Ad: Manage updates with the Download App
ie8 fix

Spyware, viruses, & security forum: VULNERABILITIES / FIXES - July 30, 2010

by: Carol~ July 30, 2010 2:48 AM PDT

Like this

0 people like this thread

Staff pick

VULNERABILITIES / FIXES - July 30, 2010

by Carol~ Moderator - 7/30/10 2:48 AM

Debian update for openldap

Release Date : 2010-07-30

Criticality level : Less critical
Impact : DoS
System access
Where : From local network
Solution Status : Vendor Patch

Operating System: Debian GNU/Linux 5.0

Description:
Debian has issued an update for openldap. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.

Solution:
Apply updated packages.

Original Advisory:
DSA-2077-1:
http://lists.debian.org/debian-security-announce/2010/msg00122.html

http://secunia.com/advisories/40770/


Reply
Report offensive post
Email to friend

OpenConnect SSL Hostname Verification Security Bypass

by Carol~ Moderator - 7/30/10 2:49 AM

In Reply to: VULNERABILITIES / FIXES - July 30, 2010 by Carol~ Moderator

Release Date : 2010-07-30

Criticality level : Moderately critical
Impact : Security Bypass
Where : From remote
Solution Status : Vendor Patch

Software: OpenConnect 2.x

Description:
A vulnerability has been reported in OpenConnect, which can be exploited by malicious people to bypass certain security restrictions.

The application does not always properly verify the hostname of the server when using SSL connections. This can be exploited to e.g. conduct Man-in-the-Middle (MitM) attacks.

The vulnerability is reported in versions prior to 2.25.

Solution:
Update to version 2.25.

Original Advisory:
http://lists.infradead.org/pipermail/openconnect-devel/2010-May/000168.html
http://www.infradead.org/openconnect/

http://secunia.com/advisories/40787/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Red Hat update for java-1.4.2-ibm

by Carol~ Moderator - 7/30/10 2:50 AM

In Reply to: VULNERABILITIES / FIXES - July 30, 2010 by Carol~ Moderator

Release Date : 2010-07-30

Criticality level : Highly critical
Impact : System access
DoS
Exposure of sensitive information
Manipulation of data
Security Bypass
Unknown
Where : From remote
Solution Status : Vendor Patch

Software: Red Hat Enterprise Linux Extras v. 3
Red Hat Enterprise Linux Extras v. 4
RHEL Desktop Supplementary (v. 5 client)
RHEL Supplementary (v. 5 server)

Description:
Red Hat has issued an update for java-1.4.2-ibm. This fixes multiple vulnerabilities, where some have an unknown impact and others can be exploited by malicious people to bypass certain security restrictions, manipulate certain data, disclose potentially sensitive information, cause a DoS (Denial of Service), or compromise a vulnerable system.

Solution:
Updated packages are available via Red Hat Network.

Original Advisory:
RHSA-2010:0574-1:
https://rhn.redhat.com/errata/RHSA-2010-0574.html

http://secunia.com/advisories/40788/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

IBM Tivoli Directory Server DIGEST-MD5 Denial of Service V

by Carol~ Moderator - 7/30/10 2:51 AM

In Reply to: VULNERABILITIES / FIXES - July 30, 2010 by Carol~ Moderator

IBM Tivoli Directory Server DIGEST-MD5 Denial of Service Vulnerability

Release Date : 2010-07-30

Criticality level : Less critical
Impact : DoS
Where : From local network
Solution Status : Vendor Patch

Software: IBM Tivoli Directory Server 6.x

Description:
A vulnerability has been reported in IBM Tivoli Directory Server, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability exists due to improper handling of DIGEST-MD5 authentication requests and can be exploited to terminate the service via multiple incomplete connections.

The vulnerability is reported in version 6.0.0.8.

Solution:
Apply Interim Fix 6.0.0.8-TIV-ITDS-IF0006 or APAR IO12399.

Original Advisory:
http://www-01.ibm.com/support/docview.wss?uid=swg24027463
http://www-01.ibm.com/support/docview.wss?uid=swg1IO12399

http://secunia.com/advisories/40791/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

EasyManage CMS "id" Two SQL Injection Vulnerabilities

by Carol~ Moderator - 7/30/10 2:53 AM

In Reply to: VULNERABILITIES / FIXES - July 30, 2010 by Carol~ Moderator

Release Date : 2010-07-30

Criticality level : Moderately critical
Impact : Manipulation of data
Exposure of sensitive information
Cross Site Scripting
Where : From remote
Solution Status : Vendor Patch

Software: EasyManage CMS

Description:
James Burton has reported two vulnerabilities in EasyManage CMS, which can be exploited by malicious people to conduct SQL injection attacks.

