Ad: Manage updates with the Download App
ie8 fix

Spyware, viruses, & security forum: VULNERABILITIES / FIXES - July 27, 2012

by: Carol~ July 27, 2012 8:46 AM PDT

Like this

0 people like this thread

Staff pick

VULNERABILITIES / FIXES - July 27, 2012

by Carol~ Moderator - 7/27/12 8:46 AM

Xen HVM Guest MMIO Emulation Denial of Service Vulnerability

Release Date : 2012-07-27

Criticality level : Not critical
Impact : DoS
Where : Local system
Solution Status : Vendor Patch

Software: Xen 4.x

Description:
A vulnerability has been reported in Xen, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service).

The vulnerability is caused due to certain data of MMIO operations not being handled properly after emulation cycles in HVM guests and can be exploited to crash subsequent emulations.

Successful exploitation requires that the guests are not PV (para-virtualised).

The vulnerability is reported in all supported versions.

Solution:
Apply patch xsa10-4.x.patch.

Original Advisory:
http://www.openwall.com/lists/oss-security/2012/07/26/4

http://secunia.com/advisories/49789/


Reply
Report offensive post
Email to friend

IBM AIX and Virtual I/O Server "dupmsg" Denial of Service

by Carol~ Moderator - 7/27/12 8:51 AM

In Reply to: VULNERABILITIES / FIXES - July 27, 2012 by Carol~ Moderator

IBM AIX and Virtual I/O Server "dupmsg" Denial of Service Vulnerability

Release Date : 2012-07-27

Criticality level : Less critical
Impact : DoS
Where : Local system
Solution Status : Vendor Patch

Operating System: AIX 5.x
AIX 6.x
AIX 7.x
IBM Virtual I/O Server (VIOS) 2.x

Description:
A vulnerability has been reported in IBM AIX and IBM Virtual I/O Server, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused to an error when exporting a "dupmsg" kernel extension call to user space and can be exploited to cause a system crash.

Please see the vendor's advisory for a list of affected versions.

Solution:
Apply Interim Fixes.

Provided and/or discovered by:
The vendor credits Jakub Wartak.

Original Advisory:
IBM (IV22693, IV22694, IV22695, IV22696, IV22697):
http://aix.software.ibm.com/aix/efixes/security/syscall_advisory.asc

http://secunia.com/advisories/50003/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

IBM WebSphere DataPower SOA Appliances ASN.1 Handling

by Carol~ Moderator - 7/27/12 8:51 AM

In Reply to: VULNERABILITIES / FIXES - July 27, 2012 by Carol~ Moderator

IBM WebSphere DataPower SOA Appliances ASN.1 Handling Vulnerability

Release Date : 2012-07-27

Criticality level : Highly critical
Impact : DoS
System access
Where : From remote
Solution Status : Vendor Patch

Operating System: WebSphere DataPower SOA Appliances 3.x
WebSphere DataPower SOA Appliances 4.x

Description:
IBM has acknowledged a vulnerability in IBM WebSphere DataPower SOA Appliances, which can be exploited by malicious people to potentially compromise a vulnerable system.

The vulnerability is caused due to an error when handling ASN.1 content.

The vulnerability is reported in versions prior to 3.8.2.14, prior to 4.0.1.12, and prior to 4.0.2.8.

Solution:
Update to version 3.8.2.14, 4.0.1.12, or 4.0.2.8.

Original Advisory:
IBM:
http://www.ibm.com/support/docview.wss?uid=swg1IC84088

http://secunia.com/advisories/50072/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

IBM Scale Out Network Attached Storage Samba and Command

by Carol~ Moderator - 7/27/12 8:51 AM

In Reply to: VULNERABILITIES / FIXES - July 27, 2012 by Carol~ Moderator

IBM Scale Out Network Attached Storage Samba and Command Execution Vulnerabilities

Release Date : 2012-07-27

Criticality level : Moderately critical
Impact : Security Bypass
System access
Where : From remote
Solution Status : Vendor Patch

Operating System: IBM Scale Out Network Attached Storage (SONAS) 1.x

Description:
A security issue and a vulnerability have been reported in IBM Scale Out Network Attached Storage, which can be exploited by malicious users to bypass certain security restrictions and compromise a vulnerable system.

