The remote host is missing updates announced in
advisory GLSA 200606-30.
A security vulnerability in the iaxclient library could lead to the
execution of arbitrary code by a remote attacker.
Solution:
All Kiax users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=net-misc/kiax-0.8.5_p1'
http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200606-30
http://bugs.gentoo.org/show_bug.cgi?id=136099
Risk factor : Medium
Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2006-2923
Bugtraq: 20060609 CORE-2006-0327: IAXclient truncated frames vulnerabilities (Google Search)
http://www.securityfocus.com/archive/1/archive/1/436638/100/0/threaded
http://www.gentoo.org/security/en/glsa/glsa-200606-30.xml
BugTraq ID: 18307
http://www.securityfocus.com/bid/18307
http://www.frsirt.com/english/advisories/2006/2286
http://www.frsirt.com/english/advisories/2006/2284
http://www.frsirt.com/english/advisories/2006/2285
http://www.frsirt.com/english/advisories/2006/2180
http://secunia.com/advisories/20466
http://secunia.com/advisories/20623
http://secunia.com/advisories/20560
http://secunia.com/advisories/20567
http://secunia.com/advisories/20900
Fuente: www.securityspace.com
Search for in Google by Dino
The Best Communities Underground - Hacking etico
Mis Sitios en Internet
sábado, febrero 17, 2007
Gentoo Security Advisory GLSA 200606-30 (kiax)
Gentoo Security Advisory GLSA 200607-13 (audacious)
The remote host is missing updates announced in
advisory GLSA 200607-13.
The adplug library included in Audacious is vulnerable to various overflows
that could result in the execution of arbitrary code.
Solution:
All Audacious users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=media-sound/audacious-1.1.0'
http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200607-13
http://bugs.gentoo.org/show_bug.cgi?id=139957
http://www.securityfocus.com/archive/1/439432/30/0/threaded
Risk factor : Medium
Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2006-3581
Bugtraq: 20060706 Various heap and stack overflow bugs in AdPlug library 2.0 (CVS 04 Jul 2006) (Google Search)
http://www.securityfocus.com/archive/1/archive/1/439432/100/100/threaded
http://security.gentoo.org/glsa/glsa-200607-13.xml
http://security.gentoo.org/glsa/glsa-200609-06.xml
BugTraq ID: 18859
http://www.securityfocus.com/bid/18859
http://www.frsirt.com/english/advisories/2006/2697
http://secunia.com/advisories/20972
http://secunia.com/advisories/21238
http://secunia.com/advisories/21295
http://secunia.com/advisories/21869
Common Vulnerability Exposure (CVE) ID: CVE-2006-3582
Fuente:www.securityspace.com
Gentoo Security Advisory GLSA 200607-07 (xine-lib)
The remote host is missing updates announced in
advisory GLSA 200607-07.
A buffer overflow has been found in the libmms library shipped with
xine-lib, potentially resulting in the execution of arbitrary code.
Solution:
All xine-lib users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=media-libs/xine-lib-1.1.2-r2'
http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200607-07
http://bugs.gentoo.org/show_bug.cgi?id=139319
Risk factor : Medium
Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2006-2200
http://security.gentoo.org/glsa/glsa-200607-07.xml
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:117
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:121
http://www.ubuntu.com/usn/usn-309-1
http://www.ubuntu.com/usn/usn-315-1
BugTraq ID: 18608
http://www.securityfocus.com/bid/18608
http://www.frsirt.com/english/advisories/2006/2487
http://secunia.com/advisories/20749
http://secunia.com/advisories/20948
http://secunia.com/advisories/20964
http://secunia.com/advisories/21023
http://secunia.com/advisories/21036
http://secunia.com/advisories/21139
Fuente: www.securityspace.com
Gentoo Security Advisory GLSA 200607-10 (samba)
The remote host is missing updates announced in
advisory GLSA 200607-10.
A large number of share connection requests could cause a Denial of Service
within Samba.
