Section: .. / 0908-advisories /
| /// File Name: |
07.28.09-1.txt |
Description:
|
iDefense Security Advisory 07.28.09 - Remote exploitation of a use after free vulnerability in Microsoft Corp.'s Internet Explorer could allow an attacker to execute arbitrary code with the privileges of the current user. iDefense has confirmed the existence of this vulnerability in Internet Explorer versions 6, 7, and 8. Internet Explorer 5 does not appear to be vulnerable.
| | Author: | Peter Vreugdenhil | | Homepage: | http://www.idefense.com/ | | File Size: | 4253 | | Related CVE(s): | CVE-2009-1917 | | Last Modified: | Aug 10 19:23:22 2009 |
| MD5 Checksum: | 524e8aacb563b6b14261cc1130402c23 |
|
| /// File Name: |
07.28.09-2.txt |
Description:
|
iDefense Security Advisory 07.28.09 - Remote exploitation of a logic flaw vulnerability in Microsoft Corp.'s ATL/MFC ActiveX code, as included in various vendors' ActiveX controls, could allow attackers to bypass ActiveX security mechanisms. iDefense has confirmed the existence of this vulnerability inside Microsoft's ATL and MFC. Although later versions of the ATL/MFC are less vulnerable, certain conditions can trigger the same exploit pattern.
| | Author: | Ryan Smith | | Homepage: | http://www.idefense.com/ | | File Size: | 5679 | | Related CVE(s): | CVE-2009-2493 | | Last Modified: | Aug 23 11:34:22 2009 |
| MD5 Checksum: | 40d376950c664757f38446a05c68a463 |
|
| /// File Name: |
07.28.09-3.txt |
Description:
|
iDefense Security Advisory 07.28.09 - Remote exploitation of an information disclosure vulnerability in Microsoft's ATL/MFC ActiveX template, as included in various vendor's ActiveX controls, allows attackers to read memory contents within Internet Explorer. iDefense has confirmed the existence of this vulnerability inside Microsoft's ATL version 9.0. Any source code compiled with these libraries may also be vulnerable. Previous versions may also be affected.
| | Author: | Ryan Smith | | Homepage: | http://www.idefense.com/ | | File Size: | 4802 | | Related CVE(s): | CVE-2009-2495 | | Last Modified: | Aug 23 11:35:59 2009 |
| MD5 Checksum: | 5bf9a71f2fbcad1acd7f63844ecaba3e |
|
| /// File Name: |
07.30.09-1.txt |
Description:
|
iDefense Security Advisory 07.30.09 - Remote exploitation of an invalid Loader object reference vulnerability in Adobe Systems Inc.'s Flash Player could allow an attacker to execute arbitrary code with the privileges of the current user. iDefense has confirmed the existence of this vulnerability in latest Flash Player version 9.0.124.0. Previous versions may also be affected.
| | Homepage: | http://www.idefense.com/ | | File Size: | 4657 | | Related CVE(s): | CVE-2009-1864 | | Last Modified: | Aug 10 18:51:57 2009 |
| MD5 Checksum: | 4ce2d55fa05c31aff41dbf6196dac6c8 |
|
| /// File Name: |
08.04.09-1.txt |
Description:
|
iDefense Security Advisory 08.04.09 - Remote exploitation of an integer overflow vulnerability in Sun Microsystems Inc.'s Java Runtime Environment (JRE) could allow an attacker to execute arbitrary code with the privileges of the current user.iDefense has confirmed the existence of this vulnerability in Sun Microsystems Inc.'s JRE version 1.6.0_13 for Windows and Linux. This vulnerability is different than the two previously reported iDefense Exclusives in the Pack200 code.
| | Author: | regenrecht | | Homepage: | http://www.idefense.com/ | | File Size: | 4370 | | Last Modified: | Aug 7 11:37:02 2009 |
| MD5 Checksum: | 7d01d25b49238d9efcafda7bb4951190 |
|
| /// File Name: |
08.04.09-2.txt |
Description:
|
iDefense Security Advisory 08.04.09 - Local exploitation of an arbitrary file creation vulnerability in IBM Corp.'s Advanced Interactive eXecutive (AIX) Operating System allows attackers to execute arbitrary code with super-user privileges. iDefense has confirmed the existence of this vulnerability in IBM Corp.'s AIX version 5.3. Other versions may also be affected.
