|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Security Threat Watch 018
From: Security Threat Watch (stw
update.networkcomputing.com)
Date: Mon Mar 01 2004 - 13:04:05 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Security Threat Watch
Number 018
Monday, March 1, 2004
Created for you by Network Computing & Neohapsis
--- Security News ----------------------------------------------
A lot of low- and moderate-risk vulnerabilities were released last week.
On one hand, it is nice to see a growing interest in making software
applications secure. On the other hand, it is a bit sad to see vendors
still repeating the same general security mistakes ad nauseam. The
primary/large software providers definitely have put forth more effort
to quash security bugs lately, and now we are seeing the secondary
software providers go through the same growing pains and learning
experiences.
This week's most notable bugs include a remote buffer overflow in the
Windows SMB protocol processing done by various RealSecure and BlackICE
IDS installations. Shops (particularly ISPs and virtual hosting
providers) using FreeBSD's jail features also should look into the
announced bug, which allows a jailed process to affect other jails.
Until next week,
- The Neohapsis Security Threat Watch Team
--- Advertisement -----------------------------------------------------
Join InformationWeek for a FREE on-demand NetSeminar
on Building a Business Case for RISC to IA Migration.
See the industry trends, forecasts, and ROI tools
and services that build business justification for
moving to Intel Architecture-based Dell servers.
Register now and view at your convenience:
--- New Vulnerabilities -----------------------------------------------
Below is a list of new vulnerabilities announced this week.
Vulnerabilities considered to be 'critical' involve highly-deployed
software, or carry a high-risk of system compromise. Note that
vulnerabilities not highlighted may still be of critical severity
to your environment.
**** Highlighted critical vulnerabilities ****
RealSecure/BlackICE: SMB processing remote heap overflow
FreeBSD: jailed process can access other jails (FreeBSD-SA-04:03.jail)
**** Newly announced vulnerabilities this week ****
____Windows____
Apache/cygwin: Web root escaping vulnerability
http://archives.neohapsis.com/archives/bugtraq/2004-02/0622.html
BadBlue 2.4: phptest.php information disclosure
http://archives.neohapsis.com/archives/bugtraq/2004-02/0640.html
Dell OpenManage Web Server 3.4.0: large POST request remote overflow
http://archives.neohapsis.com/archives/bugtraq/2004-02/0651.html
Dell TrueMobile Wireless card: driver utilities allow local compromise
http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0043.html
FreeChat 1.1.1a: malformed communication DoS
http://archives.neohapsis.com/archives/bugtraq/2004-02/0648.html
GateKeeper Pro 4.7: large HTTP request remote overflow
http://archives.neohapsis.com/archives/bugtraq/2004-02/0579.html
Ghost Recon: malformed game traffic remote DoS
http://archives.neohapsis.com/archives/bugtraq/2004-02/0623.html
Haegemonia 1.07: large chat message remote overflow
http://archives.neohapsis.com/archives/bugtraq/2004-02/0619.html
InnoMedia VideoPhone: authentication bypass
http://archives.neohapsis.com/archives/bugtraq/2004-02/0680.html
Internet Explorer: cross-domain/cross-frame keystroke monitoring
http://archives.neohapsis.com/archives/bugtraq/2004-02/0665.html
LAN SUITE Web Mail 602Pro: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2004-02/0683.html
RealSecure/BlackICE: SMB processing remote heap overflow
http://archives.neohapsis.com/archives/ntbugtraq/2004-q1/0085.html
Serv-U FTPD: MDTM remote command overflow
http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0049.html
