[AusNOG] AusCERT Week in Review - Week Ending 25/05/2007
Matthew Braid
mdb at auscert.org.au
Fri May 25 16:26:56 EST 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
Hi AusNOGs,
This week's Week in Review is attached. Enjoy and have a good weekend :)
MB
- --
- -- Matthew Braid --
Australian Computer Emergency Response Team | Hotline: +61 7 3365 4417
(AusCERT) | Fax: +61 7 3365 7031
The University of Queensland | WWW: www.auscert.org.au
Qld 4072 Australia | Email: auscert at auscert.org.au
AusCERT Week in Review
25 May 2007
Obviously the big event of this week was our Asia Pacific Information
Technology Security Conference held on the Gold Coast. Once again it was
a very successful event with interesting and informative talks. Our AusCERT
member Birds of a Feather (BoF) session gave us a some good ideas on how to
improve our services for you our members.
On the security front, this week denial of service vulnerabilities in RSA's
BSAFE Cypher-C and CERT-C libraries were revealed and patched. There are
many products that use these libraries to enable encryption services, notably
Cisco in several of their products. AusCERT Advisory AA-2007.0030 was
released giving information on these vulnerabilities, and members are
recommended to examine this information and apply solutions where necessary.
Since this was the week of our conference, the AusCERT in the Media
section below contains not just media content about us, but also content
regarding issues and topics brought up during the conference.
Regards,
- --
Matthew Braid, Computer Security Analyst | Hotline: +61 7 3365 4417
AusCERT, Australia's national CERT | Fax: +61 7 3365 7031
The University of Queensland | WWW: www.auscert.org.au
QLD 4072 Australia | Email: auscert at auscert.org.au
Papers, Articles and other documents:
- -------------------------------------
Alerts, Advisories and Updates:
- -------------------------------
Title: AA-2007.0030 -- [Win][UNIX/Linux][Cisco] -- Remote Denial of Service
Vulnerability in RSA BSAFE Crypto-C and Cert-C libraries
Date: 25 May 2007
URL: http://www.auscert.org.au/7620
Title: AL-2007.0068 -- [Appliance][Cisco] -- Vulnerability In Crypto Library
Allows Denial of Service
Date: 23 May 2007
URL: http://www.auscert.org.au/7612
Title: AL-2007.0067 -- [Appliance][Cisco] -- Multiple Vulnerabilities in Cisco
IOS While Processing SSL Packets
Date: 23 May 2007
URL: http://www.auscert.org.au/7611
External Security Bulletins:
- ----------------------------
Title: ESB-2007.0345 -- [OSX] -- Apple Security Update 2007-005
Date: 25 May 2007
OS: Mac OS X
URL: http://www.auscert.org.au/7621
Title: ESB-2007.0344 -- [Cisco] -- Cisco CallManager Input Validation
Vulnerability
Date: 24 May 2007
OS: Cisco Products
URL: http://www.auscert.org.au/7619
Title: ESB-2007.0343 -- [FreeBSD] -- Heap overflow in file(1)
Date: 24 May 2007
OS: FreeBSD
URL: http://www.auscert.org.au/7618
Title: ESB-2007.0342 -- [HP-UX] -- HP-UX running Kerberos, Remote Arbitrary
Code Execution
Date: 24 May 2007
OS: HP-UX
URL: http://www.auscert.org.au/7617
Title: ESB-2007.0341 -- [Debian] -- New php4 packages fix privilege escalation
Date: 24 May 2007
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/7616
Title: ESB-2007.0340 -- [Debian] -- New clamav packages fix denial of service
vulnerability
Date: 24 May 2007
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/7615
Title: ESB-2007.0339 -- [Win][UNIX/Linux][RedHat] -- Important: tomcat
security update
Date: 24 May 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux Variants,
Windows XP, Red Hat Linux, Mac OS X, HP-UX, AIX, Windows Vista
