New Security Vulnerabilities 7th August 2007

The following new security tests were added to Telspace' database:

 

TOTAL THREATS IN THE DATABASE 15177


NEW THREATS RISK FACTOR SUMMARY
(*****) Urgent Risk 3
(**** ) Critical Risk 37
(*** ) High Risk 6
(** ) Medium Risk 14
(* ) Low Risk 4


NEW THREATS FAMILY SUMMARY
Windows 12
Gentoo Local Checks 8
Debian Local Checks 7
Slackware Local Checks 7
FreeBSD Local Checks 7
Centos Local Checks 5
Service Detection 4
Red Hat Local Checks 4
Mandrake Local Checks 4
Fedora Local Checks 4
Remote Shell Access 1
Database Services 1

 

(*****) Urgent Risk - Windows
https://www. TOTAL THREATS IN THE DATABASE 15177


NEW THREATS RISK FACTOR SUMMARY
(*****) Urgent Risk 3
(**** ) Critical Risk 37
(*** ) High Risk 6
(** ) Medium Risk 14
(* ) Low Risk 4


NEW THREATS FAMILY SUMMARY
Windows 12
Gentoo Local Checks 8
Debian Local Checks 7
Slackware Local Checks 7
FreeBSD Local Checks 7
Centos Local Checks 5
Service Detection 4
Red Hat Local Checks 4
Mandrake Local Checks 4
Fedora Local Checks 4
Remote Shell Access 1
Database Services 1


(*****) Urgent Risk - Windows
NetVault Report Manager Scheduler Buffer Overflow Vulnerability

(*****) Urgent Risk - Remote Shell Access
Computer Associates Multiple Products Message Queuing Remote Stack
Buffer Overflow Vulnerability

(*****) Urgent Risk - Windows
Panda AdminSecure Communications Agent < 4.2 Heap Overflow Vulnerability

(**** ) Critical Risk - Windows
Mozilla Thunderbird < 2.0.0.5

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0724

(**** ) Critical Risk - Debian Local Checks
[DSA1343] DSA-1343-1 file

(**** ) Critical Risk - Gentoo Local Checks
[GLSA-200707-14] tcpdump: Integer overflow

(**** ) Critical Risk - Gentoo Local Checks
[GLSA-200707-10] Festival: Privilege elevation

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-627: gimp

(**** ) Critical Risk - Windows
Yahoo! Widgets YDP ActiveX Buffer Overflow Vulnerability

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0740: bind

(**** ) Critical Risk - Windows
SeaMonkey < 1.1.3

(**** ) Critical Risk - Windows
Panda Antivirus EXE File Parsing Overflow Vulnerability

(**** ) Critical Risk - Debian Local Checks
[DSA1337] DSA-1337-1 xulrunner

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0724: firefox

(**** ) Critical Risk - Debian Local Checks
[DSA1339] DSA-1339-1 iceape

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:148: tcpdump

(**** ) Critical Risk - Windows
Trillian aim:// URI Handler Vulnerabilities

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-641: thunderbird

(**** ) Critical Risk - Database Services
MySQL 5.0 < 5.0.45 Multiple Vulnerabilities

(**** ) Critical Risk - Debian Local Checks
[DSA1342] DSA-1342-1 xfs

(**** ) Critical Risk - Windows
Opera < 9.22 Multiple Vulnerabilities

(**** ) Critical Risk - Debian Local Checks
[DSA1338] DSA-1338-1 iceweasel

(**** ) Critical Risk - Debian Local Checks
[DSA1336] DSA-1336-1 mozilla-firefox

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0722: seamonkey

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-642: firefox

(**** ) Critical Risk - Gentoo Local Checks
[GLSA-200707-11] MIT Kerberos 5: Arbitrary remote code execution

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:150: clamav

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0722

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0740

(**** ) Critical Risk - Windows
NOD32 Run-Time Decompressors Multiple Vulnerabilities

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0569

(**** ) Critical Risk - Windows
Ipswitch IM Server < 2.07 Denial of Service Vulnerability

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0723: thunderbird

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:147: ImageMagick

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:149: bind

(**** ) Critical Risk - Windows
Winamp < 5.34 Multiple Vulnerabilities

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0723

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-647: bind

(**** ) Critical Risk - Debian Local Checks
[DSA1340] DSA-1340-1 clamav

(*** ) High Risk - Gentoo Local Checks
[GLSA-200707-09] GIMP: Multiple integer overflows

(*** ) High Risk - Windows
Novell GroupWise Client Man-in-the-Middle Credentials Disclosure
Vulnerability

(*** ) High Risk - Gentoo Local Checks
[GLSA-200707-12] VLC media player: Format string vulnerabilities

(*** ) High Risk - Gentoo Local Checks
[GLSA-200707-13] Fail2ban: Denial of Service

(*** ) High Risk - Gentoo Local Checks
[GLSA-200707-07] MPlayer: Multiple buffer overflows

(*** ) High Risk - Gentoo Local Checks
[GLSA-200707-08] NVClock: Insecure file usage

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : opera -- multiple vulnerabilities (970)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : mozilla -- multiple vulnerabilities (971)

(** ) Medium Risk - Slackware Local Checks
SSA-2007-205-02 seamonkey

(** ) Medium Risk - Slackware Local Checks
SSA-2007-200-01 firefox

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : dokuwiki -- XSS vulnerability in spellchecker backend (973)

(** ) Medium Risk - Slackware Local Checks
SSA-2007-213-01 firefox

(** ) Medium Risk - Slackware Local Checks
SSA-2007-165-01 thunderbird

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : tomcat -- multiple vulnerabilities (974)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : tomcat -- XSS vulnerability in sample applications (975)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : lighttpd -- multiple vulnerabilities (972)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : libvorbis -- Multiple memory corruption flaws (976)