http://archives.neohapsis.com/archives/bugtraq/2004-02/0674.html
TYPSoft FTP Server 1.10: malformed command parameter DoS
http://archives.neohapsis.com/archives/bugtraq/2004-02/0617.html
Trillian: multiple remote overflows
http://archives.neohapsis.com/archives/bugtraq/2004-02/0638.html
WFTPD Pro 3.21: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2004-02/0685.html
http://archives.neohapsis.com/archives/bugtraq/2004-02/0686.html
WinZip 8.1: malicious MIME archive overflow
http://archives.neohapsis.com/archives/bugtraq/2004-02/0667.html
jgs Web server 0.1.0: 404 page XSS
http://archives.neohapsis.com/archives/bugtraq/2004-02/0628.html
____BSD____
FreeBSD: jailed process can access other jails (FreeBSD-SA-04:03.jail)
http://archives.neohapsis.com/archives/bugtraq/2004-02/0672.html
____MacOS____
MacOS X: AFP client protocol security weaknesses
http://archives.neohapsis.com/archives/bugtraq/2004-02/0670.html
MacOS X: pppd local format string vulnerability
http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0048.html
____Network Devices____
Alcatel Omniswitch 7000: Nessus scan causes reboot/DoS
http://archives.neohapsis.com/archives/bugtraq/2004-02/0631.html
Gigabyte Gn-B46B: authentication bypass
http://archives.neohapsis.com/archives/bugtraq/2004-02/0624.html
____CGI____
Extremail 1.5.9: authentication bypass
http://archives.neohapsis.com/archives/vuln-dev/2004-q1/0106.html
Invision Power Board: search.php SQL tampering
http://archives.neohapsis.com/archives/bugtraq/2004-02/0684.html
PhpNewsManager 1.45: clang parameter arbitrary file viewing
http://archives.neohapsis.com/archives/bugtraq/2004-02/0627.html
WebzEdit: done.jsp XSS
http://archives.neohapsis.com/archives/bugtraq/2004-02/0604.html
XMB 1.8: multiple SQL tampering and XSS vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2004-02/0595.html
ezBoard 7.3: font tag XSS
http://archives.neohapsis.com/archives/bugtraq/2004-02/0605.html
phpBB: viewtopic.php XSS
http://archives.neohapsis.com/archives/bugtraq/2004-02/0679.html
____Cross-Platform____
Avirt Soho 4.3: HTTP request remote buffer overflow
http://archives.neohapsis.com/archives/bugtraq/2004-02/0597.html
Avirt Voice 4.0: HTTP request remote buffer overflow
http://archives.neohapsis.com/archives/bugtraq/2004-02/0609.html
Darwin Streaming Server: malformed DESCRIBE request DoS
http://archives.neohapsis.com/archives/bugtraq/2004-02/0621.html
FlexWATCH-Webs 2.2: authentication bypass and XSS
http://archives.neohapsis.com/archives/bugtraq/2004-02/0620.html
Gamespy SDK (used by multiple games): multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2004-02/0635.html
Inktomi Search Server 4.0: remote format string overflow
http://archives.neohapsis.com/archives/vuln-dev/2004-q1/0107.html
Load Sharing Facility: eauth component multiple vulnerabilities
http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0044.html
http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0045.html
Mozilla: cross-domain 'zombie page' JavaScript vulnerability
http://archives.neohapsis.com/archives/bugtraq/2004-02/0643.html
Symantec Gateway Security Management Service: missing resource XSS
http://archives.neohapsis.com/archives/bugtraq/2004-02/0671.html
Team Factor 1.25: malformed protocol remote overflow/DoS
http://archives.neohapsis.com/archives/bugtraq/2004-02/0583.html
confirm 0.62: malicious e-mail headers remote command execution
http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0046.html
nCipher HSM: local attackers can gain access to stored secrets
http://archives.neohapsis.com/archives/bugtraq/2004-02/0585.html
--- Patches and Updates -----------------------------------------------
The following contains a list of vendor patches and updates released
this week.
