Ad: Manage updates with the Download App
ie8 fix

Spyware, viruses, & security forum: VULNERABILITIES / FIXES - October 03, 2012

by: Carol~ October 3, 2012 6:30 AM PDT

Like this

0 people like this thread

Staff pick

VULNERABILITIES / FIXES - October 03, 2012

by Carol~ Moderator - 10/3/12 6:30 AM

Oracle Solaris Perl CGI.pm "header()" HTTP Header Injection Vulnerability

Release Date : 2012-10-03

Criticality level : Less critical
Impact: Cross Site Scripting
Where: From remote
Solution Status : Vendor Patch

Operating System : Sun Solaris 10.x
Sun Solaris 9.x

Description:
Oracle has acknowledged a vulnerability in Perl included in Solaris, which can be exploited by malicious people to conduct HTTP response splitting attacks in an application using the library.

Solution:
Apply patches.

Original Advisory:
https://blogs.oracle.com/sunsecurity/entry/cve_2010_2761_code_injection

http://secunia.com/advisories/50845/


Reply
Report offensive post
Email to friend

Wireshark Multiple Vulnerabilities

by Carol~ Moderator - 10/3/12 6:35 AM

In Reply to: VULNERABILITIES / FIXES - October 03, 2012 by Carol~ Moderator

Release Date : 2012-10-03

Criticality level : Highly critical
Impact: DoS
System access
Where: From remote
Solution Status : Vendor Patch

Software: Wireshark 1.x

Description:
Multiple vulnerabilities have been reported in Wireshark, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.

1) An error in the HSRP dissector when processing certain packets can be exploited to cause an infinite loop and consume CPU resources.

2) An error in the PPP dissector when processing certain packets can be exploited to cause a crash.

3) An error in the DRDA dissector when processing certain packets can be exploited to cause an infinite loop and consume CPU resources.

4) An error in the LDP dissector when processing certain packets can be exploited to cause a buffer overflow.

Successful exploitation of this vulnerability may allow execution of arbitrary code.

The vulnerabilities are reported in versions prior to 1.8.3.

Solution:
Update to version 1.8.3.

Provided and/or discovered by:
1, 2) Reported by the vendor.
3) The vendor credits Martin Wilck.
4) The vendor credits Laurent Butti.

Original Advisory:
http://www.wireshark.org/security/wnpa-sec-2012-26.html
http://www.wireshark.org/security/wnpa-sec-2012-27.html
http://www.wireshark.org/security/wnpa-sec-2012-28.html
http://www.wireshark.org/security/wnpa-sec-2012-29.html

http://secunia.com/advisories/50843/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

libxslt Multiple Vulnerabilities

by Carol~ Moderator - 10/3/12 6:35 AM

In Reply to: VULNERABILITIES / FIXES - October 03, 2012 by Carol~ Moderator

Release Date : 2012-10-03

Criticality level : Highly critical
Impact: DoS
System access
Where: From remote
Solution Status : Vendor Workaround

Software: libxslt 1.x

Description:
Some vulnerabilities have been reported in libxslt, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.

Solution:
Fixed in the source code repository.

Provided and/or discovered by:
Originally reported in Google Chrome by Cris Neckar, Google Chrome Security Team and Nicolas Gregoire.

Original Advisory:
http://git.gnome.org/browse/libxslt/commit/?id=1564b30e994602a95863d9716be83612580a2fed
http://git.gnome.org/browse/libxslt/commit/?id=54977ed7966847e305a2008cb18892df26eeb065
http://git.gnome.org/browse/libxslt/commit/?id=937ba2a3eb42d288f53c8adc211bd1122869f0bf

http://secunia.com/advisories/50864/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Red Hat update for freeradius2

by Carol~ Moderator - 10/3/12 6:35 AM

In Reply to: VULNERABILITIES / FIXES - October 03, 2012 by Carol~ Moderator

Release Date : 2012-10-03

Criticality level : Highly critical
Impact: System access
Where: From remote
Solution Status : Vendor Patch

Operating System : Red Hat Enterprise Linux Server 5
Red Hat Enterprise Linux Server 6
Red Hat Enterprise Linux Workstation 6
RHEL Desktop Workstation 5

Description:
Red Hat has issued an update for freeradius2. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.

Solution:
Updated packages are available via Red Hat Network.

Original Advisory:
RHSA-2012:1326-1:
https://rhn.redhat.com/errata/RHSA-2012-1326.html

RHSA-2012:1327-1:
https://rhn.redhat.com/errata/RHSA-2012-1327.html

http://secunia.com/advisories/50813/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Ubuntu update for qemu

by Carol~ Moderator - 10/3/12 6:35 AM

In Reply to: VULNERABILITIES / FIXES - October 03, 2012 by Carol~ Moderator

Release Date : 2012-10-03

Criticality level : Less critical
Impact: Privilege escalation
Where: Local system
Solution Status : Vendor Patch

Operating System : Ubuntu Linux 10.04
Ubuntu Linux 11.04
Ubuntu Linux 11.10
Ubuntu Linux 12.04

Description:
Ubuntu has issued an update for qemu. This fixes a vulnerability, which can be exploited by malicious, local users in a guest virtual machine to potentially gain escalated privileges.

