|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Security Threat Watch 038
From: Security Threat Watch (NetworkComputing
update.networkcomputing.com)
Date: Mon Jul 19 2004 - 13:19:43 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Security Threat Watch
Number 038
Monday, July 19, 2004
Created for you by Network Computing & Neohapsis
--- Security News ----------------------------------------------
Last Tuesday (unofficially dubbed "Black Tuesday") marked the monthly
Microsoft patch release date. Microsoft released seven patches, most of
which were critical or important. Vulnerable software includes Outlook
Express, Internet Explorer, IIS and various local Windows components.
All of these items are reported in this issue under the Windows
category.
Also, a large number of Internet Explorer vulnerabilities continue to be
disclosed to the various public mailing lists. These vulnerabilities
generally are unconfirmed and unpatched at this moment. A collected list
of these bugs is included as a single item in this issue of STW under
the Windows category.
Until next week,
- The Neohapsis Security Threat Watch Team
--- Advertisement -----------------------------------------------------
Join Sybase and Intel for a FREE, live E-Seminar on
Software & Hardware Design Essentials for Mobile Computing.
Learn design essentials for always available computing, how
seamless roaming increases convenience and productivity, and
how to leverage the mobility offerings of Sybase and Intel.
Tuesday, July 27, 2004 – 11:00-12:00 PT / 2:00-3:00 ET
--- New Vulnerabilities -----------------------------------------------
Below is a list of new vulnerabilities announced this week.
Vulnerabilities considered to be 'critical' involve highly-deployed
software, or carry a high-risk of system compromise. Note that
vulnerabilities not highlighted may still be of critical severity
to your environment.
**** Highlighted critical vulnerabilities ****
Windows NT: IIS remote overflow (MS04-021/841373)
PHP4: multiple vulnerabilities
**** Newly announced vulnerabilities this week ****
____Windows____
Internet Explorer: Windows shell remote command execution
(MS04-024/839645)
http://archives.neohapsis.com/archives/ntbugtraq/2004-q3/0027.html
Internet Explorer: multiple unconfirmed vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2004-07/0099.html
http://archives.neohapsis.com/archives/bugtraq/2004-07/0106.html
http://archives.neohapsis.com/archives/bugtraq/2004-07/0107.html
http://archives.neohapsis.com/archives/bugtraq/2004-07/0108.html
http://archives.neohapsis.com/archives/bugtraq/2004-07/0112.html
http://archives.neohapsis.com/archives/bugtraq/2004-07/0131.html
http://archives.neohapsis.com/archives/vulnwatch/2004-q3/0004.html
http://archives.neohapsis.com/archives/vuln-dev/2004-q3/0030.html
http://archives.neohapsis.com/archives/bugtraq/2004-07/0191.html
Internet Explorer: multiple vulnerabilities (MS04-023/840315)
http://archives.neohapsis.com/archives/ntbugtraq/2004-q3/0026.html
Microsoft SMS Client: remote DoS
http://archives.neohapsis.com/archives/bugtraq/2004-07/0146.html
OllyDbg 1.10: debug message output local format string vulnerability
http://archives.neohapsis.com/archives/bugtraq/2004-07/0193.html
Outlook Express: cumulative update (MS04-018/823353)
http://archives.neohapsis.com/archives/ntbugtraq/2004-q3/0021.html
Windows 2000/XP: task scheduler remote execution (MS04-022/841873)
http://archives.neohapsis.com/archives/ntbugtraq/2004-q3/0025.html
Windows 2000: Utility Manager local privilege elevation
(MS04-019/842526)
http://archives.neohapsis.com/archives/ntbugtraq/2004-q3/0022.html
Windows Media Player: malicious .asx file local vulnerability
http://archives.neohapsis.com/archives/bugtraq/2004-07/0104.html
Windows NT/2000: POSIX subsystem local privilege elevation
(MS04-020/841872)
http://archives.neohapsis.com/archives/ntbugtraq/2004-q3/0023.html
Windows NT: IIS remote overflow (MS04-021/841373)
http://archives.neohapsis.com/archives/ntbugtraq/2004-q3/0024.html
____HP-UX____
wu-ftpd: restricted gid option local privilege elevation
http://archives.neohapsis.com/archives/bugtraq/2004-07/0173.html
____MacOS____
4D Webstar: multiple vulnerabilities
http://archives.neohapsis.com/archives/vulnwatch/2004-q3/0005.html
____CGI____
Bugzilla: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2004-07/0103.html
MoinMoin: group ACL bypass
http://archives.neohapsis.com/archives/bugtraq/2004-07/0109.html
Moodle: XSS vulnerability
http://archives.neohapsis.com/archives/bugtraq/2004-07/0116.html
PHP-Nuke: SQL tampering, XSS
http://archives.neohapsis.com/archives/bugtraq/2004-07/0176.html
PhpBB: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2004-07/0170.html
____Cross-Platform____
Apache mod_ssl: HTTPS proxy remote overflow
http://archives.neohapsis.com/archives/bugtraq/2004-07/0184.html
Half-Life game client/server: malformed packet remote DoS
http://archives.neohapsis.com/archives/bugtraq/2004-07/0111.html
Medal of Honor game: multiple remote overflows
http://archives.neohapsis.com/archives/bugtraq/2004-07/0195.html
PHP4: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2004-07/0142.html
http://archives.neohapsis.com/archives/bugtraq/2004-07/0135.html
http://archives.neohapsis.com/archives/bugtraq/2004-07/0138.html
WV library: malformed Word document overflow
http://archives.neohapsis.com/archives/bugtraq/2004-07/0134.html
rsync: server remote directory traversal vulnerability
http://archives.neohapsis.com/archives/bugtraq/2004-07/0101.html
--- Patches and Updates -----------------------------------------------
The following contains a list of vendor patches and updates released
this week.
