|
CERT/CC Advisories Tech Tips Incident Notes Summaries 和訳版 最近版 全CERT勧告 Tech Tips |
CERT勧告全リスト(1988-2001)これはhttp://www.cert.org/advisories/ で閲覧できるCERT勧告の 一覧を日本語化したものである。筆者(橋本喜代太 による日本語版が存在する場合は、その リンクを合わせて付けてある。 なお、別所として、 http://www.lac.co.jp/security/information/CERT/に概ね1997年以降の CERT勧告の和訳が存在する。 つまり橋本がやっているのはreinventing the wheel 的な無為な行為と言えばそうなのであるが、(1) 自分の勉強のため、(2) たいていは 別所よりも早く和訳をリリースしている、(3) 翻訳なんて解釈の塊だから複数存在する 方がいいんじゃない?、といった理由からこんなことをしている。この橋本の「CERT勧告迅速和訳」プロジェクトにリンクを貼る場合は、 http://www.reasoning.org/jp/cert/ に貼るのが望ましい。
CA-2001-20: Continuing Threats to Home Users; その和訳July 20, 2001今年は、ホームユーザのマシンが攻略されることになる攻撃が激増している。 多くの場合、攻略されたマシンを侵入者は他の組織を攻撃するのに 利用する。ホームユーザは一般に攻撃に対する防御体制をほとんど取って いない。多くのホームユーザはセキュリティパッチを当てたり回避策を 取ったりして自分のマシンを最新状態に置いているわけではないし、 最新状態のウィルス対策ソフトウェアを使っているわけでもないし、 電子メール添付ファイルを扱う際に十分な注意を払っているわけではない。 侵入者もこのことを招致しており、ケーブルインターネット接続や DSL接続を利用しているホームユーザをターゲットにする侵入者が 目立って増加してきているのである。 CA-2001-19: "Code Red" Worm Exploiting Buffer Overflow in IIS Indexing Service DLL; その和訳July 19, 2001CERT/CCは新たな自己増殖型の悪意あるコードの報告を複数受けている。 これはCERT勧告 CA-2001-13 Buffer Overflow In IIS Indexing Service DLL; その和訳版で記述された脆弱性を有するMicrosoft Windowsのある種の 設定に付けこむものである。CERT/CCが受け取った報告を総合すれば、 "Code Red"ワームは既に225,000ものホストに感染しており、さらに急速に 広まりつつある。 CA-2001-18: Multiple Vulnerabilities in Several Implementations of the Lightweight Directory Access Protocol (LDAP):その和訳July 16, 2001LDAP (Lightweight Directory Access Protocol)のいくつかの実装で、サービス拒否 (DoS)攻撃ないし不正な特権的アクセス、またはその両方を許してしまうような 脆弱性が存在する。 CA-2001-17: Check Point RDP Bypass Vulnerability:その和訳July 9, 2001Check Point社製のFireWall-1とVPN-1に脆弱性があり、侵入者はポート259/UDPを使って ファイアウォール越しにトラフィックを通すことができてしまう。 CA-2001-16: Oracle 8i contains buffer overflow in TNS listener:その和訳July 3, 2001Oracle 8iに脆弱性があり、リモートからの侵入者が犠牲となるマシン上で動くデータベース サーバを制御できてしまう。OracleサーバがWindowsシステム上で動いている場合、 侵入者はOSそのものの制御も獲得できる場合がある。 CA-2001-15: Buffer Overflow in Sun Solaris in.lpd Print Daemon:その和訳June 29, 2001SolarisのBSD風ラインプリンタデーモンであるin.lpdにバッファオーバフローが存在し、 リモートからの侵入者はこのデーモンが動作権限で任意のコードを実行できる場合がある。 CA-2001-14: Cisco IOS HTTP Server Authentication Vulnerability:その和訳June 28, 2001Cisco IOSシステムソフトウェアのHTTPサーバコンポーネントに問題があり、 ローカル認証データベースが使用されている場合、Ciscoルータ上で特権コマンドを侵入者が 実行できてしまう。 CA-2001-13: Buffer Overflow In IIS Indexing Service DLL:その和訳June 19, 2001Windows NT、Windows 2000、Windows XPのβ版で動作するMicrosoft IIS 4.0とIIS 5.0 が使用するインデックスサービスに脆弱性が存在する。この脆弱性により、リモートの 侵入者は犠牲となるマシン上で任意のコードを実行できる。 CA-2001-12: Superfluous Decoding Vulnerability in IISMay 15, 2001Microsoft IISに深刻な脆弱性が存在し、リモートの侵入者はIISウェブサーバ上で コマンドを実行できる。この脆弱性はよく悪用されてきたIISの既存の脆弱性に酷似 している。CERT/CCはIISの管理者がこの脆弱性を修正することを強く推奨する。 CA-2001-11: sadmind/IIS WormMay 8, 2001CERT/CCは新たな自己増殖型の悪意あるコード(ここではsadmind/IISワームと 呼んでいる)の報告を受け取った。このワームは有名な2つの脆弱性を利用して システムを危険に曝しウェブページを改ざんする。 CA-2001-10: Buffer Overflow Vulnerability in Microsoft IIS 5.0May 2, 2001Windows 2000上で動作するMicrosoft IIS 5.0に脆弱性が存在し、 リモートからの侵入者は犠牲となるマシン上で任意のコードを実行でき、この結果、 マシンの管理者レベルの制御を完全に獲得できる。 CA-2001-09: Statistical Weaknesses in TCP/IP Initial Sequence NumbersMay 1, 2001時間が経つに従ってコンスタントにTCP ISN値を大きくするためにランダム インクリメントを使っている場合、さらなる脆弱性が存在することが判明した。 システムがRFC1948またはそれと同等の改善を施されていない場合、また、 IPsecのような暗号学的にセキュアなネットワークプロトコルを利用していない 場合、そのシステムは脆弱である。 CA-2001-08: Multiple Vulnerabilities in Alcatel ADSL ModemsApril 10, 2001The San Diego Supercomputer Center (SDSC)は Alcatel Speed Touch ADSLモデムに複数の脆弱性が存在することを最近発見した。 CA-2001-07: File Globbing Vulnerabilities in Various FTP ServersApril 10, 2001複数のFTPサーバについて、リモートからの侵入者がFTPサーバ上で任意のコードを実行 できるようになってしまうような誤ったバッファ管理を行なっている。 CA-2001-06: Automatic Execution of Embedded MIME TypesApril 3, 2001Microsoft Internet Explorerには、ドキュメント内のMIME部分を解析する際に 引き起こされる脆弱性が存在し、悪意あるエージェントが任意のコードを 実行できてしまうようになる。 CA-2001-05: Exploitation of snmpXdmidMarch 30, 2001The CERT/CC has received numerous reports indicating that a vulnerability in snmpXdmid is being actively exploited. Exploitation of this vulnerability allows an intruder to gain privileged (root) access to the system. CA-2001-04: Unauthentic "Microsoft corporation" CertificatesMarch 22, 2001On January 29 and 30, 2001, VeriSign, Inc. issues two certificates to an individual fraudulently claiming to be an employee of Microsoft Corporation. Any code signed by these certificates will appear to be legitimately signed by Microsoft when, in fact, it is not. Once accepted, these certificates may allow an attacker to execute malicious code on the user's system. CA-2001-03: VBS/OnTheFly (Anna Kournikova) Malicious CodeFebruary 12, 2001"VBS/OnTheFly" is a VBScript program that spreads via email. This malicious code can infect a system if the enclosed attachment is run. CA-2001-02: Multiple Vulnerabilities in BINDLast revised: February 2, 2001—added Appendix B, which answers frequently asked questionsOriginal release: January 29, 2001 Domain Name System (DNS) Servers running various versions of ISC BIND (including both 4.9.x prior to 4.9.8 and 8.2.x prior to 8.2.3; 9.x is not affected) and derivatives. Because the normal operation of most services on the Internet depends on the proper operation of DNS servers, other services could be impacted if these vulnerabilities are exploited. CA-2001-01: Interbase Server Contains Compiled-in Back Door AccountJanuary 10, 2001Interbase is an open source database package that had previously been distributed in a closed source fashion by Borland/Inprise. Both the open and closed source verisions of the Interbase server contain a compiled-in back door account with a known password. CA-2000-22: Input Validation Problems in LPRngDecember 12, 2000A popular replacement software package to the BSD lpd printing service called LPRng contains at least one software defect, known as a "format string vulnerability," which may allow remote users to execute arbitrary code on vulnerable systems. CA-2000-21: Denial-of-Service Vulnerabilities in TCP/IP StacksNovember 30, 2000A variety of denial-of-service vulnerabilities has been explored and documented by BindView's RAZOR Security Team. These vulnerabilities allow attackers to consume limited resources on victim machines. CA-2000-20: Multiple Denial-of-Service Problems in ISC BINDNovember 13, 2000The CERT Coordination Center has recently learned of two serious denial-of-service vulnerabilities in the Internet Software Consortium's (ISC) BIND software. CA-2000-19: Revocation of Sun Microsystems Browser CertificatesOctober 25, 2000To aid in the wide distribution of essential security information, the CERT Coordination Center is forwarding the following information from Sun Microsystems. Users who accept these certificates into their browser may inadvertently run malicious code signed by the compromised certificates. CA-2000-18: PGP May Encrypt Data With Unauthorized