1) The security issue is caused due to a bundled vulnerable version of Samba.

2) An error in the handling of command execution within the Command Line Interface (CLI) and the Graphical User Interface (GUI) can be exploited to execute arbitrary shell commands with root privileges.

Successful exploitation requires SONAS administrative user rights.

The security issue and the vulnerability are reported in versions 1.1 through 1.3.1.

Solution:
Update to version 1.3.2 or later.

Provided and/or discovered by:
2) Reported by the vendor.

Original Advisory:
IBM:
http://www.ibm.com/support/docview.wss?uid=ssg1S1004168
http://www.ibm.com/support/docview.wss?uid=ssg1S1004170

http://secunia.com/advisories/50071/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Transmission "comment" and "created by" Script Insertion

by Carol~ Moderator - 7/27/12 8:51 AM

In Reply to: VULNERABILITIES / FIXES - July 27, 2012 by Carol~ Moderator

Transmission "comment" and "created by" Script Insertion Vulnerabilities

Release Date : 2012-07-27

Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status : Vendor Patch

Software: Transmission 2.x

Description:
Justin C. Klein Keane has discovered two vulnerabilities in Transmission, which can be exploited by malicious people to conduct script insertion attacks.

Input passed via the "comment" and "created by" fields in an imported torrent file when viewing with the web client Inspector is not properly sanitised before being used. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site when the malicious data is being viewed.

Successful exploitation requires the web client to be enabled (disabled by default).

The vulnerabilities are reported in versions prior to 2.61 and confirmed in version 2.05.

Solution:
Update to version 2.61.

Provided and/or discovered by:
Justin C. Klein Keane

Original Advisory:
Transmission:
https://trac.transmissionbt.com/wiki/Changes#version-2.61

Justin C. Klein Keane:
http://archives.neohapsis.com/archives/fulldisclosure/2012-07/0349.html

http://secunia.com/advisories/50027/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Ubuntu update for bind9

by Carol~ Moderator - 7/27/12 10:08 AM

In Reply to: VULNERABILITIES / FIXES - July 27, 2012 by Carol~ Moderator

Release Date : 2012-07-27

Criticality level : Moderately critical
Impact : DoS
Where : From remote
Solution Status : Vendor Patch

Operating System: Ubuntu Linux 10.04
Ubuntu Linux 11.04
Ubuntu Linux 11.10
Ubuntu Linux 12.04

Description:
Ubuntu has issued an update for bind9. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

Solution:
Apply updated packages.

Original Advisory:
USN-1518-1:
http://www.ubuntu.com/usn/usn-1518-1

http://secunia.com/advisories/50061/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Ubuntu update for isc-dhcp

by Carol~ Moderator - 7/27/12 10:09 AM

In Reply to: VULNERABILITIES / FIXES - July 27, 2012 by Carol~ Moderator

Release Date : 2012-07-27

Criticality level : Less critical
Impact : DoS
Where : From local network
Solution Status : Vendor Patch

Operating System: Ubuntu Linux 11.04
Ubuntu Linux 11.10
Ubuntu Linux 12.04

Description:
Ubuntu has issued an update for isc-dhcp. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).

Solution:
Apply updated packages.

Original Advisory:
USN-1519-1:
http://www.ubuntu.com/usn/usn-1519-1

http://secunia.com/advisories/50059/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Ruby on Rails Digest Authentication Denial of Service

by Carol~ Moderator - 7/27/12 12:19 PM

In Reply to: VULNERABILITIES / FIXES - July 27, 2012 by Carol~ Moderator

Ruby on Rails Digest Authentication Denial of Service Vulnerability

Release Date : 2012-07-27

Criticality level : Moderately critical
Impact : DoS
Where : From remote
Solution Status : Vendor Patch

Software: Ruby on Rails 3.0.x
Ruby on Rails 3.1.x
Ruby on Rails 3.2.x

Description:
A vulnerability has been reported in Ruby on Rails, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an error in the Action Pack digest authentication (actionpack/lib/action_controller/metal/http_authentication.rb) that uses "with_http_digest" controller helper methods.

