From sec-adv at secunia.com  Wed Feb  1 10:30:20 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 1 Feb 2012 19:30:20 +0100
Subject: [SEC] [SA47800] Red Hat update for thunderbird
Message-ID: <201202011830.q11IUKVM020258@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
Red Hat update for thunderbird

SECUNIA ADVISORY ID:
SA47800

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47800/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47800

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47800/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47800/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47800

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for thunderbird. This fixes a weakness
and multiple vulnerabilities, which can be exploited by malicious
people to disclose certain sensitive information and compromise a
user's system.

For more information:
SA47839

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0085-01:
https://rhn.redhat.com/errata/RHSA-2012-0085.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 11:29:16 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 1 Feb 2012 20:29:16 +0100
Subject: [SEC] [SA47789] Red Hat update for firefox
Message-ID: <201202011929.q11JTGAH010619@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
Red Hat update for firefox

SECUNIA ADVISORY ID:
SA47789

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47789/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47789

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47789/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47789/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47789

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for firefox. This fixes a weakness and
multiple vulnerabilities, which can be exploited by malicious people
to disclose certain sensitive information and compromise a user's
system.

For more information:
SA47839

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0079-01:
https://rhn.redhat.com/errata/RHSA-2012-0079.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 12:29:39 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 1 Feb 2012 21:29:39 +0100
Subject: [SEC] [SA47751] Pale Moon Multiple Vulnerabilities
Message-ID: <201202012029.q11KTdV1000943@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
Pale Moon Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47751

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47751/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47751

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47751/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47751/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47751

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in Pale Moon, which can
be exploited by malicious people to bypass certain security
restrictions, disclose certain sensitive information, and compromise
a user's system.

For more information:
SA46899

The vulnerabilities are reported in versions prior to 9.1.

SOLUTION:
Update to version 9.1.

ORIGINAL ADVISORY:
http://www.palemoon.org/releasenotes-ng.shtml

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 13:29:19 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 1 Feb 2012 22:29:19 +0100
Subject: [SEC] [SA47802] phpShowtime Directory and Image File Disclosure
	Weakness
Message-ID: <201202012129.q11LTJia023781@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
phpShowtime Directory and Image File Disclosure Weakness

SECUNIA ADVISORY ID:
SA47802

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47802/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47802

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47802/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47802/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47802

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A weakness has been discovered in phpShowtime, which can be exploited
by malicious people to disclose potentially sensitive information.

Input passed to the "r" parameter in index.php is not properly
verified before being used to display directories and image files.
This can be exploited to disclose the structure of arbitrary
directories and image files via directory traversal sequences.

The weakness is confirmed in version 2.0. Other versions may also be
affected.

SOLUTION:
Edit the source code to ensure that input is properly verified.

PROVIDED AND/OR DISCOVERED BY:
Red Security TEAM

ORIGINAL ADVISORY:
http://packetstormsecurity.org/files/109292/phpshowtime-traversal.txt

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 14:34:36 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 1 Feb 2012 23:34:36 +0100
Subject: [SEC] [SA47781] OpenEMR File Inclusion and Command Injection
	Vulnerabilities
Message-ID: <201202012234.q11MYaR4014247@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
OpenEMR File Inclusion and Command Injection Vulnerabilities

SECUNIA ADVISORY ID:
SA47781

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47781/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47781

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47781/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47781/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47781

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
High-Tech Bridge SA has discovered multiple vulnerabilities in
OpenEMR, which can be exploited by malicious users to disclose
sensitive information and compromise a vulnerable system and by
malicious people to disclose sensitive information.

1) Input passed via the "formname" parameter to
interface/patient_file/encounter/load_form.php,
interface/patient_file/encounter/load_form.php, and
interface/patient_file/encounter/trend_form.php is not properly
verified before being used to include files. This can be exploited to
include arbitrary files from local resources via directory traversal
attacks and URL-encoded NULL bytes.

2) Input passed via the "formname" parameter to
contrib/acog/print_form.php is not properly verified before being
used to include files. This can be exploited to include arbitrary
files from local resources via directory traversal attacks and
URL-encoded NULL bytes.

3) Input passed via the "file" parameter to
interface/fax/fax_dispatch.php is not properly sanitised before being
used in an "exec()" call. This can be exploited to inject and execute
arbitrary shell commands.

Successful exploitation of the vulnerabilities requires that
"magic_quotes_gpc" is disabled.

The vulnerabilities are confirmed in version 4.1.0. Other versions
may also be affected.

SOLUTION:
Install patch. Please see vendor's advisory for details.

PROVIDED AND/OR DISCOVERED BY:
High-Tech Bridge SA.

ORIGINAL ADVISORY:
HTB23069:
https://www.htbridge.ch/advisory/HTB23069

OpenEMR:
http://www.open-emr.org/wiki/index.php/OpenEMR_Patches

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 14:56:37 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 1 Feb 2012 23:56:37 +0100
Subject: [SEC] [SA47791] Red Hat update for thunderbird
Message-ID: <201202012256.q11Mub6q004056@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
Red Hat update for thunderbird

SECUNIA ADVISORY ID:
SA47791

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47791/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47791

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47791/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47791/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47791

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for thunderbird. This fixes a weakness
and multiple vulnerabilities, which can be exploited by malicious
people to disclose certain sensitive information and compromise a
user's system.

For more information:
SA47839

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0080-01:
https://rhn.redhat.com/errata/RHSA-2012-0080.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 15:11:53 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 00:11:53 +0100
Subject: [SEC] [SA47834] Ubuntu update for accountsservice
Message-ID: <201202012311.q11NBrSG026159@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
Ubuntu update for accountsservice

SECUNIA ADVISORY ID:
SA47834

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47834/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47834

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47834/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47834/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47834

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for accountsservice. This fixes a
security issue, which can be exploited by malicious, local users to
perform certain actions with escalated privileges.

The security issue is caused due to the application setting insecure
permissions on certain files when updating the language settings,
which can be exploited to modify arbitrary files.

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Hayawardh Vijayakumar.

ORIGINAL ADVISORY:
USN-1351-1:
http://www.ubuntu.com/usn/usn-1351-1/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 16:33:41 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 01:33:41 +0100
Subject: [SEC] [SA47767] MiTalk Messenger for Android Security Bypass
	Security Issue
Message-ID: <201202020033.q120XfsF016891@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
MiTalk Messenger for Android Security Bypass Security Issue

SECUNIA ADVISORY ID:
SA47767

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47767/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47767

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47767/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47767/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47767

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
AppSec has reported a security issue in MiTalk Messenger for Android,
which can be exploited by malicious people to bypass certain security
restrictions.

The security issue is caused due to an unspecified error and can be
exploited to disclose certain sensitive information like e.g.
contacts, certain SMS data, and certain buddy information and
manipulate certain data.

Successful exploitation requires that a malicious application is
installed.

The security issue is reported in versions 2.1.280 and 2.1.310. Other
versions may also be affected.

SOLUTION:
Reportedly fixed in the version released on 5th December 2011.

PROVIDED AND/OR DISCOVERED BY:
Daoyuan Wu, Xiapu Luo, and Rocky K. C. Chang Department of Computing,
The Hong Kong Polytechnic University

ORIGINAL ADVISORY:
http://www4.comp.polyu.edu.hk/~appsec/bugs/CVE-2011-4697-vulnerability-in-MiTalk.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 16:59:47 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 01:59:47 +0100
Subject: [SEC] [SA47724] ManageEngine Applications Manager Multiple
	Cross-Site Scripting Vulnerabilities
Message-ID: <201202020059.q120xlbv006851@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
ManageEngine Applications Manager Multiple Cross-Site Scripting
Vulnerabilities

SECUNIA ADVISORY ID:
SA47724

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47724/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47724

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47724/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47724/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47724

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been discovered in ManageEngine
Applications Manager, which can be exploited by malicious people to
conduct cross-site scripting attacks.

1) Input passed to the "redirectto" parameter in
jsp/ThresholdActionConfiguration.jsp and "query" parameter in
Search.do is not properly sanitised before being returned to the
user. This can be exploited to execute arbitrary HTML and script code
in a user's browser session in context of an affected site.

2) Input passed to the "attName" parameter in jsp/PopUp_Graph.jsp
(when "resids" is set and "attids" is set) and "selectedNetwork",
"network", and "group" parameters in showresource.do (when "method"
is set to "showResourceTypesAll") is not properly sanitised before
being returned to the user. This can be exploited to execute
arbitrary HTML and script code in a user's browser session in context
of an affected site.

The vulnerabilities are confirmed in version 10.2. Other versions may
also be affected.

SOLUTION:
Filter malicious characters and character sequences using a proxy.

PROVIDED AND/OR DISCOVERED BY:
Benjamin Kunz Mejri (Rem0ve) via Vulnerability Research Laboratory.

ORIGINAL ADVISORY:
http://www.vulnerability-lab.com/get_content.php?id=115

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 17:26:48 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 02:26:48 +0100
Subject: [SEC] [SA47840] Mozilla SeaMonkey Multiple Vulnerabilities
Message-ID: <201202020126.q121Qmsn029128@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
Mozilla SeaMonkey Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47840

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47840/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47840

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47840/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47840/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47840

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A security issue and multiple vulnerabilities have been reported in
Mozilla SeaMonkey, which can be exploited by malicious, local users
to disclose certain sensitive information and by malicious people to
bypass certain security restrictions, disclose certain sensitive
information, and compromise a user's system.

For more information:
SA47816

SOLUTION:
Update to version 2.7.

ORIGINAL ADVISORY:
Mozilla:
http://www.mozilla.org/security/announce/2012/mfsa2012-01.html
http://www.mozilla.org/security/announce/2012/mfsa2012-03.html
http://www.mozilla.org/security/announce/2012/mfsa2012-04.html
http://www.mozilla.org/security/announce/2012/mfsa2012-05.html
http://www.mozilla.org/security/announce/2012/mfsa2012-06.html
http://www.mozilla.org/security/announce/2012/mfsa2012-07.html
http://www.mozilla.org/security/announce/2012/mfsa2012-08.html
http://www.mozilla.org/security/announce/2012/mfsa2012-09.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 17:47:13 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 02:47:13 +0100
Subject: [SEC] [SA47778] Red Hat update for seamonkey
Message-ID: <201202020147.q121lDFu018911@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
Red Hat update for seamonkey

SECUNIA ADVISORY ID:
SA47778

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47778/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47778

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47778/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47778/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47778

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for seamonkey. This fixes a weakness and
a vulnerability, which can be exploited by malicious people to
disclose certain sensitive information and compromise a user's
system.

