Network Security

AERAsec
Network Security
Current Security Messages


Most of the links lead to the corresponding files at CERT or other organisations. So changes take place immediately, especially which patches should be installed or which changes in the configuration should be made to avoid this vulnerability. Some of the files are transferred by FTP.

By the way: If we're not publishing well-known risks inheritant in any widely used platform or program that doesn't mean this particular platform or program is safe to use!

Here you find our network security search engine!


This is some information you send:

Your Browser

CCBot/2.0 (http://commoncrawl.org/faq/)

Your IP address

ec2-54-87-15-219.compute-1.amazonaws.com [54.87.15.219]

Your referer

(filtered or not existing)

Current month, Last month, Last 10 messages, Last 20 messages (index only)

Chosen month 02 / 2009

System: Debian GNU/Linux
Topic: Vulnerability in dkim-milter
Links: DSA-1728, ESB-2009.0188
ID: ae-200902-060

Dkim-milter is an implementation of the DomainKeys Identified Mail protocol. It may crash during DKIM verification if it encounters a specially-crafted or revoked public key record in DNS, resulting in a Denial-of-Service (DoS). Fixed software is available now.

System: VMware ESX Server, Windows, Linux
Topic: Vulnerability in VMware ESX 2.5.5
Links: VMSA-2009-0003, CVE-2008-3916, ESB-2009.0187
ID: ae-200902-059

A heap-based buffer overflow has been discovered in the way the editor ed processes long file names. An attacker could create a file with a specially-crafted name that could possibly execute arbitrary code when opened in the ed editor. This problem is solved with ESX 2.5.5 patch 12 Build 142708.

System: Various
Topic: Vulnerability in Tomcat
Links: Tomcat, CVE-2008-4308, ESB-2009.0185
ID: ae-200902-058

A vulnerability in Apache Tomcat 4.x and 5.x might show POSTed content from a previous request. Updated versions solve this problem.

System: Sun Solaris
Topic: Vulnerabilities in Tomcat 5.5
Links: Sun Alert #251986, CVE-2008-1232, CVE-2008-1947, CVE-2008-2370, ESB-2009.0179
ID: ae-200902-057

There are three security vulnerabilities in the Tomcat JSP/Servlet container that affect Tomcat 5.5 bundled in Solaris 9 and Solaris 10. The first two security vulnerabilities are Cross Site Scripting (XSS) issues while the third is a Directory Traversal vulnerability. Patches have been published to solve this potential problem.

System: Microsoft Windows
Topic: Vulnerability in HP Virtual Rooms
Links: HPSBGN02410, SSRT080135, HP, VU#461321, CVE-2009-0208, ESB-2009.0180
ID: ae-200902-056

A potential security vulnerability has been identified with HP Virtual Rooms client running on Windows. The vulnerability is located in an ActiveX control and it could be exploited to allow remote execution of arbitrary code. An updated client solves this problem.

System: Turbolinux
Topic: Vulnerabilities in php
Links: TLSA-2009-7, CVE-2008-5624, CVE-2008-5625, CVE-2008-5557, CVE-2008-5658
ID: ae-200902-055

PHP is an HTML-embedded scripting language. Now multiple vulnerabilities in PHP have been found and patched in Turbolinux.

System: Mandriva Linux
Topic: Vulnerabilities in squirrelmail, Nagios, audacity, net-snmp, valgrind, wireshark, xchat, nfs-utils, and proftpd
Links: MDVSA-2009:053, CVE-2008-3663,
MDVSA-2009:054, CVE-2007-5803,
MDVSA-2009:055, CVE-2009-0490,
MDVSA-2009:056, CVE-2008-6123, ESB-2009.0183,
MDVSA-2009:057, CVE-2008-4865, esb-2009.0184,
MDVSA-2009:058, wnpa-sec-2009-01, CVE-2009-0599, CVE-2009-0600, CVE-2009-0601,
MDVSA-2009:059, CVE-2009-0315,
MDVSA-2009:060, CVE-2008-4552,
MDVSA-2009:061, CVE-2008-4242, CVE-2009-0542, CVE-2009-0543
ID: ae-200902-054

The programs above show vulnerabilities which should be fixed now using the latest patches.