| | Author: | Karol Wiesek | | Homepage: | http://www.idefense.com/ | | File Size: | 3087 | | Last Modified: | Aug 7 11:54:13 2009 |
| MD5 Checksum: | 8147cac303fc662744bbe8d28f399b65 |
|
| /// File Name: |
08.06.09-1.txt |
Description:
|
iDefense Security Advisory 08.06.09 - Remote exploitation of a heap overflow vulnerability in Adobe Systems Inc's Flash Player could allow an attacker to execute arbitrary code with the privileges of the current user. iDefense confirmed the existence of this vulnerability in Flash Player 10.0.22.87. Other versions may also be affected.
| | Author: | Jun Mao | | Homepage: | http://www.idefense.com/ | | File Size: | 3069 | | Related CVE(s): | CVE-2009-1868 | | Last Modified: | Aug 7 12:34:38 2009 |
| MD5 Checksum: | 61d265bdddf24bbfd8d06a6333745741 |
|
| /// File Name: |
08.11.09-1.txt |
Description:
|
iDefense Security Advisory 08.11.09 - Remote exploitation of a stack based buffer overflow vulnerability in Microsoft Corp.'s Office Web Components 2000 could allow an attacker to execute arbitrary code with the privileges of the logged on user. When instantiating a Spreadsheet object, it is possible to pass the object a parameter that refers to an Excel file that will be retrieved and then loaded. By using a long string for the parameter, it is possible to case a stack based buffer overflow. iDefense has confirmed the existence of this vulnerability in Microsoft Office XP Service Pack 3.
| | Author: | Sean Larsson | | Homepage: | http://www.idefense.com/ | | File Size: | 4013 | | Related CVE(s): | CVE-2009-1534 | | Last Modified: | Aug 23 11:32:27 2009 |
| MD5 Checksum: | f12ecbef48e67fe60f448c1b26e409c9 |
|
| /// File Name: |
08.11.09-2.txt |
Description:
|
iDefense Security Advisory 08.11.09 - Remote exploitation of a type confusion vulnerability in Microsoft Corp.'s ATL/MFC ActiveX code as included in various vendors' ActiveX controls, could allow an attacker to execute arbitrary code within Internet Explorer (IE). iDefense has confirmed the existence of this vulnerability inside Microsoft' ATL and MFC. This vulnerability appears to be limited to MFC version 3.0. Any source code compiled with these libraries may also be vulnerable.
| | Author: | Ryan Smith | | Homepage: | http://www.idefense.com/ | | File Size: | 4513 | | Related CVE(s): | CVE-2009-2494 | | Last Modified: | Aug 23 11:39:29 2009 |
| MD5 Checksum: | 17e2b530f31a104d8bcd89ebc27f7d4f |
|
| /// File Name: |
08.25.09-1.txt |
Description:
|
iDefense Security Advisory 08.11.09 - Remote exploitation of an integer overflow vulnerability in Autonomy's KeyView SDK allows attackers to execute arbitrary code with the privileges of the targeted application. The vulnerability occurs when parsing a Shared String Table (SST) record inside of an Excel file. This record is used to hold a table of strings that are used inside of the document. One of the fields in this record is a 32-bit integer that represents the number of strings in the table. This value is used in a calculation that controls the number of bytes to allocate for a dynamic heap buffer. The value is not properly sanitized, which leads to an integer overflow in the calculation. This results in a heap based buffer overflow vulnerability.
| | Author: | Joshua J. Drake | | Homepage: | http://www.idefense.com/ | | File Size: | 5648 | | Last Modified: | Aug 25 19:44:13 2009 |
| MD5 Checksum: | dbdb90ef3b324101021c04329f6a8e9e |
|
| /// File Name: |
actionscript-overflow.txt |
Description:
|
Adobe Flash Player has an integer overflow that exists in the AVM2 abcFile parser code which handles the intrf_count value of the instance_info structure.
| | Author: | Roee Hay | | File Size: | 8788 | | Related CVE(s): | CVE-2009-1869 | | Last Modified: | Aug 5 17:06:31 2009 |
| MD5 Checksum: | c97ab6cd4efe3c255ca6366614aaa159 |
|
| /// File Name: |
AST-2009-004.txt |
Description:
|
Asterisk Project Security Advisory - An attacker can cause Asterisk to crash remotely by sending malformed RTP text frames. While the attacker can cause Asterisk to crash, he cannot execute arbitrary remote code with this exploit.
