October 2005
Welcome to October's edition of Internet Security News, the monthly risks bulletin detailing the latest Internet software and system vulnerabilities from NTA Monitor, a leading IT security testing company. It provides a convenient way to keep up to date with the fast changing world of IT security; this month's edition includes a total of 11 risk issues: 7 High, 1 Medium and 3 Informational .
DoS goes mobile
(Medium risk) A failure in the OS to handle certain filename characters in Bluetooth OBEX transfers may cause a DoS attack on certain models of Nokia mobile phones. 30th October 2005 Read MoreCisco woes
(High risk) The Cisco IOS Firewall Authentication Proxy for FTP and/or Telnet Sessions feature in specific versions of Cisco IOS software is vulnerable to a remotely-exploitable buffer overflow condition. 30th October 2005 Read MoreInstant messages may bring instant problems
(Informational) The coming of age of IM viruses. 30th October 2005 Read MoreAdware/spyware beware!
(Informational) Adware and spyware programs could face multiple law suits from computer users. 30th October 2005 Read MoreApple fixes flaws
(High risk) Mac OS fixes continue to be released, following a major release in August 2005. 30th October 2005 Read MoreCisco woes
(High risk) The Cisco IOS Firewall Authentication Proxy for FTP and/or Telnet Sessions feature in specific versions of Cisco IOS software is vulnerable to a remotely-exploitable buffer overflow condition. 30th October 2005 Read MoreFirefox vulnerability
(High risk) More troubles for the folks at Mozilla Foundation as another vulnerability is found in the popular browser Firefox. 30th October 2005 Read MoreMore Firefox vulnerability
(High risk) Yet another Mozilla Firefox vulnerability is discovered: IDN "Host:" Buffer Overflow, which allows an attacker to remotely execute arbitrary code on an affected host. 30th October 2005 Read MoreNew phish on the block
(Informational) New phishers deceive with phony certificates. 30th October 2005 Read MoreReal issues with RealPlayer
(High risk) Serious troubles are brewing in some versions of RealPlayer. Worse, this is purportedly a zero-day exploit as the researcher posted the discovery before a fix was found. 30th October 2005 Read MoreLocal Vulnerability makes Sun go loco
(High risk) A local vulnerability has been discover on Solaris Xsun and Xprt that may allow Privilege Escalation. 30th October 2005 Read MoreAbout NTA Monitor
This bulletin is produced as a by-product of ongoing research carried out to develop NTA Monitor's Internet security testing service, Regular Monitor. NTA are a full-service Internet security testing company with a comprehensive range of testing services including:
- VPN Testing
- Onsite Auditing
- Web Application Test
- War Dialling
- Wireless Infrastructure Testing
- RM Vulnerability Testing
For more information on the above services please see our services page.