Release Date : 2011-03-16
Criticality level : Moderately critical
Impact : System access
Where : From remote
Solution Status : Vendor Patch
Operating System: openSUSE 11.2
openSUSE 11.3
Description:
SUSE has issued an update for build. This fixes a security issue, which can be exploited by malicious people to compromise a vulnerable system.
The security issue is caused due to the "init_buildsystem" script using cpio to extract RPM packages, which can be exploited to e.g. overwrite arbitrary files via specially crafted RPM packages containing symlinks.
Solution:
Apply updated packages via the zypper package manager.
Provided and/or discovered by:
Reported by the vendor.
Original Advisory:
openSUSE-SU-2011:0174-1:
https://hermes.opensuse.org/messages/7628937
http://secunia.com/advisories/43763/
Reply 1 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Highly critical
Impact : DoS
System access
Where : From remote
Solution Status : Vendor Patch
Software: Kerberos 5.x
Description:
A vulnerability has been reported in Kerberos, which can be exploited by malicious people to potentially compromise a vulnerable system.
The vulnerability is caused due to an error in KDC within the "prepare_error_as()" function in src/kdc/do_as_req.c when handling AS-REQ request and can be exploited to trigger a double-free condition by sending specially crafted AS-REQ requests.
Successful exploitation may allow execution of arbitrary code, but requires that the Public Key Cryptography for Initial Authentication (PKINIT) capability is enabled.
The vulnerability is reported in KDC in releases krb5-1.7 and later.
Solution:
Apply patch.
Provided and/or discovered by:
Cameron Meadors, Red Hat
Original Advisory:
http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2011-003.txt
http://secunia.com/advisories/43783/
Criticality level : Highly critical
Impact : DoS
System access
Where : From remote
Solution Status : Vendor Patch
Software: Kerberos 5.x
Description:
A vulnerability has been reported in Kerberos, which can be exploited by malicious people to potentially compromise a vulnerable system.
The vulnerability is caused due to an error in KDC within the "prepare_error_as()" function in src/kdc/do_as_req.c when handling AS-REQ request and can be exploited to trigger a double-free condition by sending specially crafted AS-REQ requests.
Successful exploitation may allow execution of arbitrary code, but requires that the Public Key Cryptography for Initial Authentication (PKINIT) capability is enabled.
The vulnerability is reported in KDC in releases krb5-1.7 and later.
Solution:
Apply patch.
Provided and/or discovered by:
Cameron Meadors, Red Hat
Original Advisory:
http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2011-003.txt
http://secunia.com/advisories/43783/
Reply 2 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Highly critical
Impact : Exposure of system information
Exposure of sensitive information
System access
Where : From remote
Solution Status : Vendor Workaround
Operating System: Nostromo 1.x
Description:
RedTeam Pentesting has discovered a vulnerability in Nostromo, which can be exploited by malicious people to disclose system information and compromise a vulnerable system.
Input passed via the URL is not properly verified before being used to display files. This can be exploited to disclose the contents of arbitrary files via directory traversal attacks.
NOTE: Additionally, a weakness exists due to accessed executable files being treated as CGI scripts, which allows execution of arbitrary shell commands when combined with the directory traversal attack.
The vulnerability is confirmed in version 1.9.3. Other versions may also be affected.
Solution:
Fixed in the SVN repository.
Provided and/or discovered by:
RedTeam Pentesting
Original Advisory:
http://www.redteam-pentesting.de/advisories/rt-sa-2011-001.txt
http://secunia.com/advisories/43775/
Criticality level : Highly critical
Impact : Exposure of system information
Exposure of sensitive information
System access
Where : From remote
Solution Status : Vendor Workaround
Operating System: Nostromo 1.x
Description:
RedTeam Pentesting has discovered a vulnerability in Nostromo, which can be exploited by malicious people to disclose system information and compromise a vulnerable system.
Input passed via the URL is not properly verified before being used to display files. This can be exploited to disclose the contents of arbitrary files via directory traversal attacks.
NOTE: Additionally, a weakness exists due to accessed executable files being treated as CGI scripts, which allows execution of arbitrary shell commands when combined with the directory traversal attack.
