Critical Vulnerabilities

• Current Network Blocks

• Critical Vulnerabilities

• Bulletin Archives

• Viruses

• Hoaxes/Phishing

• Policy on Computing

• Incident Reporting

• The Basics

• New Users

• Users

• Sysadmins

• Webmasters

• Gridmasters

• Security Checklist

• Connectivity Checklist

• Manuals and Websites

• How-To Guides

• Maillists and Archives

• Document Index

• OS Info

• Common Attack Methods

• Register Sysadmin

• Register Node

• Verify Registration

• Tools

• Training

• Request Forms

• TIssue DB

• User Intro

• Personal Certs

• Host/Serv Certs

• Sign/Encrypt Email

• Web and SSL

• Grid Use

• PKI Policy

• Advanced Topics

• Sysadmin Round Table

• FCIRT
• GCSC
• MAC
  

What to do about a Critical Vulnerability

The following vulnerabilities have been declared to be so severe that mitigation measures are MANDATORY for network connection at Fermilab. Mitigations are in order of preference:

1. Remove, reconfigure, or disable the affected software
2. Patch the affected software to a current enough level to fix the vulnerability.
3. Remove the machine from the Fermilab network
4. After you fix your vulnerabilities, remember to update the remediation actions taken in TIssue to lift the network block

In exceptional circumstances, one can request permission to restrict access to the host machine to a tightly controlled list of inbound connections.

You can also scan yourself using the site Nessus scanner.

List of Critical Vulnerabilities

• May 25, 2007: Vulnerability in SRMWATCH
• April 4, 2007: Vulnerability in MIT Kerberos Telnet server
• April 2, 2007: Vulnerability in Windows Animated Cursor Handling (935423)
• 2007-Jan-12: Critical Vulnerability: MS07-004 (929969)
• 2006-Dec-23: Critical Vulnerability: Symantec Antivirus 10.0.x & 10.1.x
• 2006-Oct-23: Critical Vulnerability: OpenPBS/Torque
• 2006-Aug-09: Critical Vulnerability: MS06-040 (921883) MS Server Service
• 2006-May-16: RealVNC 4.1.1 and earlier Authentication Bypass
• 2006-Jan-05: Critical Vulnerability: MS06-01 (912840) MS Windows WMF Handling
• 2006-Jan-01: Strong Authentication Violation: Password enabled SSH
• 2005-Oct-14: Critical Vulnerability: MS05-051 MS Windows MSDTC and TIP
• 2005-Oct-13: Critical Vulnerability: MS05-047 MS Windows Plug and Play (MS05-039 Update)
• 2005-Sep-15: TWiki - Enterprise Collaboration Platform
• 2005-Aug-12: MS05-039 Microsoft Windows Plug-n-Play (899588)
• 2005-Aug-11: Backup Exec Remote Agent
• 2005-Jul-1: Backup Exec Remote Agent (and Server)
• 2005-Jun-9: Microsoft SQL Server and MSDE
• 2005-Feb-8: MS 885250 / 890047 / 888113 / 873333 / 873352
• 2004-Oct-12: Open X Servers.
• 2004-Sep-21: MS WordPerfect Converter ( MS04-027 )
• 2004-Sep-21: HP Web JetAdmin ( HPSBPI01078 )
• 2004-Sep-21: Image Libraries - Linux ( RHSA-2004:447, RHSA-2004:465, RHSA-2004:466 )
• 2004-Sep-21: Image Libraries - Windows ( MS04-028 )
• 2004-Sep-09: OS X Combination vulnerability ( 2004-09-07 )
• 2004-Aug-11: mod_ssl for Apache ( VU#303448 )
• 2004-Jul-30: Internet Explorer ( MS04-025 )
• 2004-Jul-20: Various Windows ( MS04-021, -022, -023, -024 )
• 2004-May-24: CVS Server ( CVS remote vulnerability )
• 2004-Apr-28: Microsoft LSASS ( MS04-011 )
• 2004-Apr-22: Microsoft SSL ( MS04-011 )
• 2004-Feb-12: Microsoft ASN.1 ( MS04-007 )
• 2003-Dec-04: rsync heap overflow ( Secunia advisory SA10353 )
• 2003-Aug-21: Microsoft RPC Buffer Overflow ( MS03-039 )
• 2003-Jul-18: Microsoft RPC Buffer Overflow ( MS03-026 ) for servers.
• 2003-Mar-19: Microsoft IIS5 / WebDAV / NTDLL vulnerability ( MS03-007 )