|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Problems hit Microsoft products after monthly patch cycle; latest patches and vulnerabilities
From: Security Threat Watch Newsletter (NetworkComputing
update.networkcomputing.com)
Date: Mon Oct 02 2006 - 13:03:15 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Security Threat Watch
Number 151
Monday, October 2, 2006
Created for you by Network Computing & Neohapsis
Microsoft took several hard hits this week with the publication of
multiple remotely exploitable vulnerabilities and proof-of-concept
exploits for its products. Following the company's monthly patch cycle,
the possible existence of unpatched zero-day vulnerabilities that are
being actively leveraged against users in the wild, possibly by worms,
was publicized. Not surprisingly, many of these vulnerabilities (public
as well as zero-day) are remotely exploitable through Internet Explorer
and are capable of yielding attackers full system compromise. The timing
of this vulnerability information is quite unfortunate for many users of
Microsoft products; October 10 is the next scheduled release date in the
monthly patch cycle, which leaves a month-long window of vulnerable
exposure. To the relief of these users, third-party groups are now
offering unofficial patches for some of the identified zero-day
vulnerabilities. These groups include ZERT (Zero-day Emergency Response
Team) and the commercial company Determina.
This is not the first instance of a third-party patch response to
crippling Microsoft vulnerabilities. Earlier this year, a researcher
named Ilfak Guilfanov released an unofficial patch for the WMV
vulnerability that saved many users from compromise during their wait
for the official Microsoft patch. While the patches provided by ZERT may
offer users protection from immediate threats, they may come at the cost
of losing official vendor support from Microsoft and, ultimately, ruin
the chance for application of the real patch. Should this patch trend
progress, it will be interesting to see the response from vendors like
Microsoft in regards to their patching cycles as well as their policies
dealing with external patch sources such as ZERT. It should be noted
that ZERT recommends the use of vendor-supplied patches (once available)
over its own and alerts users that its patches are only provided as a
temporary solution.
Until next issue,
- The Neohapsis Security Threat Watch Team
--- Advertisement
-----------------------------------------------------
ALERT: “How A Hacker Launches A Web Application Attack!”- White Paper
Learn why 70% of today's successful hacks involve Web Application attacks such
as: SQL Injection, XSS, Cookie Manipulation and Parameter Manipulation.
All undetectable by Firewalls and IDS! Download *FREE* white paper from SPI Dynamics
for a complete guide to protection!
--- TechCareers: The Job Hunt And Age Discrimination
-----------------------------------------------
By Rusty DAversa, TechCareers.com
Fighting discrimination is all about proving your value to the hiring
manager, says a career expert.
http://www.techcareers.com/content/article.asp?articleid=185303267
-----------------------------------------------
NWC Podcasts
Listen to Network Computing's editors talk about today's most pressing
enterprise challenges with some of the IT industry's leading experts.
Tune in as we cover topics including security, collaboration,
convergence and more.
http://www.networkcomputing.com/podcasts
--- New Vulnerabilities
-----------------------------------------------
Below is a list of new vulnerabilities announced this week.
Vulnerabilities considered to be 'critical' involve highly-deployed
software, or carry a high-risk of system compromise. Note that
vulnerabilities not highlighted may still be of critical severity
to your environment.
