Trend Micro ServerProtect Contains Multiple Vulnerabilities

Security: Threat Alert This newsletter is sponsored by SonicWALL Webcast: Assessing Risk and Net Security Join this live Webcast on September 12, 2007 at 1:00 p.m. ET/10:00 a.m. PT to learn how assessing your company's risk can lead to a more proactive sustainable security strategy. Hear respected security experts discuss this new risk management approach and its benefits. Click here to get all of the details. Network World's Security: Threat Alert Newsletter, 08/27/07 Trend Micro ServerProtect Contains Multiple Vulnerabilities By Jason Meserve Today's bug patches and security alerts: US-CERT: Trend Micro ServerProtect Contains Multiple Vulnerabilities According to the US-CERT advisory, "Multiple buffer overflow vulnerabilities and an integer overflow vulnerability have been discovered in the RPC interfaces used by various components in Trend Micro's ServerProtect software package. These vulnerabilities could be exploited by a remote attacker with the ability to supply a specially crafted RPC request to the system running the affected software." Network World Security Buyer's Guide Find the right security products for your enterprise - fast. From anti-spam to wireless LAN security, our Buyer's Guides have detailed information on hundreds of products in more than 20 categories. With the side-by-side comparison tool you can evaluate product features to make the best decision for your enterprise. Click here to go to the Security Buyer's Guide now. Trend Micro patch notes ********** Yahoo patches Messenger video bug Yahoo updated its Messenger instant messaging software to flush a bug that hackers could exploit by sending video chat invitations to unwary users. The vulnerability, which surfaced last week in a posting to a Chinese security forum, could be exploited by duping a user into accepting a malicious webcam invitation, McAfee Inc. confirmed Aug. 15. Computerworld, 08/23/05. Yahoo advisory ********** Four new updates from rPath: Kernel (multiple flaws) Tar (file overwrite) xTerm (privilege escalation) rsync (multiple flaws) ********** Two new fixes from Gentoo: Opera (multiple flaws) Qt (multiple flaws) ********** Two new patches from Ubuntu KDE (phishing vulnerability) Jasper (denial of service) ********** Today's malware news: Storm Worm using YouTube The latest twist with the Storm Worm / Zhelatin e-mails is that the e-mails now contain fake links to YouTube. F-Secure Antivirus Research Weblog, 08/26/07. Video: The Zhelatin/Storm Gang has been very busy lately ********** From the interesting reading department: How to neutralize today's worst Web attacks Symantec recently posted details about a new version of MPack, a for-sale Web attack kit that loads up a site with exploits against Windows, QuickTime, and WinZip. The $400 kit was used in the June Italian Job online assault that hijacked tens of thousands of Web sites, most of them in Italy. Crooks can buy MPack and a host of other nefarious programs on a thriving online black market. PC World, 08/22/07 Attackers probing for vulnerable Windows servers Attackers are probing for Windows servers running Trend Micro's ServerProtect antivirus software, researchers warned. On Thursday, Symantec's DeepSight threat network monitored a major spike in traffic over TCP port 5168, which is related to the remote procedure call service in ServerProtect. Computerworld, 08/23/07. Web site auctions software vulnerabilities to highest bidder There are many ways vulnerability information can get out to the industry but a controversial new site, auctioning such information to the highest bidder, may be the wave of the future. Network World, 08/23/07. Mobile workforce leaves networks vulnerable, survey says A majority of IT managers believe the mobile workforce makes their enterprise networks more susceptible to malware and other threats, according to a new survey. Network World, 08/24/07. Spam fighters hit criminals' weak spot Is the fight against spam horribly misguided? For years, spam haters have relied on junk-mail filters and Internet blacklists, but lately, some are saying it's time for a change in tactics. Their answer: follow the money. And that means going after the Web sites where spammers sell their pharmaceuticals and watches and male enhancement products. IDG News Service, 08/23/07. Cogent: Cable was attacked with saw and gun Guns, saws, and some very dim-witted thieves were all apparently involved in a network blackout that affected Internet users, primarily in the Northeastern U.S., earlier this week. IDG News Service, 08/23/07.   What do you think? Post a comment on this newsletter

TODAY'S MOST-READ STORIES: 1. Open-source companies to watch 2. How close is World War 3.0? 3. Test your networking nerdiness 4. Gunplay blamed for Internet slowdown 5. Cogent: Cable was attacked with saw and gun 6. Hackers unlock iPhone from AT&T network 7. HP support: Cross-eyed and brainless 8. Deploying Google Apps: A career-killer? 9. Monster shuts down rogue server after breach 10. 10 virtualization companies to watch MOST DOWNLOADED PODCAST: Laptops designed for Linux: Matt Domsch

Contact the author: Jason Meserve is Network World's Multimedia Editor and writes about streaming media, search engines and IP Multicast. Check out his Multimedia Exchange Weblog. Check out Jason Meserve and Keith Shaw's weekly podcast "Twisted Pair" This newsletter is sponsored by SonicWALL Webcast: Assessing Risk and Net Security Join this live Webcast on September 12, 2007 at 1:00 p.m. ET/10:00 a.m. PT to learn how assessing your company's risk can lead to a more proactive sustainable security strategy. Hear respected security experts discuss this new risk management approach and its benefits. Click here to get all of the details. ARCHIVE Archive of the Security: Threat Alert Newsletter. BONUS FEATURE IT PRODUCT RESEARCH AT YOUR FINGERTIPS Get detailed information on thousands of products, conduct side-by-side comparisons and read product test and review results with Network World’s IT Buyer’s Guides. Find the best solution faster than ever with over 100 distinct categories across the security, storage, management, wireless, infrastructure and convergence markets. Click here for details. PRINT SUBSCRIPTIONS AVAILABLE You've got the technology snapshot of your choice delivered to your inbox each day. Extend your knowledge with a print subscription to the Network World newsweekly, Apply here today. International subscribers, click here. SUBSCRIPTION SERVICES To subscribe or unsubscribe to any Network World newsletter, change your e-mail address or contact us, click here. This message was sent to: security.world@gmail.com. Please use this address when modifying your subscription. Advertising information: Write to Associate Publisher Online Susan Cardoza Network World, Inc., 118 Turnpike Road, Southborough, MA 01772 Copyright Network World, Inc., 2007