Ad: Manage updates with the Download App
ie8 fix

Spyware, viruses, & security forum: VULNERABILITIES / FIXES - September 12, 2012

by: Carol~ September 12, 2012 8:53 AM PDT

Like this

0 people like this thread

Staff pick

VULNERABILITIES / FIXES - September 12, 2012

by Carol~ Moderator - 9/12/12 8:53 AM

RSA BSAFE SSL-C Multiple Vulnerabilities

Release Date : 2012-09-12

Criticality level : Highly critical
Impact : Hijacking
Exposure of sensitive information
System access
Where : From remote
Solution Status : Vendor Patch

Software: RSA BSAFE

Description:
EMC has acknowledged a weakness and a vulnerability in RSA BSAFE, which can be exploited by malicious people to disclose sensitive information, hijack a user's session, and potentially compromise an application using the library.

The weakness and the vulnerability are reported in RSA BSAFE SSL-C versions prior to 2.8.6.

Solution:
Update to RSA BSAFE SSL-C version 2.8.6.

Original Advisory:
http://archives.neohapsis.com/archives/bugtraq/2012-09/att-0046/ESA-2012-029.txt

http://secunia.com/advisories/50601/


Reply
Report offensive post
Email to friend

RSA BSAFE Micro Edition Suite SSL/TLS Initialization Vector

by Carol~ Moderator - 9/12/12 8:57 AM

In Reply to: VULNERABILITIES / FIXES - September 12, 2012 by Carol~ Moderator

RSA BSAFE Micro Edition Suite SSL/TLS Initialization Vector Selection Weakness

Release Date : 2012-09-12

Criticality level : Not critical
Impact : Hijacking
Exposure of sensitive information
Where : From remote
Solution Status : Vendor Patch

Software: RSA BSAFE

Description:
EMC has acknowledged a weakness in RSA BSAFE, which can be exploited by malicious people to disclose potentially sensitive information and hijack a user's session.

A design error exists within the implementation of SSL 3.0 and TLS 1.0 protocols.

The weakness is reported in RSA BSAFE Micro Edition Suite versions prior to 4.0.

Solution:
Update to RSA BSAFE Micro Edition Suite version 4.0.

Original Advisory:
http://archives.neohapsis.com/archives/bugtraq/2012-09/att-0040/ESA-2012-032.txt

http://secunia.com/advisories/50605/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Python trytond Module Button Model Security Bypass

by Carol~ Moderator - 9/12/12 9:18 AM

In Reply to: VULNERABILITIES / FIXES - September 12, 2012 by Carol~ Moderator

Python trytond Module Button Model Security Bypass Vulnerability

Release Date : 2012-09-12

Criticality level : Moderately critical
Impact : Security Bypass
Where From local network
Solution Status : Vendor Patch

Software: Python trytond Module 2.x

Description:
A vulnerability has been reported in Python trytond Module, which can be exploited by malicious users to bypass certain security restrictions.

The vulnerability is caused due to the module not properly verifying access permissions on the button model and can be exploited to execute button code.

The vulnerability is reported in versions prior to 2.4.2.

Solution:
Update to version 2.4.2.

Provided and/or discovered by:
Reported by the vendor.

Original Advisory:
http://news.tryton.org/2012/09/security-releases-for-trytond-24-series.html

http://secunia.com/advisories/50529/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

SUSE update for compat-openssl097g

by Carol~ Moderator - 9/12/12 9:18 AM

In Reply to: VULNERABILITIES / FIXES - September 12, 2012 by Carol~ Moderator

Release Date : 2012-09-12

Criticality level : Highly critical
Impact : DoS
System access
Where : From remote
Solution Status : Vendor Patch

Operating System : SUSE Linux Enterprise Server (SLES) 10

Description:
SUSE has issued an update for compat-openssl097g. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise an application using the library.

Solution:
Apply updated packages via the zypper package manager.

Original Advisory:
SUSE-SU-2012:1149-1:
http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00007.html

http://secunia.com/advisories/50594/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Bacula Console ACL Bypass Security Issue

by Carol~ Moderator - 9/12/12 9:18 AM

In Reply to: VULNERABILITIES / FIXES - September 12, 2012 by Carol~ Moderator

Release Date : 2012-09-12

Criticality level : Less critical
Impact : Security Bypass
Where From local network
Solution Status : Vendor Patch

Software: Bacula 5.x

Description:
A security issue has been reported in Bacula, which can be exploited by malicious users to bypass certain security restrictions.

