Network Security

AERAsec
Network Security
Current Security Messages


Most of the links lead to the corresponding files at CERT or other organisations. So changes take place immediately, especially which patches should be installed or which changes in the configuration should be made to avoid this vulnerability. Some of the files are transferred by FTP.

By the way: If we're not publishing well-known risks inheritant in any widely used platform or program that doesn't mean this particular platform or program is safe to use!

Here you find our network security search engine!


This is some information you send:

Your Browser

CCBot/2.0 (http://commoncrawl.org/faq/)

Your IP address

ec2-54-82-123-216.compute-1.amazonaws.com [54.82.123.216]

Your referer

(filtered or not existing)

Current month, Last month, Last 10 messages, Last 20 messages (index only)

Chosen month 12 / 2010

System: Debian GNU/Linux
Topic: Vulnerabilities in wordpress and phpmyadmin
Links: DSA-2138, CVE-2010-4257, ESB-2011.0002, ASB-2011.0001,
DSA-2139, CVE-2010-4329, CVE-2010-4480, CVE-2010-4481, ESB-2011.003
ID: ae-201012-080

A SQL injection vulnerability has been found in wordpress, a weblog manager. An authenticated user might be able to execute arbitrary SQL commands via the Send Trackbacks field.
Several vulnerabilities have been discovered in phpMyAdmin, a tool to administer MySQL over the web. Most concequences when exploiting these vulnerabilities is the injection of arbitrary web script or HTML.
Fixed packages are available now.

System: Linux
Topic: Vulnerability in libxml2
Links: CVE-2010-4494, MDVSA-2010:260, DSA-2137, ESB-2011.0001
ID: ae-201012-079

A double free vulnerability in libxml2 (xpath.c) allows remote attackers to cause a Denial-of-Service or possibly have unspecified other impact via vectors related to XPath handling. Updated packages have been published to correct this issue.

System: Various
Topic: Vulnerability in Drupal 3rd party module
Links: DRUPAL-SA-CONTRIB-2010-113, ESB-2010.1178
ID: ae-201012-078

A vulnerability was found in the Drupal third-party module Image, allowing a remote Cross-Site Scripting (XSS) attack. Fixed software is available now. Please be aware that Drupal core is not affected.

System: SuSE Linux
Topic: Vulnerabilities in clamav, subversion, pytho, krb5, otrs, moonlight, OpenOffice.org, kdnetwork4, zope, xpdf, gnutls, and opera
Links: SUSE-SR:2010:024, ESB-2010.1179
ID: ae-201012-077

A new SUSE Security Summary reports about vulnerabilities in the packages clamav, subversion, pytho, krb5, otrs, moonlight, OpenOffice.org, kdnetwork4, zope, xpdf, gnutls, and opera. Updated packages are available now and should be installed on vulnerable systems.

System: Microsoft Windows
Topic: Vulnerability in WMI Object Viewer
Links: Secunia #42693, VU #725596, ESB-2010.1177
ID: ae-201012-076

The ActiveX control, WBEMSingleView.ocx, that is a part of the WMI Administrative Tools package contains a vulnerability. The AddContextRef() and ReleaseContext() functions of the WMI Object Viewer control can be passed an object pointer from an attacker that results in arbitrary code execution by remote attackers. An Internet Explorer user with WBEMSingleView.ocx installed can be exploited by visiting a malicious web page. A patch isn't available yet.

System: Microsoft Windows
Topic: Vulnerability in Microsoft Internet Explorer
Links: Microsoft #2488013, CVE-2010-3971, ESB-2010.1176
ID: ae-201012-075

No further comment due to legal reasons.

System: Microsoft Windows
Topic: Vulnerability in Microsoft IIS FTP server
Links: Secunia #42713, CVE-2010-3972, VU #842372, ESB-2010.1174
ID: ae-201012-074

Microsoft IIS FTP server 7.5 is affected by a pre-authentication memory corruption vulnerability. A specifically crafted request sent to the IIS FTP service can result in memory corruption causing the service to crash. A Denial-of-Service (DoS) exploit has been released to the public. IIS 7.5.7600.16385 on Windows 7 is reported to be affected. Other versions may also be affected. Currently, a solution is not available.

System: Various
Topic: Vulnerability in Drupal 3rd party module
Links: DRUPAL-SA-CONTRIB-2010-112, ESB-2010.1175
ID: ae-201012-073

A vulnerability was found in the Drupal third-party module oEmbed. Fixed software is available now. Please be aware that Drupal core is not affected.

