Further Information

AU-2006.0009 -- AusCERT Update - [Cisco] - Newer versions also affected by Cisco IOS AAA Command Authorization bypass vulnerability - (02/03/2006)

AU-2006.0007 -- AusCERT Update - [HP Tru64] - SSRT051007 rev.2 - HP Tru64 UNIX Running DNS BIND4/BIND8 with Forwarders: Remote Unauthorized Privileged Access - (10/02/2006)

AU-2006.0006 -- AusCERT Update - [Win] - "Blackmal" email worm update (CME-24) - This AusCERT update provides a summary of known information about the "Blackmal" email worm reported in AL-2006.0005 (02/02/2006)

AU-2006.0005 -- AusCERT Update - [Win] - "Blackmal" email worm variant will cause file destruction - A variant of the "Blackmal" email worm reported in AL-2006.0005 is currently spreading rapidly and carries a payload that will destroy files on the third day of each month. (24/01/2006)

AU-2006.0004 -- AusCERT Update - [Win][UNIX/Linux] - Proof of concept code released for VERITAS NetBackup 5.x - (17/01/2006)

AU-2006.0003 -- AusCERT Update - [FortiOS] - Fortinet Advisory - IKE ISAKMP (VU#226364) vulnerabilities - (16/01/2006)

AU-2006.0002 -- AusCERT Update - [Win][UNIX/Linux] - Sun Java vulnerability now being exploited in the wild - US-CERT reports that the Sun Java vulnerability previously described in AusCERT ESB-2005.0962 is now being actively exploited by enticing users to visit a malicious website. (13/01/2006)

AU-2006.0001 -- AusCERT Update - [Win] - Microsoft patch released for WMF handling vulnerability - Microsoft has released an out of cycle patch for the WMF file handling vulnerability described in Microsoft Security Advisory 912840 (06/01/2006)

AU-2005.0023 -- AusCERT Update - [Win] - Partial workarounds available for WMF file handling vulnerability - Microsoft Security Advisory 912840 has been released confirming the WMF file handling vulnerability reported in AL-2005.0043. Partial workarounds can be used to mitigate the risk to some extent and these are described below. (30/12/2005)

AU-2005.0022 -- AusCERT Update - [Win] - Dasher.A and Dasher.B worm targeting MSDTC and COM+ vulnerabilties (MS05-051) - AusCERT would like to update members with further information regarding exploits targeting the MS05-051 MSDTC vulnerability as outlined in AusCERT's 10 December 2005 bulletin, AU-2005.0021 [1]. (16/12/2005)

AU-2005.0021 -- AusCERT Update - [Win] - Possible new worm targetting Windows machines vulnerable to issues in MSDTC and COM+ - Possible new worm targetting Windows machines vulnerable to issues in MSDTC and COM+ (10/12/2005)

AU-2005.0020 -- Sun Alert Notification 102002 - Vulnerability in Sun ONE/Java System Directory Server and Directory Proxy Server HTTP Administrative Interface - This update provides further information from Sun on the vulnerability reported last month in AusCERT Alert AL-2005.0031. (24/11/2005)

AU-2005.0019 -- AusCERT Update - Malicious use of Sony DRM technology and availability of a removal tool - Further to the AusCERT advisory AA-2005.0022, several antivirus vendors have reported new malware which utilises the stealthing functionality of the Sony DRM software. (11/11/2005)

AU-2005.0018 -- AusCERT Update - Analysis of the Kezaam SecuryTeam Spam Trojan now available - An analysis of the recent "Kezaam SecuryTeam" spam and trojan is now available to AusCERT members. (01/11/2005)

AU-2005.0017 -- AusCERT Update - Patches released for Backup Exec for Windows Servers authentication vulnerability - Veritas have released new patches for Windows versions of Backup Exec, correcting the vulnerabilities detailed in AusCERT Alerts AL-2005.0021 and AL-2005.0023. (14/08/2005)

AU-2005.0016 -- AusCERT Update - BrightStor ARCserve/Enterprise Backup public exploit code and increased port 6070 scanning activity - (04/08/2005)

AU-2005.0015 -- AusCERT Update - Veritas Backup Exec public exploit code and increased port 10000 scanning activity - AusCERT advises that exploit code is now publicly available for at least one of the vulnerabilities described in AusCERT AL-2005.013, "Veritas Backup Exec - multiple vulnerabilities". AusCERT has also observed increased scanning activity this week to port 10000, believed to be attempting to exploit this vulnerability. (28/06/2005)

AU-2005.0014 -- AusCERT Update - Fraudulent email now attaching Mytob virus variant - AusCERT has observed a large number of e-mail containing a new variant of the Mytob virus, similar to that described in AusCERT Advisory AA-2005.005. This new variant includes a .zip file containing the virus, instead of the previous technique of directing users to visit a web site disguised with URL obfuscation. (16/06/2005)

