• United States

Bug Alert: PHP CGI flaw patched

Feb 18, 20035 mins

* Patches from Apple, Microsoft, Red Hat, others * Beware e-mail and peer-to-peer worms * White House issues 'National Strategy to Secure Cyberspace', and other interesting reading

Live from the President’s Day Blizzard aftermath:

Today’s bug patches and security alerts:

Flaw found in CGI SAPI of PHP Version 4.3.0

The PHP group has found a serious security vulnerability in Version 4.3.0’s CGI SAPI. A remote attacker could exploit the flaw to trick the PHP engine to run arbitrary code on the affected machine. Not other SAPI module is flawed. Users should upgrade to PHP 4.3.1. For more, go to:


Lotus Domino vulnerabilities fixed

NGSSoftware is warning of a plethora of vulnerabilities in the IBM Lotus Domino Webserver and client. The flaws range from buffer overflows to string format problems. Users can get the latest IBM updates from:




Apple releases update for Mac OS X

Apple has released Version 10.2.4 of its Apple OS X operating system. The new release fixes a number of potential security vulnerabilities, which could be exploited to create administrator passwords and gain elevated privileges. For more, go to:


Microsoft patch can lock users out of Web sites

A recent Microsoft security patch for Internet Explorer can lock users out of certain Web sites and Microsoft’s own MSN e-mail service, Microsoft said late Wednesday. IDG News Service, 02/13/03.


Revised Microsoft advisory:


Red Hat releases fix for pam_xauth module

A flaw in the pam_xauth authorization module could allow a unprivileged user to gain root privileges on the affected machine. There’s a very small window in which this exploit could be used, but nonetheless, there is a flaw. For more, go to:

Red Hat releases updated fileutils package

A flaw in certain commands contained in the fileutils package could allow a malicious user to delete or rename files in a directory they only have partial write-access to. For more, go to:


Conectiva releases Mozilla update

Conectiva has released a patch for the Mozilla browser, fixing a number of potential security vulnerabilities. One flaw could allow a Web page operator to create a page that would crash the Mozilla browser and allow arbitrary code to be run on the affected machine. For more, go to:


Mandrake Linux updates util-linux

A flaw in the X authentication code in util-linux that generates random cookies. A previous update made the randomness not so random. A new patch fixes this problem:


SCO patches Apache mod_dav module

A format string vulnerability has been found in the Apache mod_dav module. Users can download the appropriate patch from:


Today’s roundup of virus alerts:

W32/Axam-A – A worm that spreads via e-mail and peer-to-peer file-sharing services such as Kazaa. The virus comes with a number of random subject lines and a file attachment matching the subject line. The virus displays a number of messages on the infected machine’s screen and attempts to shutdown a number of system processes, mainly antivirus and security related. (Sophos)

VBS/Cian-C – This virus infects via e-mail, peer-to-peer networks and mIRC. It infects Word and Excel viruses as well as overwrites a number of file types with its own code. The worm also lowers the security settings for Microsoft Office. (Sophos)

W32/Igloo-15 – A backdoor Trojan that spreads via IRC and the Kazaa file-sharing network. It sits on the infected machine waiting for commands from a third-party. (Sophos)


From the interesting reading department:

White House issues ‘National Strategy to Secure Cyberspace’

The White House issued its long-awaited National Strategy to Secure Cyberspace report, the document intended to summarize ways to improve network security for government agencies, the private sector and citizens in their homes. Network World Fusion, 02/14/03.


Guardians of the extended enterprise get tough on wayward VPN users with new remote policy enforcement tools. Network World, 02/17/03.

Security tools headline Demo show

With security uppermost in everyone’s mind these days, we selected three of the most interesting security products slated to debut at the show and asked Network World Global Test Alliance partner Mandy Andress to evaluate these products from BBX, MagiQ and SigmaSecurity. Network World, 02/17/03.

Users tout open source security

Linux and open source software is proving to be a valuable tool for businesses that have taken the build-it-yourself approach when it comes to some network systems. Many say the software included in Linux and in some free software packages is as good or better than commercial offerings and costs less to deploy. Network World, 02/17/03.

McAfee pumps up security gateway

Plus: CipherTrust, others roll out new wares to combat viruses and spam. Network World, 02/17/03.

Symantec to acquire Nexland

Symantec and Nexland have signed a letter of intent under which Symantec would purchase Nexland for $21.7 million in cash, Nexland announced Thursday in a press release. IDG News Service, 02/14/03.


Archives online:

Always dig out from you newsletter reading via our online archive: