NIPC CyberNotes #2002-12 Page 7 of 33 06/17/2002
Vendor
Operating
System
Software
Name
Vulnerability/
Impact
Patches/Workarounds/
Alerts
Common
Name
Risk*
Attacks/
Scripts
Ikonboard.
com
27
Multiple Ikonboard
3.0 .1
A vulnerability exists because
Flash content may be
uploaded, which could let a
malicious user execute
arbitrary JavaScript.
No workaround or patch
available at time of
publishing.
Ikonboard
Flash File
High
Bug discussed
in newsgroups
and websites.
Internet
Security
Systems
28
Windows
95/98/ME/
NT
4.0/2000,
XP
BlackIce
Agent 3.1
EAL
A vulnerability exists in the
default installation because
the Agent might not reactivate
when the host returns from
standby, which could let a
malicious user bypass the
firewall completely.
Upgrade available at:
https://bvlive01.iss.net/issEn
/DLC/login.jhtml
BlackIce
Firewall
Bypass
Medium Bug discussed
in newsgroups
and websites.
ISC
29, 30, 31,
32, 33,
Unix BIND 9.0,
9.1-9.1.3,
9.2
A remote Denial of Service
vulnerability exists when a
malicious user sends a
specific DNS packet that is
designed to trigger an internal
consistency check.
Note: Because the normal
operation of most services on
the Internet depends on the
proper operation of DNS
servers, other services could
be affected if this vulnerability
is exploited.
ISC:
ftp://ftp.isc.org/isc/bind9/9.2
.1/bind-9.2.1.tar.gz
RedHat:
ftp://updates.redhat.com/
Conectiva:
ftp://atualizacoes.conectiva.
com.br
/
SuSE:
ftp://ftp.suse.com/pub/suse/
Caldera:
ftp://ftp.caldera.com/pub/up
dates/OpenUNIX/
ISC BIND 9
Remote Denial
Of Service
CVE Name:
CAN-2002-
0400
Low/High Bug discussed
in newsgroups
and websites.
Vulnerability
has appeared in
the press and
other public
media.
Jon
Hedley
34
Multiple AlienForm
2 1.5
A Directory Traversal
vulnerability exists when a
file path is constructed with
special characters, which
could let a malicious user
obtain sensitive information.
No workaround or patch
available at time of
publishing.
AlienForm2
Directory
Traversal
Medium Bug discussed
in newsgroups
and websites.
There is no
exploit code
required.
LBL
35, 36, 37,
38, 39, 40
Unix tcpdump
3.6.2
A remote buffer overflow
vulnerability exists when
malformed NFS packets are
handled, which may let a
remote malicious user execute
arbitrary instructions with the
privileges of the tcpdump
process.
Conectiva:
ftp://atualizacoes.conectiva.
com.br/
RedHat:
ftp://updates.redhat.com/
Caldera:
ftp://ftp.caldera.com/pub/up
dates/OpenLinux/
SuSE:
ftp://ftp.suse.com/pub/suse/
Mandrake Linux:
http://www.mandrakesecure.
net/en/ftp.php
TCPDump
Malformed
NFS Packet
Buffer
Overflow
CVE Name:
CAN-2002-
0380
High
Bug discussed
in newsgroups
and websites.
27
EyeonSecurity, June 5, 2002.
28
KPMG-2002019, June 6, 2002.
29
Red Hat, Inc. Red Hat Security Advisory, RHSA-2002:105-09, June 4, 2002.
30
Hewlett-Packard Company Security Bulletin, HPSBTL0206-045, June 5, 2002.
31
Conectiva Linux Security Announcement, CLA-2002:494, June 6, 2002.
32
SuSE Security Announcement, SuSE-SA:2002:021, June 6, 2002.
33
Caldera International, Inc. Security Advisory, CSSA-2002-SCO.24, June 10, 2002.
34
Bugtraq, June 10, 2002.
35
Conectiva Linux Security Announcement, CLA-2002:491, June 6, 2002.
36
Red Hat, Inc. Red Hat Security Advisory, RHSA-2002:094-08, May 29, 2002.
37
Caldera International, Inc. Security Advisory, CSSA-2002-025.0, June 4, 2002.
38
SuSE Security Announcement, SuSE-SA:2002:020, May 29, 2002.
39
Mandrake Linux Security Update Advisory, MDKSA-2002:032, May 16, 2002.
40
Hewlett-Packard Company Security Advisory, HPSBTL0205-044, June 1, 2002.
(51 paginas)
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales