[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

UNIRAS Brief - 115/04 - Four Mandrake Security Advisories



 
-----BEGIN PGP SIGNED MESSAGE-----


- - ----------------------------------------------------------------------------------
   UNIRAS (UK Govt CERT) Briefing Notice - 115/04 dated 11.03.04  Time: 12:45  
  UNIRAS is part of NISCC (National Infrastructure Security Co-ordination Centre)
- - ---------------------------------------------------------------------------------- 
  UNIRAS material is also available from its website at www.uniras.gov.uk and
         Information about NISCC is available from www.niscc.gov.uk
- - ----------------------------------------------------------------------------------

Title
=====

Four Mandrake Security Advisories:

1. Buffer overflow in python 2.2's getaddrinfo().

2. Updated gdk-pixbuf packages fix BMP-handling vulnerability.

3. Updated mozilla packages fix multiple vulnerabilities.

4. Updated kdelibs packages fix cookie theft vulnerability.



Detail
====== 

1. If python 2.2 is built without  IPv6 support, an attacker could configure their name server to let a  hostname resolve to a special IPv6 address, which could contain a  memory address where shellcode is placed.

2. A vulnerability in gdk-pixbuf versions before 0.20 exists that could  allow a 
malicious BMP file to crash the Evolution mail client.

3. A number of vulnerabilities were discovered in Mozilla 1.4.

4. Corsaire discovered that a number of HTTP user agents contained a flaw in how 
they handle cookies.



1.

 _______________________________________________________________________

                 Mandrakelinux Security Update Advisory  _______________________________________________________________________

 Package name:           python
 Advisory ID:            MDKSA-2004:019
 Date:                   March 9th, 2004

 Affected versions:	 9.0, Corporate Server 2.1
 ______________________________________________________________________

 Problem Description:

 A buffer overflow in python 2.2's getaddrinfo() function was  discovered by Sebastian Schmidt.  If python 2.2 is built without  IPv6 support, an attacker could configure their name server to let a  hostname resolve to a special IPv6 address, which could contain a  memory address where shellcode is placed.  This problem does not  affect python versions prior to 2.2 or versions 2.2.2+, and it also  doesn't exist if IPv6 support is enabled.
 
 The updated packages have been patched to correct the problem.  Thanks  to Sebastian for both the discovery and patch.  _______________________________________________________________________

 References:

  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0150
 ______________________________________________________________________

 Updated Packages:
  
 Corporate Server 2.1:
 879da513052f8a7f22f46b32c8edd064  corporate/2.1/RPMS/libpython2.2-2.2.1-14.4.C21mdk.i586.rpm
 41aabf6642342583667e7f7614b2b1af  corporate/2.1/RPMS/libpython2.2-devel-2.2.1-14.4.C21mdk.i586.rpm
 79afd48bc89cf1dd3580f9b9d210ab08  corporate/2.1/RPMS/python-2.2.1-14.4.C21mdk.i586.rpm
 0e6280b152a9f65677da9ce35bbfc987  corporate/2.1/RPMS/python-base-2.2.1-14.4.C21mdk.i586.rpm
 9e0eaadd3d9e3a15b95acb17fbde064d  corporate/2.1/RPMS/python-docs-2.2.1-14.4.C21mdk.i586.rpm
 f241bc6291f1d5a46e95a2e5fa7e7791  corporate/2.1/RPMS/tkinter-2.2.1-14.4.C21mdk.i586.rpm
 84625a172626fe08ff13bce7b2030641  corporate/2.1/SRPMS/python-2.2.1-14.4.C21mdk.src.rpm

 Corporate Server 2.1/x86_64:
 5b523008885552a89c17197f1091c850  x86_64/corporate/2.1/RPMS/libpython2.2-2.2.1-14.4.C21mdk.x86_64.rpm
 44befc507f68059d14f46c758ed57380  x86_64/corporate/2.1/RPMS/libpython2.2-devel-2.2.1-14.4.C21mdk.x86_64.rpm
 0dfefaf01bb9ac8a5cecc444900be1b2  x86_64/corporate/2.1/RPMS/python-2.2.1-14.4.C21mdk.x86_64.rpm
 cd79821fb454279049337f3bd0885479  x86_64/corporate/2.1/RPMS/python-base-2.2.1-14.4.C21mdk.x86_64.rpm
 955bd9c56f666e19e146feb9da0087b7  x86_64/corporate/2.1/RPMS/python-docs-2.2.1-14.4.C21mdk.x86_64.rpm
 651c007f402400e18c51ac97ae3da84e  x86_64/corporate/2.1/RPMS/tkinter-2.2.1-14.4.C21mdk.x86_64.rpm
 84625a172626fe08ff13bce7b2030641  x86_64/corporate/2.1/SRPMS/python-2.2.1-14.4.C21mdk.src.rpm

 Mandrakelinux 9.0:
 9e8ecf81acdf6e00066b020bead51c4a  9.0/RPMS/libpython2.2-2.2.1-14.4.90mdk.i586.rpm
 990622b91606efd81f8fe2b40c8576f3  9.0/RPMS/libpython2.2-devel-2.2.1-14.4.90mdk.i586.rpm
 b91abc21fad8020cbee047ad1bbf0da8  9.0/RPMS/python-2.2.1-14.4.90mdk.i586.rpm
 a08fb0bad8dafca71f0e08a343c95412  9.0/RPMS/python-base-2.2.1-14.4.90mdk.i586.rpm
 3d2be84aab4e0fab2cb86c9e6bacc25f  9.0/RPMS/python-docs-2.2.1-14.4.90mdk.i586.rpm
 a765ef4de6610a6ea880dc17aeab7636  9.0/RPMS/tkinter-2.2.1-14.4.90mdk.i586.rpm
 1ad8d764521ada5597da5f5083dfd1f6  9.0/SRPMS/python-2.2.1-14.4.90mdk.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrakeUpdate or urpmi.  The verification  of md5 checksums and GPG signatures is performed automatically for you.

 A list of FTP mirrors can be obtained from:

  http://www.mandrakesecure.net/en/ftp.php

 All packages are signed by Mandrakesoft for security.  You can obtain  the GPG public key of the Mandrakelinux Security Team by executing:

  gpg --recv-keys --keyserver www.mandrakesecure.net 0x22458A98

 Please be aware that sometimes it takes the mirrors a few hours to  update.

 You can view other update advisories for Mandrakelinux at:

  http://www.mandrakesecure.net/en/advisories/

 Mandrakesoft has several security-related mailing list services that  anyone can subscribe to.  Information on these lists can be obtained by
 visiting:

  http://www.mandrakesecure.net/en/mlist.php

 If you want to report vulnerabilities, please contact

  security_linux-mandrake.com

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Linux Mandrake Security Team
  <security linux-mandrake.com>
- - -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQFATqJ/mqjQ0CJFipgRAtEtAJkB8w2/Qf1eXYE/eGMBh55sKX/MpwCeI+No
P3uOOAxXMBCVPT+J3QDN41E=
=8F0Z
- - -----END PGP SIGNATURE-----





2.  _______________________________________________________________________

                 Mandrakelinux Security Update Advisory  _______________________________________________________________________

 Package name:           gdk-pixbuf
 Advisory ID:            MDKSA-2004:020
 Date:                   March 10th, 2004

 Affected versions:	 Corporate Server 2.1
 ______________________________________________________________________

 Problem Description:

 A vulnerability in gdk-pixbuf versions before 0.20 exists that could  allow a malicious BMP file to crash the Evolution mail client.  The  updated packages have been patched to use gdk-pixbuf 0.22.0's BMP-  handling code.  _______________________________________________________________________

 References:

  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0111
 ______________________________________________________________________

 Updated Packages:
  
 Corporate Server 2.1:
 307125f2e64e3281a27091e8047cebd2  corporate/2.1/RPMS/gdk-pixbuf-loaders-0.18.0-3.1.C21mdk.i586.rpm
 b6f48329e1651f870e455ee76bba549a  corporate/2.1/RPMS/libgdk-pixbuf-gnomecanvas1-0.18.0-3.1.C21mdk.i586.rpm
 a5b60fb26fba984776edf66148fa4359  corporate/2.1/RPMS/libgdk-pixbuf-xlib2-0.18.0-3.1.C21mdk.i586.rpm
 e0881362b84964b4c4f2d1229cdf99bb  corporate/2.1/RPMS/libgdk-pixbuf2-0.18.0-3.1.C21mdk.i586.rpm
 1b748c4cde03a59eae05a5033384e098  corporate/2.1/RPMS/libgdk-pixbuf2-devel-0.18.0-3.1.C21mdk.i586.rpm
 f9b4e50c5628d83f8ecac8d4a86514f4  corporate/2.1/SRPMS/gdk-pixbuf-0.18.0-3.1.C21mdk.src.rpm

