Further Information

ESB-2004.0729 -- CIAC BULLETIN P-037 -- Sudo Environment Cleaning Vulnerability - (16/11/2004)

ESB-2004.0728 -- iDEFENSE Security Advisory 11.15.04 -- Multiple Security Vulnerabilities in Fcron - (16/11/2004)

ESB-2004.0727 -- Debian Security Advisory DSA 592-1 -- New ez-ipupdate packages fix format string vulnerability - (15/11/2004)

ESB-2004.0726 -- RHSA-2004:615-01 -- Updated libxml2 package fixes security vulnerabilities - (15/11/2004)

ESB-2004.0725 -- RHSA-2004:609-01 -- Updated freeradius packages fix security flaws - (15/11/2004)

ESB-2004.0724 -- RHSA-2004:562-01 -- Updated httpd packages fix a security issue and bugs - (15/11/2004)

ESB-2004.0723 -- EEYE Security Advisory -- Kerio Personal Firewall Multiple IP Options Denial of Service - A vulnerability in Kerio personal firewall enables remote denial of service. (12/11/2004)

ESB-2004.0722 -- Cisco Security Advisory -- Crafted Timed Attack Evades Cisco Security Agent Protections - A flaw in Cisco Secure Agent may allow an attacker to bypass protection mechanisms to exploit unpatched vulnerabilities on the host. (12/11/2004)

ESB-2004.0721 -- UNIRAS ALERT - 40/04 -- Vulnerability Issues in Implementations of the DNS Protocol - A potential Denial of Service vulnerability may impact multiple vendor implementations of the DNS protocol. (11/11/2004)

ESB-2004.0720 -- US-CERT Technical Cyber Security Alert TA04-315A -- Buffer Overflow in Microsoft Internet Explorer - The previously reported Internet Explorer IFRAME buffer overflow vulnerability also affects FRAME and EMBED tags. (11/11/2004)

ESB-2004.0719 -- Cisco Security Advisory -- Cisco IOS DHCP Blocked Interface Denial-of-Service - In multiple Cisco products, malformed DHCP packets can cause a denial of service to interfaces where the DHCP service has not been disabled. (11/11/2004)

ESB-2004.0718 -- Sun Alert ID 57665 -- Vulnerability in iPlanet Messaging Server/Sun ONE Messaging allows inappropriate access - (10/11/2004)

ESB-2004.0717 -- Debian Security Advisory DSA 590-1 -- New gnats packages fix arbitrary code execution - (10/11/2004)

ESB-2004.0716 -- Two Debian Advisories - DSA 589-1 and DSA 591-1 -- New libgd1 and libgd2 fix arbitrary code execution - New libgd1 and libgd2 packages fix arbitrary code execution (10/11/2004)

ESB-2004.0715 -- Microsoft Security Bulletin MS04-039 -- Vulnerability in ISA Server 2000 and Proxy Server 2.0 Could Allow Internet Content Spoofing (888258) - Patch available for spoofing vulnerability in Microsoft ISA Server 2000 and Microsoft Proxy Server 2.0 (10/11/2004)

ESB-2004.0713 -- Debian Security Advisory DSA 588-1 -- New gzip packages fix insecure temporary files - (09/11/2004)

ESB-2004.0712 -- Debian Security Advisory DSA 587-1 -- New freeamp packages fix arbitrary code execution - (09/11/2004)

ESB-2004.0711 -- Debian Security Advisory DSA 586-1 -- New ruby packages fix denial of service - (09/11/2004)

AU-2004.0015 -- AusCERT Update - New viruses actively exploiting Internet Explorer IFRAME Buffer Overflow Vulnerability - New viruses target Internet Explorer IFRAME handling buffer overflow vulnerability (09/11/2004)

ESB-2004.0714 -- iDEFENSE Security Advisory 11.08.04 -- Samba SMBD Remote Denial of Service Vulnerability - Input validation flaw in Samba SMBD allows remote denial of service (09/11/2004)

ESB-2004.0710 -- Debian Security Advisory DSA 585-1 -- New shadow packages fix unintended behaviour - (08/11/2004)

ESB-2004.0709 -- Info-ZIP multiple operating systems 'zip' command vulnerability compressing long directory paths - (05/11/2004)

ESB-2004.0708 -- Debian Security Advisory DSA 584-1 -- New dhcp packages fix format string vulnerability - (05/11/2004)

ESB-2004.0707 -- Sun Alert Notification 57670 -- Security Vulnerability With The HTTP TRACE Functionality in Sun Java System Application Server - (05/11/2004)

ESB-2004.0706 -- NGSSoftware Advisory -- WinRAR Repair Archive Vulnerability - (04/11/2004)

ESB-2004.0705 -- SGI Security Advisory 20041101-01-P -- OpenSSH and OpenSSL Vulnerabilities - (04/11/2004)

ESB-2004.0704 -- HP Security Bulletin HPSBMA01092 -- HP OpenView Operations (OVO) Remote Unauthorized Privilege Elevation - (04/11/2004)

ESB-2004.0703 -- Debian Security Advisory DSA 583-1 -- New lvm10 packages fix insecure temporary directory - (04/11/2004)

ESB-2004.0702 -- Sun Alert Notification 57669 -- Security Vulnerabilities May Allow a Denial of Service in Sun Java System Web and Application Server Products - (04/11/2004)

AL-2004.038 -- Internet Explorer IFRAME Buffer Overflow Vulnerability Allows Remote Compromise - Internet Explorer is vulnerable to buffer overflows in the IFRAME HTML element, allowing an attacker to remotely compromise the system. Exploit code for Windows XP SP1 and Windows 2000 is publicly available. (03/11/2004)

ESB-2004.0701 -- Debian Security Advisory DSA 582-1 -- New libxml packages fix arbitrary code execution - (03/11/2004)

ESB-2004.0700 -- Debian Security Advisory DSA 581-1 -- New xpdf packages fix arbitrary code execution - (03/11/2004)

ESB-2004.0699 -- Cisco Security Advisory -- Vulnerability in Cisco Secure Access Control Server EAP-TLS Authentication - A Cisco ACS Server that is configured to use EAP-TLS to authenticate users to the network will allow access to any user that uses a cryptographically correct certificate as long as the user name is valid. (03/11/2004)

ESB-2004.0698 -- Debian Security Advisory DSA 580-1 -- New iptables packages fix modprobe failure - (02/11/2004)

ESB-2004.0697 -- Debian Security Advisory DSA 579-1 -- New abiword packages fix arbitrary code execution - (02/11/2004)


Previous  1, 2, 3, 4, 5 ... 24, 25, 26  Next denotes AusCERT member only content.