System: Microsoft Windows
Topic: Update for Windows Autorun
Links: MX#967940, CVE-2009-0951, ESB-2009.0178
ID: ae-200902-053

No further comment due to legal reasons

System: Cisco Wireless LAN Controllers
Topic: Several vulnerabilities in Cisco ACE Application Control Engine
Links: Cisco, CVE-2009-0620, CVE-2009-0621, CVE-2009-0622, CVE-2009-0623, CVE-2009-0624, CVE-2009-0625, ESB-2009.0177
ID: ae-200902-052

The Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine Cisco ACE Module and Cisco ACE 4710 Application Control Engine contain multiple vulnerabilities that, if exploited, can could result in different impacts like administrative level access via default user names and passwords, privilege escalation, and a Denial-of-Service (DoS) condition Cisco has released free software updates available for affected customers. Workarounds that mitigate some of the vulnerabilities are available.

System: Cisco
Topic: Vulnerability in Cisco Unified MeetingPlace Web Conferencing
Links: Cisco, Cisco, CVE-2009-0614, ESB-2009.0176, ESB-2009.0186
ID: ae-200902-051

Cisco Unified MeetingPlace Web Conferencing servers may contain an authentication bypass vulnerability that could allow an unauthenticated user to gain administrative access to the MeetingPlace application. Cisco has released free software updates that address this vulnerability.

System: Various
Topic: Vulnerability in Shibboleth IdP 2.X
Links: ESB-2009.0171
ID: ae-200902-050

All current versions of the Shibboleth 2 IdP are vulnerable to a cross-site attack during certain error conditions. Such attacks could allow attackers to phish credentials, steal active session, or otherwise intercept user/idp communications. A workaround has been published.

System: Microsoft Windows
Topic: Some Vulnerabilities in Drupal
Links: DRUPAL-SA-2009-003, DRUPAL-SA-2009-004, ESB-2009.0172
ID: ae-200902-049

Multiple vulnerabilities have been discovered in Drupal Core. Fixed software is available and should be installed now.

System: Debian GNU/Linux
Topic: Vulnerabilities in python-crypto and proftpd
Links: DSA-1726, CVE-2009-0544, ESB-2009.0173,
DSA-1727, DSA-1730, CVE-2009-0542, CVE-2009-0543, ESB-2009.0181, ESB-2009.0192
ID: ae-200902-048

It was discovered that a buffer overflow in the ARC2 implementation of Python Crypto, a collection of cryptographic algorithms and protocols for Python allows denial of service and potentially the execution of arbitrary code.
Two SQL injection vulnerabilities have been found in proftpd, a virtual-hosting FTP daemon.
Fixed packages are available now.

System: Various
Topic: Vulnerabilities in Adobe RoboHelp and Adobe RoboHelp Server
Links: APSA09-02, CVE-2009-0523, CVE-2009-0524, ESB-2009.0175
ID: ae-200902-047

A specially crafted URL could be used to create a cross-site scripting attack on RoboHelp installations. Fixed software is available now.

System: Various
Topic: Vulnerabilities in HP OpenView Network Node Manager
Links: HPSBMA02384 SSRT071465, CVE-2007-3698, CVE-2007-3922, ESB-2009.0169
ID: ae-200902-046

Security vulnerabilities have been identified with HP OpenView Network Node Manager (OV NNM). The vulnerabilities could be exploited remotely to gain unauthorized access or to create a Denial of Service (DoS). A patch is available now.

System: Mandriva Linux
Topic: Vulnerability in php-smarty
Links: MDVSA-2009:052, CVE-2008-4810
ID: ae-200902-045

A vulnerability was found in php-smarty that allows remote attackers to execute arbitrary PHP code. Fixed packages are available now.

System: Various
Topic: Vulnerabilities in Adobe Flash Player
Links: APSB09-01, CVE-2009-0114, CVE-2009-0519, CVE-2009-0520, CVE-2009-0521, CVE-2009-0522, iDefense, ESB-2009.0170, ESB-2009.0174, SUSE-SA:2009:011, ESB-2009.0275
ID: ae-200902-044

Several vulnerabilities were found in the Adobe Flash Player. Fixed software is available now.

