[AusNOG] AusCERT Week in Review - Week Ending 16/05/2008 (AUSCERT#20073f686)
Paul Fahey
paul at auscert.org.au
Fri May 16 16:11:58 EST 2008
AusCERT Week in Review
16 May 2008
AusCERT in the Media:
---------------------
A bumper year for ID fraud
Sydney Morning Herald, Australia
10 hours ago
http://www.smh.com.au/news/security/a-bumper-year-for-id-fraud/2008/05/13/121044
4445369.html
WhiteGold sees wealth in Marshal
ARNnet, Australia
May 14, 2008
http://www.arnnet.com.au/index.php/id;1977428109
AusCERT2008 to push security and privacy
Secure Computing, Australia
May 13, 2008
http://www.securecomputing.net.au/news/75996,auscert2008-to-push-security-and-pr
ivacy.aspx
Marshal appoints new channel manager
ARNnet, Australia
May 12, 2008
http://www.arnnet.com.au/index.php/id;1040045093;fp;4194304;fpid;1
AusCERT2008 introduces interactive keypads for delegates
Secure Computing, Australia
May 12, 2008
http://www.securecomputing.net.au/news/75848,auscert2008-introduces-interactive-
keypads-for-delegates.aspx
Australian Law Reform Commission readies information privacy dossier
Computerworld Australia, Australia
May 10, 2008
http://www.computerworld.com.au/index.php/id;1547695054;fp;4194304;fpid;1
Papers, Articles and other documents:
-------------------------------------
Web Log Entries:
----------------
Title: Corporate data protection and peer-to-peer threats
Date: 13 May 2008
URL: http://www.auscert.org.au/9267
Alerts, Advisories and Updates:
-------------------------------
Title: AL-2008.0061 -- [Win] -- Symantec Altiris Deployment Solution Domain
Credential Disclosure and SQL Injection Vulnerability
Date: 16 May 2008
URL: http://www.auscert.org.au/9299
Title: AL-2008.0060 -- [Debian] -- New openssh packages fix predictable
randomness
Date: 15 May 2008
URL: http://www.auscert.org.au/9293
Title: AA-2008.0113 -- [Win][OSX] -- Multiple Vulnerabilities in Safari
Date: 15 May 2008
URL: http://www.auscert.org.au/9301
Title: AA-2008.0112 -- [Appliance] -- Authentication Bypass Reported in Citrix
Access Gateway
Date: 15 May 2008
URL: http://www.auscert.org.au/9298
Title: AA-2008.0109 -- [Win] -- Vulnerability in Windows CE allows for remote
code execution
Date: 14 May 2008
URL: http://www.auscert.org.au/9285
Title: AA-2008.0110 -- [Win][UNIX/Linux] -- Locally exploitable vulnerability
reported in QEMU
Date: 14 May 2008
URL: http://www.auscert.org.au/9286
Title: AA-2008.0111 -- [Linux][FreeBSD] -- Swfdec 0.6.4 released
Date: 14 May 2008
URL: http://www.auscert.org.au/9288
Title: AL-2008.0056 -- [Win][Mac][OSX] -- MS08-026 - Vulnerabilities in
Microsoft Word Could Allow Remote Code Execution
Date: 14 May 2008
URL: http://www.auscert.org.au/9278
Title: AL-2008.0057 -- [Win] -- MS08-027 - Vulnerability in Microsoft
Publisher Could Allow Remote Code Execution
Date: 14 May 2008
URL: http://www.auscert.org.au/9279
Title: AL-2008.0058 -- [Win] -- MS08-028 - Vulnerability in Microsoft Jet
Database Engine Could Allow Remote Code Execution
Date: 14 May 2008
URL: http://www.auscert.org.au/9280
Title: AL-2008.0059 -- [Debian] -- New openssl packages fix predictable random
number generator
Date: 14 May 2008
URL: http://www.auscert.org.au/9282
Title: AL-2008.0055 -- [Win][Mac][OSX] -- Microsoft Bulletin Notification -
May Prerelease Announcement
Date: 13 May 2008
URL: http://www.auscert.org.au/9274
Title: AA-2008.0107 -- [Win][UNIX/Linux] -- Multiple vulnerabilities in cPanel
Date: 13 May 2008
URL: http://www.auscert.org.au/9276
Title: AA-2008.0108 -- [Win][UNIX/Linux] -- Vulnerabilitiy Reported in IBM
WebSphere Application Server
Date: 13 May 2008
URL: http://www.auscert.org.au/9277
Title: AA-2008.0103 -- [Win][UNIX/Linux] -- Cross-site scripting vulnerability
in SAP Internet Transaction Server (ITS).
