Ad: Manage updates with the Download App
ie8 fix

Spyware, viruses, & security forum: VULNERABILITIES / FIXES - May 04, 2012

by: Carol~ May 4, 2012 7:10 AM PDT

Like this

0 people like this thread

Staff pick

VULNERABILITIES / FIXES - May 04, 2012

by Carol~ Moderator - 5/4/12 7:10 AM

Debian update for icedove

Release Date : 2012-05-04

Criticality level : Highly critical
Impact : Cross Site Scripting
Spoofing
System access
Where : From remote
Solution Status : Vendor Patch

Operating System: Debian GNU/Linux 6.0

Description:
Debian has issued an update for icedove. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks and compromise a user's system.

Solution:
Apply updated packages via the apt-get package manager.

Original Advisory:
DSA-2464-1:
http://www.debian.org/security/2012/dsa-2464

http://secunia.com/advisories/49020/


Reply
Report offensive post
Email to friend

VMware ESX Server / ESXi Multiple Vulnerabilities

by Carol~ Moderator - 5/4/12 7:17 AM

In Reply to: VULNERABILITIES / FIXES - May 04, 2012 by Carol~ Moderator

Release Date : 2012-05-04

Criticality level : Moderately critical
Impact : Privilege escalation
DoS
System access
Where : From local network
Solution Status : Vendor Patch

Operating System: VMware ESX Server 3.x
VMware ESX Server 4.x
VMware ESXi 3.x
VMware ESXi 4.x
VMware ESXi 5.x

Description:
Multiple vulnerabilities have been reported in VMware ESX Server and VMware ESXi, which can be exploited by malicious, local users in a guest virtual machine to gain escalated privileges and by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.

1) Errors when handling RPC commands can be exploited to cause a crash and potentially execute arbitrary code.

2) An error when parsing NFS traffic can be exploited to corrupt memory.

3) An error in the virtual floppy device can be exploited to cause an out-of-bounds write.

4) An error in the virtual SCSI device can be exploited to cause an out-of-bounds write.

Successful exploitation may allow execution of arbitrary code.

Please see the vendor's advisory for a list of affected versions.

Solution:
Update to a fixed version (please see the vendor's advisory for details).

Provided and/or discovered by:
1) The vendor credits Derek Soeder.
2-4) Reported by the vendor.

Original Advisory:
VMSA-2012-0009:
http://www.vmware.com/security/advisories/VMSA-2012-0009.html

http://secunia.com/advisories/49019/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

VMware Workstation/ Player / Fusion Two Privilege Escalation

by Carol~ Moderator - 5/4/12 7:17 AM

In Reply to: VULNERABILITIES / FIXES - May 04, 2012 by Carol~ Moderator

VMware Workstation / Player / Fusion Two Privilege Escalation Vulnerabilities

Release Date : 2012-05-04

Criticality level : Less critical
Impact : Privilege escalation
Where : Local system
Solution Status : Partial Fix

Software: VMware Fusion 4.x
VMware Player 4.x
VMware Workstation 8.x

Description:
Two vulnerabilities have been reported in VMware Workstation, VMware Player, and VMware Fusion, which can be exploited by malicious, local users in a guest virtual machine to gain escalated privileges.

The vulnerability is reported in the following products:
* VMware Workstation prior to 8.0.3.
* VMware Player prior to 4.0.3.
* VMware Fusion prior to 4.1.2.

Solution:
Update to a fixed version.

Provided and/or discovered by:
Reported by the vendor.

Original Advisory:
VMSA-2012-0009:
http://www.vmware.com/security/advisories/VMSA-2012-0009.html

http://secunia.com/advisories/49032/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Ubuntu update for nova

by Carol~ Moderator - 5/4/12 7:17 AM

In Reply to: VULNERABILITIES / FIXES - May 04, 2012 by Carol~ Moderator

Release Date : 2012-05-04

Criticality level : Less critical
Impact : DoS
Where : From remote
Solution Status : Vendor Patch

Operating System: Ubuntu Linux 11.10
Ubuntu Linux 12.04

Description:
Ubuntu has issued an update for nova. This fixes a vulnerability, which can be exploited by malicious users to cause a DoS (Denial of Service).

Solution:
Apply updated packages.

Original Advisory:
USN-1438-1:
http://www.ubuntu.com/usn/usn-1438-1/

http://secunia.com/advisories/49048/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

FreeBSD update for OpenSSL

by Carol~ Moderator - 5/4/12 7:20 AM

In Reply to: VULNERABILITIES / FIXES - May 04, 2012 by Carol~ Moderator

Release Date : 2012-05-04

Criticality level : Highly critical
Impact : Exposure of sensitive information
DoS
System access
Where : From remote
Solution Status : Vendor Patch

Operating System: FreeBSD 8.0
FreeBSD 8.1

Description:
FreeBSD has issued an update for OpenSSL. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, cause a DoS (Denial of Service), and potentially compromise an application using the library.