For more information:
SA47816
SA47839

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0084-01:
https://rhn.redhat.com/errata/RHSA-2012-0084.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 18:12:15 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 03:12:15 +0100
Subject: [SEC] [SA47833] Ubuntu update for software-properties
Message-ID: <201202020212.q122CFjq008770@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
Ubuntu update for software-properties

SECUNIA ADVISORY ID:
SA47833

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47833/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47833

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47833/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47833/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47833

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for software-properties. This fixes a
security issue, which can be exploited by malicious people to conduct
spoofing attacks.

The security issue is caused due to the "apt-add-repository" tool not
properly verifying SSL certificates when downloading GPG key
fingerprints of a Personal Package Archive (PPA) from launchpad and
can be exploited to install malicious package repository GPG keys via
Man-in-the-Middle (MitM) attacks.

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
The vendor credits David Black.

ORIGINAL ADVISORY:
USN-1352-1:
http://www.ubuntu.com/usn/usn-1352-1

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 18:45:04 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 03:45:04 +0100
Subject: [SEC] [SA47839] Mozilla Firefox / Thunderbird Multiple
	Vulnerabilities
Message-ID: <201202020245.q122j4YN031123@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
Mozilla Firefox / Thunderbird Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47839

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47839/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47839

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47839/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47839/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47839

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A weakness and multiple vulnerabilities have been reported in Mozilla
Firefox and Thunderbird, which can be exploited by malicious people to
disclose certain sensitive information and compromise a user's
system.

For more information:
SA47816

1) The weakness is caused due to an error when handling certain
XMLHttpRequest objects generated via a proxy, which can be exploited
to disclose certain sensitive information.

SOLUTION:
Update to Firefox version 3.6.26 or Thunderbird version 3.1.18.

PROVIDED AND/OR DISCOVERED BY:
1) Gregory Fleischer

ORIGINAL ADVISORY:
http://www.mozilla.org/security/announce/2012/mfsa2012-01.html
http://www.mozilla.org/security/announce/2012/mfsa2012-02.html
http://www.mozilla.org/security/announce/2012/mfsa2012-04.html
http://www.mozilla.org/security/announce/2012/mfsa2012-07.html
http://www.mozilla.org/security/announce/2012/mfsa2012-08.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 19:18:18 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 04:18:18 +0100
Subject: [SEC] [SA47793] Red Hat update for JBoss products
Message-ID: <201202020318.q123IIX6022754@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
Red Hat update for JBoss products

SECUNIA ADVISORY ID:
SA47793

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47793/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47793

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47793/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47793/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47793

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for JBoss Enterprise Application
Platform, JBoss Enterprise Web Platform, and JBoss Communications
Platform. This fixes multiple vulnerabilities, which can be exploited
by malicious, local users to bypass certain security restrictions or
cause a DoS (Denial of Service) and by malicious people to bypass
certain security restrictions and cause a DoS.

For more information:
SA44981
SA45232
SA47411

1) An error when handling surrogate pair character can be exploited
to trigger an infinite loop via a specially crafted request.

Successful exploitation of this vulnerability requires a hosted
application with enabled UTF-8 character encoding or that includes
user-supplied UTF-8 strings in the response.

SOLUTION:
Updated packages are available via the Red Hat Customer Portal.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
1) The vendor credits NTT OSSC.

ORIGINAL ADVISORY:
RHSA-2012:0074-1:
https://rhn.redhat.com/errata/RHSA-2012-0074.html

RHSA-2012:0075-1:
https://rhn.redhat.com/errata/RHSA-2012-0075.html

RHSA-2012:0076-1:
https://rhn.redhat.com/errata/RHSA-2012-0076.html

RHSA-2012:0077-1:
https://rhn.redhat.com/errata/RHSA-2012-0077.html

RHSA-2012:0078-1:
https://rhn.redhat.com/errata/RHSA-2012-0078.html

Red Hat Bug#767871:
https://bugzilla.redhat.com/show_bug.cgi?id=767871

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 19:44:21 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 04:44:21 +0100
Subject: [SEC] [SA47797] MindManager Insecure Library Loading Vulnerability
Message-ID: <201202020344.q123iLMZ012621@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
MindManager Insecure Library Loading Vulnerability

SECUNIA ADVISORY ID:
SA47797

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47797/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47797

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47797/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47797/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47797

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Zero Science Lab has discovered a vulnerability in MindManager, which
can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to the application loading libraries
(e.g. ssgp.dll) in an insecure manner. This can be exploited to load
arbitrary libraries by tricking a user into e.g. opening a Map (MMAP)
file located on a remote WebDAV or SMB share.

Successful exploitation allows execution of arbitrary code.

The vulnerability is confirmed in version 2012 10.0.493. Other
versions may also be affected.

SOLUTION:
Do not open untrusted files.

PROVIDED AND/OR DISCOVERED BY:
Gjoko Krstic, Zero Science Lab

ORIGINAL ADVISORY:
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2012-5068.php

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 20:09:25 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 05:09:25 +0100
Subject: [SEC] [SA47795] Emobile Pocket WiFi GP02 Cross-Site Request Forgery
	Vulnerability
Message-ID: <201202020409.q1249PlA002420@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
Emobile Pocket WiFi GP02 Cross-Site Request Forgery Vulnerability

SECUNIA ADVISORY ID:
SA47795

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47795/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47795

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47795/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47795/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47795

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Emobile Pocket Wifi GP02, which
can be exploited by malicious people to conduct cross-site request
forgery attacks.

The device's web interface allows users to perform certain actions
via HTTP requests without performing any validity checks to verify
the requests. This can be exploited to e.g. change settings and
reboot the device by tricking a logged in user into visiting a
malicious web site.

The vulnerability is reported in versions 11.203.11.05.168 and prior.

SOLUTION:
Install update. Please see the vendor's link for details.

PROVIDED AND/OR DISCOVERED BY:
JVN credits Naoto Katsumi, LAC Co.

ORIGINAL ADVISORY:
JVN (English):
http://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000010.html
http://jvn.jp/en/jp/JVN33021167/index.html

JVN (Japanese):
http://jvn.jp/jp/JVN33021167/index.html

Emobile:
http://emobile.jp/topics/info20120201_01.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 20:25:08 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 05:25:08 +0100
Subject: [SEC] [SA47790] GForge Community Edition / Advanced Server Multiple
	Cross-Site Scripting Vulnerabilities
Message-ID: <201202020425.q124P7eg024576@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
GForge Community Edition / Advanced Server Multiple Cross-Site
Scripting Vulnerabilities

SECUNIA ADVISORY ID:
SA47790

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47790/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47790

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47790/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47790/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47790

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Sony has discovered multiple vulnerabilities in GForge Community
Edition and Advanced Server, which can be exploited by malicious
people to conduct cross-site scripting attacks.

1) Input passed to the "id" parameter in e.g.
gf/user/gforgeadmin/userfiles/my/admin/ (when "action" is set to
"UserblogDelete" and "id" is prefixed with a valid blog post id) is
not properly sanitised before being returned to the user. This can be
exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

2) Input passed to the "start_date" parameter in e.g.
gf/user/gforgeadmin/userfiles/my/admin/ (when "action" is set to
"UsercalendarEventDelete" and "event_id" is set to a valid calendar
event id) is not properly sanitised before being returned to the
user. This can be exploited to execute arbitrary HTML and script code
in a user's browser session in context of an affected site.

Vulnerabilities #1 and #2 are confirmed in GForge Advanced Server
version 6.0.0. Other versions may also be affected.

3) Input passed to the "file_id" parameter in e.g.
gf/user/gforgeadmin/userfiles/my/admin/ (when "action" is set to
"UserfileDelete" and "file_id" is prefixed with a valid file id) is
not properly sanitised before being returned to the user. This can be
exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

4) Input passed to the "words" parameter in gf/admin/popups/ (when
"action" is set to "findusers" and "search" is set to e.g. "user_0")
is not properly sanitised before being returned to the user. This can
be exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

Vulnerabilities #3 and #4 are confirmed in GForge Community Edition
version 5.7.1 and GForge Advanced Server version 6.0.0. Other
versions may also be affected.

SOLUTION:
Filter malicious characters and character sequences using a proxy.

PROVIDED AND/OR DISCOVERED BY:
Sony

ORIGINAL ADVISORY:
http://st2tea.blogspot.com/2012/01/gforge-cross-site-scripting.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 20:46:25 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 05:46:25 +0100
Subject: [SEC] [SA47816] Mozilla Firefox / Thunderbird Multiple
	Vulnerabilities
Message-ID: <201202020446.q124kPCX014378@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
Mozilla Firefox / Thunderbird Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47816

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47816/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47816

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47816/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47816/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47816

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A security issue and multiple vulnerabilities have been reported in
Mozilla Firefox and Thunderbird, which can be exploited by malicious,
local users to disclose certain sensitive information and by malicious
people to bypass certain security restrictions, disclose certain
sensitive information, and compromise a user's system.

1) Some unspecified errors can be exploited to corrupt memory. No
further information is currently available.

2) An error when handling a sub-frame can be exploited to bypass the
frame navigation policy and e.g. expose an "<iframe>" element via the
name attribute.

3) A use-after-free error within the "AttributeChildRemoved()" method
when removing child nodes from the "nsDOMAttribute" node can be
exploited to execute arbitrary code.

4) An error within the implementation of XPConnect security checks
when calling untrusted objects can be exploited to e.g. conduct
cross-site scripting attacks.

5) An error within the "mImageBufferSize()" method when encoding
images as "image/vnd.microsoft.icon" can be exploited to disclose
certain sensitive data within the resulting image.

6) An unspecified error when decoding Ogg Vorbis files can be
exploited to corrupt memory and execute arbitrary code.

7) An error within the handling of embedded XSLT stylesheets can be
exploited to corrupt memory and execute arbitrary code.

8) The security issue is caused due to the "Firefox Recovery
Key.html" file being saved with insecure file permissions when
exporting the Firefox Sync key and can be exploited to read the
contents of the file.

This security issue only affects Firefox on Linux and OS X systems.

SOLUTION:
Upgrade to Firefox version 10.0 or Thunderbird version 10.0.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits:
1) Ben Hawkes, Christian Holler, Honza Bombas, Jason Orendorff, Jesse
Ruderman, Jan Odvarko, Peter Van Der Beken, Bill McCloskey, and Bob
Clary.
2) Alex Dvorov.
3, 6) regenrecht via ZDI.
4) moz_bug_r_a4.
5) Tim Abraldes.
7) Nicolas Gr?goire and Aki Helin.
8) magicant starmen.