 Corporate Server 2.1/x86_64:
 94f75c462f340cd41fd7502778ffff67  x86_64/corporate/2.1/RPMS/gdk-pixbuf-loaders-0.18.0-3.1.C21mdk.x86_64.rpm
 522747580e73376bc9cdda026d4fb768  x86_64/corporate/2.1/RPMS/libgdk-pixbuf-gnomecanvas1-0.18.0-3.1.C21mdk.x86_64.rpm
 040fd303c41c248270f93b7f832e94f2  x86_64/corporate/2.1/RPMS/libgdk-pixbuf-xlib2-0.18.0-3.1.C21mdk.x86_64.rpm
 0aa13efa52eb4146b1f1ecf33f62107c  x86_64/corporate/2.1/RPMS/libgdk-pixbuf2-0.18.0-3.1.C21mdk.x86_64.rpm
 f7d53a73b37631855e6630070a20f6d9  x86_64/corporate/2.1/RPMS/libgdk-pixbuf2-devel-0.18.0-3.1.C21mdk.x86_64.rpm
 f9b4e50c5628d83f8ecac8d4a86514f4  x86_64/corporate/2.1/SRPMS/gdk-pixbuf-0.18.0-3.1.C21mdk.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrakeUpdate or urpmi.  The verification  of md5 checksums and GPG signatures is performed automatically for you.

 A list of FTP mirrors can be obtained from:

  http://www.mandrakesecure.net/en/ftp.php

 All packages are signed by Mandrakesoft for security.  You can obtain  the GPG public key of the Mandrakelinux Security Team by executing:

  gpg --recv-keys --keyserver www.mandrakesecure.net 0x22458A98

 Please be aware that sometimes it takes the mirrors a few hours to  update.

 You can view other update advisories for Mandrakelinux at:

  http://www.mandrakesecure.net/en/advisories/

 Mandrakesoft has several security-related mailing list services that  anyone can subscribe to.  Information on these lists can be obtained by
 visiting:

  http://www.mandrakesecure.net/en/mlist.php

 If you want to report vulnerabilities, please contact

  security_linux-mandrake.com

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Linux Mandrake Security Team
  <security linux-mandrake.com>
- - -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQFAT0FzmqjQ0CJFipgRAs5GAJ9xpQ3g7nJwy91h8/bOmecZSKzl8ACeIRMg
+ILA2zEr2x6iqNaio1GhM00=
=nfCU
- - -----END PGP SIGNATURE-----





3.

 _______________________________________________________________________

                 Mandrakelinux Security Update Advisory  _______________________________________________________________________

 Package name:           mozilla
 Advisory ID:            MDKSA-2004:021
 Date:                   March 10th, 2004

 Affected versions:	 9.2
 ______________________________________________________________________

 Problem Description:

 A number of vulnerabilities were discovered in Mozilla 1.4:
 
 A malicious website could gain access to a user's authentication  credentials to a proxy server.
 
 Script.prototype.freeze/thaw could allow an attacker to run  arbitrary code on your computer.
 
 A vulnerability was also discovered in the NSS security suite which  ships with Mozilla.  The S/MIME implementation would allow remote  attackers to cause a Denial of Service and possibly execute arbitrary  code via an S/MIME email message containing certain unexpected ASN.1  constructs, which was demonstrated using the NISCC test suite.  NSS  version 3.9 corrects these problems and has been included in this  package (which shipped with NSS 3.8).
 
 Finally, Corsaire discovered that a number of HTTP user agents  contained a flaw in how they handle cookies.  This flaw could  allow an attacker to avoid the path restrictions specified by a  cookie's originator.  According to their advisory:
 
 "The cookie specifications detail a path argument that can be used to  restrict the areas of a host that will be exposed to a cookie.  By  using standard traversal techniques this functionality can be  subverted, potentially exposing the cookie to scrutiny and use in  further attacks."
 
