:
- ---------------------

Papers, Articles and other documents:
- -------------------------------------


Web Log Entries:
- ----------------
Title: Active Exploitation of... 
Date:  28 July 2008
URL:   http://www.auscert.org.au/9642


Alerts, Advisories and Updates:
- -------------------------------
Title: AA-2008.0165 -- [Linux] -- Vulnerability in Linux Kernel LDT Buffer
       size handling 
Date:  31 July 2008
URL:   http://www.auscert.org.au/9652

Title: AA-2008.0164 -- [Win] -- Grisoft AVG remote denial of service flaw 
Date:  30 July 2008
URL:   http://www.auscert.org.au/9648

Title: AA-2008.0160 -- [XEN][Virtualisation] -- Cross-site scripting
       vulnerability in XenServer 
Date:  29 July 2008
URL:   http://www.auscert.org.au/9603


External Security Bulletins:
- ----------------------------
Title: ESB-2008.0763 -- [Solaris] -- A Security Vulnerability in picld(1M) May
       Allow a Denial of Service to System Monitoring and System Services 
Date:  01 August 2008
OS:    Solaris 
URL:   http://www.auscert.org.au/9663

Title: ESB-2008.0762 -- [HP-UX] -- HP-UX Running System Administration Manager
       (SAM) Unintended Remote Access 
Date:  01 August 2008
OS:    HP-UX 
URL:   http://www.auscert.org.au/9662

Title: ESB-2008.0761 -- [OSX] -- Security Update 2008-005 
Date:  01 August 2008
OS:    Mac OS X 
URL:   http://www.auscert.org.au/9661

Title: ESB-2008.0760 -- [Debian] -- New libxslt packages fix arbitrary code
       execution 
Date:  01 August 2008
OS:    Debian GNU/Linux 
URL:   http://www.auscert.org.au/9660

Title: ESB-2008.0759 -- [Win][Linux][HP-UX][Solaris][AIX] -- Security
       Vulnerability in Sun Java System Web Server 7.0 plugin for Sun N1
       Service Provisioning System (SPS) 
Date:  01 August 2008
OS:    Solaris, Ubuntu, Debian GNU/Linux, Windows 2003, Windows 2000, Other
       Linux Variants, Windows XP, Server 2008, Red Hat Linux, HP-UX, AIX,
       Windows Vista 
URL:   http://www.auscert.org.au/9659

Title: ESB-2008.0758 -- [UNIX/Linux][RedHat] -- Moderate: libxslt security
       update 
Date:  01 August 2008
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
       HP-UX, AIX 
URL:   http://www.auscert.org.au/9658

Title: ESB-2008.0757 -- [RedHat] -- Critical: java-1.5.0-ibm security update 
Date:  01 August 2008
OS:    Red Hat Linux 
URL:   http://www.auscert.org.au/9657

Title: ESB-2008.0756 -- [UNIX/Linux][RedHat] -- Critical: RealPlayer security
       update 
Date:  01 August 2008
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
       HP-UX, AIX 
URL:   http://www.auscert.org.au/9656

Title: ESB-2008.0755 -- [UNIX/Linux][RedHat] -- Moderate: nfs-utils security
       update 
Date:  01 August 2008
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, HP-UX, AIX
URL:   http://www.auscert.org.au/9655

Title: ESB-2008.0754 -- [Debian] -- New dnsmasq packages fix cache poisoning 
Date:  01 August 2008
OS:    Debian GNU/Linux 
URL:   http://www.auscert.org.au/9654

Title: ESB-2008.0753 -- [UNIX/Linux][Debian] -- New newsx packages fix
       arbitrary code execution 
Date:  01 August 2008
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
       HP-UX, AIX 
URL:   http://www.auscert.org.au/9653

Title: ESB-2008.0752 -- [Win][UNIX/Linux] -- Drupal core - Session fixation 
Date:  31 July 2008
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
       Variants, Windows XP, Server 2008, Red Hat Linux, HP-UX, AIX, Windows
       Vista 
URL:   http://www.auscert.org.au/9651

Title: ESB-2008.0751 -- [Win][UNIX/Linux] -- phpMyAdmin security announcement
       PMASA-2008-6 
Date:  31 July 2008
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
       Variants, Windows XP, Server 2008, Red Hat Linux, HP-UX, AIX, Windows
       Vista 
URL:   http://www.auscert.org.au/9650

Title: ESB-2008.0750 -- [Win] -- Trend Micro OfficeScan ObjRemoveCtrl ActiveX
       control buffer overflow 
Date:  31 July 2008
OS:    Windows 2003, Windows 2000, Windows XP, Server 2008, Windows Vista 
URL:   http://www.auscert.org.au/9649

Title: ESB-2008.0749 -- [Win] -- Hewlett-Packard OVIS Probe Builder Arbitrary
       Process Termination Vulnerability 
Date:  30 July 2008
OS:    Windows 2003, Windows 2000, Windows XP, Server 2008, Windows Vista 
URL:   http://www.auscert.org.au/9647

