[AusNOG] AusCERT Week in Review - Week Ending 04/02/2011
Joel Hatton
joel at auscert.org.au
Mon Feb 7 10:28:39 EST 2011
AusCERT Week in Review
04 February 2011
Alerts, Advisories and Updates:
- - -------------------------------
Title: ASB-2011.0008 - [Win][UNIX/Linux] Wireshark: Multiple vulnerabilities
Date: 02 February 2011
URL: http://www.auscert.org.au/13900
External Security Bulletins:
- - ----------------------------
Title: ESB-2011.0117 - [RedHat] php53: Multiple vulnerabilities
Date: 04 February 2011
OS: Red Hat Linux
URL: http://www.auscert.org.au/13908
Title: ESB-2011.0116 - [RedHat] php: Multiple vulnerabilities
Date: 04 February 2011
OS: Red Hat Linux
URL: http://www.auscert.org.au/13907
Title: ESB-2011.0115 - [Win] Microsoft: Microsoft Security Bulletin Advance
Notification for February 2011
Date: 04 February 2011
OS: Windows 2003, Windows XP, Windows 7, Windows Vista, Windows Server 2008
URL: http://www.auscert.org.au/13906
Title: ESB-2011.0114 - [RedHat] postgresql84: Execute arbitrary code/commands
- Remote/unauthenticated
Date: 04 February 2011
OS: Red Hat Linux
URL: http://www.auscert.org.au/13905
Title: ESB-2011.0113 - [Win][UNIX/Linux][Debian] PostgreSQL: Execute arbitrary
code/commands - Remote/unauthenticated
Date: 04 February 2011
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Windows 7,
Mac OS X, Debian GNU/Linux, Ubuntu, HP-UX, Windows XP, Other BSD
Variants, SUSE, OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista,
Other Linux Variants, Windows Server 2008
URL: http://www.auscert.org.au/13904
Title: ESB-2011.0112 - [Win][UNIX/Linux] Drupal third-party modules: Access
confidential data - Remote with user interaction
Date: 03 February 2011
OS: IRIX, HP Tru64 UNIX, Solaris, Windows 2003, Red Hat Linux, Windows 7,
Mac OS X, Ubuntu, Debian GNU/Linux, Windows XP, HP-UX, Other BSD
Variants, SUSE, Windows 2000, OpenBSD, AIX, Windows Vista, FreeBSD,
Windows Server 2008, Other Linux Variants
URL: http://www.auscert.org.au/13903
Title: ESB-2011.0111 - ALERT [Cisco] Tandberg E, EX and C Series Endpoints:
Root compromise - Remote/unauthenticated
Date: 03 February 2011
OS: Cisco Products
URL: http://www.auscert.org.au/13902
Title: ESB-2011.0110 - [NetBSD] BIND: Denial of service -
Remote/unauthenticated
Date: 03 February 2011
OS: Other BSD Variants
URL: http://www.auscert.org.au/13901
Title: ESB-2011.0109 - [Win][Linux][OSX] Cisco Systems: Execute arbitrary
code/commands - Remote with user interaction
Date: 02 February 2011
OS: Windows 2003, Red Hat Linux, Windows 7, Mac OS X, Debian GNU/Linux,
Ubuntu, Windows XP, SUSE, Windows 2000, Windows Vista, Other Linux
Variants, Windows Server 2008
URL: http://www.auscert.org.au/13899
Title: ESB-2011.0108 - [Win][RedHat] Symantec IM Manager: Execute arbitrary
code/commands - Remote with user interaction
Date: 01 February 2011
OS: Windows 2003, Red Hat Linux, Windows XP, Windows 2000, Windows 7,
Windows Vista, Windows Server 2008
URL: http://www.auscert.org.au/13898
Title: ESB-2011.0107.2 - UPDATE [Win][Linux][HP-UX][Solaris][AIX] IBM DB2
Universal Database: Execute arbitrary code/commands -
Remote/unauthenticated
Date: 02 February 2011
OS: Windows Server 2008, Other Linux Variants, Windows Vista, AIX, Windows
2000, SUSE, HP-UX, Windows XP, Ubuntu, Debian GNU/Linux, Windows 7, Red
Hat Linux, Windows 2003, Solaris
URL: http://www.auscert.org.au/13897
Title: ESB-2011.0106 - [Win][Linux][HP-UX][Solaris] HP OpenView Performance
Insight Server: Execute arbitrary code/commands -
Remote/unauthenticated
Date: 01 February 2011
OS: Solaris, Red Hat Linux, Windows 2003, Windows 7, Debian GNU/Linux,
Ubuntu, Windows XP, HP-UX, SUSE, Windows 2000, Windows Vista, Windows
Server 2008, Other Linux Variants
URL: http://www.auscert.org.au/13896
Title: ESB-2011.0105 - [Debian] pcscd: Execute arbitrary code/commands -
Existing account
Date: 01 February 2011
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/13895
Title: ESB-2011.0104 - [Debian] freetype: Execute arbitrary code/commands -
Remote with user interaction
Date: 31 January 2011
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/13894
Title: ESB-2011.0103 - [Debian] exim4: Multiple vulnerabilities
Date: 31 January 2011
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/13893
Title: ESB-2011.0102 - [Debian] kernel: Multiple vulnerabilities
Date: 31 January 2011
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/13892
Title: ESB-2011.0101 - [RedHat] openoffice.org and openoffice2.org: Multiple
vulnerabilities
Date: 31 January 2011
OS: Red Hat Linux
URL: http://www.auscert.org.au/13891
Title: ESB-2011.0100 - [Win] Microsoft Windows: Access confidential data -
Remote with user interaction
Date: 31 January 2011
OS: Windows XP, Windows 2003, Windows 7, Windows Vista, Windows Server 2008
URL: http://www.auscert.org.au/13890
Title: ESB-2011.0096.2 - UPDATE [Win] Novell Zenworks Handheld Management:
Execute arbitrary code/commands - Remote/unauthenticated
Date: 02 February 2011
OS: Windows Server 2008, Windows Vista, Windows 7, Windows 2000, Windows
XP, Windows 2003
URL: http://www.auscert.org.au/13885
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert at auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
More information about the AusNOG
mailing list