The vulnerability is confirmed in version 1.9.3. Other versions may also be affected.
Solution:
Fixed in the SVN repository.
Provided and/or discovered by:
RedTeam Pentesting
Original Advisory:
http://www.redteam-pentesting.de/advisories/rt-sa-2011-001.txt
http://secunia.com/advisories/43775/
Reply 3 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Moderately critical
Impact : Security Bypass
Cross Site Scripting
Exposure of system information
Exposure of sensitive information
System access
Where : From local network
Solution Status : Vendor Workaround
Software: VMware vCenter Server 4.x
Description:
Multiple vulnerabilities have been reported in VMware vCenter Server, which can be exploited by malicious people to conduct cross-site scripting attacks, disclose potentially sensitive information, bypass certain security restrictions, and compromise a vulnerable system.
VMWare vCenter Server bundles a vulnerable version of Apache Struts.
Solution:
Apply the workaround (please see the vendor's advisory for details).
Provided and/or discovered by:
The vendor credits Vulnerability Research Team, Digital Defense
Original Advisory:
VMSA-2011-0005:
http://www.vmware.com/security/advisories/VMSA-2011-0005.html
http://kb.vmware.com/kb/1034175
http://secunia.com/advisories/43717/
Criticality level : Moderately critical
Impact : Security Bypass
Cross Site Scripting
Exposure of system information
Exposure of sensitive information
System access
Where : From local network
Solution Status : Vendor Workaround
Software: VMware vCenter Server 4.x
Description:
Multiple vulnerabilities have been reported in VMware vCenter Server, which can be exploited by malicious people to conduct cross-site scripting attacks, disclose potentially sensitive information, bypass certain security restrictions, and compromise a vulnerable system.
VMWare vCenter Server bundles a vulnerable version of Apache Struts.
Solution:
Apply the workaround (please see the vendor's advisory for details).
Provided and/or discovered by:
The vendor credits Vulnerability Research Team, Digital Defense
Original Advisory:
VMSA-2011-0005:
http://www.vmware.com/security/advisories/VMSA-2011-0005.html
http://kb.vmware.com/kb/1034175
http://secunia.com/advisories/43717/
Reply 4 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Moderately critical
Impact : DoS
Where : From remote
Solution Status : Vendor Patch
Operating System: Fedora 13
Fedora 14
Description:
Fedora has issued an update for whatsup. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Solution:
Apply updated packages via the yum utility ("yum update whatsup").
Original Advisory:
FEDORA-2011-2794:
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055920.html
FEDORA-2011-2801:
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055925.html
http://secunia.com/advisories/43787/
Criticality level : Moderately critical
Impact : DoS
Where : From remote
Solution Status : Vendor Patch
Operating System: Fedora 13
Fedora 14
Description:
Fedora has issued an update for whatsup. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Solution:
Apply updated packages via the yum utility ("yum update whatsup").
Original Advisory:
FEDORA-2011-2794:
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055920.html
FEDORA-2011-2801:
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055925.html
http://secunia.com/advisories/43787/
Reply 5 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status: Vendor Patch
Software: Newscoop 3.x
Description:
A vulnerability has been reported in Newscoop, which can be exploited by malicious users to conduct script insertion attacks.
Input passed while posting comments is not properly sanitised before being displayed to the user. This can be exploited to insert HTML and script code, which will be executed in a user's browser session in context of the affected site when the malicious data is viewed.
The vulnerability is reported in versions prior to 3.5.2.
Solution:
Update to version 3.5.2.
Provided and/or discovered by:
Reported by the vendor.
Original Advisory:
http://www.sourcefabric.org/en/products/newscoop_release/570/Newscoop-352-is-out!.htm
http://dev.sourcefabric.org/browse/CS-2921
http://secunia.com/advisories/43764/
Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status: Vendor Patch
Software: Newscoop 3.x
Description:
A vulnerability has been reported in Newscoop, which can be exploited by malicious users to conduct script insertion attacks.
Input passed while posting comments is not properly sanitised before being displayed to the user. This can be exploited to insert HTML and script code, which will be executed in a user's browser session in context of the affected site when the malicious data is viewed.
The vulnerability is reported in versions prior to 3.5.2.
Solution:
Update to version 3.5.2.