System: VMware ESXi 4.1
Topic: Vulnerability in VMware ESXi SFCB Authentication
Links: CVE-2010-4573, ESB-2010.1173
ID: ae-201012-072

Under certain conditions ESXi 4.1 incorrectly handles the SFCB authentication mode. The result is that SFCB authentication could allow login with any username and password combination. A workaround is described in the advisory.

System: Red Hat Enterprise Linux
Topic: Vulnerabilities in mod_auth_mysql and git
Links: RHSA-2010-1002, CVE-2008-2384, ESB-2010.1171,
RHSA-2010-1003, CVE-2010-3906, ESB-2010.1172
ID: ae-201012-071

A flaw was found in the way mod_auth_mysql escaped certain multibyte-encoded strings. If mod_auth_mysql was configured to use a multibyte character set that allowed a backslash ("\") as part of the character encodings, a remote attacker could inject arbitrary SQL commands into a login request.
A cross-site scripting (XSS) flaw was found in gitweb, a simple web interface for Git repositories. A remote attacker could perform an XSS attack against victims by tricking them into visiting a specially-crafted gitweb URL.
Fixed packages are available now.

System: Debian GNU/Linux
Topic: Vulnerabilities in xpdf and tor
Links: DSA-2135, CVE-2010-3702, CVE-2010-3704, ESB-2010.1169,
DSA-2136, CVE-2010-1676, ESB-2010.1170
ID: ae-201012-070

Two vulnerabilities were discovered in xpdf rendering engine, which may lead to the execution of arbitrary code if a malformed PDF file is opened.
It was discovered that Tor, a tool to enable online anonymity, does not correctly handle all data read from the network. By supplying specially crafted packets a remote attacker can cause Tor to overflow its heap, crashing the process.
Fixed packages are available now.

System: Red Hat Enterprise Linux
Topic: Vulnerabilities in kvm and libvpx
Links: RHSA-2010-0998, CVE-2010-3881, ESB-2010.1165,
RHSA-2010-0999, CVE-2010-4203, ESB-2010.1166
ID: ae-201012-069

A vulnerability was found in QEMU-KVM.
An integer overflow flaw, leading to arbitrary memory writes, was found in libvpx. An attacker could create a specially-crafted video encoded using the VP8 codec that, when played by a victim with an application using libvpx (such as Totem), would cause the application to crash or, potentially, execute arbitrary code.
Fixed packages are available now.

System: SuSE Linux
Topic: Vulnerabilities in java-1_4_2-ibm
Links: SUSE-SA:2010:061, ESB-2010.1164
ID: ae-201012-068

Several vulnerabilities were found in IBM Java 1.4.2. Fixed packages are available now.

System: Microsoft Windows
Topic: Security update for Adobe Photoshop CS5 available
Links: APSB10-30, CVE-2010-3127
ID: ae-201012-067

An important library-loading vulnerability has been identified in Adobe Adobe Photoshop CS5 12.0.1 and earlier on the Windows platform. Exploitation of this vulnerability could allow an attacker to load arbitrary libraries by tricking a user into opening a file located on a remote WebDAV or SMB share. Adobe recommends Photoshop CS5 users update their product installations.

System: Mandriva Linux
Topic: Vulnerabilities in kernel
Links: MDVSA-2010:257, CVE-2010-2963, CVE-2010-3067, CVE-2010-3442, CVE-2010-3848, CVE-2010-3849, CVE-2010-3850, CVE-2010-3858
ID: ae-201012-066

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, Denial-of-Service or information leak. Updated kernel packages are available now.

System: Various
Topic: Vulnerability in HP StorageWorks Modular Smart Array P2000 G3
Links: HPSBST02620, SSRT100356, CVE-2010-4115, ESB-2010.1160
ID: ae-201012-065

A security vulnerability has been identified with HP StorageWorks Modular Smart Array P2000 G3. This vulnerability could be exploited to allow remote unauthorized access. Fixed software is available now.

System: Microsoft Windows
Topic: Vulnerability in HP Discovery & Dependency Mapping Inventory
Links: HPSBMA02617, SSRT100338, CVE-2010-4114, ESB-2010.1159
ID: ae-201012-064

A security vulnerability has been identified with HP Discovery & Dependency Mapping Inventory (DDMI) running on Windows. The vulnerability could be exploited remotely resulting in cross site scripting (XSS). Fixed software is available now.