ADKsAugust 24, 2000Additional Decryption Keys (ADKs) is a feature of PGP (Pretty Good Privacy) that allows authorized extra decryption keys to be added to a user's public key certificate. However, an implementation flaw in PGP allows unsigned ADKs which have been maliciously added to a certificate to be used for encryption. CA-2000-17: Input Validation Problem In rpc.statdAugust 18, 2000Last updated August 23, 2000 The CERT/CC has begun receiving reports of an input validation vulnerability in the rpc.statd program being exploited. This program is included, and often installed by default, in several popular Linux distributions. CA-2000-16: Microsoft "IE Script"/Access/OBJECT Tag VulnerabilityAugust 11, 2000Under certain conditions, Internet Explorer can open Microsoft Access database or project files containing malicious code and execute the code without giving a user prior warning. Access files that are referenced by OBJECT tags in HTML documents can allow attackers to execute arbitrary commands using Visual Basic for Applications or macros. CA-2000-15: Netscape Allows Java Applets to Read Protected ResourcesAugust 10, 2000Netscape Communicator and Navigator ship with Java classes that allow an unsigned Java applet to access local and remote resources in violation of the security policies for applets. CA-2000-14: Microsoft Outlook and Outlook Express Cache Bypass VulnerabilityJuly 26, 2000Microsoft recently released Microsoft Security Bulletin MS00-046, in which they announced a patch for the "Cache Bypass" vulnerability. By exploiting this vulnerability, an attacker can use an HTML-formatted message to read certain types of files on the victim's machine. CA-2000-13: Two Input Validation Problems In FTPDJuly 7, 2000A vulnerability involving an input validation error in the "site exec" command has recently been identified in the Washington University ftpd (wu-ftpd) software package. A similar but distinct vulnerability has also been identified that involves a missing format string in several setproctitle() calls. It affects a broader number of ftp daemons. CA-2000-12: HHCtrl ActiveX Control Allows Local Files to be ExecutedJune 19, 2000The HHCtrl ActiveX control has a serious vulnerability that allows remote intruders to execute arbitrary code, if the intruder can cause a compiled help file (CHM) to be stored "locally." CA-2000-11: MIT Kerberos Vulnerable to Denial-of-Service Attacks:その和訳June 9, 2000Kerberos認証ソフトウェアに潜在的なバッファオーバフローの脆弱性が複数存在する。 もっとも深刻な脆弱性を悪用すると、リモートからの侵入者は、あるサイト(realm)の 鍵サーバに間違った形式のリクエストを送信できる場合、鍵配布センター(KDC)の通常 オペレーションを中断させることができてしまう。この勧告で議論される脆弱性は CA-2000-06で議論された脆弱性とは異なるものである。 CA-2000-10: Inconsistent Warning Messages in Internet Explorer:その和訳June 6, 2000Microsoft Internet Explorerに複数の欠陥が存在し、攻撃者がある種のDNS情報の 妥当性を危険にさらすことができる場合、適切なウェブサイトになりすますことが できる。この問題はCERT勧告 CA-2000-05やCA-2000-08で報告された問題とは異なる ものであるが、同様な影響がある。 CA-2000-09: Flaw in PGP 5.0 Key Generation :その和訳May 30, 2000ある種の状況下で、PGP 5.0は十分にランダムとはいえない鍵を生成する。 この結果、攻撃者は鍵を予測でき、その鍵で暗号化された情報を復号できる 場合がある。 CA-2000-08: Inconsistent Warning Messages in Netscape Navigator:その和訳May 26, 2000Netscape Navigatorに欠陥があり、ある種のDNS情報の正当性を危険にさらすこと ができるのであれば、攻撃者は適正なウェブサイトになるすますことができてしまう。 証明書に記載されている名前が今接続しているウェブサイトのDNS名に合致しない証明書を ユーザが以前に受け入れている場合、攻撃者はユーザをだまして適正なウェブサイトに 向けて発信された情報を取得できてしまう。 CA-2000-07: Microsoft Office 2000 UA ActiveX Control Incorrectly Marked "Safe for Scripting"May 24, 2000Microsoft Office 2000のUA ActiveXコントロールは誤って「スクリプティングに 対して安全」となってしまっている。この脆弱性を悪用することで、侵入者はOffice 製品のマクロ警告を無効にし、任意のコードを実行することができてしまう。 この脆弱性はウェブページ、ニュースグループへの投稿、電子メールメッセージなど でHTML文書を閲覧することによって付け入られることになる。 CA-2000-06: Multiple Buffer Overflows in Kerberos Authenticated ServicesMay 17, 2000Kerberos認証ソフトウェアにバッファオーバフローの脆弱性が複数存在する。 もっとも深刻な脆弱性を悪用することで、侵入者はKerberos認証を用いる サービスを動作させているシステム上でroot権限を奪取できてしまう。脆弱なサービス が鍵配布センター(KDC)システム上で有効になっている場合、Kerberosドメイン全体 が危険にさらされることになる。 CA-2000-05: Netscape Navigator Improperly Validates SSL SessionsMay 12, 2000A flaw has been discovered in the way some web browsers validate SSL sessions. By exploiting this vulnerability, intruders may be able to deceive people into disclosing sensitive information (e.g. credit card numbers and other sensitive data) intended for a legitimate web site. CA-2000-04: Love Letter WormMay 4, 2000Last updated May 5, 2000 The Love Letter Worm is a malicious VBScript program that spreads in a variety of ways. Users can be infected by various means, including email, Windows file sharing, IRC, USENET news, and possibly via web pages. CA-2000-03: Continuing Compromises of DNS serversApril 26, 2000There are continuing compromises of machines running the DNS software that is part of BIND (named). A significant number of delegated DNS servers in the in-addr.apra tree are running outdated versions of DNS software. CA-2000-02: Malicious HTML Tags Embedded in Client RequestsFebruary 2, 2000A web site may inadvertently include malicious HTML tags or script in a dynamically generated page based on unvalidated input from untrustworthy sources. CA-2000-01: Denial-of-Service DevelopmentsJanuary 3, 2000In addition to continued reports of denial-of-service problems, a denial-of-service tool called "stacheldraht" has been discovered. CA-1999-17: Denial-of-Service ToolsDecember 28, 1999A new denial-of-service tool known as Tribe FloodNet 2K was released; a weakness in certain versions of MacOS allows intruders to use MacOS 9 as a "traffic amplifier." CA-1999-16: Buffer Overflow in Sun Solstice AdminSuite Daemon sadmindDecember 14, 1999All versions of sadmind, part of Sun Microsystems' Solstice AdminSuite package, are vulnerable to a buffer overflow that can allow a remote user to execute arbitrary code with root privileges. CA-1999-15: Buffer Overflows in SSH daemon and RSAREF2 LibraryDecember 13, 1999Some versions of sshd are vulnerable to a buffer overflow that can allow an intruder to influence certain variables internal to the program. This vulnerability alone does not allow an intruder to execute code. However, a vulnerability in RSAREF2 can be used in conjunction to allow remote intruder to execute arbitrary code. CA-1999-14: Multiple Vulnerabilities in BINDNovember 10, 1999Six vulnerabilities have been found in BIND, the popular domain name server from the Internet Software Consortium (ISC). One of these vulnerabilities may allow remote intruders to gain privileged access to name servers.
CA-1999-13: Multiple Vulnerabilities in WU-FTPDOctober 19, 1999Last updated November 9, 1999 Three vulnerabilities have been identified in WU-FTPD and other ftp daemons based on the WU-FTPD source code. WU-FTPD is a common package used to provide File Transfer Protocol (FTP) services.
