Ad: Manage updates with the Download App
ie8 fix

Spyware, viruses, & security forum: VULNERABILITIES / FIXES - December 26, 2012

by: Carol~ December 26, 2012 8:37 AM PST

Like this

0 people like this thread

Staff pick

VULNERABILITIES / FIXES - December 26, 2012

by Carol~ Moderator - 12/26/12 8:37 AM

cPanel "account" Cross-Site Scripting Vulnerability

Release Date: 2012-12-26

Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status : Unpatched

Software: cPanel 11.x

Description:
A vulnerability has been reported in cPanel, which can be exploited by malicious people to conduct cross-site scripting attacks.

Input passed to the "account" parameter in frontend/x3/mail/manage.html is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

The vulnerability is reported in version 11.34.0.8. Other versions may also be affected.

Solution:
No official solution is currently available.

Provided and/or discovered by:
Rafay Baloch, RafayHackingArticles

Original Advisory:
http://packetstormsecurity.org/files/119071/C-Panel-Cross-Site-Scripting.html

http://secunia.com/advisories/51651/


Reply
Report offensive post
Email to friend

IBM Rational Functional Tester Multiple Java Vulnerabilities

by Carol~ Moderator - 12/26/12 8:41 AM

In Reply to: VULNERABILITIES / FIXES - December 26, 2012 by Carol~ Moderator

Release Date: 2012-12-26

Criticality level : Highly critical
Impact : DoS
System access
Manipulation of data
Exposure of sensitive information
Where : From remote
Solution Status : Vendor Patch

Software: IBM Rational Functional Tester 8.x

Description:
IBM has acknowledged multiple vulnerabilities in IBM Rational Functional Tester, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and potentially compromise a vulnerable system.

The vulnerabilities are reported in versions prior to 8.3.0.1.

Solution:
Update to version 8.3.0.1.

Original Advisory:
IBM:
http://www.ibm.com/support/docview.wss?uid=swg21619418
http://www.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_vulnerabilities_in_rational_functional_tester_versions_8_x_due_to_security_vulnerabilities_in_ibm_jre_7_0_service_release_2_or_earlier_and_non_ibm_java_7_03?lang=en_us

http://secunia.com/advisories/51688/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

EMC Data Protection Advisor Web UI Directory Traversal

by Carol~ Moderator - 12/26/12 8:41 AM

In Reply to: VULNERABILITIES / FIXES - December 26, 2012 by Carol~ Moderator

EMC Data Protection Advisor Web UI Directory Traversal Vulnerability

Release Date: 2012-12-26

Criticality level : Less critical
Impact : Exposure of sensitive information
Where : From local network
Solution Status : Vendor Patch

Software: EMC Data Protection Advisor 5.x

Description:
A vulnerability has been reported in EMC Data Protection Advisor, which can be exploited by malicious people to disclose certain sensitive information.

Certain unspecified input passed to the Web UI is not properly verified before being used to read files. This can be exploited to read arbitrary files from the installation directory via directory traversal sequences.

The vulnerability is reported in the following versions:
* EMC Data Protection Advisor versions 5.6 and 5.6 SP1
* EMC Data Protection Advisor versions 5.7 and 5.7 SP1
* EMC Data Protection Advisor versions 5.8, 5.8 SP1, 5.8 SP2, 5.8 SP3, and 5.8 SP4

Solution:
Apply patch DPA-21068.

Provided and/or discovered by:
The vendor credits Andrea Micalizzi (aka rgod) via ZDI.

Original Advisory:
http://archives.neohapsis.com/archives/bugtraq/2012-12/att-0125/ESA-2012-060.txt

http://secunia.com/advisories/51672/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

grep Long Line Handling Integer Overflow Vulnerability

by Carol~ Moderator - 12/26/12 8:41 AM

In Reply to: VULNERABILITIES / FIXES - December 26, 2012 by Carol~ Moderator

Release Date: 2012-12-26

Criticality level : Moderately critical
Impact : System access
Where : From remote
Solution Status : Vendor Patch

Software: grep 2.x

Description:
A vulnerability has been reported in grep, which can be exploited by malicious people to potentially compromise a user's system.

The vulnerability is caused due to an integer overflow error when parsing very long lines and can be exploited to cause a heap-based buffer overflow.

Successful exploitation may allow execution of arbitrary code, but requires tricking a user into processing a malicious file.

The vulnerability is reported in versions prior to 2.11.

Solution:
Update to version 2.11 or later.

Provided and/or discovered by:
Joshua Rogers via Ubuntu bug report.

