|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Major Vulnerabilities in Cisco IOS, Java Runtime Environment and Oracle 8i, 9i and 10g
From: Security Threat Watch Newsletter (NetworkComputing
update.networkcomputing.com)
Date: Mon Jan 29 2007 - 13:01:14 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Security Threat Watch
Number 167
Monday, January 29, 2007
Created for you by Network Computing & Neohapsis
This week brought several major vulnerabilities in widely used products.
First, Cisco disclosed three vulnerabilities in its IOS operating
system. The most severe of these could lead to the compromise of any
Cisco product running IOS.
Next, two vulnerabilities in the Java runtime environment were
disclosed. These vulnerabilities could allow a remote attacker, through
a malicious Java applet, to execute arbitrary code on a victimÕs
computer.
Lastly, a number of vulnerabilities in Oracle 8i, 9i and 10g were
disclosed. Among these are several buffer overflows that could allow a
remote attacker to compromise the system hosting the Oracle database.
Patches for all of these vulnerabilities are available from the
respective vendors. Information on obtaining these patches can be found
in this issue.
Until next issue,
- The Neohapsis Security Threat Watch Team
--- Advertisement
-----------------------------------------------------
FREE White Paper: "How a Hacker Uses SQL Injection to Steal Your Data"
It's as simple as placing additional SQL commands into a Web Form input
box giving hackers complete access to all your backend systems! Firewalls
and IDS will not stop such attacks because SQL Injections are NOT seen
as intruders. Download this *FREE* guide from SPI Dynamics to check for
SQL Injection vulnerabilities.
--- TechCareers: The Job Hunt And Age Discrimination
-----------------------------------------------
By Rusty DAversa, TechCareers.com
Fighting discrimination is all about proving your value to the hiring
manager, says a career expert.
http://www.techcareers.com/content/article.asp?articleid=185303267
-----------------------------------------------
--- New Vulnerabilities
-----------------------------------------------
Below is a list of new vulnerabilities announced this week.
Vulnerabilities considered to be 'critical' involve highly-deployed
software, or carry a high-risk of system compromise. Note that
vulnerabilities not highlighted may still be of critical severity
to your environment.
**** Highlighted critical vulnerabilities ****
Cisco IOS: multiple vulnerabilities
Java JDK 1.4.2/SDK 5.0: multiple vulnerabilities
Oracle 9i/10g: multiple vulnerabilities
**** Newly announced vulnerabilities this week ****
____Windows____
ARCserve Backup 11.1: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2007-01/0545.html
CA Personal Firewall 2007: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2007-01/0568.html
Citrix Presentation Server 4.0: remote overflow
http://archives.neohapsis.com/archives/bugtraq/2007-01/0561.html
Microsoft Visual C++ 6.0: local overflow
http://archives.neohapsis.com/archives/bugtraq/2007-01/0486.html
NCTAudioStudio 2.7.1: remote overflow
http://archives.neohapsis.com/archives/bugtraq/2007-01/0543.html
PGP Desktop 9.5: local overflow
http://archives.neohapsis.com/archives/vulnwatch/2007-q1/0025.html
Sienzo Digital Music Mentor 2.6.0.3: local overflow
http://archives.neohapsis.com/archives/bugtraq/2007-01/0544.html
WS_FTP 2007 Professional: format string vulnerability
http://archives.neohapsis.com/archives/bugtraq/2007-01/0624.html
Yahoo! Messenger 8.1.0.29: XSS
http://archives.neohapsis.com/archives/bugtraq/2007-01/0613.html
____Linux____
Grsecurity Kernel Patch: local overflow
http://archives.neohapsis.com/archives/bugtraq/2007-01/0469.html
Trend Micro VirusWall 3.81: local overflow