The security issue is caused due to an error within the implementation of console ACLs, which can be exploited to gain access to certain restricted functionality and e.g. dump resources.

The security issue is reported in versions prior to 5.2.11.

Solution:
Update to version 5.2.11.

Provided and/or discovered by:
Reported by the vendor.

Original Advisory:
http://sourceforge.net/projects/bacula/files/bacula/5.2.11/ReleaseNotes/view

http://secunia.com/advisories/50535/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Smarty "SmartyException" Cross-Site Scripting Vulnerability

by Carol~ Moderator - 9/12/12 9:18 AM

In Reply to: VULNERABILITIES / FIXES - September 12, 2012 by Carol~ Moderator

Release Date : 2012-09-12

Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status : Vendor Workaround

Software: Smarty 3.x

Description:
A vulnerability has been reported in Smarty, which can be exploited by malicious people to conduct cross-site scripting attacks.

Certain input passed via exception messages is not properly sanitised in the "SmartyException" class before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

The vulnerability is reported in version 3.1.11. Prior versions may also be affected.

Solution:
Fixed in the SVN repository.

Provided and/or discovered by:
Reported by the vendor.

Original Advisory:
http://code.google.com/p/smarty-php/source/detail?r=4658

http://secunia.com/advisories/50589/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

McAfee Firewall Enterprise Quagga Vulnerabilities

by Carol~ Moderator - 9/12/12 9:19 AM

In Reply to: VULNERABILITIES / FIXES - September 12, 2012 by Carol~ Moderator

Release Date : 2012-09-12

Criticality level : Moderately critical
Impact : DoS
Where : From remote
Solution Status : Vendor Patch

Operating System : McAfee Firewall Enterprise (formely Sidewinder Firewall) 7.x
McAfee Firewall Enterprise 8.x

Description:
McAfee has acknowledged multiple vulnerabilities in McAfee Firewall Enterprise, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerabilities are reported in versions prior to 7.0.1.05.H05 and 8.2.1P04.

Solution:
Apply patches.

Original Advisory:
https://kc.mcafee.com/corporate/index?page=content&id=KB76173

http://secunia.com/advisories/50593/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

IceWarp Mail Server Information Disclosure Security Issue

by Carol~ Moderator - 9/12/12 9:23 AM

In Reply to: VULNERABILITIES / FIXES - September 12, 2012 by Carol~ Moderator

Release Date : 2012-09-12

Criticality level : Less critical
Impact : Exposure of system information
Where From remote
Solution Status : Vendor Workaround

Software: IceWarp Server 10.x

Description:
Robin Francois has discovered a security issue in IceWarp Mail Server, which can be exploited by malicious people to disclose certain system information.

The security issue is caused due to a PHP script (webmail/pda/controller/raw.php) within the WebMail component displaying PHP configuration via "phpinfo()" function without prior authentication.

The security issue is confirmed in version 10.4.3. Other versions may also be affected.

Solution:
The vendor recommends to remove the "raw.php" script.

Provided and/or discovered by:
Robin Francois, Navixia via Secunia.

http://secunia.com/advisories/50441/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Red Hat update for libexif

by Carol~ Moderator - 9/12/12 9:23 AM

In Reply to: VULNERABILITIES / FIXES - September 12, 2012 by Carol~ Moderator

Release Date : 2012-09-12

Criticality level : Moderately critical
Impact : Exposure of sensitive information
DoS
System access
Where : From remote
Solution Status : Vendor Patch

Operating System : Red Hat Enterprise Linux Desktop 5
Red Hat Enterprise Linux Desktop 6
Red Hat Enterprise Linux HPC Node 6
Red Hat Enterprise Linux Server 5
Red Hat Enterprise Linux Server 6
Red Hat Enterprise Linux Workstation 6
RHEL Desktop Workstation 5

Description:
Red Hat has issued an update for libexif. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose certain sensitive information, cause a DoS (Denial of Service), and compromise an application using the library.

