[AusNOG] AusCERT Week in Review - Week Ending 25/05/2007

Matthew Braid mdb at auscert.org.au
Fri May 25 16:26:56 EST 2007


-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

Hi AusNOGs,

This week's Week in Review is attached. Enjoy and have a good weekend :)

MB
- -- 
- -- Matthew Braid --
Australian Computer Emergency Response Team | Hotline: +61 7 3365 4417
(AusCERT)                                   | Fax:     +61 7 3365 7031
The University of Queensland                | WWW:     www.auscert.org.au
Qld 4072 Australia                          | Email:   auscert at auscert.org.au


AusCERT Week in Review
25 May 2007

Obviously the big event of this week was our Asia Pacific Information
Technology Security Conference held on the Gold Coast. Once again it was
a very successful event with interesting and informative talks. Our AusCERT
member Birds of a Feather (BoF) session gave us a some good ideas on how to
improve our services for you our members.

On the security front, this week denial of service vulnerabilities in RSA's
BSAFE Cypher-C and CERT-C libraries were revealed and patched. There are
many products that use these libraries to enable encryption services, notably
Cisco in several of their products. AusCERT Advisory AA-2007.0030 was
released giving information on these vulnerabilities, and members are
recommended to examine this information and apply solutions where necessary.

Since this was the week of our conference, the AusCERT in the Media
section below contains not just media content about us, but also content
regarding issues and topics brought up during the conference.

Regards,
- --
Matthew Braid, Computer Security Analyst | Hotline: +61 7 3365 4417
AusCERT, Australia's national CERT       | Fax:     +61 7 3365 7031
The University of Queensland             | WWW:     www.auscert.org.au
QLD 4072 Australia                       | Email:   auscert at auscert.org.au

Papers, Articles and other documents:
- -------------------------------------


Alerts, Advisories and Updates:
- -------------------------------
Title: AA-2007.0030 -- [Win][UNIX/Linux][Cisco] -- Remote Denial of Service
       Vulnerability in RSA BSAFE Crypto-C and Cert-C libraries 
Date:  25 May 2007
URL:   http://www.auscert.org.au/7620

Title: AL-2007.0068 -- [Appliance][Cisco] -- Vulnerability In Crypto Library
       Allows Denial of Service 
Date:  23 May 2007
URL:   http://www.auscert.org.au/7612

Title: AL-2007.0067 -- [Appliance][Cisco] -- Multiple Vulnerabilities in Cisco
       IOS While Processing SSL Packets 
Date:  23 May 2007
URL:   http://www.auscert.org.au/7611


External Security Bulletins:
- ----------------------------
Title: ESB-2007.0345 -- [OSX] -- Apple Security Update 2007-005 
Date:  25 May 2007
OS:    Mac OS X 
URL:   http://www.auscert.org.au/7621

Title: ESB-2007.0344 -- [Cisco] -- Cisco CallManager Input Validation
       Vulnerability 
Date:  24 May 2007
OS:    Cisco Products 
URL:   http://www.auscert.org.au/7619

Title: ESB-2007.0343 -- [FreeBSD] -- Heap overflow in file(1) 
Date:  24 May 2007
OS:    FreeBSD 
URL:   http://www.auscert.org.au/7618

Title: ESB-2007.0342 -- [HP-UX] -- HP-UX running Kerberos, Remote Arbitrary
       Code Execution 
Date:  24 May 2007
OS:    HP-UX 
URL:   http://www.auscert.org.au/7617

Title: ESB-2007.0341 -- [Debian] -- New php4 packages fix privilege escalation
Date:  24 May 2007
OS:    Debian GNU/Linux 
URL:   http://www.auscert.org.au/7616

Title: ESB-2007.0340 -- [Debian] -- New clamav packages fix denial of service
       vulnerability 
Date:  24 May 2007
OS:    Debian GNU/Linux 
URL:   http://www.auscert.org.au/7615

Title: ESB-2007.0339 -- [Win][UNIX/Linux][RedHat] -- Important: tomcat
       security update 
Date:  24 May 2007
OS:    Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
       Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux Variants,
       Windows XP, Red Hat Linux, Mac OS X, HP-UX, AIX, Windows Vista 
URL:   http://www.auscert.org.au/7614

