New Security Vulnerabilities 6th March 2007

  The following new security tests were added to Telspace' database:

TOTAL THREATS IN THE DATABASE   14096

 

NEW THREATS RISK FACTOR SUMMARY
   (*****)  Urgent Risk          3
   (**** )  Critical Risk        21
   (***  )  High Risk            3
   (**   )  Medium Risk          3
   (*    )  Low Risk             2

 

NEW THREATS FAMILY SUMMARY
   Windows                        5
   Mandrake Local Checks          5
   Red Hat Local Checks           4
   Centos Local Checks            3
   Gentoo Local Checks            3
   Web Services                   3
   Fedora Local Checks            3
   Miscellaneous                  2
   FreeBSD Local Checks           2
   Remote File Access             1
   Database Services              1

 

(*****)  Urgent Risk  -  Remote File Access
Kiwi CatTools < 3.2.9 Directory Traversal

(*****)  Urgent Risk  -  Web Services
ZPanel page Parameter Remote File Include Vulnerabilities

(*****)  Urgent Risk  -  Web Services
Trend Micro ServerProtect for Linux splx_2376_info Cookie Authentication
Bypass Vulnerability

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 5 2007-262: ekiga

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:046: gnucash

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 6 2007-263: ekiga

(**** )  Critical Risk  -  Centos Local Checks
CentOS : RHSA-2007-0077

(**** )  Critical Risk  -  Red Hat Local Checks
RHSA-2007-0074: spamassassin

(**** )  Critical Risk  -  Centos Local Checks
CentOS : RHSA-2007-0079

(**** )  Critical Risk  -  Windows
InstallFromTheWeb ActiveX Control Buffer Overflow Vulnerabilities

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:049: spamassassin

(**** )  Critical Risk  -  Windows
FLEXnet Connect Update Service Agent ActiveX Control Buffer Overflow
Vulnerability

(**** )  Critical Risk  -  Windows
Google Desktop Cross-Site Scripting Flaw

(**** )  Critical Risk  -  Windows
Firefox < 1.5.0.10 / 2.0.0.2

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:047: kernel

(**** )  Critical Risk  -  Red Hat Local Checks
RHSA-2007-0079: firefox

(**** )  Critical Risk  -  Red Hat Local Checks
RHSA-2007-0081: php

(**** )  Critical Risk  -  Gentoo Local Checks
 [GLSA-200703-01] Snort: Remote execution of arbitrary code

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:048: php

(**** )  Critical Risk  -  Red Hat Local Checks
RHSA-2007-0077: seamonkey

(**** )  Critical Risk  -  Database Services
DB2 < 9 Fixpack 2

(**** )  Critical Risk  -  Centos Local Checks
CentOS : RHSA-2007-0074

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:044: ekiga

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 6 2007-261: php

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200703-02] SpamAssassin: Long URI Denial of Service

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200703-03] ClamAV: Denial of Service

(***  )  High Risk  -  Miscellaneous
Samba < 3.0.24 Multiple Flaws

(**   )  Medium Risk  -  FreeBSD Local Checks
FreeBSD : snort -- DCE/RPC preprocessor vulnerability (919)

(**   )  Medium Risk  -  FreeBSD Local Checks
FreeBSD : mozilla -- multiple vulnerabilities (920)

(**   )  Medium Risk  -  Miscellaneous
Samba Machine Trust Account Local Information Disclosure Vulnerability

(*    )  Low Risk  -  Windows
Google Desktop detection

(*    )  Low Risk  -  Web Services
DokuWiki Detection


Terms and Conditions | Acceptable Use Policy Copyright © 2010 Telspace. All Rights Reserved