System: Apple Appliances
Topic: Vulnerabilities in Time Capsule and AirPort Base Station
Links: APPLE-SA-2010-12-16-1, CVE-2008-4309, CVE-2009-1574, CVE-2009-2189, CVE-2010-0039, CVE-2010-1804, ESB-2010.1162
ID: ae-201012-063

Serveral vulnerabilities were found in the Apple Time Capsule and AirPort Base Station (802.11n) Firmware. Fixed software is available now.

System: Windows / Linux
Topic: Vulnerability in HP Power Manager
Links: HPSBMA02545, SSRT100139, CVE-2010-4113, ESB-2010.1158
ID: ae-201012-062

A security vulnerability has been identified with HP Power Manager (HPPM) running on Linux and Windows. The vulnerability could be exploited remotely to execute arbitrary code. Fixed software is available now.

System: Various
Topic: Vulnerabilities in Drupal 3rd party modules
Links: DRUPAL-SA-CONTRIB-2010-110, DRUPAL-SA-CONTRIB-2010-111, ESB-2010.1161
ID: ae-201012-061

Several vulnerabilities were found in the Drupal third-party modules Drupal For Firebug and Views. Fixed software is available now. Please be aware that Drupal core is not affected.

System: OpenVMS
Topic: Vulnerability in HP OpenVMS Integrity Servers
Links: HPSBOV02618, SSRT100354, CVE-2010-4110, ESB-2010.1157
ID: ae-201012-060

A potential security vulnerability has been identified with HP OpenVMS Integrity Servers. The vulnerability could be locally exploited to create a Denial-of-Service (DoS) or to gain privileged access to system resources. HP has made patch kits available now.

System: Windows / Linux
Topic: Vulnerability in HP Insight Management Agents
Links: HPSBMA02616, SSRT100231, CVE-2010-4112, ESB-2010.1156
ID: ae-201012-059

A potential security vulnerability has been identified with HP Insight Management Agents running on Linux and Windows. The vulnerability could be exploited remotely resulting in full path disclosure. HP has provided HP Insight Management Agents v8.6 or subsequent to resolve this vulnerability.

System: Windows / Linux
Topic: Vulnerability in HP Insight Diagnostics Online Edition
Links: HPSBMA02615, SSRT100228, CVE-2010-4111, ESB-2010.1155
ID: ae-201012-058

A potential security vulnerability has been identified with HP Insight Diagnostics Online Edition running on Linux and Windows. The vulnerability could be exploited remotely resulting in cross site scripting (XSS). HP has provided HP Insight Diagnostics Online Edition v8.5.1.3712 to resolve this vulnerability.

System: Red Hat Enterprise Linux
Topic: Vulnerabilities in java-1.4.2-ibm-sap and java-1.6.0-ibm
Links: RHSA-2010-0986, RHSA-2010-0987, ESB-2010.1153, ESB-2010.1154
ID: ae-201012-057

Updated java-1.4.2-ibm-sap packages that fix several security issues are now available for Red Hat Enterprise Linux 4, 5 and 6 for SAP. Addtionally, updated java-1.6.0-ibm packages that fix several security issues and two bugs are now available for Red Hat Enterprise Linux 4 Extras, and Red Hat Enterprise Linux 5 and 6 Supplementary.

System: Several
Topic: Vulnerability in Symantec Endpoint Protection Manager Reporting Server
Links: ZDI-10-291, CVE-2010-0114, ESB-2010.1152
ID: ae-201012-056

A vulnerability in the portion of the server that generates reports has been found. Due to the combination of insufficient checks being performed on the application and failure to authenticate a user for generating a chart, an attacker can overwrite arbitrary files on a server. Careful exploitation can lead to code execution under the context of the php interpreter. Symantec has issued an update to correct this vulnerability.

System: Microsoft Windows
Topic: Vulnerability in SAP NetWeaver
Links: ZDI-10-290, SAP #1519966, ESB-2010.1151
ID: ae-201012-055

A vulnerability has been found within the Load and LoadTheme methods of the SapThemeRepository ActiveX control (sapwdpcd.dll) implemented by SAP NetWeaver Business Client. Due to a failure in bounds checking, a user-supplied parameter supplied to the vulnerable methods can overflow a stack buffer resulting in arbitrary code execution under the context of the user running the browser. SAP has issued an update to correct this vulnerability.

