[AusNOG] AusCERT Week in Review - Week Ending 15/02/2008 (AUSCERT#20073F686)
Richard Billington
richard at auscert.org.au
Fri Feb 15 17:28:45 EST 2008
AusCERT Week in Review
15 February 2008
AusCERT in the Media:
- - ---------------------
Putting your life online
Ninemsn, Australia
Feb 11, 2008
http://news.ninemsn.com.au/article.aspx?id=372675
Alerts, Advisories and Updates:
- - -------------------------------
Title: AU-2008.0003 -- AusCERT Update - [Win] - Novell Client NWSPOOL.DLL
buffer overflow vulnerability
Date: 15 February 2008
URL: http://www.auscert.org.au/8808
Title: AA-2008.0044 -- [Win][UNIX/Linux] -- Mambo and Joomla components - SQL
injection
Date: 15 February 2008
URL: http://www.auscert.org.au/8810
Title: AL-2008.0023 -- [Win] -- QuickTime 7.4.1 has multiple remote buffer
overflow vulnerabilities
Date: 15 February 2008
URL: http://www.auscert.org.au/8817
Title: AA-2008.0022 -- [Win][UNIX/Linux] -- Multiple vulnerabilities in IBM
WebSphere Application Server 6.0.x
Date: 14 February 2008
URL: http://www.auscert.org.au/8707
Title: AA-2008.0027 -- [Win][UNIX/Linux] -- Multiple SQL injection
vulnerabilities in Wordpress plugins
Date: 13 February 2008
URL: http://www.auscert.org.au/8730
Title: AA-2008.0032 -- [Win][UNIX/Linux] -- Mambo and Joomla components - SQL
injection
Date: 13 February 2008
URL: http://www.auscert.org.au/8738
Title: AU-2008.0002 -- AusCERT Update - [Win][UNIX/Linux] - Adobe Reader -
Multiple Vulnerabilities
Date: 13 February 2008
URL: http://www.auscert.org.au/8780
Title: AA-2008.0038 -- [UNIX/Linux] -- Webmin cross site scripting
vulnerabilities
Date: 13 February 2008
URL: http://www.auscert.org.au/8784
Title: AL-2008.0017 -- [Win] -- MS08-007 - Critical - Vulnerability in WebDAV
Mini-Redirector Could Allow Remote Code Execution
Date: 13 February 2008
URL: http://www.auscert.org.au/8791
Title: AL-2008.0018 -- [Win][OSX] -- MS08-008 - Critical - Vulnerability in
OLE Automation Could Allow Remote Code Execution
Date: 13 February 2008
URL: http://www.auscert.org.au/8792
Title: AL-2008.0019 -- [Win] -- MS08-009 - Critical - Vulnerability in
Microsoft Word Could Allow Remote Code Execution
Date: 13 February 2008
URL: http://www.auscert.org.au/8793
Title: AL-2008.0020 -- [Win] -- MS08-010 - Critical - Cumulative Security
Update for Internet Explorer
Date: 13 February 2008
URL: http://www.auscert.org.au/8794
Title: AL-2008.0021 -- [Win] -- MS08-012 - Critical - Vulnerabilities in
Microsoft Office Publisher Could Allow Remote Code Execution
Date: 13 February 2008
URL: http://www.auscert.org.au/8795
Title: AL-2008.0022 -- [Win][OSX] -- MS08-013 - Critical - Vulnerability in
Microsoft Office Could Allow Remote Code Execution
Date: 13 February 2008
URL: http://www.auscert.org.au/8796
Title: AA-2008.0045 -- [UNIX/Linux] -- New Cacti release has multiple
vulnerability fixes
Date: 13 February 2008
URL: http://www.auscert.org.au/8812
Title: AL-2008.0015 -- [OSX] -- Mac OS X v10.5.2 and Security Update 2008-001
Date: 12 February 2008
URL: http://www.auscert.org.au/8782
Title: AL-2008.0016 -- [Win][OSX] -- Microsoft February security bulletins
pre-release announcement
Date: 12 February 2008
URL: http://www.auscert.org.au/8783
Title: AA-2008.0039 -- [Win][UNIX/Linux] -- Firefox 2.0.0.12 is vulnerable to
an information disclosure vulnerability
Date: 12 February 2008
URL: http://www.auscert.org.au/8785
Title: AA-2008.0040 -- [Win] -- Multiple SafeNet products are vulnerable to a
privilege escalation vulnerability
Date: 12 February 2008
URL: http://www.auscert.org.au/8786
Title: AA-2008.0041 -- [Appliance] -- Multiple vulnerabilities in f5 BIP-IP