The vulnerability is reported in versions prior to 3.0.16, 3.1.7, and 3.2.7.

Solution:
Update to version 3.0.16, 3.1.7, or 3.2.7.

Provided and/or discovered by:
The vendor credits Charlie Somerville.

Original Advisory:
https://groups.google.com/forum/?fromgroups#!topic/rubyonrails-security/vxJjrc15qYM

http://secunia.com/advisories/48682/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

SUSE update for MozillaThunderbird

by Carol~ Moderator - 7/27/12 2:08 PM

In Reply to: VULNERABILITIES / FIXES - July 27, 2012 by Carol~ Moderator

Release Date : 2012-07-27

Criticality level : Highly critical
Impact : Security Bypass
Cross Site Scripting
Spoofing
Exposure of sensitive information
System access
Where : From remote
Solution Status : Vendor Patch

Operating System: openSUSE 11.4
openSUSE 12.1

Description:
SUSE has issued an update for MozillaThunderbird. This fixes multiple vulnerabilities, which can be exploited by malicious people to conduct spoofing and cross-site scripting attacks, disclose certain sensitive information, bypass certain security restrictions, and compromise a user's system.

Solution:
Apply updated packages via the zypper package manager.

Original Advisory:
openSUSE-SU-2012:0917-1:
http://lists.opensuse.org/opensuse-updates/2012-07/msg00050.html

http://secunia.com/advisories/50035/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Bugzilla Two Information Disclosure Security Issues

by Carol~ Moderator - 7/27/12 2:12 PM

In Reply to: VULNERABILITIES / FIXES - July 27, 2012 by Carol~ Moderator

Release Date : 2012-07-27

Criticality level : Not critical
Impact : Exposure of sensitive information
Where : From remote
Solution Status : Vendor Patch

Software: Bugzilla 2.x
Bugzilla 3.x
Bugzilla 4.x

Description:
Two security issues have been reported in Bugzilla, which can be exploited by malicious people to disclose potentially sensitive information.

1) An error due to the application not properly validating permissions of the addressee can be exploited to disclose summaries of otherwise restricted bugs via HTML bugmails.

This security issue is reported in versions 4.1.1 through 4.2.1 and 4.3.1.

2) An error due to the application not properly validating permissions can be exploited to view descriptions of private attachments via public bug comments.

This security issue is reported in versions 2.17.5 through 3.6.9, 3.7.1 through 4.0.6, 4.1.1 through 4.2.1, and 4.3.1.

Solution:
Update to version 3.6.10, 4.0.7, 4.2.2, or 4.3.2.

Provided and/or discovered by:
The vendor credits Frederic Buclin and Byron Jones.

Original Advisory:
http://www.bugzilla.org/security/3.6.9/

http://secunia.com/advisories/50040/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Ganglia Unspecified PHP Code Execution Vulnerability

by Carol~ Moderator - 7/27/12 2:54 PM

In Reply to: VULNERABILITIES / FIXES - July 27, 2012 by Carol~ Moderator

Release Date : 2012-07-27

Criticality level : Moderately critical
Impact : System access
Where : From local network
Solution Status : Vendor Patch

Software: Ganglia 3.x

Description:
A vulnerability has been reported in Ganglia, which can be exploited by malicious people to compromise a vulnerable system.

The vulnerability is caused due to an unspecified error and can be exploited to execute arbitrary PHP code.

The vulnerability is reported in versions 3.1.7 through 3.5.0. Other versions may also be affected.

Solution:
Update to version 3.5.1.

Provided and/or discovered by:
Reported by the vendor.