System: Various
Topic: Vulnerability in BlackBerry Enterprise Server
Links: BlackBerry #24761, CVE-2010-2602, ESB-2010.1148
ID: ae-201012-054

A vulnerability exists in the BlackBerry Attachment Service component of some versions of the BlackBerry Enterprise Server. It could allow a malicious individual to cause buffer overflow errors, which may result in arbitrary code execution on the computer that hosts the BlackBerry Attachment Service. While code execution is possible, an attack is more likely to result in the PDF rendering process terminating before it completes. In the event of such an unexpected process termination, the PDF rendering process will restart automatically but will not resume processing the same PDF file. Successful exploitation of this issue requires a malicious individual to persuade a BlackBerry smartphone user to open a specially crafted PDF file on a BlackBerry smartphone that is associated with a user account on a BlackBerry Enterprise Server. The PDF file may be attached to an E-Mail message, or the BlackBerry smartphone user may retrieve it from a web site using the Get Link menu item on the BlackBerry smartphone.
RIM has issued interim security software updates that resolve the vulnerability in affected versions of the BlackBerry Enterprise Server.

System: Mandriva Linux
Topic: Vulnerabilities in perl-CGI-Simple
Links: MDVSA-2010:250, MDVSA-2010:252, CVE-2010-2761, CVE-2010-4410
ID: ae-201012-053

Two vulnerabilities have been found in perl-CGI-Simple. The multipart_init function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via crafted input that contains this value. Further on, a CRLF injection vulnerability in the header function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier also allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline characters.
Fixed packages are available now.

System: Red Hat Enterprise Linux 4
Topic: Several Vulnerabilities in Helix Player
Links: RHSA-2010-0981, CVE-2010-2997, CVE-2010-4375, CVE-2010-4378, CVE-2010-4379, CVE-2010-4382, CVE-2010-4383, CVE-2010-4384, CVE-2010-4385, CVE-2010-4386, CVE-2010-4392, ESB-2010.1149
ID: ae-201012-052

Helix Player is a media player. Multiple security flaws were discovered in RealPlayer. Helix Player and RealPlayer share a common source code base; therefore, some of the flaws discovered in RealPlayer may also affect Helix Player. Some of these flaws could, when opening, viewing, or playing a malicious media file or stream, lead to arbitrary code execution with the privileges of the user running Helix Player. An update removes the HelixPlayer package from Red Hat Enterprise Linux 4.

System: SuSE Linux
Topic: Vulnerabilities in kernel
Links: SUSE-SA:2010:060 , CVE-2010-2226, CVE-2010-2248, CVE-2010-2942, CVE-2010-2946, CVE-2010-3067, CVE-2010-3086, CVE-2010-3310, CVE-2010-3437, CVE-2010-3442, CVE-2010-4072, CVE-2010-4073, CVE-2010-4078, CVE-2010-4080, CVE-2010-4081, CVE-2010-4083, CVE-2010-4157, CVE-2010-4158, CVE-2010-4162, CVE-2010-4164, ESB-2010.1150
ID: ae-201012-051

Several vulnerabilities have been found in the kernel of SuSE Linux. Due to security reasons it's recommended to install updated kernel packages.

System: Microsoft Windows
Topic: Vulnerability in Microsoft Exchange Server
Links: MS10-106, CVE-2010-3937, ESB-2010.1147
ID: ae-201012-050

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerabilities in Microsoft Office Graphics Filters
Links: MS10-105, CVE-2010-3945, CVE-2010-3946, CVE-2010-3947, CVE-2010-3949, CVE-2010-3950, CVE-2010-3951, CVE-2010-3952, ESB-2010.1146
ID: ae-201012-049

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerability in Microsoft SharePoint
Links: MS10-104, CVE-2010-3964, ESB-2010.1145
ID: ae-201012-048

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerabilities in Microsoft Publisher
Links: MS10-103, CVE-2010-2569, CVE-2010-2570, CVE-2010-2571, CVE-2010-3954, CVE-2010-3955, ESB-2010.1144
ID: ae-201012-047

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerability in Microsoft Hyper-V
Links: MS10-102, CVE-2010-3960, ESB-2010.1143
ID: ae-201012-046

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerability in Microsoft Windows Netlogon Service
Links: MS10-101, CVE-2010-2742, ESB-2010.1142
ID: ae-201012-045

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerability in Consent User Interface
Links: MS10-100, CVE-2010-3961, ESB-2010.1141
ID: ae-201012-044

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerability in Routing and Remote Access
Links: MS10-099, CVE-2010-3963, ESB-2010.1140
ID: ae-201012-043

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerabilities in Microsoft Windows Kernel Mode Drivers
Links: MS10-098, CVE-2010-3939, CVE-2010-3940, CVE-2010-3941, CVE-2010-3942, CVE-2010-3943, CVE-2010-3944, ESB-2010.1139
ID: ae-201012-042