**** Highlighted critical vulnerabilities ****
Microsoft Indexing Service: remote overflow
Microsoft Internet Explorer: ActiveX remote overflow
Microsoft Windows: VML remote overflow
**** Newly announced vulnerabilities this week ****
____Windows____
Ipswitch WS_FTP 5.05: remote overflow
http://archives.neohapsis.com/archives/bugtraq/2006-09/0437.html
Microsoft Indexing Service: remote overflow
http://archives.neohapsis.com/archives/microsoft/2006-q3/0006.html
Microsoft Internet Explorer: ActiveX remote overflow
http://archives.neohapsis.com/archives/cc/2006-q3/0010.html
Microsoft Windows: VML remote overflow
http://archives.neohapsis.com/archives/microsoft/2006-q3/0006.html
RSA Keon 6.6: log verification bypass
http://archives.neohapsis.com/archives/bugtraq/2006-09/0371.html
____BSD____
FreeBSD 5.5: local overflow
http://archives.neohapsis.com/archives/vulnwatch/2006-q3/0044.html
____CGI____
Back-end 0.4.5: remote PHP file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0420.html
Blog Pixel Motion 2.1.1: remote code execution
http://archives.neohapsis.com/archives/bugtraq/2006-09/0444.html
Comdev 3.1: Remote File Inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0450.html
http://archives.neohapsis.com/archives/bugtraq/2006-09/0451.html
http://archives.neohapsis.com/archives/bugtraq/2006-09/0452.html
http://archives.neohapsis.com/archives/bugtraq/2006-09/0453.html
http://archives.neohapsis.com/archives/bugtraq/2006-09/0454.html
http://archives.neohapsis.com/archives/bugtraq/2006-09/0455.html
http://archives.neohapsis.com/archives/bugtraq/2006-09/0456.html
http://archives.neohapsis.com/archives/bugtraq/2006-09/0457.html
http://archives.neohapsis.com/archives/bugtraq/2006-09/0459.html
http://archives.neohapsis.com/archives/bugtraq/2006-09/0460.html
http://archives.neohapsis.com/archives/bugtraq/2006-09/0461.html
http://archives.neohapsis.com/archives/bugtraq/2006-09/0462.html
http://archives.neohapsis.com/archives/bugtraq/2006-09/0463.html
ConPresso CMS 4.0.5a: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2006-09/0494.html
ContentKeeper 123.25: sensitive information disclosure
http://archives.neohapsis.com/archives/bugtraq/2006-09/0358.html
CubeCart 2.0: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2006-09/0422.html
DanPHPSupport 0.5: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-09/0417.html
Google Mini Search Appliance 4.4.102.M.36: path disclosure
http://archives.neohapsis.com/archives/bugtraq/2006-09/0360.html
JAF CMS 4.0rc1: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2006-09/0439.html
Jamroom Media CMS: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-09/0378.html
Joomla 1.0.11 eCommerce Edition: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-09/0445.html
Joomla BSQ 1.8.0: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2006-09/0492.html
Kietu: local PHP file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0405.html
Live Customer Support Solution: file disclosure
http://archives.neohapsis.com/archives/bugtraq/2006-09/0431.html
MacOS X Mach Exception Server < 10.4.8: privilege escalation
http://archives.neohapsis.com/archives/bugtraq/2006-09/0505.html
Mercury SiteScope 8.2: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-09/0507.html
MkPortal: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-09/0458.html
MyPhotos: remote PHP file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0389.html
MySource Matrix 3.8: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-09/0359.html
Newswriter SW 1.4.2: remote PHP file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0468.html
OlateDownload 3.4.0: SQL tampering
http://archives.neohapsis.com/archives/bugtraq/2006-09/0508.html
Opial Download Management 1.0: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-09/0390.html
PHP Invoice 2.2: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-09/0427.html
PHPSelect: remote PHP file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0464.html
PHProjekt 5.1.1: remote PHP file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0496.html
PLESK 7.6: directory traversal
http://archives.neohapsis.com/archives/bugtraq/2006-09/0362.html
PNews 1.1.0: remote PHP file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0398.html
PhotoStore: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-09/0391.html
PostNuke 0.762: SQL tampering
http://archives.neohapsis.com/archives/bugtraq/2006-09/0497.html
QB QuickBlogger 1.4: remote PHP file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0418.html
Red Mombin 0.7: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-09/0466.html
SAP Internet Transaction Server 6.2: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-09/0467.html
Typo3 4.x: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-09/0384.html
UBB.threads 6.5.1.1: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2006-09/0495.html
Vbulletin 2.x: SQL tampering
http://archives.neohapsis.com/archives/bugtraq/2006-09/0423.html
WebspotBlogging 3.0: remote PHP file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0416.html
Woltlab Burning Board 2.3.x: SQL tampering
http://archives.neohapsis.com/archives/bugtraq/2006-09/0365.html
Yblog: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-09/0512.html
Zen Cart 1.3.5: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-09/0476.html
jevoncms: path disclosure
http://archives.neohapsis.com/archives/bugtraq/2006-09/0364.html
mambo-com_madeira: remote script execution
http://archives.neohapsis.com/archives/bugtraq/2006-09/0448.html
net2ftp: remote PHP file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0442.html
phpBB XS 0.58: remote PHP file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0513.html
phpBB XS 2: remote PHP file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0479.html
phpMyChat 0.1: remote PHP file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0425.html
phpQuestionnaire 3.12: remote PHP file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0370.html
php_news 2.0: remote PHP file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0419.html
phpstak: remote PHP file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0382.html
webnews 1.4: remote PHP file inclusion
http://archives.neohapsis.com/archives/bugtraq/2006-09/0421.html
wwwthreads 5.4.2: XSS
http://archives.neohapsis.com/archives/bugtraq/2006-09/0393.html
--- Patches and Updates
-----------------------------------------------
The following contains a list of vendor patches and updates released
this week.
