[AusNOG] AusCERT Week in Review - Week Ending 19/05/2006

matthew at auscert.org.au matthew at auscert.org.au
Fri May 19 17:18:11 EST 2006


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Greetings ausnog,

The following is a summary of what we have pushed to our subscribers for
the past week.

I hope this is of some use.  As usual - feedback appreciated and thanks
for the feedback already given.

Regards,

- -- Matthew McGlashan --
Coordination Centre Team Leader             | Hotline: +61 7 3365 4417
Australian Computer Emergency Response Team | Direct:  +61 7 3365 7924
(AusCERT)                                   | Fax:     +61 7 3365 7031
The University of Queensland                | WWW:     www.auscert.org.au
Qld 4072 Australia                          | Email: auscert at auscert.org.au

AusCERT Week in Review
19 May 2006


Papers, Articles and other documents:
- -------------------------------------


Alerts, Advisories and Updates:
- -------------------------------
Title: AL-2006.0040 -- [Win] -- Yahoo Greeting Card trojan targets multiple
       web browsers 
Date:  19 May 2006
URL:   http://www.auscert.org.au/6314

Title: AA-2006.0032 -- [UNIX/Linux] -- Integer overflow vulnerability in
       Nagios 
Date:  18 May 2006
URL:   http://www.auscert.org.au/6312

Title: AA-2006.0031 -- [Win] -- Vulnerability in freeSSHd may allow remote
       execution of arbitrary code 
Date:  16 May 2006
URL:   http://www.auscert.org.au/6308

Title: AA-2006.0030 -- [Win][UNIX/Linux] -- Security vulnerability in RealVNC
       4.1.1 may allow unauthorised remote access 
Date:  15 May 2006
URL:   http://www.auscert.org.au/6303

Title: AU-2006.0015 -- AusCERT Update - [Win][UNIX/Linux] - MySQL 4.0.27 now
       available fixing recent vulnerabilities 
Date:  15 May 2006
URL:   http://www.auscert.org.au/6302


External Security Bulletins:
- ----------------------------
Title: ESB-2006.0995 -- [Solaris] -- Sun Fire T2000 Server requires mandatory
       patches 
Date:  15 May 2006
OS:    Solaris 
URL:   http://www.auscert.org.au/5849

Title: ESB-2006.0341 -- [Win][UNIX/Linux][Debian] -- New awstats packages fix
       arbitrary command execution 
Date:  19 May 2006
OS:    Solaris, HP Tru64 UNIX, Windows 98/98SE, Debian GNU/Linux, Other BSD
       Variants, IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other
       Linux Variants, Windows XP, Red Hat Linux, Windows NT 4, HP-UX, AIX,
       Windows ME 
URL:   http://www.auscert.org.au/6313

Title: ESB-2006.0340 -- [Win][Linux][HP-UX][Solaris][AIX] -- Security
       Vulnerability in Sun Java System Directory Server Related to Initial
       Installation Data 
Date:  18 May 2006
OS:    Solaris, Debian GNU/Linux, Windows 2003, Windows 2000, Other Linux
       Variants, Windows XP, Red Hat Linux, Windows NT 4, HP-UX, AIX 
URL:   http://www.auscert.org.au/6310

Title: ESB-2006.0339 -- [NetBSD] -- End-of-life for NetBSD 1.6 
Date:  18 May 2006
OS:    Other BSD Variants 
URL:   http://www.auscert.org.au/6309

Title: ESB-2006.0338 -- [Win][UNIX/Linux][Debian] -- New phpLDAPadmin packages
       fix cross-site scripting 
Date:  16 May 2006
OS:    Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
       Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux Variants,
       Windows XP, Red Hat Linux, Windows NT 4, Mac OS X, HP-UX, AIX 
URL:   http://www.auscert.org.au/6305

Title: ESB-2006.0337 -- [Win][UNIX/Linux][Debian] -- New webcalendar packages
       fix information leak 
Date:  16 May 2006
OS:    Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
       Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux Variants,
       Windows XP, Red Hat Linux, Windows NT 4, Mac OS X, HP-UX, AIX 
URL:   http://www.auscert.org.au/6304


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (FreeBSD)
Comment: http://www.auscert.org.au/render.html?it=1967
Comment: http://www.auscert.org.au/render.html?it=1967

iQCVAwUBRG1xMyh9+71yA2DNAQJ1rAQAgTS1Ym0jqJmFHPl2ubhQJG/dki5xfqnZ
GIjA90hMis6wrQGq7p9b1MUKPZbxOIfKi6LRAOWzj9M9hnFYqiZhgMX+ysmJagaM
dqhTvXRrCHofcS0K/sa2ACu+SfOempmDYDZNIatrqTxEG+YfOEMugQdJBes23OGg
4iO8ffX1rYo=
=4woQ
-----END PGP SIGNATURE-----




More information about the AusNOG mailing list