Title: ESB-2007.0338 -- [Win][UNIX/Linux][RedHat] -- Moderate: gimp security
       update 
Date:  24 May 2007
OS:    Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
       Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux Variants,
       Windows XP, Red Hat Linux, HP-UX, AIX, Windows Vista 
URL:   http://www.auscert.org.au/7613

Title: ESB-2007.0337 -- [Debian] -- New php5 packages fix several
       vulnerabilities 
Date:  21 May 2007
OS:    Debian GNU/Linux 
URL:   http://www.auscert.org.au/7610

Title: ESB-2007.0303 -- [Win][Linux] -- Patches released to fix multiple
       VMWare vulnerabilities 
Date:  22 May 2007
OS:    Windows ME, Windows Vista, Windows NT 4, Red Hat Linux, Windows XP,
       Other Linux Variants, Windows 2000, Windows 2003, Debian GNU/Linux,
       Windows 98/98SE 
URL:   http://www.auscert.org.au/7567

Title: ESB-2007.0275 -- [Solaris] -- Multiple vulnerabilities in libfreetype,
       Xsun(1) and Xorg(1) 
Date:  22 May 2007
OS:    Solaris 
URL:   http://www.auscert.org.au/7528

Title: ESB-2007.0241 -- [Win][UNIX/Linux] -- Security Vulnerability in
       StarOffice 8 May Lead to Heap Overflow and Arbitrary Code Execution 
Date:  21 May 2007
OS:    Windows ME, Windows Vista, AIX, HP-UX, Mac OS X, Windows NT 4, Red Hat
       Linux, Windows XP, Other Linux Variants, FreeBSD, Windows 2000,
       OpenBSD, Windows 2003, IRIX, Other BSD Variants, Debian GNU/Linux,
       Windows 98/98SE, HP Tru64 UNIX, Solaris 
URL:   http://www.auscert.org.au/7479

Title: ESB-2007.0198 -- [Win][Linux][Solaris] -- Multiple vulnerabilities in
       StarOffice may allow the execution of arbitrary code 
Date:  21 May 2007
OS:    Windows ME, Windows Vista, Windows NT 4, Red Hat Linux, Windows XP,
       Other Linux Variants, Windows 2000, Windows 2003, Debian GNU/Linux,
       Windows 98/98SE, Solaris 
URL:   http://www.auscert.org.au/7422


  
AusCERT in the Media:
- ----------------------------  

IT industry has failed in desktop security
Builder AU - Australia
http://www.builderau.com.au/news/soa/IT_industry_has_failed_in_desktop_security/
0,339028227,339277628,00.htm

Computer security has 'massively failed'
Sydney Morning Herald - Sydney, New South Wales, Australia
http://www.smh.com.au/news/security/computer-security-has-massively-failed/2007/
05/21/1179601329670.html

Queensland's plan to end Nigerian scams
ZDNet.com.au - Australia
http://www.zdnet.com.au/news/security/soa/Queensland-s-plan-to-end-Nigerian-scam
s/0,130061744,339277685,00.htm

AusCERT urges delegates to report computer crimes
ZDNet.com.au - Australia
http://www.zdnet.com.au/news/security/soa/AusCERT-urges-delegates-to-report-comp
uter-crimes/0,130061744,339277755,00.htm

Software should defend itself: Oracle CSO
ZDNet.com.au - Australia
http://www.zdnet.com.au/news/security/soa/Software-should-defend-itself-Oracle-C
SO/0,130061744,339277758,00.htm

Turkish hackers target Aussie websites
The Age - Melbourne, Victoria, Australia
http://www.theage.com.au/news/National/Turkish-hackers-target-Aussie-websites/20
07/05/24/1179601567960.html

AusCERT no longer defined by THAT survey
Computerworld Australia - Australia 
http://www.computerworld.com.au/index.php/id;1271309390;fp;4194304;fpid;1

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert at auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================


-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
Comment: Exmh version 2.7.0 06/18/2004

iQCVAwUBRlaBryh9+71yA2DNAQPl4wP9HNB9fZYbD+jAi7BSZzSFAwcEHkYpXiUf
Xph7GKt8uzzVYJzHrhSwHcV90VFEqRNH+JmW995+suKG1qnF147POGtzrLfH83P7
sHHnGJYnIFTlYm2jpimoelfVeiYUpYbA5GlB/kgGhiyzWxKaasOfML2GKgaCf5y5
XM0GXZtIv/o=
=BDCY
-----END PGP SIGNATURE-----




More information about the AusNOG mailing list