New Security Vulnerabilities 2nd July 2007

The following new security tests were added to Telspace' database:

 

TOTAL THREATS IN THE DATABASE 14950


NEW THREATS RISK FACTOR SUMMARY
(*****) Urgent Risk 13
(**** ) Critical Risk 211
(*** ) High Risk 24
(** ) Medium Risk 18
(* ) Low Risk 11


NEW THREATS FAMILY SUMMARY
Red Hat Local Checks 46
Solaris Local Checks 28
Mandrake Local Checks 26
Fedora Local Checks 26
Debian Local Checks 25
Windows 21
Centos Local Checks 18
Web Services 17
SuSE Local Checks 15
Gentoo Local Checks 14
FreeBSD Local Checks 14
Service Detection 6
Microsoft Bulletins 6
Cross-Site Scripting 5
MacOS X Local Checks 3
Remote Shell Access 2
Denial of Service 2
Slackware Local Checks 2
Unix 1

 

(*****) Urgent Risk - Web Services
BASE Authentication Bypass Vulnerability (2)

(*****) Urgent Risk - Web Services
Symantec Reporting Server < 1.0.224.0 Multiple Vulnerabilities

(*****) Urgent Risk - Web Services
Openfire Admin Console Privilege Escalation Vulnerability

(*****) Urgent Risk - Remote Shell Access
Symantec Storage Foundation VxSchedService.EXE Scheduler Service
Authentication Bypass Vulnerability

(*****) Urgent Risk - Service Detection
SNMPc Management Server Default Credentials

(*****) Urgent Risk - Windows
AntiVir File Handling Vulnerabilities

(*****) Urgent Risk - Web Services
PNphpBB2 cat_id SQL Injection Vulnerability

(*****) Urgent Risk - Web Services
FuseTalk txForumID Parameter SQL Injection Vulnerability

(*****) Urgent Risk - MacOS X Local Checks
Mac OS X Security Update 2007-005

(*****) Urgent Risk - Web Services
PHP < 5.2.3 Multiple Vulnerabilities

(*****) Urgent Risk - Web Services
XOOPS XFSection Module dir_module Parameter Remote File Include
Vulnerability

(*****) Urgent Risk - Remote Shell Access
Firebird DataBase Server Buffer Overflow

(*****) Urgent Risk - Denial of Service
Linux SCTP Unknown Chunk Type Denial of Service Vulnerability

(**** ) Critical Risk - Solaris Local Checks
Solaris 10 (sparc) : 119783-03

(**** ) Critical Risk - Debian Local Checks
[DSA1304] DSA-1304-1 kernel-source-2.6.8

(**** ) Critical Risk - SuSE Local Checks
SUSE-SA:2007:025: krb5

(**** ) Critical Risk - Solaris Local Checks
Solaris 10 (sparc) : 119466-11

(**** ) Critical Risk - SuSE Local Checks
SUSE-SA:2007:023: OpenOffice_org,libwpd

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0114: xen

(**** ) Critical Risk - Solaris Local Checks
Solaris 9 (i386) : 120982-12

(**** ) Critical Risk - Debian Local Checks
[DSA1312] DSA-1312-1 libapache-mod-jk

(**** ) Critical Risk - Debian Local Checks
[DSA1303] DSA-1303-1 lighttpd

(**** ) Critical Risk - Debian Local Checks
[DSA1314] DSA-1314-1 open-iscsi

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0385: fetchmail

(**** ) Critical Risk - Windows
FlipViewer ActiveX Control < 4.1 Buffer Overflow Vulnerabilities

(**** ) Critical Risk - Windows
Zoomify Viewer ActiveX Buffer Overflow Vulnerability

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0057: bind

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0097: devhelp

(**** ) Critical Risk - Mandrake Local Checks
MDKA-2007:055: gnome-games

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:118: libexif

(**** ) Critical Risk - Windows
Corel ActiveCGM ActiveX Buffer Overflow Vulnerabilities