ORIGINAL ADVISORY:
Mozilla:
http://www.mozilla.org/security/announce/2012/mfsa2012-01.html
http://www.mozilla.org/security/announce/2012/mfsa2012-03.html
http://www.mozilla.org/security/announce/2012/mfsa2012-04.html
http://www.mozilla.org/security/announce/2012/mfsa2012-05.html
http://www.mozilla.org/security/announce/2012/mfsa2012-06.html
http://www.mozilla.org/security/announce/2012/mfsa2012-07.html
http://www.mozilla.org/security/announce/2012/mfsa2012-08.html
http://www.mozilla.org/security/announce/2012/mfsa2012-09.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 21:10:21 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 06:10:21 +0100
Subject: [SEC] [SA47819] Oracle Multiple Products Web Form Hash Collision
	Denial of Service Vulnerability
Message-ID: <201202020510.q125ALXC004223@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
Oracle Multiple Products Web Form Hash Collision Denial of Service
Vulnerability

SECUNIA ADVISORY ID:
SA47819

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47819/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47819

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47819/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47819/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47819

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in multiple Oracle products, which
can be exploited by malicious people to cause a DoS (Denial of
Service).

The vulnerability is caused due to an error within a hash generation
function when hashing form posts and updating a hash table. This can
be exploited to cause a hash collision resulting in high CPU
consumption via a specially crafted form sent in a HTTP POST
request.

The vulnerability is reported in the following products:
* Oracle Application Server 10g Release 3 version 10.1.3.5.0.
* Oracle WebLogic Server versions 9.2.4, 10.0.2, 11gR1 (10.3.3,
10.3.4, 10.3.5), and 12cR1 (12.1.1).
* Oracle iPlanet Web Server 7.0.
* Oracle iPlanet Web Server (formerly Oracle Java System Web Server)
6.1.

SOLUTION:
Apply patch.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://www.oracle.com/technetwork/topics/security/alert-cve-2011-5035-1506603.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 21:24:28 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 06:24:28 +0100
Subject: [SEC] [SA47811] 4images "cat_parent_id" Cross-Site Scripting
	Vulnerability
Message-ID: <201202020524.q125OS5n026282@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
4images "cat_parent_id" Cross-Site Scripting Vulnerability

SECUNIA ADVISORY ID:
SA47811

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47811/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47811

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47811/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47811/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47811

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in 4images, which can be
exploited by malicious people to conduct cross-site scripting
attacks.

Input passed to the "cat_parent_id" parameter in admin/categories.php
(when "action" is set to "addcat") is not properly sanitised before
being returned to the user. This can be exploited to execute
arbitrary HTML and script code in a user's browser session in context
of an affected site.

The vulnerability is confirmed in version 1.7.10. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
Avram Marius Gabriel

ORIGINAL ADVISORY:
http://packetstormsecurity.org/files/109290/4images-xss.txt

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  1 21:44:31 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 06:44:31 +0100
Subject: [SEC] [SA47814] Bugzilla Spoofing and Cross-Site Request Forgery
	Vulnerabilities
Message-ID: <201202020544.q125iVeF016061@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia is hiring!

Find your next job here:

http://secunia.com/company/jobs/

----------------------------------------------------------------------

TITLE:
Bugzilla Spoofing and Cross-Site Request Forgery Vulnerabilities

SECUNIA ADVISORY ID:
SA47814

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47814/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47814

RELEASE DATE:
2012-02-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47814/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47814/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47814

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Two vulnerabilities have been reported in Bugzilla, which can be
exploited by malicious users to conduct spoofing attacks and by
malicious people to conduct cross-site request forgery attacks.

1) An error within the handling of email addresses containing certain
UTF-8 encoded characters can be exploited to e.g. impersonate another
user.

2) The application allows users to perform certain actions via HTTP
requests without performing proper validity checks to verify the
requests. This can be exploited to e.g. change certain bug data or
execute certain administrative tasks when a logged-in user visits a
specially crafted web page.

Please see the vendor's advisory for a list of affected versions.

SOLUTION:
Update to version 3.4.14, 3.6.8, or 4.0.4.

PROVIDED AND/OR DISCOVERED BY:
1) James Kettle within a bug report.
2) Mario Gomes within a bug report.

ORIGINAL ADVISORY:
http://www.bugzilla.org/security/3.4.13/
https://bugzilla.mozilla.org/show_bug.cgi?id=714472
https://bugzilla.mozilla.org/show_bug.cgi?id=718319

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  2 10:29:40 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 19:29:40 +0100
Subject: [SEC] [SA47805] Novell iPrint Server "attributes-natural-language"
	Buffer Overflow Vulnerability
Message-ID: <201202021829.q12ITeus013079@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Novell iPrint Server "attributes-natural-language" Buffer Overflow
Vulnerability

SECUNIA ADVISORY ID:
SA47805

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47805/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47805

RELEASE DATE:
2012-02-02

DISCUSS ADVISORY:
http://secunia.com/advisories/47805/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47805/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47805

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Novell Open Enterprise Server,
which can be exploited by malicious people to compromise a vulnerable
system.

The vulnerability is caused due to an error when handling the
"attributes-natural-language" attribute and can be exploited to cause
a buffer overflow.

Successful exploitation may allow execution of arbitrary code.

The vulnerability is reported in version OES2 SP3.

SOLUTION:
Apply patch 7885.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
The vendor credits G. Geshev via ZDI.

ORIGINAL ADVISORY:
http://www.novell.com/support/viewContent.do?externalId=7010084

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  2 11:35:59 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 20:35:59 +0100
Subject: [SEC] [SA47693] Fortinet FortiOS (FortiGate) "fields_sorted_opt"
	Cross-Site Scripting Vulnerabilities
Message-ID: <201202021935.q12JZx4B003571@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Fortinet FortiOS (FortiGate) "fields_sorted_opt" Cross-Site Scripting
Vulnerabilities

SECUNIA ADVISORY ID:
SA47693

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47693/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47693

RELEASE DATE:
2012-02-02

DISCUSS ADVISORY:
http://secunia.com/advisories/47693/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47693/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47693

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Vulnerability Lab has reported two vulnerabilities in Fortinet
FortiOS (FortiGate), which can be exploited by malicious people to
conduct cross-site scripting attacks.

Input passed via the "fields_sorted_opt" parameter to
endpointcompliance/app_detect/predefined_sig_list and user/auth/list
is not properly sanitised before being returned to the user. This can
be exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

The vulnerabilities are reported in version 4.0 build 511. Other
versions may also be affected.

SOLUTION:
Filter malicious characters and character sequences using a proxy.

PROVIDED AND/OR DISCOVERED BY:
Benjamin Kunz Mejri, Vulnerability Lab.

ORIGINAL ADVISORY:
http://www.vulnerability-lab.com/get_content.php?id=144

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  2 12:29:33 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 21:29:33 +0100
Subject: [SEC] [SA47823] TYPO3 Modern FAQ Extension Two Vulnerabilities
Message-ID: <201202022029.q12KTXQe026245@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
TYPO3 Modern FAQ Extension Two Vulnerabilities

SECUNIA ADVISORY ID:
SA47823

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47823/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47823

RELEASE DATE:
2012-02-02

DISCUSS ADVISORY:
http://secunia.com/advisories/47823/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47823/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47823

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A weakness and a vulnerability have been reported in the Modern FAQ
extension for TYPO3, which can be exploited by malicious people to
conduct spoofing and cross-site scripting attacks.

1) Certain unspecified input is not properly verified before being
used to redirect users. This can be exploited to redirect a user to
an arbitrary website e.g. when a user clicks a specially crafted link
to the affected script hosted on a trusted domain.

2) Certain unspecified input is not properly sanitised before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

The weakness and the vulnerability are reported in versions 1.1.2 and
prior. Other versions may also be affected.

SOLUTION:
Update to version 1.1.4.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Marcus Krause, TYPO3 Security Team.

ORIGINAL ADVISORY:
TYPO3-EXT-SA-2012-001:
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-001/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  2 13:30:06 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 22:30:06 +0100
Subject: [SEC] [SA47852] phpLDAPadmin "base" Cross-Site Scripting
	Vulnerability
Message-ID: <201202022130.q12LU6rB016646@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
phpLDAPadmin "base" Cross-Site Scripting Vulnerability

SECUNIA ADVISORY ID:
SA47852

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47852/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47852

RELEASE DATE:
2012-02-02

DISCUSS ADVISORY:
http://secunia.com/advisories/47852/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47852/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47852

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
coolpixgnu has discovered a vulnerability in phpLDAPadmin, which can
be exploited by malicious people to conduct cross-site scripting
attacks.

Input passed via the "base" parameter to cmd.php (when "cmd" is set
to "query_engine") is not properly sanitised in lib/QueryRender.php
before being returned to the user. This can be exploited to execute
arbitrary HTML and script code in a user's browser session in context
of an affected site.

The vulnerability is confirmed in version 1.2.2. Other versions may
also be affected.

SOLUTION:
Fixed in the git repository.

PROVIDED AND/OR DISCOVERED BY:
coolpixgnu.

ORIGINAL ADVISORY:
https://sourceforge.net/tracker/index.php?func=detail&aid=3477910&group_id=61828&atid=498546
http://phpldapadmin.git.sourceforge.net/git/gitweb.cgi?p=phpldapadmin/phpldapadmin;a=commit;h=7dc8d57d6952fe681cb9e8818df7f103220457bd

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  2 14:26:53 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 23:26:53 +0100
Subject: [SEC] [SA47841] pragmaMx "message" Script Insertion Vulnerability
Message-ID: <201202022226.q12MQrIc006987@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
pragmaMx "message" Script Insertion Vulnerability

SECUNIA ADVISORY ID:
SA47841

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47841/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47841

RELEASE DATE:
2012-02-02

DISCUSS ADVISORY:
http://secunia.com/advisories/47841/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47841/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47841

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Haunt IT has discovered a vulnerability in pragmaMx, which can be
exploited by malicious users to conduct script insertion attacks.

Input passed via the "message" parameter to html/modules.php when
sending a private message is not properly sanitised before being
used. This can be exploited to insert arbitrary HTML and script code,
which will be executed in a user's browser session in context of an
affected site when the malicious data is being viewed.

The vulnerability is confirmed in version 1.12.0. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
Haunt IT

ORIGINAL ADVISORY:
Haunt IT:
http://hauntit.blogspot.com/2012/01/persistent-xss-in-pragmamx-1210.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  2 14:44:52 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 2 Feb 2012 23:44:52 +0100
Subject: [SEC] [SA47437] TYPO3 Kitchen recipe Extension SQL Injection
	Vulnerability
Message-ID: <201202022244.q12MiqiN029118@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
TYPO3 Kitchen recipe Extension SQL Injection Vulnerability

SECUNIA ADVISORY ID:
SA47437

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47437/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47437

RELEASE DATE:
2012-02-02

DISCUSS ADVISORY:
http://secunia.com/advisories/47437/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47437/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47437

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in the Kitchen recipe extension for
TYPO3, which can be exploited by malicious people to conduct SQL
injection attacks.