products
Date: 12 February 2008
URL: http://www.auscert.org.au/8787
Title: AA-2008.0042 -- [Win] -- Symantec Backup Exec System Recovery Manager
is vulnerable to a remote code execution vulnerability
Date: 12 February 2008
URL: http://www.auscert.org.au/8788
Title: AA-2008.0043 -- [Win] -- Check Point VPN-1 SecureClient and Check Point
VPN-1 SecuRemote are vulnerable to an information disclosure
vulnerability
Date: 12 February 2008
URL: http://www.auscert.org.au/8789
Title: AA-2008.0018 -- [Win][UNIX/Linux] -- Sun has released Java SE 6 update
4
Date: 11 February 2008
URL: http://www.auscert.org.au/8697
Title: AA-2008.0035 -- [Win][UNIX/Linux] -- WordPress prior to version 2.3.3
allow other users posts to be edited
Date: 11 February 2008
URL: http://www.auscert.org.au/8759
Title: AA-2008.0037 -- [OpenBSD] -- Multiple vulnerabilities exists in OpenBSD
X.Org X server
Date: 11 February 2008
URL: http://www.auscert.org.au/8778
External Security Bulletins:
- - ----------------------------
Title: ESB-2007.0737 -- [Win][Linux][HP-UX][Solaris] -- Installation of Sun
Java System Access Manager 7.1 on Sun Java System Application Server
9.1 or 8.x May Compromise Application Server Security
Date: 12 February 2008
OS: Solaris, HP-UX, Red Hat Linux, Windows 2003, Windows 2000, Windows XP
URL: http://www.auscert.org.au/8141
Title: ESB-2008.0169 -- [Appliance] -- Philips VOIP841 Multiple
Vulnerabilities
Date: 15 February 2008
URL: http://www.auscert.org.au/8823
Title: ESB-2008.0168 -- [Win][UNIX/Linux] -- Apache mod_jk2 host header buffer
overflow
Date: 15 February 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Red Hat Linux, Mac OS X, HP-UX, AIX, Windows
Vista
URL: http://www.auscert.org.au/8822
Title: ESB-2008.0167 -- [UNIX/Linux][FreeBSD] -- sendfile(2) write-only file
permission bypass
Date: 15 February 2008
OS: AIX, HP-UX, Red Hat Linux, Other Linux Variants, FreeBSD, OpenBSD,
IRIX, Other BSD Variants, Debian GNU/Linux, Ubuntu, HP Tru64 UNIX,
Solaris
URL: http://www.auscert.org.au/8821
Title: ESB-2008.0166 -- [FreeBSD] -- IPsec null pointer dereference panic
Date: 15 February 2008
OS: FreeBSD
URL: http://www.auscert.org.au/8820
Title: ESB-2008.0165 -- [UNIX/Linux][RedHat] -- Critical: java-1.4.2-ibm
security update
Date: 15 February 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
HP-UX, AIX
URL: http://www.auscert.org.au/8819
Title: ESB-2008.0164 -- [Win][Linux] -- F-Secure - Specially crafted CAB and
RAR archives can bypass antivirus scanning
Date: 14 February 2008
OS: Ubuntu, Debian GNU/Linux, Windows 2003, Windows 2000, Other Linux
Variants, Windows XP, Red Hat Linux, Windows Vista
URL: http://www.auscert.org.au/8818
Title: ESB-2008.0163 -- [Cisco] -- Cisco Unified IP Phone Overflow and Denial
of Service Vulnerabilities
Date: 14 February 2008
OS: Cisco Products
URL: http://www.auscert.org.au/8816
Title: ESB-2008.0162 -- [Cisco] -- SQL injection in Cisco Unified
Communications Manager
Date: 14 February 2008
OS: Cisco Products
URL: http://www.auscert.org.au/8815
Title: ESB-2008.0161 -- [HP-UX] -- HP-UX Running Apache, Remote Execution of
Arbitrary Code
Date: 14 February 2008
OS: HP-UX
URL: http://www.auscert.org.au/8814
Title: ESB-2008.0160 -- [Win][UNIX/Linux] -- Drupal - Header image
(third-party module)
Date: 14 February 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Red Hat Linux, Mac OS X, HP-UX, AIX, Windows
Vista
URL: http://www.auscert.org.au/8813
Title: ESB-2008.0159 -- [Win][UNIX/Linux] -- Gallery: Multiple vulnerabilities
Date: 13 February 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Red Hat Linux, Mac OS X, HP-UX, AIX, Windows
