[SECURITY-L] Vulnerabilidades de seguranca

[Daniela Regina Barbetti Silva]

Srs. Usuarios,

Atualizamos o site da Equipe de Seguranca em Sistemas e Redes
da Unicamp com os seguintes boletins de vulnerabilidades:


22/07/2002:
-----------
PHP Security Advisory
Assunto: Vulnerability in PHP versions 4.2.0 and 4.2.1
http://www.security.unicamp.br/docs/bugs/2002/07/v49.txt

CAIS-ALERTA
Assunto: Vulnerabilidade no PHP 4.2.0 e 4.2.1.
http://www.security.unicamp.br/docs/bugs/2002/07/v50.txt

Caldera International, Inc. Security Advisory (CSSA-2002-SCO.35)
Assunto: OpenServer 5.0.5 OpenServer 5.0.6 : crontab format string
vulnerability. 
http://www.security.unicamp.br/docs/bugs/2002/07/v51.txt

CERT Advisory CA-2002-21
Assunto: Vulnerability in PHP. 
http://www.security.unicamp.br/docs/bugs/2002/07/v52.txt


23/07/2002:
-----------
CAIS-ALERTA
Assunto: CERT Advisory CA-2002-21 Vulnerability in PHP. 
http://www.security.unicamp.br/docs/bugs/2002/07/v53.txt


24/07/2002:
-----------
Cisco Security Advisory
Assunto: Heap Overflow in Solaris cachefs Daemon. 
http://www.security.unicamp.br/docs/bugs/2002/07/v54.txt

EnGarde Secure Linux Security Advisory (ESA-20020724-018)
Assunto: Buffer overflow in BIND4-derived resolver code.
http://www.security.unicamp.br/docs/bugs/2002/07/v55.txt

Microsoft Security Bulletin (MS02-037)
Assunto: Server Response To SMTP Client EHLO Command Results
In Buffer Overrun (Q326322). 
http://www.security.unicamp.br/docs/bugs/2002/07/v56.txt

Microsoft Security Bulletin (MS02-038)
Assunto: Cumulative Patch for SQL Server 2000 Service Pack 2
(Q316333). 
http://www.security.unicamp.br/docs/bugs/2002/07/v57.txt

Microsoft Security Bulletin (MS02-039)
Assunto: Buffer Overruns in SQL Server 2000 Resolution Service
Could Enable Code Execution (Q323875).
http://www.security.unicamp.br/docs/bugs/2002/07/v58.txt


--
Equipe de Seguranca em Sistemas e Redes
Unicamp - Universidade Estadual de Campinas
mailto:security em unicamp.br
http://www.security.unicamp.br