Input passed via the "id" parameter to cms_show_image.php and cms_show_download.php is not properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

NOTE: This can further be exploited to conduct cross-site scripting attacks via SQL error messages.

Solution:
Reportedly a patch has been released. Contact the vendor for further information.

Original Advisory:
http://www.insomniasec.com/advisories/ISVA-100730.1.htm

http://secunia.com/advisories/40774/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Wireshark Multiple Vulnerabilities

by Carol~ Moderator - 7/30/10 8:37 AM

In Reply to: VULNERABILITIES / FIXES - July 30, 2010 by Carol~ Moderator

Release Date : 2010-07-30

Criticality level : Moderately critical
Impact : DoS
System access
Where : From remote
Solution Status : Vendor Patch

Software: Wireshark 1.x

Description:
Some vulnerabilities have been reported in Wireshark, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.

1) An off-by-one error exists within the SigComp Universal Decompressor Virtual Machine.

2) An error in within the "ASN.1 BER" dissector can be exploited to cause a stack overflow.

3) A NULL pointer dereference error in the "GSM A RR" dissector can be exploited to cause a crash.

4) An error in the "IPMI" dissector can be exploited to trigger an infinite loop.

The vulnerabilities are reported in versions prior to 1.0.15 and 1.2.10. Vulnerabilities #3 and #4 only affected 1.2.x versions.

Solution:
Update to version 1.0.15 or 1.2.10.

Original Advisory:
http://www.wireshark.org/security/wnpa-sec-2010-07.html
http://www.wireshark.org/security/wnpa-sec-2010-08.html

http://secunia.com/advisories/40783/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Novell iPrint Client Multiple Vulnerabilities

by Carol~ Moderator - 7/30/10 10:36 AM

In Reply to: VULNERABILITIES / FIXES - July 30, 2010 by Carol~ Moderator

Release Date : 2010-07-30

Criticality level : Highly critical
Impact : Manipulation of data
System access
Where : From remote
Solution Status : Vendor Patch

Software: Novell iPrint Client 5.x

Description:
Some vulnerabilities have been reported in Novell iPrint Client, which can be exploited by malicious people to manipulate certain data or compromise a user's system.

1) An unspecified error exists in the browser plugin when parsing parameter names.

2) An unspecified error exists in the browser plugin. No more information is currently available.

3) A boundary error in the ActiveX control (ienipp.ocx) when constructing a debug string based on input supplied to the "ExecuteRequest()" method can be exploited to cause a stack-based buffer overflow via an overly long string.

4) An unspecified error in the browser plugin can be exploited to delete files on a user's system.

Successful exploitation of vulnerabilities #1 through #3 may allow execution of arbitrary code.

The vulnerabilities are reported in version 5.40. Other versions may also be affected.

Solution:
Update to version 5.42.

Original Advisory:
Novell:
http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5078392.html

http://secunia.com/advisories/40782/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Hitachi JP1/Cm2/Network Node Manager Unspecified

by Carol~ Moderator - 7/30/10 10:37 AM

In Reply to: VULNERABILITIES / FIXES - July 30, 2010 by Carol~ Moderator

Hitachi JP1/Cm2/Network Node Manager Unspecified Vulnerability

Release Date : 2010-07-30

Criticality level : Moderately critical
Impact : DoS
System access
Where : From local network
Solution Status : Vendor Patch

Software: Hitachi JP1/Cm2/Network Node Manager

Description:
A vulnerability has been reported in Hitachi JP1/Cm2/Network Node Manager, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.

The vulnerability is caused due to an unspecified error and can be exploited to crash the application or execute arbitrary code.

Please see the vendor's advisory for a list of affected products and versions.

Solution:
Please see the vendor's advisory for fix information.

Original Advisory:
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS10-015/index.html

http://secunia.com/advisories/40784/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Hitachi HiRDB Denial of Service Vulnerability

by Carol~ Moderator - 7/30/10 10:39 AM

In Reply to: VULNERABILITIES / FIXES - July 30, 2010 by Carol~ Moderator

Release Date : 2010-07-30

Criticality level : Less critical
Impact : DoS
Where : From local network
Solution Status : Vendor Patch

Software: Hitachi HiRDB 7.x
Hitachi HiRDB 8.x

Description:
A vulnerability has been reported in Hitachi HiRDB, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an error in the processing of unexpected data, which can be exploited to disrupt the HiRDB process and the HiRDB unit.