____Linux____
Debian > DSA 528-1: Ethereal
http://archives.neohapsis.com/archives/vendor/2004-q3/0005.html
Debian > DSA 529-1: netkit-telnet-SSL
http://archives.neohapsis.com/archives/vendor/2004-q3/0008.html
Debian > DSA 530-1: l2tpd
http://archives.neohapsis.com/archives/vendor/2004-q3/0007.html
Mandrake > MDKSA-2004:068: PHP
http://archives.neohapsis.com/archives/bugtraq/2004-07/0149.html
Mandrake > MDKSA-2004:069: IPsec-tools
http://archives.neohapsis.com/archives/bugtraq/2004-07/0166.html
Mandrake > MDKSA-2004:070: freeswan
http://archives.neohapsis.com/archives/bugtraq/2004-07/0148.html
SuSE > SUSE-SA:2004:021: PHP4
http://archives.neohapsis.com/archives/bugtraq/2004-07/0169.html
--- Advertisement -----------------------------------------------------
Join Sybase and Intel for a FREE, live E-Seminar on
Software & Hardware Design Essentials for Mobile Computing.
Learn design essentials for always available computing, how
seamless roaming increases convenience and productivity, and
how to leverage the mobility offerings of Sybase and Intel.
Tuesday, July 27, 2004 – 11:00-12:00 PT / 2:00-3:00 ET
--- Sign Off ----------------------------------------------------------
If this e-mail was passed to you, and you would like to begin receiving
our free security e-mail newsletter on a weekly basis, we invite you to
subscribe today by forwarding this message to [subscribe_stwupdate.networkcomputing.com].
Or you can subscribe directly here:
http://www.networkcomputing.com/go/stw.jhtml
To manage all aspects of your subscription and newsletter account,
simply use the URL below. You'll need your e-mail address and
password to log in. If you don't have your password, you can generate
a new one using the same URL. Once logged in, you can change your
e-mail address and password as well as select specific platforms for
which you'd like to receive information on patches and vulnerabilities.
If you have any questions regarding this system, please don't hesitate
to e-mail us at stwnwc.com.
http://stwpref.update.networkcomputing.com/CMP/NWC/prefctr.asp
Important subscription contacts:
CMP Media LLC
600 Community Drive
Manhasset, NY 11030
Missed an issue? You can find all back issues of Security Threat Watch
(as well as Security Alert Consensus and Security Express) online.
http://archives.neohapsis.com/
Note: To better serve you we use dynamic URLs within our advertisments,
which allow us to see how many readers click on a given ad. We do not
share this information, or your personal information, with any outside
party. Concerned about the privacy of your information relative to these
tracking URLs? Please refer to our privacy policy.
http://www.doubleclick.net/us/corporate/privacy
We'd like to know what you think about the newsletter and what
information you'd like to see in future editions. E-mail your comments
to (stwnwc.com).
To unsubscribe from this newsletter, forward this message to
[unsubscribe_stwupdate.networkcomputing.com].
Copyright (c) 2004 Network Computing, a CMP Media LLC publication. All
Rights Reserved. Distributed by Network Computing
(http://www.networkcomputing.com). Powered by Neohapsis Inc., a
Chicago-based security assessment and integration services consulting
group (infoneohapsis.com | http://www.neohapsis.com/).
This message powered by DARTmail
http://www.doubleclick.net/us/corporate/privacy
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]