Provided and/or discovered by:
Reported by the vendor.
Original Advisory:
http://www.sourcefabric.org/en/products/newscoop_release/570/Newscoop-352-is-out!.htm
http://dev.sourcefabric.org/browse/CS-2921
http://secunia.com/advisories/43764/
Reply 6 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Moderately critical
Impact : DoS
Where : From remote
Solution Status : Vendor Patch
Operating System: Fedora 13
Fedora 14
Description:
Fedora has issued an update for cgit. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Solution:
Apply updated packages via the yum utility ("yum update cgit").
Original Advisory:
FEDORA-2011-2815:
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055898.html
FEDORA-2011-2803:
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055896.html
http://secunia.com/advisories/43788/
Criticality level : Moderately critical
Impact : DoS
Where : From remote
Solution Status : Vendor Patch
Operating System: Fedora 13
Fedora 14
Description:
Fedora has issued an update for cgit. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).
Solution:
Apply updated packages via the yum utility ("yum update cgit").
Original Advisory:
FEDORA-2011-2815:
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055898.html
FEDORA-2011-2803:
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055896.html
http://secunia.com/advisories/43788/
Reply 7 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Highly critical
Impact : System access
Where : From remote
Solution Status : Vendor Patch
Operating System: Debian GNU/Linux 6.0
Description:
Debian has issued an update for chromium-browser. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a user's system.
Solution:
Apply updated packages via the apt-get package manager.
Original Advisory:
DSA-2192-1:
http://www.debian.org/security/2011/dsa-2192
http://secunia.com/advisories/43782/
Criticality level : Highly critical
Impact : System access
Where : From remote
Solution Status : Vendor Patch
Operating System: Debian GNU/Linux 6.0
Description:
Debian has issued an update for chromium-browser. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a user's system.
Solution:
Apply updated packages via the apt-get package manager.
Original Advisory:
DSA-2192-1:
http://www.debian.org/security/2011/dsa-2192
http://secunia.com/advisories/43782/
Reply 8 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Highly critical
Impact : System access
DoS
Where : From remote
Solution Status : Vendor Patch
Operating System: Red Hat Enterprise Linux Desktop 6
Red Hat Enterprise Linux HPC Node 6
Red Hat Enterprise Linux Server 6
Red Hat Enterprise Linux Workstation 6
Description:
Red Hat has issued an update for krb5. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a vulnerable system.
Solution:
Updated packages are available via Red Hat Network.
Original Advisory:
RHSA-2011:0356-1:
https://rhn.redhat.com/errata/RHSA-2011-0356.html
http://secunia.com/advisories/43760/
Criticality level : Highly critical
Impact : System access
DoS
Where : From remote
Solution Status : Vendor Patch
Operating System: Red Hat Enterprise Linux Desktop 6
Red Hat Enterprise Linux HPC Node 6
Red Hat Enterprise Linux Server 6
Red Hat Enterprise Linux Workstation 6
Description:
Red Hat has issued an update for krb5. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a vulnerable system.
Solution:
Updated packages are available via Red Hat Network.
Original Advisory:
RHSA-2011:0356-1:
https://rhn.redhat.com/errata/RHSA-2011-0356.html
http://secunia.com/advisories/43760/
Reply 9 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Moderately critical
Impact : Cross Site Scripting
Where : From remote
Solution Status: Unpatched
Software: b2evolution 4.x
Description:
AutoSec Tools has discovered a vulnerability in b2evolution, which can be exploited by malicious people to conduct script insertion attacks.
Input passed via the "p" parameter to blogs/htsrv/comment_post.php when commenting on a blog is not properly sanitised before being used. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site when the malicious data is being viewed.
The vulnerability is confirmed in version 4.0.4. Other versions may also be affected.
Solution:
Edit the source code to ensure that input is properly sanitised.
Provided and/or discovered by:
AutoSec Tools
Original Advisory:
http://www.autosectools.com/Advisories/b2evolution.4.0.3_Persistent.Cross-site.Scripting_152.html
http://secunia.com/advisories/43725/
Criticality level : Moderately critical
Impact : Cross Site Scripting
Where : From remote
Solution Status: Unpatched
Software: b2evolution 4.x
Description:
AutoSec Tools has discovered a vulnerability in b2evolution, which can be exploited by malicious people to conduct script insertion attacks.
