Report date: December 01, 2008 Date posted: December 01, 2008
This report combines relevant bulletins from SANS, Secunia and CERT. The wording is original with some "back" links added where needed. The CERT index lists vulnerabilities with and without solutions. Click the link for specific information.
At a very minimum, look at the SANS bulletins as they include the top issues on a weekly basis. Next, review Secunia for a more complete listing with well structured bulletins avaiable as external links. Finally, the CERT section contains very detailed information and many newly discovered vulnerabilities and updates on existing issues.
Tip: highlight any link below to reveal the criticality or priority.
None relevant None relevant back [SA32881] K-Lite Codec Pack ffdshow URL Processing Buffer Overflow
back [SA32850] Nero ShowTime M3U Processing Buffer Overflow Vulnerability
back [SA32846] ffdshow URL Processing Buffer Overflow Vulnerability
back [SA32829] FlexCell Grid ActiveX Control "HttpDownloadFile()" Arbitrary File Overwrite
back [SA32823] Quicksilver Forums "lang" File Inclusion Vulnerability
back [SA32852] iPhone Configuration Web Utility for Windows Directory Traversal
back [SA32878] Ubuntu update for thunderbird
back [SA32876] SUSE Update for Mozilla Products
back [SA32872] SUSE Update for Multiple Packages
back [SA32860] Ubuntu update for webkit
back [SA32856] Ubuntu update for openoffice.org
back [SA32853] Debian update for iceweasel
back [SA32845] Debian update for xulrunner
back [SA32843] Fedora update for imlib2
back [SA32835] Slackware update for mozilla-thunderbird
back [SA32884] HP Secure Web Server/Internet Express for Tru64 UNIX PHP Vulnerability
back [SA32879] Ubuntu update for GnuTLS
back [SA32864] Red Hat update for vim
back [SA32863] Red Hat update for vim
back [SA32861] Ubuntu update for gaim
back [SA32859] Ubuntu update for pidgin
back [SA32858] Red Hat update for vim
back [SA32854] Debian update for enscript
back [SA32839] rPath update for vim, vim-minimal, and gvim
back [SA32834] SUSE update for phpMyAdmin and lighttpd
back [SA32871] FreeBSD "arc4random()" Insufficient Entropy Sources Security Issue
back [SA32838] rPath update for httpd
back [SA32862] Red Hat update for tog-pegasus
back [SA32916] IBM AIX Multiple Privilege Escalation Vulnerabilities
back [SA32855] Debian update for hf
back [SA32832] SUSE update for yast2-backup
back [SA32831] hf "hfkernel" Privilege Escalation Security Issue
back [SA32875] Fedora update for geda-gnetlist
back [SA32851] VirtualBox "AcquireDaemonLock()" Insecure Temporary Files
back [SA32827] Siemens C450IP / C475IP Denial of Service Vulnerability
back [SA32836] I-O DATA HDL-F Series Cross-Site Request Forgery
back [SA32848] Amaya Two Buffer Overflow Vulnerabilities
back [SA32825] LoveCMS Download Manager Module File Upload Vulnerability
back [SA32824] MODx CMS "reflect_base" File Inclusion Vulnerability
back [SA32887] Star Articles "subcatid" and "artid" SQL Injection Vulnerabilities
back [SA32874] WebStudio eHotel "pageid" SQL Injection Vulnerability
back [SA32873] WebStudio eCatalogue "pageid" SQL Injection Vulnerability
back [SA32868] FAQ Manager SQL Injection and File Inclusion Vulnerabilities
back [SA32866] Clean CMS "id" Cross-Site Scripting and SQL Injection
back [SA32865] fuzzylime (cms) "p" File Inclusion Vulnerability
back [SA32844] Cars Portal "id" SQL Injection Vulnerability
back [SA32841] PG Multiple Products "login_lg" SQL Injection Vulnerability
back [SA32840] Wireshark SMTP Processing Denial of Service Vulnerability
back [SA32837] PG Job Site Pro "poll_view_id" SQL Injection Vulnerability
back [SA32830] xt:Commerce SQL Injection Vulnerability
back [SA32826] Red Hat update for java-1.4.2-ibm
back [SA32822] Easyedit CMS Multiple SQL Injection Vulnerabilities
back [SA32905] Drupal Comment Mail Module Cross-Site Request Forgery
back [SA32904] Drupal User Karma Module Cross-Site Scripting and SQL Injection
back [SA32898] Post Affiliate Pro "umprof_status" SQL Injection Vulnerability
back [SA32882] WordPress "Host" Header RSS Feed Script Insertion Vulnerability
back [SA32880] MyBB "Referer" Header "my_post_key" Token Disclosure
back [SA32867] COMS "q" Cross-Site Scripting Vulnerability
back [SA32828] Softbiz Classifieds Script "msg" Cross-Site Scripting Vulnerability
back [SA32833] Attachmate Products SSH CBC Mode Plaintext Recovery Vulnerability
Secunia Bulletin - 2008-48
CERT Bulletin - SB08-336
BULLETIN DETAIL
Secunia Bulletin
Critical: Highly critical
Where: From remote
Impact: DoS, System access
Released: 2008-11-26
A vulnerability has been reported in K-Lite Codec Pack, which potentially can be exploited by malicious people to compromise a user's system.
