Further Information

AL-2004.024 -- Critical Vulnerability in Internet Explorer Allows Remote Compromise - A critical vulnerability in all current versions of Microsoft Internet Explorer allows a remote attacker to plant executable files anywhere on the user's filesystem. (24/08/2004)

AU-2004.0012 -- AusCERT Update - User Interface Spoofing in Mozilla and Firefox - As outlined in AusCERT advisory AL-2004.23, a proof of concept using the XUL (XML-based User interface Language) rendering engine in Mozilla Firefox has recently been public. However, the problem may not be a classic security bug, but instead an effective addition to spoofing techniques. (24/08/2004)

ESB-2004.0515 -- iDEFENSE Security Advisory 08.13.04 -- Adobe Acrobat/Acrobat Reader ActiveX Control Buffer Overflow Vulnerability - Exploitation of a buffer overflow vulnerability in the ActiveX component packaged with Adobe Systems Inc.'s Acrobat/Acrobat Reader allows remote attackers to execute arbitrary code. (17/08/2004)

ESB-2004.0509 -- Sun Alert Notification 57599 -- ASN1 Decoder For Sun Java System Directory Server May Be Subject to Denial of Service (DoS) - (12/08/2004)

ESB-2004.0505 -- Microsoft Security Bulletin Summary for August 2004 -- Vulnerability in Exchange Server 5.5 Outlook Web Access Could Allow Cross-Site Scripting and Spoofing Attacks (842436) - A vulnerability in Exchange Server 5.5 Outlook Web Access could allow cross-site scripting and spoofing attacks. Microsoft have given this vulnerability a severity rating of "Moderate". (12/08/2004)

AU-2004.0011 -- AusCERT Update - Increased Virus Activity - New Bagel Variant - AusCERT has observed high levels of e-mail borne virus activity due to the recent Bagel variant. This new variant opens a backdoor on port 80 TCP and UDP. (10/08/2004)

ESB-2004.0493 -- Core Security Technologies Advisory CORE-2004-0705 -- Vulnerabilities in PuTTY and PSCP - (06/08/2004)

ESB-2004.0488 -- Two iDEFENSE Bulletins: iDEFENSE Security Advisory 08.03.04a and 08.03.04b -- NGSEC StackDefender 1.10/2.0 Invalid Pointer Dereference Vulnerability - (05/08/2004)

ESB-2004.0487 -- RHSA-2004:421-01 -- Updated mozilla packages fix security issues - (05/08/2004)

ESB-2004.0483 -- iDEFENSE Security Advisory 08.02.04 -- Netscape/Mozilla SOAPParameter Constructor Integer Overflow Vulnerability - (05/08/2004)

ESB-2004.0482 -- US-CERT Technical Cyber Security Alert TA04-217A -- Multiple Vulnerabilities in libpng - (05/08/2004)

ESB-2004.0485 -- Sun Alert Notification - Sun Alert ID: 57613 -- Java Runtime Environment May Allow Untrusted Applets to Escalate Privileges - (05/08/2004)

AL-2004.23 -- User Interface Spoofing in Mozilla and Firefox - A working proof of concept code has now been published for a vulnerability in all versions of Mozilla and Firefox. This exploit code could be utilised to facilitate identify fraud (aka "phishing") which may capture sensitive account details. (04/08/2004)

ESB-2004.0478 -- US-CERT Technical Cyber Security Alert TA04-212A -- Critical Vulnerabilities in Microsoft Windows - (02/08/2004)

AL-2004.22 -- Summary for July 2004 -- Microsoft Security Bulletin - This out-of-band Microsoft update contains three critical updates. There are also four important and one moderate updates. (31/07/2004)

ESB-2004.0475 -- CIAC BULLETIN O-190 -- Check Point ASN.1 VPN-1 Buffer Overrun - An ASN.1 issue has been discovered affecting Check Point VPN-1 products during negotiations of a VPN tunnel which may result in a remote attacker gaining access to the VPN without authentication. (29/07/2004)

AU-2004.010 -- AusCERT Update - High levels of activity due to MyDoom.M/O variants - AusCERT has been informed of high levels of activity due to the MyDoom variants known as MyDoom.M or MyDoom.O. This mass-mailing virus which masquerades as variety of mail delivery and virus infection error messages designed to entice a user to run a malicious attachement. It also spreads through peer-to-peer (P2P) file sharing programs. (27/07/2004)