Please see the vendor's advisory for a list of affected products and versions.

Solution:
Please see the vendor's advisory for fix information.

Original Advisory:
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS10-014/index.html

http://secunia.com/advisories/40768/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Hitachi Products Two Vulnerabilities

by Carol~ Moderator - 7/30/10 10:39 AM

In Reply to: VULNERABILITIES / FIXES - July 30, 2010 by Carol~ Moderator

Release Date : 2010-07-30

Criticality level : Moderately critical
Impact : Manipulation of data
DoS
System access
Where : From remote
Solution Status : Vendor Patch

Software: Cosminexus 6.x
Cosminexus 7.x
Cosminexus 8.x
Cosminexus Server 4.x
Cosminexus Studio 4.x
Hitachi Developer's Kit for Java
uCosminexus Application Server
uCosminexus Client
uCosminexus Developer
uCosminexus Operator
uCosminexus Service Architect
uCosminexus Service Platform

Description:
Two vulnerabilities have been reported in various Hitachi products, which can be exploited by malicious people to manipulate certain data or potentially compromise a vulnerable system.

1) An unspecified error within 2D image processing can be exploited to execute arbitrary code. No further information is currently available.

2) An unspecified error when communicating via TLS/SSL can be exploited to insert arbitrary data in communication data. No further information is currently available.

Please see the vendor's advisory for a full list of affected products.

Solution:
Update to a fixed version. See vendor advisory for details.

Original Advisory:
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS10-010/index.html

http://secunia.com/advisories/40765/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

SUSE update for MozillaFirefox, MozillaThunderbird,Seamonkey

by Carol~ Moderator - 7/30/10 1:37 PM

In Reply to: VULNERABILITIES / FIXES - July 30, 2010 by Carol~ Moderator

SUSE update for MozillaFirefox, MozillaThunderbird, and seamonkey

Release Date : 2010-07-30

Criticality level : Highly critical
Impact : Security Bypass
Cross Site Scripting
Spoofing
Exposure of sensitive information
System access
Where : From remote
Solution Status : Vendor Patch

Operating System: openSUSE 11.1
openSUSE 11.2
SUSE Linux Enterprise Server (SLES) 11
SUSE Linux Enterprise Server 10

Description:
SUSE has issued an update for MozillaFirefox, MozillaThunderbird, and seamonkey. This fixes some vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, potentially conduct cross-site scripting attacks, bypass certain security restrictions, conduct spoofing attacks, and compromise a user's system.

Solution:
Apply updated packages.

Original Advisory:
SUSE-SA:2010:032:
http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00008.html

http://secunia.com/advisories/40795/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Akamai Download Manager File Download Vulnerability

by Carol~ Moderator - 7/30/10 1:39 PM

In Reply to: VULNERABILITIES / FIXES - July 30, 2010 by Carol~ Moderator

Release Date : 2010-07-30

Criticality level : Highly critical
Impact : System access
Where : From remote
Solution Status : Vendor Patch

Software: Akamai Download Manager ActiveX Control 2.x

Description:
A vulnerability has been discovered in Akamai Download Manager, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an error in the handling of file downloads, which can be exploited to save an arbitrary file on the user's desktop when the user visits a specially crafted web page.

Successful exploitation allows execution of arbitrary code.

The vulnerability is confirmed in version 2.2.4.8. Other versions may also be affected.

Solution:
Update to version 2.2.5.4.

Original Advisory:
Yorick Koster, Akita Software Security:
http://www.akitasecurity.nl/advisory.php?id=AK20090402

http://secunia.com/advisories/40785/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

FreeType Versions Prior to 2.4.0 Multiple Remote

by Carol~ Moderator - 7/30/10 2:59 PM

In Reply to: VULNERABILITIES / FIXES - July 30, 2010 by Carol~ Moderator

FreeType Versions Prior to 2.4.0 Multiple Remote Vulnerabilities

Bugtraq ID: 41663
Class: Unknown
CVE: CVE-2010-2497
CVE-2010-2498
CVE-2010-2499
CVE-2010-2500
CVE-2010-2519
CVE-2010-2520
Remote: Yes
Local: No
Published: Jul 14 2010 12:00AM
Updated: Jul 30 2010 06:25PM

FreeType is prone to multiple remote vulnerabilities, including:

Multiple buffer-overflow vulnerabilities
A remote code-execution vulnerability
Multiple integer-overflow vulnerabilities

An attacker can exploit these issues by enticing an unsuspecting victim to open a specially crafted font file.

