[AusNOG] AusCERT Week in Review - Week Ending 30/10/2009 (AUSCERT#20073f686)
Daniel McNamara
daniel at auscert.org.au
Fri Oct 30 16:38:13 EST 2009
AusCERT Week in Review
30 October 2009
Papers, Articles and other documents:
-------------------------------------
Title: AusCERT Certificate Service Project Update - October 2009
Date: 29 October 2009
URL: http://www.auscert.org.au/11863
Title: Firefox - new versions available
Date: 27 October 2009
URL: http://www.auscert.org.au/11854
Alerts, Advisories and Updates:
-------------------------------
Title: ASB-2009.1117 - [Win][UNIX/Linux] wireshark: Denial of service -
Remote
with user interaction
Date: 30 October 2009
URL: http://www.auscert.org.au/11861
Title: ASB-2009.1115 - [Win][UNIX/Linux] Opera: Execute arbitrary
code/commands - Remote with user interaction
Date: 29 October 2009
URL: http://www.auscert.org.au/11858
Title: ASB-2009.1116 - [Win][Linux][AIX] IBM Lotus Connections: Cross-site
scripting - Remote with user interaction
Date: 29 October 2009
URL: http://www.auscert.org.au/11859
Title: ASB-2009.1114 - ALERT [Win][UNIX/Linux] Firefox: Multiple
vulnerabilities
Date: 28 October 2009
URL: http://www.auscert.org.au/11852
External Security Bulletins:
----------------------------
Title: ESB-2009.1461 - [Win][UNIX/Linux][Debian] libhtml-parser-perl: Denial
of service - Remote with user interaction
Date: 30 October 2009
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Mac OS X,
Debian GNU/Linux, Ubuntu, HP-UX, Windows XP, Other BSD Variants,
SUSE,
OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista, Other Linux
Variants, Windows Server 2008
URL: http://www.auscert.org.au/11862
Title: ESB-2009.1460 - [RedHat] pidgin: Denial of service -
Remote/unauthenticated
Date: 30 October 2009
OS: Red Hat Linux
URL: http://www.auscert.org.au/11860
Title: ESB-2009.1459 - [Win][UNIX/Linux] Drupal Third Party Modules:
Unauthorised access - Remote/unauthenticated
Date: 29 October 2009
OS: IRIX, HP Tru64 UNIX, Solaris, Windows 2003, Red Hat Linux, Mac OS X,
Ubuntu, Debian GNU/Linux, Windows XP, HP-UX, Other BSD Variants,
SUSE,
Windows 2000, OpenBSD, AIX, Windows Vista, FreeBSD, Windows Server
2008, Other Linux Variants
URL: http://www.auscert.org.au/11857
Title: ESB-2009.1458 - [Debian] xulrunner: Multiple vulnerabilities
Date: 29 October 2009
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/11856
Title: ESB-2009.1457 - [Debian] expat: Denial of service - Remote with user
interaction
Date: 29 October 2009
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/11855
Title: ESB-2009.1456 - [RedHat] Firefox/Seamonkey: Multiple vulnerabilities
Date: 28 October 2009
OS: Red Hat Linux
URL: http://www.auscert.org.au/11853
Title: ESB-2009.1455 - [Solaris][OpenSolaris] Solaris Trusted Extensions:
Execute arbitrary code/commands - Remote/unauthenticated
Date: 28 October 2009
OS: Solaris
URL: http://www.auscert.org.au/11851
Title: ESB-2009.1454 - [Solaris][OpenSolaris] PostgreSQL: Multiple
vulnerabilities
Date: 28 October 2009
OS: Solaris
URL: http://www.auscert.org.au/11850
Title: ESB-2009.1453 - [Solaris][OpenSolaris] FreeType 2 Font Engine:
Execute
arbitrary code/commands - Remote with user interaction
Date: 28 October 2009
OS: Solaris
URL: http://www.auscert.org.au/11849
Title: ESB-2009.1452 - [Win][VMware ESX][Linux][Mac][OSX] VMware ESX and
hosted products: Multiple vulnerabilities
Date: 28 October 2009
OS: Windows 2003, Red Hat Linux, Mac OS X, Ubuntu, Debian GNU/Linux,
Windows XP, Virtualisation, SUSE, Windows 2000, Windows Vista, Other
Linux Variants, Windows Server 2008
URL: http://www.auscert.org.au/11848
Title: ESB-2009.1451 - [RedHat] samba: Multiple vulnerabilities
Date: 28 October 2009
OS: Red Hat Linux
URL: http://www.auscert.org.au/11847
Title: ESB-2009.1450 - [UNIX/Linux][Mandriva] proftpd: Provide misleading
information - Remote/unauthenticated
Date: 27 October 2009
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Mac OS X, Ubuntu, Debian