Vista
URL: http://www.auscert.org.au/8811
Title: ESB-2008.0158 -- [UNIX/Linux] -- Gnumeric: User-assisted execution of
arbitrary code
Date: 13 February 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, HP-UX, AIX
URL: http://www.auscert.org.au/8809
Title: ESB-2008.0157 -- [Win] -- Adobe Flash Media Server 2 Memory Corruption
Vulnerability
Date: 15 February 2008
OS: Windows Vista, Windows XP, Windows 2000, Windows 2003
URL: http://www.auscert.org.au/8807
Title: ESB-2008.0156 -- [RedHat] -- Important: kernel security update
Date: 13 February 2008
OS: Red Hat Linux
URL: http://www.auscert.org.au/8806
Title: ESB-2008.0155 -- [Win][UNIX/Linux] -- ClamAV libclamav PE File Integer
Overflow Vulnerability
Date: 13 February 2008
OS: Windows Vista, AIX, HP-UX, Mac OS X, Red Hat Linux, Windows XP, Other
Linux Variants, FreeBSD, Windows 2000, OpenBSD, Windows 2003, IRIX,
Other BSD Variants, Debian GNU/Linux, Ubuntu, HP Tru64 UNIX, Solaris
URL: http://www.auscert.org.au/8805
Title: ESB-2008.0154 -- [Debian] -- New nagios-plugins packages fix several
vulnerabilities
Date: 13 February 2008
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/8804
Title: ESB-2008.0153 -- [Debian] -- New mplayer packages fix arbitrary code
execution
Date: 13 February 2008
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/8803
Title: ESB-2008.0152 -- [RedHat] -- Critical: java-1.5.0-sun security update
Date: 13 February 2008
OS: Red Hat Linux
URL: http://www.auscert.org.au/8802
Title: ESB-2008.0151 -- [Win] -- MS08-011 - Important - Vulnerabilities in
Microsoft Works File Converter Could Allow Remote Code Execution
Date: 13 February 2008
OS: Windows 2003, Windows 2000, Windows XP, Windows Vista
URL: http://www.auscert.org.au/8801
Title: ESB-2008.0150 -- [Win] -- MS08-006 - Important - Vulnerability in
Internet Information Services Could Allow Remote Code Execution
Date: 13 February 2008
OS: Windows 2003, Windows XP
URL: http://www.auscert.org.au/8800
Title: ESB-2008.0149 -- [Win] -- MS08-005 - Important - Vulnerability in
Internet Information Services Could Allow Elevation of Privilege
Date: 13 February 2008
OS: Windows 2003, Windows 2000, Windows XP, Windows Vista
URL: http://www.auscert.org.au/8799
Title: ESB-2008.0148 -- [Win] -- MS08-004 - Important - Vulnerability in
Windows TCP/IP Could Allow Denial of Service
Date: 13 February 2008
OS: Windows Vista
URL: http://www.auscert.org.au/8798
Title: ESB-2008.0147 -- [Win] -- MS08-003 - Important - Vulnerability in
Active Directory Could Allow Denial of Service
Date: 13 February 2008
OS: Windows 2003, Windows 2000, Windows XP
URL: http://www.auscert.org.au/8797
Title: ESB-2008.0146 -- [Linux][Debian] -- New linux-2.6 packages fix
privilege escalation
Date: 14 February 2008
OS: Red Hat Linux, Other Linux Variants, Debian GNU/Linux, Ubuntu
URL: http://www.auscert.org.au/8781
Title: ESB-2008.0145 -- [Win][UNIX/Linux] -- New versions of Apache Tomcat
correct multiple vulnerabilities
Date: 11 February 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Red Hat Linux, Mac OS X, HP-UX, AIX, Windows
Vista
URL: http://www.auscert.org.au/8779
Title: ESB-2008.0144 -- [Win][UNIX/Linux][Solaris] -- A Vulnerability in the
Java Runtime Environment XML Parsing Code May Allow URL Resources to be
Accessed
Date: 11 February 2008
OS: HP Tru64 UNIX, Solaris, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Red Hat Linux, Mac OS X, HP-UX, AIX, Windows
Vista
URL: http://www.auscert.org.au/8777
Title: ESB-2008.0143 -- [Solaris] -- Sun Fire T1000/T2000 and Netra T2000 With
Firmware 6.5.11 May Experience Continuous Console EFT Errors
