|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Security Threat Watch 026
From: Security Threat Watch (NetworkComputing
update.networkcomputing.com)
Date: Mon Apr 26 2004 - 13:01:20 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Security Threat Watch
Number 026
Monday, April 26, 2004
Created for you by Network Computing & Neohapsis
--- Security News ----------------------------------------------
The industry had two big buzzes last week. First was a denial of service
attack in long-running TCP connections. Basically, the statistics of
brute-forcing a valid TCP packet into an established TCP connection
favor an attacker. The key factor is that the malicious packet only
needs to fall somewhere in the current TCP window. Connections/systems
using large TCP windows are more easily attacked. BGP is particularly
prone to this vulnerability.
http://archives.neohapsis.com/archives/cc/2004-q2/0003.html
The second buzz was actually more of a rumor concerning the large
potential for a new/upcoming worm that leverages the recently patched
bug in Microsoft SSL PCT. Of course, this is still rumor.
http://archives.neohapsis.com/archives/bugtraq/2004-04/0281.html
Until next week,
- The Neohapsis Security Threat Watch Team
--- Advertisement -----------------------------------------------------
Layered Security White Paper from NetIQ
This issue sponsored by NetIQ. Has managing and securing Active
Directory permissions become more complex than ever before?
Download NetIQ's free white paper, "Securing Access to Active
Directory-A Layered Security Approach." You'll gain valuable
insight on enabling administrative. Register now.
http://www.netiq.com/f/form/form.asp?id=2467&origin=ns_nwcom_0426
--- New Vulnerabilities -----------------------------------------------
Below is a list of new vulnerabilities announced this week.
Vulnerabilities considered to be 'critical' involve highly-deployed
software, or carry a high-risk of system compromise. Note that
vulnerabilities not highlighted may still be of critical severity
to your environment.
**** Highlighted critical vulnerabilities ****
Linux kernel: ip_setsockopt MCAST_MSFILTER local overflow
Multiple systems: TCP window flaw/DoS
**** Newly announced vulnerabilities this week ****
____Windows____
BitDefender Scan: ActiveX control multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2004-04/0215.html
http://archives.neohapsis.com/archives/bugtraq/2004-04/0244.html
Fastream NETFile 6.5.1.980: malformed login DoS
http://archives.neohapsis.com/archives/bugtraq/2004-04/0197.html
Kinesphere Exchange Pop3: remote overflow
http://archives.neohapsis.com/archives/bugtraq/2004-04/0240.html
Microsoft Office XP: insecure debugging permissions
http://archives.neohapsis.com/archives/ntbugtraq/2004-q2/0023.html
Symantec Firewall products: TCP options DoS
http://archives.neohapsis.com/archives/bugtraq/2004-04/0283.html
http://archives.neohapsis.com/archives/bugtraq/2004-04/0282.html
WinSCP 3.5.6: URL handler DoS
http://archives.neohapsis.com/archives/bugtraq/2004-04/0255.html
____Linux____
Linux kernel: ip_setsockopt MCAST_MSFILTER local overflow
http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0087.html
ident2: child_service function remote overflow
http://archives.neohapsis.com/archives/vendor/2004-q2/0037.html
____Solaris____
Solaris 9: patch 113579-03 NIS secure map vulnerability
http://archives.neohapsis.com/archives/bugtraq/2004-04/0232.html
____Network Devices____
Cisco IOS: malformed SNMP DoS
http://archives.neohapsis.com/archives/cisco/2004-q1/0017.html
____CGI____
Advanced Guestbook 2.2: SQL tampering
http://archives.neohapsis.com/archives/bugtraq/2004-04/0268.html
Network Query Tool 1.6: information disclosure, XSS
http://archives.neohapsis.com/archives/bugtraq/2004-04/0285.html
Phorum 3.4.7: phorum_uriauth SQL tampering
http://archives.neohapsis.com/archives/bugtraq/2004-04/0222.html
PostNuke 0.726: information disclosure, XSS
http://archives.neohapsis.com/archives/bugtraq/2004-04/0269.html
PostNuke 7.2.2: multiple SQL tampering vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2004-04/0261.html
Protector System 1.15b1: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2004-04/0284.html
Zaep AntiSpam 2.0: XSS
http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0085.html
phpBB 2.0.8a: IP logging misrepresentation
http://archives.neohapsis.com/archives/bugtraq/2004-04/0224.html
phpBB-Przemo 1.8: PHP remote file include/code execution
http://archives.neohapsis.com/archives/bugtraq/2004-04/0217.html
phprofession 2.5: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2004-04/0272.html
____Cross-Platform____
KPhone 4.0.1: malformed STUN packet DoS
http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0086.html
Multiple systems: TCP window flaw/DoS
http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0088.html
http://archives.neohapsis.com/archives/cc/2004-q2/0003.html
Netegrity SiteMinder Affiliate Agent: SMPROFILE cookie remote overflow
http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0090.html
Unreal game engine: malicious UMOD file
http://archives.neohapsis.com/archives/bugtraq/2004-04/0278.html
XChat 2.0.x: SOCKS5 remote overflow
http://archives.neohapsis.com/archives/bugtraq/2004-04/0211.html
ssmtp 2.50.6: insecure temp file handling
http://archives.neohapsis.com/archives/bugtraq/2004-04/0212.html
--- Patches and Updates -----------------------------------------------
The following contains a list of vendor patches and updates released
this week.