Input passed via the "p" parameter to blogs/htsrv/comment_post.php when commenting on a blog is not properly sanitised before being used. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site when the malicious data is being viewed.
The vulnerability is confirmed in version 4.0.4. Other versions may also be affected.
Solution:
Edit the source code to ensure that input is properly sanitised.
Provided and/or discovered by:
AutoSec Tools
Original Advisory:
http://www.autosectools.com/Advisories/b2evolution.4.0.3_Persistent.Cross-site.Scripting_152.html
http://secunia.com/advisories/43725/
Reply 10 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Moderately critical
Impact : Exposure of system information
Exposure of sensitive information
Privilege escalation
DoS
Where : From remote
Solution Status : Vendor Patch
Operating System: OpenVZ
Description:
OpenVZ has issued an update for the kernel. This fixes multiple weaknesses and vulnerabilities, which can be exploited by malicious, local users to disclose system and potentially sensitive information, cause a DoS (Denial of Service), and gain escalated privileges, and by malicious people to cause a DoS.
Solution:
Update to Kernel branch RHEL5 version 028stab085.2.
Original Advisory:
http://wiki.openvz.org/Download/kernel/rhel5/028stab085.2
http://secunia.com/advisories/43762/
Criticality level : Moderately critical
Impact : Exposure of system information
Exposure of sensitive information
Privilege escalation
DoS
Where : From remote
Solution Status : Vendor Patch
Operating System: OpenVZ
Description:
OpenVZ has issued an update for the kernel. This fixes multiple weaknesses and vulnerabilities, which can be exploited by malicious, local users to disclose system and potentially sensitive information, cause a DoS (Denial of Service), and gain escalated privileges, and by malicious people to cause a DoS.
Solution:
Update to Kernel branch RHEL5 version 028stab085.2.
Original Advisory:
http://wiki.openvz.org/Download/kernel/rhel5/028stab085.2
http://secunia.com/advisories/43762/
Reply 11 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Not critical
Impact : DoS
Where : Local system
Solution Status: Unpatched
Software: Open Virtual Machine Tools (open-vm-tools) 8.x
Description:
A security issue has been reported in Open Virtual Machine Tools, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
The security is caused due to the "mount.vmhgfs" utility not properly handling the SIGXFSZ signal when e.g. adding new file system descriptions to "/etc/mtab", which can be exploited to e.g. corrupt the /etc/mtab file by setting a low RLIMIT_FSIZE limit.
Solution:
Restrict access to trusted users only.
Provided and/or discovered by:
Dan Rosenberg
Original Advisory:
http://www.openwall.com/lists/oss-security/2011/03/04/9
http://www.openwall.com/lists/oss-security/2011/03/15/6
http://secunia.com/advisories/43798/
Criticality level : Not critical
Impact : DoS
Where : Local system
Solution Status: Unpatched
Software: Open Virtual Machine Tools (open-vm-tools) 8.x
Description:
A security issue has been reported in Open Virtual Machine Tools, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
The security is caused due to the "mount.vmhgfs" utility not properly handling the SIGXFSZ signal when e.g. adding new file system descriptions to "/etc/mtab", which can be exploited to e.g. corrupt the /etc/mtab file by setting a low RLIMIT_FSIZE limit.
Solution:
Restrict access to trusted users only.
Provided and/or discovered by:
Dan Rosenberg
Original Advisory:
http://www.openwall.com/lists/oss-security/2011/03/04/9
http://www.openwall.com/lists/oss-security/2011/03/15/6
http://secunia.com/advisories/43798/
Reply 12 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Not critical
Impact : DoS
Where : Local system
Solution Status: Unpatched
Software: util-linux 2.x
Description:
A security issue has been reported in util-linux, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
The security is caused due to the "mount" utility not properly handling the SIGXFSZ signal when e.g. adding new file system descriptions to "/etc/mtab", which can be exploited to e.g. corrupt the "/etc/mtab" file or leave a stale "/etc/mtab~" file by setting a low RLIMIT_FSIZE limit.