Original Advisory:
http://ganglia.info/?p=549

http://secunia.com/advisories/50047/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Debian update for isc-dhcp

by Carol~ Moderator - 7/27/12 2:54 PM

In Reply to: VULNERABILITIES / FIXES - July 27, 2012 by Carol~ Moderator

Release Date : 2012-07-27

Criticality level : Less critical
Impact : DoS
Where : From local network
Solution Status : Vendor Patch

Operating System: Debian GNU/Linux 6.0

Description:
Debian has issued an update for isc-dhcp. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service).

Solution:
Apply updated packages via the apt-get package manager.

Original Advisory:
DSA-2516-1:
http://www.debian.org/security/2012/dsa-2516

http://secunia.com/advisories/50017/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Caucho Resin Two Vulnerabilities

by Carol~ Moderator - 7/27/12 3:08 PM

In Reply to: VULNERABILITIES / FIXES - July 27, 2012 by Carol~ Moderator

Release Date : 2012-07-27

Criticality level : Moderately critical
Impact : Unknown
Exposure of sensitive information
Where : From remote
Solution Status : Vendor Patch

Software: Caucho Resin 4.x

Description:
Two vulnerabilities have been reported in Caucho Resin, where one has an unknown impact and the other can be exploited by malicious people to disclose potentially sensitive information.

1) An error exists when handling certain parameters. No further information is currently available.

2) Certain input is not properly verified before being used to download files. This can be exploited to download arbitrary files from local resources via directory traversal attacks.

The vulnerabilities are reported in versions prior to 4.0.29.

Solution:
Update to version 4.0.29.

Provided and/or discovered by:
US-CERT credits Sergey Scherbel, Positive Technologies.

Original Advisory:
http://www.kb.cert.org/vuls/id/309979

http://secunia.com/advisories/50032/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Forum Icon Legend

  • UnreadUnread
  • ReadRead
  • Locked threadLocked thread
  •   
  •   
  •   
  •   
  •   
  •   
  •   
  • ModeratorModerator
  • CNET StaffCNET Staff
  • Samsung StaffSamsung Staff
  • Norton Authorized Support TeamNorton Authorized Support Team
  • AVG StaffAVG Staff
  • avast! Staffavast! Staff
  • Webroot Support TeamWebroot Support Team
  • Acer Customer Experience TeamAcer Customer Experience Team
  • Windows Outreach TeamWindows Outreach Team
  • DISH staffDISH staff
  • Dell StaffDell Staff
  • Intel StaffIntel Staff
  • QuestionQuestion
  • Resolved questionResolved question
  • General discussionGeneral discussion
  • TipTip
  • Alert or warningAlert or warning
  • PraisePraise
  • RantRant

You are e-mailing the following post: Post Subject

Your e-mail address is used only to let the recipient know who sent the e-mail and in case of transmission error. Neither your address nor the recipient's address will be used for any other purpose.

Sorry, there was a problem emailing this post. Please try again.

Submit Email Cancel

Thank you. Sent email to

Close

Thank you. Sent email to

Close

You are reporting the following post: Post Subject

If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.

Offensive: Sexually explicit or offensive language

Spam: Advertisements or commercial links

Disruptive posting: Flaming or offending other users

Illegal activities: Promote cracked software, or other illegal content

Sorry, there was a problem submitting your post. Please try again.

Submit Report Cancel

Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.

Close

Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.

Close

You are posting a reply to: Post Subject

The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to the CNET Forums policies for details. All submitted content is subject to CBS Interactive Site Terms of Use.

You are currently tracking this discussion. Click here to manage your tracked discussions.

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

Sorry, there was a problem submitting your post. Please try again.

Sorry, there was a problem generating the preview. Please try again.

Duplicate posts are not allowed in the forums. Please edit your post and submit again.

Submit Reply Preview Cancel

Thank you, , your post has been submitted.

> Click here to view your post. > Manage your tracked discussions. > Track this discussion. Close

Thank you, , your post has been submitted and will appear on our site shortly.

Close