____Linux____
Debian > DSA 492-1: iproute
http://archives.neohapsis.com/archives/bugtraq/2004-04/0196.html
Debian > DSA 493-1: xchat
http://archives.neohapsis.com/archives/bugtraq/2004-04/0266.html
Mandrake > MDKSA-2004:031-1: utempter
http://archives.neohapsis.com/archives/bugtraq/2004-04/0275.html
Mandrake > MDKSA-2004:032: libneon
http://archives.neohapsis.com/archives/bugtraq/2004-04/0238.html
Mandrake > MDKSA-2004:033: xine-ui
http://archives.neohapsis.com/archives/bugtraq/2004-04/0242.html
Mandrake > MDKSA-2004:034: MySQL
http://archives.neohapsis.com/archives/bugtraq/2004-04/0239.html
Mandrake > MDKSA-2004:035: samba
http://archives.neohapsis.com/archives/bugtraq/2004-04/0246.html
Mandrake > MDKSA-2004:036: xchat
http://archives.neohapsis.com/archives/linux/mandrake/2004-q2/0070.html
Red Hat > RHSA-2004:166-01: kernel
http://archives.neohapsis.com/archives/linux/redhat/2004-q2/0005.html
Slackware > SSA:2004-108-01: tcpdump
http://archives.neohapsis.com/archives/bugtraq/2004-04/0195.html
Slackware > SSA:2004-108-02: CVS
http://archives.neohapsis.com/archives/bugtraq/2004-04/0237.html
Slackware > SSA:2004-110-01: utempter
http://archives.neohapsis.com/archives/bugtraq/2004-04/0229.html
Slackware > SSA:2004-111-01: xine
http://archives.neohapsis.com/archives/bugtraq/2004-04/0277.html
____BSD____
NetBSD > 2004-005: OpenSSL
http://archives.neohapsis.com/archives/netbsd/2004-q2/0030.html
NetBSD > 2004-006: TCP window flaw/DoS
http://archives.neohapsis.com/archives/netbsd/2004-q2/0031.html
____Network Devices____
Cisco IOS: TCP window flaw/DoS
http://archives.neohapsis.com/archives/cisco/2004-q1/0016.html
--- Advertisement -----------------------------------------------------
Layered Security White Paper from NetIQ
This issue sponsored by NetIQ. Has managing and securing Active
Directory permissions become more complex than ever before?
Download NetIQ's free white paper, "Securing Access to Active
Directory-A Layered Security Approach." You'll gain valuable
insight on enabling administrative. Register now.
http://www.netiq.com/f/form/form.asp?id=2467&origin=ns_nwcom_0426
--- Sign Off ----------------------------------------------------------
If this e-mail was passed to you, and you would like to begin receiving
our free security e-mail newsletter on a weekly basis, we invite you to
subscribe today by forwarding this message to [subscribe_stwupdate.networkcomputing.com].
Or you can subscribe directly here:
http://www.networkcomputing.com/go/stw.jhtml
To manage all aspects of your subscription and newsletter account,
simply use the URL below. You'll need your e-mail address and
password to log in. If you don't have your password, you can generate
a new one using the same URL. Once logged in, you can change your
e-mail address and password as well as select specific platforms for
which you'd like to receive information on patches and vulnerabilities.
If you have any questions regarding this system, please don't hesitate
to e-mail us at stwnwc.com.
http://stwpref.update.networkcomputing.com/CMP/NWC/prefctr.asp
Important subscription contacts:
CMP Media LLC
600 Community Drive
Manhasset, NY 11030
Missed an issue? You can find all back issues of Security Threat Watch
(as well as Security Alert Consensus and Security Express) online.
http://archives.neohapsis.com/
Note: To better serve you we use dynamic URLs within our advertisments,
which allow us to see how many readers click on a given ad. We do not
share this information, or your personal information, with any outside
party. Concerned about the privacy of your information relative to these
tracking URLs? Please refer to our privacy policy.
http://www.doubleclick.net/us/corporate/privacy
We'd like to know what you think about the newsletter and what
information you'd like to see in future editions. E-mail your comments
to (stwnwc.com).
To unsubscribe from this newsletter, forward this message to
[unsubscribe_stwupdate.networkcomputing.com].
Copyright (c) 2004 Network Computing, a CMP Media LLC publication. All
Rights Reserved. Distributed by Network Computing
(http://www.networkcomputing.com). Powered by Neohapsis Inc., a
Chicago-based security assessment and integration services consulting
group (infoneohapsis.com | http://www.neohapsis.com/).
This message powered by DARTmail
http://www.doubleclick.net/us/corporate/privacy
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]