|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Security Threat Watch 046
From: Security Threat Watch (NetworkComputing
update.networkcomputing.com)
Date: Mon Sep 13 2004 - 13:12:47 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Security Threat Watch
Number 046
Monday, September 13, 2004
Created for you by Network Computing & Neohapsis
--- Security News ----------------------------------------------
Multiple Mac OS vulnerabilities were reported this week. The bugs
include a cross-domain boundary enforcement failure in Safari, a
QuickTime Streaming Server remote DoS and various local bugs that allow
local users to gain elevated privileges. The latest security updates can
be downloaded from Apple's Web site.
Until next week,
- The Neohapsis Security Threat Watch Team
--- Advertisement -----------------------------------------------------
Radware DefensePro, 3Gbps intrusion prevention switch,
protects against worms, viruses, malicious intrusions,
Denial of Service attacks and Trojans - securing all networked applications.
Delivering maximum throughput and advanced security intelligence,
DefensePro isolates, blocks and prevents attacks in real-time.
For more information, please visit us at
--- New Vulnerabilities -----------------------------------------------
Below is a list of new vulnerabilities announced this week.
Vulnerabilities considered to be 'critical' involve highly-deployed
software, or carry a high-risk of system compromise. Note that
vulnerabilities not highlighted may still be of critical severity
to your environment.
**** Highlighted critical vulnerabilities ****
Mac OS CoreFoundation, Safari, QuickTime Server: multiple vulnerabilities
Usermin 1.080: Webmail module XSS allows remote command execution
**** Newly announced vulnerabilities this week ****
____Windows____
Icewarp Web Mail 5.2.7: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2004-09/0087.html
SapporoWorks BlackJumboDog 3.6.1: large FTP command remote overflow
http://archives.neohapsis.com/archives/bugtraq/2004-09/0084.html
Serv-U 5.2: DOS device file name DoS
http://archives.neohapsis.com/archives/bugtraq/2004-09/0097.html
Trillian 0.74i: MSN module large message remote overflow
http://archives.neohapsis.com/archives/bugtraq/2004-09/0069.html
____MacOS____
Mac OS CoreFoundation, Safari, QuickTime Server: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2004-09/0070.html
____Network Devices____
Axis network devices: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2004-09/0090.html
____CGI____
BBS E-Market Professional: PHP remote file include code execution
http://archives.neohapsis.com/archives/bugtraq/2004-09/0078.html
PHP-Nuke 7.4: XSS
http://archives.neohapsis.com/archives/bugtraq/2004-09/0062.html
http://archives.neohapsis.com/archives/bugtraq/2004-09/0064.html
http://archives.neohapsis.com/archives/bugtraq/2004-09/0073.html
PostNuke Subjects 2.0: SQL tampering
http://archives.neohapsis.com/archives/bugtraq/2004-09/0098.html
PsNews 1.1: XSS
http://archives.neohapsis.com/archives/bugtraq/2004-09/0066.html
Site News 1.1: authentication bypass allows message editing
http://archives.neohapsis.com/archives/bugtraq/2004-09/0057.html
Usermin 1.080: Webmail module XSS allows remote command execution
http://archives.neohapsis.com/archives/bugtraq/2004-09/0059.html
____Cross-Platform____
Apache 2.0.50: mod_ssl reverse proxy DoS
http://archives.neohapsis.com/archives/bugtraq/2004-09/0096.html
Call of Duty 1.4: large packet DoS
http://archives.neohapsis.com/archives/bugtraq/2004-09/0055.html
Halo 1.04: server handshake crash/DoS
http://archives.neohapsis.com/archives/bugtraq/2004-09/0081.html
Net-Acct: insecure temp file handling
http://archives.neohapsis.com/archives/bugtraq/2004-09/0071.html
OpenOffice: insecure temp file permissions
http://archives.neohapsis.com/archives/bugtraq/2004-09/0082.html
cdrecord: RSH environment variable local root command execution
http://archives.neohapsis.com/archives/bugtraq/2004-09/0095.html
mpg123 0.59r: stereo boundary local buffer overflow
http://archives.neohapsis.com/archives/bugtraq/2004-09/0058.html
serverview 3.0: insecure local SNMP .index file permissions
http://archives.neohapsis.com/archives/bugtraq/2004-09/0056.html
star: local root privilege elevation
http://archives.neohapsis.com/archives/bugtraq/2004-09/0068.html
--- Patches and Updates -----------------------------------------------
The following contains a list of vendor patches and updates released
this week.
____Linux____
Mandrake > MDKSA-2004:089: imlib/imlib2
http://archives.neohapsis.com/archives/linux/mandrake/2004-q3/0065.html
Mandrake > MDKSA-2004:090: zlib
http://archives.neohapsis.com/archives/linux/mandrake/2004-q3/0066.html
Mandrake > MDKSA-2004:091: cdrecord
http://archives.neohapsis.com/archives/linux/mandrake/2004-q3/0067.html
--- Advertisement -----------------------------------------------------
Radware DefensePro, 3Gbps intrusion prevention switch,
protects against worms, viruses, malicious intrusions,
Denial of Service attacks and Trojans - securing all networked applications.
Delivering maximum throughput and advanced security intelligence,
DefensePro isolates, blocks and prevents attacks in real-time.
For more information, please visit us at
--- Sign Off ----------------------------------------------------------
If this e-mail was passed to you, and you would like to begin receiving
our free security e-mail newsletter on a weekly basis, we invite you to
subscribe today by forwarding this message to [subscribe_stwupdate.networkcomputing.com].
Or you can subscribe directly here:
http://www.networkcomputing.com/go/stw.jhtml
To manage all aspects of your subscription and newsletter account,
simply use the URL below. You'll need your e-mail address and
password to log in. If you don't have your password, you can generate
a new one using the same URL. Once logged in, you can change your
e-mail address and password as well as select specific platforms for
which you'd like to receive information on patches and vulnerabilities.
If you have any questions regarding this system, please don't hesitate
to e-mail us at stwnwc.com.
http://stwpref.update.networkcomputing.com/CMP/NWC/prefctr.asp
Important subscription contacts:
CMP Media LLC
600 Community Drive
Manhasset, NY 11030
Missed an issue? You can find all back issues of Security Threat Watch
(as well as Security Alert Consensus and Security Express) online.
http://archives.neohapsis.com/
Note: To better serve you we use dynamic URLs within our advertisments,
which allow us to see how many readers click on a given ad. We do not
share this information, or your personal information, with any outside
party. Concerned about the privacy of your information relative to these
tracking URLs? Please refer to our privacy policy.
http://www.doubleclick.net/us/corporate/privacy
We'd like to know what you think about the newsletter and what
information you'd like to see in future editions. E-mail your comments
to (stwnwc.com).
To unsubscribe from this newsletter, forward this message to
[unsubscribe_stwupdate.networkcomputing.com].
Copyright (c) 2004 Network Computing, a CMP Media LLC publication. All
Rights Reserved. Distributed by Network Computing
(http://www.networkcomputing.com). Powered by Neohapsis Inc., a
Chicago-based security assessment and integration services consulting
group (infoneohapsis.com | http://www.neohapsis.com/).
This message powered by DARTmail
http://www.doubleclick.net/us/corporate/privacy
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]