CA-1999-12: Buffer Overflow in amdSeptember 16, 1999There is a buffer overflow vulnerability in the logging facility of the amd daemon. By exploiting this vulnerability, remote intruders can execute arbitrary code as the user running the amd daemon (usually root).
CA-1999-11: Four Vulnerabilities in the Common Desktop EnvironmentSeptember 13, 1999 Multiple vulnerabilities have been identified in some distributions of the Common Desktop Environment (CDE). These vulnerabilities are different from those discussed in CA-1998-02.
CA-1999-10: Insecure Default Configuration on RaQ2 ServersJuly 30, 1999 A vulnerability has been discovered in the default configuration of Cobalt Networks RaQ2 servers that allows remote users to install arbitrary software packages to the system. This access can then be used to gain root privileges on the system.
CA-1999-09: Array Services default configurationJuly 19, 1999The default configuration of SGI Array Services disables authentication and allows remote and local users to execute arbitrary commands as root.
CA-1999-08: Buffer overflow vulnerability in rpc.cmsdJuly 16, 1999There is a buffer overflow vulnerability in the Calendar Manager Service Daemon, rpc.cmsd. This vulnerability allows remote and local users to execute arbitrary code with the privileges of cmsd, typically root. A tool to exploit this vulnerability has been publicly released.
CA-1999-07: IIS Buffer OverflowJune 16, 1999There is a buffer overflow vulnerability in Microsoft Internet Information Server (IIS) 4.0. A tool to exploit this vulnerability has been publicly released.
CA-1999-06: ExploreZip Trojan Horse ProgramJune 10, 1999This advisory reports on the "ExploreZip" Trojan horse, which is propagated by email and which destroys files.
CA-1999-05: Vulnerability in statd exposes vulnerability in automountdJune 9, 1999Last updated November 9, 1999 This advisory describes two vulnerabilities, one in statd and one in automountd, that are being used together by intruders to gain access to vulnerable systems. By combining attacks exploiting these two vulnerabilities, a remote intruder is able to execute arbitrary commands with the privileges of the automountd service. Note that the rpc.statd vulnerability described in this advisory is distinct from the vulnerabilities described in CERT Advisories CA-1996-09 and CA-1997-26.
CA-1999-04: Melissa Macro VirusMarch 27, 1999At approximately 2:00 PM GMT-5 on Friday March 26 1999 we began receiving reports of a Microsoft Word 97 and Word 2000 macro virus which is propagating via email attachments. The number and variety of reports we have received indicate that this is a widespread attack affecting a variety of sites.
CA-1999-03: FTP Buffer OverflowsFebruary 11, 1999In text from Netect, Inc., this advisory presents information about remote buffer overflows that lead to potential root compromises in various FTP servers.
CA-1999-02: Trojan HorsesFebruary 5, 1999Over the past few weeks, we have received an increase in the number of incident reports related to Trojan horses. This advisory includes descriptions of some of those incidents, some general information about Trojan horses, and advice for system and network administrators, end users, software developers, and distributors. CA-1999-01: Trojan TCP WrappersJanuary 21, 1999The CERT Coordination Center has received confirmation that some copies of the source code for the TCP Wrappers tool (tcpd) were modified by an intruder and contain a Trojan horse. An intruder can gain unauthorized root access to any host running this Trojan horse version of TCP Wrappers.
CA-1998-13: Vulnerability in Certain TCP/IP ImplementationsDecember 21, 1998A vulnerability in certain implementations of TCP/IP allows intruders to disrupt service or crash systems with vulnerable TCP/IP stacks. No special access is required, and intruders can use source-address spoofing to conceal their true location.
CA-1998-12: Remotely Exploitable Buffer Overflow Vulnerability in mountdOctober 12, 1998There is a vulnerability in some implementations of the software that NFS servers use to log requests to use file systems. Intruders who exploit the vulnerability are able to gain administrative access to the vulnerable NFS file server. That is, they can do anything the system administrator can do. This vulnerability can be exploited remotely and does not require an account on the target machine.
CA-1998-11: Vulnerability in Tooltalk RPC ServiceSeptember 3, 1998An implementation fault in the ToolTalk object database server allows a remote attacker to run arbitrary code as the superuser on hosts supporting the ToolTalk service. The affected program runs on many popular UNIX operating systems supporting CDE and some Open Windows installs. This vulnerability is being actively exploited by attackers on the Internet.
CA-1998-10: Buffer Overflow in MIME-aware Mail and News ClientsAugust 11, 1998A vulnerability in some MIME-aware mail and news clients could allow an intruder to execute arbitrary code, crash the system, or gain administrative rights on vulnerable systems. The vulnerability affects a number of mail and news clients in addition to the ones which have been the subjects of reports published by Microsoft, Netscape, AUSCERT, CIAC, NTBugTraq, and others.
CA-1998-09: Buffer Overflow in Some Implementations of IMAP ServersJuly 20, 1998The CERT Coordination Center has received reports regarding a buffer overflow in some implementations of IMAP servers. This vulnerability allows remote intruders to execute arbitrary commands under the privileges of the process running the vulnerable IMAP server. If the vulnerable IMAP server is running as root, remote intruders can gain root access. This vulnerability is different from the one discussed in CERT Advisory CA-1997-09.
CA-1998-08: Buffer Overflows in Some POP ServersJuly 14, 1998This advisory discusses reports of buffer overflows in some Post Office Protocol (POP) servers. The vulnerability allows remote users to gain privileged (root) access to systems running vulnerable versions of POP servers.
CA-1998-07: Vulnerability in Some Usages of PKCS#1June 26, 1998This advisory reports vulnerability in some implementations of products utilizing RSA Laboratories' Public-Key Cryptography Standard #1 (PKCS#1). Under some situations, a sophisticated intruder may be able to use the vulnerability in PKCS#1 to recover information from SSL-encrypted sessions.
CA-1998-06: Buffer Overflow in NIS+June 9, 1998Last updated November 9, 1999 This advisory reports a buffer overflow vulnerability that exists in some implementations of NIS+.
CA-1998-05: Multiple Vulnerabilities in BINDApril 8, 1998This advisory describes three distinct problems in BIND. Topic 1 describes a vulnerability that may allow a remote intruder to gain root access on your name server or to disrupt normal operation of your name server. Topics 2 and 3 deal with vulnerabilities that can allow an intruder to disrupt your name server.
CA-1998-04: Microsoft Windows-based Web Servers access via long file namesFebruary 6, 1998This advisory reports an exploitation involving long file names on Microsoft Windows-based web servers.
CA-1998-03: Vulnerability in ssh-agentJanuary 22, 1998This advisory details a vulnerability in the SSH cryptographic login program.
CA-1998-02: Vulnerabilities in CDEJanuary 21, 1998This advisory reports several vulnerabilities in some implementations of the Common Desktop Environment (CDE).
CA-1998-01: Smurf IP Denial-of-Service AttacksJanuary 5, 1998This advisory describes the "smurf" IP Denial-of-Service attacks. The attack described in this advisory is different from the denial-of-service attacks described in CERT advisory CA-97.28.
CA-1997-28: IP Denial-of-Service AttacksDecember 16, 1997This advisory reports on two IP denial-of-service attacks. CA-1997-27: FTP BounceDecember 10, 1997This advisory discusses the use of the PORT command in the FTP protocol.
CA-1997-26: Buffer Overrun Vulnerability in statd(1M) ProgramDecember 5, 1997This advisory reports a vulnerability that exists in the statd(1M) program, available on a variety of Unix platforms.
CA-1997-25: Sanitizing User-Supplied Data in CGI ScriptsNovember 10, 1997This advisory reports a vulnerability in some CGI scripts. This problem allows an attacker to execute arbitrary commands on a WWW server under the effective user-id of the server process.
CA-1997-24: Buffer Overrun Vulnerability in Count.cgi cgi-bin ProgramNovember 5, 1997This advisory describes a buffer overrun vulnerability which exists in the Count.cgi cgi-bin program that allows intruders to force Count.cgi to execute arbitrary commands.
CA-1997-23: Buffer Overflow Problem in rdistSeptember 16, 1997This advisory discusses a buffer overflow problem in rdist. It is a different vulnerability from the one described in CA-1996-14.
CA-1997-22: BIND - the Berkeley Internet Name DaemonAugust 13, 1997This advisory supersedes CA-1996-02 It describes a vulnerability in all versions of BIND before release 4.9.6, suggests several solutions, and provides pointers to the current version of bind.