 As well, a bug with Mozilla and Finnish keyboards has been corrected.
 
 The updated packages are patched to correct these vulnerabilities.  _______________________________________________________________________

 References:

  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0594
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0564
  http://www.kb.cert.org/vuls/id/428230
  http://bugzilla.mozilla.org/show_bug.cgi?id=220122
  http://bugzilla.mozilla.org/show_bug.cgi?id=221526
  http://bugzilla.mozilla.org/show_bug.cgi?id=213012
  http://www.uniras.gov.uk/vuls/2003/006489/smime.htm
 ______________________________________________________________________

 Updated Packages:
  
 Mandrakelinux 9.2:
 c38912bc7ec63477a99d54ca9d0da6a2  9.2/RPMS/libnspr4-1.4-13.2.92mdk.i586.rpm
 0389815c9e7dbe3e10fc0c26375bb3b1  9.2/RPMS/libnspr4-devel-1.4-13.2.92mdk.i586.rpm
 7646ec4e16c2c9358dcc98ebabf0a3b9  9.2/RPMS/libnss3-1.4-13.2.92mdk.i586.rpm
 63a527da7c61047ba425606e94ecd3be  9.2/RPMS/libnss3-devel-1.4-13.2.92mdk.i586.rpm
 e8bbe96aeb65cfab46ffe2aa354d902f  9.2/RPMS/mozilla-1.4-13.2.92mdk.i586.rpm
 dfa83fa168d574770a8799c581e18335  9.2/RPMS/mozilla-devel-1.4-13.2.92mdk.i586.rpm
 bb2b9c485b566b219749366c62500721  9.2/RPMS/mozilla-dom-inspector-1.4-13.2.92mdk.i586.rpm
 ad11d0c4800bd95452d00a8ebaf5d98b  9.2/RPMS/mozilla-enigmail-1.4-13.2.92mdk.i586.rpm
 5fc51520069a0eba9f5a53dc93ba4eab  9.2/RPMS/mozilla-enigmime-1.4-13.2.92mdk.i586.rpm
 54bc668f3881fc320ee5d7c5a47cf691  9.2/RPMS/mozilla-irc-1.4-13.2.92mdk.i586.rpm
 adee5ba7d06873222b272fd5cb4002a6  9.2/RPMS/mozilla-js-debugger-1.4-13.2.92mdk.i586.rpm
 8ae4e6c230046102f6fb3718ea89a44c  9.2/RPMS/mozilla-mail-1.4-13.2.92mdk.i586.rpm
 1e1d178eb6e1b712ed4172fbcb9645a8  9.2/RPMS/mozilla-spellchecker-1.4-13.2.92mdk.i586.rpm
 18dcce51283517af9f1d280e4cc671b2  9.2/SRPMS/mozilla-1.4-13.2.92mdk.src.rpm

 Mandrakelinux 9.2/AMD64:
 5452e154db36916d4e0710001a8c1bf4  amd64/9.2/RPMS/lib64nspr4-1.4-13.2.92mdk.amd64.rpm
 0dd5edee872e319e43b055348b439eb3  amd64/9.2/RPMS/lib64nspr4-devel-1.4-13.2.92mdk.amd64.rpm
 18d23cac7a7eb9a45c40e484a42665fb  amd64/9.2/RPMS/lib64nss3-1.4-13.2.92mdk.amd64.rpm
 96e5b7a0bffa68a8a26f0fc0c33179bb  amd64/9.2/RPMS/lib64nss3-devel-1.4-13.2.92mdk.amd64.rpm
 8f86da0aafcf57ce795935354bfe1284  amd64/9.2/RPMS/mozilla-1.4-13.2.92mdk.amd64.rpm
 4294cda22a8639804d64961b5232217b  amd64/9.2/RPMS/mozilla-devel-1.4-13.2.92mdk.amd64.rpm
 fe1d7bbfcff75ed48276b125e5e07150  amd64/9.2/RPMS/mozilla-dom-inspector-1.4-13.2.92mdk.amd64.rpm
 0389b9624511d9bfa8f9873c64e78819  amd64/9.2/RPMS/mozilla-enigmail-1.4-13.2.92mdk.amd64.rpm
 f65b2fdf67002011cf138a7fc2a15048  amd64/9.2/RPMS/mozilla-enigmime-1.4-13.2.92mdk.amd64.rpm
 3908bf0f64951a31d0b0d13fbed460f1  amd64/9.2/RPMS/mozilla-irc-1.4-13.2.92mdk.amd64.rpm
 e75e31efbc498cc11851c75c44233e93  amd64/9.2/RPMS/mozilla-js-debugger-1.4-13.2.92mdk.amd64.rpm
 dee877e87556e579d54668a1e3a0bbf2  amd64/9.2/RPMS/mozilla-mail-1.4-13.2.92mdk.amd64.rpm
 09155dea70b8b6cf7afdd13a27dede18  amd64/9.2/RPMS/mozilla-spellchecker-1.4-13.2.92mdk.amd64.rpm
 18dcce51283517af9f1d280e4cc671b2  amd64/9.2/SRPMS/mozilla-1.4-13.2.92mdk.src.rpm
 _______________________________________________________________________

