Cisco kicks off IOS Patch Wednesday

Patches from Cisco, Mozilla, Gentoo, others Criminals target CA's BrightStor in new attack What spooks Microsoft's chief security advisor, and other interesting reading

Cisco's first Patch Wednesday produces five IOS alerts
Cisco Wednesday 'celebrated' its first six-monthly patch schedule for IOS by delivering five separate security alerts. The alerts affect Cisco IOS Multicast VPN (MPVN); IOS with OSPF, MPLS VPN, and Supervisor 32, Supervisor 720, or Router Switch Processor 720; IOS user datagram protocol delivery; and IOS' Data-link Switching feature. Cisco Subnet, 03/26/08.

Cisco advisories:

Cisco IOS Multicast Virtual Private Network (MVPN) Data Leak

To continue reading, register here and become an Insider. You'll get free access to premium content from CIO, Computerworld, CSO, InfoWorld, and Network World. See more Insider content or sign in.

Cisco's first Patch Wednesday produces five IOS alerts
Cisco Wednesday 'celebrated' its first six-monthly patch schedule for IOS by delivering five separate security alerts. The alerts affect Cisco IOS Multicast VPN (MPVN); IOS with OSPF, MPLS VPN, and Supervisor 32, Supervisor 720, or Router Switch Processor 720; IOS user datagram protocol delivery; and IOS' Data-link Switching feature. Cisco Subnet, 03/26/08.

Cisco advisories:

Cisco IOS Multicast Virtual Private Network (MVPN) Data Leak

Cisco IOS User Datagram Protocol Delivery Issue For IPv4/IPv6 Dual-stack Routers

Cisco IOS Virtual Private Dial-up Network Denial of Service Vulnerability

Multiple DLSw Denial of Service Vulnerabilities in Cisco IOS

Vulnerability in Cisco IOS with OSPF, MPLS VPN, and Supervisor 32, Supervisor 720, or Route Switch Processor 720
**********

Mozilla fixes 10 Firefox flaws, half seen as 'critical'
Mozilla yesterday patched 10 vulnerabilities, half of them marked "critical," in its open-source browser as it updated Firefox to Version 2.0.0.13. The new Mozilla Messaging Inc. spin-off, however, was not able to provide a matching update to its Thunderbird e-mail client, which shares five of the Firefox flaws that were fixed. Computerworld, 03/26/08.

Firefox 2.0.0.13 release notes
**********

Two new fixes from Gentoo:

Wireshark (denial of service)

MIT Kerberos 5 (multiple flaws)
**********

Two new updates from Mandriva:

wml (symlink attack, file overwrite)

bzip2 (denial of service)
**********

Three new patches from Debian:

cupsys (multiple flaws)

serendipity (cross scripting flaw)

debian-goodies (elevated privileges)
**********

Two new updates from Ubuntu:

Firefox (multiple flaws)

bzip2 (denial of service)
**********

Two new updates from rPath:

Ruby (information disclosure)

gnome-ssh-askpass (session hijack)
**********

Today's malware news:

Criminals target CA's BrightStor in new attack
Just days after Microsoft warned of attacks targeting its Jet Database Engine software, cybercriminals have found a new program to attack: CA's BrightStor ARCserve Backup. The new attack was reported Monday by Symantec, which said that a malicious Web page with a .cn domain was serving the attack code. IDG News Service, 03/25/08.

Hackers seize on Excel vulnerability
Researchers at Symantec said late Tuesday they've spotted a Web site that tries to exploit computers lacking one of the recently issued patches for versions of Microsoft's Excel spreadsheet program. The vulnerability involves a malicious Excel file that when opened can allow a hacker to execute other code on a PC. IDG News Service, 03/26/08.

Also: Microsoft admits it knew about, but didn't patch, bugs

Symantec suspects bot in attacks on D-Link routers
Suspicious port scanning that's been tracked back to D-Link routers may mean a worm or bot is on the loose and infiltrating the popular brand's devices using a three-year-old vulnerability, security researchers at Symantec Corp. said today. Computerworld, 03/25/08.
**********

From the interesting reading department: