[AusNOG] AusCERT Week in Review - Week Ending 25/06/2010 (AUSCERT#20073f686)
Jonathan Levine
jonathan at auscert.org.au
Fri Jun 25 16:13:16 EST 2010
AusCERT Week in Review
25 June 2010
Web Log Entries:
- ----------------
Title: Australian House of Representatives cybercrime report released
Date: 22 June 2010
URL: http://www.auscert.org.au/12950
Alerts, Advisories and Updates:
- -------------------------------
Title: ASB-2010.0152 - [Win] Opera prior to 10.54: Cross-site scripting -
Remote with user interaction
Date: 24 June 2010
URL: http://www.auscert.org.au/12963
Title: ASB-2010.0153 - [UNIX/Linux] Apache Axis2 prior to 1.5.2 and 1.6:
Denial of service - Remote/unauthenticated
Date: 24 June 2010
URL: http://www.auscert.org.au/12964
Title: ASB-2010.0151 - [Win][UNIX/Linux] Firefox: Multiple vulnerabilities
Date: 23 June 2010
URL: http://www.auscert.org.au/12961
Title: ASB-2010.0150 - [Win] Novell Administration Console prior to version
3.1 Support Pack 2: Modify arbitrary files - Remote/unauthenticated
Date: 21 June 2010
URL: http://www.auscert.org.au/12949
External Security Bulletins:
- ----------------------------
Title: ESB-2009.1555.2 - UPDATE [Solaris][OpenSolaris] Transport Layer
Security and Secure Sockets Layer 3.0: Unauthorised access -
Remote/unauthenticated
Date: 24 June 2010
OS: Solaris, Solaris
URL: http://www.auscert.org.au/11992
Title: ESB-2010.0568 - [Linux][HP-UX][Solaris][AIX] IBM WebSphere
Application
Server: Cross-site scripting - Remote with user interaction
Date: 25 June 2010
OS: Solaris, Red Hat Linux, HP-UX, SUSE, AIX, Other Linux Variants,
Debian
GNU/Linux, Ubuntu
URL: http://www.auscert.org.au/12968
Title: ESB-2009.0568 -- [Win][Linux][HP-UX][Solaris] -- HP OpenView SNMP
Emanate Master Agent: Inappropriate Access
Date: 24 June 2010
OS: Solaris, HP-UX, Ubuntu, Debian GNU/Linux, Other Linux Variants, Red
Hat
Linux, Windows Server 2008, Windows Vista, Windows 2003, Windows
2000,
Windows XP
URL: http://www.auscert.org.au/11152
Title: ESB-2010.0567.2 - UPDATE [Win][Netware][RedHat][SUSE] Novell
iManager:
Multiple vulnerabilities
Date: 25 June 2010
OS: Windows 2003, Windows XP, SUSE, Windows 2000, Windows 7, Windows
Vista,
Windows Server 2008, Novell Netware, Windows 2003, Windows XP, SUSE,
Windows 2000, Windows 7, Windows Vista, Windows Server 2008, Novell
Netware
URL: http://www.auscert.org.au/12967
Title: ESB-2010.0566 - [HP-UX] Kerberos: Multiple vulnerabilities
Date: 24 June 2010
OS: HP-UX
URL: http://www.auscert.org.au/12966
Title: ESB-2010.0565 - [Win][UNIX/Linux] Drupal Third-party modules:
Multiple
vulnerabilities
Date: 24 June 2010
OS: Other BSD Variants, Windows XP, HP-UX, Debian GNU/Linux, Ubuntu, Mac
OS
X, Windows 7, Windows 2003, Red Hat Linux, Solaris, HP Tru64 UNIX,
IRIX, SUSE, OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista, Other
Linux Variants, Windows Server 2008
URL: http://www.auscert.org.au/12965
Title: ESB-2010.0564 - [RedHat] Firefox: Multiple vulnerabilities
Date: 23 June 2010
OS: Red Hat Linux
URL: http://www.auscert.org.au/12962
Title: ESB-2010.0563 - [RedHat] rhev-hypervisor: Multiple vulnerabilities