Date: 12 May 2008
URL: http://www.auscert.org.au/9262
Title: AA-2008.0104 -- [Win][Netware][Linux][OSX] -- Vulnerability reported in
Novell Groupwise
Date: 12 May 2008
URL: http://www.auscert.org.au/9263
Title: AA-2008.0105 -- [Win][Linux][AIX] -- DoS vulnerability reported in IBM
Rational Build Forge 7.0.2
Date: 12 May 2008
URL: http://www.auscert.org.au/9264
Title: AA-2008.0106 -- [Win][UNIX/Linux] -- Privilege escalation vulnerability
reported in MySQL
Date: 12 May 2008
URL: http://www.auscert.org.au/9266
External Security Bulletins:
----------------------------
Title: ESB-2008.0508 -- [Solaris] -- Solaris 10 patches 128306-03 and
128307-03 may disable SVM Mirrored Root Systems
Date: 16 May 2008
OS: Solaris
URL: http://www.auscert.org.au/9300
Title: ESB-2008.0507 -- [UNIX/Linux] -- libid3tag: Denial of Service
Date: 15 May 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
HP-UX, AIX
URL: http://www.auscert.org.au/9296
Title: ESB-2008.0506 -- [Win][UNIX/Linux][RedHat] -- Important: libvorbis
security update
Date: 15 May 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
Windows Vista
URL: http://www.auscert.org.au/9295
Title: ESB-2008.0505 -- [Win][UNIX/Linux][Debian] -- New gforge packages fix
insecure temporary files
Date: 15 May 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
Windows Vista
URL: http://www.auscert.org.au/9294
Title: ESB-2008.0504 -- [Cisco] -- Cisco Content Switching Module Memory Leak
Vulnerability
Date: 15 May 2008
OS: Cisco Products
URL: http://www.auscert.org.au/9292
Title: ESB-2008.0503 -- [Cisco] -- Cisco Unified Communications Manager Denial
of Service Vulnerabilities
Date: 15 May 2008
OS: Cisco Products
URL: http://www.auscert.org.au/9291
Title: ESB-2008.0502 -- [Cisco] -- Cisco Unified Presence Denial of Service
Vulnerabilities
Date: 15 May 2008
OS: Cisco Products
URL: http://www.auscert.org.au/9290
Title: ESB-2008.0501 -- [Win][UNIX/Linux] -- Drupal - Site Documentation
(third-party module) Privilege escalation vulnerability
Date: 15 May 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
Windows Vista
URL: http://www.auscert.org.au/9289
Title: ESB-2008.0500 -- [UNIX/Linux] -- Multiple X11 terminals: Local
privilege escalation
Date: 14 May 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, HP-UX, AIX
URL: http://www.auscert.org.au/9284
Title: ESB-2008.0499 -- [UNIX/Linux][RedHat] -- Important: xen security and
bug fix update
Date: 14 May 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, HP-UX, AIX
URL: http://www.auscert.org.au/9283
Title: ESB-2008.0498 -- [Win] -- MS08-029 - Vulnerabilities in Microsoft
Malware Protection Engine Could Allow Denial of Service
Date: 14 May 2008
OS: Windows 2003, Windows 2000, Windows XP, Server 2008, Windows Vista
URL: http://www.auscert.org.au/9281
Title: ESB-2008.0497 -- [Win] -- Microsoft Windows I2O Filter Utility Driver
(i2omgmt.sys) Local Privilege Escalation Vulnerability
Date: 13 May 2008
OS: Windows 2003, Windows 2000, Windows XP, Server 2008, Windows Vista
URL: http://www.auscert.org.au/9275
Title: ESB-2008.0496 -- [HP-UX] -- HP-UX Running ftp, Remote Denial of Service
