HOME > ADVISORIES


   ADVISORIES

CERT-In Advisory CIAD-2006-27
Multiple Vulnerabilities in Linux

Original issue date: September 12, 2006

Severity Rating: Medium

Systems Affected

  • OpenSSL version prior to 0.9.8b
  • Mailman version prior to 2.1.9rc1
  • BIND versions prior to 9.4.x

Overview

Multiple vulnerabilities have been reported in linux which could be exploited by remote attackers to bypass certain security restrictions, Denial of Service or arbitrary code execution.

Description

1. OpenSSL RSA Key Handling PKCS #1 v1.5 Signature Forgery Vulnerability ( CVE-2006-4339 )

A vulnerability has been reported in OpenSSL due to an error while verifying certain signatures. This could be exploited by remote attackers to forge a PKCS #1 v1.5 signature signed by that key while using RSA keys with exponent 3.


2. Mailman MIME multipart messages vulnerability ( CAN-2006-2941 )

A vulnerability has been reported in Mailman due to an error while processing non-standard RFC 2231 formatted headers, which could be exploited by remote attackers to cause a denial of service.


3. Mailman cross-site scripting vulnerabilities ( CAN-2006- 3636)

A vulnerability has been reported in Mailman due to unspecified input validation errors, which could be exploited by remote attackers to execute arbitrary scripting code in user's browser in the security context of an affected Web site via a unspecified vectors.


4. Bind assertion failure Vulnerability ( CAN-2006-4095 )

A vulnerability has been reported in ISC BIND due to assertion failure while handling DNS Security Extensions signed Resource Record Sets and multiple SIG Resource Record set serving a RFC 2535 DNSSEC zone. This could be exploited by remote attackers to crash name server daemon cause a denial of service attack for DNS operations.


5. Bind insist failure Vulnerability ( CAN-2006-4096)

A vulnerability has been reported in ISC BIND due to insist failure while processing multiple recursive queries, looking for the response and have recursion queue. This could be exploited by remote attackers to crash name server daemon cause a denial of service attack for DNS operations.

Solution

Apply Appropriate patch suggested by the vendor.

Vendor information

OpenSSL
http://www.openssl.org/news/secadv_20060905.txt

Mailman
http://mailman.sourceforge.net/

BIND
http://www.isc.org/index.pl?/sw/bind/

References

RedHat
https://rhn.redhat.com/errata/RHSA-2006-0600.html https://rhn.redhat.com/errata/RHSA-2006-0661.html

FrSIRT- ADV-2006-3453
http://www.frsirt.com/english/advisories/2006/3453
http://www.frsirt.com/english/advisories/2006/3079
http://www.frsirt.com/english/advisories/2006/3306
http://www.frsirt.com/english/advisories/2006/3446
http://www.frsirt.com/english/advisories/2006/3473

Security Focus
http://www.securityfocus.com/bid/19849
http://www.securityfocus.com/bid/19279
http://www.securityfocus.com/bid/19559
http://www.securityfocus.com/bid/19794
http://www.securityfocus.com/bid/19831
http://www.securityfocus.com/bid/19831

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information


Phone: +91-11-24368572

Postal address

Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003