Full Advisory:
http://secunia.com/advisories/32881/
Critical: Highly critical
Where: From remote
Impact: DoS, System access
Released: 2008-11-27
Gjoko 'LiquidWorm' Krstic has reported a vulnerability in Nero ShowTime, which potentially can be exploited by malicious people to compromise a user's system.
Full Advisory:
http://secunia.com/advisories/32850/
Critical: Highly critical
Where: From remote
Impact: DoS, System access
Released: 2008-11-24
A vulnerability has been reported in ffdshow, which potentially can be exploited by malicious people to compromise a user's system.
Full Advisory:
http://secunia.com/advisories/32846/
Critical: Highly critical
Where: From remote
Impact: System access
Released: 2008-11-24
Alfons Luja has discovered a vulnerability in the FlexCell Grid ActiveX control, which can be exploited by malicious people to compromise a user's system.
Full Advisory:
http://secunia.com/advisories/32829/
Critical: Moderately critical
Where: From remote
Impact: Exposure of sensitive information, Exposure of system
information
Released: 2008-11-25
__GiReX__ has reported a vulnerability in Quicksilver Forums, which can be exploited by malicious people to disclose sensitive information.
Full Advisory:
http://secunia.com/advisories/32823/
Critical: Less critical
Where: From local network
Impact: Exposure of system information, Exposure of sensitive
information
Released: 2008-11-24
A vulnerability has been discovered in iPhone Configuration Web Utility for Windows, which can be exploited by malicious people to disclose sensitive information.
Full Advisory:
http://secunia.com/advisories/32852/
Critical: Highly critical
Where: From remote
Impact: Security Bypass, Exposure of system information, Exposure
of sensitive information, System access
Released: 2008-11-26
Ubuntu has issued an update for mozilla-thunderbird and thunderbird.
This fixes some vulnerabilities, which can be exploited by malicious people to to disclose sensitive information, bypass certain security restrictions, or compromise a user's system.
Full Advisory:
http://secunia.com/advisories/32878/
Critical: Highly critical
Where: From remote
Impact: Security Bypass, Exposure of system information, Exposure
of sensitive information, System access
Released: 2008-11-26
SUSE has issued an update for MozillaFirefox, MozillaThunderbird, and seamonkey. This fixes some vulnerabilities, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, or compromise a user's system.
Full Advisory:
http://secunia.com/advisories/32876/
Critical: Highly critical
Where: From remote
Impact: Privilege escalation, DoS, System access
Released: 2008-11-25
SUSE has issued an update for multiple packages. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges or by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.
Full Advisory:
http://secunia.com/advisories/32872/
Critical: Highly critical
Where: From remote
Impact: DoS, System access
Released: 2008-11-25
Ubuntu has issued an update for webkit. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
Full Advisory:
http://secunia.com/advisories/32860/
Critical: Highly critical
Where: From remote
Impact: Privilege escalation, System access
Released: 2008-11-25
Ubuntu has issued an update for openoffice.org and openoffice.org-amd64. This fixes some vulnerabilities and a security issue, which potentially can be exploited by malicious people to compromise a user's system, and by malicious, local users to perform certain actions with escalated privileges.
Full Advisory:
http://secunia.com/advisories/32856/
Critical: Highly critical
Where: From remote
Impact: Security Bypass, Exposure of system information, Exposure
of sensitive information, System access
Released: 2008-11-25
Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, or compromise a user's system.
Full Advisory:
http://secunia.com/advisories/32853/
Critical: Highly critical
Where: From remote
Impact: Security Bypass, Exposure of system information, Exposure
of sensitive information, DoS, System access
Released: 2008-11-24
Debian has issued an update for xulrunner. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, to disclose sensitive information, or to potentially compromise a user's system.
