[AusNOG] AusCERT Week in Review - Week Ending 7/5/2010 (AUSCERT#20073f686)
Daniel McNamara
daniel at auscert.org.au
Fri May 7 15:05:08 EST 2010
Alerts, Advisories and Updates:
-------------------------------
Title: ASB-2010.0117 - [Win][RedHat][HP-UX][Solaris][AIX][SUSE] IBM
WebSphere
MQ: Denial of service - Remote/unauthenticated
Date: 07 May 2010
URL: http://www.auscert.org.au/12773
Title: ASB-2010.0118 - [Win][UNIX/Linux] wireshark: Denial of service -
Remote
with user interaction
Date: 07 May 2010
URL: http://www.auscert.org.au/12774
Title: ASB-2010.0113.2 - UPDATE [Win] Google Chrome prior to 4.1.249.1064:
Multiple vulnerabilities
Date: 05 May 2010
URL: http://www.auscert.org.au/12749
Title: ASB-2010.0116 - [Printer] Lexmark Printers and MarkNet devices:
Denial
of service - Remote/unauthenticated
Date: 05 May 2010
URL: http://www.auscert.org.au/12760
Title: ASB-2010.0115 - [Win][Mac][OSX] Adobe Photoshop CS4: Execute
arbitrary
code/commands - Remote with user interaction
Date: 04 May 2010
URL: http://www.auscert.org.au/12758
Title: ASB-2010.0114 - [Win] Opera: Execute arbitrary code/commands - Remote
with user interaction
Date: 03 May 2010
URL: http://www.auscert.org.au/12756
External Security Bulletins:
----------------------------
Title: ESB-2010.0426 - [UNIX/Linux] fetchmail: Denial of service - Remote
with
user interaction
Date: 07 May 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Mac OS X, Ubuntu, Debian
GNU/Linux, HP-UX, Other BSD Variants, SUSE, OpenBSD, AIX, FreeBSD,
Other Linux Variants
URL: http://www.auscert.org.au/12772
Title: ESB-2010.0425 - [SUSE] kernel: Multiple vulnerabilities
Date: 07 May 2010
OS: SUSE
URL: http://www.auscert.org.au/12771
Title: ESB-2010.0424 - [UNIX/Linux][Ubuntu] dvipng: Execute arbitrary
code/commands - Remote with user interaction
Date: 07 May 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Mac OS X, Ubuntu, Debian
GNU/Linux, HP-UX, Other BSD Variants, SUSE, OpenBSD, AIX, FreeBSD,
Other Linux Variants
URL: http://www.auscert.org.au/12770
Title: ESB-2010.0423 - [Win] HP LoadRunner Agent: Execute arbitrary
code/commands - Remote/unauthenticated
Date: 07 May 2010
OS: Windows 2003, HP-UX, Windows XP, Windows 2000, Windows 7, Windows
Vista, Windows Server 2008
URL: http://www.auscert.org.au/12769
Title: ESB-2010.0422 - [Win] VMware View 3.1.x: Cross-site scripting -
Remote
with user interaction
Date: 07 May 2010
OS: Windows 2003, Windows XP, Windows 2000, Windows 7, Windows Vista,
Windows Server 2008
URL: http://www.auscert.org.au/12768
Title: ESB-2010.0421 - [UNIX/Linux][RedHat] tetex: Multiple vulnerabilities
Date: 07 May 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Mac OS X, Ubuntu, Debian
GNU/Linux, HP-UX, Other BSD Variants, SUSE, OpenBSD, AIX, FreeBSD,
Other Linux Variants
URL: http://www.auscert.org.au/12767
Title: ESB-2010.0420 - [RedHat] kernel: Multiple vulnerabilities
Date: 07 May 2010
OS: Red Hat Linux
URL: http://www.auscert.org.au/12766
Title: ESB-2010.0419 - [Win][UNIX/Linux] Drupal Third-Party Modules:
Unauthorised access - Existing account
Date: 06 May 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Windows 7,
Mac OS X, Ubuntu, Debian GNU/Linux, HP-UX, Windows XP, Other BSD
Variants, SUSE, OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista,
Other Linux Variants, Windows Server 2008
URL: http://www.auscert.org.au/12765
Title: ESB-2010.0418 - [Win][UNIX/Linux] Drupal Third-Party Module:
Cross-site
scripting - Remote with user interaction
Date: 06 May 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Windows 7,
Mac OS X, Ubuntu, Debian GNU/Linux, HP-UX, Windows XP, Other BSD
Variants, SUSE, OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista,
Other Linux Variants, Windows Server 2008
URL: http://www.auscert.org.au/12764
Title: ESB-2010.0417 - [RedHat] httpd: Multiple vulnerabilities
Date: 06 May 2010
OS: Red Hat Linux
URL: http://www.auscert.org.au/12763
Title: ESB-2010.0416 - [RedHat] kernel: Multiple vulnerabilities
Date: 06 May 2010
OS: Red Hat Linux
URL: http://www.auscert.org.au/12762
Title: ESB-2010.0415 - [Debian] iscsitarget: Denial of service -
Remote/unauthenticated
Date: 06 May 2010
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/12761
Title: ESB-2010.0414 - [Win][UNIX/Linux] mediawiki: Cross-site request
forgery
- Remote with user interaction
Date: 04 May 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Windows 2003, Red Hat Linux, Windows 7,
Mac OS X, Debian GNU/Linux, Ubuntu, Windows XP, HP-UX, Other BSD
Variants, SUSE, Windows 2000, OpenBSD, AIX, Windows Vista, FreeBSD,
Windows Server 2008, Other Linux Variants
URL: http://www.auscert.org.au/12759
Title: ESB-2010.0413 - [RedHat] Red Hat Enterprise Linux 3 - 6-Month End Of
Life Notice
Date: 04 May 2010
OS: Red Hat Linux
URL: http://www.auscert.org.au/12757
Title: ESB-2010.0412 - [Debian] squidguard: Multiple vulnerabilities
Date: 03 May 2010
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/12755
Title: ESB-2010.0398.2 - UPDATE [Win][UNIX/Linux][Debian] cacti: Execute
arbitrary code/commands - Remote/unauthenticated
Date: 05 May 2010
OS: Windows Server 2008, Other Linux Variants, Windows Vista, FreeBSD,
AIX,
OpenBSD, Windows 2000, SUSE, Other BSD Variants, HP-UX, Windows XP,
Ubuntu, Debian GNU/Linux, Mac OS X, Windows 7, Red Hat Linux, Windows
2003, Solaris, HP Tru64 UNIX, IRIX
URL: http://www.auscert.org.au/12738
Title: ESB-2010.0231.2 - UPDATE [Win] Windows Movie Maker: Execute arbitrary
code/commands - Remote with user interaction
Date: 04 May 2010
OS: Windows 7, Windows XP, Windows Vista
URL: http://www.auscert.org.au/12499
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20100507/87d5cc09/attachment.html>
More information about the AusNOG
mailing list