[AusNOG] AusCERT Week in Review - Week Ending 10/10/2008 (AUSCERT#20073F686)
Richard Billington
richard at auscert.org.au
Fri Oct 10 17:38:44 EST 2008
AusCERT Week in Review
10 October 2008
AusCERT in the Media:
- - ---------------------
Reports of the Internet's demise are premature ... again
Search Security, Australia
Oct 7, 2008
http://searchsecurity.techtarget.com.au/articles/27263-Reports-of-the-Internet-s-demise-are-premature-again
Papers, Articles and other documents:
- - -------------------------------------
Title: Call for presentations and tutorials for AusCERT2009
Date: 09 October 2008
URL: http://www.auscert.org.au/5392
Title: Call for presentations and tutorials for AusCERT2009
Date: 09 October 2008
URL: http://www.auscert.org.au/6748
Title: Computer Security Day 2008
Date: 07 October 2008
URL: http://www.auscert.org.au/9929
Alerts, Advisories and Updates:
- - -------------------------------
Title: AL-2008.0100 -- [Win][Netware][Linux][Solaris][AIX] -- Multiple
Vulnerabilities Reported in Novell eDirectory
Date: 09 October 2008
URL: http://www.auscert.org.au/9940
Title: AA-2008.0209 -- [Win] -- Multiple vulnerabilities in Serv-U
Date: 09 October 2008
URL: http://www.auscert.org.au/9943
External Security Bulletins:
- - ----------------------------
Title: ESB-2008.0960 -- [Win][Linux] -- HP System Management Homepage - cross
site scripting
Date: 10 October 2008
OS: Ubuntu, Debian GNU/Linux, Windows 2003, Windows 2000, Other Linux
Variants, Windows XP, Server 2008, Red Hat Linux, Windows Vista
URL: http://www.auscert.org.au/9945
Title: ESB-2008.0959 -- [OSX] -- APPLE-SA-2008-10-09 Security Update 2008-007
Date: 10 October 2008
OS: Mac OS X
URL: http://www.auscert.org.au/9944
Title: ESB-2008.0958 -- [Win][Linux][Cisco] -- Authentication Bypass in Cisco
Unity
Date: 09 October 2008
OS: Ubuntu, Debian GNU/Linux, Windows 2003, Windows 2000, Other Linux
Variants, Windows XP, Server 2008, Cisco Products, Red Hat Linux, Mac
OS X, Windows Vista
URL: http://www.auscert.org.au/9942
Title: ESB-2008.0957 -- [Win][UNIX/Linux] -- SIOC and EveryBlog (Drupal
third-party modules) Multiple vulnerabilities
Date: 09 October 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
Windows Vista
URL: http://www.auscert.org.au/9941
Title: ESB-2008.0956 -- [Win][UNIX/Linux] -- Drupal Core - Multiple
vulnerabilities
Date: 09 October 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX,
Windows Vista
URL: http://www.auscert.org.au/9939
Title: ESB-2008.0955 -- [Win][Linux][Debian] -- New iceweasel packages fix
several vulnerabilities
Date: 09 October 2008
OS: Ubuntu, Debian GNU/Linux, Windows 2003, Windows 2000, Other Linux
Variants, Windows XP, Server 2008, Red Hat Linux, Mac OS X, Windows
Vista
URL: http://www.auscert.org.au/9938
Title: ESB-2008.0954 -- [UNIX/Linux][Debian] -- New mon packages fix insecure
temporary files
Date: 09 October 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
HP-UX, AIX
URL: http://www.auscert.org.au/9937
Title: ESB-2008.0953 -- [Linux][RedHat] -- Important: kernel security and bug
fix update
Date: 09 October 2008
OS: Ubuntu, Debian GNU/Linux, Other Linux Variants, Red Hat Linux
URL: http://www.auscert.org.au/9935
Title: ESB-2008.0952 -- [Win][UNIX/Linux][Debian] -- New php5 packages fix
several vulnerabilities
Date: 08 October 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, Windows 2003, OpenBSD, Windows 2000, FreeBSD, Other Linux
