New Security Vulnerabilities 10th April 2007

The following new vulnerabilities were added to the Telspace database this
month:

 

TOTAL THREATS IN THE DATABASE   14255

 

NEW THREATS RISK FACTOR SUMMARY
   (*****)  Urgent Risk          26
   (**** )  Critical Risk        120
   (***  )  High Risk            18
   (**   )  Medium Risk          24
   (*    )  Low Risk             3

 

NEW THREATS FAMILY SUMMARY
   Gentoo Local Checks            23
   Mandrake Local Checks          23
   Fedora Local Checks            23
   Solaris Local Checks           20
   Windows                        18
   Web Services                   15
   FreeBSD Local Checks           13
   Debian Local Checks            11
   Red Hat Local Checks           8
   Centos Local Checks            7
   Firewalls, Routers, SNMP       6
   Slackware Local Checks         6
   Remote Shell Access            5
   Denial of Service              3
   MacOS X Local Checks           3
   Miscellaneous                  2
   Database Services              2
   Remote File Access             1
   Unix                           1
   Cross-Site Scripting           1

 

(*****)  Urgent Risk  -  Web Services
WordPress 2.1.1 Backdoor Vulnerability

(*****)  Urgent Risk  -  Web Services
mod_jk Long URL Stack Overflow Vulnerability

(*****)  Urgent Risk  -  Web Services
Webapp.org WebAPP < 0.9.9.6 Multiple Vulnerabilities

(*****)  Urgent Risk  -  Windows
Microsoft Hotfix KB828741 (network check)

(*****)  Urgent Risk  -  Remote Shell Access
Eudora WorldMail Mail Management Server Heap Overflow Vulnerability

(*****)  Urgent Risk  -  Web Services
WebCalendar noSet Variable Overwrite Vulnerability

(*****)  Urgent Risk  -  Firewalls, Routers, SNMP
Cisco IOS SIP Packet Handling Remote Denial Of Service Vulnerability

(*****)  Urgent Risk  -  Windows
Vulnerability in Plug and Play Could Allow Remote Code Execution and
Local Elevation of Privilege (905749) - Network Check

(*****)  Urgent Risk  -  Remote Shell Access
Ipswitch IMail Server < 2006.2 Multiple Buffer Overflow Vulnerabilities

(*****)  Urgent Risk  -  Firewalls, Routers, SNMP
Cisco IOS Intrusion Prevention System Multiple Vulnerabilities

(*****)  Urgent Risk  -  Remote File Access
Kiwi CatTools < 3.2.9 Directory Traversal

(*****)  Urgent Risk  -  Remote Shell Access
Helix Server LoadTestPassword field Overflow Vulnerability

(*****)  Urgent Risk  -  Firewalls, Routers, SNMP
Cisco Multiple Products Network Analysis Module SNMP Communication
Spoofing Vulnerability

(*****)  Urgent Risk  -  Firewalls, Routers, SNMP
Cisco Multiple Devices Crafted IP Option Multiple Remote Code Execution
Vulnerability

(*****)  Urgent Risk  -  Web Services
LedgerSMB / SQL-Ledger authentication Bypass Vulnerability

(*****)  Urgent Risk  -  Firewalls, Routers, SNMP
Cisco Catalyst MPLS Packet Handling Denial of Service Vulnerability

(*****)  Urgent Risk  -  Windows
Kaspersky Antivirus UPX File Decompression Denial of Service Vulnerability

(*****)  Urgent Risk  -  Remote Shell Access
Mercury IMAP Server Login Command Buffer Overflow Vulnerability

(*****)  Urgent Risk  -  Web Services
ZPanel page Parameter Remote File Include Vulnerabilities

(*****)  Urgent Risk  -  Web Services
getID3 < 1.7.8-b1 Multiple Vulnerabilities

(*****)  Urgent Risk  -  Denial of Service
CA eTrust Intrusion Detection System Key Exchange Remote Denial of
Service Vulnerability

(*****)  Urgent Risk  -  Firewalls, Routers, SNMP
Cisco IOS TCP Listener Denial Of Service Vulnerability

(*****)  Urgent Risk  -  Web Services
LedgerSMB / SQL-Ledger file Parameter Multiple Vulnerabilities

(*****)  Urgent Risk  -  Miscellaneous
Samba < 3.0.24 Multiple Flaws

(*****)  Urgent Risk  -  Web Services
Trend Micro ServerProtect for Linux splx_2376_info Cookie Authentication
Bypass Vulnerability