____Linux____
Debian > DSA 436-2: mailman
http://archives.neohapsis.com/archives/vendor/2004-q1/0056.html
Debian > DSA 445-1: lbreakout2
http://archives.neohapsis.com/archives/vendor/2004-q1/0055.html
Debian > DSA 446-1: synaesthesia
http://archives.neohapsis.com/archives/vendor/2004-q1/0057.html
Debian > DSA 447-1: hsftp
http://archives.neohapsis.com/archives/vendor/2004-q1/0058.html
Debian > DSA 448-1: pwlib
http://archives.neohapsis.com/archives/vendor/2004-q1/0059.html
Debian > DSA 449-1: metamail
http://archives.neohapsis.com/archives/vendor/2004-q1/0061.html
Debian > DSA 450-1: kernel (mips)
http://archives.neohapsis.com/archives/vendor/2004-q1/0062.html
Debian > DSA 451-1: xboing
http://archives.neohapsis.com/archives/vendor/2004-q1/0066.html
Debian > DSA 452-1: libapache-mod-python
http://archives.neohapsis.com/archives/vendor/2004-q1/0067.html
Immunix >IMNX-2004-7+-001-01: kernel
http://archives.neohapsis.com/archives/bugtraq/2004-02/0660.html
Mandrake > MDKSA-2004:015-1: kernel
http://archives.neohapsis.com/archives/linux/mandrake/2004-q1/0125.html
Mandrake > MDKSA-2004:016: mtools
http://archives.neohapsis.com/archives/linux/mandrake/2004-q1/0117.html
Red Hat > RHSA-2004:063-01: mod_python
http://archives.neohapsis.com/archives/linux/redhat/2004-q1/0015.html
Red Hat > RHSA-2004:091-01: libxml2
http://archives.neohapsis.com/archives/linux/redhat/2004-q1/0016.html
SmoothWall > SWP-2004:002: kernel
http://archives.neohapsis.com/archives/bugtraq/2004-02/0652.html
SuSE > SuSE-SA:2004:006: xf86/XFree86
http://archives.neohapsis.com/archives/vendor/2004-q1/0060.html
Trustix > TSLSA-2004-0008: kernel
http://archives.neohapsis.com/archives/bugtraq/2004-02/0600.html
____HP-UX____
Massive amount of HP-UX security updates
http://archives.neohapsis.com/archives/hp/2004-q1/0034.html
--- Advertisement -----------------------------------------------------
Join InformationWeek for a FREE on-demand NetSeminar
on Building a Business Case for RISC to IA Migration.
See the industry trends, forecasts, and ROI tools
and services that build business justification for
moving to Intel Architecture-based Dell servers.
Register now and view at your convenience:
--- Sign Off ----------------------------------------------------------
If this e-mail was passed to you, and you would like to begin receiving
our free security e-mail newsletter on a weekly basis, we invite you to
subscribe today by forwarding this message to [sub_stwupdate.networkcomputing.com].
Or you can subscribe directly here:
http://www.networkcomputing.com/go/stw.jhtml
To manage all aspects of your subscription and newsletter account,
simply use the URL below. You'll need your e-mail address and
password to log in. If you don't have your password, you can generate
a new one using the same URL. Once logged in, you can change your
e-mail address and password as well as select specific platforms for
which you'd like to receive information on patches and vulnerabilities.
If you have any questions regarding this system, please don't hesitate
to e-mail us at stwnwc.com.
http://stwpref.update.networkcomputing.com/CMP/NWC/prefctr.asp
Important subscription contacts:
CMP Media LLC
600 Community Drive
Manhasset, NY 11030
Missed an issue? You can find all back issues of Security Threat Watch
(as well as Security Alert Consensus and Security Express) online.
http://archives.neohapsis.com/
Note: To better serve you we use dynamic URLs within our advertisments,
which allow us to see how many readers click on a given ad. We do not
share this information, or your personal information, with any outside
party. Concerned about the privacy of your information relative to these
tracking URLs? Please refer to our privacy policy.
http://www.doubleclick.net/us/corporate/privacy
We'd like to know what you think about the newsletter and what
information you'd like to see in future editions. E-mail your comments
to (stwnwc.com).
To unsubscribe from this newsletter, forward this message to
[unsub_stwupdate.networkcomputing.com].
Copyright (c) 2004 Network Computing, a CMP Media LLC publication. All
Rights Reserved. Distributed by Network Computing
(http://www.networkcomputing.com). Powered by Neohapsis Inc., a
Chicago-based security assessment and integration services consulting
group (infoneohapsis.com | http://www.neohapsis.com/).
This message powered by DARTmail
http://www.doubleclick.net/us/corporate/privacy
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]