Certain unspecified input is not properly sanitised before being used
in a SQL query. This can be exploited to manipulate SQL queries by
injecting arbitrary SQL code.

The vulnerability is reported in versions prior to 0.4.1.

SOLUTION:
Update to version 0.4.1.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Raphael Noailles.

ORIGINAL ADVISORY:
TYPO3-EXT-SA-2012-001:
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-001/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  2 15:11:50 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 3 Feb 2012 00:11:50 +0100
Subject: [SEC] [SA47837] HTC Products Wi-Fi Credentials Disclosure Weakness
Message-ID: <201202022311.q12NBore019018@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
HTC Products Wi-Fi Credentials Disclosure Weakness

SECUNIA ADVISORY ID:
SA47837

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47837/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47837

RELEASE DATE:
2012-02-02

DISCUSS ADVISORY:
http://secunia.com/advisories/47837/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47837/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47837

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Open1X Group has reported a weakness in multiple HTC products, which
can be exploited by malicious people to disclose potentially
sensitive information.

The weakness is caused due to the "WifiConfiguration::toString()"
method returning Wi-Fi credentials of stored networks in clear text.

Successful exploitation requires that a malicious application is
installed with "android.permission.ACCESS_WIFI_STATE" permissions.

The weakness is reported in the following products:
* HTC Desire HD versions FRG83D and GRI40
* HTC Glacier version FRG83
* HTC Droid Incredible version FRF91
* HTC Thunderbolt 4G version FRG83D
* HTC Sensation Z710e version GRI40
* HTC Sensation 4G version GRI40
* HTC Desire S version GRI40
* HTC EVO 3D version GRI40
* HTC EVO 4G version GRI40

SOLUTION:
Update to the latest version.

PROVIDED AND/OR DISCOVERED BY:
Chris Hessing, Open1X Group.

ORIGINAL ADVISORY:
HTC:
http://www.htc.com/www/help/

Open1X Group:
http://blog.mywarwithentropy.com/2012/02/8021x-password-exploit-on-many-htc.html

US-CERT VU#763355:
http://www.kb.cert.org/vuls/id/763355

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  2 16:27:09 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 3 Feb 2012 01:27:09 +0100
Subject: [SEC] [SA47827] libpng "png_formatted_warning()" Off-by-One
	Vulnerability
Message-ID: <201202030027.q130R9iD009658@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
libpng "png_formatted_warning()" Off-by-One Vulnerability

SECUNIA ADVISORY ID:
SA47827

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47827/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47827

RELEASE DATE:
2012-02-02

DISCUSS ADVISORY:
http://secunia.com/advisories/47827/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47827/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47827

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in libpng, which can be exploited
by malicious people to potentially compromise an application using
the library.

The vulnerability is caused due to an off-by-one error in the
"png_formatted_warning()" function (pngerror.c) and can be exploited
to corrupt stack-based memory.

Successful exploitation may allow execution of arbitrary code.

The vulnerability is reported in versions 1.5.4 through 1.5.7.

SOLUTION:
Update to version 1.5.8.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://www.libpng.org/pub/png/libpng.html
http://sourceforge.net/projects/libpng/files/libpng15/1.5.8/libpng-1.5.8-README.txt/view

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  2 16:48:07 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 3 Feb 2012 01:48:07 +0100
Subject: [SEC] [SA47796] Drupal Security Issue and Security Bypass
	Vulnerability
Message-ID: <201202030048.q130m7eP031935@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Drupal Security Issue and Security Bypass Vulnerability

SECUNIA ADVISORY ID:
SA47796

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47796/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47796

RELEASE DATE:
2012-02-02

DISCUSS ADVISORY:
http://secunia.com/advisories/47796/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47796/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47796

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A security issue and a vulnerability have been reported in Drupal,
which can be exploited by malicious people to manipulate certain data
and bypass certain security restrictions.

1) The security issue is caused due to the OpenID module not properly
verifying the signature of Attribute Exchange (AX) information, which
can be exploited to manipulate AX information.

This security issue is reported in versions prior to 6.23 and
versions prior to 7.11.

2) An error in the File module when using certain field access
modules can be exploited to download private files which would
otherwise be restricted.

This vulnerability is reported in versions prior to 7.11.

SOLUTION:
Update to the latest version.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
1) The vendor credits Rui Wang, Shuo Chen, and Xiao Feng Wang.
2) The vendor credits David Rothstein, Drupal Security Team, and
Sascha Grossenbacher.

ORIGINAL ADVISORY:
SA-CORE-2012-001:
http://drupal.org/node/1425084

OpenID:
http://openid.net/2011/05/05/attribute-exchange-security-alert/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  2 17:14:15 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 3 Feb 2012 02:14:15 +0100
Subject: [SEC] [SA47808] Red Hat update for openssl
Message-ID: <201202030114.q131EFl9021820@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Red Hat update for openssl

SECUNIA ADVISORY ID:
SA47808

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47808/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47808

RELEASE DATE:
2012-02-02

DISCUSS ADVISORY:
http://secunia.com/advisories/47808/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47808/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47808

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for openssl. This fixes multiple
vulnerabilities, which can be exploited by malicious people to
disclose potentially sensitive information and cause a DoS (Denial of
Service).

For more information see vulnerabilities #3 and #5 in:
SA47426

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0086-01:
https://rhn.redhat.com/errata/RHSA-2012-0086.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  2 17:46:55 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 3 Feb 2012 02:46:55 +0100
Subject: [SEC] [SA47863] Blue Coat Reporter OpenSSL Two Vulnerabilities
Message-ID: <201202030146.q131ktxK011795@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Blue Coat Reporter OpenSSL Two Vulnerabilities

SECUNIA ADVISORY ID:
SA47863

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47863/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47863

RELEASE DATE:
2012-02-02

DISCUSS ADVISORY:
http://secunia.com/advisories/47863/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47863/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47863

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Blue Coat has acknowledged two vulnerabilities in Reporter, which can
be exploited by malicious people to disclose potentially sensitive
information, cause a DoS (Denial of Service), and potentially
compromise an application using the library.

For more information:
SA42243
SA43227

SOLUTION:
Upgrade to version 9.3.2.1 or 9.2.5.1.

ORIGINAL ADVISORY:
https://kb.bluecoat.com/index?page=content&id=SA68

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  2 18:13:28 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 3 Feb 2012 03:13:28 +0100
Subject: [SEC] [SA47807] Blue Coat Reporter OpenSSL Two Vulnerabilities
Message-ID: <201202030213.q132DSu8001609@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Blue Coat Reporter OpenSSL Two Vulnerabilities

SECUNIA ADVISORY ID:
SA47807

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47807/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47807

RELEASE DATE:
2012-02-02

DISCUSS ADVISORY:
http://secunia.com/advisories/47807/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47807/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47807

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Blue Coat has acknowledged two vulnerabilities in Reporter, which can
be exploited by malicious people to disclose potentially sensitive
information, cause a DoS (Denial of Service), and potentially
compromise an application using the library.

For more information:
SA42243
SA43227

SOLUTION:
Update to version 9.3.2.1 or 9.2.5.1.

ORIGINAL ADVISORY:
https://kb.bluecoat.com/index?page=content&id=SA68

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  2 18:46:44 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 3 Feb 2012 03:46:44 +0100
Subject: [SEC] [SA47860] EMC Documentum Content Server Privilege Escalation
	Vulnerability
Message-ID: <201202030246.q132kite024053@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
EMC Documentum Content Server Privilege Escalation Vulnerability

SECUNIA ADVISORY ID:
SA47860

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47860/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47860

RELEASE DATE:
2012-02-02

DISCUSS ADVISORY:
http://secunia.com/advisories/47860/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47860/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47860

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in EMC Documentum Content Server,
which can be exploited by malicious, local users to gain escalated
privileges.

The vulnerability is caused due to an unspecified error and can be
exploited by an application system administrator to gain super user
privileges.

The vulnerability is reported in versions 6.0, 6.5, and 6.6.

SOLUTION:
Apply patches (please see the vendor's advisory for details).

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Yuri Simione.

ORIGINAL ADVISORY:
http://archives.neohapsis.com/archives/bugtraq/2012-02/att-0005/ESA-2012-009.txt

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  2 19:15:18 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 3 Feb 2012 04:15:18 +0100
Subject: [SEC] [SA47809] Ubuntu update for usbmuxd
Message-ID: <201202030315.q133FIQ2014452@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Ubuntu update for usbmuxd

SECUNIA ADVISORY ID:
SA47809

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47809/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47809

RELEASE DATE:
2012-02-02

DISCUSS ADVISORY:
http://secunia.com/advisories/47809/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47809/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47809

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for usbmuxd. This fixes a vulnerability,
which potentially can be exploited by malicious people with physical
access to compromise a vulnerable system.

For more information:
SA47545

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1354-1:
http://www.ubuntu.com/usn/usn-1354-1/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 10:29:58 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 3 Feb 2012 19:29:58 +0100
Subject: [SEC] [SA47657] 2X ApplicationServer TuxSystem ActiveX Control
	"ExportSettings()" Insecure Method
Message-ID: <201202031829.q13ITw89017839@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
2X ApplicationServer TuxSystem ActiveX Control "ExportSettings()"
Insecure Method

SECUNIA ADVISORY ID:
SA47657

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47657/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47657

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47657/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47657/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47657

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Andrea Micalizzi has discovered a vulnerability in 2X
ApplicationServer TuxSystem ActiveX Control, which can be exploited
by malicious people to manipulate certain data.

The vulnerability is caused due to the TuxSystem ActiveX control
(TuxScripting.dll) providing an insecure "ExportSettings()" method,
which can be exploited to create or overwrite arbitrary files in the
context of the currently logged-on user.

The vulnerability is confirmed in version 10.1 Build 1224. Other
versions may also be affected.

SOLUTION:
Set the kill-bit for the affected ActiveX control.

PROVIDED AND/OR DISCOVERED BY:
Andrea Micalizzi (rgod) via Secunia.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 11:29:20 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 3 Feb 2012 20:29:20 +0100
Subject: [SEC] [SA47842] TYPO3 RTG Files Extension Two Vulnerabilities
Message-ID: <201202031929.q13JTKLC008219@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
TYPO3 RTG Files Extension Two Vulnerabilities

SECUNIA ADVISORY ID:
SA47842

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47842/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47842

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47842/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47842/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47842

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Two vulnerabilities have been reported in the RTG Files extension for
TYPO3, which can be exploited by malicious people to conduct
cross-site scripting and SQL injection attacks.

1) Certain unspecified input is not properly sanitised before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

2) Certain unspecified input is not properly sanitised before being
used in a SQL query. This can be exploited to manipulate SQL queries
by injecting arbitrary SQL code.

The vulnerabilities are reported in versions prior to 1.5.2.

