Security Alerts
July 30, 2005
Cisco vulnerability posted to Internet
One day after a security researcher and organizers of the Black Hat USA conference agreed not to post details of vulnerabilities in Cisco's router software, the information has been published on the Internet.
READ MORE | Permanent link
NGSSoftware warns of HP OpenView Radia Management Agent flaw
According to an advisory from NGSSoftware, "By connecting to the TCP port and sending a crafted packet, it is possible to traverse out of C:\Program Files\Novadigm (the apparent working directory) and run any executable that is located on the same logical disk partition, in this case the C: drive." For more, go to:
NGSSoftware advisory
HP advisory
READ MORE | Permanent link
Gentoo patches MediaWiki
A cross-scripting vulnerability has been found in MediaWiki, a collaborative editing tool. An attacker could exploit this to run arbitrary JavaScript code on the affected machine.
READ MORE | Permanent link
Gentoo upgrades sandbox
The way temporary files are created by sandbox could be exploited by a local user to overwrite arbitrary files with root privileges.
READ MORE | Permanent link
Gentoo releases Ethereal update
A number of flaws have been found in the popular protocol analyzer. A fix is available.
READ MORE | Permanent link
Debian issues fix for cacti
Several flaws have been found in Cacti, a database tool. The most serious of the flaws could be exploit to run malicious code on the affected machine.
READ MORE | Permanent link
Debian patches phpbb2
According to a Debian advisory, "A cross-site scripting vulnerability has been detected in phpBB2, a fully featured and skinneable flat webforum software, that allows remote attackers to inject arbitrary web script or HTML via nested tags."
READ MORE | Permanent link
Debian updates webcalendar
A flaw in the Webcalender authorization module could allow unauthorized parties to view calendar data.
READ MORE | Permanent link
Debian releases gaim fix
A new update for Gaim, an open source instant messaging client, fixes a potential denial-of-service vulnerability.
READ MORE | Permanent link
Debian patches gopher
The gopher browser for Debian creates temporary files in a non-secure manner. A fix is available.
READ MORE | Permanent link
KDE patches libgadu/Kopete
According to an alert from KDE, "Kopete contains a copy of libgadu that is used if no compatible version is installed in the system. Several input validation errors have been reported in libgadu that can lead to integer overflows and remote DoS or arbitrary code execution." For more, go to:
KDE advisory
Related Gentoo advisories:
1, 2
READ MORE | Permanent link
Ubuntu fixes PAM/NSS LDAP
According to an Ubuntu advisory, "Andrea Barisani discovered a flaw in the SSL handling of pam-ldap and libnss-ldap. When a client connected to a slave LDAP server using SSL, the slave server did not use SSL as well when contacting the LDAP master server. This caused passwords and other confident information to be transmitted unencrypted between the slave and the master."
READ MORE | Permanent link
Ubuntu patches vim
A flaw in the vim text editor could be exploited to execute arbitrary shell commands with the privileges of the affected user.
READ MORE | Permanent link
Ubuntu releases fix for epiphany
A recent update for the Mozilla Suite caused a regression in the epiphany browser. A new fix is available.
READ MORE | Permanent link
Ubuntu issues patch for Tiff
A denial-of-service vulnerability has been found in the TIFF library. Certain values in a TIFF image header are not properly read, which could result in the application crashing.
READ MORE | Permanent link
Conectiva, Fedora release fixes for php
A new update for the popular PHP scripting language fixes two flaws in previous releases. An attacker could exploit this to run arbitrary PHP script on the affected machine. For more, go to:
Conectiva
Fedora
READ MORE | Permanent link
Fedora patches lvm
LVM creates insecure temporary files, which could be exploited by a local user to gain elevated privileges.
READ MORE | Permanent link
FreeBSD fixes ipsec
A flaw in the FreeBSD implementation of ipsec uses a contanst encryption key rather than an administrator-specified one.
READ MORE | Permanent link
SCO patches RPCBind for UnixWare
A denial-of-service vulnerability occurs when specific portmap requests are recieved. SCO has released a fix for UnixWare.
READ MORE | Permanent link
SuSE patches zlib
A flaw in the way zlib, a file compression/decompression utility, handles compressed files could be exploited to crash the application.
READ MORE | Permanent link
Mandriva, OpenPKG releases fetchmail fix
A buffer overflow in the popular fetchmail e-mail client could be exploited in a denial-of-service attack or to potentially execute arbitrary code. For more, go to:
Mandriva
OpenPKG
READ MORE | Permanent link
OpenPKG patches SpamAssassin
An attacker could send malformed messages through SpamAssassin, causing the filtering applications to crash.
READ MORE | Permanent link
Mandriva releases fix for mozilla-thunderbird
A new update for the Mozilla-based Thunderbird browser could be exploited to run script with elevated privileges on the affected machine.