ESB-2004.0469 -- Sun Alert Notification - Sun Alert ID: 57605 -- Vulnerability In Sample Application Included With Sun Java System Web Server - (23/07/2004)

ESB-2004.0456 -- US-CERT Technical Cyber Security Alert TA04-196A -- Multiple Vulnerabilities in Microsoft Windows Components and Outlook Express - (15/07/2004)

AL-2004.20 -- Release of DOWNLOAD.JECT Payload Detection and Removal Tool - Release of DOWNLOAD.JECT Payload Detection and Removal Tool Microsoft Product Support Services (14/07/2004)

AL-2004.19 -- Product Support Services - Critical Product Vulnerability - July 2004 - Microsoft have released two critical, four important updates and one moderate update. (14/07/2004)

ESB-2004.0453 -- iDEFENSE Security Advisory 07.12.04 -- Adobe Reader 6.0 Filename Handler Buffer Overflow Vulnerability - (13/07/2004)

ESB-2004.0451 -- CIAC BULLETIN O-174 -- Ethereal Multiple Problems in 0.10.4 - (12/07/2004)

AL-2004.18 -- Issues concerning Internet Explorer and the ADODB.STREAM patch - The recently released Microsoft patch for Internet Explorer that disables the ADODB.STREAM ActiveX control does NOT fix cross-domain IE vulnerabilities but rather mitigates against exploitation via ADODB.STREAM. (12/07/2004)

AL-2004.16 -- Exploit Code Publicly Available for Microsoft Internet Explorer Cross Domain Scripting Vulnerabilities. - AusCERT advises that working proof of concept exploit code has now been published for all recent versions of Microsoft Internet Explorer. There are reports of activity using this exploit. AusCERT expects this exploit code to be utilised in the installation of trojan horse software which may capture sensitive account details. (08/07/2004)

ESB-2004.0446 -- NGSSoftware Insight Security Research Advisory -- MySQL Authentication Bypass - This advisory details a bug that allows a remote user to entirely bypass the MySQL password authentication mechanism. (06/07/2004)

ESB-2004.0442 -- iDEFENSE Security Advisory 07.01.04 -- WinGate Information Disclosure Vulnerability - (05/07/2004)

ESB-2004.0441 -- iDEFENSE Security Advisory 06.23.04 -- Lotus Notes URI Handler Argument Injection Vulnerability - (05/07/2004)

ESB-2004.0440 -- iDEFENSE Security Advisory 06.21.04 -- GNU Radius SNMP Invalid OID Denial of Service Vulnerability - (05/07/2004)

ESB-2004.0438 -- US-CERT Technical Cyber Security Alert TA04-184A -- Internet Explorer Update to Disable ADODB.Stream ActiveX Control - Microsoft has released a security update for Internet Explorer (IE) that disables the ADODB.Stream ActiveX control. This update reduces the impact of attacks against cross-domain vulnerabilities in IE. (03/07/2004)

ESB-2004.0432 -- UNIRAS ALERT - 26/04 -- Malicious Software Report - Download_Ject - (28/06/2004)

AL-2004.17 -- Korgo Worm Variants Exploiting LSASS Vulnerability - New variants of a worm named Korgo, aka Padobot, are currently being created and detected in the wild on a daily basis. AusCERT has received reports that new variants are not being detected by some anti-virus software with previous Korgo signatures. Reports to AusCERT detail network traffic congestion, in addition to the potential compromise of data through the creation of a backdoor on infected computers. (25/06/2004)

ESB-2004.0430 -- Symantec Security Bulletin - SYM04-010 -- Symantec Gateway Security Products DNS Cache Poisoning Vulnerability - Symantec resolved a DNS cache poisoning vulnerability that was reported to impact the Symantec Gateway Security products. Under specific conditions and configurations, incorrect or false DNS records could be inserted into the DNS cache tables. It would then be possible that legitimate DNS requests would return incorrect responses. (25/06/2004)

ESB-2004.0418 -- iDEFENSE Security Advisory 06.07.04 -- PHP Win32 escapeshellcmd() and escapeshellarg() Input Validation Vulnerability - (17/06/2004)

ESB-2004.0417 -- eEye Security Bulletin -- "IBM Access Support" (eGatherer) Activex Dangerous Methods Vulnerability - (17/06/2004)


Previous  1, 2, 3 ... 147, 148, 149, 150, 151  Next denotes AusCERT member only content.