|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Security Threat Watch 130
From: Security Threat Watch Newsletter (NetworkComputing
update.networkcomputing.com)
Date: Mon May 08 2006 - 13:02:27 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Security Threat Watch
Number 130
Monday, May 8, 2006
Created for you by Network Computing & Neohapsis
This week saw the disclosure of an eye-opening vulnerability in X.org's
X Window System. Coverity, as a part of a larger government-funded
initiative, found this hole while conducting a three-year audit of
several popular open-source projects. (Coverity provides the automated
vulnerability scanner technology used in these assessments.) X.org
managed to patch this issue within days of its discovery, and by the
time the vulnerability was publicly disclosed, a patch was already
available. Check the Patches section of this issue for information
pertaining to your Linux distribution.
Additionally, several bugs were found in MySQL, a popular open-source
database. One of these bugs could allow a remote attacker to read
arbitrary memory through a flaw in the authentication mechanism. The
other flaw reported is a stack-based buffer overflow, but it occurs post
authentication, making it less of a threat.
Until next issue,
- The Neohapsis Security Threat Watch Team
--- Advertisement
-----------------------------------------------------
NWC Podcasts
Listen to Network Computing's editors talk about today's most pressing
enterprise challenges with some of the IT industry's leading experts.
Tune in as we cover topics including security, collaboration,
convergence and more.
http://www.networkcomputing.com/podcasts
--- TechCareers: The Job Hunt And Age Discrimination
-----------------------------------------------
By Rusty DAversa, TechCareers.com
Fighting discrimination is all about proving your value to the hiring
manager, says a career expert.
http://www.techcareers.com/content/article.asp?articleid=185303267
--- Advertisement
-----------------------------------------------------
This issue is sponsored by GFI LANguard Network Security Scanner.
Security vulnerability scanning & fixing made easy with GFI
LANguard N.S.S. GFI LANguard also allows you to identify &
remotely install missing patches on your network. Secure your
network today! FREE 30 day evaluation version available for
--- New Vulnerabilities
-----------------------------------------------
Below is a list of new vulnerabilities announced this week.
Vulnerabilities considered to be 'critical' involve highly-deployed
software, or carry a high-risk of system compromise. Note that
vulnerabilities not highlighted may still be of critical severity
to your environment.
**** Highlighted critical vulnerabilities ****
MySQL 4.1.18, 5.0.20: multiple vulnerabilities
X.org x11 7.0.0: local overflow
**** Newly announced vulnerabilities this week ****
____Windows____
BankTown Client Control 1.4.2: remote overflow
http://archives.neohapsis.com/archives/vulnwatch/2006-q2/0023.html
Sami FTP Server 2.0.2: remote overflow
http://archives.neohapsis.com/archives/bugtraq/2006-05/0069.html
TDC Microsoft CSP Suite: remote overflow
http://archives.neohapsis.com/archives/bugtraq/2006-05/0099.html
WinHKI 1.67: client-side overflow
http://archives.neohapsis.com/archives/bugtraq/2006-05/0006.html
XM Easy Personal FTP Server 4.3: remote overflow
http://archives.neohapsis.com/archives/bugtraq/2006-05/0075.html
____Linux____
xine 0.99.4: local format string
http://archives.neohapsis.com/archives/bugtraq/2006-05/0019.html
____Network Devices____
Cisco Unity Express 2.2: privilege escalation
http://archives.neohapsis.com/archives/cisco/2006-q2/0006.html
http://archives.neohapsis.com/archives/cisco/2006-q2/0007.html
____CGI____
321soft PHP Gallery 0.9: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2006-05/0078.html
4images 1.7.1: SQL tampering
http://archives.neohapsis.com/archives/bugtraq/2006-05/0012.html
BigWebmaster Guestbook 1.02: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-05/0082.html
Blog Mod 0.2.x: SQL tampering
http://archives.neohapsis.com/archives/bugtraq/2006-05/0020.html
Chipmunk Blogger: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-05/0104.html
Chipmunk Board: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2006-05/0105.html
Cmscout 1.10: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-05/0034.html
CuteNews 1.4.1: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2006-05/0091.html
DMCounter 0.9.2: remote file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-05/0001.html
Fast Click 2.3.8: remote file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-05/0076.html
Fast Click SQL Lite 1.1.3: remote file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-05/0074.html
FileProtection Express 1.0.1: authentication bypass