Solution:
Update FreeBSD or apply the patch.

Original Advisory:
FreeBSD-SA-12:01:
http://security.freebsd.org/advisories/FreeBSD-SA-12:01.openssl.asc

http://secunia.com/advisories/49077/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

PHP PHP-CGI QUERY_STRING Parameter Vulnerability

by Carol~ Moderator - 5/4/12 7:35 AM

In Reply to: VULNERABILITIES / FIXES - May 04, 2012 by Carol~ Moderator

Release Date : 2012-05-04

Criticality level : Highly critical
Impact : System access
Where : From remote
Solution Status : Vendor Workaround

Software: PHP 5.3.x
PHP 5.4.x

Description:
De Eindbazen has reported a vulnerability in PHP, which can be exploited by malicious people to disclose certain sensitive information or compromise a vulnerable system.

The vulnerability is caused due to an error when parsing certain QUERY_STRING parameters. This can be exploited to e.g. disclose the PHP source code or execute arbitrary code.

The vulnerability is reported in versions 5.3.12 and prior and versions 5.4.2 and prior.

Solution:
Apply patch or workaround.

Provided and/or discovered by:
De Eindbazen

Original Advisory:
PHP:
https://bugs.php.net/bug.php?id=61910

De Eindbazen:
http://eindbazen.net/2012/05/php-cgi-advisory-cve-2012-1823/

US-CERT VU#520827:
http://www.kb.cert.org/vuls/id/520827

http://secunia.com/advisories/49014/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Ubuntu update for thunderbird

by Carol~ Moderator - 5/4/12 8:45 AM

In Reply to: VULNERABILITIES / FIXES - May 04, 2012 by Carol~ Moderator

Release Date : 2012-05-04

Criticality level : Highly critical
Impact : Security Bypass
Cross Site Scripting
Spoofing
Exposure of system information
Exposure of sensitive information
System access
Where : From remote
Solution Status : Vendor Patch

Operating System: Ubuntu Linux 10.04
Ubuntu Linux 11.04
Ubuntu Linux 11.10
Ubuntu Linux 12.04

Description:
Ubuntu has issued an update for thunderbird. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, disclose certain system and sensitive information, bypass certain security restrictions, and compromise a user's system.

Solution:
Apply updated packages.

Original Advisory:
USN-1430-3:
http://www.ubuntu.com/usn/usn-1430-3/

http://secunia.com/advisories/48897/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

FFmpeg Multiple Vulnerabilities

by Carol~ Moderator - 5/4/12 10:12 AM

In Reply to: VULNERABILITIES / FIXES - May 04, 2012 by Carol~ Moderator

Release Date : 2012-05-04

Criticality level : Moderately critical
Impact : System access
Where : From remote
Solution Status : Vendor Patch

Software: FFmpeg 0.x

Description:
Multiple vulnerabilities have been reported in FFmpeg, which can be exploited by malicious people to compromise an application using the library.

The vulnerabilities are reported in versions prior to 0.7.12 and 0.8.11.

Solution:
Update to version 0.7.12 or 0.8.11.

Original Advisory:
http://ffmpeg.org/index.html#pr0811

http://secunia.com/advisories/49022/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

IBM AIX "getpwnam()" LDAP Filtering Privilege Escalation

by Carol~ Moderator - 5/4/12 11:22 AM

In Reply to: VULNERABILITIES / FIXES - May 04, 2012 by Carol~ Moderator

Release Date : 2012-05-04

Criticality level : Less critical
Impact : Privilege escalation
Where : Local system
Solution Status : Vendor Patch

Operating System: AIX 5.x
AIX 6.x
AIX 7.x

Description:
A vulnerability has been reported in IBM AIX, which can be exploited by malicious, local users to gain escalated privileges.

The vulnerability is caused due to an error within the "getpwnam()" function within LDAP authentication and can be exploited to gain additional privileges.

Successful exploitation requires that extended LDAP user filtering is configured.

The vulnerability is reported in versions 5.3, 6.1, and 7.1.

Solution:
Apply fixes (please see the vendor's advisory for details).

Provided and/or discovered by:
Reported by the vendor.