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:113: mutt

(**** ) Critical Risk - Debian Local Checks
[DSA1319] DSA-1319-1 maradns

(**** ) Critical Risk - Solaris Local Checks
Solaris 9 (sparc) : 125276-02

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-584: spamassassin

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0431: shadow

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0327: jakarta

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0400: devhelp

(**** ) Critical Risk - SuSE Local Checks
SUSE-SA:2007:027: XFree86, Xorg

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:120: mozilla-firefox

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0465: cdrecord

(**** ) Critical Risk - Windows
OpenOffice RTF Parser Buffer Overflow Vulnerability

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:130: proftpd

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:124: tetex

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-561: freetype

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-549: yelp

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0132: libXfont

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0501: libexif

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0061: samba

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-577: mod_perl

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0082: php

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0486: mod_perl

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:121: freetype2

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0497: iscsi

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0169: kernel

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0386: mutt

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:115: clamav

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-538: file

(**** ) Critical Risk - Windows
Yahoo! Messenger Webcam ActiveX Buffer Overflow Vulnerabilities

(**** ) Critical Risk - MacOS X Local Checks
Mac OS X < 10.4.10

(**** ) Critical Risk - Debian Local Checks
[DSA1317] DSA-1317-1 tinymux

(**** ) Critical Risk - Solaris Local Checks
Solaris 8 (sparc) : 120981-12

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0348: php

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0131: squid

(**** ) Critical Risk - Solaris Local Checks
Solaris 10 (i386) : 124259-06

(**** ) Critical Risk - Solaris Local Checks
Solaris 8 (i386) : 120982-12

(**** ) Critical Risk - Windows
avast! CAB and SIS File Handling Buffer Overflow Vulnerabilities

(**** ) Critical Risk - Windows
Novell exteNd Director LocalExec ActiveX Dangerous Method Vulnerability

(**** ) Critical Risk - SuSE Local Checks
SUSE-SA:2007:030: kernel

(**** ) Critical Risk - SuSE Local Checks
SUSE-SA:2007:022: mozilla,MozillaThunderbird,seamonkey

(**** ) Critical Risk - Solaris Local Checks
Solaris 10 (sparc) : 121288-03

(**** ) Critical Risk - SuSE Local Checks
SUSE-SA:2007:032: php4,php5

(**** ) Critical Risk - Debian Local Checks
https://www.Telspace.com/threats/25530
[DSA1308] DSA-1308-1 iceweasel

(**** ) Critical Risk - Debian Local Checks
[DSA1322] DSA-1322-1 wireshark

(**** ) Critical Risk - Debian Local Checks
[DSA1301] DSA-1301-1 gimp

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0386

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0494: kdebase

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-525: quagga

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0469

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:110: php-pear

(**** ) Critical Risk - Debian Local Checks
[DSA1300] DSA-1300-1 iceape

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:129: jasper

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0127: xorg

(**** ) Critical Risk - Microsoft Bulletins
Cumulative Security Update for Internet Explorer (933566)

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0494

(**** ) Critical Risk - Windows
Mozilla Thunderbird < 1.5.0.12

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:111: util-linux

(**** ) Critical Risk - Mandrake Local Checks
MDKA-2007:047: x11-driver-video-sis

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0492: spamassassin

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0406: openoffice.org

(**** ) Critical Risk - Solaris Local Checks
Solaris 10 (i386) : 120229-20

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0389

(**** ) Critical Risk - Solaris Local Checks
Solaris 10 (sparc) : 120228-20

(**** ) Critical Risk - Debian Local Checks
[DSA1309] DSA-1309-1 postgresql-8.1

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:117: lha

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-551: thunderbird

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0431

(**** ) Critical Risk - Solaris Local Checks
Solaris 10 (i386) : 120273-13

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0395

(**** ) Critical Risk - Solaris Local Checks
Solaris 10 (i386) : 125720-08

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0492

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0395: mod_perl

(**** ) Critical Risk - Windows
Cisco VPN Client Privilege Escalation Vulnerability

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-526: php

(**** ) Critical Risk - Windows
ProgramChecker sasatl.dll ActiveX Control Multiple Overflow
Vulnerabilities

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:125: spamassassin

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0436: kernel

(**** ) Critical Risk - Gentoo Local Checks
[GLSA-200705-25] file: Integer overflow