System: VMware ESX Server, Windows, Linux
Topic: Vulnerabilities in VMware products
Links: VMSA-2009-0002, CVE-2008-1232, CVE-2008-1947, CVE-2008-2370, ESB-2009.0167
ID: ae-200902-043

In VMware VirtualCener, VMware Server and VMware ESX some vulnerabilities in the Tomcat packages have been found. They might lead to cross-site scripting attacks or inappropriate access. An update to Apache Tomcat version 5.5.27 solves these problems.

System: SuSE Linux
Topic: Vulnerabilities in apache-jakarta-tomcat-connectors, apache2-mod_php5, audacity, dovecot, libtiff-devel, libvirt, mediawiki, netatalk, novell-ipsec-tools, opensc, perl, phpPgAdmin, sbl, sblim-sfcb, swfdec, tomcat5, virtualbox, websphere-as_ce, wine, and xine-devel
Links: SUSE-SR:2009:004
ID: ae-200902-042

A SUSE Security Summary reports about vulnerabilities in the packages apache-jakarta-tomcat-connectors, apache2-mod_php5, audacity, dovecot, libtiff-devel, libvirt, mediawiki, netatalk, novell-ipsec-tools, opensc, perl, phpPgAdmin, sbl, sblim-sfcb, swfdec, tomcat5, virtualbox, websphere-as_ce, wine, and xine-devel. Updated packages are available now and should be installed on vulnerable systems.

System: Mandriva Linux
Topic: Vulnerabilities in libpng
Links: MDVSA-2009:051, CVE-2008-3964, CVE-2008-5907, CVE-2009-0040
ID: ae-200902-041

Some vulnerabilities have been found in libpng, e.g. a 1-byte buffer overflow in pngpread.c. The function png_check_keyword() allows setting arbitrary bytes in the process memory to zero. Additionally a potential Denial-of-Service (DoS) against applications using this library has been found. All vulnerabilities can be fixed by installing the appropriate patch.

System: Various
Topic: Vulnerability in many proxy servers
Links: VU#435052, ESB-2009.0164
ID: ae-200902-040

Proxy servers running in interception mode ("transparent" proxies) that make connection decisions based on HTTP header values may be used by an attacker to relay connections. Due to this, access to the user's web browser is possible as well as connecting to any address the proxy server is able to connect to. Please refer to the advisory for more information about vulnerable servers and patches.

System: Various
Topic: New version of OpenSSH
Links: OpenSSH, ESB-2009.0163
ID: ae-200902-039

OpenSSH version 5.2 is available now, offering more features and enhancements regarding security.

System: Mandriva Linux
Topic: Vulnerabilities in php, dia, vim, epiphany, and pycrypto
Links: MDVSA-2009:045, CVE-2008-5557, CVE-2008-5658, CVE-2008-5624, CVE-2008-5625,
MDVSA-2009:046, CVE-2008-5984,
MDVSA-2009:047, CVE-2009-0316,
MDVSA-2009:048, MDVSA-2009:048-2, CVE-2008-5985, ESB-2009.0182,
MDVSA-2009:049, MDVSA-2009:049-1, MDVSA-2009:050, CVE-2009-0544, ESB-2009.0166
ID: ae-200902-038

The programs above show vulnerabilities which should be fixed now using the latest patches.

System: Mandriva Linux
Topic: Vulnerability in gnumeric
Links: MDVSA-2009:043, CVE-2009-0318
ID: ae-200902-037

Python has a variable called sys.path that contains all paths where Python loads modules by using import scripting procedure. A wrong handling of that variable enables local attackers to execute arbitrary code via Python scripting in the current Gnumeric working directory. An update provides a fix for this vulnerability.

System: Various
Topic: Vulnerability in Adobe Reader
Links: APSA09-01, VU #905281, ESB-2009.0162
ID: ae-200902-036

A critical vulnerability has been identified in Adobe Reader 9 and Acrobat 9 and earlier versions. This vulnerability would cause the application to crash and could potentially allow an attacker to take control of the affected system. There are reports that this issue is being exploited. A patch is not available yet.

