[AusNOG] FWD: AusCERT Week in Review - Week Ending 15/06/2007 (AUSCERT#20073F686)
Robert Lowe
rlowe at auscert.org.au
Sat Jun 16 14:49:34 EST 2007
------- Forwarded Message
AusCERT Week in Review
15 June 2007
Greetings,
Microsoft Tuesday saw a varied mix of patches released. Most concerning to us
were the six Internet Explorer vulnerabilities, five of which could result in
the execution of abitrary code when visiting a specially crafted web page.
Malicious web pages are a very common vector used by attackers to deploy
trojans, so we expect this to feature in such incidents in the near future.
Also, there proof of concept code has already been released for the Speech
Control Memory Corruption Vulnerability (CVE-2007-2222).
There has been another proof of concept released which cliams to exploit an
unpatched vulnerability in the MSODataSourceControl ActiveX control within
Office.
Finally, another reminder that there are still places available in the AusCERT
2 day hands-on Windows Intrusion Prevention Workshop in Canberra on the 25-26
June and in Sydney on the 26-27 July. The course description and registration
are on our web site at www.auscert.org.au/wipw-aus or by calling AusCERT on
1800 648 458. Payments for these courses are done by invoice after the
course.
If you have any questions regarding these courses, please don't hesitate to
e-mail us at training at auscert.org.au or by using the phone number above.
Regards,
Rob.
- - --
Robert Lowe, Computer Security Analyst | Hotline: +61 7 3365 4417
AusCERT, Australia's national CERT | Fax: +61 7 3365 7031
The University of Queensland | WWW: www.auscert.org.au
QLD 4072 Australia | Email: auscert at auscert.org.au
AusCERT in the Media:
- - ----------------------------
Papers, Articles and other documents:
- - -------------------------------------
Alerts, Advisories and Updates:
- - -------------------------------
Title: AL-2007.0077 -- [Win] -- Cumulative Security Update for Outlook Express
and Windows Mail
Date: 13 June 2007
URL: http://www.auscert.org.au/7703
Title: AL-2007.0076 -- [Win] -- Vulnerability in the Windows Schannel Security
Package Could Allow Remote Code Execution
Date: 13 June 2007
URL: http://www.auscert.org.au/7702
Title: AL-2007.0075 -- [Win] -- Vulnerability in Win 32 API Could Allow Remote
Code Execution
Date: 13 June 2007
URL: http://www.auscert.org.au/7701
Title: AL-2007.0074 -- [Win] -- Cumulative Security Update for Internet
Explorer
Date: 13 June 2007
URL: http://www.auscert.org.au/7700
Title: AL-2007.0072 -- [Win][Netware][UNIX/Linux] -- CA multiple products -
critical vulnerabilities in anti-virus scan engine
Date: 13 June 2007
URL: http://www.auscert.org.au/7674
Title: AL-2007.0073 -- [Win] -- Microsoft June security bulletins pre-release
announcement
Date: 12 June 2007
URL: http://www.auscert.org.au/7699
Title: AA-2007.0042 -- [Win] -- Two vulnerabilities in Yahoo! Messenger 8.1
may allow execution of arbitrary code
Date: 11 June 2007
URL: http://www.auscert.org.au/7687
External Security Bulletins:
- - ----------------------------
Title: ESB-2007.0423 -- [Win][UNIX/Linux] -- Apache Tomcat cross site
scripting vulnerabilities
Date: 15 June 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux Variants,
Windows XP, Red Hat Linux, Mac OS X, HP-UX, AIX, Windows Vista
URL: http://www.auscert.org.au/7722
Title: ESB-2007.0422 -- [Linux][RedHat] -- Important: kernel security and bug
fix update
Date: 15 June 2007
OS: Debian GNU/Linux, Other Linux Variants, Red Hat Linux
URL: http://www.auscert.org.au/7721
Title: ESB-2007.0421 -- [UNIX/Linux] -- Apache MyFaces Tomahawk JSF Framework
Cross-Site Scripting (XSS) Vulnerability
Date: 15 June 2007
OS: Solaris, HP Tru64 UNIX, Windows 98/98SE, Debian GNU/Linux, Other BSD
Variants, IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other