Solution:
Restrict access to trusted users only.
Provided and/or discovered by:
Dan Rosenberg
Original Advisory:
http://www.openwall.com/lists/oss-security/2011/03/04/9
http://www.openwall.com/lists/oss-security/2011/03/15/6
http://secunia.com/advisories/43596/
Criticality level : Not critical
Impact : DoS
Where : Local system
Solution Status: Unpatched
Software: util-linux 2.x
Description:
A security issue has been reported in util-linux, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
The security is caused due to the "mount" utility not properly handling the SIGXFSZ signal when e.g. adding new file system descriptions to "/etc/mtab", which can be exploited to e.g. corrupt the "/etc/mtab" file or leave a stale "/etc/mtab~" file by setting a low RLIMIT_FSIZE limit.
Solution:
Restrict access to trusted users only.
Provided and/or discovered by:
Dan Rosenberg
Original Advisory:
http://www.openwall.com/lists/oss-security/2011/03/04/9
http://www.openwall.com/lists/oss-security/2011/03/15/6
http://secunia.com/advisories/43596/
Reply 13 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Moderately critical
Impact : Security Bypass
Where : From remote
Solution Status : Vendor Patch
Software: RSA Access Manager Server 5.x
RSA Access Manager Server 6.x
Description:
A vulnerability has been reported in RSA Access Manager Server, which can be exploited by malicious people to bypass certain security restrictions.
The vulnerability is caused due to an unspecified error in input handling and can be exploited to gain unauthorized access to protected resources.
The vulnerability is reported in versions 5.5.x, 6.0.x, and 6.1.x.
Solution:
Apply hot fixes.
Provided and/or discovered by:
Reported by the vendor.
Original Advisory:
ESA-2011-009:
http://archives.neohapsis.com/archives/bugtraq/2011-03/att-0148/ESA-2011-009.txt
http://secunia.com/advisories/43796/
Criticality level : Moderately critical
Impact : Security Bypass
Where : From remote
Solution Status : Vendor Patch
Software: RSA Access Manager Server 5.x
RSA Access Manager Server 6.x
Description:
A vulnerability has been reported in RSA Access Manager Server, which can be exploited by malicious people to bypass certain security restrictions.
The vulnerability is caused due to an unspecified error in input handling and can be exploited to gain unauthorized access to protected resources.
The vulnerability is reported in versions 5.5.x, 6.0.x, and 6.1.x.
Solution:
Apply hot fixes.
Provided and/or discovered by:
Reported by the vendor.
Original Advisory:
ESA-2011-009:
http://archives.neohapsis.com/archives/bugtraq/2011-03/att-0148/ESA-2011-009.txt
http://secunia.com/advisories/43796/
Reply 14 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Highly critical
Impact : DoS
System access
Where : From remote
Solution Status : Vendor Patch
Operating System: Ubuntu Linux 10.04
Ubuntu Linux 10.10
Ubuntu Linux 9.10
Description:
Ubuntu has issued an update for krb5. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a vulnerable system.
Solution:
Apply updated packages.
Original Advisory:
USN-1088-1:
http://www.ubuntu.com/usn/usn-1088-1
http://secunia.com/advisories/43700/
Criticality level : Highly critical
Impact : DoS
System access
Where : From remote
Solution Status : Vendor Patch
Operating System: Ubuntu Linux 10.04
Ubuntu Linux 10.10
Ubuntu Linux 9.10
Description:
Ubuntu has issued an update for krb5. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise a vulnerable system.
Solution:
Apply updated packages.
Original Advisory:
USN-1088-1:
http://www.ubuntu.com/usn/usn-1088-1
http://secunia.com/advisories/43700/
Reply 15 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status: Unpatched
Software: TIBCO tibbr 1.x
Description:
A vulnerability has been reported in TIBCO tibbr, which can be exploited by malicious people to conduct cross-site scripting attacks.
Certain unspecified input passed to the tibbr web server is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
The vulnerability is reported in versions 1.0.0 through 1.5.0.
Solution:
Upgrade to version 2.0.0.
Provided and/or discovered by:
Reported by the vendor.