http://archives.neohapsis.com/archives/bugtraq/2007-01/0591.html
____HP-UX____
Apache 2.0.58: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2007-01/0560.html
____Network Devices____
Cisco IOS: multiple vulnerabilities
http://archives.neohapsis.com/archives/cc/2007-q1/0006.html
http://archives.neohapsis.com/archives/vulnwatch/2007-q1/0021.html
http://archives.neohapsis.com/archives/vulnwatch/2007-q1/0022.html
http://archives.neohapsis.com/archives/vulnwatch/2007-q1/0023.html
http://archives.neohapsis.com/archives/bugtraq/2007-01/0616.html
____CGI____
ASP Edge 1.2: SQL injection
http://archives.neohapsis.com/archives/bugtraq/2007-01/0577.html
Advanced Guestbook 2.4.2: remote PHP inclusion
http://archives.neohapsis.com/archives/bugtraq/2007-01/0534.html
Fantastic News 2.1.5: remote PHP inclusion
http://archives.neohapsis.com/archives/bugtraq/2007-01/0490.html
FreeForum 0.9.0: remote PHP inclusion
http://archives.neohapsis.com/archives/bugtraq/2007-01/0477.html
GPS Content Managing System 1.2: SQL injection
http://archives.neohapsis.com/archives/bugtraq/2007-01/0586.html
LedgerSMB 1.1.4: arbitrary command execution
http://archives.neohapsis.com/archives/bugtraq/2007-01/0629.html
Login Manager 3.0: XSS
http://archives.neohapsis.com/archives/bugtraq/2007-01/0466.html
Open Conference Systems 2.8.2: remote PHP inclusion
http://archives.neohapsis.com/archives/bugtraq/2007-01/0631.html
Open-Realty 2.3.4: path disclosure
http://archives.neohapsis.com/archives/bugtraq/2007-01/0489.html
PHP Link Directory 3.0.6: XSS
http://archives.neohapsis.com/archives/bugtraq/2007-01/0488.html
Unique Ads 1.0: SQL injection
http://archives.neohapsis.com/archives/bugtraq/2007-01/0484.html
Website Baker 2.6.5: SQL injection
http://archives.neohapsis.com/archives/bugtraq/2007-01/0498.html
Wordpress 2.1: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2007-01/0562.html
Xero Portal 1.2: remote PHP inclusion
http://archives.neohapsis.com/archives/bugtraq/2007-01/0576.html
bitweaver 1.3.1: XSS
http://archives.neohapsis.com/archives/bugtraq/2007-01/0493.html
cmsimple 2.7: remote PHP inclusion
http://archives.neohapsis.com/archives/bugtraq/2007-01/0485.html
local Calendar System 1.1: remote PHP inclusion
http://archives.neohapsis.com/archives/bugtraq/2007-01/0634.html
phpAdsNew 2.0.7: remote PHP inclusion
http://archives.neohapsis.com/archives/bugtraq/2007-01/0487.html
uniForum 4: SQL injection
http://archives.neohapsis.com/archives/bugtraq/2007-01/0575.html
____Mobile Devices____
Mobile Phone Bluetooth (multiple vendors): remote DoS
http://archives.neohapsis.com/archives/bugtraq/2007-01/0508.html
http://archives.neohapsis.com/archives/bugtraq/2007-01/0509.html
http://archives.neohapsis.com/archives/bugtraq/2007-01/0513.html
____Cross Platform____
Bind 9: multiple vulnerabilities
http://archives.neohapsis.com/archives/bind/2007/0001.html
http://archives.neohapsis.com/archives/bind/2007/0002.html
Java JDK 1.4.2/SDK 5.0: multiple vulnerabilities
http://archives.neohapsis.com/archives/cc/2007-q1/0005.html
Oracle 9i/10g: multiple vulnerabilities
http://archives.neohapsis.com/archives/bugtraq/2007-01/0563.html
http://archives.neohapsis.com/archives/bugtraq/2007-01/0564.html
http://archives.neohapsis.com/archives/bugtraq/2007-01/0565.html
http://archives.neohapsis.com/archives/bugtraq/2007-01/0566.html
http://archives.neohapsis.com/archives/bugtraq/2007-01/0569.html
http://archives.neohapsis.com/archives/bugtraq/2007-01/0567.html
libchm 0.38: local overflow
http://archives.neohapsis.com/archives/vulnwatch/2007-q1/0026.html
http://archives.neohapsis.com/archives/bugtraq/2007-01/0617.html
--- Patches and Updates
-----------------------------------------------
The following contains a list of vendor patches and updates released
this week.