http://archives.neohapsis.com/archives/bugtraq/2006-05/0036.html
FlexCustomer 0.0.4: SQL tampering
http://archives.neohapsis.com/archives/bugtraq/2006-05/0106.html
Invision Community Blog 2.x: SQL tampering
http://archives.neohapsis.com/archives/bugtraq/2006-05/0097.html
Invision Gallery 2.0.6: SQL tampering
http://archives.neohapsis.com/archives/bugtraq/2006-05/0039.html
Invision Power Board 2.1.5: SQL tampering
http://archives.neohapsis.com/archives/bugtraq/2006-05/0013.html
JSBoard 2.0.11: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-05/0026.html
JetBox CMS 2.1: remote file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-05/0103.html
OpenBB 1.0.8: path disclosure
http://archives.neohapsis.com/archives/bugtraq/2006-05/0014.html
OpenFAQ 0.4.0: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-05/0102.html
PassMasterFlex: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-05/0108.html
PhpBB TopList 1.3.8: remote file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-04/0603.html
PunBB 1.2.11: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-05/0072.html
Russcom.Loginphp: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2006-05/0037.html
SF-Users 1.0: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-05/0035.html
SaPHPLesson 3.0: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2006-05/0094.html
TextFileBB 1.0.16: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-04/0604.html
Thyme 1.3: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-05/0011.html
TyroCms 1.0: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-05/0038.html
VHCS 2.4: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-05/0024.html
VisionSource CMS 0.6: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-05/0110.html
W-Agora 4.20: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-04/0601.html
WebCalendar 1.0.3: information disclosure
http://archives.neohapsis.com/archives/bugtraq/2006-05/0088.html
WebsiteBaker 2.6.3: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-05/0111.html
X7Chat 2.0.2: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2006-05/0112.html
http://archives.neohapsis.com/archives/bugtraq/2006-05/0028.html
geoBlog 1.0: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-05/0032.html
myBloggie 2.1.3: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-05/0107.html
sBlog 0.7.2: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2006-05/0033.html
zenphoto 1.0.1: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2006-05/0030.html
____Cross Platform____
MySQL 4.1.18, 5.0.20: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2006-05/0041.html
http://archives.neohapsis.com/archives/bugtraq/2006-05/0042.html
Quagga Suite 0.99.3: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2006-05/0049.html
http://archives.neohapsis.com/archives/bugtraq/2006-05/0055.html
X.org x11 7.0.0: local overflow
http://archives.neohapsis.com/archives/bugtraq/2006-05/0079.html
http://archives.neohapsis.com/archives/bugtraq/2006-05/0043.html
http://archives.neohapsis.com/archives/linux/suse/2006-q2/0073.html
http://archives.neohapsis.com/archives/linux/mandrake/2006-q2/0044.html
zawhttpd 0.8.23: remote overflow
http://archives.neohapsis.com/archives/bugtraq/2006-05/0073.html
--- Patches and Updates
-----------------------------------------------
The following contains a list of vendor patches and updates released
this week.
____Linux____
Debian > DSA 1047-1: resmgr
http://archives.neohapsis.com/archives/bugtraq/2006-05/0009.html
Debian > DSA 1048-1: asterisk
http://archives.neohapsis.com/archives/bugtraq/2006-05/0007.html
Debian > DSA 1049-1: ethereal
http://archives.neohapsis.com/archives/bugtraq/2006-05/0029.html
Debian > DSA 1050-1: clamav
http://archives.neohapsis.com/archives/bugtraq/2006-05/0052.html
Debian > DSA 1051-1: Mozilla Thunderbird
http://archives.neohapsis.com/archives/bugtraq/2006-05/0065.html
Gentoo > GLSA200605-01: mplayer
http://archives.neohapsis.com/archives/bugtraq/2006-05/0002.html
Gentoo > GLSA200605-02: x.org
http://archives.neohapsis.com/archives/bugtraq/2006-05/0043.html
Gentoo > GLSA200605-03: clamav
http://archives.neohapsis.com/archives/bugtraq/2006-05/0044.html
Gentoo > GLSA200605-04: phpWebSite
http://archives.neohapsis.com/archives/bugtraq/2006-05/0045.html
Gentoo > GLSA200605-05: rsync
http://archives.neohapsis.com/archives/bugtraq/2006-05/0101.html
Gentoo > GLSA200605-06: Mozilla Firefox
http://archives.neohapsis.com/archives/bugtraq/2006-05/0109.html
Mandriva > MDKSA-2006:080: clamav
http://archives.neohapsis.com/archives/linux/mandrake/2006-q2/0043.html
Mandriva > MDKSA-2006:081: x.org
http://archives.neohapsis.com/archives/linux/mandrake/2006-q2/0044.html
Mandriva > MDKSA-2006:082: libtiff
http://archives.neohapsis.com/archives/linux/mandrake/2006-q2/0045.html
SuSE > SUSE-SA:2006:023: x.org
