* Patches from Microsoft, Red Hat, SCO, others * Beware a variety of Trojans * Security professionals form CSO council, and other interesting reading Who needs the Atkins Diet? At last week’s Future Forward 03 conference in Portsmouth, NH, CareGroup and Harvard Medical School CIO Dr. John Halamka said he’s on an all Microsoft diet:“It’s a great company, but every time a new virus comes out, I lose two pounds.”Today’s bug patches and security alerts:Microsoft patches three critical security problems Microsoft released the second installment of its now monthly security bulletins, patching three software holes in Windows systems that it said were “critical” security risks and a fourth problem with Microsoft Office that the company rated “important.” IDG News Service, 11/11/03.Story: https://www.nwfusion.com/news/2003/1111mspatch.html?nlRelated Microsoft advisories:Vulnerability in Microsoft Word and Microsoft Excel could allow arbitrary code to run:https://www.microsoft.com/technet/security/bulletin/MS03-050.aspBuffer overrun in the Workstation Service could allow code execution:https://www.microsoft.com/technet/security/bulletin/ms03-049.asp Buffer overrun in Microsoft FrontPage Server Extensions could allow code execution:https://www.microsoft.com/technet/security/bulletin/ms03-051.aspCumulative security update for Internet Explorer:https://www.microsoft.com/technet/security/bulletin/ms03-048.asp CERT Advisory for Workstation Service flaw:https://www.cert.org/advisories/CA-2003-28.html**********Hylafax bug patchedA number of Linux vendors have released update Hylafax packages that fix a format string vulnerability that could be exploited to run an attacker’s code of choice on the affected machine. For more, go to:Hylafax official site:https://bugs.hylafax.org/bugzilla/show_bug.cgi?id=468Conectiva:https://www.nwfusion.com/go2/1110bug2a.htmlMandrake Linux:https://www.nwfusion.com/go2/1110bug2b.htmlSuSE:https://www.suse.com/de/security/2003_045_hylafax.html**********Red Hat, OpenPKG patch postgresqlTwo bugs found in the postgresql database code could be exploited to trigger a buffer overflow, which could be used to run malicious code on the affected server. For more, go to:Red Hat:https://rhn.redhat.com/errata/RHSA-2003-313.htmlOpenPKG:https://www.nwfusion.com/go2/1110bug2c.html**********SCO patches multiple vulnerabilities in gwxlibs for OpenServerA number of vulnerabilities have been fixed in the gwxlibs package for OpenServer. Some of the flaws could be exploited to run arbitrary code on the effected machine. For more, go to:ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.29SCO issues OpenSSH fixA recent release of SCO’s OpenSSH implementation only worked under a root login. That problem has been fixed. For more, go to:ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.24Perl cross-scripting flaw fixed for SCO OpenServerA cross-scripting vulnerability in the Perl cgi.pm module has been fixed by SCO for those running OpenServer. For more, go to:ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.30**********Red Hat releases Ethereal fixA number of flaws have been found in ethereal, a free network monitoring tool for Linux/Unix. The vulnerabilities could be exploited in a denial-of-service attack or to potentially execute the attacker’s code of choice. For more, go to:https://rhn.redhat.com/errata/RHSA-2003-323.html**********Debian patches epic4A buffer overflow in the epic4 IRC client could be exploited to crash the affected client or to potentially run arbitrary code on the effected machine. For more, go to:https://www.debian.org/security/2003/dsa-399Debian releases patch for ConquestA buffer overflow in the Conquest game package could be exploited to gain the privileges of the “conquest” group. A fix is available. For more, go to:https://www.debian.org/security/2003/dsa-398Debian omega-rpg patch releasedSimilar to the problem with Conquest, a buffer overflow in the omega-rpg game could be exploited to gain the privileges of the “games” group. For more, go to:https://www.debian.org/security/2003/dsa-400**********Today’s roundup of virus alerts:Troj/BDSinit-A – A backdoor Trojan that opens a port on the infected computer to listen for commands from an intruder. (Sophos)Troj/Webber-C – A password-stealing Trojan horse that spreads via e-mail that looks like it’s from CitiBank regarding a home loan. (Sophos)Troj/Muly-A – Another Trojan that opens a port so an attacker may access the infected machine. The virus also sends information about its target to a Web site. (Sophos)Darker.A – This one’s a novelty: A virus that spreads via e-mail attachment pretending to be a useful application. When opened it sends itself out to everyone in the user’s address book. (Panda Software)**********From the interesting reading department:Security professionals form CSO councilA group of information security professionals has formed a “Global Council of CSOs” in an effort to better address online security challenges. IDG News Service, 11/12/03.https://www.nwfusion.com/news/2003/1112securprofe.html?nlMicrosoft prepares security assault on LinuxMicrosoft is preparing a major PR assault over Windows’ perceived security failings in which it will criticize Linux for taking too long to fix bugs, we have learned. InfoWorld, 11/11/03.http://www.infoworld.com/article/03/11/11/HNmsassault_1.htmlCisco, Nortel to embrace SSL-based VPNsCisco and Nortel – arguably the two biggest names in IP Security VPNs – are getting ready to shake up the fast-growing Secure Sockets Layer segment of the market, which they’ve largely ignored until now. Network World, 11/10/03.https://www.nwfusion.com/news/2003/1110ciscossl.html?nlCrankin’ up the heatNew Web application firewalls give you the chance to burn Port 80 hackers. Network World, 11/10/03.https://www.nwfusion.com/ee2/2003/1110appfw.html?nlFeds to push new set of security controlsTo bolster information systems security, the federal government is pushing to have civilian agencies, such as the Department of Agriculture, follow new regulations based on practices at the Department of Defense and Central Intelligence Agency. Network World, 11/10/03.https://www.nwfusion.com/news/2003/1110nist.html?nlComputer viruses now 20 years oldThis week computer viruses celebrate 20 years of causing trouble and strife to all types of computer users. U.S. student Fred Cohen was behind the first documented virus that was created as an experiment in computer security. Now there are almost 60,000 viruses in existence and they have gone from being a nuisance to a permanent menace. BBC News, 11/10/03.https://news.bbc.co.uk/1/hi/technology/3257165.stm Related content how-to Doing tricks on the Linux command line Linux tricks can make even the more complicated Linux commands easier, more fun and more rewarding. By Sandra Henry-Stocker Dec 08, 2023 5 mins Linux news TSMC bets on AI chips for revival of growth in semiconductor demand Executives at the chip manufacturer are still optimistic about the revenue potential of AI, as Nvidia and its partners say new GPUs have a lead time of up to 52 weeks. By Sam Reynolds Dec 08, 2023 3 mins CPUs and Processors Technology Industry news End of road for VMware’s end-user computing and security units: Broadcom Broadcom is refocusing VMWare on creating private and hybrid cloud environments for large enterprises and divesting its non-core assets. By Sam Reynolds Dec 08, 2023 3 mins Mergers and Acquisitions news analysis IBM cloud service aims to deliver secure, multicloud connectivity IBM Hybrid Cloud Mesh is a multicloud networking service that includes IT discovery, security, monitoring and traffic-engineering capabilities. By Michael Cooney Dec 07, 2023 3 mins Network Security Network Security Network Security Podcasts Videos Resources Events NEWSLETTERS Newsletter Promo Module Test Description for newsletter promo module. Please enter a valid email address Subscribe