AU-2005.0013 -- AusCERT Update - New URLs for "Account alert" fraudulent email - AusCERT has received a report of another mass mailout of the "Account alert" fraudulent email described in AA-2005.005, this time containing a new malicious link. (09/06/2005)

AU-2005.0012 -- AusCERT Update - "ePaymentSol.com" fraudulent e-mails and malicious web site - AusCERT has become aware of fraudulent e-mails circulating widely to Australian recipients relating to the "Infra-Pay" domain previously alerted on in AL-2005.011. (16/05/2005)

AU-2005.0011 -- AusCERT Update - Firefox 1.0.4 released to fix recent vulnerabilities - AusCERT would like to adivse members that the Mozilla Organization have released Firefox 1.0.4 which fixes the vulerabilities described in ESB-2005.0373 (12/05/2005)

AU-2005.0009 -- AusCERT Update - Update to "Risk of Compromise for Organisations using SSL" - This update describes new developments in the SSL interception technique previously reported by AusCERT in March 2005. (18/04/2005)

AU-2005.0008 -- AusCERT Update - High level of exploitation of AWStats, phpBB and other web bulletin board software - AusCERT has noted a continuing high level of exploit activity targeting vulnerable versions of phpBB and other web-based bulletin board software over the past week. (30/03/2005)

AU-2005.0007 -- AusCERT Update - Multiple Symantec Products - New Versions and Mitigation Tool Available to Address UPX Vulnerability - (22/02/2005)

AU-2005.0006 -- AusCERT Update - MSN Messenger PNG vulnerability proof of concept exploit code released - AusCERT wishes to advise that proof of concept code has been released for the vulnerability described in AusCERT ESB-2005.0118, "MS05-009 - Vulnerability in PNG Processing Could Allow Remote Code Execution". (10/02/2005)

AU-2005.0005 -- AusCERT Update - AWStats remote command execution vulnerability actively exploited in wild - AusCERT has seen reports of exploits in the wild for the vulnerability described in AusCERT ESB-2005.0049, 'AWStats Remote Command Execution Vulnerability'. (09/02/2005)

AU-2005.0004 -- AusCERT Update - Increased Virus Activity - New Bagle Variant - AusCERT has observed high levels of e-mail borne virus activity due to the recent Bagel variant known as: W32.Beagle.AZ@mm, W32/Bagle.bj@MM, W32/Bagle-BK. (28/01/2005)

AU-2005.0002 -- AusCERT Update - Veritas Backup Exec public exploit code and increased scanning activity - AusCERT advises that exploit code is now publicly available for the Veritas Backup Exec vulnerability described in AusCERT ESB-2004.0781. (17/01/2005)

AU-2005.0001 -- AusCERT Update - Exploit code publicly available for Microsoft Windows Cursor and Icon Format Vulnerabilities - AusCERT advises that proof of concept code is now publicly available for the vulnerability described in AusCERT ESB-2005.0025, "Vulnerability in Cursor and Icon Format Handling Could Allow Remote Code Execution (MS05-002)". (14/01/2005)

AU-2004.0016 -- AusCERT Update - Microsoft Security Bulletin Re-Releases, November 2004 - (18/11/2004)

AU-2004.0015 -- AusCERT Update - New viruses actively exploiting Internet Explorer IFRAME Buffer Overflow Vulnerability - New viruses target Internet Explorer IFRAME handling buffer overflow vulnerability (09/11/2004)

AU-2004.0014 -- AusCERT Update - Microsoft MS04-028 - Microsoft Security Bulletin Re-Release, Updated Patches Available - Microsoft have released an update to bulletin MS04-028, including an updated FAQ, a new enterprise scanning tool and updated troubleshooting information. (13/10/2004)

AU-2004.0013 -- AusCERT Update - Microsoft MS04-028 - JPEG exploit proof of concept release - Further to the JPEG denial of service proof of concept described in AusCERT Alert AL-2004.030, a second proof of concept has been released allowing execution of arbitrary commands on viewing a specially crafted JPEG file. (23/09/2004)

AU-2004.0012 -- AusCERT Update - User Interface Spoofing in Mozilla and Firefox - As outlined in AusCERT advisory AL-2004.23, a proof of concept using the XUL (XML-based User interface Language) rendering engine in Mozilla Firefox has recently been public. However, the problem may not be a classic security bug, but instead an effective addition to spoofing techniques. (24/08/2004)

AU-2004.0011 -- AusCERT Update - Increased Virus Activity - New Bagel Variant - AusCERT has observed high levels of e-mail borne virus activity due to the recent Bagel variant. This new variant opens a backdoor on port 80 TCP and UDP. (10/08/2004)


Previous  1, 2, 3, 4, 5  Next denotes AusCERT member only content.