Full Advisory:
http://secunia.com/advisories/32845/
Critical: Highly critical
Where: From remote
Impact: DoS, System access
Released: 2008-11-26
Fedora has issued an update for imlib2. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise an application using the library.
Full Advisory:
http://secunia.com/advisories/32843/
Critical: Highly critical
Where: From remote
Impact: Security Bypass, Exposure of system information, Exposure
of sensitive information, System access
Released: 2008-11-24
Slackware has issued an update for mozilla-thunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, or compromise a user's system.
Full Advisory:
http://secunia.com/advisories/32835/
Critical: Moderately critical
Where: From remote
Impact: DoS, System access
Released: 2008-11-26
HP has acknowledged a vulnerability in Secure Web Server for Tru64 UNIX and Internet Express for Tru64 UNIX, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.
Full Advisory:
http://secunia.com/advisories/32884/
Critical: Moderately critical
Where: From remote
Impact: Security Bypass, Spoofing
Released: 2008-11-26
Ubuntu has issued an update for gnutls12, gnutls13, and gnutls26. This fixes a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.
Full Advisory:
http://secunia.com/advisories/32879/
Critical: Moderately critical
Where: From remote
Impact: System access
Released: 2008-11-25
Red Hat has issued an update for vim. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
Full Advisory:
http://secunia.com/advisories/32864/
Critical: Moderately critical
Where: From remote
Impact: System access
Released: 2008-11-25
Red Hat has issued an update for vim. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a vulnerable system.
Full Advisory:
http://secunia.com/advisories/32863/
Critical: Moderately critical
Where: From remote
Impact: DoS, System access
Released: 2008-11-25
Ubuntu has issued an update for gaim. This fixes some vulnerabilities, which can be exploited by malicious people to potentially compromise a user's system.
Full Advisory:
http://secunia.com/advisories/32861/
Critical: Moderately critical
Where: From remote
Impact: Spoofing, DoS, System access
Released: 2008-11-25
Ubuntu has issued an update for pidgin. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing attacks and potentially compromise a user's system.
Full Advisory:
http://secunia.com/advisories/32859/
Critical: Moderately critical
Where: From remote
Impact: System access
Released: 2008-11-25
Red Hat has issued an update for vim. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
Full Advisory:
http://secunia.com/advisories/32858/
Critical: Moderately critical
Where: From remote
Impact: System access
Released: 2008-11-25
Debian has issued an update for enscript. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.
Full Advisory:
http://secunia.com/advisories/32854/
Critical: Moderately critical
Where: From remote
Impact: System access
Released: 2008-11-25
rPath has issued an update for vim, vim-minimal, and gvim. This fixes some vulnerabilities, which can be exploited by malicious people to compromise a user's system.
Full Advisory:
http://secunia.com/advisories/32839/
Critical: Moderately critical
Where: From remote
Impact: Cross Site Scripting, Spoofing, Manipulation of data,
Exposure of system information, Exposure of sensitive information, DoS
Released: 2008-11-25
SUSE has issued an update for phpMyAdmin and lighttpd. This fixes some vulnerabilities, which can be exploited by malicious, local users to conduct cross-site scripting attacks, and by malicious users to disclose system and potentially sensitive information, and by malicious people to conduct spoofing attacks, conduct SQL injection attacks, disclose system and potentially sensitive information, and cause a DoS (Denial of Service).
Full Advisory:
http://secunia.com/advisories/32834/
Critical: Less critical
Where: From remote
Impact: Brute force
Released: 2008-11-25
FreeBSD has acknowledged a security issue, which can be exploited by malicious people to conduct brute force attacks.
Full Advisory:
http://secunia.com/advisories/32871/
Critical: Less critical
Where: From remote
Impact: Cross Site Scripting, DoS
Released: 2008-11-24
rPath has issued an update for httpd. This fixes some vulnerabilities, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or conduct cross-site scripting attacks.
Full Advisory:
http://secunia.com/advisories/32838/
Critical: Less critical
Where: From local network
Impact: Security Bypass, Brute force
Released: 2008-11-25
Red Hat has issued an update for tog-pegasus. This fixes a security issues and a weakness, which can be exploited by people to conduct brute force attacks and malicious users to bypass certain security restrictions.
Full Advisory:
http://secunia.com/advisories/32862/
Critical: Less critical
Where: Local system
Impact: Privilege escalation
Released: 2008-11-27
Some vulnerabilities have been reported in IBM AIX, which can be exploited by malicious, local users to gain escalated privileges.