SOLUTION:
Update to version 1.5.2

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Sebastian B?ttger, TYPO3 Security Team.

ORIGINAL ADVISORY:
TYPO3-EXT-SA-2012-001:
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-001/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 12:29:26 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 3 Feb 2012 21:29:26 +0100
Subject: [SEC] [SA47868] HP Products OpenSSL Race Condition Vulnerability
Message-ID: <201202032029.q13KTQup030989@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
HP Products OpenSSL Race Condition Vulnerability

SECUNIA ADVISORY ID:
SA47868

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47868/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47868

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47868/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47868/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47868

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
HP has acknowledged a vulnerability in multiple HP products, which
can be exploited by malicious people to cause a DoS (Denial of
Service) and potentially compromise an application using the
library.

For more information:
SA42243

The vulnerability is reported in the following products:
* Operations Manager versions 8.16 and 9.00.
* Operations Agent versions 8.6x.xxx and 11.x.
* Performance Agent version 5.0.
* Service Health Reporter version 9.1.
* Service Health Optimizer version 9.1.
* Performance Manager versions 8.1x, 8.2x, and 9.x.

SOLUTION:
Apply the hotfix (available via customer support channels by
requesting fix for SSRT100741).

ORIGINAL ADVISORY:
HPSBGN02740 SSRT100741:
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03179825

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 13:29:12 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 3 Feb 2012 22:29:12 +0100
Subject: [SEC] [SA47854] project-open "message" Cross-Site Scripting
	Vulnerability
Message-ID: <201202032129.q13LTCRX021368@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
project-open "message" Cross-Site Scripting Vulnerability

SECUNIA ADVISORY ID:
SA47854

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47854/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47854

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47854/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47854/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47854

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in project-open, which can be
exploited by malicious people to conduct cross-site scripting
attacks.

Input passed via the "message" parameter to register/account-closed
is not properly sanitised in register/account-closed.adp before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

The vulnerability is confirmed in version 3.5.0.1-2. Other versions
may also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
Michail Poultsakis.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 14:27:31 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 3 Feb 2012 23:27:31 +0100
Subject: [SEC] [SA47872] DotNetNuke Multiple Vulnerabilities
Message-ID: <201202032227.q13MRV7g011739@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
DotNetNuke Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47872

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47872/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47872

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47872/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47872/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47872

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A weakness and two vulnerabilities have been reported in DotNetNuke,
which can be exploited by malicious users to enumerate files on an
affected system and bypass certain security restrictions and by
malicious people to conduct cross-site scripting attacks.

1) Certain unspecified input passed via DotNetNuke.RadEditorProvider
is not properly sanitised before being used to check for the
existence of certain files. This can be exploited to enumerate e.g.
.resources or .config files.

This weakness is reported in versions 6.0.0 through 6.1.2.

2) Certain input passed via the URL is not properly sanitised before
being returned to the user. This can be exploited to execute
arbitrary HTML and script code in a user's browser session in context
of an affected site.

This vulnerability is reported in versions 6.0.0 through 6.0.2.

3) An error within the authorisation for certain user management
functions can be exploited to e.g. create new users, delete users,
and edit existing users and roles.

This vulnerability is reported in versions prior to 5.6.7 and prior
to 6.1.3.

SOLUTION:
Update to version 5.6.8 or 6.1.3.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits:
1) Brandon Haynes
2) Richard Lundeen of Microsoft and Microsoft Vulnerability Research
(MSVR)
3) Mark Litchfield, NGSSecure

ORIGINAL ADVISORY:
DotNetNuke (DNN 2012-1-L, DNN 2012-2-C, and DNN 2012-3-L):
http://www.dotnetnuke.com/News/Security-Policy/Security-bulletin-no.62.aspx
http://www.dotnetnuke.com/News/Security-Policy/Security-bulletin-no.63.aspx
http://www.dotnetnuke.com/News/Security-Policy/Security-bulletin-no.64.aspx

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 14:44:12 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 3 Feb 2012 23:44:12 +0100
Subject: [SEC] [SA47876] Sphinx Mobile Web Server "comment" Blog Comment
	Script Insertion Vulnerability
Message-ID: <201202032244.q13MiCBH001391@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Sphinx Mobile Web Server "comment" Blog Comment Script Insertion
Vulnerability

SECUNIA ADVISORY ID:
SA47876

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47876/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47876

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47876/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47876/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47876

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Prabhu S Angadi has discovered a vulnerability in Sphinx Mobile Web
Server, which can be exploited by malicious people to conduct script
insertion attacks.

Input passed via the "comment" parameter to a user's blog when
posting a comment is not properly sanitised before being used. This
can be exploited to insert arbitrary HTML and script code, which will
be executed in a user's browser session in context of an affected site
when the malicious data is being viewed.

The vulnerability is confirmed in version 3.1.2.47. Other versions
may also be affected.

SOLUTION:
Filter malicious characters and character sequences using a proxy.

PROVIDED AND/OR DISCOVERED BY:
Prabhu S Angadi, SecPod Research.

ORIGINAL ADVISORY:
http://secpod.org/advisories/SecPod_SPHINX_SOFT_Mobile_Web_Server_Mul_Persistence_XSS_Vulns.txt

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 15:11:04 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 4 Feb 2012 00:11:04 +0100
Subject: [SEC] [SA47866] Red Hat update for JBoss Enterprise Portal Platform
Message-ID: <201202032311.q13NB4dg023742@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Red Hat update for JBoss Enterprise Portal Platform

SECUNIA ADVISORY ID:
SA47866

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47866/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47866

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47866/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47866/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47866

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for JBoss Enterprise Portal Platform.
This fixes multiple weaknesses, a security issue, and multiple
vulnerabilities, which can be exploited by malicious, local users to
bypass certain security restrictions and by malicious people to
bypass certain security restrictions, cause a DoS (Denial of
Service), and compromise a vulnerable system.

For more information:
SA44316
SA44981
SA45232
SA47411

SOLUTION:
Update to version 4.3 CP07.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0091-1:
https://rhn.redhat.com/errata/RHSA-2012-0091.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 16:12:59 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 4 Feb 2012 01:12:59 +0100
Subject: [SEC] [SA47770] Debian update for iceape
Message-ID: <201202040012.q140CxoZ014169@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Debian update for iceape

SECUNIA ADVISORY ID:
SA47770

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47770/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47770

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47770/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47770/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47770

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for iceape. This fixes a weakness and
multiple vulnerabilities, which can be exploited by malicious people
to disclose certain sensitive information and compromise a user's
system.

For more information:
SA47839

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2402-1:
http://www.debian.org/security/2012/dsa-2402

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 16:46:49 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 4 Feb 2012 01:46:49 +0100
Subject: [SEC] [SA47794] Debian update for tomcat6
Message-ID: <201202040046.q140knsP004262@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Debian update for tomcat6

SECUNIA ADVISORY ID:
SA47794

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47794/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47794

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47794/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47794/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47794

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for tomcat6. This fixes multiple
weakness, two security issues, and multiple vulnerabilities, which
can be exploited by malicious, local users and malicious people to
disclose sensitive information, bypass certain security restrictions,
or cause a DoS (Denial of Service).

For more information:
SA44981
SA45232
SA45748
SA47411
SA47554

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2401-1:
http://www.debian.org/security/2012/dsa-2401

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 17:13:34 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 4 Feb 2012 02:13:34 +0100
Subject: [SEC] [SA47788] Debian update for iceweasel
Message-ID: <201202040113.q141DYlm026530@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Debian update for iceweasel

SECUNIA ADVISORY ID:
SA47788

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47788/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47788

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47788/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47788/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47788

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for iceweasel. This fixes a weakness and
multiple vulnerabilities, which can be exploited by malicious people
to disclose certain sensitive information and compromise a user's
system.

For more information:
SA47839

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2400-1:
http://www.debian.org/security/2012/dsa-2400

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 17:47:11 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 4 Feb 2012 02:47:11 +0100
Subject: [SEC] [SA47870] WordPress WP-RecentComments Plugin "id" SQL
	Injection Vulnerability
Message-ID: <201202040147.q141lB4q016516@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
WordPress WP-RecentComments Plugin "id" SQL Injection Vulnerability

SECUNIA ADVISORY ID:
SA47870

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47870/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47870

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47870/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47870/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47870

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in the WP-RecentComments plugin
for WordPress, which can be exploited by malicious people to conduct
SQL injection attacks.

Input passed via the "id" parameter to index.php (when "action" is
set to "rc-content") is not properly sanitised before being used in a
SQL query. This can be exploited to manipulate SQL queries by
injecting arbitrary SQL code.

The vulnerability is confirmed in version 2.0.7. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
polyidytanthoas

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 18:09:15 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 4 Feb 2012 03:09:15 +0100
Subject: [SEC] [SA47801] Debian update for php5
Message-ID: <201202040209.q1429FMV006330@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Debian update for php5

SECUNIA ADVISORY ID:
SA47801

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47801/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47801

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47801/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47801/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47801

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for php5. This fixes a vulnerability,
which can be exploited by malicious people to compromise a vulnerable
system.

For more information:
SA47806

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2403-01:
http://www.us.debian.org/security/2012/dsa-2403

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 18:24:01 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 4 Feb 2012 03:24:01 +0100
Subject: [SEC] [SA47824] Red Hat update for php
Message-ID: <201202040224.q142O1om028417@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Red Hat update for php

SECUNIA ADVISORY ID:
SA47824

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47824/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47824

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47824/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47824/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47824

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for php. This fixes a vulnerability,
which can be exploited by malicious people to compromise a vulnerable
system.

For more information:
SA47806

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0093-01:
https://rhn.redhat.com/errata/RHSA-2012-0093.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 18:44:04 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 4 Feb 2012 03:44:04 +0100
Subject: [SEC] [SA47849] Foswiki Multiple Script Insertion Vulnerabilities
Message-ID: <201202040244.q142i4HM018197@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Foswiki Multiple Script Insertion Vulnerabilities

SECUNIA ADVISORY ID:
SA47849

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47849/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47849

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47849/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47849/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47849

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Sony has discovered multiple vulnerabilities in Foswiki, which can be
exploited by malicious users to conduct script insertion attacks.

Input passed via the "text", "FirstName", "LastName",
"OrganisationName", "OrganisationUrl", "Profession", "Country",
"State", "Address", "Location", "Telephone", "VoIP",
"InstantMessagingIM", "Email", "HomePage", and "Comment" parameters
to bin/save/Main/[user] when saving user details is not properly
sanitised before being used. This can be exploited to insert
arbitrary HTML and script code, which will be executed in a user's
browser session in context of an affected site when the malicious
data is being viewed.

The vulnerabilities are confirmed in version 1.1.4. Other versions
may also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
Sony.

