Networks


Data Recovery

Efficiency Audit

Cyber Security

Web Services

In your office
Design and Build
Your Information
Repair
Efficiency
Wireless etc.
Cabling
Consultancy
  



Network Security

New vulnerability, HTA files, discovered by jeffrey@vanderstad.net. Affects Internet Explorer 6.0 running on Windows 98, XP and Server 2003 - these files are given higher levels of access to the system than web pages normally are, possibly allowing remote attacks. More details at http://www.securityfocus.com/bid/17181.

A further remote code execution vulnerability affects IE versions 6 and 7 beta 2. See http://www.securityfocus.com/bid/17196 for further information.

Microsoft Active Server Pages - ASP.NET has a remote denial of service vulnerability, discovery credited to Debasis Mohanty. More information, and solution to the problem, go to http://www.securityfocus.com/bid/17188 for further information.

As ever with Microsoft issues, their own website, http://www.microsoft.com/technet/security/default.mspx is worth a look.

Symantec Veritas NetBackup, new critical problem which could easily be exploited to execute malicious code (source: TippingPoint, a division of 3Com).

Affected versions:

NetBackup Enterprise Server/NetBackup Server versions 5.0, 5.1 and 6.0.

NetBackup DataCenter and BusinesServer version 4.5FP and 4.5MP.

Further details from http://seer.support.veritas.com/docs/281521.htm.

More issues with Symantec Veritas Backup:

Format string vulnberability (notified by the software vendor), see http://seer.support.veritas.com/docs/282254.htm, and a remote denial of service issue, also discovered by the vendor: http://www.securityfocus.com/bid/17098.

Avast! anti-virus software has a design error (discovered by "toadlife") which allows a local attacker to compromise the entire system as it incorrectly resets permission levels for critical files during its update process. The problem will be addressed in an upcoming avast! update. More details at http://www.securityfocus.com/bid/17158.

Password Safe - ElcomSoft Co Ltd has notified an issue with this software due to its use of an insecure random number generator, allowing "brute force" decryption of the master password in only a few hours. Version 3.0 is vulnerable, but only on operating systems prior to Windows XP. Reference: http://www.securityfocus.com/archive/1/428552.

Various RealNetworks products including RealPlayer are susceptible to buffer overflow vulnerabilities, discovered by John Heasman of NGS Software, Greg MacManus with iDEFENSE Labs, and "Sowhat". More information at http://www.securityfocus.com/bid/17202, and patches available from real.com.

ISS BlackICE and RealSecure have a newly discovered issue enabling local privilege escalation - see http://www.securityfocus.com/archive/1/428588. ISS recommends the free upgrades to Proventia Desktop and Proventia Server, which are not susceptible.

VPN issue: FirePass 4100 version 5.4.2 is vulnerable to a cross-site scripting vulnerability (notified by ILION Research Labs), further information at http://www.securityfocus.com/bid/17175/. The vendor has not supplied a patch, so any problems should be referred to us.

Old security bulletins are stored in our archive.

If you have a security issue or are looking for Internet security services, contact us to see what we can do for you.

  







© MMIX Cambridge Computer Support - The computer networks & data recovery experts
Cambridge Computer Support    About Us    Networks    The Internet    Hardware    Contact Us