(**** ) Critical Risk - Solaris Local Checks
Solaris 9 (sparc) : 120228-20

(**** ) Critical Risk - Windows
Sun Java Runtime Environment Image Parsing Vulnerabilities (102934)

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0158: evolution

(**** ) Critical Risk - Microsoft Bulletins
Vulnerability in the Windows Schannel Security Package Could Allow Remote
Code Execution (935840)

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0430: openldap

(**** ) Critical Risk - MacOS X Local Checks
Quicktime 7.1.6 Security Update (Mac OS X)

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0406

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:119: mozilla-thunderbird

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-557: lha

(**** ) Critical Risk - Windows
Command Antivirus odapi.dll ActiveX Control Multiple Overflow
Vulnerabilities

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0157: libX

(**** ) Critical Risk - Windows
Trillian < 3.1.6.0 Multiple Vulnerabilities

(**** ) Critical Risk - Debian Local Checks
[DSA1302] DSA-1302-1 freetype

(**** ) Critical Risk - Solaris Local Checks
Solaris 9 (sparc) : 120981-12

(**** ) Critical Risk - Solaris Local Checks
Solaris 9 (i386) : 125277-02

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-540: mutt

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0465

(**** ) Critical Risk - Mandrake Local Checks
MDKA-2007:040-1: gnome-utils

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0401: thunderbird

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0391: file

(**** ) Critical Risk - SuSE Local Checks
SUSE-SA:2007:019: MozillaFirefox,seamonkey

(**** ) Critical Risk - Gentoo Local Checks
[GLSA-200706-07] PHProjekt: Multiple vulnerabilities

(**** ) Critical Risk - Debian Local Checks
[DSA1313] DSA-1313-1 mplayer

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:123: libwmf

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0473: cpp

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:109: tetex

(**** ) Critical Risk - Debian Local Checks
[DSA1305] DSA-1305-1 icedove

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0376: kernel

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-576: mod_perl

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0402: seamonkey

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-554: firefox

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0430

(**** ) Critical Risk - Solaris Local Checks
Solaris 10 (i386) : 121289-04

(**** ) Critical Risk - Debian Local Checks
[DSA1320] DSA-1320-1 clamav

(**** ) Critical Risk - Solaris Local Checks
Solaris 9 (i386) : 117468-16

(**** ) Critical Risk - Solaris Local Checks
Solaris 9 (i386) : 120229-20

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-589: iscsi-initiator-utils

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-529: libpng

(**** ) Critical Risk - Windows
SeaMonkey < 1.0.9 / 1.1.2

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-566: postgresql

(**** ) Critical Risk - Debian Local Checks
[DSA1318] DSA-1318-1 ekg

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0403: freetype

(**** ) Critical Risk - Debian Local Checks
[DSA1299] DSA-1299-1 ipsec-tools

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0469: gdb

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-552: epiphany

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0344: evolution

(**** ) Critical Risk - SuSE Local Checks
SUSE-SA:2007:017: clamav

(**** ) Critical Risk - Denial of Service
F-Secure Policy Manager Server fsmsh.dll module DoS

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0343

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-550: thunderbird

(**** ) Critical Risk - Windows
SNMPc Management Server Login Packet Denial of Service Vulnerability

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0099: kernel

(**** ) Critical Risk - Microsoft Bulletins
Vulnerability in Windows Vista Could Allow Information Disclosure (931213)

(**** ) Critical Risk - SuSE Local Checks
SUSE-SA:2007:021: kernel

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0342: ipsec

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0385

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-565: postgresql

(**** ) Critical Risk - Microsoft Bulletins
Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution
(927051)

(**** ) Critical Risk - Solaris Local Checks
Solaris 10 (sparc) : 119345-05

(**** ) Critical Risk - Debian Local Checks
[DSA1315] DSA-1315-1 libphp-phpmailer

(**** ) Critical Risk - Microsoft Bulletins
Vulnerability in Win 32 API Could Allow Remote Code Execution (935839)

(**** ) Critical Risk - Debian Local Checks
[DSA1321] DSA-1321-1 evolution-data-server