System: Red Hat Enterprise Linux 3
Topic: Vulnerabilities in imap and cups
Links: RHSA-2009-0275, CVE-2008-5005, ESB-2009.0159,
RHSA-2009-0308, CVE-2009-0577, ESB-2009.0160
ID: ae-200902-035

A buffer overflow flaw was discovered in the dmail and tmail mail delivery utilities shipped with imap. If either of these utilities were used as a mail delivery agent, a remote attacker could potentially use this flaw to run arbitrary code as the targeted user by sending a specially-crafted mail message to the victim.
The CUPS security advisory, RHSA-2008:0937, stated that it fixed CVE-2008-3640 for Red Hat Enterprise Linux 3, 4, and 5. It was discovered this flaw was not properly fixed on Red Hat Enterprise Linux 3, however.
Fixed packages are available now.

System: FreeBSD
Topic: Vulnerability in telnetd
Links: FreeBSD-SA-09:05, ESB-2009.0157
ID: ae-200902-034

A vulnerability was found in the FreeBSD telnet daemon, telnetd(8). An attacker who can place a specially-constructed file onto a target system (either by legitimately logging into the system or by exploiting some other service on the system) can execute arbitrary code with the privileges of the user running the telnet daemon (usually root). A patch is available now.

System: HP-UX
Topic: Vulnerabilities in Apache Web Server Suite
Links: HPSBUX02401, SSRT090005, CVE-2007-6420, CVE-2008-1232, CVE-2008-1947, CVE-2008-2364, CVE-2008-2370, CVE-2008-2938, CVE-2008-2939, CVE-2008-3658, ESB-2009.0155
ID: ae-200902-033

Potential security vulnerabilities have been identified with HP-UX running Apache-based Web Server or Tomcat-based Servelet Engine. The vulnerabilities could be exploited remotely to cause a Denial-of-Service (DoS), cross-site scripting (XSS), execution of arbitrary code, or cross-site request forgery (CSRF). Updates should be installed immediately.

System: Various
Topic: Vulnerability in Sun Java System Directory Server
Links: Sun Alert #251086, ESB-2009.0154
ID: ae-200902-032

Sun Java System Directory Server Enterprise Edition 6.x shows a security vulnerability in the Direcotry Proxy Server, leading to a Denial-of-Service (DoS). A patch remedies this problem.

System: Sun Solaris
Topic: Vulnerabilities in Sun Solaris Kerberos PAM Module
Links: Sun Alert #252767, CVE-2009-0360, CVE-2009-0361, ESB-2009.0153
ID: ae-200902-031

A security vulnerability in the Solaris Kerberos PAM module may allow a user supplied Kerberos configuration file to be used to specify realm and KDC server information, thereby allowing certain remote unprivileged users or applications to gain elevated privileges of root. A workaround is described in the advisory, a patch is still pending.

System: Debian GNU/Linux
Topic: Vulnerabilities in moodle and websvn
Links: DSA-1724, CVE-2008-5153, CVE-2009-0500, CVE-2009-0502, ESB-2009.0151,
DSA-1725, CVE-2009-0240, ESB-2009.0152
ID: ae-200902-030

Several vulnerabilities have been discovered in Moodle, an online course management system. They might lead to injection of arbitrary web code or web scripts as well as to a Denial-of-Service (DoS).
WebSVN is a tool to view Subversion repositories over the web. It doesn't not properly restrict access to private repositories, allowing a remote attacker to read significant parts of their content.
Fixed packages are available now.

System: Apple Mac OS X
Topic: Vulnerabilities in Java for Mac OS X
Links: APPLE-SA-2009-02-12, APPLE-SA-2009-02-12, ESB-2009.0149
ID: ae-200902-029

Multiple vulnerabilities exist in Java Web Start and the Java Plug-in, the most serious of which may allow untrusted Java Web Start applications and untrusted Java applets to obtain elevated privileges. Fixed software is available now.