(*****)  Urgent Risk  -  Remote Shell Access
BrightStor ARCserve Multiple Vulnerabilities (QO86255)

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 5 2007-336: kernel

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 9 (sparc) : 122300-03

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:051: snort

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:055: mplayer

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 10 (i386) : 123591-03

(**** )  Critical Risk  -  Gentoo Local Checks
 [GLSA-200703-17] ulogd: Remote execution of arbitrary code

(**** )  Critical Risk  -  Gentoo Local Checks
 [GLSA-200703-01] Snort: Remote execution of arbitrary code

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:059: gnupg

(**** )  Critical Risk  -  Unix
Default password 'password' for account 'root'

(**** )  Critical Risk  -  Windows
Mozilla Thunderbird < 1.5.0.10

(**** )  Critical Risk  -  Centos Local Checks
CentOS : RHSA-2007-0077

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 8 (sparc) : 119044-03

(**** )  Critical Risk  -  MacOS X Local Checks
iPhoto < 6.0.6

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 5 2007-287: php

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:064: openoffice.org

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 5 2007-262: ekiga

(**** )  Critical Risk  -  Debian Local Checks
 [DSA1268] DSA-1268-1 libwpd

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:046: gnucash

(**** )  Critical Risk  -  Debian Local Checks
 [DSA1263] DSA-1263-1 clamav

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 6 2007-293: gnome-python2-extras

(**** )  Critical Risk  -  Debian Local Checks
 [DSA1262] DSA-1262-1 gnomemeeting

(**** )  Critical Risk  -  Debian Local Checks
 [DSA1269] DSA-1269-1 lookup-el

(**** )  Critical Risk  -  Windows
SeaMonkey < 1.0.8

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 6 2007-263: ekiga

(**** )  Critical Risk  -  Windows
InstallFromTheWeb ActiveX Control Buffer Overflow Vulnerabilities

(**** )  Critical Risk  -  Centos Local Checks
CentOS : RHSA-2007-0066

(**** )  Critical Risk  -  Windows
Citrix Presentation Server Client Remote Code Execution Vulnerability

(**** )  Critical Risk  -  Windows
Google Desktop Cross-Site Scripting Flaw

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:054: kdelibs

(**** )  Critical Risk  -  Centos Local Checks
CentOS : RHSA-2007-0074

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 10 (i386) : 125101-03

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 6 2007-315: gnupg

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 10 (i386) : 119044-03

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 9 (sparc) : 119044-03

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:050: mozilla-firefox

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 6 2007-322: ekiga

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:052: mozilla-thunderbird

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 5 2007-316: gnupg

(**** )  Critical Risk  -  Mandrake Local Checks
MDKA-2007:016: gnome-terminal

(**** )  Critical Risk  -  Centos Local Checks
CentOS : RHSA-2007-0106

(**** )  Critical Risk  -  Debian Local Checks
 [DSA1267] DSA-1267-1 webcalendar

(**** )  Critical Risk  -  Windows
VeriSign ConfigChk ActiveX Control Buffer Overflow Vulnerability

(**** )  Critical Risk  -  Red Hat Local Checks
RHSA-2007-0106: gnupg

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 6 2007-335: kernel

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:057: xine-lib

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 6 2007-279: nss

(**** )  Critical Risk  -  Red Hat Local Checks
RHSA-2007-0085:   kernel

(**** )  Critical Risk  -  Gentoo Local Checks
 [GLSA-200703-19] LTSP: Authentication bypass in included LibVNCServer code

(**** )  Critical Risk  -  Gentoo Local Checks
 [GLSA-200703-09] Smb4K: Multiple vulnerabilities

(**** )  Critical Risk  -  Red Hat Local Checks
RHSA-2007-0066: wireshark

(**** )  Critical Risk  -  Debian Local Checks
 [DSA1264] DSA-1264-1 php4

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 9 (i386) : 125359-01

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 5 2007-277: kernel

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:047: kernel

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 10 (i386) : 125359-01

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 6 2007-347: tcpdump

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 5 2007-281: firefox

(**** )  Critical Risk  -  Red Hat Local Checks
RHSA-2007-0077: seamonkey

(**** )  Critical Risk  -  Debian Local Checks
 [DSA1271] DSA-1271-1 openafs

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 10 (sparc) : 124939-03

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 5 2007-348: tcpdump

(**** )  Critical Risk  -  Centos Local Checks
CentOS : RHSA-2007-0078

(**** )  Critical Risk  -  Windows
EPolicy Orchestrator SiteManager ActiveX Control Buffer Overflow
Vulnerabilities

