* Patches from Conectiva, Red Hat, others * Beware another worm disguised as a Microsoft-issued patch * Worms sent via IM pose serious, growing threat, and other interesting reading Report: Widespread use of Microsoft software poses security riskWhatever Microsoft’s strengths or failings as a developer of reliable software, the mere existence of an operating-system monopoly is a critical security risk, argues a report released Wednesday at a Computer & Communications Industry Association (CCIA) gathering in Washington, D.C. IDG News Service, 09/24/03.https://www.nwfusion.com/news/2003/0924mssec.htmlRead the report: https://www.ccianet.org/papers/cyberinsecurity.pdfAnd about the report’s fallout at @Stake: https://www.nwfusion.com/news/2003/0926compadisow.htmlToday’s bug patches and security alerts:Conectiva patches PHP4Conectiva has released Version 4.3.3[2] of PHP4, the popular Web scripting language, that fixes an integer overflow and a number of smaller bugs and defects. For more, go to:https://www.nwfusion.com/go2/0929bug1a.html********** Red Hat patches gnome-pilotA minor bug was discovered in a previous release of gnome-pilot, a tool for configuring PDA synchronization. A new version is available:https://rhn.redhat.com/errata/RHBA-2003-220.htmlRed Hat updates ucd-snmp package A flaw in previous versions of ucd-snmp broke the memory reporting capabilities of the network management tool. A new version is available that fixes the problem:https://rhn.redhat.com/errata/RHBA-2002-159.htmlNew rhpl package from Red HatA flaw in rhpl, a package used by the Red Hat configuration module, could cause a system to run out of file descriptors. A fix is available:https://rhn.redhat.com/errata/RHBA-2002-225.html**********EnGarde patches WebTool flawA bug in EnGarde’s WebTool application, which allows users to generate SSH keys, could be exploited to steal passphrases. EnGarde recommends users upgrade as soon as possible. For more, go to:https://www.nwfusion.com/go2/0929bug1b.html**********LanSuite 2003 bugs patchedTwo vulnerabilities have been found in 602Pro’s LanSuite 2003, a SMPT/POP3 e-mail system. One flaw could be used to view users information (mailbox number, message ID, et al) while another could be exploited to view any file on the affected machine. A patch is available here:https://download3.software602.com/ls2003.exe**********OpenPKG, Mandrake Linux patch proftpdA bug in the way ProFTPD handles ASCII translations could be exploited by a remote user to gain root shell privileges. This could allow the attacker to have complete control over the affected machine. For more, go to:OpenPKG:https://www.openpkg.org/security/OpenPKG-SA-2003.043-proftpd.htmlMandrake Linux:https://www.nwfusion.com/go2/0929bug1c.html**********Debian releases new marbles packageAccording to an alert from Debian, “Steve Kemp discovered a buffer overflow in marbles, when processing the HOME environment variable. This vulnerability could be exploited by a local user to gain gid ‘games’.” For more, go to:https://www.debian.org/security/2003/dsa-390**********DoS flaw in SGI’s dcedA denial-of-service vulnerability has been found in SGI’s DCE daemon (dced). According to SGI, certain Microsoft RPC scanning can cause dced to abort, creating the denial of service. For more, go to:https://www.nwfusion.com/go2/0929bug1d.html**********Today’s roundup of virus alerts:W32/Dumaru-E – Another worm that spreads under the guise of a Microsoft-issued patch. Like previous variants, the infected message looks like it’s from “security@microsoft.com” with a subject line of “Use this patch immediately !” and an attachment called “patch.exe.” The virus attempts to disrupt security applications on the infected machine and opens port 2283 and 10000 for backdoor access. (Sophos)Opaserv.Y – A virus that spreads via port 137 and attempts to exploit a “share level password” vulnerability in Windows 95, 98 and ME. (Panda Software)Colevo.A – This virus spreads to everyone listed in an MSN Messenger contact list. It uses its own SMTP engine to send infected messages and opens port 2536 to allow an attacker access to the infected machine. (Panda Software)W32/Randex-G – Another network worm that spreads via IRC channels and can provide an attacker with remote access to the infected machine. (Sophos)**********From the interesting reading department:Spyware removal tools stop snoopersStaying one step ahead of spyware creators requires a dedicated removal tool. Network World, 09/29/03.https://www.nwfusion.com/news/tech/2003/0929techupdate.htmlSecurity made simpleSecurity appliances are the latest rage, thanks to their easy deployment and high reliability. Network World, 09/29/03.https://www.nwfusion.com/buzz/2003/0929secap.htmlWorms sent via IM pose serious, growing threatVirulent new worms that exploit vulnerable instant messaging (IM) clients and could infect hundreds of thousands of computers in seconds are a real threat for Internet users worldwide, according to two security researchers from Symantec. IDG News Service, 09/26/03.https://www.nwfusion.com/news/2003/0926worm.htmlJuvenile arrested for creating Blaster variantAnother person has been arrested in relation to the Blaster worm that infected computers worldwide last month. This time the individual is a juvenile, prosecutors in Seattle said Friday, which in the U.S. typically means under the age of 18. IDG News Service, 09/26/03.https://www.nwfusion.com/news/2003/0926juvenarres.htmlRamping up remote access for allTwo insurance firms turn to SSL VPN to extend secure access to tens of thousands. Network World, 09/29/03.https://www.nwfusion.com/buzz/2003/0929netlead.html Related content news Cisco CCNA and AWS cloud networking rank among highest paying IT certifications Cloud expertise and security know-how remain critical in building today’s networks, and these skills pay top dollar, according to Skillsoft’s annual ranking of the most valuable IT certifications. Demand for talent continues to outweigh s By Denise Dubie Nov 30, 2023 7 mins Certifications Certifications Certifications news Mainframe modernization gets a boost from Kyndryl, AWS collaboration Kyndryl and AWS have expanded their partnership to help enterprise customers simplify and accelerate their mainframe modernization initiatives. By Michael Cooney Nov 30, 2023 4 mins Mainframes Cloud Computing Data Center news AWS and Nvidia partner on Project Ceiba, a GPU-powered AI supercomputer The companies are extending their AI partnership, and one key initiative is a supercomputer that will be integrated with AWS services and used by Nvidia’s own R&D teams. By Andy Patrizio Nov 30, 2023 3 mins CPUs and Processors Generative AI Supercomputers news VMware stung by defections and layoffs after Broadcom close Layoffs and executive departures are expected after an acquisition, but there's also concern about VMware customer retention. By Andy Patrizio Nov 30, 2023 3 mins Virtualization Data Center Industry Podcasts Videos Resources Events NEWSLETTERS Newsletter Promo Module Test Description for newsletter promo module. Please enter a valid email address Subscribe