New Security Vulnerabilities 25th June 2007

The following new security tests were added to Telspace' database:

 

TOTAL THREATS IN THE DATABASE 14907

 

NEW THREATS RISK FACTOR SUMMARY
(*****) Urgent Risk 3
(**** ) Critical Risk 53
(*** ) High Risk 2
(** ) Medium Risk 3
(* ) Low Risk 3

 

NEW THREATS FAMILY SUMMARY
Red Hat Local Checks 12
Fedora Local Checks 11
Centos Local Checks 9
Mandrake Local Checks 7
Microsoft Bulletins 6
Debian Local Checks 4
Windows 4
FreeBSD Local Checks 3
Service Detection 2
Web Services 2
Gentoo Local Checks 2
Remote Shell Access 1
Denial of Service 1

 

(*****) Urgent Risk - Remote Shell Access
Firebird DataBase Server Buffer Overflow

(*****) Urgent Risk - Web Services
XOOPS XFSection Module dir_module Parameter Remote File Include Vulnerability

(*****) Urgent Risk - Denial of Service
Linux SCTP Unknown Chunk Type Denial of Service Vulnerability

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-590: iscsi-initiator-utils

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0403: freetype

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0469: gdb

(**** ) Critical Risk - Microsoft Bulletins
Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution
(927051)

(**** ) Critical Risk - Microsoft Bulletins
Vulnerability in Win 32 API Could Allow Remote Code Execution (935839)

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-548: libexif

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:122: gd

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-572: openoffice.org

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0436

(**** ) Critical Risk - Debian Local Checks
[DSA1311] DSA-1311-1 postgresql-7.4

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0395: mod_perl

(**** ) Critical Risk - Debian Local Checks
[DSA1312] DSA-1312-1 libapache-mod-jk

(**** ) Critical Risk - Debian Local Checks
[DSA1314] DSA-1314-1 open-iscsi

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0473

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0494: kdebase

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:118: libexif

(**** ) Critical Risk - Windows
Corel ActiveCGM ActiveX Buffer Overflow Vulnerabilities

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-546: pam

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0436: kernel

(**** ) Critical Risk - Windows
Zoomify Viewer ActiveX Buffer Overflow Vulnerability

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-584: spamassassin

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0431: shadow

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:120: mozilla-firefox

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0465: cdrecord

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:124: tetex

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-577: mod_perl

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0492: spamassassin

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0406: openoffice.org

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:121: freetype2

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0497: iscsi

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-538: file

(**** ) Critical Risk - Microsoft Bulletins
Cumulative Security Update for Internet Explorer (933566)

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0494

(**** ) Critical Risk - Microsoft Bulletins
Vulnerability in Windows Vista Could Allow Information Disclosure (931213)

(**** ) Critical Risk - Microsoft Bulletins
Cumulative Security Update for Outlook Express and Windows Mail (929123)

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-541: file

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0431

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0430

(**** ) Critical Risk - Microsoft Bulletins
Vulnerability in the Windows Schannel Security Package Could Allow Remote Code Execution (935840)

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0430: openldap

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0403

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0406

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:119: mozilla-thunderbird

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 6 2007-582: spamassassin

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0465

(**** ) Critical Risk - Debian Local Checks
 [DSA1313] DSA-1313-1 mplayer

(**** ) Critical Risk - Mandrake Local Checks
MDKSA-2007:123: libwmf

(**** ) Critical Risk - Red Hat Local Checks
RHSA-2007-0473: cpp

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-576: mod_perl

(**** ) Critical Risk - Centos Local Checks
CentOS : RHSA-2007-0469

(**** ) Critical Risk - Gentoo Local Checks
 [GLSA-200706-07] PHProjekt: Multiple vulnerabilities

(**** ) Critical Risk - Windows
Cisco VPN Client Privilege Escalation Vulnerability

(**** ) Critical Risk - Fedora Local Checks
Fedora Core 5 2007-589: iscsi-initiator-utils

(*** ) High Risk - Gentoo Local Checks
 [GLSA-200706-06] Mozilla products: Multiple vulnerabilities

(*** ) High Risk - Web Services
JFFNMS user Parameter SQL Injection Vulnerability

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : cups -- Incomplete SSL Negotiation Denial of Service (959)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : c-ares -- DNS Cache Poisoning Vulnerability (958)

(** ) Medium Risk - FreeBSD Local Checks
FreeBSD : webmin -- cross site scripting vulnerability (957)

(* ) Low Risk - Service Detection
Symantec Ghost Solution Status Server detection

(* ) Low Risk - Windows
Cisco VPN Client Version Detection

(* ) Low Risk - Service Detection
Symantec Ghost Solution Locate Server detection

 

 

 


Terms and Conditions | Acceptable Use Policy Copyright © 2010 Telspace. All Rights Reserved