(** ) Medium Risk - Slackware Local Checks
SSA-2007-205-01 thunderbird

(** ) Medium Risk - Slackware Local Checks
SSA-2007-164-01 libexif

(** ) Medium Risk - Slackware Local Checks
SSA-2007-178-01 gd

(* ) Low Risk - Service Detection
Panda AdminSecure Communications Agent Detection

(* ) Low Risk - Service Detection
UltraVNC w/ DSM plugin detection (2)

(* ) Low Risk - Service Detection
Ipswitch Instant Messaging Server Detection

(* ) Low Risk - Service Detection
Ipswitch Instant Messaging Client Detection Telspace.com/threats/25767
NetVault Report Manager Scheduler Buffer Overflow Vulnerability

(*****) Urgent Risk - Remote Shell Access
Computer Associates Multiple Products Message Queuing Remote Stack
Buffer Overflow Vulnerability

(*****) Urgent Risk - Windows
Panda AdminSecure Communications Agent < 4.2 Heap Overflow Vulnerability

(**** ) Critical Risk - Windows
Mozilla Thunderbird < 2.0.0.5

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0724

(**** ) Critical Risk - Debian Local Checks
[DSA1343] DSA-1343-1 file

(**** ) Critical Risk - Gentoo Local Checks
[GLSA-200707-14] tcpdump: Integer overflow

(**** ) Critical Risk - Gentoo Local Checks
[GLSA-200707-10] Festival: Privilege elevation

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-627: gimp

(**** ) Critical Risk - Windows
Yahoo! Widgets YDP ActiveX Buffer Overflow Vulnerability

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0740: bind

(**** ) Critical Risk - Windows
SeaMonkey < 1.1.3

(**** ) Critical Risk - Windows
Panda Antivirus EXE File Parsing Overflow Vulnerability

(**** ) Critical Risk - Debian Local Checks
[DSA1337] DSA-1337-1 xulrunner

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0724: firefox

(**** ) Critical Risk - Debian Local Checks
[DSA1339] DSA-1339-1 iceape

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:148: tcpdump

(**** ) Critical Risk - Windows
Trillian aim:// URI Handler Vulnerabilities

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-641: thunderbird

(**** ) Critical Risk - Database Services
MySQL 5.0 < 5.0.45 Multiple Vulnerabilities

(**** ) Critical Risk - Debian Local Checks
[DSA1342] DSA-1342-1 xfs

(**** ) Critical Risk - Windows
Opera < 9.22 Multiple Vulnerabilities

(**** ) Critical Risk - Debian Local Checks
[DSA1338] DSA-1338-1 iceweasel

(**** ) Critical Risk - Debian Local Checks
[DSA1336] DSA-1336-1 mozilla-firefox

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0722: seamonkey

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-642: firefox

(**** ) Critical Risk - Gentoo Local Checks
[GLSA-200707-11] MIT Kerberos 5: Arbitrary remote code execution

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:150: clamav

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0722

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0740

(**** ) Critical Risk - Windows
NOD32 Run-Time Decompressors Multiple Vulnerabilities

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0569

(**** ) Critical Risk - Windows
Ipswitch IM Server < 2.07 Denial of Service Vulnerability

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0723: thunderbird

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:147: ImageMagick

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:149: bind

(**** ) Critical Risk - Windows
Winamp < 5.34 Multiple Vulnerabilities

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0723

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-647: bind

(**** ) Critical Risk - Debian Local Checks
[DSA1340] DSA-1340-1 clamav

(*** ) High Risk - Gentoo Local Checks
[GLSA-200707-09] GIMP: Multiple integer overflows

(*** ) High Risk - Windows
Novell GroupWise Client Man-in-the-Middle Credentials Disclosure
Vulnerability

(*** ) High Risk - Gentoo Local Checks
[GLSA-200707-12] VLC media player: Format string vulnerabilities

(*** ) High Risk - Gentoo Local Checks
[GLSA-200707-13] Fail2ban: Denial of Service

(*** ) High Risk - Gentoo Local Checks
[GLSA-200707-07] MPlayer: Multiple buffer overflows

(*** ) High Risk - Gentoo Local Checks
[GLSA-200707-08] NVClock: Insecure file usage

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : opera -- multiple vulnerabilities (970)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : mozilla -- multiple vulnerabilities (971)

(** ) Medium Risk - Slackware Local Checks
SSA-2007-205-02 seamonkey

(** ) Medium Risk - Slackware Local Checks
SSA-2007-200-01 firefox

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : dokuwiki -- XSS vulnerability in spellchecker backend (973)

(** ) Medium Risk - Slackware Local Checks
SSA-2007-213-01 firefox

(** ) Medium Risk - Slackware Local Checks
SSA-2007-165-01 thunderbird

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : tomcat -- multiple vulnerabilities (974)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : tomcat -- XSS vulnerability in sample applications (975)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : lighttpd -- multiple vulnerabilities (972)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : libvorbis -- Multiple memory corruption flaws (976)

(** ) Medium Risk - Slackware Local Checks
SSA-2007-205-01 thunderbird

(** ) Medium Risk - Slackware Local Checks
SSA-2007-164-01 libexif

(** ) Medium Risk - Slackware Local Checks
SSA-2007-178-01 gd

(* ) Low Risk - Service Detection
Panda AdminSecure Communications Agent Detection

(* ) Low Risk - Service Detection
UltraVNC w/ DSM plugin detection (2)

(* ) Low Risk - Service Detection
Ipswitch Instant Messaging Server Detection

(* ) Low Risk - Service Detection
Ipswitch Instant Messaging Client Detection

 

 

 


Terms and Conditions | Acceptable Use Policy Copyright © 2010 Telspace. All Rights Reserved