copyright | disclaimer | privacy | contact  
Australia's Leading Computer Emergency Response Team
 
Search this site

 
On this site

 > HOME
 > About AusCERT
 > Membership
 > Contact Us
 > PKI Services
 > Training
 > Publications
 > Sec. Bulletins
 > Conferences
 > News & Media
 > Services
 > Web Log
 > Site Map
 > Site Help
 > Member login

  Home » Security Bul... » By Year » 2004
 

2004



Further Information
ESB-2004.0792 -- Sun Alert Notification 57691 -- Security Vulnerability in Webmail May Allow Unprivileged Users to Execute Arbitrary Code - (20/12/2004)

ESB-2004.0791 -- Sun Alert Notification 57701 -- Multiple Security Vulnerabilities in Mozilla - (20/12/2004)

ESB-2004.0790 -- Debian Security Advisory DSA 610-1 -- New cscope packages fix insecure temporary file creation - (20/12/2004)

AL-2004.043 -- Microsoft Internet Explorer DHTML Edit Control Cross-site Scripting Vulnerability - A vulnerability in Internet Explorer allows an attacker to open a window to a trusted web site, and then execute arbitrary scripted content in the security context of the trusted site. (20/12/2004)

ESB-2004.0795 -- Multiple vulnerabilities in PHP 4 and 5 - Several vulnerabilities within PHP have been discovered allowing the remote execution of arbitrary code. The vulnerabilities found include buffer overflows, information leaks, path truncation vulnerabilities and safe_mode restriction bypass vulnerabilities. (20/12/2004)

ESB-2004.0789 -- NetBSD Security Advisory 2004-010 -- Insufficient argument validation in compat code - (17/12/2004)

ESB-2004.0788 -- iDEFENSE Security Advisory 12.16.04 -- MPlayer Bitmap Parsing Remote Heap Overflow Vulnerability - (17/12/2004)

ESB-2004.0787 -- iDEFENSE Security Advisory 12.16.04 -- MPlayer MMST Streaming Stack Overflow Vulnerability - (17/12/2004)

ESB-2004.0786 -- iDEFENSE Security Advisory 12.16.04 -- MPlayer Remote RTSP Heap Overflow Vulnerability - (17/12/2004)

ESB-2004.0785 -- RHSA-2004:670-01 -- Updated samba packages fix security issue - (17/12/2004)

ESB-2004.0784 -- RHSA-2004:650-01 -- Updated libxml package fixes security vulnerabilities - (17/12/2004)

ESB-2004.0783 -- RHSA-2004:634-01 -- Updated zip package fixes security issue - (17/12/2004)

ESB-2004.0782 -- iDEFENSE Security Advisory 12.16.04 -- Samba smbd Security Descriptor Integer Overflow Vulnerability - A buffer overflow vulnerability in the Samba smbd daemon allows root compromise (17/12/2004)

ESB-2004.0781 -- iDEFENSE Security Advisory 12.16.04 -- Veritas Backup Exec Agent Browser Registration Request Buffer Overflow Vulnerability - Veritas Backup Exec Agent Browser buffer overflow vulnerability may allow administrator compromise. (17/12/2004)

ESB-2004.0780 -- iDEFENSE Security Advisory 12.15.04 -- Computer Associates eTrust EZ Antivirus Insecure File Permission Vulnerability - (16/12/2004)

ESB-2004.0779 -- Cisco Security Advisory -- Default Administrative Password in Cisco Guard and Traffic Anomaly Detector - Default credentials in Cisco Guard and Cisco Traffic Anomoly Detector allow administrative access (16/12/2004)

ESB-2004.0778 -- Cisco Security Advisory -- Cisco Unity Integrated with Exchange Has Default Passwords - Default credentials in Cisco Unity when integrated with Microsoft Exchange allows administrator compromise (16/12/2004)

ESB-2004.0777 -- Vulnerability in Sun Java System Web and Application Server allows session hijacking - (15/12/2004)

ESB-2004.0775 -- iDEFENSE Security Advisory 12.13.04 -- Adobe Reader 6.0 .ETD File Format String Vulnerability - (15/12/2004)

ESB-2004.0774 -- iDEFENSE Security Advisory 12.14.04 -- Adobe Acrobat Reader 5.0.9 mailListIsPdf() Buffer Overflow Vulnerability - (15/12/2004)

ESB-2004.0773 -- Debian Security Advisory DSA 609-1 -- New atari800 packages fix local root exploit - (15/12/2004)

ESB-2004.0772 -- Debian Security Advisory DSA 608-1 -- New zgv packages fix arbitrary code execution - (15/12/2004)

ESB-2004.0776 -- Multiple Vulnerabilities in Microsoft Products - Microsoft has issued five security bulletins for newly discovered windows vulnerabilities. (15/12/2004)

AL-2004.042 -- Increased Virus Activity -- New Zafi Variant - AusCERT has been made aware of media attention regarding activity due to a new ZAFI worm known as Zafi.D and Erkez.D. Zafi.D is a mass-mailing worm affecting Windows systems which attempts to entice a user to run a malicious email attachment. The worm also spreads via Peer-to-Peer file sharing applications. (15/12/2004)

ESB-2004.0771 -- RHSA-2004:504-01 -- Updated Itanium kernel packages resolve security issues - (14/12/2004)

ESB-2004.0770 -- RHSA-2004:505-01 -- Updated kernel packages fix security vulnerability - (14/12/2004)

ESB-2004.0769 -- RHSA-2004:600-01 -- Updated apache and mod_ssl packages fix security vulnerabilities - (14/12/2004)

ESB-2004.0768 -- RHSA-2004:536-01 -- Updated ncompress package fixes security issue and bug. - (14/12/2004)

ESB-2004.0767 -- RHSA-2004:635-01 -- Updated ruby package fixes denial of service issue - (14/12/2004)

ESB-2004.0766 -- iDEFENSE Security Advisory 12.13.04 -- Multiple Vendor xzgv PRF Parsing Integer Overflow Vulnerability - (14/12/2004)

ESB-2004.0765 -- RHSA-2004:651-01 -- Updated imlib packages fix security vulnerabilities - (13/12/2004)

ESB-2004.0764 -- Debian Security Advisory DSA 607-1 -- New libxpm packages fix several vulnerabilities - (13/12/2004)

ESB-2004.0763 -- Debian Security Advisory DSA 606-1 -- New nfs-utils packages fix denial of service - (09/12/2004)

ESB-2004.0762 -- RHSA-2004:636-01 -- Updated ImageMagick packages fix security vulnerability - (09/12/2004)

AL-2004.041 -- Window Injection Vulnerability in Multiple Web Browsers - A vulnerability in multiple web browsers allows an attacker to make spoofed web page content appear to come from a trusted site. Proof of concept exploit code is publicly available. (09/12/2004)


Previous  1, 2, 3, ... 24, 25, 26  Next denotes AusCERT member only content.



Comments? Click here http://www.auscert.org.au/render.html?cid=3734&it=3734