System: Various
Topic: Vulnerabilities in Apple Safari
Links: APPLE-SA-2009-02-12, ESB-2009.0148
ID: ae-200902-028

Multiple input validation issues exist in Safari's handling of feed: URLs. Fixed software is available now.

System: Apple Mac OS X
Topic: New Apple Security Update available
Links: APPLE-SA-2009-02-12, ESB-2009.0147
ID: ae-200902-027

Apple has published the security update 2009-001 for Mac OS X. It fixes multiple vulnerabilities in AFP Server, Apple Pixlet Video, CarbonCore, CFNetwork, Certificate Assistant, ClamAV, CoreText, CUPS, DS Tools, fetchmail, Folder Manager, FSEvents, Network Time, perl, Printing, python, Remote Apple Events, Safari RSS, servermgrd, SMB, SquirrelMail, X11, and XTerm. It's recommended to install this update.

System: Red Hat Enterprise Linux
Topic: Vulnerabilities in netpbm, mod_auth_mysql, and vnc
Links: RHSA-2009-0012, CVE-2007-2721, CVE-2008-3520, ESB-2009.0136,
RHSA-2009-0259, CVE-2008-2384, CVE-2009-0397, CVE-2009-0398, ESB-2009.0137,
RHSA-2009-0261, CVE-2008-4770, ESB-2009.0138
ID: ae-200902-026

An input validation flaw and multiple integer overflows were discovered in the JasPer library providing support for JPEG-2000 image format and used in the jpeg2ktopam and pamtojpeg2k converters. An attacker could create a carefully-crafted JPEG file which could cause jpeg2ktopam to crash or, possibly, execute arbitrary code as the user running jpeg2ktopam.
A flaw was found in the way mod_auth_mysql escaped certain multibyte-encoded strings. If mod_auth_mysql was configured to use a multibyte character set that allowed a backslash '\' as part of the character encodings, a remote attacker could inject arbitrary SQL commands into a login request.
An insufficient input validation flaw was discovered in the VNC client application, vncviewer. If an attacker could convince a victim to connect to a malicious VNC server, or when an attacker was able to connect to vncviewer running in the "listen" mode, the attacker could cause the victim's vncviewer to crash or, possibly, execute arbitrary code.
Fixed packages are available now.

System: Debian GNU/Linux
Topic: Vulnerabilities in libpam-krb5, libpam-heimdal, and phpmyadmin
Links: DSA-1721, DSA-1722, CVE-2009-0360, CVE-2009-0361, ESB-2009.0135,
DSA-1723, CVE-2008-5621, ESB-2009.0150
ID: ae-200902-025

Several local vulnerabilities have been discovered in the PAM module for MIT Kerberos and Heimdal Kerberos.
It was discovered that phpMyAdmin, a tool to administrate MySQL over the web, performs insufficient input sanitising allowing a user assisted remote attacker to execute code on the webserver.
Fixed packages are available now.

System: Microsoft Windows
Topic: Vulnerabilities in Microsoft Office Visio
Links: MS09-005, CVE-2009-0095, CVE-2009-0096, CVE-2009-0097, ESB-2009.0133
ID: ae-200902-024

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerability in Microsoft SQL Server
Links: MS09-004, CVE-2008-5416, ESB-2009.0132
ID: ae-200902-023

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerabilities in Microsoft Exchange
Links: MS09-003, CVE-2009-0098, CVE-2009-0099, AL-2009.0012, AU-2009.0009
ID: ae-200902-022

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerabilities in Microsoft Internet Explorer
Links: MS09-002, CVE-2009-0075, CVE-2009-0076, AL-2009.0012
ID: ae-200902-021

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerability in BlackBerry Application Web Loader
Links: VU#131100, Microsoft Security Advisory (960715)
ID: ae-200902-020

The RIM BlackBerry Application Web Loader is an ActiveX control that is used to load applications onto a BlackBerry device using a PC and Internet Explorer. The BlackBerry Application Web Loader ActiveX control, which is provided by AxLoader.ocx or AxLoader.dll, contains stack buffer overflows in the load() and loadJad() methods. A patch is available now.