Solution:
Apply updated packages.

Original Advisory:
USN-1590-1:
http://www.ubuntu.com/usn/usn-1590-1/

http://secunia.com/advisories/50860/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Ubuntu update for python

by Carol~ Moderator - 10/3/12 6:47 AM

In Reply to: VULNERABILITIES / FIXES - October 03, 2012 by Carol~ Moderator

Release Date : 2012-10-03

Criticality level : Moderately critical
Impact: Cross Site Scripting
Exposure of sensitive information
DoS
Where: From remote
Solution Status : Vendor Patch

Operating System : Ubuntu Linux 11.04
Ubuntu Linux 11.10

Description:
Ubuntu has issued an update for python. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information and by malicious people to conduct cross-site scripting attacks, disclose potentially sensitive information, and cause a DoS (Denial of Service).

Solution:
Apply updated packages.

Original Advisory:
USN-1592-1:
http://www.ubuntu.com/usn/usn-1592-1/

http://secunia.com/advisories/50850/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Ubuntu update for devscripts

by Carol~ Moderator - 10/3/12 8:34 AM

In Reply to: VULNERABILITIES / FIXES - October 03, 2012 by Carol~ Moderator

Release Date : 2012-10-03

Criticality level : Less critical
Impact: DoS
System access
Where: From remote
Solution Status : Vendor Patch

Operating System : Ubuntu Linux 10.04
Ubuntu Linux 11.04
Ubuntu Linux 11.10
Ubuntu Linux 12.04

Description:
Ubuntu has issued an update for devscripts. This fixes some weaknesses, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.

Solution:
Apply updated packages.

Original Advisory:
USN-1593-1:
http://www.ubuntu.com/usn/usn-1593-1/

http://secunia.com/advisories/50851/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Ubuntu update for xdiagnose

by Carol~ Moderator - 10/3/12 10:00 AM

In Reply to: VULNERABILITIES / FIXES - October 03, 2012 by Carol~ Moderator

Release Date : 2012-10-03

Criticality level : Less critical
Impact: Privilege escalation
Where: Local system
Solution Status : Vendor Patch

Operating System : Ubuntu Linux 12.04

Description:
Ubuntu has issued an update for xdiagnose. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.

The security issue is caused due to the application using a temporary file in an insecure manner, which can be exploited to e.g. overwrite arbitrary files via symlink attacks.

Solution:
Apply updated packages.

Provided and/or discovered by:
The vendor credits Alec Warner.

Original Advisory:
USN-1591-1:
http://www.ubuntu.com/usn/usn-1591-1/

https://launchpad.net/bugs/1036211

http://secunia.com/advisories/50854/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

ProjectPier "upload.php" File Upload Vulnerability

by Carol~ Moderator - 10/3/12 10:01 AM

In Reply to: VULNERABILITIES / FIXES - October 03, 2012 by Carol~ Moderator

Release Date : 2012-10-03

Criticality level : Highly critical
Impact: System access
Where: From remote
Solution Status : Unpatched

Software: ProjectPier 0.x

Description:
A vulnerability has been discovered in ProjectPier, which can be exploited by malicious people to compromise a vulnerable system.

The vulnerability is caused due to the tools/upload.php script improperly verifying uploaded files. This can be exploited to execute arbitrary PHP code by uploading a malicious PHP script with multiple extensions.

The vulnerability is confirmed in version 0.8.8. Other versions may also be affected.

Solution:
No official solution is currently available.

Provided and/or discovered by:
BlackHawk

Original Advisory:
http://packetstormsecurity.org/files/117070/ProjectPier-0.8.8-Shell-Upload.html

http://secunia.com/advisories/50826/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

PowerTCP WebServer for ActiveX Request Processing Denial

by Carol~ Moderator - 10/3/12 10:08 AM

In Reply to: VULNERABILITIES / FIXES - October 03, 2012 by Carol~ Moderator

PowerTCP WebServer for ActiveX Request Processing Denial of Service Vulnerability

Release Date : 2012-10-03

Criticality level : Moderately critical
Impact: DoS
Where: From remote
Solution Status : Unpatched

Software: PowerTCP WebServer for ActiveX 1.8.x

Description:
catatonicprime has discovered a vulnerability in PowerTCP WebServer for ActiveX, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an error when processing web requests and can be exploited to exhaust usable stack space and crash the application via an overly long request.

The vulnerability is confirmed in version 1.9.2. Other versions may also be affected.

Solution:
No official solution is currently available.

Provided and/or discovered by:
catatonicprime

Original Advisory:
http://archives.neohapsis.com/archives/bugtraq/2012-10/0001.html

http://secunia.com/advisories/50839/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Red Hat update for kernel

by Carol~ Moderator - 10/3/12 10:20 AM

In Reply to: VULNERABILITIES / FIXES - October 03, 2012 by Carol~ Moderator

Release Date : 2012-10-03

Criticality level : Less critical
Impact: Privilege escalation
Exposure of sensitive information
DoS
Where: Local system
Solution Status : Vendor Patch

Operating System : Red Hat Enterprise Linux Desktop 5
Red Hat Enterprise Linux Server 5

Description:
Red Hat has issued an update for the kernel. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, or to potentially gain escalated privileges.