GNU/Linux, HP-UX, Other BSD Variants, SUSE, OpenBSD, AIX, FreeBSD,
Other Linux Variants
URL: http://www.auscert.org.au/11846
Title: ESB-2009.1449 - [UNIX/Linux] Asterisk: Unauthorised access -
Remote/unauthenticated
Date: 27 October 2009
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Mac OS X, Ubuntu, Debian
GNU/Linux, HP-UX, Other BSD Variants, SUSE, OpenBSD, AIX, FreeBSD,
Other Linux Variants
URL: http://www.auscert.org.au/11845
Title: ESB-2009.1448 - [Win][UNIX/Linux][Debian] nginx: Denial of service -
Remote/unauthenticated
Date: 27 October 2009
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Mac OS X,
Debian GNU/Linux, Ubuntu, HP-UX, Windows XP, Other BSD Variants,
SUSE,
OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista, Other Linux
Variants, Windows Server 2008
URL: http://www.auscert.org.au/11844
Title: ESB-2009.1447 - [SUSE][OpenSUSE] apache: Multiple vulnerabilities
Date: 27 October 2009
OS: Other Linux Variants, SUSE
URL: http://www.auscert.org.au/11843
Title: ESB-2009.1446 - [SUSE][OpenSUSE] acroread: Multiple vulnerabilities
Date: 27 October 2009
OS: Other Linux Variants, SUSE
URL: http://www.auscert.org.au/11842
Title: ESB-2009.1445 - [SUSE][OpenSUSE] SUSE: Multiple vulnerabilities
Date: 27 October 2009
OS: Other Linux Variants, SUSE
URL: http://www.auscert.org.au/11841
Title: ESB-2009.1444 - [Solaris] Adobe Reader: Multiple vulnerabilities
Date: 26 October 2009
OS: Solaris
URL: http://www.auscert.org.au/11840
Title: ESB-2009.1443 - [Solaris] xscreensaver: Reduced security -
Console/physical
Date: 26 October 2009
OS: Solaris
URL: http://www.auscert.org.au/11839
Title: ESB-2009.1442 - [Win][UNIX/Linux][Debian] smarty: Multiple
vulnerabilities
Date: 26 October 2009
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Mac OS X,
Debian GNU/Linux, Ubuntu, HP-UX, Windows XP, Other BSD Variants,
SUSE,
OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista, Other Linux
Variants, Windows Server 2008
URL: http://www.auscert.org.au/11838
Title: ESB-2009.1441 - [Debian] phpmyadmin: Multiple vulnerabilities
Date: 26 October 2009
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/11837
Title: ESB-2009.1440 - [UNIX/Linux][Debian] mimetex: Multiple
vulnerabilities
Date: 26 October 2009
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Mac OS X, Debian
GNU/Linux, Ubuntu, HP-UX, Other BSD Variants, SUSE, OpenBSD, AIX,
FreeBSD, Other Linux Variants
URL: http://www.auscert.org.au/11836
Title: ESB-2009.1439 - [Debian] kdelibs: Provide misleading information -
Remote with user interaction
Date: 26 October 2009
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/11835
Title: ESB-2009.1438 - [Linux][Debian] kernel: Multiple vulnerabilities
Date: 26 October 2009
OS: Red Hat Linux, Other Linux Variants, SUSE, Debian GNU/Linux, Ubuntu
URL: http://www.auscert.org.au/11834
Title: ESB-2009.1437 - [Debian] advi: Execute arbitrary code/commands -
Remote
with user interaction
Date: 26 October 2009
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/11833
Title: ESB-2009.1411.3 - UPDATE ALERT [Win] Microsoft: Administrator
compromise - Remote with user interaction
Date: 29 October 2009
OS: Windows Server 2008, Windows Vista, Windows 2000, Windows XP, Windows
2003
URL: http://www.auscert.org.au/11799
Title: ESB-2009.1391.2 - UPDATE [Solaris][OpenSolaris] Thunderbird: Multiple
vulnerabilities
Date: 27 October 2009
OS: Solaris
URL: http://www.auscert.org.au/11778
Title: ESB-2009.1172.2 - UPDATE ALERT [Win] Microsoft Office Web Components:
Execute arbitrary code/commands - Remote with user interaction
Date: 28 October 2009
OS: Windows Server 2008, Windows Vista, Windows 2000, Windows XP, Windows
2003
URL: http://www.auscert.org.au/11472
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert at auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20091030/ed5ace74/attachment.html>
More information about the AusNOG
mailing list