ORIGINAL ADVISORY:
http://st2tea.blogspot.com/2012/02/foswiki-cross-site-scripting.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 19:15:10 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 4 Feb 2012 04:15:10 +0100
Subject: [SEC] [SA47847] Joomla! Multiple Information Disclosure
	Vulnerabilities
Message-ID: <201202040315.q143FABW008634@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Joomla! Multiple Information Disclosure Vulnerabilities

SECUNIA ADVISORY ID:
SA47847

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47847/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47847

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47847/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47847/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47847

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A weakness and two vulnerabilities have been reported in Joomla!,
which can be exploited by malicious users and malicious people to
disclose sensitive information.

1) Certain unspecified input passed to the "administrator" section is
not properly verified before being used and can be exploited to
disclose sensitive information.

2) An unspecified error can be exploited to disclose the error log.

NOTE: This vulnerability only affects the 1.7.x versions.

3) Certain unspecified input passed to the "administrator" section is
not properly verified before being used and can be exploited to
disclose a path.

The weakness and the vulnerabilities are reported in versions 1.7.0
through 1.7.4 and versions prior to 2.5.1.

SOLUTION:
Update to version 1.7.5 or version 2.5.1.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits:
1, 3) Jakub Galczyk
2) Alain Rivest

ORIGINAL ADVISORY:
Joomla! 1.7.5:
http://www.joomla.org/announcements/release-news/5411-joomla-175-released.html

Joomla! 2.5.1:
http://www.joomla.org/announcements/release-news/5410-joomla-251-released.html

Vulnerabilities:
http://developer.joomla.org/security/news/387-20120201-core-information-disclosure
http://developer.joomla.org/security/news/388-20120202-core-information-disclosure
http://developer.joomla.org/security/news/389-20120203-core-information-disclosure

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 19:44:10 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 4 Feb 2012 04:44:10 +0100
Subject: [SEC] [SA47813] Red Hat update for php53
Message-ID: <201202040344.q143iA73030936@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Red Hat update for php53

SECUNIA ADVISORY ID:
SA47813

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47813/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47813

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47813/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47813/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47813

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for php53. This fixes a vulnerability,
which can be exploited by malicious people to compromise a vulnerable
system.

For more information:
SA47806

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0092-01:
https://rhn.redhat.com/errata/RHSA-2012-0092.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 20:09:43 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 4 Feb 2012 05:09:43 +0100
Subject: [SEC] [SA47817] Red Hat update for ghostscript
Message-ID: <201202040409.q1449hH3020799@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Red Hat update for ghostscript

SECUNIA ADVISORY ID:
SA47817

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47817/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47817

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47817/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47817/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47817

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for ghostscript. This fixes a security
issue and some vulnerabilities, which can be exploited by malicious
people to bypass certain security restrictions, cause a DoS (Denial
of Service), or compromise a user's system.

For more information:
SA39753
SA40452

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0095-01:
https://rhn.redhat.com/errata/RHSA-2012-0095.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 20:23:27 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 4 Feb 2012 05:23:27 +0100
Subject: [SEC] [SA47846] Red Hat update for ghostscript
Message-ID: <201202040423.q144NR21010494@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Red Hat update for ghostscript

SECUNIA ADVISORY ID:
SA47846

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47846/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47846

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47846/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47846/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47846

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for ghostscript. This fixes a
vulnerability, which can be exploited by malicious people to cause a
DoS (Denial of Service).

For more information see vulnerability #4 in:
SA39753

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0096-01:
https://rhn.redhat.com/errata/RHSA-2012-0096.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 20:44:16 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 4 Feb 2012 05:44:16 +0100
Subject: [SEC] [SA47806] PHP "php_register_variable_ex()" Code Execution
	Vulnerability
Message-ID: <201202040444.q144iGvG032665@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
PHP "php_register_variable_ex()" Code Execution Vulnerability

SECUNIA ADVISORY ID:
SA47806

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47806/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47806

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47806/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47806/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47806

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in PHP, which can be exploited by
malicious people to compromise a vulnerable system.

The vulnerability is caused due to a logic error within the
"php_register_variable_ex()" function (php_variables.c) when hashing
form posts and updating a hash table, which can be exploited to
execute arbitrary code.

The vulnerability is reported in version 5.3.9.

SOLUTION:
Update to version 5.3.10.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Stefan Esser.

ORIGINAL ADVISORY:
PHP:
http://www.php.net/archive/2012.php#id2012-02-02-1

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 21:09:03 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 4 Feb 2012 06:09:03 +0100
Subject: [SEC] [SA47851] Drupal Forward Module Security Bypass Vulnerability
Message-ID: <201202040509.q14593ki022517@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Drupal Forward Module Security Bypass Vulnerability

SECUNIA ADVISORY ID:
SA47851

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47851/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47851

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47851/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47851/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47851

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in the Forward module for Drupal,
which can be exploited by malicious people to bypass certain security
restrictions.

The vulnerability is caused due to access permissions not being
enforced for the "Recent forwards", "Most forwarded", and "Dynamic
Block" blocks. This can be exploited to disclose node titles of
otherwise restricted nodes.

The vulnerability is reported in versions prior to 6.x-1.21 and
versions prior to 7.x-1.3.

SOLUTION:
Update to the latest version.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Greg Knaddison (greggles), Drupal Security Team.

ORIGINAL ADVISORY:
SA-CONTRIB-2012-016:
http://drupal.org/node/1425150

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 21:23:05 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 4 Feb 2012 06:23:05 +0100
Subject: [SEC] [SA47859] Xen Qemu e1000 Privilege Escalation Vulnerability
Message-ID: <201202040523.q145N5If012213@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Xen Qemu e1000 Privilege Escalation Vulnerability

SECUNIA ADVISORY ID:
SA47859

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47859/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47859

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47859/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47859/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47859

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Xen, which can be exploited by
malicious, local users in a guest virtual machine to potentially gain
escalated privileges.

For more information:
SA47740

Successful exploitation requires a HVM (Fully-Emulated) guest
configured with a e1000 NIC in VIF configuration (not by default).

SOLUTION:
Fixed in the GIT repository.

ORIGINAL ADVISORY:
XSA-6:
http://lists.xen.org/archives/html/xen-devel/2012-02/msg00212.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 21:43:56 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 4 Feb 2012 06:43:56 +0100
Subject: [SEC] [SA47856] Skype Unspecified Vulnerability
Message-ID: <201202040543.q145hu2j001928@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Skype Unspecified Vulnerability

SECUNIA ADVISORY ID:
SA47856

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47856/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47856

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47856/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47856/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47856

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability with an unknown impact has been reported in Skype.

The vulnerability is caused due to an unspecified error. No further
information is currently available.

The vulnerability is reported in versions prior to 5.8.0.154.

SOLUTION:
Update to version 5.8.0.154.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Masato Kinugawa.

ORIGINAL ADVISORY:
http://blogs.skype.com/garage/2012/02/skype_for_windows_update.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb  3 22:11:14 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 4 Feb 2012 07:11:14 +0100
Subject: [SEC] [SA47843] Apple Mac OS X Multiple Vulnerabilities
Message-ID: <201202040611.q146BEtg024280@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Apple Mac OS X Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47843

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47843/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47843

RELEASE DATE:
2012-02-03

DISCUSS ADVISORY:
http://secunia.com/advisories/47843/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47843/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47843

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Apple has issued a security update for Mac OS X, which fixes multiple
vulnerabilities.

1) The Address Book component downgrades to an unencrypted connection
when an encrypted connection fails. This can be exploited to intercept
CardDAV data.

2) An error in the bundled version of Apache can be exploited to
cause a temporary DoS (Denial of Service).

For more information:
SA46013

3) A design error in Apache within the Secure Sockets Layer 3.0 (SSL)
and Transport Layer Security 1.0 (TLS) protocols when using a block
cipher in CBC mode can be exploited to decrypt data protected by
SSL.

4) An error in ATS when handling data-font files can be exploited to
corrupt memory via a specially crafted font opened by Font Book.

5) An error in CFNetwork when handling URLs can be exploited to
disclose sensitive information via a specially crafted web page as a
request could be sent to an incorrect origin server.

6) An error in CFNetwork when handling URLs can be exploited to
disclose sensitive information via a specially crafted web page as
unexpected request headers could be sent.

7) An integer overflow error in ColorSync when handling images with
embedded ColorSync profiles can be exploited to cause a heap-based
buffer overflow via a specially crafted image.

8) An error in CoreAudio when handling AAC encoded audio streams can
be exploited to cause a buffer overflow when playing specially
crafted audio content.

9) An error in CoreMedia when handling H.264 encoded movies can be
exploited to cause a heap-based buffer overflow.

10) A use-after-free error in CoreText when handling documents
containing fonts can be exploited to dereference already freed memory
via a specially crafted font.

11) An error exists in CoreUI when handling long URLs and can be
exploited via a specially crafted website.

12) An error in curl can be exploited by remote servers to
impersonate clients via GSSAPI requests.

For more information:
SA45067

13) Two of the certificate authorities in the list of trusted root
certificates have issued intermediate certificates to DigiCert
Malaysia, who has issued certificates with weak keys that cannot be
revoked.

14) A design error in dovecot within the Secure Sockets Layer 3.0
(SSL) and Transport Layer Security 1.0 (TLS) protocols when using a
block cipher in CBC mode can be exploited to decrypt data protected
by SSL.

15) An error in the uncompress command line tool when decompressing
compressed files can be exploited to cause a buffer overflow.

For more information:
SA45544

16) An error in ImageIO when parsing TIFF images can be exploited to
cause a buffer overflow.

For more information see vulnerability #9:
SA45325

17) An error in ImageIO when handling ThunderScan encoded TIFF images
can be exploited to cause a buffer overflow.

For more information see vulnerability #2:
SA43593:

18) An error exists in the bundled version of libpng.

For more information:
SA46148

19) An error in Internet Sharing may cause the used Wi-Fi
configuration to revert to factory defaults (e.g. disabling the WEP
password) after a system update.

20) An error in Libinfo can be exploited to disclose sensitive
information via a specially crafted website.

For more information see vulnerability #4:
SA46747

21) An integer overflow error in libresolv when parsing DNS resource
records can be exploited to cause a heap-based buffer overflow.

22) An error in libsecurity may cause some EV certificates to be
trusted even when the corresponding root is marked untrusted.

23) Multiple errors in OpenGL when handling GLSL compilation can be
exploited to corrupt memory.

24) Multiple errors exist in the bundled version of PHP.

For more information:
SA44874
SA45678

25) Various errors in FreeType when handling Type 1 fonts can be
exploited to corrupt memory.

For more information:
SA46575

26) An error in QuickTime when parsing MP4 encoded files can be
exploited to access uninitialised memory.