Original Advisory:
http://www.tibco.com/services/support/advisories/tibbr-tibbr-service-advisory_20110315.jsp
http://www.tibco.com/multimedia/tibbr_advisory_20110315_tcm8-13474.txt
http://secunia.com/advisories/43765/
Criticality level : Less critical
Impact : Cross Site Scripting
Where : From remote
Solution Status: Unpatched
Software: TIBCO tibbr 1.x
Description:
A vulnerability has been reported in TIBCO tibbr, which can be exploited by malicious people to conduct cross-site scripting attacks.
Certain unspecified input passed to the tibbr web server is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
The vulnerability is reported in versions 1.0.0 through 1.5.0.
Solution:
Upgrade to version 2.0.0.
Provided and/or discovered by:
Reported by the vendor.
Original Advisory:
http://www.tibco.com/services/support/advisories/tibbr-tibbr-service-advisory_20110315.jsp
http://www.tibco.com/multimedia/tibbr_advisory_20110315_tcm8-13474.txt
http://secunia.com/advisories/43765/
Reply 16 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Highly critical
Impact : Manipulation of data
Exposure of sensitive information
System access
DoS
Where : From remote
Solution Status : Vendor Patch
Software: Red Hat Enterprise Linux Desktop Supplementary (v. 6)
Red Hat Enterprise Linux Extras v. 4
Red Hat Enterprise Linux HPC Node Supplementary (v. 6)
Red Hat Enterprise Linux Server Supplementary (v. 6)
Red Hat Enterprise Linux Workstation Supplementary (v. 6)
RHEL Desktop Supplementary (v. 5 client)
RHEL Supplementary (v. 5 server)
Description:
Red Hat has issued an update for java-1.6.0-ibm. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information and by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
Solution:
Updated packages are available via Red Hat Network.
Original Advisory:
RHSA-2011:0357-1:
https://rhn.redhat.com/errata/RHSA-2011-0357.html
http://secunia.com/advisories/43657/
Criticality level : Highly critical
Impact : Manipulation of data
Exposure of sensitive information
System access
DoS
Where : From remote
Solution Status : Vendor Patch
Software: Red Hat Enterprise Linux Desktop Supplementary (v. 6)
Red Hat Enterprise Linux Extras v. 4
Red Hat Enterprise Linux HPC Node Supplementary (v. 6)
Red Hat Enterprise Linux Server Supplementary (v. 6)
Red Hat Enterprise Linux Workstation Supplementary (v. 6)
RHEL Desktop Supplementary (v. 5 client)
RHEL Supplementary (v. 5 server)
Description:
Red Hat has issued an update for java-1.6.0-ibm. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information and by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
Solution:
Updated packages are available via Red Hat Network.
Original Advisory:
RHSA-2011:0357-1:
https://rhn.redhat.com/errata/RHSA-2011-0357.html
http://secunia.com/advisories/43657/
Reply 17 : VULNERABILITIES / FIXES - March 16, 2011
SugarCRM Duplicate Accounts and Contacts Information Disclosure Weakness
Release Date : 2011-03-16
Criticality level : Not critical
Impact : Exposure of sensitive information
Where : From remote
Solution Status: Unpatched
Software: SugarCRM 6.x
Description:
RedTeam Pentesting has discovered a weakness in SugarCRM, which can by exploited by malicious users to disclose potentially sensitive information.
The weakness is caused due to the modules/Accounts/ShowDuplicates.php and modules/Contacts/ShowDuplicates.php scripts not checking the "List" permission of a user when viewing or creating accounts and contacts. This can be exploited to disclose some information about accounts and contacts owned by other users.
The weakness is confirmed in version 6.1.3. Other versions may also be affected.
Solution:
Restrict access to trusted users only.
Provided and/or discovered by:
RedTeam Pentesting GmbH
Original Advisory:
RT-SA-2011-002:
http://www.redteam-pentesting.de/en/advisories/rt-sa-2011-002/-sugarcrm-list-privilege-restriction-bypass
http://secunia.com/advisories/43774/
Release Date : 2011-03-16
Criticality level : Not critical
Impact : Exposure of sensitive information
Where : From remote
Solution Status: Unpatched
Software: SugarCRM 6.x
Description:
RedTeam Pentesting has discovered a weakness in SugarCRM, which can by exploited by malicious users to disclose potentially sensitive information.