Date: 23 June 2010
OS: Red Hat Linux
URL: http://www.auscert.org.au/12960
Title: ESB-2010.0562 - [RedHat] vdsm: Access confidential data - Existing
account
Date: 23 June 2010
OS: Red Hat Linux, Virtualisation
URL: http://www.auscert.org.au/12959
Title: ESB-2010.0561 - [RedHat] Red Hat Enterprise Virtualization Manager:
Access confidential data - Existing account
Date: 23 June 2010
OS: Red Hat Linux
URL: http://www.auscert.org.au/12958
Title: ESB-2010.0560 - [RedHat] seamonkey: Multiple vulnerabilities
Date: 23 June 2010
OS: Red Hat Linux
URL: http://www.auscert.org.au/12957
Title: ESB-2010.0559 - [Netware] Novell NetWare: Execute arbitrary
code/commands - Remote/unauthenticated
Date: 22 June 2010
OS: Novell Netware
URL: http://www.auscert.org.au/12956
Title: ESB-2010.0558 - [Win][UNIX/Linux] SAP J2EE Engine Core: Unauthorised
access - Remote/unauthenticated
Date: 22 June 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Windows 2003, Red Hat Linux, Windows 7,
Mac OS X, Ubuntu, Debian GNU/Linux, Windows XP, HP-UX, Other BSD
Variants, SUSE, Windows 2000, OpenBSD, AIX, Windows Vista, FreeBSD,
Windows Server 2008, Other Linux Variants
URL: http://www.auscert.org.au/12955
Title: ESB-2010.0557 - [UNIX/Linux][Ubuntu] opie: Denial of service - Remote
with user interaction
Date: 22 June 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Mac OS X, Ubuntu, Debian
GNU/Linux, HP-UX, Other BSD Variants, SUSE, OpenBSD, AIX, FreeBSD,
Other Linux Variants
URL: http://www.auscert.org.au/12954
Title: ESB-2010.0556 - [UNIX/Linux][Mandriva] SquirrelMail: Reduced security
-
Existing account
Date: 22 June 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Mac OS X, Ubuntu, Debian
GNU/Linux, HP-UX, Other BSD Variants, SUSE, OpenBSD, AIX, FreeBSD,
Other Linux Variants
URL: http://www.auscert.org.au/12953
Title: ESB-2010.0555 - Apple iOS 2.0 through 3.1.3 for iPhone 3G and iPod
touch: Multiple vulnerabilities
Date: 22 June 2010
URL: http://www.auscert.org.au/12952
Title: ESB-2010.0554 - [Win][Linux][Solaris][AIX] Novell Access Manager:
Execute arbitrary code/commands - Remote/unauthenticated
Date: 22 June 2010
OS: Solaris, Red Hat Linux, Windows 2003, Windows 7, Debian GNU/Linux,
Ubuntu, Windows XP, SUSE, Windows 2000, AIX, Windows Vista, Windows
Server 2008, Other Linux Variants
URL: http://www.auscert.org.au/12951
Title: ESB-2010.0553 - [Linux][HP-UX][Solaris][AIX] IBM WebSphere
Application
Server: Denial of service - Remote with user interaction
Date: 21 June 2010
OS: Solaris, Red Hat Linux, HP-UX, SUSE, AIX, Other Linux Variants,
Debian
GNU/Linux, Ubuntu
URL: http://www.auscert.org.au/12948
Title: ESB-2010.0552 - [Solaris] Extensible Firmware Interface: Denial of
service - Existing account
Date: 21 June 2010
OS: Solaris
URL: http://www.auscert.org.au/12947
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert at auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
iD8DBQFMJEbM/iFOrG6YcBERAtSEAJ4zN3u13Qw/QpMRQRuvzjLHCNGQSACfb0jE
enoPCb4LftpJnnUlPmfoTac=
=az+B
-----END PGP SIGNATURE-----
More information about the AusNOG
mailing list