@RISK: The Consensus Security Alert http://www.sans.org/newsletters/risk/display.php All Updates From Vol: 8 - Issue: 47 en-us (C) SANS Institute 2009 webmaster@sans.org SANS RSS Feed http://www.sans.org/images/rss_logo.gif http://www.sans.org/newsletters/risk/display.php SANS 2009 http://www.sans.org/info/35964/ http://www.sans.org/info/35964/ More than 35 courses, SANS top instructors, all in one great place! SANS 2009 is being held in Orlando, FL on March 2-9. Register today! (1) CRITICAL: Apple Safari Multiple Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#widely1 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#widely1 Category: Widely Deployed Software

Affected:

  • Apple Safari versions prior to 4.0.4

]]> (2) HIGH: RhinoSoft Serv-U FTP Server TEA Decoder Buffer Overflow Vulnerability http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#widely2 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#widely2 Category: Widely Deployed Software

Affected:

  • RhinoSoft Serv-U 9.0 .5
  • RhinoSoft Serv-U 9.0.0.1

]]> (3) MODERATE: Microsoft Windows SMB Packet Denial of Service Vulnerability http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#widely3 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#widely3 Category: Widely Deployed Software

Affected:

  • Microsoft Windows 7 for 32-bit Systems
  • Microsoft Windows 7 for x64-based Systems
  • Microsoft Windows Server 2008 R2 for x64-based Systems*
  • Microsoft Windows Server 2008 R2 for Itanium-based Systems

]]> (4) MODERATE: GIMP Image Parsing Integer Overflow Vulnerability http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#widely4 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#widely4 Category: Widely Deployed Software

Affected:

  • GIMP version 2.6.7 and prior

]]> 09.47.17 Apple Safari Shortcut Menu Options Information Disclosure http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.17 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.17 CVEs: CVE: CVE-2009-2842

Platform: Cross Platform

]]> 09.47.18 Webkit Multiple Remote Code Execution, Denial of Service, and Information Disclosure Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.18 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.18 CVEs: CVE: CVE-2009-3384

Platform: Cross Platform

]]> 09.47.19 WebKit Resource Load Callback Information Disclosure Weakness http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.19 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.19 CVEs: CVE: CVE-2009-2841

Platform: Cross Platform

]]> 09.47.20 WebKit Preflight Request Same Origin Policy Bypass http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.20 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.20 CVEs: CVE: CVE-2009-2816

Platform: Cross Platform

]]> 09.47.21 GIMP BMP Image Parsing Integer Overflow http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.21 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.21 CVEs: CVE: CVE-2009-1570

Platform: Cross Platform

]]> 09.47.22 Adobe Flash Player Same Origin Policy Bypass http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.22 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.22 CVEs: CVE: Not Available

Platform: Cross Platform

]]> 09.47.23 IBM WebSphere Application Server Administrative Console HTML Injection http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.23 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.23 CVEs: CVE: CVE-2009-2747

Platform: Cross Platform

]]> 09.47.24 ngIRCd SSL/TLS Support MOTD Request Multiple Denial Of Service Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.24 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.24 CVEs: CVE: Not Available

Platform: Cross Platform

]]> 09.47.25 libexif "exif-entry.c" Tag Format Conversion Heap Buffer Overflow Vulnerability http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.25 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.25 CVEs: CVE: Not Available

Platform: Cross Platform

]]> 09.47.26 Sun VirtualBox Guest Additions Local Denial Of Service Vulnerability http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.26 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.26 CVEs: CVE: Not Available

Platform: Cross Platform

]]> 09.47.27 FFmpeg TCP/UDP Memory Leak Denial Of ServiceVulnerability http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.27 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.27 CVEs: CVE: CVE-2008-4869

Platform: Cross Platform

]]> 09.47.28 PHP "symlink()" "open_basedir" Restriction Bypass http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.28 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.28 CVEs: CVE: Not Available

Platform: Cross Platform

]]> 09.47.29 Wikipedia Toolbar Remote Code Execution http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.29 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.29 CVEs: CVE: Not Available

Platform: Cross Platform

]]> 09.47.30 Apple Safari CSS Denial of Service http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.30 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.30 CVEs: CVE: Not Available

Platform: Cross Platform

]]> 09.47.31 GIMP PSD Image Parsing Integer Overflow http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.31 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.31 CVEs: CVE: CVE-2009-3909

Platform: Cross Platform

]]> 09.47.32 Novell eDirectory "/dhost/httpstk;submit" Multiple Stack Buffer Overflow Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.32 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.32 CVEs: CVE: Not Available

Platform: Cross Platform

]]> 09.47.11 Linux Kernel"megaraid_as" Local Privilege Escalation http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.11 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.11 CVEs: CVE: Not Available

Platform: Linux

]]> 09.47.12 Linux Kernel KVM "KVM_MAX_MCE_BANKS" Memory Corruption http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.12 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.12 CVEs: CVE: Not Available

Platform: Linux

]]> 09.47.13 Linux Kernel "hfc_usb.c" Local Privilege Escalation http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.13 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.13 CVEs: CVE: Not Available

Platform: Linux

]]> 09.47.49 NETGEAR WNDAP330 Management Frame Remote Denial of Service http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.49 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.49 CVEs: CVE: CVE-2009-0052

Platform: Network Device

]]> 09.47.50 McAfee Network Security Manager Information Disclosure http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.50 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.50 CVEs: CVE: CVE-2009-3566

Platform: Network Device

]]> 09.47.51 Linksys WAP4400N Association Request Remote Denial of Service http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.51 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.51 CVEs: CVE: CVE-2007-5475