(**** ) Critical Risk - SuSE Local Checks
SUSE-SA:2007:026: clamav

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:116: libpng

(**** ) Critical Risk - Debian Local Checks
[DSA1298] DSA-1298-1 otrs2

(**** ) Critical Risk - Solaris Local Checks
Solaris 10 (sparc) : 120981-12

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-548: libexif

(**** ) Critical Risk - Debian Local Checks
[DSA1307] DSA-1307-1 openoffice.org

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:122: gd

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-541: file

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-572: openoffice.org

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:112: mplayer

(**** ) Critical Risk - Windows
FLEXnet Connect DWUpdateService ActiveX Control Buffer Overflow
Vulnerability

(**** ) Critical Risk - Windows
Firefox < 1.5.0.12 / 2.0.0.4

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0055: libwpd

(**** ) Critical Risk - Gentoo Local Checks
[GLSA-200706-04] MadWifi: Multiple vulnerabilities

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0436

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0501

(**** ) Critical Risk - Mandrake Local Checks
MDKA-2007:049: x11-server-xgl

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0403

(**** ) Critical Risk - Mandrake Local Checks
MDKA-2007:054: dkms

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0107: gnupg

(**** ) Critical Risk - Debian Local Checks
[DSA1311] DSA-1311-1 postgresql-7.4

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0347: kernel

(**** ) Critical Risk - Debian Local Checks
[DSA1310] DSA-1310-1 libexif

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-582: spamassassin

(**** ) Critical Risk - Windows
QuickTime < 7.1.6 Security Update (Windows)

(**** ) Critical Risk - Solaris Local Checks
Solaris 10 (i386) : 125278-02

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-590: iscsi-initiator-utils

(**** ) Critical Risk - Solaris Local Checks
Solaris 10 (i386) : 119784-03

(**** ) Critical Risk - Solaris Local Checks
Solaris 10 (i386) : 120982-12

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:114: file

(**** ) Critical Risk - Debian Local Checks
[DSA1306] DSA-1306-1 xulrunner

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0389: quagga

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0343: gimp

(**** ) Critical Risk - Solaris Local Checks
https://www.Telspace.com/threats/25434
Solaris 10 (i386) : 125333-01

(**** ) Critical Risk - Mandrake Local Checks
https://www.Telspace.com/threats/25310
MDKSA-2007:108: gimp

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0344

(**** ) Critical Risk - Solaris Local Checks
Solaris 10 (i386) : 119467-11

(**** ) Critical Risk - Solaris Local Checks
Solaris 9 (sparc) : 113318-30

(**** ) Critical Risk - Solaris Local Checks
Solaris 10 (i386) : 119346-05

(**** ) Critical Risk - Microsoft Bulletins
Cumulative Security Update for Outlook Express and Windows Mail (929123)

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0068: postgresql

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:128: libexif

(**** ) Critical Risk - Solaris Local Checks
Solaris 10 (sparc) : 125332-01

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0153: php

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0391

(**** ) Critical Risk - SuSE Local Checks
SUSE-SA:2007:031: samba

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0075: spamassassin

(**** ) Critical Risk - Debian Local Checks
[DSA1316] DSA-1316-1 emacs21

(**** ) Critical Risk - Cross-Site Scripting
UebiMiau selected_theme Multiple Vulnerabilities

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-528: libpng

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0473

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-546: pam

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-539: mutt

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0346: vim

(*** ) High Risk - Cross-Site Scripting
FuseTalk Multiple Cross-Site Scripting Vulnerabilities

(*** ) High Risk - Gentoo Local Checks
[GLSA-200706-09] libexif: Buffer overflow

(*** ) High Risk - Gentoo Local Checks
[GLSA-200706-05] ClamAV: Multiple Denials of Service

(*** ) High Risk - Cross-Site Scripting
HP System Management Homepage < 2.1.2 Cross-Site Scripting Vulnerabilities

(*** ) High Risk - Gentoo Local Checks
[GLSA-200705-21] MPlayer: Two buffer overflows

(*** ) High Risk - Gentoo Local Checks
[GLSA-200706-08] emul-linux-x86-java: Multiple vulnerabilities