(**** )  Critical Risk  -  Red Hat Local Checks
RHSA-2007-0079: firefox

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:056: tcpdump

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 8 (sparc) : 125358-01

(**** )  Critical Risk  -  Red Hat Local Checks
RHSA-2007-0074: spamassassin

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 5 2007-1219: cups

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 6 2007-291: kernel

(**** )  Critical Risk  -  MacOS X Local Checks
Mac OS X < 10.4.9 / Security Update 2007-003

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 5 2007-309: thunderbird

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 9 (i386) : 122301-03

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 10 (sparc) : 125358-01

(**** )  Critical Risk  -  Windows
FLEXnet Connect Update Service Agent ActiveX Control Buffer Overflow
Vulnerability

(**** )  Critical Risk  -  Debian Local Checks
 [DSA1270] DSA-1270-1 openoffice.org

(**** )  Critical Risk  -  Windows
Symantec Mail Security for SMTP Arbitrary Code Execution Vulnerability

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 10 (sparc) : 123590-03

(**** )  Critical Risk  -  Centos Local Checks
CentOS : RHSA-2007-0085

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:061: mplayer

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:053: util-linux

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:058: ekiga

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 10 (sparc) : 119044-03

(**** )  Critical Risk  -  Gentoo Local Checks
 [GLSA-200703-16] Apache JK Tomcat Connector: Remote execution of
arbitrary code

(**** )  Critical Risk  -  Windows
Firefox < 1.5.0.11 / 2.0.0.3

(**** )  Critical Risk  -  Red Hat Local Checks
RHSA-2007-0078: thunderbird

(**** )  Critical Risk  -  Debian Local Checks
 [DSA1272] DSA-1272-1 tcpdump

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:048: php

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:062: xine-lib

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 5 2007-321: ekiga

(**** )  Critical Risk  -  Windows
Trend Micro UPX File Parsing Denial of Service Vulnerability

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 6 2007-256: gnucash

(**** )  Critical Risk  -  Web Services
Moodle moodledata Information Disclosure Vulnerability

(**** )  Critical Risk  -  Denial of Service
Squid < 2.6.STABLE7

(**** )  Critical Risk  -  Mandrake Local Checks
MDKA-2007:018-1: timezone

(**** )  Critical Risk  -  Centos Local Checks
CentOS : RHSA-2007-0079

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:049: spamassassin

(**** )  Critical Risk  -  Red Hat Local Checks
RHSA-2007-0081: php

(**** )  Critical Risk  -  Mandrake Local Checks
MDKA-2007:017: tcpdump

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 10(i386) : 124939-03

(**** )  Critical Risk  -  Database Services
DB2 < 9 Fixpack 2

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:060: kernel

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 9 (i386) : 124833-01

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 9 (i386) : 119044-03

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 6 2007-261: php

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 6 2007-308: thunderbird

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 9 (sparc) : 125358-01

(**** )  Critical Risk  -  Debian Local Checks
 [DSA1266] DSA-1266-1 gnupg

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 8 (i386) : 119044-03

(**** )  Critical Risk  -  Windows
Firefox < 1.5.0.10 / 2.0.0.2

(**** )  Critical Risk  -  Gentoo Local Checks
 [GLSA-200703-21] PHP: Multiple vulnerabilities

(**** )  Critical Risk  -  Windows
Quicktime < 7.1.5 (Windows)

(**** )  Critical Risk  -  Web Services
Pagesetter id Parameter Information Disclosure Vulnerability

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:044: ekiga

(**** )  Critical Risk  -  Debian Local Checks
 [DSA1265] DSA-1265-1 mozilla

(**** )  Critical Risk  -  Denial of Service
Squid < 2.6.STABLE12

(**** )  Critical Risk  -  Mandrake Local Checks
MDKSA-2007:063: libwpd

(**** )  Critical Risk  -  Solaris Local Checks
Solaris 8 (i386) : 125359-01

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 5 2007-278: nss

(**** )  Critical Risk  -  MacOS X Local Checks
Quicktime < 7.1.5 (Mac OS X)

(**** )  Critical Risk  -  Fedora Local Checks
Fedora Core 5 2007-289: devhelp

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200703-22] Mozilla Network Security Service: Remote execution of
arbitrary code

(***  )  High Risk  -  Web Services
Symantec Mail Security for SMTP Default Credentials

(***  )  High Risk  -  Web Services
OrangeHRM txtUserName SQL Injection Vulnerability

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200703-18] Mozilla Thunderbird: Multiple vulnerabilities

