Further Information

AL-2008.0083 -- [Win][UNIX/Linux][Juniper][Cisco] -- DNS cache poisoning fix may be ineffective with an intervening NAT device - NAT devices may effectively undo the recent patch against DNS cache poisoning vulerabilities. (23/07/2008)

AL-2008.0082 -- [Win][UNIX/Linux][Juniper][Cisco] -- DNS cache poisoning vulnerability information allegedly leaked to the public - Information regarding the recent DNS cache poisoning vulnerability may have been released to the public (22/07/2008)

AL-2008.0081 -- [Win][UNIX/Linux] -- Oracle Critical Patch Update Advisory - July 2008 - (16/07/2008)

AL-2008.0080 -- [Win][UNIX/Linux][Juniper][Cisco] -- Multiple DNS implementations vulnerable to cache poisoning - DNS protocol and implementation deficiencies may allow DNS cache poisoning and multiple vendors have released mitigation patches. (09/07/2008)

AL-2008.0079 -- [Win] -- Microsoft Office Snapshot Viewer ActiveX Vulnerability - A vulnerability in Snapshot viewer is actively being exploited. (08/07/2008)

AL-2008.0078 -- [Win][OSX] -- Security Update available for Adobe Reader and Acrobat 8.1.2 - Security Update for Adobe Reader and Acrobat 8.1.2 fixes critical security vulnerability (25/06/2008)

AL-2008.0074 -- [Win] -- Vulnerability in Bluetooth Stack Could Allow Remote Code Execution (951376) - (20/06/2008)

AU-2008.0012 -- AusCERT Update - [Win] - Re-release of Microsoft Bluetooth Patch for XP SP2/SP3 Users - (20/06/2008)

AL-2008.0047 -- [Win][UNIX/Linux] -- Oracle Critical Patch Update Pre-Release Notification - Oracle have published information regarding the April 2008 Critical Patch Update which will contain 41 security fixes affecting hundreds of Oracle products. (16/06/2008)

AL-2008.0077 -- [Win] -- CitectSCADA ODBC service vulnerability - (12/06/2008)

AL-2008.0068 -- [Win] -- Skype File URI Security Bypass Code Execution Vulnerability - (12/06/2008)

AL-2008.0076 -- [Win] -- Vulnerabilities in DirectX Could Allow Remote Code Execution (951698) - (11/06/2008)

AL-2008.0075 -- [Win] -- Cumulative Security Update for Internet Explorer Fixes Multiple Vulnerabilities - (11/06/2008)

AL-2008.0073 -- [Win][UNIX/Linux][Appliance] -- SNMPv3 Authentication Bypass Vulnerability - A vulnerability in multiple implementations of SNMPv3 may allow an attacker with knowledge of a valid username to successfully authenticate using a single byte HMAC. The likelihood of successful authentication is 1 in 256 attempts given a valid username. (11/06/2008)

AL-2008.0072 -- [Win][OSX] -- QuickTime 7.5 released fixing multiple vulnerabilities - (10/06/2008)

AL-2008.0071 -- [Win] -- Microsoft Bulletin Notification - June Prerelease Announcement - (06/06/2008)

AL-2008.0070 -- [Win] -- HP Instant Support HPISDataManager.dll Running on Windows, Remote Execution of Arbitrary Code - (05/06/2008)

AL-2008.0069 -- [Win][Linux][HP-UX][Solaris][AIX] -- Multiple Critical Vulnerabilities in Sun Java System Active Server Pages - (05/06/2008)

AL-2008.0066 -- [Cisco] -- Multiple Vulnerabilities in Cisco PIX and Cisco ASA - (05/06/2008)

AL-2008.0048 -- [VMware ESX] -- Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus - (05/06/2008)

AL-2008.0065 -- [Win][Cisco][Solaris] -- CiscoWorks Common Services Arbitrary Code Execution Vulnerability - (29/05/2008)

AL-2008.0064 -- [UNIX/Linux] -- Boundary failure when parsing SMB responses in Samba - (29/05/2008)

AL-2008.0063 -- [Win][Linux][Solaris][Mac][OSX] -- Adobe Flash player code execution vulnerability - (28/05/2008)

AL-2008.0060 -- [Debian] -- New openssh packages fix predictable randomness - (19/05/2008)

AL-2008.0062 -- [UNIX/Linux] -- Multiple vulnerabilities discovered in gnutls - CERT-FI have discovered several vulnerabilities in gnutls (19/05/2008)

AL-2008.0061 -- [Win] -- Symantec Altiris Deployment Solution Domain Credential Disclosure and SQL Injection Vulnerability - These vulnerabilities allow an attacker to obtain domain credentials and execute arbitrary code as SYSTEM. (16/05/2008)

AL-2008.0059 -- [Debian] -- New openssl packages fix predictable random number generator - (14/05/2008)

AL-2008.0058 -- [Win] -- MS08-028 - Vulnerability in Microsoft Jet Database Engine Could Allow Remote Code Execution - Vulnerability in Microsoft Jet Database Engine Could Allow Remote Code Execution (14/05/2008)

AL-2008.0057 -- [Win] -- MS08-027 - Vulnerability in Microsoft Publisher Could Allow Remote Code Execution - Vulnerability in Microsoft Publisher Could Allow Remote Code Execution (14/05/2008)

AL-2008.0056 -- [Win][Mac][OSX] -- MS08-026 - Vulnerabilities in Microsoft Word Could Allow Remote Code Execution - Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (14/05/2008)

AL-2008.0055 -- [Win][Mac][OSX] -- Microsoft Bulletin Notification - May Prerelease Announcement - (13/05/2008)

AL-2008.0054 -- [Win][UNIX/Linux] -- Adobe Reader and Acrobat - Multiple vulnerabilities - Update to Adobe products to correct vulnerabilities which are actively being exploited. (08/05/2008)

AU-2008.0008 -- AusCERT Update - [Win][UNIX/Linux] - New Firefox, Thunderbird and Seamonkey Versions Fix JavaScript Engine Vulnerability - New versions of Firefox, Thunderbird and SeaMonkey have been released fixing a vulnerability in the JavaScript engine. (02/05/2008)

AL-2008.0050 -- [Win][UNIX/Linux] -- New Firefox, Thunderbird and Seamonkey Versions Fix JavaScript Engine Vulnerability - New versions of Firefox, Thunderbird and SeaMonkey have been released fixing a vulnerability in the JavaScript engine. (02/05/2008)

AL-2008.0053 -- [Win] -- Intel Centrino Wireless Driver Malformed Frame Remote Code Execution - (28/04/2008)


Previous  1, 2, 3, 4, 5 ... 16, 17, 18  Next denotes AusCERT member only content.