(*** ) High Risk - Gentoo Local Checks
[GLSA-200706-03] ELinks: User-assisted execution of arbitrary code

(*** ) High Risk - Web Services
JFFNMS user Parameter SQL Injection Vulnerability

(*** ) High Risk - SuSE Local Checks
SUSE-SA:2007:015: AppArmor

(*** ) High Risk - Gentoo Local Checks
[GLSA-200705-23] Sun JDK/JRE: Multiple vulnerabilities

(*** ) High Risk - Gentoo Local Checks
[GLSA-200705-24] libpng: Denial of Service

(*** ) High Risk - Gentoo Local Checks
[GLSA-200706-02] Evolution: User-assisted execution of arbitrary code

(*** ) High Risk - SuSE Local Checks
SUSE-SA:2007:016: samba

(*** ) High Risk - SuSE Local Checks
SUSE-SA:2007:020: php4,php5

(*** ) High Risk - Cross-Site Scripting
Tomcat snoop.jsp Cross-Site Scripting Vulnerability

(*** ) High Risk - Web Services
XOOPS Module spaw_root Parameter Remote File Include Vulnerability

(*** ) High Risk - Cross-Site Scripting
MyFaces Tomahawk autoscroll Cross-Site Scripting Vulnerability

(*** ) High Risk - Gentoo Local Checks
[GLSA-200706-01] libexif: Integer overflow vulnerability

(*** ) High Risk - Web Services
PBLang lang Parameter Local File Include Vulnerability

(*** ) High Risk - Gentoo Local Checks
[GLSA-200705-22] FreeType: Buffer overflow

(*** ) High Risk - Gentoo Local Checks
[GLSA-200706-06] Mozilla products: Multiple vulnerabilities

(*** ) High Risk - Web Services
GForge CVS Plugin Arbitrary Command Execution Vulnerability

(*** ) High Risk - SuSE Local Checks
SUSE-SA:2007:024: gpg

(*** ) High Risk - Web Services
Symantec Web Security flaws

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : FreeType 2 -- Heap overflow vulnerability (949)

(** ) Medium Risk - Slackware Local Checks
SSA-2007-152-02 firefox-seamonkey-thunderbird

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : p5-Mail-SpamAssassin -- local user symlink-attack DoS
vulnerability (960)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : gzip -- multiple vulnerabilities (955)

(** ) Medium Risk - Unix
RPC portmapper on a port different than 111

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : findutils -- GNU locate heap buffer overrun (951)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : typo3 -- email header injection (953)

(** ) Medium Risk - Web Services
Packeteer PacketShaper Web Denial of Service

(** ) Medium Risk - Slackware Local Checks
SSA-2007-152-01 php5

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : clamav -- multiple vulnerabilities (961)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : webmin -- cross site scripting vulnerability (957)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : mplayer -- cddb stack overflow (956)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : cups -- Incomplete SSL Negotiation Denial of Service (959)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : FreeBSD -- heap overflow in file(1) (950)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : c-ares -- DNS Cache Poisoning Vulnerability (958)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : phppgadmin -- cross site scripting vulnerability (952)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : mod_jk -- information disclosure (954)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : squirrelmail -- Cross site scripting in HTML filter (948)

(* ) Low Risk - Service Detection
avast! Management Server Detection

(* ) Low Risk - Web Services
Packeteer Web Management Interface Version

(* ) Low Risk - Windows
OpenOffice Detection

(* ) Low Risk - Service Detection
XMPP Server Detection

(* ) Low Risk - Web Services
Symantec Web Security Detection

(* ) Low Risk - Service Detection
Symantec Ghost Solution Status Server detection

(* ) Low Risk - Web Services
Packeteer Web Management Interface Login

(* ) Low Risk - Service Detection
Symantec Ghost Solution Locate Server detection

(* ) Low Risk - Windows
Cisco VPN Client Version Detection

(* ) Low Risk - Web Services
Packeteer Web Management Interface Detection

(* ) Low Risk - Service Detection
SNMPc Management Server Detection

 

 

 


Terms and Conditions | Acceptable Use Policy Copyright © 2010 Telspace. All Rights Reserved