READ MORE | Permanent link
July 28, 2005
3Com patches wireless access point
3Com has released an update for its Office Connect Wireless 11g Access Point that fixes a flaw in the Web-based administrative interface. An attacker could exploit the flaw to gather device configuration information.
READ MORE | Permanent link
FreeBSD, OpenPKG patch zlib
A flaw in the way zlib, a file compression/decompression utility, handles compressed files could be exploited to crash the application. For more, go to:
FreeBSD
OpenPKG
READ MORE | Permanent link
Linux vendors patch ClamAV
A number of integer overflows have been found in the ClamAV anti-virus application. An attacker could exploit these flaws using specially crafted files. The exploit could be used to run malicious code on the affected machine. For more, go to:
Gentoo
Mandriva
READ MORE | Permanent link
More Mozilla Suite, Firefox fixes available
A number of Linux vendors have released update for the Mozilla Suite and Firefox browser based on multiple flaws found in the underlying code for both applications. Attackers could gain elevated privileges by exploiting the flaws. For more, go to:
Gentoo (Mozilla Suite)
Ubuntu (Firefox)
Ubuntu (Mozilla Suite)
READ MORE | Permanent link
Gentoo, Mandriva release Shorewall packages
According to the Gentoo advisory, "A vulnerability in Shorewall allows clients authenticated by MAC address filtering to bypass all other security rules." For more, go to:
Gentoo
Mandriva
READ MORE | Permanent link
Debian patches heartbeat
Heartbeat, a sub-system for High-Availability Linux, does not create temporary files in a secure fashion. An attacker could exploit this using a symlink attack.
READ MORE | Permanent link
Debian releases fix for affix
According to an alert from Debian, "Kevin Finisterre discovered two problems in the Bluetooth FTP client from affix, user space utilities for the Affix Bluetooth protocol stack."
READ MORE | Permanent link
Fedora issues krb5 patch
Two flaws in the MIT Kerberos 5 system (krb5) could be exploited to run arbitrary code on the affected machine.
READ MORE | Permanent link
Gentoo, Ubuntu release fetchmail fixes
A buffer overflow in the popular fetchmail e-mail client could be exploited in a denial-of-service attack or to potentially execute arbitrary code. For more, go to:
Gentoo
Ubuntu
READ MORE | Permanent link
July 25, 2005
Flaw in Novell GroupWise Webaccess
A cross-scripting vulnerability has been discovered in the Novell GroupWise Webaccess client. An attacker could send a specially-crafted message that when opened through the Webaccess client, could execute on the local system. For more, go to:
SecurityTracker advisory
Novell advisory
READ MORE | Permanent link
Debian patches heimdal
A buffer overflow in Debian's implementation of Heimdal could be exploited to run malicious code on the affected machine.
READ MORE | Permanent link
Debian issues fix for ekg
A number of flaws have been found in ekg, a instant messenger application. The most serious of the flaws could be exploited to run malicious code on the affected machine.
READ MORE | Permanent link
Debian updates phppgadmin
According to an alert from Debian, "A vulnerability has been discovered in phppgadmin, a set of PHP scripts to administrate PostgreSQL over the WWW, that can lead to disclose sensitive information. Successful exploitation requires that "magic_quotes_gpc" is disabled."
READ MORE | Permanent link
Debian patches krb5
Two flaws in the MIT Kerberos 5 system (krb5) could be exploited to run arbitrary code on the affected machine.
READ MORE | Permanent link
HP patches TCP/IP stack flaw in HP-UX
According to an alert from HP, "Several potential security vulnerabilities have been identified in the HP Tru64 UNIX TCP/IP including ICMP, and Initial Sequence Number generation (ISNs). These exploits could result in a remote Denial of Service (DoS) from network throughput reduction for TCP connections, the reset of TCP connections, or TCP spoofing."
READ MORE | Permanent link
KDE warns of flaw in Kate
A flaw in the way file permissions are set when Kate restores files to system could allow more liberal access to files after a restore. For more, go to:
KDE advisory
Related patches:
Mandriva
Ubuntu
READ MORE | Permanent link
Zlib flaw patched
A flaw in the way zlib, a file compression/decompression utility, handles compressed files could be exploited to crash the application. For more, go to:
Debian
Gentoo
Mandriva
Ubuntu
READ MORE | Permanent link
Gentoo patches Mozilla Thunderbird
A new update for the Mozilla-based Thunderbird browser could be exploited to run script with elevated privileges on the affected machine.
READ MORE | Permanent link
Mandriva patches nss_ldap
According to Mandriva, "Rob Holland, of the Gentoo Security Audit Team, discovered that pam_ldap and nss_ldap would not use TLS for referred connections if they are referred to a master after connecting to a slave, regardless of the "ssl start_tls" setting in ldap.conf."
READ MORE | Permanent link
All the Security Alerts entries
Network World on Twitter: Get our tweets and stay plugged in to networking news