Successful exploits may allow attackers to execute arbitrary code in the context of applications that use the affected library. Failed exploit attempts will likely result in denial-of-service conditions.

Versions prior to FreeType 2.4.0 are vulnerable.

Solution:
Updates are available.
http://www.securityfocus.com/bid/41663/solution

http://www.securityfocus.com/bid/41663/discuss


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

libpng Memory Corruption and Memory Leak Vulnerabilities

by Carol~ Moderator - 7/30/10 2:59 PM

In Reply to: VULNERABILITIES / FIXES - July 30, 2010 by Carol~ Moderator

Bugtraq ID: 41174
Class: Unknown
CVE: CVE-2010-1205
CVE-2010-2249
Remote: Yes
Local: No
Published: Jun 25 2010 12:00AM
Updated: Jul 30 2010 05:55PM

The 'libpng' library is prone to multiple vulnerabilities.

Successful exploits may allow remote attackers to cause denial-of-service conditions or potentially execute arbitrary code on computers running the affected library.

These issues affect versions prior to 'libpng' 1.4.3 and 1.2.44.

Solution:
Updates are available.
http://www.securityfocus.com/bid/41174/solution

http://www.securityfocus.com/bid/41174/discuss


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Fedora update for kvirc

by Carol~ Moderator - 7/30/10 2:59 PM

In Reply to: VULNERABILITIES / FIXES - July 30, 2010 by Carol~ Moderator

Release Date : 2010-07-30

Criticality level : Less critical
Impact : Hijacking
Where : From remote
Solution Status : Vendor Patch

Operating System: Fedora 12
Fedora 13

Description:
Fedora has issued an update for kvirc. This fixes a vulnerability, which can be exploited by malicious people to hijack IRC connections.

Solution:
Apply updated packages using the yum utility ("yum update kvirc").

Original Advisory:
FEDORA-2010-11524:
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044643.html

FEDORA-2010-11506:
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044625.html

http://secunia.com/advisories/40796/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

More Discussions

Forum Icon Legend

  • UnreadUnread
  • ReadRead
  • Locked threadLocked thread
  •   
  •   
  •   
  •   
  •   
  •   
  •   
  • ModeratorModerator
  • CNET StaffCNET Staff
  • Samsung StaffSamsung Staff
  • Norton Authorized Support TeamNorton Authorized Support Team
  • AVG StaffAVG Staff
  • avast! Staffavast! Staff
  • Webroot Support TeamWebroot Support Team
  • Acer Customer Experience TeamAcer Customer Experience Team
  • Windows Outreach TeamWindows Outreach Team
  • DISH staffDISH staff
  • Dell StaffDell Staff
  • Intel StaffIntel Staff
  • QuestionQuestion
  • Resolved questionResolved question
  • General discussionGeneral discussion
  • TipTip
  • Alert or warningAlert or warning
  • PraisePraise
  • RantRant

You are e-mailing the following post: Post Subject

Your e-mail address is used only to let the recipient know who sent the e-mail and in case of transmission error. Neither your address nor the recipient's address will be used for any other purpose.

Sorry, there was a problem emailing this post. Please try again.

Submit Email Cancel

Thank you. Sent email to

Close

Thank you. Sent email to

Close

You are reporting the following post: Post Subject

If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.

Offensive: Sexually explicit or offensive language

Spam: Advertisements or commercial links

Disruptive posting: Flaming or offending other users

Illegal activities: Promote cracked software, or other illegal content

Sorry, there was a problem submitting your post. Please try again.

Submit Report Cancel

Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.

Close

Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.

Close

You are posting a reply to: Post Subject

The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to the CNET Forums policies for details. All submitted content is subject to CBS Interactive Site Terms of Use.

You are currently tracking this discussion. Click here to manage your tracked discussions.

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

Sorry, there was a problem submitting your post. Please try again.

Sorry, there was a problem generating the preview. Please try again.

Duplicate posts are not allowed in the forums. Please edit your post and submit again.

Submit Reply Preview Cancel

Thank you, , your post has been submitted.

> Click here to view your post. > Manage your tracked discussions. > Track this discussion. Close

Thank you, , your post has been submitted and will appear on our site shortly.

Close