Title: ESB-2008.0748 -- [Win][Linux][HP-UX][Solaris][AIX] -- Security
       vulnerability in WebLogic plug-in for Apache 
Date:  29 July 2008
OS:    Solaris, Windows 2003, Windows 2000, Other Linux Variants, Windows XP,
       Server 2008, HP-UX, AIX, Windows Vista 
URL:   http://www.auscert.org.au/9646

Title: ESB-2008.0747 -- [VMware ESX] -- Updated ESX packages address several
       security issues 
Date:  29 July 2008
OS:    Virtualisation 
URL:   http://www.auscert.org.au/9645

Title: ESB-2008.0746 -- [Win] -- HP OpenView Internet Services Running Probe
       Builder, Remote Denial of Service (DoS) 
Date:  29 July 2008
OS:    Windows 2003, Windows 2000, Windows XP, Server 2008, Windows Vista 
URL:   http://www.auscert.org.au/9644

Title: ESB-2008.0745 -- [Appliance] -- NetApp Data ONTAP contains multiple
       vulnerabilities 
Date:  29 July 2008
URL:   http://www.auscert.org.au/9643

Title: ESB-2008.0744 -- [Win] -- RealNetworks RealPlayer rmoc3260 ActiveX
       Control Memory Corruption Vulnerability 
Date:  28 July 2008
OS:    Windows 2003, Windows 2000, Windows XP, Server 2008, Windows Vista 
URL:   http://www.auscert.org.au/9640

Title: ESB-2008.0743 -- [Debian] -- New icedove packages fix several
       vulnerabilities 
Date:  28 July 2008
OS:    Debian GNU/Linux 
URL:   http://www.auscert.org.au/9639

Title: ESB-2008.0742 -- [Debian] -- New python2.5 packages fix several
       vulnerabilities 
Date:  28 July 2008
OS:    Debian GNU/Linux 
URL:   http://www.auscert.org.au/9638

Title: ESB-2008.0741 -- [Win][UNIX/Linux][Debian] -- New python-dns packages
       fix DNS response spoofing 
Date:  28 July 2008
OS:    Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
       IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
       Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
       Windows Vista 
URL:   http://www.auscert.org.au/9637

Title: ESB-2008.0740 -- [Debian] -- New ruby1.9 packages fix several
       vulnerabilities 
Date:  28 July 2008
OS:    Debian GNU/Linux 
URL:   http://www.auscert.org.au/9636

Title: ESB-2008.0739 -- [Linux][Debian] -- New refpolicy packages fix
       incompatible policy 
Date:  28 July 2008
OS:    Ubuntu, Debian GNU/Linux, Other Linux Variants, Red Hat Linux 
URL:   http://www.auscert.org.au/9635

Title: ESB-2008.0731 -- [Debian] -- new clamav packages fix denial of service 
Date:  28 July 2008
OS:    Debian GNU/Linux 
URL:   http://www.auscert.org.au/9626

Title: ESB-2008.0722 -- [Win] -- Multiple vulnerabilities in EMC Dantz
       Retrospect 7 Backup Client 
Date:  28 July 2008
OS:    Windows Vista, Server 2008, Windows XP, Windows 2000, Windows 2003 
URL:   http://www.auscert.org.au/9614

Title: ESB-2008.0716 -- [Solaris] -- Security Vulnerability in the System
       Management Agent (SMA) SNMP daemon (snmpd(1M)) 
Date:  01 August 2008
OS:    Solaris 
URL:   http://www.auscert.org.au/9606

Title: ESB-2008.0684 -- [Solaris] -- Solaris BIND - Security Vulnerability in
       the DNS Protocol may lead to DNS Cache Poisoning 
Date:  30 July 2008
OS:    Solaris 
URL:   http://www.auscert.org.au/9560

Title: ESB-2008.0671 -- [Cisco] -- Multiple Cisco Products Vulnerable to DNS
       Cache Poisoning Attacks 
Date:  30 July 2008
OS:    Cisco Products 
URL:   http://www.auscert.org.au/9547

Title: ESB-2008.0622 -- [Solaris] -- SNMPv3 Authentication Bypass
       Vulnerability in snmpd 
Date:  01 August 2008
OS:    Solaris 
URL:   http://www.auscert.org.au/9460



===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert at auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967

iQCVAwUBSJKtGyh9+71yA2DNAQOEqQP/V2vCKVEyr6wFaRwpLQJy0gNkBJRDOnpk
8qYjdM+991DZYZsB6sNQiv3zq1PPJukdshX9rYSrEmrBQATnQguC1j7RCkq2e3+x
wiyWxCBRA/ZqgkbGdRloj24VIFZngu7W79BLeKKcp6m3rWC9pwua+0kIX3I2axbj
y3T5Bvy65hQ=
=KsY/
-----END PGP SIGNATURE-----



More information about the AusNOG mailing list