[AusNOG] AusCERT Week in Review - Week Ending 03/08/2007 (fwd)
Matthew Aburn
maburn at auscert.org.au
Fri Aug 3 16:49:46 EST 2007
AusCERT Week in Review
03 August 2007
Papers, Articles and other documents:
-------------------------------------
Title: Information for potential speakers at AusCERT2008
Date: 02 August 2007
URL: http://www.auscert.org.au/6609
Web Log Entries:
----------------
Title: Low volume "Bird Flu" trojan spam run
Date: 02 August 2007
URL: http://www.auscert.org.au/7929
Alerts, Advisories and Updates:
-------------------------------
Title: AA-2007.0064 -- [Win][AIX] -- IBM Lotus Sametime Server cross-site
scripting vulnerability
Date: 02 August 2007
URL: http://www.auscert.org.au/7928
Title: AL-2007.0092 -- [OSX] -- Apple Security Update 2007-007
Date: 01 August 2007
URL: http://www.auscert.org.au/7920
Title: AA-2007.0063 -- [Win][UNIX/Linux] -- Joomla! 1.0.13 released correcting
multiple security vulnerabilities
Date: 30 July 2007
URL: http://www.auscert.org.au/7914
Title: AA-2007.0062 -- [Win] -- Multiple Vulnerabilities in Novell GroupWise
Mobile Server
Date: 30 July 2007
URL: http://www.auscert.org.au/7913
Title: AA-2007.0060 -- [Win][Netware][Linux] -- Norman antivirus products -
report of critical unpatched vulnerabilities
Date: 30 July 2007
URL: http://www.auscert.org.au/7886
External Security Bulletins:
----------------------------
Title: ESB-2006.0944 -- [Solaris] -- Security Vulnerability With RSA
Signatures Affects Solaris WAN Boot
Date: 30 July 2007
OS: Solaris
URL: http://www.auscert.org.au/7144
Title: ESB-2007.0585 -- [Solaris] -- Solaris 10 Systems May Panic or Hang When
Running Certain DTrace D Programs
Date: 03 August 2007
OS: Solaris
URL: http://www.auscert.org.au/7931
Title: ESB-2007.0584 -- [UNIX/Linux][Win] -- Tomcat 3.3.x cross-site scripting
vulnerability in examples web application
Date: 03 August 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux Variants, Red
Hat Linux, Mac OS X, HP-UX, AIX
URL: http://www.auscert.org.au/7930
Title: ESB-2007.0583 -- [HP-UX] -- HP-UX TCP/IP stack - two denial of service
vulnerabilities
Date: 02 August 2007
OS: HP-UX
URL: http://www.auscert.org.au/7927
Title: ESB-2007.0582 -- [UNIX/Linux][RedHat] -- Important: tetex security
update
Date: 02 August 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X, HP-UX,
AIX
URL: http://www.auscert.org.au/7926
Title: ESB-2007.0581 -- [FreeBSD] -- Buffer overflow in tcpdump(1)
Date: 02 August 2007
OS: FreeBSD
URL: http://www.auscert.org.au/7925
Title: ESB-2007.0580 -- [FreeBSD] -- Predictable query ids in named(8)
Date: 02 August 2007
OS: FreeBSD
URL: http://www.auscert.org.au/7924
Title: ESB-2007.0579 -- [Debian] -- New file packages fix arbitrary code
execution
Date: 01 August 2007
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/7923
Title: ESB-2007.0578 -- [Win][OSX] -- Safari 3 Beta Update 3.0.3
Date: 01 August 2007
OS: Windows 2003, Windows 2000, Windows XP, Mac OS X, Windows Vista
URL: http://www.auscert.org.au/7922
Title: ESB-2007.0577 -- [Win][UNIX/Linux][RedHat] -- Qt libraries - integer
overflow vulnerability in QTextEdit
Date: 01 August 2007
OS: Solaris, HP Tru64 UNIX, Windows 98/98SE, Debian GNU/Linux, Other BSD
Variants, IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other
Linux Variants, Windows XP, Red Hat Linux, Windows NT 4, Mac OS X,
HP-UX, AIX, Windows Vista, Windows ME
URL: http://www.auscert.org.au/7921
Title: ESB-2007.0576 -- [Win][UNIX/Linux] -- New Firefox, Thunderbird and
SeaMonkey released fixing URI and about:blank vulnerabilities
Date: 01 August 2007
OS: HP Tru64 UNIX, Solaris, IRIX, OpenBSD, Other BSD Variants, FreeBSD,
HP-UX, Debian GNU/Linux, Other Linux Variants, Red Hat Linux, AIX,
Windows Vista, Windows 2003, Windows 2000, Windows NT 4, Windows ME,
Windows XP, Windows 98/98SE, Mac OS X
URL: http://www.auscert.org.au/7919
Title: ESB-2007.0575 -- [Debian] -- New xfs packages fix privilege escalation
Date: 31 July 2007
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/7918
Title: ESB-2007.0574 -- [UNIX/Linux] -- Resource Exhaustion vulnerability in
IAX2 channel driver
Date: 31 July 2007
OS: HP Tru64 UNIX, Solaris, IRIX, OpenBSD, Other BSD Variants, FreeBSD,
HP-UX, Debian GNU/Linux, Other Linux Variants, Red Hat Linux, AIX, Mac
OS X
URL: http://www.auscert.org.au/7916
Title: ESB-2007.0573 -- [UNIX/Linux][RedHat] -- Important: Multiple PDF
security updates for Red Hat
Date: 31 July 2007
OS: HP Tru64 UNIX, Solaris, IRIX, OpenBSD, Other BSD Variants, FreeBSD,
HP-UX, Debian GNU/Linux, Other Linux Variants, Red Hat Linux, AIX, Mac
OS X
URL: http://www.auscert.org.au/7915
Title: ESB-2007.0572 -- [UNIX/Linux] -- Updated tcpdump packages fix BGP
dissector vulnerability
Date: 30 July 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X, HP-UX,
AIX
URL: http://www.auscert.org.au/7912
Title: ESB-2007.0559 -- [Debian] -- New bind9 packages fix DNS cache poisoning
Date: 30 July 2007
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/7896
Title: ESB-2007.0548 -- [Win] -- Ipswitch IMail Server 2006 IMAP Search
Command Buffer Overflow Vulnerability
Date: 30 July 2007
OS: Windows 2000, Windows 2003
URL: http://www.auscert.org.au/7878
Title: ESB-2007.0270 -- [Solaris] -- Security Vulnerability in libX11 for
Solaris
Date: 30 July 2007
OS: Solaris
URL: http://www.auscert.org.au/7523
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert at auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
More information about the AusNOG
mailing list