[AusNOG] AusCERT Week in Review - Week Ending 10/09/2010 (AUSCERT#20073F686)
Richard Billington
richard at auscert.org.au
Fri Sep 10 15:58:07 EST 2010
AusCERT Week in Review
10 September 2010
Papers, Articles and other documents:
- - -------------------------------------
Title: We've all heard of a DLL vul, but it could be much worse
Date: 10 September 2010
URL: http://www.auscert.org.au/13318
Title: Rogue:MSIL/Zeven serves up look-alike browser warning pages
Date: 08 September 2010
URL: http://www.auscert.org.au/13304
Title: Dangerous Twitter XSS Vulnerability
Date: 07 September 2010
URL: http://www.auscert.org.au/13295
Title: New 64-Bit Windows Rootkit
Date: 06 September 2010
URL: http://www.auscert.org.au/13293
Alerts, Advisories and Updates:
- - -------------------------------
Title: ASB-2010.0204 - [Win][UNIX/Linux] Opera prior to 10.62: Execute
arbitrary code/commands - Remote with user interaction
Date: 10 September 2010
URL: http://www.auscert.org.au/13320
Title: ASB-2010.0199.2 - UPDATE [Win][UNIX/Linux] phpMyAdmin prior to 3.3.6:
Cross-site scripting - Remote with user interaction
Date: 09 September 2010
URL: http://www.auscert.org.au/13275
Title: ASB-2010.0200.2 - UPDATE [Win][RedHat][Solaris][SUSE] Novell Identity
Manager 3.6.1: Administrator compromise - Existing account
Date: 09 September 2010
URL: http://www.auscert.org.au/13279
Title: ASB-2010.0203 - [Win][UNIX/Linux] phpMyAdmin prior to 3.3.7: Cross-site
scripting - Remote with user interaction
Date: 09 September 2010
URL: http://www.auscert.org.au/13308
Title: ASB-2010.0201.2 - UPDATE [Win][Linux][OSX] Google Chrome: Multiple
vulnerabilities
Date: 08 September 2010
URL: http://www.auscert.org.au/13288
Title: ASB-2010.0202 - [Win][UNIX/Linux] Firefox: Multiple vulnerabilities
Date: 08 September 2010
URL: http://www.auscert.org.au/13303
External Security Bulletins:
- - ----------------------------
Title: ESB-2010.0817 - [Win][UNIX/Linux][Debian] couchdb: Execute arbitrary
code/commands - Existing account
Date: 10 September 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Windows 7,
Mac OS X, Debian GNU/Linux, Ubuntu, HP-UX, Windows XP, Other BSD
Variants, SUSE, OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista,
Other Linux Variants, Windows Server 2008
URL: http://www.auscert.org.au/13319
Title: ESB-2010.0816 - [Win][Netware][RedHat][SUSE] HP Data Protector Express:
Execute arbitrary code/commands - Existing account
Date: 10 September 2010
OS: Windows 2003, Windows XP, SUSE, Windows 2000, Windows 7, Windows Vista,
Windows Server 2008, Novell Netware
URL: http://www.auscert.org.au/13317
Title: ESB-2010.0815 - [Win][UNIX/Linux] Yr Weatherdata (Drupal third-party
module): Execute arbitrary code/commands - Remote with user interaction
Date: 09 September 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Windows 2003, Red Hat Linux, Windows 7,
Mac OS X, Ubuntu, Debian GNU/Linux, Windows XP, HP-UX, Other BSD
Variants, SUSE, Windows 2000, OpenBSD, AIX, Windows Vista, FreeBSD,
Windows Server 2008, Other Linux Variants
URL: http://www.auscert.org.au/13316
Title: ESB-2010.0814 - [Win] HP Data Protector Express: Denial of service -
Existing account
Date: 09 September 2010
OS: Windows 2003, Windows XP, Windows 2000, Windows 7, Windows Vista,
Windows Server 2008
URL: http://www.auscert.org.au/13315
Title: ESB-2010.0813 - [Win][VMware ESX][RedHat][Solaris][AIX][SUSE] RSA
Access Manager Agent 4.7.1: Unauthorised access - Unknown/unspecified
Date: 09 September 2010
OS: Solaris, Windows 2003, Red Hat Linux, Windows 7, Windows XP,
Virtualisation, SUSE, Windows 2000, AIX, Windows Vista, Windows Server
2008
URL: http://www.auscert.org.au/13314
Title: ESB-2010.0812 - [Win][UNIX/Linux] EMC Celerra: Provide misleading
information - Remote/unauthenticated
Date: 09 September 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Windows 7,
Mac OS X, Ubuntu, Debian GNU/Linux, HP-UX, Windows XP, Other BSD
Variants, SUSE, OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista,
Other Linux Variants, Windows Server 2008
URL: http://www.auscert.org.au/13313
Title: ESB-2010.0811 - [Win][VMware ESX][RedHat][Solaris][AIX][SUSE] RSA
Access Manager Server: Unauthorised access - Unknown/unspecified
Date: 09 September 2010
OS: Solaris, Windows 2003, Windows XP, Virtualisation, SUSE, Windows 2000,
Windows 7, AIX, Windows Vista, Windows Server 2008
URL: http://www.auscert.org.au/13312
Title: ESB-2010.0810 - Cisco Wireless LAN Controllers: Multiple
vulnerabilities
Date: 09 September 2010
OS: Cisco Products
URL: http://www.auscert.org.au/13311
Title: ESB-2010.0809 - [Apple iOS][OSX] Apple iOS: Multiple vulnerabilities
Date: 09 September 2010
OS: Apple iOS
URL: http://www.auscert.org.au/13310
Title: ESB-2010.0808 - [Debian] xulrunner: Multiple vulnerabilities