____Windows____
Microsoft > MS06-052: VGM
http://archives.neohapsis.com/archives/microsoft/2006-q3/0006.html
Microsoft > MS06-053: Indexing Service
http://archives.neohapsis.com/archives/microsoft/2006-q3/0006.html
Microsoft > MS06-054: Office
http://archives.neohapsis.com/archives/microsoft/2006-q3/0006.html
Microsoft > MS06-055: VML
http://archives.neohapsis.com/archives/microsoft/2006-q3/0006.html
____Linux____
Debian > DSA 1183-1: kernel
http://archives.neohapsis.com/archives/bugtraq/2006-09/0383.html
Debian > DSA 1184-2: kernel
http://archives.neohapsis.com/archives/bugtraq/2006-09/0426.html
Debian > DSA 1185-1: OpenSSL
http://archives.neohapsis.com/archives/bugtraq/2006-09/0478.html
Debian > DSA 1186-1: cscope
http://archives.neohapsis.com/archives/bugtraq/2006-09/0511.html
Debian > DSA 1187-1: migrationtools
http://archives.neohapsis.com/archives/bugtraq/2006-09/0510.html
Gentoo > GLSA 200609-17: OpenSSH
http://archives.neohapsis.com/archives/bugtraq/2006-09/0472.html
Gentoo > GLSA200609-13: gzip
http://archives.neohapsis.com/archives/bugtraq/2006-09/0387.html
Gentoo > GLSA200609-14: ImageMagick
http://archives.neohapsis.com/archives/bugtraq/2006-09/0414.html
Gentoo > GLSA200609-15: GnuTLS
http://archives.neohapsis.com/archives/bugtraq/2006-09/0413.html
Gentoo > GLSA200609-16: Tikiwiki
http://archives.neohapsis.com/archives/bugtraq/2006-09/0424.html
Gentoo > GLSA200609-17: OpenSSH
http://archives.neohapsis.com/archives/bugtraq/2006-09/0449.html
Gentoo > GLSA200609-18: Opera
http://archives.neohapsis.com/archives/bugtraq/2006-09/0465.html
Gentoo > GLSA200609-19: Mozilla Firefox
http://archives.neohapsis.com/archives/bugtraq/2006-09/0485.html
Gentoo > GLSA200609-20: DokuWiki
http://archives.neohapsis.com/archives/bugtraq/2006-09/0482.html
Mandriva > MDKSA-2006:157-1: musicbrainz
http://archives.neohapsis.com/archives/linux/mandrake/2006-q3/0109.html
Mandriva > MDKSA-2006:169: Thunderbird
http://archives.neohapsis.com/archives/linux/mandrake/2006-q3/0104.html
Mandriva > MDKSA-2006:170-1: webmin
http://archives.neohapsis.com/archives/linux/mandrake/2006-q3/0108.html
Mandriva > MDKSA-2006:171: OpenLDAP
http://archives.neohapsis.com/archives/linux/mandrake/2006-q3/0110.html
Mandriva > MDKSA-2006:172: OpenSSL
http://archives.neohapsis.com/archives/linux/mandrake/2006-q3/0111.html
Mandriva > MDKSA-2006:173: ffmpeg
http://archives.neohapsis.com/archives/linux/mandrake/2006-q3/0112.html
Mandriva > MDKSA-2006:174: gstreamer-ffmpeg
http://archives.neohapsis.com/archives/linux/mandrake/2006-q3/0113.html
Mandriva > MDKSA-2006:175: mplayer
http://archives.neohapsis.com/archives/linux/mandrake/2006-q3/0114.html
Mandriva > MDKSA-2006:176: xine-lib
http://archives.neohapsis.com/archives/linux/mandrake/2006-q3/0115.html
OpenPKG > OpenPKG-SA-2006.021: OpenSSL
http://archives.neohapsis.com/archives/bugtraq/2006-09/0470.html
SuSE > SUSE-SA:2006:056: gzip
http://archives.neohapsis.com/archives/linux/suse/2006-q3/0281.html
SuSe > SUSE-SA:2006:057: kernel
http://archives.neohapsis.com/archives/linux/suse/2006-q3/0292.html
SuSe > SUSE-SR:2006:023: X11
http://archives.neohapsis.com/archives/linux/suse/2006-q3/0285.html
SuSe >SUSE-SA:2006:058: OpenSSL
http://archives.neohapsis.com/archives/linux/suse/2006-q3/0293.html
Trustix > TSLSA-2006-0054: OpenSSL
http://archives.neohapsis.com/archives/bugtraq/2006-09/0491.html
Ubuntu > USN-352-1: Thunderbird
http://archives.neohapsis.com/archives/bugtraq/2006-09/0386.html
Ubuntu > USN-353-1: OpenSSL vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2006-09/0475.html
rPath > rPSA-2006-0173-1: openoffice.org
http://archives.neohapsis.com/archives/bugtraq/2006-09/0432.html
rPath > rPSA-2006-0174-1: OpenSSH
http://archives.neohapsis.com/archives/bugtraq/2006-09/0443.html
rPath > rPSA-2006-0175-2: OpenSSL
http://archives.neohapsis.com/archives/bugtraq/2006-09/0504.html
rPath > rPSA-2006-0176-1: OpenLDAP
http://archives.neohapsis.com/archives/bugtraq/2006-09/0506.html
____BSD____
FreeBSD > FreeBSD-SA-06:23: OpenSSL