URL: http://www.auscert.org.au/7614
Title: ESB-2007.0338 -- [Win][UNIX/Linux][RedHat] -- Moderate: gimp security
update
Date: 24 May 2007
OS: Solaris, HP Tru64 UNIX, Debian GNU/Linux, Other BSD Variants, IRIX,
Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux Variants,
Windows XP, Red Hat Linux, HP-UX, AIX, Windows Vista
URL: http://www.auscert.org.au/7613
Title: ESB-2007.0337 -- [Debian] -- New php5 packages fix several
vulnerabilities
Date: 21 May 2007
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/7610
Title: ESB-2007.0303 -- [Win][Linux] -- Patches released to fix multiple
VMWare vulnerabilities
Date: 22 May 2007
OS: Windows ME, Windows Vista, Windows NT 4, Red Hat Linux, Windows XP,
Other Linux Variants, Windows 2000, Windows 2003, Debian GNU/Linux,
Windows 98/98SE
URL: http://www.auscert.org.au/7567
Title: ESB-2007.0275 -- [Solaris] -- Multiple vulnerabilities in libfreetype,
Xsun(1) and Xorg(1)
Date: 22 May 2007
OS: Solaris
URL: http://www.auscert.org.au/7528
Title: ESB-2007.0241 -- [Win][UNIX/Linux] -- Security Vulnerability in
StarOffice 8 May Lead to Heap Overflow and Arbitrary Code Execution
Date: 21 May 2007
OS: Windows ME, Windows Vista, AIX, HP-UX, Mac OS X, Windows NT 4, Red Hat
Linux, Windows XP, Other Linux Variants, FreeBSD, Windows 2000,
OpenBSD, Windows 2003, IRIX, Other BSD Variants, Debian GNU/Linux,
Windows 98/98SE, HP Tru64 UNIX, Solaris
URL: http://www.auscert.org.au/7479
Title: ESB-2007.0198 -- [Win][Linux][Solaris] -- Multiple vulnerabilities in
StarOffice may allow the execution of arbitrary code
Date: 21 May 2007
OS: Windows ME, Windows Vista, Windows NT 4, Red Hat Linux, Windows XP,
Other Linux Variants, Windows 2000, Windows 2003, Debian GNU/Linux,
Windows 98/98SE, Solaris
URL: http://www.auscert.org.au/7422
AusCERT in the Media:
- ----------------------------
IT industry has failed in desktop security
Builder AU - Australia
http://www.builderau.com.au/news/soa/IT_industry_has_failed_in_desktop_security/
0,339028227,339277628,00.htm
Computer security has 'massively failed'
Sydney Morning Herald - Sydney, New South Wales, Australia
http://www.smh.com.au/news/security/computer-security-has-massively-failed/2007/
05/21/1179601329670.html
Queensland's plan to end Nigerian scams
ZDNet.com.au - Australia
http://www.zdnet.com.au/news/security/soa/Queensland-s-plan-to-end-Nigerian-scam
s/0,130061744,339277685,00.htm
AusCERT urges delegates to report computer crimes
ZDNet.com.au - Australia
http://www.zdnet.com.au/news/security/soa/AusCERT-urges-delegates-to-report-comp
uter-crimes/0,130061744,339277755,00.htm
Software should defend itself: Oracle CSO
ZDNet.com.au - Australia
http://www.zdnet.com.au/news/security/soa/Software-should-defend-itself-Oracle-C
SO/0,130061744,339277758,00.htm
Turkish hackers target Aussie websites
The Age - Melbourne, Victoria, Australia
http://www.theage.com.au/news/National/Turkish-hackers-target-Aussie-websites/20
07/05/24/1179601567960.html
AusCERT no longer defined by THAT survey
Computerworld Australia - Australia
http://www.computerworld.com.au/index.php/id;1271309390;fp;4194304;fpid;1
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert at auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
Comment: Exmh version 2.7.0 06/18/2004
iQCVAwUBRlaBryh9+71yA2DNAQPl4wP9HNB9fZYbD+jAi7BSZzSFAwcEHkYpXiUf
Xph7GKt8uzzVYJzHrhSwHcV90VFEqRNH+JmW995+suKG1qnF147POGtzrLfH83P7
sHHnGJYnIFTlYm2jpimoelfVeiYUpYbA5GlB/kgGhiyzWxKaasOfML2GKgaCf5y5
XM0GXZtIv/o=
=BDCY
-----END PGP SIGNATURE-----
More information about the AusNOG
mailing list