Full Advisory:
http://secunia.com/advisories/32916/
Critical: Less critical
Where: Local system
Impact: Privilege escalation
Released: 2008-11-24
Debian has issued an update for hf. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges.
Full Advisory:
http://secunia.com/advisories/32855/
Critical: Less critical
Where: Local system
Impact: Privilege escalation
Released: 2008-11-25
SUSE has issued an update for yast2-backup. This fixes a security issue, which can be exploited by malicious, local users to gain escalated privileges.
Full Advisory:
http://secunia.com/advisories/32832/
Critical: Less critical
Where: Local system
Impact: Privilege escalation
Released: 2008-11-24
Steve Kemp has reported a security issue in hf, which can be exploited by malicious, local users to gain escalated privileges.
Full Advisory:
http://secunia.com/advisories/32831/
Critical: Not critical
Where: Local system
Impact: Privilege escalation
Released: 2008-11-25
Fedora has issued an update for geda-gnetlist. This fixes a security issue, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Full Advisory:
http://secunia.com/advisories/32875/
Critical: Not critical
Where: Local system
Impact: Privilege escalation
Released: 2008-11-25
A security issue has been reported in VirtualBox, which can be exploited by malicious, local users to perform certain actions with escalated privileges.
Full Advisory:
http://secunia.com/advisories/32851/
Critical: Moderately critical
Where: From remote
Impact: DoS
Released: 2008-11-27
A vulnerability has been reported in Siemens C450IP / C475IP, which can be exploited by malicious people to cause a DoS (Denial of Service).
Full Advisory:
http://secunia.com/advisories/32827/
Critical: Less critical
Where: From remote
Impact: Cross Site Scripting
Released: 2008-11-26
A vulnerability has been reported in I-O DATA HDL-F series, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Full Advisory:
http://secunia.com/advisories/32836/
Critical: Highly critical
Where: From remote
Impact: System access
Released: 2008-11-25
r0ut3r has discovered two vulnerabilities in Amaya, which can be exploited by malicious people to compromise a user's system.
Full Advisory:
http://secunia.com/advisories/32848/
Critical: Highly critical
Where: From remote
Impact: System access
Released: 2008-11-26
cOndemned has discovered a vulnerability in the Download Manager module for LoveCMS, which can be exploited by malicious people to compromise a vulnerable system.
Full Advisory:
http://secunia.com/advisories/32825/
Critical: Highly critical
Where: From remote
Impact: System access
Released: 2008-11-24
RoMaNcYxHaCkEr has discovered a vulnerability in MODx CMS, which can be exploited by malicious people to compromise a vulnerable system.
Full Advisory:
http://secunia.com/advisories/32824/
Critical: Moderately critical
Where: From remote
Impact: Manipulation of data
Released: 2008-11-27
b3hz4d has reported some vulnerabilities in Star Articles, which can be exploited by malicious people to conduct SQL injection attacks.
Full Advisory:
http://secunia.com/advisories/32887/
Critical: Moderately critical
Where: From remote
Impact: Manipulation of data
Released: 2008-11-26
Hussin X has reported a vulnerability in WebStudio eHotel, which can be exploited by malicious people to conduct SQL injection attacks.
Full Advisory:
http://secunia.com/advisories/32874/
Critical: Moderately critical
Where: From remote
Impact: Manipulation of data
Released: 2008-11-26
Hussin X has reported a vulnerability in WebStudio eCatalogue, which can be exploited by malicious people to conduct SQL injection attacks.
Full Advisory:
http://secunia.com/advisories/32873/
Critical: Moderately critical
Where: From remote
Impact: Manipulation of data, Exposure of system information,
Exposure of sensitive information
Released: 2008-11-26
Some vulnerabilities have been discovered in FAQ Manager, which can be exploited by malicious people to disclose sensitive information and conduct SQL injection attacks.
Full Advisory:
http://secunia.com/advisories/32868/
Critical: Moderately critical
Where: From remote
Impact: Cross Site Scripting, Manipulation of data
Released: 2008-11-26
ZoRLu has discovered a vulnerability in Clean CMS, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
Full Advisory:
http://secunia.com/advisories/32866/
Critical: Moderately critical
Where: From remote
Impact: Exposure of system information, Exposure of sensitive
information
Released: 2008-11-26
Alfons Luja has discovered a vulnerability in Fuzzylime CMS, which can be exploited by malicious people to disclose sensitive information.
