May 09, 2007 - Current Activity

Microsoft Releases May Security Bulletin

Microsoft has released updates to address vulnerabilities in Microsoft Windows, Internet Explorer, Windows DNS RPC Interface, Office, Exchange, CAPICOM, and BizTalk as part of the Microsoft Security Bulletin Summary for May 2007.

More information about these vulnerabilities is located in the Vulnerability Notes Database and Technical Cyber Security Alert TA07-128A.

US-CERT strongly encourages users to review the bulletins and follow best-practice security policies to determine what updates should be applied.

Microsoft Releases Advance Notification for May Security Bulletins

Microsoft has issued a Security Bulletin Advance Notification indicating that their May release cycle will contain seven bulletins, some of which have a maximum rating of Critical. The notification further states that two of the bulletins are for Windows; three for Office; one for Exchange; and one for CAPICOM and BizTalk. The release is scheduled for May 8, 2007.

US-CERT will provide additional information as it becomes available.

Cisco Releases Security Advisory to Address Multiple Vulnerabilities in ASA and PIX Appliances

Cisco has released Security Advisory cisco-sa-20070502-asa to address multiple vulnerabilities in Cisco ASA and PIX appliances.  These vulnerabilities include two authentication bypass vulnerabilities affecting the Lightweight Directory Access Protocol (LDAP) authentication system and two denial-of-service (DoS) vulnerabilities affecting Virtual Private Networks (VPNs).

More information about these vulnerabilities can be found in the Vulnerability Notes Database.

US-CERT recommends administrators apply the workarounds and patches as described in Cisco Security Advisory cisco-sa-20070502-asa.

OPeNDAP Releases Update to Address Vulnerability in Network Data Access Protocol Software

OPeNDAP has released an update to address a vulnerability in Version 3 of the OPeNDAP Network Data Access Protocol software.

US-CERT encourages administrators to apply the fixes and workarounds described in Vulnerability Note VU#857153 and in the OPeNDAP Server 3 update.

Cisco Releases Security Advisory to Address Vulnerability in NetFlow Collection Engine

Cisco has released Security Advisory cisco-sa-20070425-nfc to address a vulnerability in Cisco NetFlow Collection Engine. Upon installation, default user credentials are created on the system. A remote attacker with knowledge of these hard-coded credentials may be able to gain access to an affected system.

US-CERT encourages administrators to apply the fixes and workarounds described in Vulnerability Note VU#127545 and Security Advisory cisco-sa-20070425-nfc. 

Adobe Photoshop Bitmap File Handling Vulnerability

US-CERT is aware of a possible vulnerability in Adobe Photoshop that may allow an attacker to cause a stack-based buffer overflow. By persuading a user to open a crafted bitmap file (e.g., .BMP, .DIB, .RLE), an attacker may be able to execute arbitrary code on the user's system.

US-CERT recommends that users not open untrusted bitmap files, and will continue to investigate and provide additional information as it becomes available.

Vulnerability in HP-UX Running Sendmail

US-CERT is aware of a vulnerability in HP-UX running sendmail that may allow a remote user to cause a denial-of-service condition.

US-CERT recommends users apply the patches as described in HP Technical Knowledge Base Document c00841370.  Please note that logon credentials may be needed to access this document.

More information regarding this vulnerability is available in Vulnerability Note VU#349305.