http://archives.neohapsis.com/archives/bugtraq/2006-09/0469.html
____HP-UX____
HP-UX > HPSBUX02152 SSRT5973: kerberos
http://archives.neohapsis.com/archives/bugtraq/2006-09/0407.html
HP-UX > HPSBUX02155 SSRT061235: samba
http://archives.neohapsis.com/archives/bugtraq/2006-09/0408.html
--- Advertisement
-----------------------------------------------------
Focus on... e-Commerce Solutions
Want to learn more about e-Commerce Solutions?
Check out these sponsored links from Internap.
Performance enhancing technology for gaming:
Build player loyalty bordering on fanaticism:
--- Sign Off
----------------------------------------------------------
If this e-mail was passed to you, and you would like to begin receiving
our free security e-mail newsletter on a weekly basis, we invite you to
subscribe today by forwarding this message to [subscribe_stwupdate.networkcomputing.com].
Or you can subscribe directly here:
http://www.networkcomputing.com/go/stw.jhtml
To manage all aspects of your subscription and newsletter account,
simply use the URL below. You'll need your e-mail address and
password to log in. If you don't have your password, you can generate
a new one using the same URL. Once logged in, you can change your
e-mail address and password as well as select specific platforms for
which you'd like to receive information on patches and vulnerabilities.
If you have any questions regarding this system, please don't hesitate
to e-mail us at stwnwc.com.
http://stwpref.update.networkcomputing.com/CMP/NWC/prefctr.asp
Put Us On Your White List
Don't let an over-eager e-mail filter bounce the Network Computing
Security Threat Watch newsletter! Our address:
NetworkComputingupdate.networkcomputing.com
needs to be in your address book or on your anti-spam white list. Ask your
admin or ISP how to do this, or check your anti-spam utility documentation.
Important subscription contacts:
CMP Media LLC
600 Community Drive
Manhasset, NY 11030
Unsubscribe to Network Computing's newsletters.
http://www.networkcomputing.com/newsletters/unsubscribe.html
Sign up for your own issue of this newsletter.
http://www.networkcomputing.com/newsletters/subscriptions.html
Subscribe to Network Computing's newsletters.
http://www.networkcomputing.com/newsletters/subscriptions.html
Still not receiving your own FREE subscription to Network Computing
magazine?
http://networkcomputingsubscriptions.com/customerservice/
ADDITIONAL SUBSCRIPTION CONTACT:
Please send an e-mail message to mailto:newsletterscmp.com if you need
assistance changing your e-mail address, unsubscribing from this
newsletter, or require additional assistance with your subscription.
Please be sure to include the name of this newsletter in your message.
Missed an issue? You can find all back issues of Security Threat Watch
(as well as Security Alert Consensus and Security Express) online.
http://archives.neohapsis.com/
Note: To better serve you we use dynamic URLs within our advertisments,
which allow us to see how many readers click on a given ad. We do not
share this information, or your personal information, with any outside
party. Concerned about the privacy of your information relative to these
tracking URLs? Please refer to our privacy policy.
http://www.doubleclick.net/us/corporate/privacy
We'd like to know what you think about the newsletter and what
information you'd like to see in future editions. E-mail your comments
to (stwnwc.com).
To unsubscribe from this newsletter, forward this message to
[unsubscribe_stwupdate.networkcomputing.com].
Copyright (c) 2006 Network Computing, a CMP Media LLC publication. All
Rights Reserved. Distributed by Network Computing
(http://www.networkcomputing.com). Powered by Neohapsis Inc., a
Chicago-based security assessment and integration services consulting
group (infoneohapsis.com | http://www.neohapsis.com/).
This message powered by DARTmail
http://www.doubleclick.net/us/corporate/privacy
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]