____Linux____
Debian > DSA 1251-1: netrik
http://archives.neohapsis.com/archives/bugtraq/2007-01/0479.html
Debian > DSA 1252-1: vlc
http://archives.neohapsis.com/archives/bugtraq/2007-01/0637.html
Debian > DSA 1253-1: Firefox
http://archives.neohapsis.com/archives/bugtraq/2007-01/0636.html
Debian > DSA 1254-1: bind9
http://archives.neohapsis.com/archives/vendor/2007-q1/0026.html
Gentoo > GLSA200701-13: fetchmail
http://archives.neohapsis.com/archives/bugtraq/2007-01/0496.html
Gentoo > GLSA200701-14: mod_auth_kerb
http://archives.neohapsis.com/archives/bugtraq/2007-01/0499.html
Gentoo > GLSA200701-15: sun JDK/JRE
http://archives.neohapsis.com/archives/bugtraq/2007-01/0500.html
Gentoo > GLSA200701-16: Acrobat Reader
http://archives.neohapsis.com/archives/bugtraq/2007-01/0501.html
Gentoo > GLSA200701-17: libgtop
http://archives.neohapsis.com/archives/bugtraq/2007-01/0515.html
Gentoo > GLSA200701-18: xine-ui
http://archives.neohapsis.com/archives/bugtraq/2007-01/0527.html
Gentoo > GLSA200701-19: openLDAP
http://archives.neohapsis.com/archives/bugtraq/2007-01/0529.html
Gentoo > GLSA200701-20: centericq
http://archives.neohapsis.com/archives/bugtraq/2007-01/0537.html
Gentoo > GLSA200701-21: kerberos
http://archives.neohapsis.com/archives/bugtraq/2007-01/0558.html
Gentoo > GLSA200701-22: squid
http://archives.neohapsis.com/archives/bugtraq/2007-01/0589.html
Gentoo > GLSA200701-23: cacti
http://archives.neohapsis.com/archives/bugtraq/2007-01/0612.html
Gentoo > GLSA200701-24: VLC media player
http://archives.neohapsis.com/archives/bugtraq/2007-01/0606.html
Mandriva > MDKSA-2006:217-2: proftpd
http://archives.neohapsis.com/archives/linux/mandrake/2007-q1/0048.html
Mandriva > MDKSA-2007:024: kdegraphics
http://archives.neohapsis.com/archives/linux/mandrake/2007-q1/0045.html
Mandriva > MDKSA-2007:025: kernel
http://archives.neohapsis.com/archives/linux/mandrake/2007-q1/0047.html
Mandriva > MDKSA-2007:026: squid
http://archives.neohapsis.com/archives/linux/mandrake/2007-q1/0049.html
Mandriva > MDKSA-2007:027: xine-ui
http://archives.neohapsis.com/archives/linux/mandrake/2007-q1/0050.html
Mandriva > MDKSA-2007:028: ulogd
http://archives.neohapsis.com/archives/bugtraq/2007-01/0632.html
Mandriva > MDKSA-2007:029: libsoup
http://archives.neohapsis.com/archives/linux/mandrake/2007-q1/0052.html
SuSE > SUSE-SA:2007:012: squid
http://archives.neohapsis.com/archives/linux/suse/2007-q1/0013.html
SuSE > SUSE-SA:2007:013: xine
http://archives.neohapsis.com/archives/bugtraq/2007-01/0535.html
Ubuntu > USN-398-4: Firefox
http://archives.neohapsis.com/archives/bugtraq/2007-01/0630.html
Ubuntu > USN-410-2: teTeX
http://archives.neohapsis.com/archives/bugtraq/2007-01/0605.html
Ubuntu > USN-411-1: libsoup
http://archives.neohapsis.com/archives/bugtraq/2007-01/0532.html
Ubuntu > USN-412-1: geoIP
http://archives.neohapsis.com/archives/bugtraq/2007-01/0538.html
Ubuntu > USN-413-1: bluez
http://archives.neohapsis.com/archives/bugtraq/2007-01/0539.html
Ubuntu > USN-414-1: squid
http://archives.neohapsis.com/archives/bugtraq/2007-01/0570.html
--- Advertisement
-----------------------------------------------------
FREE White Paper: "How a Hacker Uses SQL Injection to Steal Your Data"
It's as simple as placing additional SQL commands into a Web Form input
box giving hackers complete access to all your backend systems! Firewalls
and IDS will not stop such attacks because SQL Injections are NOT seen
as intruders. Download this *FREE* guide from SPI Dynamics to check for
SQL Injection vulnerabilities.