27) A signedness error in QuickTime when handling font tables
embedded in movie files can be exploited to corrupt memory.

28) An off-by-one error in QuickTime when handling rdrf atoms in
movie files can be exploited to cause a single byte buffer overflow.

29) An error in QuickTime when parsing JPEG2000 images can be
exploited to cause a buffer overflow.

30) An error in QuickTime when parsing PNG images can be exploited to
cause a buffer overflow.

31) An error in QuickTime when handling FLC encoded movie files can
be exploited to cause a buffer overflow.

32) Multiple errors exists in the bundled version of SquirrelMail.

For more information:
SA40307
SA45197

33) Various errors exist in the bundled version of Subversion.

For more information:
SA44681

34) Time Machine does not verify that a designated remote AFP volume
or Time Capsule is used for subsequent backups. This can be exploited
to access backups by spoofing the remote volume.

35) Errors exist in the bundled version of Tomcat.

For more information:
SA44981

36) An error in WebDAV Sharing when handling user authentication can
be exploited by local users to gain escalated privileges.

37) An error exists in the bundled version of Webmail.

For more information:
SA45605

SOLUTION:
Update to OS X Lion version 10.7.3 or apply Security Update 2012-001.

PROVIDED AND/OR DISCOVERED BY:
4, 10) Will Dormann, CERT/CC

The vendor also credits:
1) Bernard Desruisseaux, Oracle Corporation
5, 6) Erling Ellingsen, Facebook
7) binaryproof via ZDI
8, 27, 28, 29, 30) Luigi Auriemma via ZDI
9) Scott Stender, iSEC Partners
11) Ben Syverson
19) An anonymous person
21) Ilja van Sprundel, IOActive
22) Alastair Houghton
23) Chris Evans, Google Chrome Security Team and Marc Schoenefeld,
Red Hat Security Response Team
26) Luigi Auriemma via ZDI and pa_kt via ZDI
31) Matt "j00ru" Jurczyk via ZDI
34) Michael Roitzsch, Technische Universit?t Dresden
36) Gordon Davisson, Crywolf

ORIGINAL ADVISORY:
Apple Security Update 2012-001:
http://support.apple.com/kb/HT5130

US-CERT:
http://www.kb.cert.org/vuls/id/403593
http://www.kb.cert.org/vuls/id/410281

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb  6 10:30:01 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 6 Feb 2012 19:30:01 +0100
Subject: [SEC] [SA47873] EPiServer CMS Cross-Site Scripting and Security
	Bypass Vulnerabilities
Message-ID: <201202061830.q16IU1WS003600@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
EPiServer CMS Cross-Site Scripting and Security Bypass
Vulnerabilities

SECUNIA ADVISORY ID:
SA47873

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47873/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47873

RELEASE DATE:
2012-02-06

DISCUSS ADVISORY:
http://secunia.com/advisories/47873/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47873/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47873

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Two vulnerabilities have been reported in EPiServer CMS, which can be
exploited by malicious users to bypass certain security restrictions
and by malicious people to conduct cross-site scripting attacks.

For more information:
SA47910

The vulnerability is reported in version 5.

SOLUTION:
Upgrade to version 6 R2 released January 25th, 2012.

ORIGINAL ADVISORY:
http://world.episerver.com/Blogs/Jens-N/Dates/2012/1/Security-vulnerability---Elevation-of-privilege/
http://world.episerver.com/Blogs/Shahid-Nawaz/Dates/2012/1/General-Hotfix-CMS-6-R2/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb  6 11:29:23 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 6 Feb 2012 20:29:23 +0100
Subject: [SEC] [SA47772] Debian update for apache2
Message-ID: <201202061929.q16JTNvR026376@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Debian update for apache2

SECUNIA ADVISORY ID:
SA47772

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47772/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47772

RELEASE DATE:
2012-02-06

DISCUSS ADVISORY:
http://secunia.com/advisories/47772/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47772/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47772

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for apache2. This fixes multiple
weaknesses and vulnerabilities, which can be exploited by malicious,
local users to gain escalated privileges and bypass certain security
restrictions and by malicious people to disclose potentially
sensitive information and bypass certain security restrictions.

For more information:
SA45793
SA46288
SA46987
SA47410
SA47779

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2405-1:
http://lists.debian.org/debian-security-announce/2012/msg00031.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb  6 12:29:05 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 6 Feb 2012 21:29:05 +0100
Subject: [SEC] [SA47910] EPiServer CMS Cross-Site Scripting and Security
	Bypass Vulnerabilities
Message-ID: <201202062029.q16KT5PK016769@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
EPiServer CMS Cross-Site Scripting and Security Bypass
Vulnerabilities

SECUNIA ADVISORY ID:
SA47910

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47910/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47910

RELEASE DATE:
2012-02-06

DISCUSS ADVISORY:
http://secunia.com/advisories/47910/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47910/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47910

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Two vulnerabilities have been reported in EPiServer CMS, which can be
exploited by malicious users to bypass certain security restrictions
and by malicious people to conduct cross-site scripting attacks.

1) Certain unspecified input is not properly sanitised before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

2) The vulnerability is caused due to an unspecified error and can be
exploited to gain administrative privileges.

Successful exploitation requires the "Edit mode" permission.

The vulnerability is reported in version 6.

SOLUTION:
Update to version 6 R2 released January 25th, 2012.

PROVIDED AND/OR DISCOVERED BY:
1) Reported by the vendor.
2) David Johansson.

ORIGINAL ADVISORY:
http://world.episerver.com/Blogs/Jens-N/Dates/2012/1/Security-vulnerability---Elevation-of-privilege/
http://world.episerver.com/Blogs/Shahid-Nawaz/Dates/2012/1/General-Hotfix-CMS-6-R2/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb  6 13:29:11 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 6 Feb 2012 22:29:11 +0100
Subject: [SEC] [SA47850] JBoss Multiple Products JMX Console Authentication
	Bypass
Message-ID: <201202062129.q16LTBnr007180@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
JBoss Multiple Products JMX Console Authentication Bypass

SECUNIA ADVISORY ID:
SA47850

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47850/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47850

RELEASE DATE:
2012-02-06

DISCUSS ADVISORY:
http://secunia.com/advisories/47850/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47850/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47850

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A security issue has been reported in multiple JBoss products, which
can be exploited by malicious people to bypass certain security
restrictions.

The security issue is caused due to improper access restrictions to
the JMX Console.

For more information see vulnerability #1 in:
SA39563

The security issue is reported in the following products:
* JBoss Communications Platform 1.2
* JBoss Enterprise Application Platform 5.0 and 5.0.1
* JBoss Enterprise Portal Platform 4.3
* JBoss Enterprise Web Platform 5.0
* JBoss SOA-Platform 4.2, 4.3, and 5.0

SOLUTION:
Update to a fixed version.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
JBPAPP-3952:
https://issues.jboss.org/browse/JBPAPP-3952

JBPAPP-4713:
https://issues.jboss.org/browse/JBPAPP-4713

Red Hat Doc#30741:
https://access.redhat.com/kb/docs/DOC-30741

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb  6 14:26:47 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 6 Feb 2012 23:26:47 +0100
Subject: [SEC] [SA47696] QIWI Wallet for Android Security Bypass Security
	Issue
Message-ID: <201202062226.q16MQl1f029929@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
QIWI Wallet for Android Security Bypass Security Issue

SECUNIA ADVISORY ID:
SA47696

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47696/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47696

RELEASE DATE:
2012-02-06

DISCUSS ADVISORY:
http://secunia.com/advisories/47696/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47696/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47696

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
AppSec has reported a security issue in QIWI Wallet for Android,
which can be exploited by malicious people to bypass certain security
restrictions.

The security issue is caused due to an unspecified error and can be
exploited to disclose certain sensitive information like e.g. certain
user information and certain financial information and reports and
manipulate certain data.

Successful exploitation requires that a malicious application is
installed.

The security issue is reported in version 1.13 and 1.14.1. Other
versions may also be affected.

SOLUTION:
Reportedly fixed in version 1.14.2.

PROVIDED AND/OR DISCOVERED BY:
Daoyuan Wu, Xiapu Luo, and Rocky K. C. Chang Department of Computing,
The Hong Kong Polytechnic University

ORIGINAL ADVISORY:
http://www4.comp.polyu.edu.hk/~appsec/bugs/CVE-2011-4770-vulnerability-in-QIWIWallet.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb  6 14:44:41 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 6 Feb 2012 23:44:41 +0100
Subject: [SEC] [SA47907] HDWiki URL SQL Injection Vulnerability
Message-ID: <201202062244.q16MifYh019687@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
HDWiki URL SQL Injection Vulnerability

SECUNIA ADVISORY ID:
SA47907

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47907/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47907

RELEASE DATE:
2012-02-06

DISCUSS ADVISORY:
http://secunia.com/advisories/47907/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47907/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47907

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
flyh4t has discovered a vulnerability in HDWiki, which can be
exploited by malicious users to conduct SQL injection attacks.

Input appended to the URL after hdwiki/index.php is not properly
sanitised in model/comment.class.php before being used in SQL
queries. This can be exploited to manipulate SQL queries by injecting
arbitrary SQL code.

The vulnerability is confirmed in version 5.1. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
flyh4t.

ORIGINAL ADVISORY:
http://bbs.wolvez.org/viewtopic.php?id=208

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb  6 15:11:03 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 7 Feb 2012 00:11:03 +0100
Subject: [SEC] [SA47762] D-Link DIR-601 TFTP Directory Traversal
	Vulnerability
Message-ID: <201202062311.q16NB37N009589@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
D-Link DIR-601 TFTP Directory Traversal Vulnerability

SECUNIA ADVISORY ID:
SA47762

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47762/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47762

RELEASE DATE:
2012-02-06

DISCUSS ADVISORY:
http://secunia.com/advisories/47762/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47762/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47762

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in D-Link DIR-601, which can be
exploited by malicious people to disclose sensitive information.

The vulnerability is caused due to an error within the TFTP service
and can be exploited to download files outside of the TFTP root
directory via directory traversal attacks.

The vulnerability is reported in version 1.02NA. Other versions may
also be affected.

SOLUTION:
Disable the TFTP service.

PROVIDED AND/OR DISCOVERED BY:
Rob Kraus and Solutionary Engineering Research Team (SERT)

ORIGINAL ADVISORY:
SERT-VDN-1013:
http://www.solutionary.com/index/SERT/Vuln-Disclosures/D-Link_DIR-601.php

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb  6 16:10:39 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 7 Feb 2012 01:10:39 +0100
Subject: [SEC] [SA47768] Voxofon - International Calls for Android Security
	Bypass Security Issue
Message-ID: <201202070010.q170AdMV032373@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Voxofon - International Calls for Android Security Bypass Security
Issue

SECUNIA ADVISORY ID:
SA47768

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47768/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47768

RELEASE DATE:
2012-02-06

DISCUSS ADVISORY:
http://secunia.com/advisories/47768/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47768/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47768

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
AppSec has reported a security issue in Voxofon - International Calls
for Android, which can be exploited by malicious people to bypass
certain security restrictions.