Platform: Network Device

]]> 09.47.16 Novell eDirectory "/dhost/modules?I:" Buffer Overflow http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.16 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.16 CVEs: CVE: Not Available

Platform: Novell

]]> 09.47.14 Sun Solaris TCP Sockets Local Denial Of Service http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.14 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.14 CVEs: CVE: Not Available

Platform: Solaris

]]> 09.47.2 Yahoo! Messenger http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.2 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.2 CVEs: CVE: Not Available

Platform: Third Party Windows Apps

]]> 09.47.3 XM Easy Personal FTP Server "NLST" Command Remote Denial of Service http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.3 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.3 CVEs: CVE: Not Available

Platform: Third Party Windows Apps

]]> 09.47.4 XM Easy Personal FTP Server "APPE' and 'DELE" Commands Remote Denial of Service Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.4 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.4 CVEs: CVE: Not Available

Platform: Third Party Windows Apps

]]> 09.47.5 Avast! Antivirus 'aswRsr.sys' Driver Local Privilege Escalation http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.5 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.5 CVEs: CVE: Not Available

Platform: Third Party Windows Apps

]]> 09.47.6 Home FTP Server "SITE INDEX' Command Remote Denial of Service http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.6 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.6 CVEs: CVE: Not Available

Platform: Third Party Windows Apps

]]> 09.47.7 HP Discovery and Dependency Mapping Inventory Unspecified Remote Code Execution http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.7 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.7 CVEs: CVE: CVE-2009-3841

Platform: Third Party Windows Apps

]]> 09.47.8 Home FTP Server 'MKD' Command Directory Traversal http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.8 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.8 CVEs: CVE: Not Available

Platform: Third Party Windows Apps

]]> 09.47.9 Kaspersky Anti-Virus "kl1.sys" Driver Local Privilege Escalation http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.9 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.9 CVEs: CVE: Not Available

Platform: Third Party Windows Apps

]]> 09.47.10 HP OpenView Network Node Manager "ovdbrun.exe" Denial of Service http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.10 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.10 CVEs: CVE: CVE-2009-3840

Platform: Third Party Windows Apps

]]> 09.47.15 CUPS File Descriptors Handling Remote Denial Of Service http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.15 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.15 CVEs: CVE: CVE-2009-3553

Platform: Unix

]]> 09.47.38 Drupal RootCandy Theme URI Value HTML Injection http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.38 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.38 CVEs: CVE: Not Available

Platform: Web Application

]]> 09.47.39 Drupal AddToAny Node Title HTML Injection http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.39 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.39 CVEs: CVE: Not Available

Platform: Web Application

]]> 09.47.40 Drupal Web Services Module Authentication Bypass http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.40 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.40 CVEs: CVE: Not Available

Platform: Web Application

]]> 09.47.41 HP ProCurve Switch Management Interface Multiple HTML Injection Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.41 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.41 CVEs: CVE: Not Available

Platform: Web Application

]]> 09.47.42 Wordpress "wp-admin/includes/file.php" Arbitrary File Upload http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.42 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.42 CVEs: CVE: Not Available

Platform: Web Application

]]> 09.47.43 UseBB BBcode Parsing Remote Denial Of Service http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.43 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.43 CVEs: CVE: Not Available

Platform: Web Application

]]> 09.47.44 Wordpress Unspecified Cross-Site Scripting http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.44 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.44 CVEs: CVE: Not Available

Platform: Web Application

]]> 09.47.45 XOOPS Profile Activation Security Bypass Vulnerability http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.45 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.45 CVEs: CVE: Not Available

Platform: Web Application

]]> 09.47.46 PHD Help Desk Multiple Cross-Site Scripting Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.46 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.46 CVEs: CVE: Not Available

Platform: Web Application

]]> 09.47.47 SemanticScuttle Prior to 0.94.1 Multiple Unspecified Cross-Site Scripting Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.47 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.47 CVEs: CVE: Not Available

Platform: Web Application

]]> 09.47.48 Joomla! eZine Component "d4m_ajax_pagenav.php" Remote File Include http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.48 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.48 CVEs: CVE: Not Available

Platform: Web Application

]]> 09.47.33 Apple Mac OS X Apache HTTP TRACE Cross-Site Scripting http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.33 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.33 CVEs: CVE: CVE-2009-2823

Platform: Web Application - Cross Site Scripting

]]> 09.47.34 phpMyFAQ Search Page Cross-Site Scripting http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.34 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.34 CVEs: CVE: Not Available

Platform: Web Application - Cross Site Scripting

]]> 09.47.35 Alteon OS BBI Cross-Site Request Forgery and HTML Injection Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.35 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.35 CVEs: CVE: Not Available

Platform: Web Application - Cross Site Scripting

]]> 09.47.36 Multiple JiRo's Products "files/login.asp" Multiple SQL Injection Vulnerabilities http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.36 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.36 CVEs: CVE: Not Available

Platform: Web Application - SQL Injection

]]> 09.47.37 ActiveWebSoftwares Active Bids "default.asp" SQL Injection http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.37 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.37 CVEs: CVE: Not Available

Platform: Web Application - SQL Injection

]]> 09.47.1 Microsoft Windows "KeAccumulateTicks()" SMB2 Packet Remote Denial of Service http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.1 http://www.sans.org/newsletters/risk/display.php?v=8&i=47&rss=Y#09.47.1 CVEs: CVE: CVE-2009-3676

Platform: Windows

]]>