--- Sign Off
----------------------------------------------------------
If this e-mail was passed to you, and you would like to begin receiving
our free security e-mail newsletter on a weekly basis, we invite you to
subscribe today by forwarding this message to [subscribe_stwupdate.networkcomputing.com].
Or you can subscribe directly here:
http://www.networkcomputing.com/go/stw.jhtml
To manage all aspects of your subscription and newsletter account,
simply use the URL below. You'll need your e-mail address and
password to log in. If you don't have your password, you can generate
a new one using the same URL. Once logged in, you can change your
e-mail address and password as well as select specific platforms for
which you'd like to receive information on patches and vulnerabilities.
If you have any questions regarding this system, please don't hesitate
to e-mail us at stwnwc.com.
http://stwpref.update.networkcomputing.com/CMP/NWC/prefctr.asp
Put Us On Your White List
Don't let an over-eager e-mail filter bounce the Network Computing
Security Threat Watch newsletter! Our address:
NetworkComputingupdate.networkcomputing.com
needs to be in your address book or on your anti-spam white list. Ask your
admin or ISP how to do this, or check your anti-spam utility documentation.
Important subscription contacts:
CMP Media LLC
600 Community Drive
Manhasset, NY 11030
Unsubscribe to Network Computing's newsletters.
http://www.networkcomputing.com/newsletters/unsubscribe.html
Sign up for your own issue of this newsletter.
http://www.networkcomputing.com/newsletters/subscriptions.html
Subscribe to Network Computing's newsletters.
http://www.networkcomputing.com/newsletters/subscriptions.html
Still not receiving your own FREE subscription to Network Computing
magazine?
http://networkcomputingsubscriptions.com/customerservice/
ADDITIONAL SUBSCRIPTION CONTACT:
Please send an e-mail message to mailto:newsletterscmp.com if you need
assistance changing your e-mail address, unsubscribing from this
newsletter, or require additional assistance with your subscription.
Please be sure to include the name of this newsletter in your message.
Missed an issue? You can find all back issues of Security Threat Watch
(as well as Security Alert Consensus and Security Express) online.
http://archives.neohapsis.com/
Note: To better serve you we use dynamic URLs within our advertisments,
which allow us to see how many readers click on a given ad. We do not
share this information, or your personal information, with any outside
party. Concerned about the privacy of your information relative to these
tracking URLs? Please refer to our privacy policy.
http://www.doubleclick.net/us/corporate/privacy
We'd like to know what you think about the newsletter and what
information you'd like to see in future editions. E-mail your comments
to (stwnwc.com).
To unsubscribe from this newsletter, forward this message to
[unsubscribe_stwupdate.networkcomputing.com].
Copyright (c) 2007 Network Computing, a CMP Media LLC publication. All
Rights Reserved. Distributed by Network Computing
(http://www.networkcomputing.com). Powered by Neohapsis Inc., a
Chicago-based security assessment and integration services consulting
group (infoneohapsis.com | http://www.neohapsis.com/).
This message powered by DARTmail
http://www.doubleclick.net/us/corporate/privacy
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]