New Security Vulnerabilities 13th February 2007
The following new security tests were added to Edgeos' database:
TOTAL THREATS IN THE DATABASE 13664
NEW THREATS RISK FACTOR SUMMARY
(*****) Urgent Risk 0
(**** ) Critical Risk 8
(*** ) High Risk 9
(** ) Medium Risk 1
(* ) Low Risk 0
NEW THREATS FAMILY SUMMARY
Debian Local Checks 7
Gentoo Local Checks 6
Web Services 4
Windows 1
(**** ) Critical Risk - Debian Local Checks
[DSA1253] DSA-1253-1 mozilla-firefox
(**** ) Critical Risk - Debian Local Checks
[DSA1258] DSA-1258-1 mozilla-thunderbird
(**** ) Critical Risk - Gentoo Local Checks
[GLSA-200701-23] Cacti: Command execution and SQL injection
(**** ) Critical Risk - Debian Local Checks
[DSA1255] DSA-1255-1 libgtop2
(**** ) Critical Risk - Debian Local Checks
[DSA1254] DSA-1254-1 bind9
(**** ) Critical Risk - Debian Local Checks
[DSA1257] DSA-1257-1 samba
(**** ) Critical Risk - Debian Local Checks
[DSA1252] DSA-1252-1 vlc
(**** ) Critical Risk - Debian Local Checks
[DSA1256] DSA-1256-1 gtk+2.0
(*** ) High Risk - Web Services
Drupal Comment Code Execution Vulnerability
(*** ) High Risk - Web Services
Exo PHPDesk id Parameter SQL Injection Vulnerability
(*** ) High Risk - Gentoo Local Checks
[GLSA-200701-26] KSirc: Denial of Service vulnerability
(*** ) High Risk - Web Services
Drupal Comment Preview Code Execution Vulnerability (2)
(*** ) High Risk - Web Services
Drupal Captcha Bypass Vulnerability
(*** ) High Risk - Gentoo Local Checks
[GLSA-200701-27] ELinks: Arbitrary Samba command execution
(*** ) High Risk - Gentoo Local Checks
[GLSA-200701-24] VLC media player: Format string vulnerability
(*** ) High Risk - Gentoo Local Checks
[GLSA-200701-25] X.Org X server: Multiple vulnerabilities
(*** ) High Risk - Windows
Quicktime RTSP URL Handler Buffer Overflow Vulnerability (Windows)
(** ) Medium Risk - Gentoo Local Checks
[GLSA-200701-28] thttpd: Unauthenticated remote file access |