Date: 09 September 2010
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/13309
Title: ESB-2010.0807 - ALERT [Win][UNIX/Linux] Adobe Reader and Adobe Acrobat:
Execute arbitrary code/commands - Remote with user interaction
Date: 09 September 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Windows 2003, Red Hat Linux, Windows 7,
Mac OS X, Ubuntu, Debian GNU/Linux, Windows XP, HP-UX, Other BSD
Variants, SUSE, Windows 2000, OpenBSD, AIX, Windows Vista, FreeBSD,
Windows Server 2008, Other Linux Variants
URL: http://www.auscert.org.au/13307
Title: ESB-2010.0806 - [Win][UNIX/Linux][RedHat] seamonkey, firefox and
thunderbird: Multiple vulnerabilities
Date: 08 September 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Windows 7,
Mac OS X, Ubuntu, Debian GNU/Linux, HP-UX, Windows XP, Other BSD
Variants, SUSE, OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista,
Other Linux Variants, Windows Server 2008
URL: http://www.auscert.org.au/13305
Title: ESB-2010.0805 - [Win][OSX] Safari: Multiple vulnerabilities
Date: 08 September 2010
OS: Windows 2003, Windows XP, Windows 2000, Windows 7, Windows Vista,
Windows Server 2008, Mac OS X
URL: http://www.auscert.org.au/13302
Title: ESB-2010.0804 - [RedHat] rpm: Reduced security - Existing account
Date: 08 September 2010
OS: Red Hat Linux
URL: http://www.auscert.org.au/13301
Title: ESB-2010.0803 - [RedHat] kernel: Execute arbitrary code/commands -
Existing account
Date: 08 September 2010
OS: Red Hat Linux
URL: http://www.auscert.org.au/13300
Title: ESB-2010.0802 - [UNIX/Linux][RedHat] sudo: Root compromise - Existing
account
Date: 08 September 2010
OS: HP Tru64 UNIX, Solaris, IRIX, OpenBSD, Other BSD Variants, FreeBSD,
HP-UX, SUSE, Ubuntu, Debian GNU/Linux, Other Linux Variants, Red Hat
Linux, AIX, Mac OS X
URL: http://www.auscert.org.au/13299
Title: ESB-2010.0801 - [Debian] freetype: Multiple vulnerabilities
Date: 08 September 2010
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/13298
Title: ESB-2010.0800 - [Win][VMware ESX][Netware][Linux][Solaris] HP ProLiant
G6 Lights-Out 100 Remote Management: Denial of service -
Remote/unauthenticated
Date: 08 September 2010
OS: Solaris, Windows 2003, Red Hat Linux, Windows 7, Novell Netware,
Ubuntu, Debian GNU/Linux, HP-UX, Windows XP, Virtualisation, SUSE,
Windows 2000, Windows Vista, Windows Server 2008, Other Linux Variants
URL: http://www.auscert.org.au/13297
Title: ESB-2010.0799 - [Win][UNIX/Linux] Squid: Denial of service -
Remote/unauthenticated
Date: 07 September 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Windows 2003, Red Hat Linux, Windows 7,
Mac OS X, Ubuntu, Debian GNU/Linux, Windows XP, HP-UX, Other BSD
Variants, SUSE, Windows 2000, OpenBSD, AIX, Windows Vista, FreeBSD,
Windows Server 2008, Other Linux Variants
URL: http://www.auscert.org.au/13296
Title: ESB-2010.0798 - [UNIX/Linux][Debian] quagga: Denial of service -
Remote/unauthenticated
Date: 07 September 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Mac OS X, Debian
GNU/Linux, Ubuntu, HP-UX, Other BSD Variants, SUSE, OpenBSD, AIX,
FreeBSD, Other Linux Variants
URL: http://www.auscert.org.au/13294
Title: ESB-2010.0797 - [SUSE] kernel: Multiple vulnerabilities
Date: 06 September 2010
OS: SUSE
URL: http://www.auscert.org.au/13292
Title: ESB-2010.0796 - [UNIX/Linux][Debian] smbind: Administrator compromise -
Remote/unauthenticated
Date: 06 September 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Mac OS X, Debian
GNU/Linux, Ubuntu, HP-UX, Other BSD Variants, SUSE, OpenBSD, AIX,
FreeBSD, Other Linux Variants
URL: http://www.auscert.org.au/13291
Title: ESB-2010.0795 - [UNIX/Linux][Debian] barnowl: Execute arbitrary
code/commands - Remote with user interaction
Date: 06 September 2010
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Mac OS X, Debian
GNU/Linux, Ubuntu, HP-UX, Other BSD Variants, SUSE, OpenBSD, AIX,
FreeBSD, Other Linux Variants
URL: http://www.auscert.org.au/13290
Title: ESB-2010.0778.2 - UPDATE [Win][UNIX/Linux][Debian] typo3-src: Execute
arbitrary code/commands - Remote with user interaction
Date: 08 September 2010
OS: Windows Server 2008, Other Linux Variants, Windows Vista, FreeBSD, AIX,
OpenBSD, Windows 2000, SUSE, Other BSD Variants, HP-UX, Windows XP,
Ubuntu, Debian GNU/Linux, Mac OS X, Windows 7, Red Hat Linux, Windows
2003, Solaris, HP Tru64 UNIX, IRIX
URL: http://www.auscert.org.au/13267
Title: ESB-2010.0759.2 - UPDATE [Win] Microsoft Windows: Execute arbitrary
code/commands - Remote/unauthenticated
Date: 06 September 2010
OS: Windows Server 2008, Windows Vista, Windows 7, Windows 2000, Windows
XP, Windows 2003
URL: http://www.auscert.org.au/13246
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert at auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
More information about the AusNOG
mailing list