New Security Vulnerabilities 12th April 2007

The following new security tests were added to Telspace' database:

TOTAL THREATS IN THE DATABASE   14309

NEW THREATS RISK FACTOR SUMMARY
   (*****)  Urgent Risk          2
   (**** )  Critical Risk        11
   (***  )  High Risk            2
   (**   )  Medium Risk          0
   (*    )  Low Risk             0

NEW THREATS FAMILY SUMMARY
   Debian Local Checks            5
   Web Services                   4
   Windows                        3
   Gentoo Local Checks            2
   Microsoft Bulletins            1

(*****)  Urgent Risk  -  Web Services
PHP < 4.4.5 Multiple Vulnerabilities

(*****)  Urgent Risk  -  Web Services
PHP < 5.2.1 Multiple Vulnerabilities

(**** )  Critical Risk  -  Windows
Mercury Quality Center ActiveX Control ProgColor Buffer Overflow
Vulnerability

(**** )  Critical Risk  -  Microsoft Bulletins
Vulnerabilities in GDI Could Allow Remote Code Execution (925902)

(**** )  Critical Risk  -  Web
XOOPS WF-Section Module articleid Parameter SQL Injection Vulnerability

(**** )  Critical Risk  -  Debian Local Checks
 [DSA1274] DSA-1274-1 file

(**** )  Critical Risk  -  Debian Local Checks
 [DSA1278] DSA-1278-1 man-db

(**** )  Critical Risk  -  Windows
Yahoo! Messenger AudioConf ActiveX Control Buffer Overflow Vulnerability

(**** )  Critical Risk  -  Web Services
Mercury Quality Center ActiveX Control ProgColor Buffer Overflow
Vulnerability (2)

(**** )  Critical Risk  -  Debian Local Checks
 [DSA1276] DSA-1276-1 krb5

(**** )  Critical Risk  -  Debian Local Checks
 [DSA1277] DSA-1277-1 XMMS

(**** )  Critical Risk  -  Debian Local Checks
 [DSA1275] DSA-1275-1 zope2.7

(**** )  Critical Risk  -  Windows
SolidWorks Sldimdownload ActiveX Control Code Execution Vulnerability

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200704-06] Evince: Stack overflow in included gv code

(***  )  High Risk  -  Gentoo Local Checks
 [GLSA-200704-07] libwpd: Multiple vulnerabilities