[AusNOG] AusCERT Week in Review - Week Ending 28/08/2009 (AUSCERT#20073F686)
Paul Fahey
paul at auscert.org.au
Fri Aug 28 15:50:01 EST 2009
Alerts, Advisories and Updates:
-------------------------------
Title: ASB-2009.1063 - [Win][Linux] Multiple Norton and Symantec products:
Denial of service - Remote/unauthenticated
Date: 28 August 2009
URL: http://www.auscert.org.au/11549
Title: ASB-2009.1064 - [Win] PureMessage for Microsoft Exchange: Denial of
service - Remote/unauthenticated
Date: 28 August 2009
URL: http://www.auscert.org.au/11550
Title: ASB-2009.1062 - [Win] Google Chrome: Multiple vulnerabilities
Date: 27 August 2009
URL: http://www.auscert.org.au/11545
Title: ASB-2009.1061 - [Win][Linux][Solaris][AIX] IBM WebSphere Application
Server : Access confidential data - Remote/unauthenticated
Date: 26 August 2009
URL: http://www.auscert.org.au/11536
Title: ASB-2009.1050.2 - UPDATE [Win][UNIX/Linux] SquirrelMail: Cross-site
request forgery - Remote with user interaction
Date: 26 August 2009
URL: http://www.auscert.org.au/11497
Title: ASB-2009.1040.5 - UPDATE [Win][UNIX/Linux] Firefox 3.5.1: Multiple
vulnerabilities
Date: 24 August 2009
URL: http://www.auscert.org.au/11419
Title: ASB-2009.1059 - [Win][UNIX/Linux] Thunderbird: Access privileged data
-
Remote/unauthenticated
Date: 24 August 2009
URL: http://www.auscert.org.au/11529
Title: ASB-2009.1060 - [Appliance] BIG-IP ASM and PSM: Denial of service -
Remote/unauthenticated
Date: 24 August 2009
URL: http://www.auscert.org.au/11530
External Security Bulletins:
----------------------------
Title: ESB-2009.1228.2 - UPDATE [Solaris] Solaris Print Service: Denial of
service - Existing account
Date: 28 August 2009
OS: Solaris
URL: http://www.auscert.org.au/11547
Title: ESB-2009.1227 - [Win][UNIX/Linux] Shibboleth Service Provider: Denial
of service - Remote/unauthenticated
Date: 27 August 2009
OS: IRIX, HP Tru64 UNIX, Solaris, Windows 2003, Red Hat Linux, Mac OS X,
Ubuntu, Debian GNU/Linux, Windows XP, HP-UX, Other BSD Variants,
SUSE,
Windows 2000, OpenBSD, AIX, Windows Vista, FreeBSD, Windows Server
2008, Other Linux Variants
URL: http://www.auscert.org.au/11546
Title: ESB-2009.1226 - [Win][UNIX/Linux] Ajax Table, Go - url redirects
(Drupal third-party modules): Multiple Vulnerabilities
Date: 27 August 2009
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Mac OS X,
Ubuntu, Debian GNU/Linux, HP-UX, Windows XP, Other BSD Variants,
SUSE,
OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista, Other Linux
Variants, Windows Server 2008
URL: http://www.auscert.org.au/11544
Title: ESB-2009.1225 - [Cisco] Cisco Unified Communications Manager: Denial
of
service - Remote/unauthenticated
Date: 27 August 2009
OS: Cisco Products
URL: http://www.auscert.org.au/11543
Title: ESB-2009.1224 - [RedHat] gnutls: Provide misleading information -
Remote with user interaction
Date: 27 August 2009
OS: Red Hat Linux
URL: http://www.auscert.org.au/11542
Title: ESB-2009.1223 - [Debian] nss: Multiple vulnerabilities
Date: 27 August 2009
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/11541
Title: ESB-2009.1222 - [Win][UNIX/Linux][Debian] xulrunner: Provide
misleading
information - Remote/unauthenticated
Date: 27 August 2009
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Mac OS X,