CA-1997-21: SGI Buffer Overflow VulnerabilitiesJuly 16, 1997In this advisory, we describe 6 buffer overflow problems in SGI IRIX systems. Problems affect the df, pset, eject, login/scheme, ordist, and xlock programs. Workarounds and a pointer to a wrapper are provided.
CA-1997-20: JavaScript VulnerabilityJuly 8, 1997Last updated November 9, 1999 This advisory reports a vulnerability in JavaScript that enables remote attackers to monitor a user's Web activities.
CA-1997-19: lpr Buffer Overrun VulnerabilityJune 25, 1997This advisory describes a vulnerability in BSD-based lpr printing software. Vendor information and a pointer to a wrapper are included.
CA-1997-18: Vulnerability in the at(1) programJune 12, 1997This advisory addresses a buffer overflow condition in some versions of the at(1) program. Patch information and a workaround are provided.
CA-1997-17: Vulnerability in suidperl(sperl)May 29, 1997This advisory addresses a buffer overflow condition in suidperl (sperl) built from Perl 4.n and Perl 5.n distributions on UNIX systems. It suggests several solutions and includes vendor information and a patch for Perl version 5.003.
CA-1997-16: ftpd Signal Handling VulnerabilityMay 29, 1997This advisory describes a vulnerability in some versions of ftpd distributed and installed under various Unix platforms. Includes vendor information.
CA-1997-15: Vulnerability in SGI login LOCKOUTMay 28, 1997This advisory describes a vulnerability in the SGI login program when the LOCKOUT parameter is set to a number greater than zero. The vulnerability is present in IRIX 5.3 and 6.2, and perhaps other versions.
CA-1997-14: Vulnerability in metamailMay 21, 1997This advisory reports a vulnerability in metamail, a package that implements MIME. All versions of metamail through 2.7 are vulnerable.
CA-1997-13: Vulnerability in xlockMay 7, 1997This advisory reports a buffer overflow problem in some versions of xlock. This problem makes it possible for local users to execute arbitrary programs as a privileged user. Patch information and a workaround are included.
CA-1997-12: Vulnerability in webdist.cgiMay 6, 1997This advisory reports a vulnerability in the webdist.cgi-bin program, part of the IRIX Mindshare Out Box package, available with IRIX 5.x and 6.x. By exploiting this vulnerability, both local and remote users may be able to execute arbitrary commands with the privileges of the httpd daemon. A workaround is included.
CA-1997-11: Vulnerability in libXtMay 1, 1997This advisory reports a buffer overflow vulnerability in the Xt library of the X Windowing System. Vendor vulnerability and patch information are included.
CA-1997-10: Vulnerability in Natural Language ServiceApril 24, 1997This advisory reports a buffer overflow condition that affects some libraries using the Natural Language Service (NLS). Vendor vulnerability and patch information are included.
CA-1997-09: Vulnerability in IMAP and POPApril 7, 1997This advisory reports a vulnerability in some versions of the Internet Message Access Protocol (IMAP) and Post Office Protocol (POP) implementations (imapd, ipop2d, and ipop3d). Vendor and upgrade information are included.
CA-1997-08: Vulnerabilities in INNDOriginally issued February 20, 1997Topic 2 issued April 3, 1997 This advisory describes two vulnerabilities in INN (the InterNetNews server). One affects versions 1.5 and earlier; the other affects 1.5.1 and earlier. The advisory includes pointers to version 1.5.1 and earlier. Updated information on the second vulnerability was added as "Topic 2." Pointers to all relevant patches are included, along with information from vendors.
CA-1997-07: Vulnerability in the httpd nph-test-cgi scriptFebruary 18, 1997This advisory points out a vulnerability in the nph-test-cgi script included with some http daemons. Readers are urged to disable the script. Vendor information is included.
CA-1997-06: Vulnerability in rlogin/termFebruary 6, 1997This advisory reports a vulnerability in many implementations of the rlogin program, including eklogin and klogin. Vendor information and a workaround are included.
CA-1997-05: MIME Conversion Buffer Overflow in Sendmail Versions 8.8.3 and 8.8.4January 28, 1997This advisory addresses a MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4. The advisory includes vendor information, pointers to the latest version of sendmail, a workaround, and general precautions to take when using sendmail.
CA-1997-04: talkd VulnerabilityJanuary 27, 1997A vulnerability in talkd(8) program used by talk(1) makes it possible to provide corrupt DNS information to a host and to remotely execute arbitrary commands with root privileges. The advisory includes information on how to solve the general problem as well as the specific one.
CA-1997-03: Vulnerability in IRIX csetupJanuary 8, 1997A vulnerability in the csetup program under IRIX versions 5.x, 6.0, 6.0.1, 6.1, and 6.2 allows local users to create or overwrite arbitrary files on the system and ultimately gain root privileges. A workaround is provided.
CA-1997-02: HP-UX newgrp Buffer Overrun VulnerabilityJanuary 7, 1997This advisory describes a vulnerability in the newgrp(1) program under HP-UX 9.x and 10.x that may allow users to gain root privileges. A workaround is provided.
CA-1997-01: Multi-platform Unix FLEXIm VulnerabilitiesJanuary 6, 1997This advisory describes multi-platform UNIX FLEXlm vulnerabilities. These problems may allow local users to create arbitrary files on the system and execute arbitrary programs using the privileges of the user running the FLEXlm daemons.
CA-1996-27: Vulnerability in HP Software Installation ProgramsDecember 19, 1996This advisory describes a vulnerability in Hewlett-Packard SD-UX that may allow local users to gain root privileges. A workaround is included. CA-1996-26: Denial-of-Service Attack via pingDecember 18, 1996This advisory describes a denial-of-service attack using large ICMP datagrams issued via the ping command. Vendor information is included. CA-1996-25: Sendmail Group Permissions VulnerabilityDecember 10, 1996The advisory describes a security problem affecting sendmail version 8 relating to group-writable files. Vendor patches and a workaround are included. CA-1996-24: Sendmail Daemon Mode VulnerabilityNovember 21, 1996It describes a security problem relating to the daemon mode in sendmail 8.7 through 8.8.2. The advisory also includes a note about two vulnerabilities in versions 8.8.0 and 8.8.1; these have been fixed as well. CA-1996-23: Vulnerability in WorkmanOctober 28, 1996This advisory describes a vulnerability in the WorkMan compact disc-playing program that affects UNIX System V Release 4.0 and derivatives and Linux systems. CA-1996-22: Vulnerabilities in bashOctober 08, 1996This advisory addresses two problems with the GNU Project's Bourne Again SHell (bash): one in yy_string_get() and one in yy_readline_get(). CA-1996-21: TCP SYN Flooding and IP Spoofing AttacksSeptember 19, 1996** This advisory supersedes the IP spoofing portion of CA-1995-01. ** It describes denial-of-service attacks through TCP SYN flooding and IP spoofing. Advice about filtering is included. CA-1996-20: Sendmail VulnerabilitiesSeptember 18, 1996This advisory describes a vulnerability in all versions of sendmail prior to 8.7.6, and includes a workaround and patch information. CA-1996-19: Vulnerability in expreserveAugust 15, 1996** This advisory supersedes CA-1993-09 and CA-1993-09a. ** It provides information about a vulnerability in the expreserve utility. A workaround and vendor information are included. CA-1996-18: Vulnerability in fm_flsAugust 14, 1996This advisory reports a configuration problem in the floating license server for Adobe FrameMaker (fm_fls). A workaround is provided. CA-1996-17: Vulnerability in Solaris voldAugust 06, 1996This advisory describes a vulnerability in the Solaris volume management daemon (vold) and gives a workaround. CA-1996-16: Vulnerability in Solaris admintoolAugust 05, 1996This advisory describes a vulnerability in the Solaris admintool and gives a workaround. CA-1996-15: Vulnerability in Solaris 2.5 KCMS programsJuly 31, 1996This advisory describes a vulnerability in the Solaris 2.5 kcms programs and suggests a workaround. CA-1996-14: Vulnerability in rdistJuly 24, 1996** This advisory supersedes CA-1991-20 and CA-1994-04. ** It describes a vulnerability in the lookup subroutine of rdist, for which an exploitation script is available. Vendor information and a pointer to a new version of rdist