Original Advisory:
GNU:
http://savannah.gnu.org/forum/forum.php?forum_id=7132

Joshua Rogers:
https://bugs.launchpad.net/ubuntu/+source/grep/+bug/1091473

http://secunia.com/advisories/51666/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

FreeType BDF Glyph Processing Buffer Overflow Vulnerability

by Carol~ Moderator - 12/26/12 8:41 AM

In Reply to: VULNERABILITIES / FIXES - December 26, 2012 by Carol~ Moderator

Release Date: 2012-12-26

Criticality level : Highly critical
Impact : System access
Where : From remote
Solution Status : Vendor Patch

Software: FreeType 2.x

Description:
A vulnerability has been reported in FreeType, which can be exploited by malicious people to potentially compromise an application using the library.

The vulnerability is caused due to an error in the "_bdf_parse_glyphs()" function (src/bdf/bdflib.c) when processing glyph information within Bitmap Distribution Format (BDF) files and can be exploited to cause a heap-based buffer overflow.

Successful exploitation may allow execution of arbitrary code.

The vulnerability is reported in versions prior to 2.4.11.

Solution:
Update to version 2.4.11.

Provided and/or discovered by:
Mateusz Jurczyk (j00ru), Google Security Team via GNU bug report.

Original Advisory:
GNU:
https://savannah.nongnu.org/bugs/?37907

http://secunia.com/advisories/51519/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Open-Realty Cross-Site Request Forgery Vulnerability

by Carol~ Moderator - 12/26/12 8:43 AM

In Reply to: VULNERABILITIES / FIXES - December 26, 2012 by Carol~ Moderator

Release Date: 2012-12-26

Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status : Unpatched

Software: Open-Realty 3.x

Description:
Aung Khant has reported a vulnerability in Open-Realty, which can be exploited by malicious people to conduct cross-site request forgery attacks.

The application allows users to perform certain actions via HTTP requests without performing proper validity checks to verify the requests. This can be exploited to e.g. change account data when a logged-in administrative user visits a specially crafted web page.

The vulnerability is reported in version 3.2.5. Other versions may also be affected.

Solution:
No official solution is currently available.

Provided and/or discovered by:
Aung Khant, YGN Ethical Hacker Group

Original Advisory:
http://yehg.net/lab/pr0js/advisories/%5Bopen-realty_3.x%5D_csrf

http://secunia.com/advisories/51585/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Hitachi Multiple Products Apache HTTP Server Scoreboard

by Carol~ Moderator - 12/26/12 9:16 AM

In Reply to: VULNERABILITIES / FIXES - December 26, 2012 by Carol~ Moderator

Hitachi Multiple Products Apache HTTP Server Scoreboard Invalid Free Security Bypass

Release Date: 2012-12-26

Criticality level : Not critical
Impact : Security Bypass
Where : Local system
Solution Status : Vendor Patch

Software: Cosminexus 7.x
Cosminexus 8.x
Cosminexus 9.x
Hitachi Web Server 3.x
Hitachi Web Server 4.x

Description:
Hitachi has acknowledged a weakness in multiple products, which can be exploited by malicious, local users to bypass certain security restrictions.

Please see the vendor's advisory for a list of affected products.

Solution:
Apply updates

Original Advisory:
Hitachi (HS12-032):
http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS12-032/index.html

http://secunia.com/advisories/51624/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Hitachi Multiple Products Apache HTTP Server "httpOnly"

by Carol~ Moderator - 12/26/12 9:16 AM

In Reply to: VULNERABILITIES / FIXES - December 26, 2012 by Carol~ Moderator

Hitachi Multiple Products Apache HTTP Server "httpOnly" Cookie Disclosure Vulnerability

Release Date: 2012-12-26

Criticality level : Moderately critical
Impact : Exposure of sensitive information
Where : From remote
Solution Status : Vendor Patch

Software: Cosminexus 5.x
Cosminexus 6.x
Cosminexus 7.x
Cosminexus 8.x
Cosminexus 9.x
Hitachi Web Server - Security Enhancement 2.x
Hitachi Web Server 1.x
Hitachi Web Server 2.x
Hitachi Web Server 3.x
Hitachi Web Server 4.x
uCosminexus Application Server
uCosminexus Developer

Description:
Hitachi has acknowledged a vulnerability in multiple products, which can be exploited by malicious people to disclose potentially sensitive information.

Please see the vendor's advisory for a list of affected products.

