----------------------------------------
This issue is sponsored by IBM® Rational® AppScan
Failure to properly secure Web applications significantly impacts your ability to protect sensitive client and corporate data. IBM Rational AppScan is an automated scanner that monitors, identifies and helps remediate vulnerabilities.
Download a free trial of AppScan and see how it can help prevent against the threat of attack.
https://www.watchfire.com/securearea/appscan.aspx?id=701700000009T0r
SECURITY BLOGS
SecurityFocus has selected a few syndicated sources that stand out as conveying topics of interest for our community. We are proud to offer content from Matasano at this time and will be adding more in the coming weeks.
http://www.securityfocus.com/blogs
------------------------------------------------------------------
I. FRONT AND CENTER
1.On the Border
2.Catch Them if You can
II. LINUX VULNERABILITY SUMMARY
1. Novell eDirectory LDAP Extended Request Message Buffer Overflow Vulnerability
2. OpenSSH X connections Session Hijacking Vulnerability
3. Mozilla Thunderbird/Seamonkey/Firefox 2.0.0.12 Multiple Remote Vulnerabilities
4. policyd-weight Insecure Temporary File Creation Vulnerability
5. lighttpd SSL Error Denial of Service Vulnerability
6. Mondo Rescue Prior to 2.2.5 Unspecified Vulnerability
7. Linux Audit Daemon 'audit_log_user_command()' Local Buffer Overflow Vulnerability
8. Sympa 'Content-Type' Header Remote Denial Of Service Vulnerability
9. CUPS 'gif_read_lzw()' GIF File Buffer Overflow Vulnerability
10. IBM DB2 Content Manager Unspecified Security Vulnerability
11. Gnome Desktop Screensaver NIS Authentication Local Unauthorized Access Vulnerability
III. LINUX FOCUS LIST SUMMARY
IV. UNSUBSCRIBE INSTRUCTIONS
V. SPONSOR INFORMATION
I. FRONT AND CENTER
---------------------
1.On the Border
By Mark Rasch
Recently, I was going through an airport with my shoes, coat, jacket, and belt off as well as with my carry-on bag, briefcase, and laptop all separated for easy inspection. I was heading through security at the Washington D.C., Ronald Reagan National Airport in Arlington, Virginia, or "National" as we locals call it. As I passed through the new magnetometer which gently puffed air all over my body -- which to me seems to be a cross between a glaucoma test and Marilyn Monroe in Gentlemen Prefer Blondes -- a TSA employee absent-mindedly asked if he could "inspect" my laptop computer. While the inspection was cursory, the situation immediately gave me pause: What was in my laptop anyway?
http://www.securityfocus.com/columnists/469
2.Catch Them if You Can
By Don Parker
High-profile network security breaches have proliferated over the past few years. While many "breaches" consist of lost data or a stolen laptop, true breaches -- where a online attacker compromises a network and removes data -- have become very common
http://www.securityfocus.com/columnists/468
II. LINUX VULNERABILITY SUMMARY
------------------------------------
1. Novell eDirectory LDAP Extended Request Message Buffer Overflow Vulnerability
BugTraq ID: 28434
Remote: Yes
Date Published: 2008-03-24
Relevant URL: http://www.securityfocus.com/bid/28434
Summary:
Novell eDirectory is prone to a buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized buffer.
Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
This issue affects eDirectory 8.8.1 and prior as well as 8.7.3.9 and prior versions for Linux, Solaris, and Windows platforms.
2. OpenSSH X connections Session Hijacking Vulnerability
BugTraq ID: 28444
Remote: No
Date Published: 2008-03-25
Relevant URL: http://www.securityfocus.com/bid/28444
Summary:
OpenSSH is prone to a vulnerability that allows attackers to hijack forwarded X connections.
Successfully exploiting this issue may allow an attacker run arbitrary shell commands with the privileges of the user running the affected application.
This issue affects OpenSSH 4.3p2; other versions may also be affected.
NOTE: This issue affects the portable version of OpenSSH and may not affect OpenSSH running on OpenBSD.
3. Mozilla Thunderbird/Seamonkey/Firefox 2.0.0.12 Multiple Remote Vulnerabilities
BugTraq ID: 28448
Remote: Yes
Date Published: 2008-03-26
Relevant URL: http://www.securityfocus.com/bid/28448
Summary:
The Mozilla Foundation has released multiple security advisories specifying various vulnerabilities in Firefox 2.0.0.12 and prior versions.
Exploiting these issues can allow attackers to:
- steal authentication credentials
- obtain potentially sensitive information
- violate the same-origin policy
- execute scripts with elevated privileges
- cause denial-of-service conditions
- potentially execute arbitrary code
- perform cross-site request-forgery attacks
Other attacks are possible.
These issues are present in Firefox 2.0.0.12 and prior versions. Many of these issues are present in Mozilla Thunderbird 2.0.0.12 and prior versions as well as SeaMonkey 1.1.8 and prior versions.