System: Debian GNU/Linux
Topic: Vulnerabilities in gnutls13 and typo3-src
Links: DSA-1719, CVE-2008-4989, ESB-2009.0142, AU-2009.0010,
DSA-1720, ESB-2009.0134
ID: ae-200902-019

It was discovered that GNUTLS, an implementation of the TLS/SSL protocol, handles verification of X.509 certificate chains incorrectly if a self-signed certificate is configured as a trusted certificate. This could cause clients to accept forged server certificates as genuine.
Several remote vulnerabilities have been discovered in the TYPO3 web content management framework.
Fixed packages are available now.

System: Red Hat Enterprise Linux 5
Topic: Vulnerabilities in Kernel
Links: RHSA-2009-0264, CVE-2008-4933, CVE-2008-4933, CVE-2008-5025, CVE-2008-5713, CVE-2009-0031, CVE-2009-0065, ESB-2009.0139
ID: ae-200902-018

Several vulnerabilities have been found in the kernel of Red Hat Enterprise Linux 5. Fixed kernel packages are available now.

System: HP LaserJet
Topic: Vulnerabilitiy in HP LaserJet Printers
Links: HPSBPI02398 SSRT080166, CVE-2008-4419, ESB-2009.0127
ID: ae-200902-017

A security vulnerability has been identified with certain HP LaserJet printers, HP Color LaserJet printers and HP Digital Senders. The vulnerability could be exploited remotely to gain unauthorized access to files. Patches are available now.

System: HP-UX
Topic: Vulnerabilitiy in NFS
Links: HPSBUX02408 SSRT080182, CVE-2009-0206, ESB-2009.0124
ID: ae-200902-016

A security vulnerability has been identified with HP-UX running NFS. This vulnerability could be exploited locally resulting in a Denial of Service (DoS). Patches are available now.

System: Sun OpenSolaris
Topic: Vulnerability in process file system
Links: Sun Alert #244026, CVE-2009-0477, ESB-2009.0123
ID: ae-200902-015

A security vulnerability in the process file system (proc(4)) when interacting with the contract(4) file system may allow a local unprivileged user the ability to panic the system or execute arbitrary commands with all (super-user) privileges. A patch is available now.

System: SUSE Linux Enterprise 10
Topic: Vulnerabilities in Linux Kernel 2.6.x
Links: SUSE-SA:2009:008
ID: ae-200902-014

Several vulnerabilities have been discovered in the Linux kernel of SUSE Linux Enterprise 10. An updated Linux Kernel fixes this problem.

System: Debian GNU/Linux
Topic: Vulnerability in boinc
Links: DSA-1718, CVE-2009-0126, ESB-2009.0125
ID: ae-200902-013

It was discovered that the core client for the BOINC distributed computing infrastructure performs incorrect validation of the return values of OpenSSL's RSA functions. Fixed packages are available now.

System: Various
Topic: Vulnerabilities in HP Network Node Manager
Links: iDEFENSE #770, iDEFENSE #771, iDEFENSE #772, CVE-2008-4559, CVE-2008-4560, CVE-2008-4562 CVE-2009-0205 ESB-2009.0126
ID: ae-200902-012

Remote exploitation of multiple command injection vulnerabilities or a BSS based buffer overflow vulnerability in Hewlett-Packard Network Node Manager (NNM) might allow an attacker to execute arbitrary code with the privileges of the affected service. Remote exploitation of multiple information disclosure vulnerabilities might allow an attacker to gain access to sensitive information. HP has published updates to solve these problems.

System: Debian GNU/Linux
Topic: Vulnerability in devil
Links: DSA-1717, CVE-2008-5262, ESB-2009.0122
ID: ae-200902-011

Devil is a cross-platform image loading and manipulation toolkit. Here, a buffer overflow can be triggered via a specially crafted Radiance RGBE file, leading to the execution of arbitrary code. Updated packages are available now.