Solution:
Updated packages are available via Red Hat Network.

Original Advisory:
RHSA-2012:1255-1:
https://rhn.redhat.com/errata/RHSA-2012-1255.html

http://secunia.com/advisories/50587/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Debian update for freeradius

by Carol~ Moderator - 9/12/12 10:40 AM

In Reply to: VULNERABILITIES / FIXES - September 12, 2012 by Carol~ Moderator

Release Date : 2012-09-12

Criticality level : Highly critical
Impact : System access
Where : From remote
Solution Status : Vendor Patch

Operating System : Debian GNU/Linux 6.0

Description:
Debian has issued an update for freeradius. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.

Solution:
Apply updated packages via the apt-get package manager.

Original Advisory:
DSA-2546-1:
http://www.debian.org/security/2012/dsa-2546

http://secunia.com/advisories/50584/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Atlassian Confluence Unspecified Cross-Site Scripting

by Carol~ Moderator - 9/12/12 11:36 AM

In Reply to: VULNERABILITIES / FIXES - September 12, 2012 by Carol~ Moderator

Atlassian Confluence Unspecified Cross-Site Scripting Vulnerability

Release Date : 2012-09-12

Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status : Vendor Patch

Software: Atlassian Confluence 4.x

Description:
A vulnerability has been reported in Atlassian Confluence, which can be exploited by malicious people to conduct cross-site scripting attacks.

Certain unspecified input is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

The vulnerability is reported in versions prior to 4.1.9.

Solution:
Update to version 4.1.9 or later.

Provided and/or discovered by:
The vendor credits D. Niedermaier, Intrest SEC.

Original Advisory:
https://confluence.atlassian.com/display/DOC/Confluence+Security+Advisory+2012-09-11
https://jira.atlassian.com/browse/CONF-26366

http://secunia.com/advisories/50606/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

TCExam Cross-Site Scripting and SQL Injection

by Carol~ Moderator - 9/12/12 12:33 PM

In Reply to: VULNERABILITIES / FIXES - September 12, 2012 by Carol~ Moderator

TCExam Cross-Site Scripting and SQL Injection Vulnerabilities

Release Date : 2012-09-12

Criticality level : Less critical
Impact : Cross Site Scripting
Manipulation of data
Where : From remote
Solution Status : Vendor Patch

Software: TCExam 11.x

Description:
High-Tech Bridge has discovered multiple vulnerabilities in TCExam, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site scripting attacks.

1) Input passed to the "cid" and "uids" parameters in admin/code/tce_select_users_popup.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

2) Input passed via the "user_groups[]" parameter to admin/code/tce_edit_test.php is not properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

The vulnerabilities are confirmed in version 11.3.008. Prior versions may also be affected.

Solution:
Update to version 11.3.009.

Provided and/or discovered by:
High-Tech Bridge

Original Advisory:
TCExam:
http://freecode.com/projects/tcexam/releases/347588
http://tcexam.git.sourceforge.net/git/gitweb.cgi?p=tcexam/tcexam;a=commit;h=3e1ed3c02122eae182f076daabe903b0c8837971

HTB23111:
https://www.htbridge.com/advisory/HTB23111

http://secunia.com/advisories/50539/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

IBM Java 7 Multiple Vulnerabilities

by Carol~ Moderator - 9/12/12 12:34 PM

In Reply to: VULNERABILITIES / FIXES - September 12, 2012 by Carol~ Moderator

Release Date : 2012-09-12

Criticality level : Highly critical
Impact : Manipulation of data
Exposure of sensitive information
DoS
System access
Where : From remote
Solution Status : Vendor Patch

Software: IBM Java 7.x

Description:
IBM has acknowledged multiple vulnerabilities in IBM Java, which can be exploited by malicious, local users to disclose potentially sensitive data and by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.

Solution:
Update to version 7 SR2.