Variants, Windows XP, Server 2008, Red Hat Linux, HP-UX, AIX, Windows
Vista
URL: http://www.auscert.org.au/9934
Title: ESB-2008.0951 -- [HP-UX] -- HP-UX Running NFS/ONCplus, Remote Denial of
Service (DoS)
Date: 08 October 2008
OS: HP-UX
URL: http://www.auscert.org.au/9933
Title: ESB-2008.0950 -- [Debian] -- New squid packages released for Debian
Date: 08 October 2008
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/9932
Title: ESB-2008.0949 -- [Win][UNIX/Linux][RedHat] -- Moderate: condor
security, bug fix and enhancement update
Date: 08 October 2008
OS: Windows Vista, AIX, HP-UX, Red Hat Linux, Server 2008, Windows XP,
Other Linux Variants, FreeBSD, OpenBSD, Windows 2003, IRIX, Other BSD
Variants, Debian GNU/Linux, Ubuntu, HP Tru64 UNIX, Solaris
URL: http://www.auscert.org.au/9931
Title: ESB-2008.0948 -- [Win][UNIX/Linux] -- Mono System.Web Header Injection
Attack
Date: 07 October 2008
OS: Ubuntu, Debian GNU/Linux, Other BSD Variants, IRIX, Windows 2003,
OpenBSD, Windows 2000, FreeBSD, Other Linux Variants, Windows XP,
Server 2008, Red Hat Linux, Mac OS X, HP-UX, AIX, Windows Vista
URL: http://www.auscert.org.au/9930
Title: ESB-2008.0947 -- [UNIX/Linux][Debian] -- New lighttpd packages fix
various problems
Date: 07 October 2008
OS: Solaris, HP Tru64 UNIX, Ubuntu, Debian GNU/Linux, Other BSD Variants,
IRIX, OpenBSD, FreeBSD, Other Linux Variants, Red Hat Linux, Mac OS X,
HP-UX, AIX
URL: http://www.auscert.org.au/9928
Title: ESB-2008.0946 -- [Win][VMware ESX][Linux] -- VMware Hosted products,
VirtualCenter Update 3 and patches for ESX and ESXi resolve multiple
security issues
Date: 06 October 2008
OS: Ubuntu, Debian GNU/Linux, Windows 2003, Windows 2000, Other Linux
Variants, Windows XP, Virtualisation, Server 2008, Red Hat Linux,
Windows Vista
URL: http://www.auscert.org.au/9927
Title: ESB-2008.0945 -- [Debian] -- New mplayer packages fix integer overflows
Date: 06 October 2008
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/9926
Title: ESB-2008.0944 -- [Debian] -- New feta packages fix denial of service
Date: 06 October 2008
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/9925
Title: ESB-2008.0850 -- [Win][Linux][HP-UX][Solaris] -- HP OpenView Network
Node Manager (OV NNM), Remote Denial of Service (DoS)
Date: 10 October 2008
OS: Windows Vista, HP-UX, Red Hat Linux, Server 2008, Windows XP, Other
Linux Variants, Windows 2000, Windows 2003, Debian GNU/Linux, Ubuntu,
Solaris
URL: http://www.auscert.org.au/9783
Title: ESB-2008.0846 -- [Win][VMware ESX][Linux] -- Updates to VMware
Workstation, VMware Player, VMware ACE, VMware Server, VMware ESX
address information disclosure, privilege escalation and other security
issues
Date: 06 October 2008
OS: Windows Vista, Red Hat Linux, Server 2008, Virtualisation, Windows XP,
Other Linux Variants, Windows 2000, Windows 2003, Debian GNU/Linux,
Ubuntu
URL: http://www.auscert.org.au/9775
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert at auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
- -----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
iQCVAwUBSO74Fih9+71yA2DNAQLhzgP+KzP13NJhIBlKm5qCm1l/bqa6eOuxGOvf
ksvoSCeW2yPhsgbs8SMtSbt7KDst0949nLXeHwpIEqw44l/BF5ssImTpaYi63KF2
7q0ktfaW9sMR4XMRdEZziAzkwST0P4vuBLBzIUeCdrWrvWyEcPXEmS9N4jCKn4xM
dgvrpv/FNbM=
=0Xp9
- -----END PGP SIGNATURE-----
------- End of Forwarded Message
More information about the AusNOG
mailing list