New Security Vulnerabilities 8th June 2007

The following new security tests were added to Telspace' database:

 

TOTAL THREATS IN THE DATABASE 14736

 

NEW THREATS RISK FACTOR SUMMARY
(*****) Urgent Risk 3
(**** ) Critical Risk 43
(*** ) High Risk 9
(** ) Medium Risk 5
(* ) Low Risk 3

 

NEW THREATS FAMILY SUMMARY
Red Hat Local Checks 23
Gentoo Local Checks 8
Windows 7
Mandrake Local Checks 5
Web Services 4
Fedora Local Checks 3
Service Detection 2
Slackware Local Checks 2
FreeBSD Local Checks 2
MacOS X Local Checks 2
Debian Local Checks 1
Denial of Service 1
Unix 1
Centos Local Checks 1
Cross-Site Scripting 1

 

(*****) Urgent Risk - Web Services
Openfire Admin Console Privilege Escalation Vulnerability

(*****) Urgent Risk - Windows
AntiVir File Handling Vulnerabilities

(*****) Urgent Risk - MacOS X Local Checks
Mac OS X Security Update 2007-005

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:108: gimp

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0075: spamassassin

(**** ) Critical Risk - Windows
Firefox < 1.5.0.12 / 2.0.0.4

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0055: libwpd

(**** ) Critical Risk - Mandrake Local Checks

MDKA-2007:049: x11-server-xgl

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0107: gnupg

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0114: xen

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0057: bind

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0097: devhelp

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0343: gimp

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0327: jakarta

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0068: postgresql

(**** ) Critical Risk - Windows

Mozilla Thunderbird < 1.5.0.12

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0132: libXfont

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0061: samba

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0127: xorg

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0169: kernel

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0348: php

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0342: ipsec

(**** ) Critical Risk - Mandrake Local Checks
MDKA-2007:047: x11-driver-video-sis

(**** ) Critical Risk - Windows
ProgramChecker sasatl.dll ActiveX Control Multiple Overflow Vulnerabilities

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0131: squid

(**** ) Critical Risk - Windows
avast! CAB and SIS File Handling Buffer Overflow Vulnerabilities

(**** ) Critical Risk - Red Hat Local Checks

RHSA-2007-0153: php

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0347: kernel

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-528: libpng

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-529: libpng

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0157: libX

(**** ) Critical Risk - Mandrake Local Checks
MDKA-2007:040-1: gnome-utils

(**** ) Critical Risk - Cross-Site Scripting
UebiMiau selected_theme Multiple Vulnerabilities

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:109: tetex

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0346: vim

(**** ) Critical Risk - Windows
QuickTime < 7.1.6 Security Update (Windows)

(**** ) Critical Risk - Windows
SeaMonkey < 1.0.9 / 1.1.2

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0082: php

(**** ) Critical Risk - Denial of Service
F-Secure Policy Manager Server fsmsh.dll module DoS

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0099: kernel

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-526: php

(**** ) Critical Risk - Debian Local Checks
 [DSA1298] DSA-1298-1 otrs2

(**** ) Critical Risk - Gentoo Local Checks
 [GLSA-200705-25] file: Integer overflow

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0343

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0158: evolution

(**** ) Critical Risk - MacOS X Local Checks
Quicktime 7.1.6 Security Update (Mac OS X)

(*** ) High Risk - Gentoo Local Checks
 [GLSA-200706-01] libexif: Integer overflow vulnerability

(*** ) High Risk - Web Services
Symantec Web Security flaws

(*** ) High Risk - Web Services
GForge CVS Plugin Arbitrary Command Execution Vulnerability

(*** ) High Risk - Gentoo Local Checks
 [GLSA-200705-21] MPlayer: Two buffer overflows

(*** ) High Risk - Gentoo Local Checks
 [GLSA-200706-03] ELinks: User-assisted execution of arbitrary code

(*** ) High Risk - Gentoo Local Checks
 [GLSA-200705-24] libpng: Denial of Service

(*** ) High Risk - Gentoo Local Checks
 [GLSA-200705-22] FreeType: Buffer overflow

(*** ) High Risk - Gentoo Local Checks
 [GLSA-200706-02] Evolution: User-assisted execution of arbitrary code

(*** ) High Risk - Gentoo Local Checks
 [GLSA-200705-23] Sun JDK/JRE: Multiple vulnerabilities

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : squirrelmail -- Cross site scripting in HTML filter (948)

(** ) Medium Risk - Slackware Local Checks
SSA-2007-152-02 firefox-seamonkey-thunderbird

(** ) Medium Risk - Unix
RPC portmapper on a port different than 111

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : FreeType 2 -- Heap overflow vulnerability (949)

(** ) Medium Risk - Slackware Local Checks
SSA-2007-152-01 php5

(* ) Low Risk - Service Detection
XMPP Server Detection

(* ) Low Risk - Web Services
Symantec Web Security Detection

(* ) Low Risk - Service Detection
avast! Management Server Detection

 


Terms and Conditions | Acceptable Use Policy Copyright © 2010 Telspace. All Rights Reserved