Solution:
All Samba users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=net-fs/samba-3.0.22-r3'
http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200607-10
http://bugs.gentoo.org/show_bug.cgi?id=139369
Risk factor : Medium
Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2006-3403
Bugtraq: 20060710 Re: [ANNOUNCEMENT] Samba 3.0.1 - 3.0.22: memory exhaustion DoS against smbd (Google Search)
http://www.securityfocus.com/archive/1/archive/1/439875/100/0/threaded
Bugtraq: 20060710 [ANNOUNCEMENT] Samba 3.0.1 - 3.0.22: memory exhaustion DoS against smbd (Google Search)
http://www.securityfocus.com/archive/1/archive/1/439757/100/0/threaded
Bugtraq: 20060711 rPSA-2006-0128-1 samba samba-swat (Google Search)
http://www.securityfocus.com/archive/1/archive/1/439880/100/100/threaded
Bugtraq: 20060720 Samba Internal Data Structures DOS Vulnerability Exploit (Google Search)
http://www.securityfocus.com/archive/1/archive/1/440767/100/0/threaded
Debian Security Information: DSA-1110 (Google Search)
http://www.debian.org/security/2006/dsa-1110
http://security.gentoo.org/glsa/glsa-200607-10.xml
HPdes Security Advisory: HPSBUX02155
http://www.securityfocus.com/archive/1/archive/1/448957/100/0/threaded
HPdes Security Advisory: SSRT061235
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:120
http://www.redhat.com/support/errata/RHSA-2006-0591.html
SGI Security Advisory: 20060703-01-P
ftp://patches.sgi.com/support/free/security/advisories/20060703-01-U.asc
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.416876
SuSE Security Announcement: SUSE-SR:2006:017 (Google Search)
http://www.novell.com/linux/security/advisories/2006_17_sr.html
http://www.ubuntu.com/usn/usn-314-1
CERT/CC vulnerability note: VU#313836
http://www.kb.cert.org/vuls/id/313836
BugTraq ID: 18927
http://www.securityfocus.com/bid/18927
http://www.frsirt.com/english/advisories/2006/2745
http://securitytracker.com/id?1016459
http://secunia.com/advisories/20980
http://secunia.com/advisories/20983
http://secunia.com/advisories/21018
http://secunia.com/advisories/21019
http://secunia.com/advisories/21046
http://secunia.com/advisories/21086
http://secunia.com/advisories/21143
http://secunia.com/advisories/21187
http://secunia.com/advisories/21190
http://secunia.com/advisories/21159
http://secunia.com/advisories/21262
XForce ISS Database: samba-smbd-connection-dos(27648)
http://xforce.iss.net/xforce/xfdb/27648
Fuente: www.securityspace.com
Gentoo Security Advisory GLSA 200607-06 (libpng)
The remote host is missing updates announced in
advisory GLSA 200607-06.
A buffer overflow has been found in the libpng library that could lead to
the execution of arbitrary code.
Solution:
All libpng users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=media-libs/libpng-1.2.12'
All AMD64 emul-linux-x86-baselibs users should also upgrade to the latest
version:
# emerge --sync
# emerge --ask --oneshot --verbose
'>=app-emulation/emul-linux-x86-baselibs-2.5.1'
http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200607-06
http://bugs.gentoo.org/show_bug.cgi?id=138433
http://bugs.gentoo.org/show_bug.cgi?id=138672
http://heanet.dl.sourceforge.net/sourceforge/libpng/libpng-1.2.12-README.txt
Risk factor : Medium
Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2006-3334
http://security.gentoo.org/glsa/glsa-200607-06.xml
SuSE Security Announcement: SUSE-SR:2006:016 (Google Search)
http://www.novell.com/linux/security/advisories/2006_16_sr.html
BugTraq ID: 18698
http://www.securityfocus.com/bid/18698
http://www.frsirt.com/english/advisories/2006/2585
XForce ISS Database: libpng-pngdecompresschunk-bo(27468)
http://xforce.iss.net/xforce/xfdb/27468
Fuente: www.securityspace.com
Gentoo Security Advisory GLSA 200607-09 (wireshark ethereal)
The remote host is missing updates announced in
advisory GLSA 200607-09.
Wireshark (formerly known as Ethereal) is vulnerable to several security
issues, potentially allowing the execution of arbitrary code by a remote
attacker.
Solution:
All Wireshark users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=net-analyzer/wireshark-0.99.2'
All Ethereal users should migrate to Wireshark:
# emerge --sync
# emerge --ask --unmerge net-analyzer/ethereal
# emerge --ask --oneshot --verbose '>=net-analyzer/wireshark-0.99.2'
To keep the [saved] configuration from Ethereal and reuse it with
Wireshark:
# mv ~
/.ethereal ~
/.wireshark
http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200607-09
http://bugs.gentoo.org/show_bug.cgi?id=140856
http://www.wireshark.org/security/wnpa-sec-2006-01.html
Risk factor : High
Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2006-3627
Bugtraq: 20060719 rPSA-2006-0132-1 tshark wireshark (Google Search)
http://www.securityfocus.com/archive/1/archive/1/440576/100/0/threaded
http://security.gentoo.org/glsa/glsa-200607-09.xml
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:128
RedHat Security Advisories: RHSA-2006:0602
http://rhn.redhat.com/errata/RHSA-2006-0602.html
SGI Security Advisory: 20060801-01-P
ftp://patches.sgi.com/support/free/security/advisories/20060801-01-P
SuSE Security Announcement: SUSE-SR:2006:020 (Google Search)
http://www.novell.com/linux/security/advisories/2006_20_sr.html
BugTraq ID: 19051
http://www.securityfocus.com/bid/19051
http://www.frsirt.com/english/advisories/2006/2850
http://secunia.com/advisories/21078
http://secunia.com/advisories/21107
http://secunia.com/advisories/21121
http://secunia.com/advisories/21204
http://secunia.com/advisories/21488
http://secunia.com/advisories/21598
http://secunia.com/advisories/22089
Common Vulnerability Exposure (CVE) ID: CVE-2006-3628
Debian Security Information: DSA-1127 (Google Search)
http://www.debian.org/security/2006/dsa-1127
http://securitytracker.com/id?1016532
http://secunia.com/advisories/21249
Common Vulnerability Exposure (CVE) ID: CVE-2006-3629
Common Vulnerability Exposure (CVE) ID: CVE-2006-3630
Common Vulnerability Exposure (CVE) ID: CVE-2006-3631
Common Vulnerability Exposure (CVE) ID: CVE-2006-3632
Fuent: www.securityspace.com
Gentoo Security Advisory GLSA 200607-08 (gimp)
H0l@,
The remote host is missing updates announced in
advisory GLSA 200607-08.