System: Red Hat Enterprise Linux
Topic: Vulnerabilities in gstreamer-plugins
Links: RHSA-2009-0269, RHSA-2009-0270, RHSA-2009-0271, CVE-2009-0386, CVE-2009-0387, CVE-2009-0397, CVE-2009-0398, ESB-2009.0128, ESB-2009.0129
ID: ae-200902-010

Several vulnerabilities were found in the gstreamer-plugins packages. Fixed packages are available now.

System: Various
Topic: Vulnerability in squid
Links: SQUID-2009_1, AL-2009.0126
ID: ae-200902-009

Due to an internal error Squid is vulnerable to a denial of service attack when processing specially crafted requests. This problem allows any client to perform a denial of service attack on the Squid service. A patch to fix this problem is available now.

System: Various
Topic: Vulnerability in sudo
Links: CVE-2009-0034, RHSA-2009:0267, AL-2009.0125, ESB-2009.0121
ID: ae-200902-008

A flaw was discovered in a way sudo handled group specifications in "run as" lists in the sudoers configuration file. If sudo configuration allowed a user to run commands as any user of some group and the user was also a member of that group, sudo incorrectly allowed them to run defined commands with the privileges of any system user. A patch to fix this problem is available now.

System: Various
Topic: Vulnerability in Drupal 3rd party module
Links: DRUPAL-SA-CONTRIB-2009-005, ESB-2009.0119
ID: ae-200902-007

A cross site scripting vulnerability was found in the 'Views bulk operations' module. Updates solve these potential problems. Please be aware that Drupal core is not affected.

System: Cisco Wireless LAN Controllers
Topic: Vulnerabilities in Cisco Wireless LAN Controllers
Links: Cisco, ESB-2009.0120
ID: ae-200902-006

Multiple vulnerabilities exist in the Cisco Wireless LAN Controllers (WLCs), Cisco Catalyst 6500 Wireless Services Modules (WiSMs), and Cisco Catalyst 3750 Integrated Wireless LAN Controllers. Cisco has released free software updates that address these vulnerabilities.

System: Various
Topic: Vulnerabilities in Mozilla Firefox, Thunderbird, and Seamonkey
Links: Mozilla, RHSA-2009-0256, RHSA-2009-0257, ESB-2009.0118, TLSA-2009-6, MDVSA-2009:044, SUSE-SA:2009:009
ID: ae-200902-005

Multiple vulnerabilities were found in the Mozilla Firefox browser. Also affected are Thunderbird and Seamonkey. Fixed software is available now.

System: VMware ESX
Topic: Vulnerabilities in VMware ESX
Links: VMSA-2009-0001, CVE-2008-4225, CVE-2008-4226, CVE-2008-4309, CVE-2008-4914, ESB-2009.0114
ID: ae-200902-004

Updated ESX patches address an issue loading corrupt virtual disks and update Service Console packages for net-snmp and libxml2.

System: SuSE Linux
Topic: Vulnerabilities in boinc-client, xrdp, phpMyAdmin, libnasl, moodle, xrdp, net-snmp, audiofile, XFree86/xterm, amarok, libpng, sudo, and avahi
Links: SUSE-SR:2009:003
ID: ae-200902-003

A SUSE Security Summary reports about vulnerabilities in the packages boinc-client, xrdp, phpMyAdmin, libnasl, moodle, xrdp, net-snmp, audiofile, XFree86/xterm, amarok, libpng, sudo, and avahi. Updated packages are available now and should be installed on vulnerable systems.

System: Various
Topic: Vulnerabilities in Novell GroupWise
Links: Novell, ESB-2009.0112
ID: ae-200902-002

Multiple vulnerabilities were disclosed in Novell Groupwise 7 and 8 which may allow an attacker to execute arbitrary code, compromise a GroupWise account, conduct cross-site scripting attacks, or obtain sensitive information. Fixed software is available now.

System: Debian GNU/Linux
Topic: Vulnerability in vnc4
Links: DSA-1716, CVE-2008-4770, ESB-2009.0115
ID: ae-200902-001

It was discovered that xvnc4viewer, a virtual network computing client software for X, is prone to an integer overflow via a malicious encoding value that could lead to arbitrary code execution. Fixed packages are available now.



(c) 2000-2014 AERAsec Network Services and Security GmbH