The weakness is caused due to the modules/Accounts/ShowDuplicates.php and modules/Contacts/ShowDuplicates.php scripts not checking the "List" permission of a user when viewing or creating accounts and contacts. This can be exploited to disclose some information about accounts and contacts owned by other users.
The weakness is confirmed in version 6.1.3. Other versions may also be affected.
Solution:
Restrict access to trusted users only.
Provided and/or discovered by:
RedTeam Pentesting GmbH
Original Advisory:
RT-SA-2011-002:
http://www.redteam-pentesting.de/en/advisories/rt-sa-2011-002/-sugarcrm-list-privilege-restriction-bypass
http://secunia.com/advisories/43774/
Reply 18 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Not critical
Impact : Exposure of sensitive information
Where : From loal network
Solution Status: Vendor Patch
Software: EMC Avamar 5.x
Description:
A weakness has been reported in EMC Avamar, which can be exploited by malicious people to disclose potentially sensitive information.
The weakness is caused due to certain information (e.g. internal customer emails) being transmitted in clear text for certain events and can be disclosed by e.g sniffing network traffic.
The weakness is reported in versions 5.0.0-407 and later but prior to 5.0.4.
Solution:
Apply hotfix 24753 or update to version 5.0.4 (5.0 SP4).
Provided and/or discovered by:
Reported by the vendor.
Original Advisory:
ESA-2011-007:
http://archives.neohapsis.com/archives/bugtraq/2011-03/att-0147/ESA-2011-007.txt
http://secunia.com/advisories/43797/
Criticality level : Not critical
Impact : Exposure of sensitive information
Where : From loal network
Solution Status: Vendor Patch
Software: EMC Avamar 5.x
Description:
A weakness has been reported in EMC Avamar, which can be exploited by malicious people to disclose potentially sensitive information.
The weakness is caused due to certain information (e.g. internal customer emails) being transmitted in clear text for certain events and can be disclosed by e.g sniffing network traffic.
The weakness is reported in versions 5.0.0-407 and later but prior to 5.0.4.
Solution:
Apply hotfix 24753 or update to version 5.0.4 (5.0 SP4).
Provided and/or discovered by:
Reported by the vendor.
Original Advisory:
ESA-2011-007:
http://archives.neohapsis.com/archives/bugtraq/2011-03/att-0147/ESA-2011-007.txt
http://secunia.com/advisories/43797/
Reply 19 : VULNERABILITIES / FIXES - March 16, 2011
Release Date : 2011-03-16
Criticality level : Less critical
Impact : System access
Where : From loal network
Solution Status: Vendor Patch
Software: EMC Avamar 4.x
EMC Avamar 5.x
Description:
A vulnerability has been reported in EMC Avamar, which can be exploited by malicious users to compromise a vulnerable system.
The vulnerability is caused due to an unspecified error and can be exploited to gain administrative privileges. No further information is currently available.
The vulnerability is reported in versions 5.0.4-26 and prior.
Solution:
Apply hot fix 24753 or update to version 5.0.4-30 or later.
Provided and/or discovered by:
Reported by the vendor.
Original Advisory:
ESA-2011-006:
http://archives.neohapsis.com/archives/bugtraq/2011-03/att-0149/ESA-2011-006.txt
http://secunia.com/advisories/43749/
Criticality level : Less critical
Impact : System access
Where : From loal network
Solution Status: Vendor Patch
Software: EMC Avamar 4.x
EMC Avamar 5.x
Description:
A vulnerability has been reported in EMC Avamar, which can be exploited by malicious users to compromise a vulnerable system.
The vulnerability is caused due to an unspecified error and can be exploited to gain administrative privileges. No further information is currently available.
The vulnerability is reported in versions 5.0.4-26 and prior.
Solution:
Apply hot fix 24753 or update to version 5.0.4-30 or later.
Provided and/or discovered by:
Reported by the vendor.
Original Advisory:
ESA-2011-006:
http://archives.neohapsis.com/archives/bugtraq/2011-03/att-0149/ESA-2011-006.txt
http://secunia.com/advisories/43749/
No comments:
Post a Comment