are included. CA-1996-13: Vulnerability in the dip programJuly 09, 1996This advisory describes a vulnerability in the dip program, which is shipped with most Linux systems. Other UNIX systems may also use it. Pointers to dip 3.3.7 are included. CA-1996-12: Vulnerability in suidperlJune 26, 1996This advisory describes a vulnerability in systems that contain the suidperl program and that support saved set-user-ID and saved set-group-ID. Patch information is included. CA-1996-11: Interpreters in CGI bin DirectoriesMay 29, 1996This advisory warns users not to put interpreters in a Web server's CGI bin directory and to evaluate all programs in that directory. CA-1996-10: NIS+ Configuration VulnerabilityMay 28, 1996This advisory was originally released as AUSCERT advisory AA-96.02a. It describes a vulnerability and workarounds for versions of NIS+ in which the access rights on the NIS+ passwd table are left in an unsecure state. CA-1996-09: Vulnerability in rpc.statdApril 24, 1996This advisory describes a vulnerability in the rpc.statd (or statd) program that allows authorized users to remove or create any file that a root user can. Vendor information is included. CA-1996-08: Vulnerabilities in PCNFSDApril 18, 1996This advisory describes a vulnerability in the pcnfsd program (also known as rpc.pcnfsd). A patch is included. CA-1996-07: Weaknesses in Java Bytecode VerifierMarch 29, 1996This advisory describes a vulnerability in the Java bytecode verifier portion of Sun Microsystems' Java Development Kit (JDK) 1.0 and 1.0.1. Workarounds are provided for this product and Netscape Navigator 2.0 and 2.01, which have the JDK built in. CA-1996-06: Vulnerability in NCSA/Apache CGI example codeMarch 20, 1996This advisory describes a problem with example CGI code, as found in the NCSA 1.5a-export and APACHE 1.0.3 httpd, and possibly previous distributions of both servers. Workarounds are provided. CA-1996-05: Java Implementations Can Allow Connections to an Arbitrary HostMarch 05, 1996This advisory describes a vulnerability in the Netscape Navigator 2.0 Java implementation and in Release 1.0 of the Java Developer's Kit from Sun Microsystems, Inc. Workarounds and pointers to a patch are included. CA-1996-04: Corrupt Information from Network ServersFebruary 22, 1996This advisory describes a vulnerability in network servers that can lead to corrupt information. The advisory includes information on subroutines for validating host names and IP addresses, patches for sendmail, and the status of vendor activity relating to the problem. CA-1996-03: Vulnerability in Kerberos 4 Key ServerFebruary 21, 1996This advisory describes a problem with the Kerberos 4 key server, points to patches, and provides vendor information. CA-1996-02: BINDFebruary 15, 1996** Superseded by CA-1997-22 **
CA-1996-01: UDP Port Denial-of-Service AttackFebruary 08, 1996This advisory describes UDP port denial-of-service attacks, for which an exploitation script has been publicly posted. The advisory includes a workaround.
CA-1995-18: Widespread Attacks on Internet SitesDecember 12, 1995This advisory warns readers of attacks on hundreds of Internet sites in which intruders exploit known vulnerabilities, all of which have been addressed in previous CERT advisories. These advisories are listed.
CA-1995-17: rpc.ypupdated VulnerabilityDecember 12, 1995 This advisory describes a vulnerability in the rpc.ypupdated program, for which an exploitation program has been posted to several newsgroups. The advisory includes vendor information and a workaround.
CA-1995-16: wu-ftpd Misconfiguration VulnerabilityNovember 30, 1995 This advisory describes a vulnerability in the wu-fptd SITE EXEC command and provides solutions for both Linux users and others.
CA-1995-15: SGI lp VulnerabilityNovember 8, 1995 This advisory points out accounts that are distributed without passwords and urges SGI customers to create passwords for those accounts.
CA-1995-14: Telnetd Environment VulnerabilityNovember 1, 1995 This advisory describes a vulnerability with some telnet daemons and includes patch information from vendors, along with a workaround.
CA-1995-13: Syslog Vulnerability - A Workaround for SendmailOctober 19, 1995 This advisory describes a general problem with syslog, lists vendor information about patches, and provides a workaround for solving the syslog problem in sendmail in particular.
CA-1995-12: Sun 4.1.X Loadmodule VulnerabilityOctober 18, 1995 The advisory describes a problem with the loadmodule(8) program in Sun OS 4.1.X and provides patch information.
CA-1995-11: Sun Sendmail VulnerabilitySeptember 19, 1995 ** Superseded by CA-1996-20, CA-1996-24, and CA-1996-25. **
CA-1995-10: Ghostscript VulnerabilityAugust 31, 1995 This advisory describes a vulnerability involving the -dSAFER option in ghostscript versions 2.6 through 3.22 beta. The advisory includes instructions for fixing the problem and pointers to version 3.33 of ghostscript.
CA-1995-09: Solaris ps VulnerabilityAugust 29, 1995 This advisory describes a vulnerability in Solaris that can be exploited if the permissions on the /tmp and /var/tmp directories are set incorrectly.
CA-1995-08: Sendmail v.5 VulnerabilityAugust 17, 1995 This advisory describes a vulnerability in sendmail v.5, which is still in use and which includes IDA sendmail. Many vendors have previously fixed the problem, others recently developed patches.
CA-1995-07a: SATAN Vulnerability: Password DisclosureApril 21, 1995 ** This advisory replaces CA-1995-07.** It is a revision that provides new information the problem described in CA-1995-07, and includes precautions to take when running SATAN. A tutorial by the SATAN authors, "SATAN Password Disclosure" is appended to the advisory.
CA-1995-07: Vulnerability in SATANApril 10, 1995 ** Superseded by CA-1995-07a. **
CA-1995-06: Security Administrator Tool for Analyzing Networks (SATAN)April 3, 1995 An overview of the Security Administrator Tool for Analyzing Networks (SATAN) based on the CERT staff's review of beta version 0.51. Includes list of vulnerabilities probed and advice on securing systems.
CA-1995-05: Sendmail VulnerabilitiesFebruary 22, 1995 ** Superseded by CA-1996-20, CA-1996-24, and CA-1996-25. **
CA-1995-04: NCSA HTTP Daemon for UNIX VulnerabilityFebruary 17, 1995 This advisory provides a patch for a vulnerability in the NCSA HTTP daemon version 1.3 for UNIX.
CA-1995-03a: Telnet Encryption VulnerabilityMarch 3, 1995 ** This advisory supersedes CA-1995-03. ** Description and patch information for a security problem in the Berkeley Telnet clients that support encryption and Kerberos V4 authentication. It provides additional information.
CA-1995-03: Telnet Encryption VulnerabilityFebruary 16, 1995 ** Superseded by CA-1995-03a. **
CA-1995-02: Vulnerabilities in /bin/mailJanuary 26, 1995 ** This advisory supersedes CA-1991-01a and CA-1991-13. ** It addresses vulnerabilities in some versions of /bin/mail based on BSD 4.3 UNIX. It includes a list of vendor patches and source code for mail.local.c, an alternative to /bin/mail.
CA-1995-01: IP Spoofing Attacks and Hijacked Terminal ConnectionsJanuary 23, 1995 The IP spoofing portion of this advisory has been superseded by CA-1996-21. The description of the intruder activity of hijacking terminals is still current.
CA-1994-15: NFS VulnerabilitiesDecember 19, 1994 This advisory describes security measures to guard against several vulnerabilities in the Network File System (NFS). The advisory was prompted by an increase in root compromises by intruders using tools to exploit the vulnerabilities.
CA-1994-14: Trojan Horse in IRC Client for UNIXOctober 19, 1994 This advisory discusses a Trojan horse that was found in version 2.2.9 or ircII, the source code for the Internet Relay Chat (IRC) client for UNIX systems. For reasons described in the advisory, the CERT staff urges everyone to install ircII version 2.6.
CA-1994-13: SGI IRIX Help VulnerabilityAugust 11, 1994 This advisory addresses a vulnerability in the Silicon Graphics, Inc. IRIX 5.x Help system. SGI recommends installing the patch, but has provided a workaround to disable the Help system if this is not possible.
CA-1994-12: Sendmail VulnerabilitiesJuly 14, 1994 ** Superseded by CA-1996-20, CA-1996-24, and CA-1996-25. **
CA-1994-11: Majordomo VulnerabilitiesJune 9, 1994 This advisory addresses two vulnerabilities in Majordomo versions prior to 1.92. CERT staff recommends installing version 1.92, but provides workarounds if this is not possible.
