Friday Infosec Grab Bag
Here are some links to odds and ends that came to us through the day today. Thanks, readers, for your links and comments!
Updated TrendMicro Rogue DNS Servers
Apache HTTP Server Mod_Status Cross-Site Scripting Vulnerability
Multiple Vulnerabilities in IBM DB2 Universal Database:
IBM DB2 Universal Database Multiple Race Condition Vulnerabilities (root access)
IBM DB2 Universal Database Directory Traversal Vulnerability (root access)
IBM DB2 Universal Database Multiple File Creation Vulnerabilities (privilege elevation)
IBM DB2 Universal Database Directory Creation Vulnerability (privilege elevation)
IBM DB2 Universal Database Multiple Untrusted Search Path Vulnerabilities (root access)
IBM DB2 Universal Database buildDasPaths Buffer Overflow Vulnerability (root access)
Vendor response: V8 V9
Cisco IOS Vulnerability Cisco's forum discussion
Marcus H. Sachs
Director, SANS Internet Storm Center
Comments