* Patches from Red Hat, Mandrake Linux, others * Beware virus that spreads via a message claiming to be from PayPal * Scam looks for bank card numbers, and other interesting reading Today’s bug patches and security alerts:Microsoft warns of VoIP vulnerabilityMicrosoft issued its first security patches of the new year Tuesday, warning users about a critical vulnerability in a component of the Microsoft Internet Security and Acceleration (ISA) Server used to control IP telephony traffic. IDG News Service, 01/13/04.https://www.nwfusion.com/news/2004/0113microissue.html?nl Microsoft patches:H.323 issue: https://www.microsoft.com/technet/security/bulletin/MS04-001.aspExchange 2003 vulnerability:https://www.microsoft.com/technet/security/bulletin/MS04-002.aspMDAC vulnerability:https://www.microsoft.com/technet/security/bulletin/MS04-003.aspMicrosoft products are not the only ones affected by the H.323 issue. CERT has released an advisory on the issue and some vendors have released patches. For more, go to: CERT advisory:https://www.cert.org/advisories/CA-2004-01.htmlISS advisory:https://xforce.iss.net/xforce/alerts/id/160 Cisco alert:https://www.cisco.com/warp/public/707/cisco-sa-20040113-h323.shtml**********Buffer overflow in Yahoo MessengerThe download component of the Yahoo Messenger product contains a buffer overflow that could allow an attacker to run any code on the affected machine. Users should upgrade to Version 5.6.0.1358. For more, go to:https://www.securitytracker.com/alerts/2004/Jan/1008651.html**********Flaw in KDE VCF readerA buffer overflow in KDE’s VCF file reader could be exploited by an attacker to run arbitrary code on the affected machine. For more, go to:https://www.kde.org/info/security/advisory-20040114-1.txtRelated Slackware patch:https://www.nwfusion.com/go2/0112bug2a.html**********Red Hat, SuSE patch tcpdumpA flaw in the ISAKMP message handling function of tcpdump, a network monitoring utility, could be exploited to send the tool into an endless loop. For more, go to:Red Hat:https://rhn.redhat.com/errata/RHSA-2004-007.htmlSuSEhttps://www.suse.com/de/security/2004_02_tcpdump.html**********Additional Linux kernel fixes availableAs we reported last week, a vulnerability in the Linux kernel could be exploited to gain root access on the affected machine. More vendors have made fixes available:Debian (IA-64):https://www.debian.org/security/2004/dsa-423SuSE:https://www.suse.com/de/security/2004_03_linux_kernel.html**********Mandrake Linux patches etherealTwo vulnerabilities have been found in the ethereal network monitoring package. Both could be used to crash the service. For more, go to:https://www.nwfusion.com/go2/0112bug2b.html**********Debian releases CVS patch:A flaw in the account management for the CVS pserver could allow anyone with access to the server to modify the CVSROOT/passwd file to give themselves root access to the affected machine. For more, go to:https://www.debian.org/security/2004/dsa-422**********Today’s roundup of virus alerts:Troj/Inor-B – This virus is dropped on the target machine when it visits a malicious Web site. No word on any permanent damage caused. (Sophos)W32/Rirc-A – Another worm that attempts to exploit weak passwords for network shares in order to spread. The virus connects to an IRC server to report its status. (Sophos)Troj/Mmdload-A – Similar to the Mimail-N virus, this little gnat spreads via a message purporting to be from PayPal. (Sophos)**********From the interesting reading department:ISS scoops up content security companyInternet Security Systems (ISS) Wednesday moved to bolster its content security capabilities, announcing that it purchased content security company Cobion for $33.4 million. IDG News Service, 01/14/04.https://www.nwfusion.com/news/2004/0114issscoop.html?nlMicrosoft extends Windows 98, ME support to 2006Microsoft, days before it was to end support for Windows 98 and Windows 98 Second Edition (SE), has decided to extend the life of the products until June 30, 2006. IDG News Service, 01/12/04.https://www.nwfusion.com/news/2004/0112microextend.html?nlScam looks for bank card numbersApparently, some criminals on the Internet need to invest in spell-checkers. A fake e-mail making the rounds Monday asks clients of Citibank’s online banking service to verify their e-mail, bank card number and PIN by clicking on a link in the e-mail. Citibank issued a statement Monday saying the notice did not come from the company, and the fake e-mail looks something less than professional. IDG News Service, 01/12/04.https://www.nwfusion.com/news/2004/0112scamlooks.html?nl Related content news analysis IBM cloud service aims to deliver secure, multicloud connectivity IBM Hybrid Cloud Mesh is a multicloud networking service that includes IT discovery, security, monitoring and traffic-engineering capabilities. By Michael Cooney Dec 07, 2023 3 mins Network Security Cloud Computing Networking news Gartner: Just 12% of IT infrastructure pros outpace CIO expectations Budget constraints, security concerns, and lack of talent can hamstring infrastructure and operations (I&O) professionals. By Denise Dubie Dec 07, 2023 4 mins Network Security Data Center Industry feature Data centers unprepared for new European energy efficiency regulations Regulatory pressure is driving IT teams to invest in more efficient servers and storage and improve their data-center reporting capabilities. By Maria Korolov Dec 07, 2023 7 mins Enterprise Storage Enterprise Storage Enterprise Storage news analysis AMD launches Instinct AI accelerator to compete with Nvidia AMD enters the AI acceleration game with broad industry support. First shipping product is the Dell PowerEdge XE9680 with AMD Instinct MI300X. By Andy Patrizio Dec 07, 2023 6 mins CPUs and Processors Generative AI Data Center Podcasts Videos Resources Events NEWSLETTERS Newsletter Promo Module Test Description for newsletter promo module. Please enter a valid email address Subscribe