CA-1994-10: IBM AIX bsh VulnerabilityJune 3, 1994 This advisory addresses a vulnerability in the batch queue (bsh) of IBM AIX systems running versions prior to and including AIX 3.2. CERT staff recommends a workaround to disable the bsh feature. IBM provides a patch for systems requiring this functionality.
CA-1994-09: /bin/login VulnerabilityMay 23, 1994 This advisory addresses a vulnerability in /bin/login of all IBM AIX 3 systems, and Linux systems. A workaround and patch information are included in this advisory.
CA-1994-08: ftpd VulnerabilitiesApril 14, 1994 This advisory addresses two vulnerabilities with some releases of fptd and announces new versions and patches to correct these problems. ftpd versions affected are wuarchive ftpd 2.0-2.3, DECWRL ftpd versions prior to 5.93, and BSDI ftpd version 1.1 prior to patch level 5. The vulnerabilities addressed are the SITE EXEC and race condition vulnerabilities.
CA-1994-07: wuarchive ftpd Trojan HorseApril 06, 1994 Warning about intruder-modified source for wuarchive ftpd, which introduced a Trojan horse in versions 2.2, 2.1f, and possibly earlier versions. Recommended solution is to upgrade to version 2.3.
CA-1994-06: Writable /etc/utmp VulnerabilityMarch 21, 1994 This advisory addresses a vulnerability with /etc/utmp ins SunOS 4.1.X and Solaris 1.1.1 operating systems. Solbourne Computer, Inc. and other Sparc products using SunOS 4.1.X or Solaris 1.1.1 are also affected. Solaris 2.x is not affected by this problem.
CA-1994-05: MD5 ChecksumsMarch 18, 1994 This advisory gives the MD5 checksums for a number of SunOS files, along with a tool for checking them.
CA-1994-04: SunOS rdist VulnerabilityMarch 17, 1994 ** Superseded by CA-1996-14. **
CA-1994-03: IBM AIX Performance Tools VulnerabilitiesFebruary 24, 1994 Vulnerabilities are present in the bosext1.extcmds.obj performance tools in AIX 3.2.5 and in those AIX 3.2.4 systems with Program Temporary Fixes (PTFs) U420020 or U422510 installed. These problems do not exist in earlier versions of AIX.
CA-1994-02: Revised Patch for SunOS /usr/etc/rpc.mountd VulnerabilityFebruary 14, 1994 ** This advisory supersedes CA-1991-09 and CA-1992-12.** A vulnerability is present in SunOS 4.1, 4.1.1, 4.1.2, and 4.1.3 /usr/etc/rpc.mountd. Unauthorized remote hosts will be able to mount the file system. The advisory describes how to obtain a patch for the problem from Sun.
CA-1994-01: Ongoing Network Monitoring AttacksFebruary 03, 1994 This advisory describes ongoing network monitoring attacks. All systems that offer remote access through rlogin, telnet, and ftp are at risk. The advisory includes a description of the activity and suggested approaches for addressing the problem.
CA-1993-19: Solaris System Startup VulnerabilityDecember 16, 1993 Information about a vulnerability in the system startup scripts on Solaris 2.x and Solaris x86 systems.
CA-1993-18: SunOS/Solbourne loadmodule and modload VulnerabilityDecember 15, 1993 ** This advisory supersedes CA-1991-22. ** The advisory addresses a vulnerability in /usr/etc/modload and $OPENWINHOME/bin/loadmodule in in Sun Microsystems, Inc. SunOS 4.1.1, 4.1.2, 4.1.3, and 4.1.3c and OpenWindows 3.0 on all sun4 and Solbourne Computer, Inc. architectures.
CA-1993-17: xterm Logging VulnerabilityNovember 11, 1993 This advisory addresses a vulnerability in the logging function of many versions of xterm. It provides information about several solutions.
CA-1993-16a: Sendmail Vulnerability SupplementJanuary 07, 1994 ** Superseded by CA-1996-20, CA-1996-24, and CA-1996-25. **
CA-1993-16: Sendmail VulnerabilityNovember 04, 1993 ** Superseded by CA-1996-20, CA-1996-24, and CA-1996-25. **
CA-1993-15: /usr/lib/sendmail, /bin/tar, and /dev/audio VulnerabilitiesOctober 21, 1993 This advisory describes several vulnerabilities in Sun operating systems: /usr/lib/sendmail (SunOS 4.1.x, Solaris 2.x), /bin/tar (Solaris 2.x), and dev/audio (SunOS 4.1.x, Solaris 2.x). The advisory includes patch and workaround information for these problems. * The sendmail portion of this advisory is superseded by CA-1996-20, CA-1996-24, and CA-1996-25. **
CA-1993-14: Internet Security Scanner (ISS)September 30, 1993 This advisory alerts Internet sites to a new software tool that is widely available. The advisory describes vulnerabilities probed by the Internet Security Scanner (ISS) software.
CA-1993-13: SCO Home Directory VulnerabilitySeptember 17, 1993 A vulnerability relating to the "dos" and "asg" accounts exists in numerous SCO Operating Systems releases. This advisory provides instructions for repairing the vulnerability.
CA-1993-12: Novell LOGIN.EXE VulnerabilitySeptember 16, 1993 A vulnerability exists in Novell's NetWare 4.x login program (LOGIN.EXE). This advisory provides details on the availability of a security-enhance version of the Novell Netware 4.x login program.
CA-1993-11: UMN UNIX gopher and gopher+ VulnerabilitiesAugust 09, 1993 Vulnerabilities exist in versions of the UMN UNIX gopher and gopher+ server and client available before August 6, 1993. These vulnerabilities are present in UMN UNIX gopher and gopher+ versions which were available from boombox.micro.umn.edu and many other anonymous FTP sites. This advisory provides details on the severity of the vulnerabilities and the availability of new versions of UMN UNIX gopher and gopher+.
CA-1993-10: Anonymous FTP ActivityJuly 14, 1993 This advisory provides an updated version of the anonymous FTP configuration guidelines that is available from the CERT Coordination Center.
CA-1993-09a: SunOS Expreserve VulnerabilityJuly 01, 1993 ** Superseded by CA-1996-19. **
CA-1993-09: SunOS Expreserve VulnerabilityJune 11, 1993 ** Superseded by CA-1996-19. **
CA-1993-08: SCO /bin/passwd VulnerabilityMay 24, 1993 A vulnerability exists in several releases of SCO's Operating Systems. This vulnerability has the potential to deny legitimate users the ability to log onto the system. This advisory details information about releases available to correct this problem.
CA-1993-07: Cisco Router Packet Handling VulnerabilityApril 22, 1993 A vulnerability exists in Cisco routers such that a router which is configured to suppress source routed packets with the following command: "no ip source-route" may allow traffic which should be suppressed. This vulnerability applies to all models of Cisco routers, and occurs with the following releases of software: 8.2, 8.3, 9.0, 9.1, and 9.17. This advisory details information about releases available to correct this problem.
CA-1993-06: wuarchive ftpd VulnerabilityApril 09, 1993 A vulnerability is present in versions of wuarchive ftpd available before April 8, 1993. This vulnerability is present in wuarchive ftpd versions which were available from wuarchive.wustl.edu and many other anonymous FTP sites. This advisory provides details on the severity of the vulnerability and (1) the availability of a new version of wuarchive ftpd and (2) availability of a patch for the problem.
CA-1993-05: OpenVMS and OpenVMS AXP VulnerabilityFebruary 24, 1993 A vulnerability is present with Digital Equipment Corporation's OpenVMS and OpenVMS AXP. This vulnerability is present in OpenVMS V5.0 through V5.5-2 and OpenVMS AXP V1.0 but has been corrected in OpenVMS V6.0 and OpenVMS AXP V1.5. This advisory provides details from Digital on the severity of the vulnerability and patch availability for the problem.
CA-1993-04: Commodore Amiga UNIX finger VulnerabilityFebruary 18, 1993 A vulnerability is present in the "finger" program of Commodore Business Machine's Amiga UNIX product and affects Commodore Amiga UNIX versions 1.1, 2.03, 2.1, 2.1p1, 2.1p2, and 2.1p2a. This advisory details the availability of a patch for the problem and provides a suggested workaround.
CA-1993-03: SunOS File/Directory PermissionsFebruary 03, 1993 This advisory describes a patch that is available to correct the ownerships and permissions for a number of system files in SunOS 4.1, 4.1.1, 4.1.2, and 4.1.3. These have been fixed in SunOS 5.0. CERT staff has seen an increasing number of attackers exploit these problems on systems and we encourage sites to consider installing this patch.