Debian GNU/Linux, Ubuntu, HP-UX, Windows XP, Other BSD Variants,
SUSE,
OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista, Other Linux
Variants, Windows Server 2008
URL: http://www.auscert.org.au/11540
Title: ESB-2009.1221 - [Solaris] Adobe Reader: Multiple vulnerabilities
Date: 26 August 2009
OS: Solaris
URL: http://www.auscert.org.au/11539
Title: ESB-2009.1220 - [OpenSolaris] Firefox: Multiple vulnerabilities
Date: 26 August 2009
OS: Solaris
URL: http://www.auscert.org.au/11538
Title: ESB-2009.1219 - [Solaris][OpenSolaris] xscreensaver and Assistive
Technology Support: Unauthorised access - Console/physical
Date: 26 August 2009
OS: Solaris
URL: http://www.auscert.org.au/11537
Title: ESB-2009.1218 - ALERT [Win] Autonomy KeyView SDK (used in IBM Lotus
Notes, Symantec Mail Security for Microsoft Exchange): Administrator
compromise - Remote/unauthenticated
Date: 26 August 2009
OS: Windows 2003, Windows XP, Windows 2000, Windows Vista, Windows Server
2008
URL: http://www.auscert.org.au/11535
Title: ESB-2009.1217 - [Solaris][OpenSolaris] pollwakeup: Denial of service
-
Existing account
Date: 25 August 2009
OS: Solaris
URL: http://www.auscert.org.au/11534
Title: ESB-2009.1216 - [Solaris][OpenSolaris] Flash Player: Multiple
vulnerabilities
Date: 25 August 2009
OS: Solaris
URL: http://www.auscert.org.au/11533
Title: ESB-2009.1215 - [Linux][Debian] linux-2.6: Multiple vulnerabilities
Date: 25 August 2009
OS: Red Hat Linux, Other Linux Variants, SUSE, Debian GNU/Linux, Ubuntu
URL: http://www.auscert.org.au/11532
Title: ESB-2009.1214.2 - UPDATE [RedHat] kernel: Multiple vulnerabilities
Date: 28 August 2009
OS: Red Hat Linux
URL: http://www.auscert.org.au/11531
Title: ESB-2009.1213 - [SUSE] kernel: Multiple vulnerabilities
Date: 24 August 2009
OS: SUSE
URL: http://www.auscert.org.au/11528
Title: ESB-2009.1212.2 - UPDATE [Debian] wordpress: Multiple vulnerabilities
Date: 27 August 2009
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/11527
Title: ESB-2009.1211 - [Win][UNIX/Linux] VMware Workstation, Player, ACE:
Multiple vulnerabilities
Date: 24 August 2009
OS: IRIX, HP Tru64 UNIX, Solaris, Windows 2003, Red Hat Linux, Mac OS X,
Ubuntu, Debian GNU/Linux, Windows XP, HP-UX, Other BSD Variants,
SUSE,
Windows 2000, OpenBSD, AIX, Windows Vista, FreeBSD, Windows Server
2008, Other Linux Variants
URL: http://www.auscert.org.au/11526
Title: ESB-2009.1210.2 - UPDATE [Solaris][OpenSolaris] Sun Microsystems:
Denial of service - Existing account
Date: 24 August 2009
OS: Solaris
URL: http://www.auscert.org.au/11524
Title: ESB-2009.1194.3 - UPDATED ALERT [Cisco] Cisco IOS: Denial of service
-
Remote/unauthenticated
Date: 24 August 2009
OS: Cisco Products
URL: http://www.auscert.org.au/11504
Title: ESB-2009.1151.2 - UPDATE [HP Tru64] BIND: Denial of service -
Remote/unauthenticated
Date: 26 August 2009
OS: HP-UX, HP Tru64 UNIX
URL: http://www.auscert.org.au/11447
Title: ESB-2009.1056.2 - UPDATE [Debian] dhcp3: Multiple vulnerabilities
Date: 26 August 2009
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/11306
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert at auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20090828/9c88428e/attachment.html>
More information about the AusNOG
mailing list