[AusNOG] AusCERT Week in Review - Week Ending 09/10/2009 (AUSCERT#20073f686)

Fri Oct 9 16:02:29 EST 2009

AusCERT Week in Review
09 October 2009

Web Log Entries:
- ----------------
Title: New Adobe vulnerability exploited in the wild 
Date:  08 October 2009
URL:   http://www.auscert.org.au/11767

Title: Securing Firefox 
Date:  08 October 2009
URL:   http://www.auscert.org.au/11768

Alerts, Advisories and Updates:
- -------------------------------
Title: ASB-2009.1104.2 - UPDATE [OpenBSD] OpenBSD kernel: Denial of
service -
       Remote/unauthenticated 
Date:  07 October 2009
URL:   http://www.auscert.org.au/11755

Title: ASB-2009.1106 - [UNIX/Linux] puppet: Unauthorised access -
Existing
       account 
Date:  07 October 2009
URL:   http://www.auscert.org.au/11759

Title: ASB-2009.1105 - [Win][UNIX/Linux] ClamAV: Reduced security -
Existing
       account 
Date:  06 October 2009
URL:   http://www.auscert.org.au/11756

External Security Bulletins:
- ----------------------------
Title: ESB-2009.1384 - [RedHat] squirrelmail: Cross-site request forgery
-
       Remote with user interaction 
Date:  09 October 2009
OS:    Red Hat Linux 
URL:   http://www.auscert.org.au/11766

Title: ESB-2009.1383 - [Win] SecurityExpressions: Multiple
vulnerabilities 
Date:  08 October 2009
OS:    Windows 2003, Windows XP, Windows 2000 
URL:   http://www.auscert.org.au/11765

Title: ESB-2009.1382 - [Linux][Solaris][OSX] Sun Microsystems: Root
compromise
       - Existing account 
Date:  08 October 2009
OS:    Solaris, Red Hat Linux, SUSE, Mac OS X, Other Linux Variants,
Debian
       GNU/Linux, Ubuntu 
URL:   http://www.auscert.org.au/11764

Title: ESB-2009.1381 - [AIX] rpc.cmsd: Root compromise -
       Remote/unauthenticated 
Date:  08 October 2009
OS:    AIX 
URL:   http://www.auscert.org.au/11763

Title: ESB-2009.1380 - [Appliance] Hewlett-Packard: Cross-site scripting
-
       Remote/unauthenticated 
Date:  08 October 2009
URL:   http://www.auscert.org.au/11762

Title: ESB-2009.1379 - [Debian] graphicsmagick: Multiple vulnerabilities

Date:  08 October 2009
OS:    Debian GNU/Linux 
URL:   http://www.auscert.org.au/11761

Title: ESB-2009.1378 - [RedHat] postgresql: Multiple vulnerabilities 
Date:  08 October 2009
OS:    Red Hat Linux 
URL:   http://www.auscert.org.au/11760

Title: ESB-2009.1377 - [Win][UNIX/Linux][Ubuntu] BackupPC: Unauthorised
access
       - Existing account 
Date:  07 October 2009
OS:    IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Mac OS
X,
       Ubuntu, Debian GNU/Linux, HP-UX, Windows XP, Other BSD Variants,
SUSE,
       OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista, Other Linux
       Variants, Windows Server 2008 
URL:   http://www.auscert.org.au/11758

Title: ESB-2009.1376 - [UNIX/Linux][Ubuntu] Wget: Access privileged data
-
       Remote with user interaction 
Date:  07 October 2009
OS:    IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Mac OS X, Ubuntu,
Debian
       GNU/Linux, HP-UX, Other BSD Variants, SUSE, OpenBSD, AIX,
FreeBSD,
       Other Linux Variants 
URL:   http://www.auscert.org.au/11757

Title: ESB-2009.1375 - [Debian] elinks: Execute arbitrary code/commands
-
       Remote with user interaction 
Date:  06 October 2009
OS:    Debian GNU/Linux 
URL:   http://www.auscert.org.au/11754

Title: ESB-2009.1374 - [Win][UNIX/Linux][Debian] mediawiki1.7: Multiple
       vulnerabilities 
Date:  05 October 2009
OS:    IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Mac OS
X,
       Debian GNU/Linux, Ubuntu, HP-UX, Windows XP, Other BSD Variants,
SUSE,
       OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista, Other Linux
       Variants, Windows Server 2008 
URL:   http://www.auscert.org.au/11753

Title: ESB-2009.1373 - [OSX] VMware Fusion: Multiple vulnerabilities 
Date:  05 October 2009
OS:    Mac OS X 
URL:   http://www.auscert.org.au/11752

Title: ESB-2009.1372 - [SUSE][OpenSUSE] kernel: Denial of service -
       Remote/unauthenticated 
Date:  05 October 2009
OS:    Other Linux Variants, SUSE 
URL:   http://www.auscert.org.au/11751

Title: ESB-2009.1371 - [Debian] PostgreSQL: Multiple Vulnerabilities 
Date:  05 October 2009
OS:    Debian GNU/Linux 
URL:   http://www.auscert.org.au/11750

Title: ESB-2009.1370 - [Debian] strongswan: Denial of service -
       Remote/unauthenticated 
Date:  05 October 2009
OS:    Debian GNU/Linux 
URL:   http://www.auscert.org.au/11749

Title: ESB-2009.1369 - [Solaris] kernel: Denial of service - Existing
account 
Date:  05 October 2009
OS:    Solaris 
URL:   http://www.auscert.org.au/11748

Title: ESB-2009.1368 - [FreeBSD] devfs: Execute arbitrary code/commands
-
       Existing account 
Date:  05 October 2009
OS:    FreeBSD 
URL:   http://www.auscert.org.au/11747

Title: ESB-2009.1367.2 - UPDATE [FreeBSD] kqueue: Execute arbitrary
       code/commands - Existing account 
Date:  07 October 2009
OS:    FreeBSD 
URL:   http://www.auscert.org.au/11746

Title: ESB-2009.1366 - [Debian] openswan: Denial of service -
       Remote/unauthenticated 
Date:  05 October 2009
OS:    Debian GNU/Linux 
URL:   http://www.auscert.org.au/11745

Title: ESB-2009.1299.2 - UPDATE [Win][UNIX/Linux] Drupal third-party
modules:
       Cross-site request forgery - Existing account 
Date:  07 October 2009
OS:    Windows Server 2008, Other Linux Variants, Windows Vista,
FreeBSD, AIX,
       OpenBSD, Windows 2000, SUSE, Other BSD Variants, HP-UX, Windows
XP,
       Ubuntu, Debian GNU/Linux, Mac OS X, Red Hat Linux, Windows 2003,
       Solaris, HP Tru64 UNIX, IRIX 
URL:   http://www.auscert.org.au/11651

Title: ESB-2009.1119.2 - UPDATE [HP-UX] Kerberos: Multiple
vulnerabilities 
Date:  05 October 2009
OS:    HP-UX 
URL:   http://www.auscert.org.au/11404

========================================================================
===
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert at auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business
hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
========================================================================
===