NTA Monitor

Latest News

Finance industry faces serious IT security issues

23rd June 2008 The finance industry needs to keep its eye on the small change as well as the bigger picture of its security vulnerabilities Read More

Retail sector faces serious IT security issues

23rd June 2008 The retail sector needs to set out its stall and ring the changes in its security vulnerabilities if it is to avoid the potential for hackers to gain unauthorised system access and disrupt service availability Read More

IT managers have more security headaches to deal with

11th May 2008 NTA Monitor's 2008 Annual Security Report has revealed that the average number of vulnerabilities found per test have increased to 21 compared with 19 in 2007 Read More

Solutions not excuses for patch management warns NTA Monitor

23rd April 2008 Patch management is a vital security requirement for any organsation Read More
Date: 30th June 2005
Risk: High

Red Hat: update for xorg-x11

Red Hat has issued an update for xorg-x11. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system.

Updated packages are available from Red Hat Network. http://rhn.redhat.com/ Reference: http://rhn.redhat.com/errata/RHSA-2005-198.html; http://secunia.com/advisories/15637/

SUSE: Updates for Multiple Packages

SUSE has issued updates for multiple packages. These fix various vulnerabilities, which can be exploited by malicious, local users to perform certain actions with escalated privileges, by malicious users to conduct SQL injection attacks and by malicious people to cause a DoS (Denial of Service), conduct cross-site scripting attacks, disclose sensitive information and compromise a vulnerable system.

Solution: apply vendor patch

Reference: http://secunia.com/advisories/15629/

Conectiva Linux 9: update for gaim

Conectiva has issued an update for gaim. This fixes a vulnerability and a weakness, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a user's system.

Solution: Apply updated packages. Reference: http://secunia.com/advisories/15628/

Conectiva Linux 9: update for ethereal

Conectiva has issued an update for ethereal. This fixes multiple vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.

Solution: Apply updated packages. Reference: http://secunia.com/advisories/15616/

Conectiva Linux 9: update for php4

Conectiva has issued an update for php4. This fixes some vulnerabilities, where some have an unknown impact and others can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.

Solution: Apply updated packages. Reference: http://secunia.com/advisories/15579/

Debian: update for mailutils

Debian has issued an update for mailutils. This fixes some vulnerabilities, which can be exploited to cause a DoS (Denial of Service) or compromise a vulnerable system

Solution: apply vendor patches Reference: http://www.debian.org/security/2005/dsa-732; http://secunia.com/advisories/15610/

SGI: Advanced Linux Environment Multiple Updates

SGI has issued a patch for SGI Advanced Linux Environment. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to gain knowledge of certain information or gain escalated privileges, or by malicious people to conduct cross-site scripting attacks, cause a DoS (Denial of Service), potentially overwrite arbitrary files on a user's system or compromise it.

Solution: Apply Patch 10174 for SGI ProPack 3 Service Pack 5. http://support.sgi.com/ Reference: ftp://patches.sgi.com/support/free/security/advisories/20050503-01-U.asc; http://secunia.com/advisories/15625/