Solution:
Updated packages are available via Red Hat Network.

Original Advisory:
RHSA-2012:1323-1:
https://rhn.redhat.com/errata/RHSA-2012-1323.html

http://secunia.com/advisories/50811/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

TurboFTP Server PORT Command Processing Buffer Overflow

by Carol~ Moderator - 10/3/12 10:20 AM

In Reply to: VULNERABILITIES / FIXES - October 03, 2012 by Carol~ Moderator

TurboFTP Server PORT Command Processing Buffer Overflow Vulnerability

Release Date : 2012-10-03

Criticality level : Moderately critical
Impact: System access
Where: From remote
Solution Status : Unpatched

Software: TurboFTP Server 1.x

Description:
Zhao Liang has discovered a vulnerability in TurboFTP Server, which can be exploited by malicious users to compromise a vulnerable system.

The vulnerability is caused due to a boundary error when processing the FTP "PORT" command. This can be exploited to cause a stack-based buffer overflow via an overly long IP octet string.

Successful exploitation allows execution of arbitrary code.

The vulnerability is confirmed in version 1.30.823. Other versions may also be affected.

Solution:
No official solution is currently available.

Provided and/or discovered by:
Zhao Liang, Beijing Leadsec Technology via Secunia.

http://secunia.com/advisories/50595/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

CYME ChartFX Client Server ActiveX Control Array Indexing

by Carol~ Moderator - 10/3/12 10:20 AM

In Reply to: VULNERABILITIES / FIXES - October 03, 2012 by Carol~ Moderator

CYME ChartFX Client Server ActiveX Control Array Indexing Vulnerability

Release Date : 2012-10-03

Criticality level : Highly critical
Impact: System access
Where: From remote
Solution Status : Unpatched

Software: ChartFX Client Server ActiveX Control 6.x
CYME 5.x

Description:
Francis Provencher has discovered a vulnerability in CYME, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an indexing error in the "ShowPropertiesDialog()" method (ChartFX.ClientServer.Core.dll) of the ChartFX ActiveX Control. This can be exploited to write a single byte value to an arbitrary memory location via the "pageNumber" parameter.

Successful exploitation may allow execution of arbitrary code.

The vulnerability is confirmed in the following products (other versions may also be affected):
* CYME version 5.0.12.663.
* ChartFX Client Server ActiveX Control version 6.2.2421.25134.

Solution:
No official solution is currently available.

Provided and/or discovered by:
Francis Provencher via Secunia.

http://secunia.com/advisories/48430/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Forum Icon Legend

  • UnreadUnread
  • ReadRead
  • Locked threadLocked thread
  •   
  •   
  •   
  •   
  •   
  •   
  •   
  • ModeratorModerator
  • CNET StaffCNET Staff
  • Samsung StaffSamsung Staff
  • Norton Authorized Support TeamNorton Authorized Support Team
  • AVG StaffAVG Staff
  • avast! Staffavast! Staff
  • Webroot Support TeamWebroot Support Team
  • Acer Customer Experience TeamAcer Customer Experience Team
  • Windows Outreach TeamWindows Outreach Team
  • DISH staffDISH staff
  • Dell StaffDell Staff
  • Intel StaffIntel Staff
  • QuestionQuestion
  • Resolved questionResolved question
  • General discussionGeneral discussion
  • TipTip
  • Alert or warningAlert or warning
  • PraisePraise
  • RantRant

You are e-mailing the following post: Post Subject

Your e-mail address is used only to let the recipient know who sent the e-mail and in case of transmission error. Neither your address nor the recipient's address will be used for any other purpose.

Sorry, there was a problem emailing this post. Please try again.

Submit Email Cancel

Thank you. Sent email to

Close

Thank you. Sent email to

Close

You are reporting the following post: Post Subject

If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.

Offensive: Sexually explicit or offensive language

Spam: Advertisements or commercial links

Disruptive posting: Flaming or offending other users

Illegal activities: Promote cracked software, or other illegal content

Sorry, there was a problem submitting your post. Please try again.

Submit Report Cancel

Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.

Close

Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.

Close

You are posting a reply to: Post Subject

The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to the CNET Forums policies for details. All submitted content is subject to CBS Interactive Site Terms of Use.

You are currently tracking this discussion. Click here to manage your tracked discussions.

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

Sorry, there was a problem submitting your post. Please try again.

Sorry, there was a problem generating the preview. Please try again.

Duplicate posts are not allowed in the forums. Please edit your post and submit again.

Submit Reply Preview Cancel

Thank you, , your post has been submitted.

> Click here to view your post. > Manage your tracked discussions. > Track this discussion. Close

Thank you, , your post has been submitted and will appear on our site shortly.

Close