Greetings and salutations,

Some housekeeping to start with. The date of the AusCERT conference has changed to 20-24th May 2013, which is a week later than previously advertised. Also, the Call for Presentations is still open, so for those wanting to speak at AuSCERT be sure to submit a presentation as a soon as possible. Keep checking the conference website for more information as well as monitoring our Facebook and Twitter pages.

The next item on the agenda is that AusCERT is looking for a new Information Security Analyst to join the Co-ordination Centre team! You will be publishing security bulletins, working with phishing and malware, a variety of projects, and anything else we want to throw your way ;) The position is being advertised at two salary levels. The HEW 5 would suit a graduate and/or someone with a background in IT and an interest in IT security. The HEW 6 position is for those who already have security experience. So if you would like to join a a dynamic team in an exciting industry, get your application in before 5th December.

Finally, you have probably heard the various stories about the unintended Click Frenzy DOS. Rather than go into details, I believe this meme sums everything up nicely:

This week's top 5 bulletins:

1) ESB-2012.1095 - ALERT [Win][Netware][SUSE] Novell File Reporter Administrator Compromise - Remote/Unauthenticated

This bulletin earned an SMS this week due to one of the vulnerabilities being an administrator compromise, the availability of a Metasploit module, as well as no known fix! Doesn't get much worse than this boys and girls.

2) ASB-2012.0162 - ALERT [Win][UNIX/Linux] Mozilla Firefox, Thunderbird, & SeaMonkey Multiple vulnerabilities

The latest release of Firefox, Thunderbird, & SeaMonkey saw the second administrator compromise for the week. The difference being that user interaction is required and it can be resolved with an update. A total of 29 vulnerabilities fixed by Mozilla, making these updates especially important to install as soon as possible.

3) ESB-2012.1099 - [RedHat] firefox & thunderbird: Multiple vulnerabilities

This bulletin is worth mentioning as RedHat have released updates in response to many (but not all) of the vulnerabilities mentioned in the previous Mozilla bulletin.

4) ESB-2012.1104 - [Win][UNIX/Linux][Appliance] Symantec Products Execute arbitrary code/commands - Remote/unauthenticated

Symantec have addressed multiple vulnerabilities affecting multiple products. The most severe is a possible privileged application compromise impacting Symantec Mail Security for Microsoft Exchange and Symantec Mail Security for Domino.

5) ESB-2012.1107 - [RedHat] java-1.4.2-ibm: Multiple vulnerabilities

RedHat has previously released bulletins for other versions of IBM Java Runtime Environment and IBM Java Software Development Kit. These are serious vulnerabilities so if you use this version please update immediately.

That's all for this week, have a great weekend,
Olivia