Original Advisory:
http://aix.software.ibm.com/aix/efixes/security/ldapauth_advisory2.asc

http://secunia.com/advisories/49073/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

myCare2x Cross-Site Scripting and SQL Injection

by Carol~ Moderator - 5/4/12 12:42 PM

In Reply to: VULNERABILITIES / FIXES - May 04, 2012 by Carol~ Moderator

myCare2x Cross-Site Scripting and SQL Injection Vulnerabilities

Release Date : 2012-05-04

Criticality level : Moderately critical
Impact : Cross Site Scripting
Manipulation of data
Where : From remote
Solution Status : Unpatched

Software: myCare2x

Description:
Multiple vulnerabilities have been reported in myCare2x, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.

1) Input passed via the "lang" parameter to modules/patient/mycare2x_pat_info.php, the "dept_nr" and "pid" parameters to modules/importer/mycare2x_importer.php, and the "pid" and "name_last" parameters to modules/patient/mycare_pid.php is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

2) Input passed via the "name_last", "name_first", "name_middle", and "name_maiden" parameters to modules/patient/mycare_pid.php, the "favorites" and "lang" parameters to modules/nursing/mycare_ward_print.php, the "aktion" and "callurl" parameters to modules/patient/mycare2x_pat_info.php, and the "ln" parameter to modules/drg/mycare2x_proc_search.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

Solution:
Filter malicious characters and character sequences using a proxy.

Provided and/or discovered by:
Vulnerability Lab.

Original Advisory:
http://www.vulnerability-lab.com/get_content.php?id=524

http://secunia.com/advisories/49029/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Tiki Wiki CMS/Groupware "url" Cross-Site Scripting

by Carol~ Moderator - 5/4/12 3:40 PM

In Reply to: VULNERABILITIES / FIXES - May 04, 2012 by Carol~ Moderator

Tiki Wiki CMS/Groupware "url" Cross-Site Scripting Vulnerability

Release Date: 2012-02-20
Last Update: 2012-05-04

Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status : Vendor Patch

Software: Tiki Wiki CMS/Groupware 8.x

Description:
Sony has discovered a vulnerability in Tiki Wiki CMS/Groupware, which can be exploited by malicious people to conduct cross-site scripting attacks.

Input passed to the "url" parameter in tiki-featured_link.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

Successful exploitation requires that the "featuredLinks" feature is enabled.

The vulnerability is confirmed in version 8.3. Prior versions may also be affected.

Solution:
Update to version 8.4.

Provided and/or discovered by:
Sony

Original Advisory:
http://st2tea.blogspot.com/2012/02/tiki-wiki-cms-groupware-frame-injection.html

http://secunia.com/advisories/48102


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Forum Icon Legend

  • UnreadUnread
  • ReadRead
  • Locked threadLocked thread
  •   
  •   
  •   
  •   
  •   
  •   
  •   
  • ModeratorModerator
  • CNET StaffCNET Staff
  • Samsung StaffSamsung Staff
  • Norton Authorized Support TeamNorton Authorized Support Team
  • AVG StaffAVG Staff
  • avast! Staffavast! Staff
  • Webroot Support TeamWebroot Support Team
  • Acer Customer Experience TeamAcer Customer Experience Team
  • Windows Outreach TeamWindows Outreach Team
  • DISH staffDISH staff
  • Dell StaffDell Staff
  • Intel StaffIntel Staff
  • QuestionQuestion
  • Resolved questionResolved question
  • General discussionGeneral discussion
  • TipTip
  • Alert or warningAlert or warning
  • PraisePraise
  • RantRant

You are e-mailing the following post: Post Subject

Your e-mail address is used only to let the recipient know who sent the e-mail and in case of transmission error. Neither your address nor the recipient's address will be used for any other purpose.

Sorry, there was a problem emailing this post. Please try again.

Submit Email Cancel

Thank you. Sent email to

Close

Thank you. Sent email to

Close

You are reporting the following post: Post Subject

If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.

Offensive: Sexually explicit or offensive language

Spam: Advertisements or commercial links

Disruptive posting: Flaming or offending other users

Illegal activities: Promote cracked software, or other illegal content

Sorry, there was a problem submitting your post. Please try again.

Submit Report Cancel

Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.

Close

Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.

Close

You are posting a reply to: Post Subject

The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to the CNET Forums policies for details. All submitted content is subject to CBS Interactive Site Terms of Use.

You are currently tracking this discussion. Click here to manage your tracked discussions.

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

Sorry, there was a problem submitting your post. Please try again.

Sorry, there was a problem generating the preview. Please try again.

Duplicate posts are not allowed in the forums. Please edit your post and submit again.

Submit Reply Preview Cancel

Thank you, , your post has been submitted.

> Click here to view your post. > Manage your tracked discussions. > Track this discussion. Close

Thank you, , your post has been submitted and will appear on our site shortly.

Close