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerability in Microsoft Windows Internet Connection Signup Wizard
Links: MS10-097, CVE-2010-3144, ESB-2010.1138
ID: ae-201012-041

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerability in Microsoft Windows Address Book
Links: MS10-096, CVE-2010-3147, ESB-2010.1137
ID: ae-201012-040

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerability in Microsoft Windows
Links: MS10-095, CVE-2010-3966, ESB-2010.1136
ID: ae-201012-039

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerability in Microsoft Windows Media Encoder
Links: MS10-094, CVE-2010-3965, ESB-2010.1135
ID: ae-201012-038

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerability in Microsoft Windows Movie Maker
Links: MS10-093, CVE-2010-3967, ESB-2010.1134
ID: ae-201012-037

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerability in Microsoft Windows Task Scheduler
Links: MS10-092, CVE-2010-3338, ESB-2010.1133
ID: ae-201012-036

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerabilities in Microsoft OpenType Font (OTF) Driver
Links: MS10-091, CVE-2010-3956, CVE-2010-3957, CVE-2010-3959, ESB-2010.1132
ID: ae-201012-035

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerabilities in Microsoft Internet Explorer
Links: MS10-090, CVE-2010-3340, CVE-2010-3342, CVE-2010-3343, CVE-2010-3345, CVE-2010-3346, CVE-2010-3348, CVE-2010-3962, iDEFENSE #885, iDEFENSE #886, VU #634956, ESB-2010.1131
ID: ae-201012-034

No further comment due to legal reasons

System: Microsoft Windows
Topic: Vulnerability in Microsoft Internet Explorer
Links: VU#634956
ID: ae-201012-033

Microsoft Internet Explorer contains a use-after-free vulnerability in the handling of CSS, which may allow a remote, unauthenticated attacker to execute arbitrary code. A patch is not available yet.

System: Microsoft Windows
Topic: Vulnerability in Symantec Antivirus Corporate Edition
Links: CORE-2010-0728, CVE-2010-3268, ESB-2010.1127
ID: ae-201012-032

A vulerability in the Intel Alert Handler service ('hndlrsvc.exe') of Symantec Antivirus Corporate Edition can lead to a remote denial-of-service. A patch is not available yet.

System: Various
Topic: Vulnerabilities in Novell ZENWorks
Links: ESB-2010.1128
ID: ae-201012-031

Several vulnerabilities were found in Novell ZENWorks. Fixed software is available now.

System: Various
Topic: Vulnerability in ISC DHCP Server
Links: ISC, VU#159528, CVE-2010-3616
ID: ae-201012-030

If a TCP connection is established to the server on a port which has been configured for communication with a failover peer, this can cause it to become non-responsive to all normal DHCP protocol traffic. The server will progress to a communications-interrupted state - but in addition will also cease to provide DHCP services to clients. The server must be restarted to resume normal operation. Fixed software is available now.

System: Debian GNU/Linux
Topic: Vulnerability in collectd
Links: DSA-2133, CVE-2010-4336, ESB-2010.1129
ID: ae-201012-029

It was discovered that collectd, a statistics collection and monitoring daemon, is prone to a denial of service attach via a crafted network packet. Fixed packages are available now.

System: Red Hat Enterprise Linux
Topic: Vulnerabilities in openssl
Links: RHSA-2010-0977, RHSA-2010-0978, RHSA-2010-0979, CVE-2008-7270, CVE-2009-3245, CVE-2010-4180, ESB-2010.1126
ID: ae-201012-028

A ciphersuite downgrade flaw was found in the OpenSSL SSL/TLS server code. A remote attacker could possibly use this flaw to change the ciphersuite associated with a cached session stored on the server, if the server enabled the SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG option, possibly forcing the client to use a weaker ciphersuite after resuming the session. Fixed packages are available now.

System: HP-UX
Topic: Vulnerabilities in Java
Links: HPSBUX02608 SSRT100333, ESB-2010.1123
ID: ae-201012-027

Several security vulnerabilities have been identified in Java Runtime Environment (JRE) and Java Developer Kit (JDK) running on HP-UX. These vulnerabilities could allow remote execution of arbitrary code, disclosure of information, and other vulnerabilities. Fixed software is available now.

System: SuSE Linux
Topic: Vulnerabilities in acroread
Links: SUSE-SA:2010:058, CVE-2010-3654, CVE-2010-4091
ID: ae-201012-026

Two vulnerabilities were found in the Adobe Reader. Fixed packages are available now.