| | Author: | Mark Michelson | | Homepage: | http://www.asterisk.org/security | | File Size: | 8396 | | Last Modified: | Aug 5 22:41:43 2009 |
| MD5 Checksum: | 01dbbb6d626e8bb48f5d6eb853040a82 |
|
| /// File Name: |
AST-2009-005.txt |
Description:
|
Asterisk Project Security Advisory - On certain implementations of libc, the scanf family of functions uses an unbounded amount of stack memory to repeatedly allocate string buffers prior to conversion to the target type. Coupled with Asterisk's allocation of thread stack sizes that are smaller than the default, an attacker may exhaust stack memory in the SIP stack network thread by presenting excessively long numeric strings in various fields.
| | Author: | Tilghman Lesher | | Homepage: | http://www.asterisk.org/security | | File Size: | 11933 | | Related CVE(s): | CVE-2009-2726 | | Last Modified: | Aug 11 18:26:56 2009 |
| MD5 Checksum: | d599b2be22e611b0ac0c869fe1d6a39e |
|
| /// File Name: |
Bkis-11-2009.txt |
Description:
|
ProShow Gold suffers from buffer overflow vulnerabilities.
| | Author: | SVRT | | Homepage: | http://security.bkis.vn/ | | File Size: | 1666 | | Last Modified: | Aug 23 11:38:19 2009 |
| MD5 Checksum: | b137de1f913b14560b73e05ab365953f |
|
| /// File Name: |
browser-dos.txt |
Description:
|
A priorly discovered denial of service vulnerability discovered in Mozilla Firefox also appears to affect Microsoft Internet Explorer and Google Chrome.
| | Author: | MustLive | | Related Exploit: | firefox305-crash.txt | | File Size: | 1988 | | Last Modified: | Aug 23 12:02:50 2009 |
| MD5 Checksum: | 356ed8a441ccd1edf7d540342e22ea17 |
|
| /// File Name: |
CA20090806-01.txt |
Description:
|
CA's technical support is alerting customers to a security risk with Data Transport Services. A vulnerability exists that can allow a remote attacker to execute arbitrary code. CA has issued patches to address the issue.
| | Author: | Kevin Kotas | | File Size: | 3813 | | Related CVE(s): | CVE-2009-2026 | | Last Modified: | Aug 10 19:31:53 2009 |
| MD5 Checksum: | 833412a7d4dc6a537d0fb59a6e8ee735 |
|
| /// File Name: |
CA20090806-02.txt |
Description:
|
CA's technical support is alerting customers to a security risk with Unicenter Asset Portfolio Management, Unicenter Desktop and Server Management, and Unicenter Patch Management. The release of Tomcat as included with the products is potentially susceptible to a cross-site scripting vulnerability. CA has issued a solution to address the issue.
| | Author: | Kevin Kotas | | File Size: | 2483 | | Related CVE(s): | CVE-2008-1232 | | Last Modified: | Aug 10 19:26:08 2009 |
| MD5 Checksum: | 460103a9ff20f9d7c0eb65ac01a6ccf3 |
|
| /// File Name: |
CA20090818-01.txt |
Description:
|
CA's technical support is alerting customers to a security risk with CA Host-Based Intrusion Prevention System. A vulnerability exists that can allow a remote attacker to cause a denial of service. CA has issued a patch to address the vulnerability.
| | Author: | Kevin Kotas | | File Size: | 2591 | | Related CVE(s): | CVE-2009-2740 | | Last Modified: | Aug 18 18:20:51 2009 |
| MD5 Checksum: | 35741fa852c5c838affd2ff0c3557850 |
|
| /// File Name: |
CA20090818-02.txt |
Description:
|
CA's technical support is alerting customers to a security risk with CA Internet Security Suite. A vulnerability exists that can allow a local attacker to cause a denial of service. CA has issued updates to address the vulnerability.
