[SECURITY-L] Vulnerabilidades de Seguranca

[Silvana Mieko Misuta]

Srs. Usuarios,

Atualizamos o site da Equipe de Seguranca em Sistemas e Redes
da Unicamp com os seguintes boletins de vulnerabilidades:

25/04/2003
----------

Centro de Atendimento a Incidentes de Seguranca
Assunto: CAIS-Alerta: Exploracao da Vulnerailidade do WebDAV (IIS 5.0)
http://www.security.unicamp.br/docs/bugs/2003/04/v163.txt 


24/04/2003
----------


Mandrake Linux Security Update Advisory (MDKSA-2003:051)
Assunto: Vulnerabilidade de Seguranca no pacote ethereal
http://www.security.unicamp.br/docs/bugs/2003/04/v164.txt 


Secure Network Operations (SRT2003-04-24-1532)
Assunto: Options Parsing Tool library buffer overflows
http://www.security.unicamp.br/docs/bugs/2003/04/v162.txt 


Red Hat Security Advisory (RHSA-2003:118-01)
Assunto: Updated mICQ packages fix vulnerability
http://www.security.unicamp.br/docs/bugs/2003/04/v161.txt 


Red Hat Security Advisory (RHSA-2003:112-01)
Assunto: Updated squirrelmail packages fix cross-site scripting vulnerabilities
http://www.security.unicamp.br/docs/bugs/2003/04/v160.txt 


Red Hat Security Advisory (RHSA-2003:142-01)
Assunto: Updated LPRng packages fix psbanner vulnerability
http://www.security.unicamp.br/docs/bugs/2003/04/v159.txt 


Centro de Atendimento a Incidentes de Seguranca
Assunto: CAIS-Alerta: Patch Acumulativo para o Outlook Express (330994) 
http://www.security.unicamp.br/docs/bugs/2003/04/v158.txt 


Centro de Atendimento a Incidentes de Seguranca
Assunto: CAIS-Alerta: Patch Acumulativo para o Internet Explorer (813489)
http://www.security.unicamp.br/docs/bugs/2003/04/v157.txt 


Red Hat Network Alert (RHSA-2003:076-08)
Assunto: Updated ethereal packages fix security vulnerabilities
http://www.security.unicamp.br/docs/bugs/2003/04/v156.txt 


NSFOCUS Security Advisory(SA2003-04)
Assunto: Remote Buffer Overflow Vulnerability in Web Management Interface of Cisco Secure ACS 
http://www.security.unicamp.br/docs/bugs/2003/04/v155.txt 


NGSSoftware Insight Security Research Advisory (#NISR24042003)
Assunto: Internet Explorer ActiveX Control Heap Overflow
http://www.security.unicamp.br/docs/bugs/2003/04/v154.txt 


SuSE Security Announcement (SuSE-SA:2003:026)
Assunto: SuSE Security Announcement: KDE (SuSE-SA:2003:026)
http://www.security.unicamp.br/docs/bugs/2003/04/v153.txt 


Microsoft Security Bulletin (MS03-014)
Assunto: Cumulative Patch for Outlook Express (330994)
http://www.security.unicamp.br/docs/bugs/2003/04/v152.txt 


Cisco Security Advisory (CSCea42030)
Assunto: Cisco Catalyst Enable Password Bypass Vulnerability
http://www.security.unicamp.br/docs/bugs/2003/04/v151.txt 


Microsoft Security Bulletin (MS03-007)
Assunto: Revised: Microsoft Security Bulletin MS03-007: Unchecked Buffer in Windows Component Could Cause Server Compromise (815021)
http://www.security.unicamp.br/docs/bugs/2003/04/v150.txt 


23/04/2003
----------

Red Hat Network Alert (RHSA-2003:032-12)
Assunto: Updated tcpdump packages fix various vulnerabilities
http://www.security.unicamp.br/docs/bugs/2003/04/v149.txt 


Red Hat Security Advisory (RHSA-2003:076-01)
Assunto: Updated ethereal packages fix security vulnerabilities
http://www.security.unicamp.br/docs/bugs/2003/04/v148.txt 


Red Hat Security Advisory (RHSA-2003:032-01)
Assunto: Updated tcpdump packages fix various vulnerabilities
http://www.security.unicamp.br/docs/bugs/2003/04/v147.txt 


Debian Security Advisory (DSA 293-1)
Assunto: insecure execution in kdelibs
http://www.security.unicamp.br/docs/bugs/2003/04/v146.txt 


Cisco Security Advisory (CSCea51366)
Assunto: Cisco Secure Access Control Server for Windows Admin Buffer Overflow Vulnerability
http://www.security.unicamp.br/docs/bugs/2003/04/v145.txt 


Debian Security Advisory (DSA 294-1)
Assunto: missing quoting, incomplete parser
http://www.security.unicamp.br/docs/bugs/2003/04/v144.txt 


 
--
Equipe de Seguranca em Sistemas e Redes
Unicamp - Universidade Estadual de Campinas
Mailto:security em unicamp.br
http://www.security.unicamp.br