(DoS)
Date: 13 May 2008
OS: HP-UX
URL: http://www.auscert.org.au/9273
Title: ESB-2008.0495 -- [Win][UNIX/Linux] -- MoinMoin: Privilege escalation
Date: 13 May 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Red Hat Linux, Mac OS X, HP-UX, AIX, Windows
Vista
URL: http://www.auscert.org.au/9272
Title: ESB-2008.0494 -- [Debian] -- New Linux 2.6.18 packages fix denial of
service
Date: 13 May 2008
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/9271
Title: ESB-2008.0493 -- [Debian] -- New icedove packages fix several
vulnerabilities
Date: 13 May 2008
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/9270
Title: ESB-2008.0492 -- [Win] -- Microsoft Internet Explorer 7
DisableCachingOfSSLPages may not prevent caching
Date: 14 May 2008
OS: Windows Vista, Server 2008, Windows XP, Windows 2000, Windows 2003
URL: http://www.auscert.org.au/9269
Title: ESB-2008.0491 -- [Win] -- Potential security flaw in Outlook Web Access
(OWA)
Date: 13 May 2008
OS: Windows 2003, Windows 2000, Server 2008
URL: http://www.auscert.org.au/9268
Title: ESB-2008.0490 -- [Win] -- CA Unicenter DSM ITRM Legends ActiveX integer
overflow
Date: 12 May 2008
OS: Windows 2003, Windows 2000, Windows XP, Server 2008, Windows Vista
URL: http://www.auscert.org.au/9265
Title: ESB-2008.0489 -- [Appliance][Solaris] -- DoS vulnerability in Sun
StorEdge
Date: 12 May 2008
OS: Solaris
URL: http://www.auscert.org.au/9261
Title: ESB-2008.0488 -- [Solaris] -- DoS Vulnerability in Solaris Volume
Manager (SVM)
Date: 12 May 2008
OS: Solaris
URL: http://www.auscert.org.au/9260
Title: ESB-2008.0487 -- [Solaris] -- Security Vulnerabilities in Solaris Print
Service May Lead to Denial of Service (DoS) or Execution of Arbitrary
Code
Date: 12 May 2008
OS: Solaris
URL: http://www.auscert.org.au/9259
Title: ESB-2008.0486 -- [RedHat] -- Multiple Red Hat Directory Server
Vulnerabilities
Date: 12 May 2008
OS: Red Hat Linux
URL: http://www.auscert.org.au/9257
Title: ESB-2008.0485 -- [Debian] -- New rdesktop packages fix several
vulnerabilities
Date: 12 May 2008
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/9256
Title: ESB-2008.0484 -- [Debian] -- New php5 packages fix several
vulnerabilities
Date: 12 May 2008
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/9255
Title: ESB-2008.0475 -- [Win][UNIX/Linux][Solaris] -- JSP Source Code
Disclosure Vulnerability Affects Sun Java System Application Server and
Web Server
Date: 12 May 2008
OS: Windows Vista, AIX, HP-UX, Red Hat Linux, Server 2008, Windows XP,
Other Linux Variants, Windows 2000, Windows 2003, Debian GNU/Linux,
Ubuntu, Solaris
URL: http://www.auscert.org.au/9243
Title: ESB-2008.0474 -- [Solaris] -- Security Vulnerability in the TCP
Implementation of Solaris Systems May Allow a Denial of Service When
Accepting New Connections While Undergoing a TCP "SYN Flood" Attack
Date: 12 May 2008
OS: Solaris
URL: http://www.auscert.org.au/9242
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert at auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
More information about the AusNOG
mailing list