4. policyd-weight Insecure Temporary File Creation Vulnerability
BugTraq ID: 28480
Remote: No
Date Published: 2008-03-27
Relevant URL: http://www.securityfocus.com/bid/28480
Summary:
The 'policyd-weight' daemon creates temporary files in an insecure manner.
An attacker with local access could potentially exploit this issue to perform symbolic-link attacks, overwriting arbitrary files in the context of the affected application.
Successfully mounting a symlink attack may allow the attacker to delete or corrupt sensitive files, which may result in a denial of service. Other attacks may also be possible.
5. lighttpd SSL Error Denial of Service Vulnerability
BugTraq ID: 28489
Remote: Yes
Date Published: 2008-03-27
Relevant URL: http://www.securityfocus.com/bid/28489
Summary:
The 'lighttpd' program is prone to a remote denial-of-service vulnerability because it fails to handle exceptional conditions.
Successfully exploiting this issue allows remote attackers to close foreign SSL connections, denying service to legitimate users.
The issue affects lighttpd 1.4.19 and prior versions.
6. Mondo Rescue Prior to 2.2.5 Unspecified Vulnerability
BugTraq ID: 28522
Remote: No
Date Published: 2008-03-31
Relevant URL: http://www.securityfocus.com/bid/28522
Summary:
Mondo Rescue is prone to an unspecified vulnerability.
Very few technical details are currently available. We will update this BID as more information emerges.
Versions prior to Mondo Rescue 2.2.5 are vulnerable.
7. Linux Audit Daemon 'audit_log_user_command()' Local Buffer Overflow Vulnerability
BugTraq ID: 28524
Remote: No
Date Published: 2008-03-31
Relevant URL: http://www.securityfocus.com/bid/28524
Summary:
The Linux Audit daemon is prone to a local buffer-overflow vulnerability because the software fails to properly bounds-check user-supplied input.
Successfully exploiting this issue allows local attackers to execute arbitrary machine code with elevated privileges. This may facilitate the compromise of affected computers.
Versions prior to Linux Audit 1.7 are vulnerable.
8. Sympa 'Content-Type' Header Remote Denial Of Service Vulnerability
BugTraq ID: 28539
Remote: Yes
Date Published: 2008-03-27
Relevant URL: http://www.securityfocus.com/bid/28539
Summary:
Sympa is prone to a remote denial-of-service vulnerability because it fails to handle specially crafted 'Content-Type' headers.
An attacker can exploit this issue to cause the application to crash. Successful attacks will deny service to legitimate users.
Versions prior to Sympa 5.4 are affected.
9. CUPS 'gif_read_lzw()' GIF File Buffer Overflow Vulnerability
BugTraq ID: 28544
Remote: Yes
Date Published: 2008-04-01
Relevant URL: http://www.securityfocus.com/bid/28544
Summary:
CUPS is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied GIF image data before copying it to an insufficiently sized buffer.
Successful exploits allow attackers to execute arbitrary code with the privileges of a user running the utilities. Failed exploit attempts likely cause denial-of-service conditions.
CUPS 1.3.6 is vulnerable; other versions may also be affected.
10. IBM DB2 Content Manager Unspecified Security Vulnerability
BugTraq ID: 28567
Remote: No
Date Published: 2008-04-02
Relevant URL: http://www.securityfocus.com/bid/28567
Summary:
IBM DB2 Content Manager is prone to an unspecified security vulnerability.
Very few technical details are currently available. We will update this BID as more information emerges.
Versions prior to 8.3 Fix Pack 8 are vulnerable.
11. Gnome Desktop Screensaver NIS Authentication Local Unauthorized Access Vulnerability
BugTraq ID: 28575
Remote: No
Date Published: 2008-04-02
Relevant URL: http://www.securityfocus.com/bid/28575
Summary:
Gnome Desktop is prone to a local unauthorized-access vulnerability.
A local attacker can exploit this issue to gain access to the affected computer. Successfully exploiting this issue may lead to other attacks.
III. LINUX FOCUS LIST SUMMARY
---------------------------------
IV. UNSUBSCRIBE INSTRUCTIONS
-----------------------------
To unsubscribe send an e-mail message to linux-secnews-unsubscribe@securityfocus.com from the subscribed address. The contents of the subject or message body do not matter. You will receive a confirmation request message to which you will have to answer. Alternatively you can also visit http://www.securityfocus.com/newsletters and unsubscribe via the website.
If your email address has changed email listadmin@securityfocus.com and ask to be manually removed.
V. SPONSOR INFORMATION
------------------------
This issue is sponsored by IBM® Rational® AppScan
Failure to properly secure Web applications significantly impacts your ability to protect sensitive client and corporate data. IBM Rational AppScan is an automated scanner that monitors, identifies and helps remediate vulnerabilities.
Download a free trial of AppScan and see how it can help prevent against the threat of attack.
https://www.watchfire.com/securearea/appscan.aspx?id=701700000009T0r
No comments:
Post a Comment