CERT warns about SSH and System V vulnerabilities

by Elisabeth Nelson | Jan 09, 2002 8:00:00 AM

Tags: Elisabeth Nelson

Takeaway: In the absence of any updates from Microsoft this week, Exterminator surfed over to CERT to pick up two advisories: one on Secure Shell and one on System V login. Get the latest viruses alerts too.

Exterminator brings you weekly updates on bug fixes, virus recovery, service release announcements, and security notices for Windows, Novell, Linux, and other systems.

CERT Advisory CA-2001-34
Regarding: Buffer Overflow in System V Derived Login
Date posted: Dec. 12, 2001
Information URL: Click here for more information.

Attackers can gain root access to your servers by exploiting a vulnerability in login in System V. Fixes vary by OEM. CERT has the most recent patch availability information on its Web site.

CERT Advisory CA-2001-35
Regarding: Secure Shell Daemons
Date posted: Dec. 13, 2001
Information URL: Click here for more information.

The Secure Shell (SSH) protocol contains many vulnerabilities, and CERT has noted a high level of scanning for SSH daemons. The vulnerabilities have been known for some time, but in this advisory, CERT reminds sys admins to ensure that they have applied all the appropriate patches.

Novell issues
Novell lists no new final-version patches this week, but it has issued a significant number of beta releases. If you want to check them out, click here.

Virus updates from Trend Micro
Virus/Worm: WORM_SHATRIX.A
Posted: Jan. 7, 2002
Risk: Low
Information URL: Click here for more information on this virus.

Virus/Worm: WORM_GOP.A
Posted: Jan. 7, 2002
Risk: Low
Information URL: Click here for more information on this virus.

---

Stay current on virus information
Have you been keeping up with the latest virus information and patches from Microsoft and Novell? If not, visit the Exterminator archive for past columns with information on bugs and patches you may have missed.

---

 

Exterminator brings you weekly updates on bug fixes, virus recovery, service release announcements, and security notices for Windows, Novell, Linux, and other systems.

CERT Advisory CA-2001-34
Regarding: Buffer Overflow in System V Derived Login
Date posted: Dec. 12, 2001
Information URL: Click here for more information.

Attackers can gain root access to your servers by exploiting a vulnerability in login in System V. Fixes vary by OEM. CERT has the most recent patch availability information on its Web site.

CERT Advisory CA-2001-35
Regarding: Secure Shell Daemons
Date posted: Dec. 13, 2001
Information URL: Click here for more information.

The Secure Shell (SSH) protocol contains many vulnerabilities, and CERT has noted a high level of scanning for SSH daemons. The vulnerabilities have been known for some time, but in this advisory, CERT reminds sys admins to ensure that they have applied all the appropriate patches.

Novell issues
Novell lists no new final-version patches this week, but it has issued a significant number of beta releases. If you want to check them out, click here.

Virus updates from Trend Micro
Virus/Worm: WORM_SHATRIX.A
Posted: Jan. 7, 2002
Risk: Low
Information URL: Click here for more information on this virus.

Virus/Worm: WORM_GOP.A
Posted: Jan. 7, 2002
Risk: Low
Information URL: Click here for more information on this virus.

---

Stay current on virus information
Have you been keeping up with the latest virus information and patches from Microsoft and Novell? If not, visit the Exterminator archive for past columns with information on bugs and patches you may have missed.

---