System: Linux
Topic: Vulnerabilities in exim
Links: CVE-2010-4344, VU#682457, VU#758489, DSA-2131, ESB-2010.1119, RHSA-2010-0970, ESB-2010.1120, SUSE-SA:2010:059
ID: ae-201012-025

Several vulnerabilities have been found in exim4 that allow a remote attacker to execute arbitrary code as root user. Exploits for these issues have been seen in the wild. An update fixes the memory corruption issue.

System: Microsoft Windows
Topic: Vulnerabilities in RealPlayer
Links: RealNetworks, iDEFENSE #8834, iDEFENSE #884, CVE-2010-2999, CVE-2010-4378, CVE-2010-4386, CVE-2010-4387, CVE-2010-4388, CVE-2010-4389, CVE-2010-4391, CVE-2010-4392, CVE-2010-4394, CVE-2010-4396, ESB-2010.1124
ID: ae-201012-024

The RealPlayer is a famous media player by RealNetworks. Two vulnerabilities exist in the way RealPlayer handles specially crafted RealMedia video files or RealMedia files using RealAudio codec. So if an attacker convinces a user to open such a specially crafted file, remote execution of arbitrary code on a vulnerable system is possible. RealNetworks has released a patch which addresses these issues.

System: Microsoft Windows
Topic: Vulnerability in CA XOsoft
Links: CVE-2010-3984, ESB-2010.1115
ID: ae-201012-023

A vulnerability exists in CA XOsoft that can allow a remote attacker to execute arbitrary code. A patch is available now.

System: HP-UX
Topic: Vulnerabilities in HP-UX Apache-based Web Server
Links: HPSBUX02612, SSRT100345, CVE-2006-3918, CVE-2007-6203, CVE-2009-0023, CVE-2009-1195, CVE-2009-1890, CVE-2009-1891, CVE-2009-1955, CVE-2009-1956, CVE-2010-1452, ESB-2010.1114
ID: ae-201012-022

Several security vulnerabilities have been identified with HP-UX Apache-based Web Server. These vulnerabilities could be exploited locally to disclose information, increase privilege or remotely create a Denial of Service (DoS). Fixed software is available now.

System: Various
Topic: Vulnerabilities in Mozilla Firefox, Thunderbird, and Seamonkey
Links: Mozilla, CVE-2010-3766, CVE-2010-3767, CVE-2010-3768, CVE-2010-3769, CVE-2010-3770, CVE-2010-3771, CVE-2010-3772, CVE-2010-3773, CVE-2010-3774, CVE-2010-3775, CVE-2010-3776, CVE-2010-3777, RHSA-2010-0966, RHSA-2010-0967, RHSA-2010-0968, RHSA-2010-0969, ESB-2010.1116, ESB-2010.1117, ESB-2010.1118, MDVSA-2010:251, DSA-2132, ESB-2010.1122
ID: ae-201012-021

Several critical vulnerabilities were found in the Mozilla Firefox browser, Thuderbird and Seamonkey. Fixed software is available now.

System: Various
Topic: Vulnerabilities in Drupal 3rd party modules
Links: DRUPAL-SA-CONTRIB-2010-108, DRUPAL-SA-CONTRIB-2010-109, ESB-2010.1112
ID: ae-201012-020

Several vulnerabilities were found in the Drupal third-party modules Who Bought What and Embedded Media Field. Fixed software is available now. Please be aware that Drupal core is not affected.

System: SuSE Linux
Topic: Vulnerabilities in libxml2, tomboy, krb5, php5, cups, java-1_6_0-openjdk, epiphany, and encfs
Links: SUSE-SR:2010:023, ESB-2010.1111
ID: ae-201012-019

A new SUSE Security Summary reports about vulnerabilities in the packages libxml2, tomboy, krb5, php5, cups, java-1_6_0-openjdk, epiphany, and encfs. Updated packages are available now and should be installed on vulnerable systems.

System: Red Hat Enterprise Linux
Topic: Vulnerabilities in JBoss Enterprise Application Platform
Links: RHSA-2010-0960, RHSA-2010-0961, RHSA-2010-0962, RHSA-2010-0963, RHSA-2010-0964, RHSA-2010-0965, CVE-2010-3862, CVE-2010-4265, ESB-2010.1109
ID: ae-201012-018

Several vulnerabilities were found in the JBoss Enterprise Application Platform. Fixed packages are available now.