 Bug IDs fixed (see http://bugs.mandrakelinux.com for more information):

  376 - mozilla and finnish keyboard give pipe  _______________________________________________________________________

 To upgrade automatically use MandrakeUpdate or urpmi.  The verification  of md5 checksums and GPG signatures is performed automatically for you.

 A list of FTP mirrors can be obtained from:

  http://www.mandrakesecure.net/en/ftp.php

 All packages are signed by Mandrakesoft for security.  You can obtain  the GPG public key of the Mandrakelinux Security Team by executing:

  gpg --recv-keys --keyserver www.mandrakesecure.net 0x22458A98

 Please be aware that sometimes it takes the mirrors a few hours to  update.

 You can view other update advisories for Mandrakelinux at:

  http://www.mandrakesecure.net/en/advisories/

 Mandrakesoft has several security-related mailing list services that  anyone can subscribe to.  Information on these lists can be obtained by
 visiting:

  http://www.mandrakesecure.net/en/mlist.php

 If you want to report vulnerabilities, please contact

  security_linux-mandrake.com

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Linux Mandrake Security Team
  <security linux-mandrake.com>
- - -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQFAT0IdmqjQ0CJFipgRAiHpAJ4jvYpnAFf5x3VM8hkqcetxlBgBnACgxtj9
SaERIMikLF67jQm9MDX1ZDA=
=bKxo
- - -----END PGP SIGNATURE-----




4. 
 _______________________________________________________________________

                 Mandrakelinux Security Update Advisory  _______________________________________________________________________

 Package name:           kdelibs
 Advisory ID:            MDKSA-2004:022
 Date:                   March 10th, 2004

 Affected versions:	 9.1
 ______________________________________________________________________

 Problem Description:

 Corsaire discovered that a number of HTTP user agents contained a flaw  in how they handle cookies.  This flaw could allow an attacker to 
 avoid the path restrictions specified by a cookie's originator.  According to their advisory:
 
 "The cookie specifications detail a path argument that can be used to  restrict the areas of a host that will be exposed to a cookie.  By  using standard traversal techniques this functionality can be  subverted, potentially exposing the cookie to scrutiny and use in  further attacks."
 
 This issue was fixed in KDE 3.1.3; the updated packages are patched to  protect against this vulnerability.  _______________________________________________________________________

 References:

  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0592
 ______________________________________________________________________

 Updated Packages:
  
 Mandrakelinux 9.1:
 14bd813799d4891d520d1f8e7a525476  9.1/RPMS/kdelibs-3.1-58.3.91mdk.i586.rpm
 924fc0bec108f94236c97d640774f8c5  9.1/RPMS/kdelibs-common-3.1-58.3.91mdk.i586.rpm
 28bfd2897fb91fadcba14864c5ab85fa  9.1/RPMS/kdelibs-devel-3.1-58.3.91mdk.i586.rpm
 a02c4dc06c2122241fe2e4abc77e1c67  9.1/RPMS/kdelibs-static-devel-3.1-58.3.91mdk.i586.rpm
 00230239edea7418aa01897d23f5dd07  9.1/SRPMS/kdelibs-3.1-58.3.91mdk.src.rpm

