Report an Incident

If you are a CNI organisation and you have encountered or suspect a cyber threat, please complete and return an Incident Reporting Form.

All incident reports provided to the CCIP are treated in the strictest of confidence. Please see our Confidentiality Charter for more details. Read More

New at CCIP

Current e-Bulletin The CCIP e-Bulletin provides a snapshot of security related news
Read More

Centre for Critical Infrastructure Protection

Home | Vulnerabilities | Vulnerability Alert Archives | April 2006

April 2006

The following table includes the Vulnerability Alerts for the month.

Note: These links reference external sites. CCIP can not accept responsibility for outdated links or such links contents.

Reference	Description	Date
Microsoft	Microsoft Security Bulletin MS06-015 Re-Release	28/04/06
Gentoo	xine-ui: Format string vulnerabilities	28/04/06
Juniper	IVE ActiveX client vulnerability	27/04/06
Cisco	Cisco VPN 3000 Concentrator Vulnerable to Crafted HTTP Attack	27/04/06
NISCC	Vulnerability Issues in Implementations of the DNS Protocol	27/04/06
SGI	SGI Advanced Linux Environment 3 Security Update #57	27/04/06
Sun	Sun Cobalt sendmail(8) Security Issue Involving Signal Handling Daemon	27/04/06
Mozilla	Thunderbird 1.5.0.2 released	26/04/06
Mozilla	Firefox 1.5.0.2 released	26/04/06
Ethereal	Ethereal Multiple Protocol Dissector Vulnerabilities	26/04/06
SCO	UnixWare 7.1.4 : CUPS Multiple Buffer Overflow Vulnerabilities	26/04/06
Sun	Security Vulnerability in sendmail(1M) Versions Prior to 8.13.6	24/04/06
Hewlett-Packard	HP StorageWorks Virtual Library System (VLS) VLS61xx / VLS65xx / VLS68xx v1.0.13 Firmware Release	24/04/06
Symantec	Symantec Scan Engine Multiple Vulnerabilities	24/04/06
FrSIRT	Apple Mac OS X Multiple Client-Side File Handling Buffer Overflow Vulnerability	24/04/06
Cisco	Response to Privilege Escalation on Multiple Cisco Products	20/04/06
Xine	Xine Playlist File Path Format String Vulnerability	20/04/06
Oracle	Oracle Products Multiple Vulnerabilities	20/04/06
Monster	Top List "root_path" File Inclusion Vulnerability	18/04/06
Debian	Update for horde2	18/04/06
Censtore	"page" Shell Command Injection Vulnerability	18/04/06
Amaya	Attribute Value Buffer Overflow Vulnerabilities	18/04/06
PAJAX	Arbitrary Code Execution Vulnerabilities	18/04/06
Firefox	Multiple Vulnerabilities	18/04/06
Mozilla	SeaMonkey Multiple Vulnerabilities	18/04/06
Sphider	"settings_dir" File Inclusion Vulnerability	18/04/06
Debian	Update for horde3	18/04/06
Microsoft	Microsoft Windows Explorer COM Object Handling Vulnerability	12/04/06
Microsoft	Microsoft Data Access Components RDS.Dataspace ActiveX Vulnerability	12/04/06
Microsoft	Internet Explorer Multiple Vulnerabilities	12/04/06
Trustix	Updates for multiple packages	11/04/06
Suse	Updates for Multiple Packages	11/04/06
Debian	clamav -- several vulnerabilities	07/04/06
Cisco	Cisco Optical Networking System 15000 Series and Cisco Transport Controller Vulnerabilities	07/04/06
SGI	Advanced Linux Environment Multiple Updates	06/04/06
Gentoo	Update for horde	06/04/06
Apache	Apache Struts Multiple Vulnerabilities	05/04/06
FrSIRT	McAfee WebShield SMTP Bounce Messages Remote Format String Vulnerability	05/04/06
KDE	Kaffeine buffer overflow	05/04/06
SecurityFocus	Zoo Misc.c Buffer Overflow Vulnerability	05/04/06
Apple	Mac OS X 10.4.6 Update	04/04/06