[AusNOG] AusCERT Week in Review - Week Ending 23/10/2009 (AUSCERT#20073f686)
Daniel McNamara
daniel at auscert.org.au
Fri Oct 23 16:48:30 EST 2009
AusCERT Week in Review
23 October 2009
Alerts, Advisories and Updates:
-------------------------------
Title: ASB-2009.1113 - [Win][UNIX/Linux] Pidgin: Denial of service -
Remote/unauthenticated
Date: 23 October 2009
URL: http://www.auscert.org.au/11831
Title: ASB-2009.1112 - [Win][UNIX/Linux] WordPress: Denial of service -
Remote/unauthenticated
Date: 22 October 2009
URL: http://www.auscert.org.au/11824
Title: ASB-2009.1109 - ALERT [Win][UNIX/Linux] Oracle Products: Execute
arbitrary code/commands - Remote/unauthenticated
Date: 21 October 2009
URL: http://www.auscert.org.au/11821
Title: ASB-2009.1110 - [Win] Websense Email Security: Denial of service -
Remote/unauthenticated
Date: 21 October 2009
URL: http://www.auscert.org.au/11822
Title: ASB-2009.1111 - [Win][Linux][HP-UX][Solaris][AIX] IBM DB2: Denial of
service - Remote/unauthenticated
Date: 21 October 2009
URL: http://www.auscert.org.au/11823
External Security Bulletins:
----------------------------
Title: ESB-2009.1436 - [HP-UX] Apache Tomcat: Multiple vulnerabilities
Date: 23 October 2009
OS: HP-UX
URL: http://www.auscert.org.au/11830
Title: ESB-2009.1435 - [HP-UX] Apache: Multiple vulnerabilities
Date: 23 October 2009
OS: HP-UX
URL: http://www.auscert.org.au/11829
Title: ESB-2009.1434 - [Debian] mapserver: Multiple vulnerabilities
Date: 23 October 2009
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/11828
Title: ESB-2009.1433 - [Linux][RedHat] kernel: Read-only data access -
Existing account
Date: 23 October 2009
OS: Red Hat Linux, Other Linux Variants, SUSE, Ubuntu, Debian GNU/Linux
URL: http://www.auscert.org.au/11827
Title: ESB-2009.1432 - [Win][UNIX/Linux] Drupal Third Party Modules: Execute
arbitrary code/commands - Remote/unauthenticated
Date: 22 October 2009
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Mac OS X,
Ubuntu, Debian GNU/Linux, HP-UX, Windows XP, Other BSD Variants,
SUSE,
OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista, Other Linux
Variants, Windows Server 2008
URL: http://www.auscert.org.au/11826
Title: ESB-2009.1431 - [Win][UNIX/Linux][Mandriva] PHP: Execute arbitrary
code/commands - Remote/unauthenticated
Date: 22 October 2009
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Mac OS X,
Ubuntu, Debian GNU/Linux, HP-UX, Windows XP, Other BSD Variants,
SUSE,
OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista, Other Linux
Variants, Windows Server 2008
URL: http://www.auscert.org.au/11825
Title: ESB-2009.1430 - [VMware ESX] VMware ESX: Multiple vulnerabilities
Date: 18 October 2009
OS: Virtualisation
URL: http://www.auscert.org.au/11820
Title: ESB-2009.1429 - [Solaris] sshd: Denial of service -
Remote/unauthenticated
Date: 19 October 2009
OS: Solaris
URL: http://www.auscert.org.au/11819
Title: ESB-2009.1428 - [Debian] bugzilla: Execute arbitrary code/commands -
Remote/unauthenticated
Date: 19 October 2009
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/11818
Title: ESB-2009.1427 - [UNIX/Linux][Debian] camlimages: Execute arbitrary
code/commands - Remote with user interaction
Date: 19 October 2009
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Mac OS X, Debian
GNU/Linux, Ubuntu, HP-UX, Other BSD Variants, SUSE, OpenBSD, AIX,
FreeBSD, Other Linux Variants
URL: http://www.auscert.org.au/11817
Title: ESB-2009.1424.2 - UPDATE [Solaris][OpenSolaris] Sun Microsystems:
Modify arbitrary files - Existing account
Date: 19 October 2009
OS: Solaris
URL: http://www.auscert.org.au/11812
Title: ESB-2009.0167 -- [Win][VMware ESX][Linux] -- VirtualCenter Update 4
and
ESX patch update Tomcat to version 5.5.27
Date: 19 October 2009
OS: Windows Vista, Red Hat Linux, Windows Server 2008, Virtualisation,
Windows XP, Other Linux Variants, Windows 2000, Windows 2003, Debian
GNU/Linux, Ubuntu
URL: http://www.auscert.org.au/10543
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20091023/6c340a8d/attachment.html>
More information about the AusNOG
mailing list