---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secunia_vacancies/ ---------------------------------------------------------------------- TITLE: SGI Advanced Linux Environment Multiple Updates SECUNIA ADVISORY ID: SA15277 VERIFY ADVISORY: http://secunia.com/advisories/15277/ CRITICAL: Highly critical IMPACT: Unknown, Security Bypass, Cross Site Scripting, Spoofing, Manipulation of data, Exposure of system information, Exposure of sensitive information, Privilege escalation, DoS, System access WHERE: >From remote OPERATING SYSTEM: SGI Advanced Linux Environment 3 http://secunia.com/product/4493/ DESCRIPTION: SGI has issued a patch for SGI Advanced Linux Environment. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to gain knowledge of sensitive information and conduct certain actions on a vulnerable system with escalated privileges, and by malicious people to cause a DoS (Denial of Service), conduct spoofing and cross-site scripting attacks, disclose sensitive and system information, bypass certain security restrictions, trick users into downloading malicious files, and compromise a vulnerable system. For more information: SA12956 SA13023 SA13129 SA13258 SA13599 SA14017 SA14160 SA14462 SA14163 SA14407 SA14551 SA14684 SA14792 SA14821 SA14912 SA14976 SA14992 SOLUTION: Apply patch 10168 for SGI ProPack 3 Service Pack 5. http://support.sgi.com/ ORIGINAL ADVISORY: ftp://patches.sgi.com/support/free/security/advisories/20050501-01-U.asc OTHER REFERENCES: SA12956: http://secunia.com/advisories/12956/ SA13023: http://secunia.com/advisories/13023/ SA13129: http://secunia.com/advisories/13129/ SA13258: http://secunia.com/advisories/13258/ SA13599: http://secunia.com/advisories/13599/ SA14017: http://secunia.com/advisories/14017/ SA14160: http://secunia.com/advisories/14160/ SA14462: http://secunia.com/advisories/14462/ SA14163: http://secunia.com/advisories/14163/ SA14407: http://secunia.com/advisories/14407/ SA14551: http://secunia.com/advisories/14551/ SA14684: http://secunia.com/advisories/14684/ SA14792: http://secunia.com/advisories/14792/ SA14821: http://secunia.com/advisories/14821/ SA14912: http://secunia.com/advisories/14912/ SA14976: http://secunia.com/advisories/14976/ SA14992: http://secunia.com/advisories/14992/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------