Solution:
Apply updates

Original Advisory:
Hitachi (HS12-033):
http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS12-033/index.html

http://secunia.com/advisories/51626/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Hitachi Collaboration Products Cross-Site Scripting

by Carol~ Moderator - 12/26/12 9:16 AM

In Reply to: VULNERABILITIES / FIXES - December 26, 2012 by Carol~ Moderator

Hitachi Collaboration Products Cross-Site Scripting Vulnerability

Release Date: 2012-12-26

Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status : Vendor Patch

Software: Groupmax Collaboration Portal 7.x
Groupmax Collaboration Web Client - Forum/File Sharing 7.x
Groupmax Collaboration Web Client - Mail/Schedule 7.x
Groupmax Collaboration Web Client 7.x
uCosminexus Collaboration Portal 6.x

Description:
A vulnerability has been reported in some Hitachi Collaboration products, which can be exploited by malicious people to conduct cross-site scripting attacks.

Certain unspecified input is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

Please see the vendor's advisory for a list of affected products.

Solution:
Apply updates

Provided and/or discovered by:
Reported by the vendor.

Original Advisory:
Hitachi (HS12-029):
http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS12-029/index.html

http://secunia.com/advisories/51630/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Hitachi Multiple Products Apache "apr_brigade_split_line()"

by Carol~ Moderator - 12/26/12 9:17 AM

In Reply to: VULNERABILITIES / FIXES - December 26, 2012 by Carol~ Moderator

Hitachi Multiple Products Apache "apr_brigade_split_line()" Denial of Service Vulnerability

Release Date: 2012-12-26

Criticality level : Moderately critical
Impact : DoS
Where : From remote
Solution Status : Vendor Patch

Software: Cosminexus 7.x
Cosminexus 8.x
Cosminexus 9.x
Hitachi Web Server 3.x
Hitachi Web Server 4.x
uCosminexus Application Server
uCosminexus Developer
uCosminexus Service Architect
uCosminexus Service Platform

Description:
Hitachi has acknowledged a vulnerability in multiple products, which can be exploited by malicious people to cause a DoS (Denial of Service).

Please see the vendor's advisory for a list of affected products.

Solution:
Apply updates

Original Advisory:
Hitachi (HS12-031):
http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS12-031/index.html

http://secunia.com/advisories/51664/


Was this reply helpful? (0)   (0)

Staff pick

Reply
Report offensive post
Email to friend

Forum Icon Legend

  • UnreadUnread
  • ReadRead
  • Locked threadLocked thread
  •   
  •   
  •   
  •   
  •   
  •   
  •   
  • ModeratorModerator
  • CNET StaffCNET Staff
  • Samsung StaffSamsung Staff
  • Norton Authorized Support TeamNorton Authorized Support Team
  • AVG StaffAVG Staff
  • avast! Staffavast! Staff
  • Webroot Support TeamWebroot Support Team
  • Acer Customer Experience TeamAcer Customer Experience Team
  • Windows Outreach TeamWindows Outreach Team
  • DISH staffDISH staff
  • Dell StaffDell Staff
  • Intel StaffIntel Staff
  • QuestionQuestion
  • Resolved questionResolved question
  • General discussionGeneral discussion
  • TipTip
  • Alert or warningAlert or warning
  • PraisePraise
  • RantRant

You are e-mailing the following post: Post Subject

Your e-mail address is used only to let the recipient know who sent the e-mail and in case of transmission error. Neither your address nor the recipient's address will be used for any other purpose.

Sorry, there was a problem emailing this post. Please try again.

Submit Email Cancel

Thank you. Sent email to

Close

Thank you. Sent email to

Close

You are reporting the following post: Post Subject

If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.

Offensive: Sexually explicit or offensive language

Spam: Advertisements or commercial links

Disruptive posting: Flaming or offending other users

Illegal activities: Promote cracked software, or other illegal content

Sorry, there was a problem submitting your post. Please try again.

Submit Report Cancel

Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.

Close

Your message has been submitted and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.

Close

You are posting a reply to: Post Subject

The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to the CNET Forums policies for details. All submitted content is subject to CBS Interactive Site Terms of Use.

You are currently tracking this discussion. Click here to manage your tracked discussions.

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

Sorry, there was a problem submitting your post. Please try again.

Sorry, there was a problem generating the preview. Please try again.

Duplicate posts are not allowed in the forums. Please edit your post and submit again.

Submit Reply Preview Cancel

Thank you, , your post has been submitted.

> Click here to view your post. > Manage your tracked discussions. > Track this discussion. Close

Thank you, , your post has been submitted and will appear on our site shortly.

Close