GIMP is prone to a buffer overflow which may lead to the execution of
arbitrary code when loading specially crafted XCF files.
Solution:
All GIMP users should update to the latest stable version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=media-gfx/gimp-2.2.12'
http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200607-08
http://bugs.gentoo.org/show_bug.cgi?id=139524
Risk factor : Medium
Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2006-3404
Bugtraq: 20060724 rPSA-2006-0135-1 gimp (Google Search)
http://www.securityfocus.com/archive/1/archive/1/441030/100/0/threaded
Bugtraq: 20060724 ERRATA: [ GLSA 200607-08 ] GIMP: Buffer overflow (Google Search)
http://www.securityfocus.com/archive/1/archive/1/441012/100/0/threaded
Bugtraq: 20060724 Re: [ GLSA 200607-08 ] GIMP: Buffer overflow (Google Search)
http://www.securityfocus.com/archive/1/archive/1/440987/100/0/threaded
Debian Security Information: DSA-1116 (Google Search)
http://www.debian.org/security/2006/dsa-1116
http://security.gentoo.org/glsa/glsa-200607-08.xml
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:127
http://www.redhat.com/support/errata/RHSA-2006-0598.html
SuSE Security Announcement: SUSE-SR:2006:019 (Google Search)
http://www.novell.com/linux/security/advisories/2006_19_sr.html
http://www.ubuntu.com/usn/usn-312-1
BugTraq ID: 18877
http://www.securityfocus.com/bid/18877
http://www.frsirt.com/english/advisories/2006/2703
http://www.osvdb.org/27037
http://securitytracker.com/id?1016527
http://secunia.com/advisories/20976
http://secunia.com/advisories/20979
http://secunia.com/advisories/21069
http://secunia.com/advisories/21104
http://secunia.com/advisories/21170
http://secunia.com/advisories/21182
http://secunia.com/advisories/21198
XForce ISS Database: gimp-xcfloadvector-bo(27687)
http://xforce.iss.net/xforce/xfdb/27687
Good Luck
Dino
Fuente:www.securityspace.com
Nuevo Programa PROFESIONAL 5 ESTRELLAS
Esta es una NUEVA versión del programa anterior con contenido actualizado basado en Windows Server 2003 R2 a Nivel 400.
Asi funciona:
Curso Descripción
Estrella 1
En esta nivel estarás en condiciones de comprender los fundamentos de la infraestructura de red Windows Server 2003. Es recomendable recurrir a la bibliografía complementaria a los efectos de ampliar tus conocimientos en este ámbito.
Estrella 2
Al superar este nivel estarás en condiciones de instalar y configurar los servicios Active Directory, Group Policy, IIS 6.0 y las nuevas características con SP1.
Estrella 3
Aquí podrás determinar cuáles son los permisos que se pueden dar a objetos de Active Directory, cuáles son los roles de los servidores en Microsoft Windows 2003 Server, resolver problemas, crear satisfactoriamente un plan de migraciones y usar IPSec.
Estrella 4
Para la cuarta estrella necesitarás obtener la certificación MCP (Microsoft Certified Professional) de la plataforma Windows Server 2003, o sea, tendrás que pasar uno de los siguientes exámenes: 290, 291, 293, 294, 270 y 210.
Estrella 5
La quinta estrella está destinada a los profesionales MCSA (Microsoft Certified System Administrator), MCSE (Microsoft Certified System Engineer) y a los MCDBA's (Microsoft Certified DataBase Administrator).
Para los que se preguntan ¿Qué sucede si ya tenia estrellas en el programa anterior?
La respuesta es las VALIDAMOS
¿Cómo validar tus antiguas estrellas?
Si ya tienes estrellas en el anterior Profesional Cinco Estrellas, deberás rendir el examen del último capítulo correspondiente a la estrella que posees ingresando a la solapa Programa.
Este es un examen integrador que contiene preguntas sobre todos los capítulos de la estrella. Sólo tendrás dos oportunidades para rendir este examen. En caso de no aprobar, tendrás que rendir el examen del último capítulo de la estrella anterior a la que posees.
También puedes acceder a los materiales de todos los capítulos hasta la estrella que posees.
Recuerda que tienes hasta 6 meses para revalidar tus estrellas, ¡apúrate!.
Material 1
Material 2
Enjoy
Dino
Etiquetas:
WEBCAST
0
comentarios
Enlaces a esta entrada
:@ :@ :@ :@ :@ :@ :@ :@ :@ :@ :@ :@