CA-1993-02: New Patch for NeXT NetInfo_writers VulnerabilitiesJanuary 21, 1993 This advisory provides information concerning vulnerabilities in the distributed printing facility ("_writers" properties) of NeXT computers running all releases of NeXTSTEP software through NeXTSTEP Release 3.0. The advisory details the availability of a patch for the problems and provides suggested workarounds.
CA-1993-01: Revised Hewlett-Packard NIS ypbind VulnerabilityJanuary 13, 1993 ** This advisory supersedes CA-1992-17. ** A vulnerability is present in Hewlett-Packard's HP/UX Operating System for series 300, 700, and 800 computers, which allows remote NIS servers unauthorized access to local NIS hosts. Patches from HP are available for all of the HP/UX level 8 releases (8.0, 8.02, 8.06, and 8.07). The problem is fixed in HP/UX 9.0.
CA-1992-21: Convex CSM: migmgr patchDecember 16, 1992 This advisory provides information concerning several vulnerabilities in ConvexOS/Secure, CONVEX CXbatch, CONVEX Storage Manager (CSM), and ConvexOS EMACS. These vulnerabilities can affect ConvexOS versions V6.2 - V10.2 and ConvexOS/Secure versions V9.5 and V10.0 on all supported architectures. The advisory describes a workaround for one of the vulnerabilities and provides information on how to obtain a patches for the other problems from CONVEX Computer Corporation.
CA-1992-20: Cisco Access List VulnerabilityDecember 10, 1992 This advisory provides information concerning a vulnerability in Cisco router access lists when the "established" keyword is used. This vulnerability is present in Cisco software releases 8.2, 8.3, 9.0 and 9.1. The advisory describes workarounds and provides information on how to obtain a patch for the problem from Cisco.
CA-1992-19: Keystroke Logging BannerDecember 07, 1992 This advisory provides information from the United States Department of Justice, General Litigation and Legal Advice Section, Criminal Division, regarding keystroke monitoring by computer systems administrators, as a method of protecting computer systems from unauthorized access. The CERT staff strongly suggests adding a notice banner such as the one included in the advisory to all systems. Sites not covered by U.S. law should consult their legal counsel.
CA-1992-18: Revised VMS Monitor VulnerabilityNovember 17, 1992 ** This advisory supersedes CA-1992-16. ** It provides additional information concerning availability of remedial image kits to correct a vulnerability present in the Monitor utility in VMS V5.0 through V5.4-2. The vulnerability has been corrected in V5.4-3 through V5.5-1.
CA-1992-17: HP NIS ypbind VulnerabilityOctober 05, 1992 ** Superseded by CA-1993-01. **
CA-1992-16: VMS Monitor VulnerabilitySeptember 22, 1992 ** Superseded by CA-1992-18. **
CA-1992-15: Multiple SunOS Vulnerabilities PatchedJuly 21, 1992 ** This advisory supersedes CA-1991-16. ** The advisory describes how to obtain various patches for SunOS 4.1, 4.1.1, and 4.1.2 for all Sun architectures. As the application of these patches involves rebuilding your system kernel, it is recommended that you apply all patches simultaneously.
CA-1992-14: Altered System Binaries IncidentJune 22, 1992 Warning about a significant intrusion incident on the Internet. Urges all system administrators to check their systems for the signs of intrusion detailed in the advisory.
CA-1992-13: SunOS NIS VulnerabilityJune 04, 1992 Vulnerabilities are present in NIS under SunOS 4.1, 4.1.1, and 4.1.2, and may or may not exist in earlier versions of NIS. The advisory describes how to obtain a patch for SunOS 4.1, 4.1.1, and 4.1.2 for the problem from Sun.
CA-1992-12: Revised SunOS rpc mountd VulnerabilityMay 28, 1992 ** Superseded by CA-1994-02. **
CA-1992-11: SunOS Environment Variables and setuid/setgid VulnerabilityMay 27, 1992 A vulnerability involving environment variables and setuid/setgid programs exists on all Sun architectures running SunOS 4.0 and higher. The advisory details how to obtain patches for SunOS programs which are known to be impacted by the vulnerability. The advisory contains a workaround to protect vulnerable binaries for which patches are unavailable for your SunOS version, or for local or third party software which may be vulnerable.
CA-1992-10: AIX crontab VulnerabilityMay 26, 1992 A vulnerability is present in crontab(1) in version 3.2 of AIX. This advisory describes how to implement a workaround for the problem until you obtain the patch for the problem from IBM.
CA-1992-09: AIX Anonymous FTP VulnerabilityApril 27, 1992 A vulnerability is present in the anonymous FTP configuration in all versions of AIX. The advisory describes how to obtain a patch for the problem from IBM.
CA-1992-08: Silicon Graphics Computer Systems IRIX lp VulnerabilityApril 10, 1992 A vulnerability is present in the default configuration of the lp software in Silicon Graphics Computer Systems (SGI) IRIX operating systems. This vulnerability is present in all versions of IRIX, prior to IRIX 4.0.5. The advisory describes how to reconfigure the lp software in order to eliminate this vulnerability.
CA-1992-07: AIX /bin/passwd VulnerabilityMarch 31, 1992 A vulnerability is present in the passwd command in AIX 3.2 and the 2007 update of AIX 3.1. The advisory describes how to disable the /bin/passwd until you obtain and install the patch for the problem from IBM.
CA-1992-06: AIX uucp VulnerabilityMarch 19, 1992 A vulnerability is present in the UUCP software in versions of AIX up to 2007. The advisory describes how to disable UUCP and details how to obtain a patch for the problem from IBM.
CA-1992-05: AIX REXD Daemon VulnerabilityMarch 05, 1992 The rexd daemon may be enabled by default in versions 3.1 and 3.2 of AIX for IBM RS/6000 machines. The advisory describes a fix for the problem and details how to obtain a patch for the problem from IBM.
CA-1992-04: AT&T /usr/etc/rexecd VulnerabilityFebruary 25, 1992 A vulnerability is present in AT&T TCP/IP Release 4.0 running on SVR4 systems for both the 386/486 and 3B2 RISC platforms. The problem is in the remote execution server /usr/etc/rexecd and a new version of rexecd is available from AT&T.
CA-1992-03: Internet Intruder ActivityFebruary 17, 1992 Warning about a significant intrusion incident on the Internet. Urges all system administrators to check their systems for the signs of intrusion detailed in the advisory.
CA-1992-02: Michelangelo PC Virus WarningFebruary 06, 1992 This advisory warns users of a PC virus called Michelangelo. The virus affects IBM PCs and compatibles, and has a trigger date of March 6 (any year).
CA-1992-01: NeXTstep Configuration VulnerabilityJanuary 20, 1992 A vulnerability is present in the default configuration in release 2 of NeXTstep's NetInfo. The advisory indicates where a description of how to configure NetInfo correctly can be obtained.
CA-1991-23: Hewlett Packard/Apollo Domain/OS crp VulnerabilityDecember 18, 1991 A vulnerability is present in the crp system in Hewlett Packard/Apollo Domain/OS in all SR10 versions. A workaround is available and patches for SR10.3 and SR10.4 will be available from Apollo at a future date.
CA-1991-22: SunOS OpenWindows VulnerabilityDecember 16, 1991 ** Superseded by CA-1993-18. **
CA-1991-21: NFS Jumbo Patch, SunOS 4.1December 06, 1991 Vulnerabilities concerning Sun Microsystems, Inc. (Sun) Network File System (NFS) and the fsirand program. These vulnerabilities affect SunOS versions 4.1.1, 4.1, and 4.0.3 on all architectures. Patches are available for SunOS 4.1.1. An initial patch for SunOS 4.1 NFS is also available. Sun will be providing complete patches for SunOS 4.1 and SunOS 4.0.3 at a later date.
CA-1991-20: rdist VulnerabilityOctober 22, 1991 ** Superseded by CA-1996-14. **
CA-1991-19: AIX TFTP Daemon VulnerabilityOctober 17, 1991 Vulnerability in the TFTP daemon in all versions of AIX for IBM RS/6000 machines. Patch available from IBM for all AIX releases from "GOLD" to the current release.
CA-1991-18: Active Internet tftp AttacksSeptember 27, 1991 Warning about automated tftp probes for /etc/passwd to Internet sites throughout the world. Urges all sites to carefully check their system configurations concerning tftp usage. Indicates how sites can secure their tftp configurations.