| | Author: | Kevin Kotas | | File Size: | 2616 | | Related CVE(s): | CVE-2009-0682 | | Last Modified: | Aug 18 18:22:13 2009 |
| MD5 Checksum: | 686a7b6d7ed106ad217096a57596156a |
|
| /// File Name: |
cisco-sa-20090818-bgp.txt |
Description:
|
Cisco Security Advisory - Cisco IOS XR will reset a Border Gateway Protocol (BGP) peering session when receiving a specific invalid BGP update. The vulnerability manifests when a BGP peer announces a prefix with a specific invalid attribute. On receipt of this prefix, the Cisco IOS XR device will restart the peering session by sending a notification. The peering session will flap until the sender stops sending the invalid/corrupt update.
| | Homepage: | http://www.cisco.com/ | | File Size: | 19594 | | Related CVE(s): | CVE-2009-2055 | | Last Modified: | Aug 18 15:56:04 2009 |
| MD5 Checksum: | a4d2e78d790342ef196868828e52e6dc |
|
| /// File Name: |
cisco-sa-20090819-fwsm.txt |
Description:
|
Cisco Security Advisory - A vulnerability exists in the Cisco Firewall Services Module (FWSM) for the Catalyst 6500 Series Switches and Cisco 7600 Series Routers. The vulnerability may cause the FWSM to stop forwarding traffic and may be triggered while processing multiple, crafted ICMP messages.
| | Homepage: | http://www.cisco.com/ | | File Size: | 19698 | | Related CVE(s): | CVE-2009-0638 | | Last Modified: | Aug 23 11:52:12 2009 |
| MD5 Checksum: | 12ae86b826f006708a2f1d7e0bb42247 |
|
| /// File Name: |
cisco-sa-20090826-cucm.txt |
Description:
|
Cisco Security Advisory - Cisco Unified Communications Manager (formerly CallManager) contains multiple denial of service (DoS) vulnerabilities that if exploited could cause an interruption to voice services. The Session Initiation Protocol (SIP) and Skinny Client Control Protocol (SCCP) services are affected by these vulnerabilities.
| | Homepage: | http://www.cisco.com/ | | File Size: | 18230 | | Related CVE(s): | CVE-2009-2050, CVE-2009-2051, CVE-2009-2052, CVE-2009-2053, CVE-2009-2054 | | Last Modified: | Aug 26 17:28:29 2009 |
| MD5 Checksum: | 3ab6b5803ce9b295bf5323a716d03e8f |
|
| /// File Name: |
CORE-2009-0727.txt |
Description:
|
Core Security Technologies Advisory - A remote arbitrary-code-execution vulnerability has been found in Libpurple (used by Pidgin and Adium instant messaging clients, among others), which can be triggered by a remote attacker by sending a specially crafted MSNSLP packet with invalid data to the client through the MSN server. No victim interaction is required, and the attacker is not required to be in the victim's buddy list (under default configuration). Libpurple versions 2.5.8 and below are affected.
| | Homepage: | http://www.coresecurity.com/corelabs/ | | File Size: | 10757 | | Related CVE(s): | CVE-2009-2694 | | Last Modified: | Aug 18 18:32:27 2009 |
| MD5 Checksum: | 2fde839930feef8f1f74e04404076031 |
|
| /// File Name: |
dsa-1833-2.txt |
Description:
|
Debian Security Advisory 1833-2 - The previous dhcp3 update (DSA-1833-1) did not properly apply the required changes to the stable (lenny) version. The old stable (etch) version is not affected by this problem.
| | Homepage: | http://www.debian.org/security | | File Size: | 17428 | | Related CVE(s): | CVE-2009-0692, CVE-2009-1892 | | Last Modified: | Aug 25 18:28:19 2009 |
| MD5 Checksum: | 169663c7325066f7c986a805e501aaab |
|
| /// File Name: |
dsa-1843-2.txt |
Description:
|
Debian Security Advisory 1843-2 - It was discovered that squid3, a high-performance proxy caching server for web clients, is prone to several denial of service attacks. Due to incorrect bounds checking and insufficient validation while processing response and request data an attacker is able to crash the squid daemon via crafted requests or responses.
| | Homepage: | http://www.debian.org/security | | File Size: | 9270 | | Related CVE(s): | CVE-2009-2622, CVE-2009-2621 | | Last Modified: | Aug 10 21:58:51 2009 |
| MD5 Checksum: | b505f3a3dfc19e2e6a98d5bf8cb59675 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
