Date: 08 December 2003
Click here for printable version
Click here for PGP verifiable version
-----BEGIN PGP SIGNED MESSAGE-----
AusCERT Update AU-2003.020 - Novell eDirectory SSL/TLS ASN.1 Parser and
Novell NFS Server Incorrect Hostname Alias Handling Vulnerabilities
08 December 2003
Novell have released the following two advisories:
- ---------------------------------------------------------------------------
Novell eDirectory SSL/TLS ASN.1 Parser Vulnerabilities
Product: Novell eDirectory 8.x
Publisher: Novell
Impact: Denial of Service
Access Required: Remote
CVE Names: CAN-2003-0543, CAN-2003-0544, CAN-2003-0545
Ref: AL-2003.18
Original Bulletin:
http://support.novell.com/cgi-bin/search/searchtid.cgi?/2967586.htm
Patches:
http://support.novell.com/servlet/filedownload/sec/pub/secupd1.tgz
- ---------------------------------------------------------------------------
Novell NFS Server Incorrect Hostname Alias Handling Vulnerability
Product: Novell Netware 6.x
Publisher: Novell
Impact: Reduced Security
Access Required: Remote
Original Bulletin:
http://support.novell.com/cgi-bin/search/searchtid.cgi?/10089375.htm
Regards,
The AusCERT Team
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert@auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
iQCVAwUBP9QIzCh9+71yA2DNAQEl7QP/YAsf/L+OrXOFbfLzrwWVw8yPufeC3S3B
F4RkdE6NuVjt5FDlIyDJDX/siLxe1LGKsfSnYv3GUrQt/Sooh1E+2qblLC/X85v2
Qs+FP0XwgLcKUNokEnEgBiIQfTCN8yePPBfQ7Pk9ETws2PiocT9auPemaJINRS06
7CMz+AUxNQI=
=50H4
-----END PGP SIGNATURE-----
|