Date: 09 September 2008
References: AL-2008.0080
Click here for printable version
Click here for PGP verifiable version
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
===========================================================================
AA-2008.0192 AUSCERT Advisory
[Win][Appliance]
Nortel releases advisory to address BIND/DNS vulnerability
9 September 2008
- ---------------------------------------------------------------------------
AusCERT Advisory Summary
------------------------
Product: Nortel Products
Operating System: Windows
Network Appliance
Impact: Provide Misleading Information
Access: Remote/Unauthenticated
CVE Names: CVE-2008-1447
Member content until: Tuesday, October 07 2008
Ref: AL-2008.0080
OVERVIEW:
Nortel have released an advisory relating to how their products are
affected by the recent BIND/DNS vulnerability.
IMPACT:
Attackers may attempt to use this vulnerability to steal users'
login passwords for trusted websites by directing users to a fake
login screen, or alternatively may direct internal computers to a
malicious server in order to attempt installation of malicious
software via separate client software vulnerabilities or social
engineering.
MITIGATION:
Please refer to the Nortel advisory for fixes to your specific
product. [1]
REFERENCES:
[1] Nortel Guidance for Multiple Vendor Fixes for BIND/DNS Cache
Poison Vulnerability - CVE-2008-1447
http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=762152
AusCERT has made every effort to ensure that the information contained
in this document is accurate. However, the decision to use the information
described is the responsibility of each user or organisation. The decision to
follow or act on information or advice contained in this security bulletin is
the responsibility of each user or organisation, and should be considered in
accordance with your organisation's site policies and procedures. AusCERT
takes no responsibility for consequences which may arise from following or
acting on information or advice contained in this security bulletin.
If you believe that your computer system has been compromised or attacked in
any way, we encourage you to let us know by completing the secure National IT
Incident Reporting Form at:
http://www.auscert.org.au/render.html?it=3192
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert@auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
iQCVAwUBSMcACih9+71yA2DNAQJ3gQP/Ykcpbbv7yd71t7KcFcfUDfisteuiajpt
klBnZK/NHGps9TwjrZg6FtcOM8BEE09DHBRpy3weKUgRyZShWY6t86lJh90eUOwp
NNq5ofH4aDA1zbqy1EIoJ99YG3iRe8l7t0kEmFHcZsxLBVedDUkKe+qvIjuwC5GF
TRqq0sn2LM4=
=XEir
-----END PGP SIGNATURE-----
|