http://archives.neohapsis.com/archives/linux/suse/2006-q2/0073.html
SuSE > SUSE-SA:2006:024: PHP
http://archives.neohapsis.com/archives/vendor/2006-q2/0041.html
SuSE > SUSE-SA:2006:025: cyrus-sasl-digestmd5
http://archives.neohapsis.com/archives/vendor/2006-q2/0042.html
Trustix > TSLSA-2006-0024: multiple packages
http://archives.neohapsis.com/archives/bugtraq/2006-05/0100.html
Ubuntu > USN-276-1: Mozilla Thunderbird
http://archives.neohapsis.com/archives/bugtraq/2006-05/0048.html
Ubuntu > USN-277-1: libtiff
http://archives.neohapsis.com/archives/bugtraq/2006-05/0053.html
Ubuntu > USN-278-1: gdm
http://archives.neohapsis.com/archives/bugtraq/2006-05/0056.html
Ubuntu > USN-279-1: libnasl/nessus
http://archives.neohapsis.com/archives/bugtraq/2006-05/0060.html
Ubuntu > USN-280-1: x.org
http://archives.neohapsis.com/archives/bugtraq/2006-05/0079.html
Ubuntu > USN-281-1: kernel
http://archives.neohapsis.com/archives/bugtraq/2006-05/0077.html
____HP-UX____
HP-UX > SSRT061133: sendmail
http://archives.neohapsis.com/archives/bugtraq/2006-05/0066.html
--- Advertisement
-----------------------------------------------------
This issue is sponsored by GFI LANguard Network Security Scanner.
Security vulnerability scanning & fixing made easy with GFI
LANguard N.S.S. GFI LANguard also allows you to identify &
remotely install missing patches on your network. Secure your
network today! FREE 30 day evaluation version available for
--- Sign Off
----------------------------------------------------------
If this e-mail was passed to you, and you would like to begin receiving
our free security e-mail newsletter on a weekly basis, we invite you to
subscribe today by forwarding this message to [subscribe_stwupdate.networkcomputing.com].
Or you can subscribe directly here:
http://www.networkcomputing.com/go/stw.jhtml
To manage all aspects of your subscription and newsletter account,
simply use the URL below. You'll need your e-mail address and
password to log in. If you don't have your password, you can generate
a new one using the same URL. Once logged in, you can change your
e-mail address and password as well as select specific platforms for
which you'd like to receive information on patches and vulnerabilities.
If you have any questions regarding this system, please don't hesitate
to e-mail us at stwnwc.com.
http://stwpref.update.networkcomputing.com/CMP/NWC/prefctr.asp
Put Us On Your White List
Don't let an over-eager e-mail filter bounce the Network Computing
Security Threat Watch newsletter! Our address:
NetworkComputingupdate.networkcomputing.com
needs to be in your address book or on your anti-spam white list. Ask your
admin or ISP how to do this, or check your anti-spam utility documentation.
Important subscription contacts:
CMP Media LLC
600 Community Drive
Manhasset, NY 11030
Unsubscribe to Network Computing's newsletters.
http://www.networkcomputing.com/newsletters/unsubscribe.html
Sign up for your own issue of this newsletter.
http://www.networkcomputing.com/newsletters/subscriptions.html
Subscribe to Network Computing's newsletters.
http://www.networkcomputing.com/newsletters/subscriptions.html
Still not receiving your own FREE subscription to Network Computing
magazine?
http://networkcomputingsubscriptions.com/customerservice/
ADDITIONAL SUBSCRIPTION CONTACT:
Please send an e-mail message to mailto:newsletterscmp.com if you need
assistance changing your e-mail address, unsubscribing from this
newsletter, or require additional assistance with your subscription.
Please be sure to include the name of this newsletter in your message.
Missed an issue? You can find all back issues of Security Threat Watch
(as well as Security Alert Consensus and Security Express) online.
http://archives.neohapsis.com/
Note: To better serve you we use dynamic URLs within our advertisments,
which allow us to see how many readers click on a given ad. We do not
share this information, or your personal information, with any outside
party. Concerned about the privacy of your information relative to these
tracking URLs? Please refer to our privacy policy.
http://www.doubleclick.net/us/corporate/privacy
We'd like to know what you think about the newsletter and what
information you'd like to see in future editions. E-mail your comments
to (stwnwc.com).
To unsubscribe from this newsletter, forward this message to
[unsubscribe_stwupdate.networkcomputing.com].
Copyright (c) 2006 Network Computing, a CMP Media LLC publication. All
Rights Reserved. Distributed by Network Computing
(http://www.networkcomputing.com). Powered by Neohapsis Inc., a
Chicago-based security assessment and integration services consulting
group (infoneohapsis.com | http://www.neohapsis.com/).
This message powered by DARTmail
http://www.doubleclick.net/us/corporate/privacy
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]