Full Advisory:
http://secunia.com/advisories/32865/
Critical: Moderately critical
Where: From remote
Impact: Manipulation of data
Released: 2008-11-26
Snakespc has reported a vulnerability in Cars Portal, which can be exploited by malicious people to conduct SQL injection attacks.
Full Advisory:
http://secunia.com/advisories/32844/
Critical: Moderately critical
Where: From remote
Impact: Security Bypass, Manipulation of data
Released: 2008-11-24
ZoRLu has reported a vulnerability in multiple PG products, which can be exploited by malicious people to conduct SQL injection attacks.
Full Advisory:
http://secunia.com/advisories/32841/
Critical: Moderately critical
Where: From remote
Impact: DoS
Released: 2008-11-24
A vulnerability has been reported in Wireshark, which can be exploited by malicious people to cause a DoS (Denial of Service).
Full Advisory:
http://secunia.com/advisories/32840/
Critical: Moderately critical
Where: From remote
Impact: Manipulation of data
Released: 2008-11-24
ZoRLu has reported a vulnerability in PG Job Site Pro, which can be exploited by malicious people to conduct SQL injection attacks.
Full Advisory:
http://secunia.com/advisories/32837/
Critical: Moderately critical
Where: From remote
Impact: Manipulation of data
Released: 2008-11-21
A vulnerability has been reported in xt:Commerce, which can be exploited by malicious people to conduct SQL injection attacks.
Full Advisory:
http://secunia.com/advisories/32830/
Critical: Moderately critical
Where: From remote
Impact: Security Bypass, Exposure of system information, Exposure
of sensitive information
Released: 2008-11-25
Red Hat has issued an update for java-1.4.2-ibm. This fixes some vulnerabilities, which can be exploited by malicious people to disclose system and potentially sensitive information and bypass certain security restrictions.
Full Advisory:
http://secunia.com/advisories/32826/
Critical: Moderately critical
Where: From remote
Impact: Manipulation of data
Released: 2008-11-21
d3v1l has reported some vulnerabilities in Easyedit CMS, which can be exploited by malicious people to conduct SQL injection attacks.
Full Advisory:
http://secunia.com/advisories/32822/
Critical: Less critical
Where: From remote
Impact: Cross Site Scripting
Released: 2008-11-27
A vulnerability has been reported in the Comment Mail module for Drupal, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Full Advisory:
http://secunia.com/advisories/32905/
Critical: Less critical
Where: From remote
Impact: Cross Site Scripting, Manipulation of data
Released: 2008-11-27
Some vulnerabilities have been reported in the User Karma module for Drupal, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site scripting attacks.
Full Advisory:
http://secunia.com/advisories/32904/
Critical: Less critical
Where: From remote
Impact: Manipulation of data
Released: 2008-11-27
XaDoS has reported a vulnerability in Post Affiliate Pro, which can be exploited by malicious users to conduct SQL injection attacks.
Full Advisory:
http://secunia.com/advisories/32898/
Critical: Less critical
Where: From remote
Impact: Cross Site Scripting
Released: 2008-11-26
Jeremias Reith has reported a vulnerability in WordPress, which can be exploited by malicious people to conduct script insertion attacks.
Full Advisory:
http://secunia.com/advisories/32882/
Critical: Less critical
Where: From remote
Impact: Hijacking, Cross Site Scripting, Exposure of sensitive
information
Released: 2008-11-26
NBBN has discovered some vulnerabilities in MyBB, which can be exploited can be exploited by malicious people to disclose sensitive information.
Full Advisory:
http://secunia.com/advisories/32880/
Critical: Less critical
Where: From remote
Impact: Cross Site Scripting
Released: 2008-11-25
Pouya_Server has reported a vulnerability in COMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
Full Advisory:
http://secunia.com/advisories/32867/
Critical: Less critical
Where: From remote
Impact: Cross Site Scripting
Released: 2008-11-21
Vahid Ezraeil has reported a vulnerability in Softbiz Classifieds Script, which can be exploited by malicious people to conduct cross-site scripting attacks.
Full Advisory:
http://secunia.com/advisories/32828/
Critical: Less critical
Where: From local network
Impact: Exposure of sensitive information
Released: 2008-11-24
A vulnerability has been reported in various Attachmate products, which potentially can be exploited by malicious people to disclose sensitive information.
Full Advisory:
http://secunia.com/advisories/32833/
©
2004 California State Polytechnic University, Pomona
policies |
site map |
directories |
eHelp |
web mail |
contact info
back Relevant Products