Linux Variants, Windows XP, Red Hat Linux, Windows NT 4, Mac OS X,
HP-UX, AIX, Windows Vista, Windows ME
URL: http://www.auscert.org.au/7720
Title: ESB-2007.0420 -- [Solaris] -- A Security Vulnerability in Solaris 10
NFS XDR Handling May Allow a Denial of Service to NFS Servers
Date: 15 June 2007
OS: Solaris
URL: http://www.auscert.org.au/7719
Title: ESB-2007.0419 -- [Win][UNIX/Linux] -- Security Vulnerability in Sun
Java System Directory Server May Allow Unauthorized Data Modifications
Date: 15 June 2007
OS: Solaris, Windows 2003, Windows 2000, Red Hat Linux, HP-UX, AIX
URL: http://www.auscert.org.au/7718
Title: ESB-2007.0418 -- [Linux][RedHat] -- Moderate: iscsi-initiator-utils
security update
Date: 15 June 2007
OS: Debian GNU/Linux, Other Linux Variants, Red Hat Linux
URL: http://www.auscert.org.au/7717
Title: ESB-2007.0417 -- [Win][UNIX/Linux] -- Low: mod_perl security update
Date: 15 June 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux Variants,
Windows XP, Red Hat Linux, Mac OS X, HP-UX, AIX, Windows Vista
URL: http://www.auscert.org.au/7716
Title: ESB-2007.0416 -- [RedHat] -- Moderate: libexif integer overflow
Date: 15 June 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/7715
Title: ESB-2007.0415 -- [Win][UNIX/Linux] -- Multiple Vendor libexif Integer
Overflow Heap Corruption Vulnerability
Date: 14 June 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux Variants,
Windows XP, Red Hat Linux, Mac OS X, HP-UX, AIX, Windows Vista
URL: http://www.auscert.org.au/7714
Title: ESB-2007.0414 -- [UNIX/Linux][Debian] -- New icedove packages fix
several vulnerabilities
Date: 14 June 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, HP-UX, AIX
URL: http://www.auscert.org.au/7713
Title: ESB-2007.0413 -- [UNIX/Linux][RedHat] -- Important: kdebase security
update
Date: 14 June 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, HP-UX, AIX
URL: http://www.auscert.org.au/7712
Title: ESB-2007.0412 -- [UNIX/Linux][RedHat] -- Moderate: spamassassin
security update
Date: 14 June 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, HP-UX, AIX
URL: http://www.auscert.org.au/7711
Title: ESB-2007.0411 -- [RedHat] -- Important: openoffice.org security update
Date: 14 June 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/7710
Title: ESB-2007.0410 -- [Win][UNIX/Linux][Debian] -- New xulrunner packages
fix several vulnerabilities
Date: 13 June 2007
OS: Solaris, Windows 98/98SE, Debian GNU/Linux, Other BSD Variants, Windows
2003, OpenBSD, Windows 2000, FreeBSD, Other Linux Variants, Windows XP,
Red Hat Linux, Mac OS X, HP-UX, Windows Vista, Windows ME
URL: http://www.auscert.org.au/7709
Title: ESB-2007.0409 -- [Win][UNIX/Linux][Debian] -- New OpenOffice.org
packages fix arbitrary code execution
Date: 13 June 2007
OS: Solaris, Windows 98/98SE, Debian GNU/Linux, Windows 2003, OpenBSD,
Windows 2000, FreeBSD, Other Linux Variants, Windows XP, Red Hat Linux,
Mac OS X, Windows Vista
URL: http://www.auscert.org.au/7708
Title: ESB-2007.0408 -- [HP-UX] -- HP-UX Running BIND, Remote Denial of
Service (DoS)
Date: 13 June 2007
OS: HP-UX
URL: http://www.auscert.org.au/7707
Title: ESB-2007.0407 -- [Win][UNIX/Linux] -- Sun Java System Application
Server, Web Server and Web Proxy Server affected by NSS SSLv2
vulnerabilities
Date: 13 June 2007
OS: Solaris, Debian GNU/Linux, Windows 2003, Windows 2000, Other Linux
Variants, Red Hat Linux, HP-UX, AIX
URL: http://www.auscert.org.au/7706
Title: ESB-2007.0406 -- [Win] -- Vulnerability in Windows Vista Could Allow
Information Disclosure
Date: 13 June 2007
OS: Windows Vista
URL: http://www.auscert.org.au/7705
Title: ESB-2007.0405 -- [Win] -- Vulnerabilities in Microsoft Visio Could
Allow Remote Code Execution
Date: 13 June 2007
OS: Windows 2003, Windows 2000, Windows XP, Windows Vista