 Mandrakelinux 9.1/PPC:
 7f42212e4e4198af1460865f585a15cf  ppc/9.1/RPMS/kdelibs-3.1-58.3.91mdk.ppc.rpm
 d3db934d1ad9b0e9e04e9fab43b7f0c9  ppc/9.1/RPMS/kdelibs-common-3.1-58.3.91mdk.ppc.rpm
 71b0d44138e874d8089298594a7e30a8  ppc/9.1/RPMS/kdelibs-devel-3.1-58.3.91mdk.ppc.rpm
 318a821a280404541a929b8d3d55339e  ppc/9.1/RPMS/kdelibs-static-devel-3.1-58.3.91mdk.ppc.rpm
 00230239edea7418aa01897d23f5dd07  ppc/9.1/SRPMS/kdelibs-3.1-58.3.91mdk.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrakeUpdate or urpmi.  The verification  of md5 checksums and GPG signatures is performed automatically for you.

 A list of FTP mirrors can be obtained from:

  http://www.mandrakesecure.net/en/ftp.php

 All packages are signed by Mandrakesoft for security.  You can obtain  the GPG public key of the Mandrakelinux Security Team by executing:

  gpg --recv-keys --keyserver www.mandrakesecure.net 0x22458A98

 Please be aware that sometimes it takes the mirrors a few hours to  update.

 You can view other update advisories for Mandrakelinux at:

  http://www.mandrakesecure.net/en/advisories/

 Mandrakesoft has several security-related mailing list services that  anyone can subscribe to.  Information on these lists can be obtained by
 visiting:

  http://www.mandrakesecure.net/en/mlist.php

 If you want to report vulnerabilities, please contact

  security_linux-mandrake.com

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Linux Mandrake Security Team
  <security linux-mandrake.com>
- - -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQFAT0RcmqjQ0CJFipgRAobUAJ9w86MNjUwRhI/Cg8acwebhvR9OEQCfVJ8y
rLX1L+CyBNpYfxbgzpU+ztM=
=/L0q
- - -----END PGP SIGNATURE-----

- - ----------------------------------------------------------------------------------

For additional information or assistance, please contact the HELP Desk by 
telephone or Not Protectively Marked information may be sent via 
EMail to: uniras@xxxxxxxxxxxx

Office Hours:
Mon - Fri: 08:30 - 17:00 Hrs
Tel: +44 (0) 20 7821 1330 Ext 4511
Fax: +44 (0) 20 7821 1686

Outside of Office Hours:
On Call Duty Officer:
Tel: +44 (0) 20 7821 1330 and follow the prompts

- - ----------------------------------------------------------------------------------
UNIRAS wishes to acknowledge the contributions of Mandrake for the information 
contained in this Briefing. 
- - ----------------------------------------------------------------------------------
This Briefing contains the information released by the original author. Some 
of the information may have changed since it was released. If the vulnerability 
affects you, it may be prudent to retrieve the advisory from the canonical site 
to ensure that you receive the most current information concerning that problem.

Reference to any specific commercial product, process, or service by trade 
name, trademark manufacturer, or otherwise, does not constitute or imply 
its endorsement, recommendation, or favouring by UNIRAS or NISCC.  The views 
and opinions of authors expressed within this notice shall not be used for 
advertising or product endorsement purposes.

Neither UNIRAS or NISCC shall also accept responsibility for any errors 
or omissions contained within this briefing notice. In particular, they shall 
not be liable for any loss or damage whatsoever, arising from or in connection 
with the usage of information contained within this notice.

UNIRAS is a member of the Forum of Incident Response and Security Teams (FIRST) 
and has contacts with other international Incident Response Teams (IRTs) in 
order to foster cooperation and coordination in incident prevention, to prompt 
rapid reaction to incidents, and to promote information sharing amongst its 
members and the community at large. 
- - ----------------------------------------------------------------------------------
<End of UNIRAS Briefing>


-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0

iQCVAwUBQFB7dIpao72zK539AQHfGgQAt77u6va44YhE2YrP+aiBbn4D00adxTv4
kjdFWONfqvGf8DwmHYwYJtXg469NtMJTxOvs+EYe7p9WcFMEw7aYQLbK7kiKIcxu
bQ3tvVK2ikODNjPwfGLwRm5XZCR49JQ+nRt3Xll6raFHx3R2ihxiLSa2hS+jNSIM
W4rdz6nXnL0=
=qVB2
-----END PGP SIGNATURE-----