Date: 11 February 2008
OS: Solaris
URL: http://www.auscert.org.au/8776
Title: ESB-2008.0142 -- [Solaris] -- Certain Solaris 9 st(7D) Driver Patches
may Cause a System Panic
Date: 11 February 2008
OS: Solaris
URL: http://www.auscert.org.au/8775
Title: ESB-2008.0141 -- [Debian] -- New phpbb2 packages fix several
vulnerabilities
Date: 11 February 2008
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/8774
Title: ESB-2008.0140 -- [Win][UNIX/Linux][Debian] -- New tk8.4 packages fix
arbitrary code execution
Date: 11 February 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Red Hat Linux, Mac OS X, HP-UX, AIX, Windows
Vista
URL: http://www.auscert.org.au/8773
Title: ESB-2008.0139 -- [UNIX/Linux][Debian] -- New wml packages fix denial of
service
Date: 11 February 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
HP-UX, AIX
URL: http://www.auscert.org.au/8772
Title: ESB-2008.0138 -- [Win][UNIX/Linux][Debian] -- New sdl-image1.2 packages
fix arbitrary code execution
Date: 11 February 2008
OS: Solaris, HP Tru64 UNIX, Windows 98/98SE, Ubuntu, Debian GNU/Linux,
Other BSD Variants, IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD,
Other Linux Variants, Windows XP, Red Hat Linux, Windows NT 4, Mac OS
X, HP-UX, AIX, Windows Vista, Windows ME
URL: http://www.auscert.org.au/8771
Title: ESB-2008.0137 -- [Debian] -- New icedove packages fix several
vulnerabilities
Date: 11 February 2008
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/8770
Title: ESB-2008.0136 -- [Win][UNIX/Linux][Debian] -- New xulrunner packages
fix several vulnerabilities
Date: 11 February 2008
OS: Solaris, HP Tru64 UNIX, Windows 98/98SE, Ubuntu, Debian GNU/Linux,
Other BSD Variants, IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD,
Other Linux Variants, Windows XP, Red Hat Linux, Windows NT 4, Mac OS
X, HP-UX, AIX, Windows Vista, Windows ME
URL: http://www.auscert.org.au/8769
Title: ESB-2008.0135 -- [Debian] -- New libexif packages fix several
vulnerabilities
Date: 11 February 2008
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/8768
Title: ESB-2008.0134 -- [Debian] -- New iceweasel packages fix several
vulnerabilities
Date: 11 February 2008
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/8767
Title: ESB-2008.0130 -- [Win][Linux][HP-UX][Solaris][AIX] -- IBM DB2 Universal
Database - Two Vulnerabilities
Date: 13 February 2008
OS: Windows Vista, AIX, HP-UX, Red Hat Linux, Windows XP, Other Linux
Variants, Windows 2000, Windows 2003, Debian GNU/Linux, Ubuntu, Solaris
URL: http://www.auscert.org.au/8756
Title: ESB-2008.0115 -- [Win] -- Aurigma ImageUploader ActiveX control stack
buffer overflows
Date: 11 February 2008
OS: Windows Vista, Windows XP, Windows 2000, Windows 2003
URL: http://www.auscert.org.au/8735
Title: ESB-2008.0069 -- [Solaris] -- Multiple vulnerabilities in the Solaris X
Window System may allow Arbitrary Code Execution, Denial of Service or
Information Disclosure
Date: 11 February 2008
OS: Solaris
URL: http://www.auscert.org.au/8668
Title: ESB-2008.0060 -- [Solaris] -- Security Vulnerability in the libxml2
Library may Lead to a Denial of Service (DoS)
Date: 13 February 2008
OS: Solaris
URL: http://www.auscert.org.au/8653
Title: ESB-2008.0049 -- [Solaris] -- Multiple Security Vulnerabilities in
PostgreSQL Shipped with Solaris 10 May Allow Elevation of Privileges or
Denial of Service (DoS)
Date: 11 February 2008
OS: Solaris
URL: http://www.auscert.org.au/8630
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert at auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
More information about the AusNOG
mailing list