Original Advisory:
http://www.ibm.com/developerworks/java/jdk/alerts/

http://secunia.com/advisories/50607/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Akcms Logfiles Information Disclosure Security Issue

by Carol~ Moderator - 9/12/12 12:35 PM

In Reply to: VULNERABILITIES / FIXES - September 12, 2012 by Carol~ Moderator

Release Date : 2012-09-12

Criticality level : Less critical
Impact : Exposure of sensitive information
Where : From remote
Solution Status : Unpatched

Software: Akcms 4.x

Description:
A security issue has been discovered in Akcms, which can be exploited by malicious people to disclose sensitive information.

The application stores log files with predictable file names inside the logs directory, which can be exploited to disclose e.g. the database credentials by downloading the log files.

The security issue is confirmed in version 4.2.4. Other versions may also be affected.

Solution:
No official solution is currently available.

Provided and/or discovered by:
L0n3ly-H34rT

Original Advisory:
L0n3ly-H34rT:
http://se3c.blogspot.com/2012/09/akcms-v424-information-disclosure.html

http://secunia.com/advisories/50558/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Citrix XenApp Online Plug-in / Receiver Code Execution

by Carol~ Moderator - 9/12/12 1:12 PM

In Reply to: VULNERABILITIES / FIXES - September 12, 2012 by Carol~ Moderator

Citrix XenApp Online Plug-in / Receiver Code Execution Vulnerability

Release Date : 2012-09-12

Criticality level : Highly critical
Impact : System access
Where : From remote
Solution Status : Vendor Patch

Software: Citrix Receiver
Citrix XenApp Online Plug-in 12.x

Description:
A vulnerability has been reported in Citrix XenApp Online Plug-in and Citrix Receiver, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an unspecified error. No further information is currently available.

Successful exploitation may allow execution of arbitrary code, but requires tricking a user into opening a malicious file from an SMB or WebDAV share.

The vulnerability is reported in Citrix Receiver for Windows versions 3.2 and prior and Citrix XenApp Online Plug-in for Windows versions 12.1 and prior.

Solution:
Update to a fixed version.

Provided and/or discovered by:
The vendor credits Alexey Tyurin, Digital Security Research.

Original Advisory:
http://support.citrix.com/article/CTX134681

http://secunia.com/advisories/50536/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Forum Icon Legend

  • UnreadUnread
  • ReadRead
  • Locked threadLocked thread
  •   
  •   
  •   
  •   
  •   
  •   
  •   
  • ModeratorModerator
  • CNET StaffCNET Staff
  • Samsung StaffSamsung Staff
  • Norton Authorized Support TeamNorton Authorized Support Team
  • AVG StaffAVG Staff
  • avast! Staffavast! Staff
  • Webroot Support TeamWebroot Support Team
  • Acer Customer Experience TeamAcer Customer Experience Team
  • Windows Outreach TeamWindows Outreach Team
  • DISH staffDISH staff
  • Dell StaffDell Staff
  • Intel StaffIntel Staff
  • QuestionQuestion
  • Resolved questionResolved question
  • General discussionGeneral discussion
  • TipTip
  • Alert or warningAlert or warning
  • PraisePraise
  • RantRant

You are e-mailing the following post: Post Subject

Your e-mail address is used only to let the recipient know who sent the e-mail and in case of transmission error. Neither your address nor the recipient's address will be used for any other purpose.

Sorry, there was a problem emailing this post. Please try again.

Submit Email Cancel

Thank you. Sent email to

Close

Thank you. Sent email to

Close

You are reporting the following post: Post Subject

If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.

Offensive: Sexually explicit or offensive language

Spam: Advertisements or commercial links

Disruptive posting: Flaming or offending other users

Illegal activities: Promote cracked software, or other illegal content

Sorry, there was a problem submitting your post. Please try again.

Submit Report Cancel

Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.

Close

Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.

Close

You are posting a reply to: Post Subject

The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to the CNET Forums policies for details. All submitted content is subject to CBS Interactive Site Terms of Use.

You are currently tracking this discussion. Click here to manage your tracked discussions.

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

Sorry, there was a problem submitting your post. Please try again.

Sorry, there was a problem generating the preview. Please try again.

Duplicate posts are not allowed in the forums. Please edit your post and submit again.

Submit Reply Preview Cancel

Thank you, , your post has been submitted.

> Click here to view your post. > Manage your tracked discussions. > Track this discussion. Close

Thank you, , your post has been submitted and will appear on our site shortly.

Close