[AusNOG] AusCERT Week in Review - Week Ending 15/07/2011 (AUSCERT#20073f686)

Jonathan Levine jonathan at auscert.org.au
Fri Jul 15 15:35:33 EST 2011 

AusCERT Week in Review
15 July 2011

External Security Bulletins:
- ----------------------------
Title: ESB-2011.0727 - [Win] Citrix Access Gateway Plug-in: Execute
arbitrary
       code/commands - Remote with user interaction 
Date:  15 July 2011
OS:    Windows 2003, Windows XP, Windows 2000, Windows 7, Windows Vista,
       Windows Server 2008 
URL:   http://www.auscert.org.au/14589

Title: ESB-2011.0726 - [Win][UNIX/Linux] Apache Tomcat: Denial of service -
       Remote with user interaction 
Date:  14 July 2011
OS:    IRIX, HP Tru64 UNIX, Solaris, Windows 2003, Red Hat Linux, Windows 7,
       Mac OS X, Ubuntu, Debian GNU/Linux, Windows XP, HP-UX, Other BSD
       Variants, SUSE, Windows 2000, OpenBSD, AIX, Windows Vista, FreeBSD,
       Windows Server 2008, Other Linux Variants 
URL:   http://www.auscert.org.au/14588

Title: ESB-2011.0725 - [Win][Netware][Linux][Solaris][AIX] BlackBerry
       Enterprise Server: Denial of service - Existing account 
Date:  13 July 2011
OS:    Solaris, Windows 2003, Red Hat Linux, Windows 7, Novell Netware,
       Ubuntu, Debian GNU/Linux, Windows XP, SUSE, Windows 2000, AIX,
Windows
       Vista, Windows Server 2008, Other Linux Variants 
URL:   http://www.auscert.org.au/14587

Title: ESB-2011.0724 - [RedHat] NetworkManager: Unauthorised access -
Existing
       account 
Date:  13 July 2011
OS:    Red Hat Linux 
URL:   http://www.auscert.org.au/14586

Title: ESB-2011.0723 - [RedHat] kernel: Denial of service -
       Remote/unauthenticated 
Date:  13 July 2011
OS:    Red Hat Linux 
URL:   http://www.auscert.org.au/14585

Title: ESB-2011.0722 - [Win] Microsoft Windows: Administrator compromise -
       Remote with user interaction 
Date:  13 July 2011
OS:    Windows 2003, Windows XP, Windows 7, Windows Vista, Windows Server
2008
URL:   http://www.auscert.org.au/14584

Title: ESB-2011.0721 - [Win] Microsoft Visio 2003 Service Pack 3: Execute
       arbitrary code/commands - Remote with user interaction 
Date:  13 July 2011
OS:    Windows 2003, Windows XP, Windows 2000, Windows 7, Windows Vista,
       Windows Server 2008 
URL:   http://www.auscert.org.au/14583

Title: ESB-2011.0720 - [Win] Microsoft Windows: Administrator compromise -
       Existing account 
Date:  13 July 2011
OS:    Windows 2003, Windows XP, Windows 7, Windows Vista, Windows Server
2008
URL:   http://www.auscert.org.au/14582

Title: ESB-2011.0719 - ALERT [Win] Windows Bluetooth Stack: Execute
arbitrary
       code/commands - Remote/unauthenticated 
Date:  13 July 2011
OS:    Windows Vista, Windows 7 
URL:   http://www.auscert.org.au/14581

Title: ESB-2011.0718 - [Win] Trend Micro Control Manager: Execute arbitrary
       code/commands - Remote with user interaction 
Date:  12 July 2011
OS:    Windows 2003, Windows Server 2008 
URL:   http://www.auscert.org.au/14580

Title: ESB-2011.0717 - [Debian] xml-security-c: Execute arbitrary
       code/commands - Remote/unauthenticated 
Date:  12 July 2011
OS:    Debian GNU/Linux 
URL:   http://www.auscert.org.au/14579

Title: ESB-2011.0716 - [SUSE] bind: Denial of service -
Remote/unauthenticated
Date:  11 July 2011
OS:    SUSE 
URL:   http://www.auscert.org.au/14578

Title: ESB-2011.0715 - [Win][Solaris] HP Business Availability Center:
Denial
       of service - Remote/unauthenticated 
Date:  11 July 2011
OS:    Solaris, Windows 2003, HP-UX, Windows XP, Windows 2000, Windows 7,
       Windows Vista, Windows Server 2008 
URL:   http://www.auscert.org.au/14577

Title: ESB-2011.0714 - [Debian] xml-security-c: Execute arbitrary
       code/commands - Remote/unauthenticated 
Date:  11 July 2011
OS:    Debian GNU/Linux 
URL:   http://www.auscert.org.au/14576

Title: ESB-2011.0713.2 - UPDATE [Debian] asterisk: Denial of service -
       Remote/unauthenticated 
Date:  12 July 2011
OS:    Debian GNU/Linux, Debian GNU/Linux 
URL:   http://www.auscert.org.au/14575



===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert at auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================

More information about the AusNOG mailing list