System: Red Hat Enterprise MRG for RHEL 5
Topic: Vulnerabilities in kernel-rt
Links: RHSA-2010-0958, ESB-2010.1108
ID: ae-201012-017

Updated kernel-rt packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise MRG 1.3. This update has been rated as having moderate security impact by the Red Hat Security Response Team.

System: Apple Mac OS X, Microsoft Windows
Topic: Vulnerabilities in Apple QuickTime
Links: APPLE-SA-2010-12-07-1, iDefense, CVE-2010-0530, CVE-2010-1508, CVE-2010-3787, CVE-2010-3788, CVE-2010-3789, CVE-2010-3790, CVE-2010-3791, CVE-2010-3792, CVE-2010-3793, CVE-2010-3794, CVE-2010-3795, CVE-2010-3800, CVE-2010-3801, CVE-2010-3802, CVE-2010-4009, ESB-2010.1107
ID: ae-201012-016

Several vulnerabilities were found in Apple QuickTime. Fixed software is available now.

System: Mandriva Linux
Topic: Vulnerabilities in openssl and clamav
Links: MDVSA-2010:248, CVE-2010-4180,
MDVSA-2010:249, LinuxSecurity, CVE-2010-4260, CVE-2010-4261, CVE-2010-4479, ESB-2010.1106
ID: ae-201012-015

OpenSSL, when SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG is enabled, does not properly prevent modification of the ciphersuite in the session cache, which allows remote attackers to force the use of an unintended cipher via vectors involving sniffing network traffic to discover a session identifier.
Several vunerabilities were found in clamav.
Fixed packages are available now.

System: Red Hat Enterprise Linux
Topic: Vulnerability in apr-util
Links: RHSA-2010-0950, CVE-2010-1623, ESB-2010.1103
ID: ae-201012-014

It was found that certain input could cause the apr-util library to allocate more memory than intended in the apr_brigade_split_line() function. An attacker able to provide input in small chunks to an application using the apr-util library (such as httpd) could possibly use this flaw to trigger high memory consumption. Fixed packages are available now.

System: Red Hat Enterprise Linux
Topic: Vulnerabilities in kvm and quagga
Links: RHSA-2010-0898, CVE-2010-3698, CVE-2010-4091, ESB-2010.1100,
RHSA-2010-0945, CVE-2010-2948, CVE-2010-2949, ESB-2010.1101
ID: ae-201012-013

A flaw was found in the way QEMU-KVM handled the reloading of fs and gs segment registers when they had invalid selectors. A privileged host user with access to "/dev/kvm" could use this flaw to crash the host (denial of service).
A stack-based buffer overflow flaw was found in the way the Quagga bgpd daemon processed certain BGP Route Refresh (RR) messages. A configured BGP peer could send a specially-crafted BGP message, causing bgpd on a target system to crash or, possibly, execute arbitrary code with the privileges of the user running bgpd. A NULL pointer dereference flaw was found in the way the Quagga bgpd daemon parsed the paths of autonomous systems (AS). A configured BGP peer could crash bgpd on a target system via a specially-crafted BGP message.
Fixed packages are available now.

System: Microsoft Windows
Topic: Security update for Adobe Illustrator CS5 available
Links: APSB10-29, CVE-2010-3152
ID: ae-201012-012

An important library-loading vulnerability has been identified in Adobe Illustrator CS5 15.0.1 and earlier on the Windows platform. Exploitation of this vulnerability could allow an attacker to load arbitrary libraries by tricking a user into opening a file located on a remote WebDAV or SMB share. Adobe recommends Illustrator CS5 users update their product installations.

System: HP-UX
Topic: Vulnerability in OpenSSL
Links: HPSBUX02610, SSRT100341, HP, CVE-2010-0742, ESB-2010.1097
ID: ae-201012-011

A potential security vulnerability has been identified with HP-UX OpenSSL. This vulnerability could be exploited remotely to execute arbitrary code or create a Denial-of-Service (DoS). HP has provided upgrades to resolve this vulnerability.

System: Various
Topic: Vulnerabilities in Drupal 3rd party modules
Links: DRUPAL-SA-CONTRIB-2010-105, DRUPAL-SA-CONTRIB-2010-106, DRUPAL-SA-CONTRIB-2010-107, ESB-2010.1096
ID: ae-201012-010

Several vulnerabilities were found in the Drupal third-party modules Outline Designer, Comment Edited, and Services. Fixed software is available now. Please be aware that Drupal core is not affected.