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200703-03] ClamAV: Denial of Service

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200703-06] AMD64 x86 emulation Qt library: Integer overflow

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200703-07] STLport: Possible remote execution of arbitrary code

(***  )  High Risk  -  Cross-Site Scripting
Horde new_lang Parameter Cross-Site Scripting Vulnerability

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200703-04] Mozilla Firefox: Multiple vulnerabilities

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200703-12] SILC Server: Denial of Service

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200703-08] SeaMonkey: Multiple vulnerabilities

(***  )  High Risk  -  Web Services
SQLiteManager SQLiteManager_currentTheme Cookie Local File Include
Vulnerability

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200703-02] SpamAssassin: Long URI Denial of Service

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200703-05] Mozilla Suite: Multiple vulnerabilities

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200703-14] Asterisk: SIP Denial of Service

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200703-11] Amarok: User-assisted remote execution of arbitrary code

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200703-15] PostgreSQL: Multiple vulnerabilities

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200703-13] SSH Communications Security\\'s Secure Shell Server:
SFTP privilege escalation

(**   )  Medium Risk  -  FreeBSD Local Checks
FreeBSD : mod_jk -- long URL stack overflow vulnerability (924)

(**   )  Medium Risk  -  Database Services
MySQL Single Row Subselect Remote DoS

(**   )  Medium Risk  -  FreeBSD Local Checks
FreeBSD : mozilla -- multiple vulnerabilities (920)

(**   )  Medium Risk  -  FreeBSD Local Checks
FreeBSD : mplayer -- DMO File Parsing Buffer Overflow Vulnerability (925)

(**   )  Medium Risk  -  FreeBSD Local Checks
FreeBSD : libarchive -- Infinite loop in corrupt archives handling in
libarchive (922)

(**   )  Medium Risk  -  Slackware Local Checks
SSA-2007-066-01 gnupg

(**   )  Medium Risk  -  Gentoo Local Checks
 [GLSA-200703-20] LSAT: Insecure temporary file creation

(**   )  Medium Risk  -  Gentoo Local Checks
 [GLSA-200703-10] KHTML: Cross-site scripting (XSS) vulnerability

(**   )  Medium Risk  -  Gentoo Local Checks
 [GLSA-200703-23] WordPress: Multiple vulnerabilities

(**   )  Medium Risk  -  Miscellaneous
Samba Machine Trust Account Local Information Disclosure Vulnerability

(**   )  Medium Risk  -  FreeBSD Local Checks
FreeBSD : cacti -- remote injection exploit (930)

(**   )  Medium Risk  -  FreeBSD Local Checks
FreeBSD : OpenSSL -- Multiple problems in crypto(3) (921)

(**   )  Medium Risk  -  Slackware Local Checks
SSA-2007-066-06 imagemagick

(**   )  Medium Risk  -  FreeBSD Local Checks
FreeBSD : samba -- potential Denial of Service bug in smbd (929)

(**   )  Medium Risk  -  Slackware Local Checks
SSA-2007-066-03 mozilla-firefox

(**   )  Medium Risk  -  FreeBSD Local Checks
FreeBSD : ktorrent -- multiple vulnerabilities (927)

(**   )  Medium Risk  -  Slackware Local Checks
SSA-2007-066-02 x11

(**   )  Medium Risk  -  FreeBSD Local Checks
FreeBSD : trac -- cross site scripting vulnerability (926)

(**   )  Medium Risk  -  Slackware Local Checks
SSA-2007-066-04 mozilla-thunderbird

(**   )  Medium Risk  -  FreeBSD Local Checks
FreeBSD : bind -- Multiple Denial of Service vulnerabilities (923)

(**   )  Medium Risk  -  FreeBSD Local Checks
FreeBSD : snort -- DCE/RPC preprocessor vulnerability (919)

(**   )  Medium Risk  -  FreeBSD Local Checks
FreeBSD : samba -- format string bug in afsacl.so VFS plugin (928)

(**   )  Medium Risk  -  FreeBSD Local Checks
FreeBSD : sql-ledger -- security bypass vulnerability (931)

(**   )  Medium Risk  -  Slackware LocalChecks
SSA-2007-066-05 seamonkey

(*    )  Low Risk  -  Web Services
DokuWiki Detection

(*    )  Low Risk  -  Windows
Google Desktop detection

(*    )  Low Risk  -  Windows
Nessus Windows Scan not performed with admin privileges

 

 


Terms and Conditions | Acceptable Use Policy Copyright © 2010 Telspace. All Rights Reserved