CA-1991-17: DECnet-Internet Gateway VulnerabilitySeptember 26, 1991 Vulnerability in Ultrix DECnet to Internet gateway software. This advisory details a workaround. The vulnerability affects Ultrix versions 4.0, 4.1, and 4.2.
CA-1991-16: SunOS SPARC Integer_Division VulnerabilitySeptember 18, 1991 ** The patch cited in this advisory has been made obsolete by patches described in CA-1992-15. **
CA-1991-15: Mac/PC NCSA Telnet VulnerabilitySeptember 10, 1991 Vulnerability in PC and Mac telnet program by NCSA. This advisory details a workaround.
CA-1991-14: SGI IRIX /usr/sbin/fmt VulnerabilityAugust 26, 1991 Vulnerability regarding the handling of mail messages on all Silicon Graphics IRIX Systems prior to version 4.0. The problem is fixed in version 4.0. Solution involves changing permissions and ownership of a system command.
CA-1991-13: Ultrix Mail VulnerabilityAugust 23, 1991 ** Superseded by CA-1995-02. **
CA-1991-12: Trusted Hosts Configuration VulnerabilityAugust 22, 1991 Vulnerability in MANY Unix systems regarding the use of a minus sign ("-") as the first character in any hosts.equiv hosts.lpd, and/or .rhosts files. Workaround is to re-arrange the lines in these files such that the "-" is not the first character in the file.
CA-1991-11: Ultrix LAT/Telnet Gateway VulnerabilityAugust 14, 1991 Vulnerability in Ultrix LAT/Telnet gateway software on all Ultrix 4.1 and 4.2 systems. Patch available directly from DEC.
CA-1991-10: REVISION NOTICE: New Patch for SunOS /usr/lib/lpdSeptember 12, 1991 Vulnerability in SunOS 4.0.3, 4.1, and 4.1.1 /usr/lib/lpd. Patched versions are available. Version 10a of this advisory supersedes all prior versions.
CA-1991-09: SunOS rpc mountd VulnerabilityJuly 15, 1991 ** Superseded by CA-1994-02. **
CA-1991-08: AT&T System V Release 4 /bin/login VulnerabilityMay 23, 1991 Addresses a vulnerability in all System V Release 4 versions of /bin/login. Patch provided by AT&T.
CA-1991-07: SunOS Source Tape Installation VulnerabilityMay 20, 1991 Fixes a security vulnerability on SunOS (4.0.3, 4.1, and 4.1.1) systems which have installed the Sun Source tapes.
CA-1991-06: NeXT rexd, /private/etc, Username me VulnerabilitiesMay 14, 1991 Addresses three vulnerabilities in NeXT systems running various versions of NeXTstep. Affected are. rexd(8C), /private/etc, username "me".
CA-1991-05: DEC Ultrix VulnerabilityMay 01, 1991 Corrects improper installation of /usr/bin/chroot for Ultrix versions 4.0 and 4.1.
CA-1991-04: Social EngineeringApril 18, 1991 This advisory is an addition to CA-1991-03. It addresses more bogus Internet email scams and urges system administrators to warn their users.
CA-1991-03: Unauthorized Password Change Requests Via Mail MessagesApril 04, 1991 This advisory addresses recent bogus email messages which have been distributed on the Internet. The messages request that the user change his/her password, and appear to come from the system admin.
CA-1991-02: SunOS in.telnetd VulnerabilityMarch 26, 1991 This advisory announces a security problem with the in.telnetd program in releases of SunOS 4.1 and 4.1.1.
CA-1991-01: SunOS Mail VulnerabilityFebruary 22, 1991 ** Superseded by CA-1995-02. **
CA-1990-12: SunOS TIOCCONS VulnerabilityDecember 21, 1990 This Advisory was a rebroadcast of a Sun Microsystems, Inc. Security Bulletin announcing the availability of a patch that corrects a problem with TIOCCONS. Problem Description: TIOCCONS can be used to re-direct console output/input away from "console"
CA-1990-11: Security Probes from ItalyDecember 10, 1990 Many sites on the Internet received messages on Sunday, December 9. The messages stated that a group of researchers and students were testing for a "common bug" in network hosts.
CA-1990-10: Rumor of Alleged AttackNovember 16, 1990 Message about alleged attacks on telephone systems. No evidence that rumors were substantiated.
CA-1990-09: VAX/VMS Break-insNovember 09, 1990 Warning about techniques intruders were using to get access to VMS systems. No new vulnerabilities described; intruders were using weak password attacks.
CA-1990-08: IRIX 3.3 and 3.31 /usr/sbin/MailOctober 31, 1990 Vulnerability in Silicon Graphics IRIX 3.3 and 3.3.1 systems. /usr/sbin/Mail has a security flaw.
CA-1990-07: VMS ANALYZE/PROCESS_DUMPOctober 25, 1990 Vulnerability in DEC VMS versions 4.0 through 5.4. Problem with ANALYZE/PROCESS_DUMP routine.
CA-1990-06: NeXT's System SoftwareOctober 03, 1990 NeXTシステムソフトウェアに複数の脆弱性が存在した。この勧告は90-06 として発行されたが、90-06aでいくつかの修正を行なっている。
CA-1990-05: SunView selection_svc VulnerabilityAugust 14, 1990 SunOS 3.*と4.0.3、4.1のSunView selection_svc機能に脆弱性があった。
CA-1990-04: Apollo Domain/OS suid_exec ProblemJuly 27, 1990 Hewlett PackardのApollo Domain/OSのバージョンsr10.2並びにsr10.3 のβ版のいくつかについて脆弱性がある。/etc/suid_execにセキュリティ 上の欠陥があった。
CA-1990-03: Unisys U5000 /etc/passwd ProblemMay 07, 1990 Unisys U5000システムについての警告。システムが納入された状態で 提供されるログイン名の一部にパスワードを持たないものがあり、 侵入者はこの脆弱性につけこむことがあった。
CA-1990-02: Internet Intruder WarningMarch 19, 1990 インターネットシステムへの一連の攻撃に関する警告。Unixシステムと VMSシステムについて14項目のチェックポイントが挙げられている。 こららポイントはあり得る侵入の徴候をカバーしているだけでなく、 可能なシステム設定上の脆弱性もカバーしている。
CA-1990-01: Sun Sendmail VulnerabilityJanuary 29, 1990 SunOS 3.*並びに4.0.*のsendmailに存在する脆弱性 ** Superseded by CA-1996-20, CA-1996-24, and CA-1996-25. **
CA-1989-07: Sun RCP VulnerabilityOctober 26, 1989 SunOS 4.0.xのrcpコマンドに存在する脆弱性
CA-1989-06: DEC/Ultrix 3.0 SystemsOctober 18, 1989Ultrixのいくつかのシステムプログラムに対するチェックサムを付した 10/17のUltrix勧告の再投稿
CA-1989-05: DEC/Ultrix 3.0 SystemsDEC/Ultrix 3.0マシンに対する攻撃についての警告。ユーザはトロイの 木馬、セキュアでないtftp、暗号化されていないパスワードがないか チェックするよう推奨されている。
CA-1989-04: WANK Worm On SPAN NetworkOctober 17, 1989 DECnetのホストを攻撃した"WANK"ワームについての警告
CA-1989-03: Telnet Break-in WarningAugust 16, 1989 侵入者が、telnet(1)プログラムをパスワードを盗むトロイの木馬 に置き換えた一連の侵入についての警告。システムをセキュアにするための 一般的なヒントも含む。
CA-1989-02: Sun Restore HoleJuly 26, 1989 SunOS 4.0.*のrestore(8)コマンドに存在する脆弱性
CA-1989-01: Passwd holeJanuary 1989 Keith Bosticによるpasswd (1)に対するBSDパッチの報告
CA-1988-01: ftpd Vulnerability: その和訳December 1988 BSD sendmail 5.59のデバッグコマンドに関する警告; ftpdの最新版を 取得する際の一般的な警告; その他の一般的な警告 この勧告の内容のうち、sendmailに関する部分は次のもので置き換わっている。 CA-1996-20, CA-1996-24, and CA-1996-25.
CERT and CERT Coordination Center are registered U.S. Patent and Trademark Office Disclaimers and copyright information 本文書は橋本喜代太が未許諾のまま和訳した ものであり、その内容がオリジナルと等価であることは一切保証しない。 更新履歴: |