System: Red Hat Enterprise Linux
Topic: Vulnerabilities in acroread and java-1.4.2-ibm
Links: RHSA-2010-0934, CVE-2010-3654, CVE-2010-4091, ESB-2010.1092,
RHSA-2010-0935, CVE-2010-1321, CVE-2010-3574, ESB-2010.1093
ID: ae-201012-009

Two vulnerabilities were found in the Adobe Reader.
Two vulnerabilities were found in the IBM Java 2 Runtime Environment and the IBM Java 2 Software Development Kit.
Fixed packages are available now.

System: Red Hat Enterprise Linux 4
Topic: Vulnerabilities in kernel
Links: RHSA-2010-0936, CVE-2010-3432, CVE-2010-3442, ESB-2010.1094
ID: ae-201012-008

Updated kernel packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4.

System: Debian GNU/Linux
Topic: Vulnerability in libxml2
Links: DSA-2128, CVE-2010-4008, ESB-2010.1090
ID: ae-201012-007

'libxml2' reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to cause a denial of service (application crash) via a crafted XML document. Fixed packages are available now.

System: Various
Topic: Vulnerabilities in ISC BIND
Links: ISC, ISC, ISC, VU#510208, VU#706148, VU#837744, CVE-2010-3613, CVE-2010-3614, CVE-2010-3615,
DSA-2130, ESB-2010.1121, RHSA-2010-0975, RHSA-2010-0976, RHSA-2010-1000, ESB-2010.1125, ESB-2010.1167, MDVSA-2010:253
ID: ae-201012-006

Several vulnerabilities were found in the ISC BIND nameserver. Fixed software is available now.

System: VMware ESX
Topic: Vulnerabilities in VMware ESX 4.1
Links: CVE-2010-3081, ESB-2010.1083
ID: ae-201012-005

A vulnerability was found in the VMware ESX Service Console. Fixed software is available now.

System: SuSE Linux
Topic: Vulnerabilities in gdm, openssl/libopenssl-devel, poppler/libpoppler4/libpoppler-devel, and quagga
Links: SUSE-SR:2010:022, ESB-2010.1088
ID: ae-201012-004

A new SUSE Security Summary reports about vulnerabilities in the packages gdm, openssl/libopenssl-devel, poppler/libpoppler4/libpoppler-devel, and quagga. Updated packages are available now and should be installed on vulnerable systems.

System: Red Hat Enterprise Linux
Topic: Vulnerabilities in Red Hat Enterprise MRG Messaging and Grid
Links: RHSA-2010-0921, RHSA-2010-0922, CVE-2010-4179, ESB-2010.1084
ID: ae-201012-003

The Management Console Installation Guide for Red Hat Enterprise MRG 1.3 instructed administrators to configure Condor to allow the MRG Management Console (cumin) to submit jobs on behalf of a user. This configuration facilitated a trust relationship between cumin and the Condor QMF plug-ins; however, there was inadequate access control on the trusted channel, allowing anyone able to publish to a broker to submit jobs to run as any other user. Fixed packages are available now.

System: Red Hat Enterprise Linux
Topic: Vulnerabilities in dhcp and wireshark
Links: RHSA-2010-0923, CVE-2010-3611, ESB-2010.1085,
RHSA-2010-0924, CVE-2010-3445, CVE-2010-4300, ESB-2010.1086
ID: ae-201012-002

A NULL pointer dereference flaw was discovered in the way the dhcpd daemon parsed DHCPv6 packets. A remote attacker could use this flaw to crash dhcpd via a specially-crafted DHCPv6 packet, if dhcpd was running as a DHCPv6 server.
A heap-based buffer overflow flaw was found in the Wireshark Local Download Sharing Service (LDSS) dissector. If Wireshark read a malformed packet off a network or opened a malicious dump file, it could crash or, possibly, execute arbitrary code as the user running Wireshark. A denial of service flaw was found in Wireshark. Wireshark could crash or stop responding if it read a malformed packet off a network, or opened a malicious dump file.
Fixed packages are available now.

System: Various
Topic: Vulnerabilities in MIT Kerberos 5
Links: MITKRB5-SA-2010-007 ESB-2010.1082 CVE-2010-1323, CVE-2010-1324, CVE-2010-4020, CVE-2010-4021, RHSA-2010-0925, RHSA-2010-0926, ESB-2010.1087, MDVSA-2010:246, DSA-2129, ESB-2010.1091
ID: ae-201012-001

Several vulnerabilities were found in the MIT implementation of Kerberos (krb5). Fixed software is available now.



(c) 2000-2014 AERAsec Network Services and Security GmbH