URL: http://www.auscert.org.au/7704
Title: ESB-2007.0404 -- [Win][UNIX/Linux] -- Mozilla Firefox allows
cross-domain iframe access via JavaScript
Date: 12 June 2007
OS: Solaris, Debian GNU/Linux, Other BSD Variants, Windows 2003, OpenBSD,
Windows 2000, FreeBSD, Other Linux Variants, Windows XP, Red Hat Linux,
Mac OS X, HP-UX, Windows Vista
URL: http://www.auscert.org.au/7698
Title: ESB-2007.0403 -- [UNIX/Linux][RedHat] -- Moderate: gcc security and bug
fix update
Date: 12 June 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X, HP-UX,
AIX
URL: http://www.auscert.org.au/7697
Title: ESB-2007.0402 -- [UNIX/Linux][RedHat] -- Low: gdb security and bug fix
update
Date: 12 June 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X, HP-UX,
AIX
URL: http://www.auscert.org.au/7696
Title: ESB-2007.0401 -- [Solaris] -- Security Vulnerability in JavaScript
Engine in Mozilla 1.7 for Solaris 8, 9 and 10
Date: 12 June 2007
OS: Solaris
URL: http://www.auscert.org.au/7695
Title: ESB-2007.0400 -- [Debian] -- New freetype packages fix integer overflow
Date: 12 June 2007
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/7694
Title: ESB-2007.0399 -- [Debian] -- New Gimp packages fix arbitrary code
execution
Date: 12 June 2007
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/7693
Title: ESB-2007.0398 -- [Linux][RedHat] -- Moderate: pam security and bug fix
update
Date: 12 June 2007
OS: Debian GNU/Linux, Other Linux Variants, Red Hat Linux
URL: http://www.auscert.org.au/7692
Title: ESB-2007.0397 -- [Linux][RedHat] -- Low: shadow-utils security and bug
fix update
Date: 12 June 2007
OS: Debian GNU/Linux, Other Linux Variants, Red Hat Linux
URL: http://www.auscert.org.au/7691
Title: ESB-2007.0396 -- [OSX] -- Cisco Trust Agent - Mac OS X Privilege
Escalation Vulnerability
Date: 12 June 2007
OS: Mac OS X
URL: http://www.auscert.org.au/7690
Title: ESB-2007.0395 -- [UNIX/Linux][RedHat] -- Low: openldap security and
bug-fix update
Date: 12 June 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X, HP-UX,
AIX
URL: http://www.auscert.org.au/7689
Title: ESB-2007.0394 -- [RedHat] -- Moderate: freetype security update
Date: 12 June 2007
OS: Red Hat Linux
URL: http://www.auscert.org.au/7688
Title: ESB-2007.0393 -- [Linux] -- Linux Kernel cpuset tasks Information
Disclosure Vulnerability
Date: 11 June 2007
OS: Debian GNU/Linux, Other Linux Variants, Red Hat Linux
URL: http://www.auscert.org.au/7686
Title: ESB-2007.0392 -- [Solaris] -- Security Vulnerability in scp(1) May
Allow Execution of Unintended Commands
Date: 11 June 2007
OS: Solaris
URL: http://www.auscert.org.au/7685
Title: ESB-2007.0391 -- [Solaris] -- Security Vulnerability in the sshd(1M)
Protocol Version 1 Implementation May Allow a Denial of Service to the
Host
Date: 11 June 2007
OS: Solaris
URL: http://www.auscert.org.au/7684
Title: ESB-2007.0390 -- [UNIX/Linux][Debian] -- New lighttpd packages fix
denial of service
Date: 11 June 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, HP-UX, AIX
URL: http://www.auscert.org.au/7683
Title: ESB-2007.0386 -- [Solaris] -- Solaris Management Console (SMC) - two
vulnerabilities allow privilege escalation
Date: 13 June 2007
OS: Solaris
URL: http://www.auscert.org.au/7678
Title: ESB-2007.0384 -- [Win] -- Symantec AntiVirus and Client Security
products - vulnerabilities in Reporting Server component
Date: 13 June 2007
OS: Windows 2000, Windows 2003
URL: http://www.auscert.org.au/7675
Title: ESB-2007.0063 -- [Linux][RedHat] -- Important: kernel security update
Date: 13 June 2007
OS: Red Hat Linux, Other Linux Variants, Debian GNU/Linux
URL: http://www.auscert.org.au/7236
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert at auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
------- End of Forwarded Message
More information about the AusNOG
mailing list