The security issue is caused due to an unspecified error and can be
exploited to disclose certain sensitive information like e.g. SMS
content, sending timestamps, recipient's phone number and sending
state and manipulate certain data.

Successful exploitation requires that a malicious application is
installed.

The security issue is reported in version 2.4.3. Other versions may
also be affected.

SOLUTION:
Reportedly fixed in version 2.5.2.

PROVIDED AND/OR DISCOVERED BY:
Daoyuan Wu, Xiapu Luo, and Rocky K. C. Chang Department of Computing,
The Hong Kong Polytechnic University

ORIGINAL ADVISORY:
http://www4.comp.polyu.edu.hk/~appsec/bugs/CVE-2011-4704-vulnerability-in-Voxofon.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb  6 16:47:09 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 7 Feb 2012 01:47:09 +0100
Subject: [SEC] [SA47885] XWiki Enterprise Two Script Insertion
	Vulnerabilities
Message-ID: <201202070047.q170l94U022517@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
XWiki Enterprise Two Script Insertion Vulnerabilities

SECUNIA ADVISORY ID:
SA47885

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47885/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47885

RELEASE DATE:
2012-02-06

DISCUSS ADVISORY:
http://secunia.com/advisories/47885/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47885/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47885

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Sony has discovered two vulnerabilities in XWiki Enterprise, which
can be exploited by malicious users to conduct script insertion
attacks.

Input passed via the "XWiki.XWikiComments_comment" POST parameter to
e.g. xwiki/bin/commentadd/Main/WebHome when posting a comment and
"XWiki.XWikiUsers_0_company" POST parameter when editing a user's
profile is not properly sanitised before being used. This can be
exploited to insert arbitrary HTML and script code, which will be
executed in a user's browser session in context of an affected site
when the malicious data is being viewed.

The vulnerabilities are confirmed in version 3.4. Other versions may
also be affected.

SOLUTION:
Filter malicious characters and character sequences using a proxy.

PROVIDED AND/OR DISCOVERED BY:
Sony

ORIGINAL ADVISORY:
Sony:
http://st2tea.blogspot.com/2012/02/xwiki-cross-site-scripting.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb  6 17:14:02 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 7 Feb 2012 02:14:02 +0100
Subject: [SEC] [SA47897] NexorONE "message" Cross-Site Scripting
	Vulnerability
Message-ID: <201202070114.q171E24u012418@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
NexorONE "message" Cross-Site Scripting Vulnerability

SECUNIA ADVISORY ID:
SA47897

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47897/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47897

RELEASE DATE:
2012-02-06

DISCUSS ADVISORY:
http://secunia.com/advisories/47897/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47897/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47897

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Vulnerability Lab has reported a vulnerability in NexorONE, which can
be exploited by malicious people to conduct cross-site scripting
attacks.

Input passed to the "message" parameter in secure/login.php is not
properly sanitised before being returned to the user. This can be
exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

SOLUTION:
Filter malicious characters and character sequences using a proxy.

PROVIDED AND/OR DISCOVERED BY:
Chokri B.A., Vulnerability Lab.

ORIGINAL ADVISORY:
http://www.vulnerability-lab.com/get_content.php?id=304

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb  6 17:46:49 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 7 Feb 2012 02:46:49 +0100
Subject: [SEC] [SA47844] Debian update for xen-qemu-dm-4.0
Message-ID: <201202070146.q171knCb002354@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Debian update for xen-qemu-dm-4.0

SECUNIA ADVISORY ID:
SA47844

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47844/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47844

RELEASE DATE:
2012-02-06

DISCUSS ADVISORY:
http://secunia.com/advisories/47844/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47844/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47844

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for xen-qemu-dm-4.0. This fixes a
vulnerability, which can be exploited by malicious, local users in a
guest virtual machine to potentially gain escalated privileges.

For more information:
SA47859

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2404-1:
http://www.debian.org/security/2012/dsa-2404

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb  6 18:10:50 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 7 Feb 2012 03:10:50 +0100
Subject: [SEC] [SA47783] Campaign Enterprise "SID" SQL Injection
	Vulnerability
Message-ID: <201202070210.q172Aoi5024644@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Campaign Enterprise "SID" SQL Injection Vulnerability

SECUNIA ADVISORY ID:
SA47783

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47783/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47783

RELEASE DATE:
2012-02-06

DISCUSS ADVISORY:
http://secunia.com/advisories/47783/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47783/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47783

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Campaign Enterprise, which can
be exploited by malicious users to conduct SQL injection attacks.

Input passed via the "SID" POST parameter to Command (when "ACTION"
is set to "ADMINISTRATION"  and "ALTCOMMAND" is set to "REFRESH" ) is
not properly sanitised before being used in a SQL query. This can be
exploited to manipulate SQL queries by injecting arbitrary SQL code.

The vulnerability is reported in version 11.0.421. Other versions may
also be affected.

SOLUTION:
Reportedly fixed in version 11.0.512.

PROVIDED AND/OR DISCOVERED BY:
Craig Freyman (@cd1zz)

ORIGINAL ADVISORY:
http://packetstormsecurity.org/files/109243/campaignenterprise-sql.txt

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb  6 18:44:30 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 7 Feb 2012 03:44:30 +0100
Subject: [SEC] [SA47920] EMC Documentum xPlore Search Result Information
	Disclosure Security Issue
Message-ID: <201202070244.q172iU6T014650@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
EMC Documentum xPlore Search Result Information Disclosure Security
Issue

SECUNIA ADVISORY ID:
SA47920

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47920/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47920

RELEASE DATE:
2012-02-06

DISCUSS ADVISORY:
http://secunia.com/advisories/47920/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47920/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47920

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A security issue has been reported in EMC Documentum xPlore, which
can be exploited by malicious users to disclose potentially sensitive
information.

The security issue is caused due to the application disclosing
certain metadata of an object in a search result to users, who do not
have "BROWSE" permission.

The security issue is reported in versions 1.0, 1.1 (prior to 1.1
P07), and 1.2.

SOLUTION:
Update to version 1.1 P07 or apply Hotfix for SRCH-7949.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
ESA-2012-010 (SRCH-7949):
http://archives.neohapsis.com/archives/bugtraq/2012-02/att-0020/ESA-2012-010.txt

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb  6 19:14:52 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 7 Feb 2012 04:14:52 +0100
Subject: [SEC] [SA47902] Ubuntu update for firefox
Message-ID: <201202070314.q173Eqsl005102@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Ubuntu update for firefox

SECUNIA ADVISORY ID:
SA47902

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47902/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47902

RELEASE DATE:
2012-02-06

DISCUSS ADVISORY:
http://secunia.com/advisories/47902/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47902/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47902

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for firefox. This fixes a security issue
and multiple vulnerabilities, which can be exploited by malicious,
local users to disclose certain sensitive information and by
malicious people to bypass certain security restrictions, disclose
certain sensitive information, and compromise a user's system.

For more information:
SA47816

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1355-1:
http://www.ubuntu.com/usn/usn-1355-1/

USN-1355-2:
http://www.ubuntu.com/usn/usn-1355-2/

USN-1355-3:
http://www.ubuntu.com/usn/usn-1355-3/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb  6 19:43:35 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 7 Feb 2012 04:43:35 +0100
Subject: [SEC] [SA47865] IBM AIX "TCP large send offload" Denial of Service
	Vulnerability
Message-ID: <201202070343.q173hZR5027404@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
IBM AIX "TCP large send offload" Denial of Service Vulnerability

SECUNIA ADVISORY ID:
SA47865

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47865/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47865

RELEASE DATE:
2012-02-06

DISCUSS ADVISORY:
http://secunia.com/advisories/47865/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47865/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47865

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in AIX, which can be exploited by
malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an error within the TCP stack when
the "TCP large send offload" option is enabled and can be exploited to
trigger a kernel panic via a specially crafted sequence of TCP
packets.

The vulnerability is reported in versions 5.3, 6.1, and 7.1.

SOLUTION:
Apply interim fixes or APARs when available (please see the vendor's
advisory for more information).

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
IBM (IV13827, IV13751, IV13820, IV14209, IV14210, IV14211):
http://aix.software.ibm.com/aix/efixes/security/large_send_advisory.asc
http://xforce.iss.net/xforce/xfdb/72562

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 10:30:02 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 7 Feb 2012 19:30:02 +0100
Subject: [SEC] [SA47857] Basic Analysis And Security Engine "ip_addr[][]"
	SQL Injection Vulnerability
Message-ID: <201202071830.q17IU2GT030366@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Basic Analysis And Security Engine "ip_addr[][]" SQL Injection
Vulnerability

SECUNIA ADVISORY ID:
SA47857

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47857/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47857

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47857/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47857/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47857

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in Basic Analysis And Security
Engine, which can be exploited by malicious people to conduct SQL
injection attacks.

Input passed via certain "ip_addr[][]" parameter array values to
base_qry_main.php (when "submit" is set to "Query") is not properly
sanitised before being used in a SQL query. This can be exploited to
manipulate SQL queries by injecting arbitrary SQL code.

The vulnerability is confirmed in version 1.4.5. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
a.kadir altan

ORIGINAL ADVISORY:
http://packetstormsecurity.org/files/109488/BASE-1.4.5-SQL-Injection.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 11:29:08 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 7 Feb 2012 20:29:08 +0100
Subject: [SEC] [SA47352] XnView JPEG2000 Image Processing Buffer Overflow
	Vulnerability
Message-ID: <201202071929.q17JT8Gb020748@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
XnView JPEG2000 Image Processing Buffer Overflow Vulnerability

SECUNIA ADVISORY ID:
SA47352

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47352/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47352

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47352/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47352/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47352

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Parvez Anwar has discovered a vulnerability in XnView, which can be
exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an error in the JPEG2000 plug-in
(Xjp2.dll) when processing the Quantization Default (QCD) marker
segment. This can be exploited to cause a heap-based buffer overflow
via a specially crafted JPEG2000 (JP2) file.

This may be related to vulnerability #3:
SA47175

Successful exploitation may allow execution of arbitrary code, but
requires tricking a user into opening a malicious file.

The vulnerability is confirmed in version 1.98.5. Other versions may
also be affected.

SOLUTION:
Do not open files from untrusted source.

PROVIDED AND/OR DISCOVERED BY:
Parvez Anwar via Secunia.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 12:29:43 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 7 Feb 2012 21:29:43 +0100
Subject: [SEC] [SA47386] Hancom Office Hanword Image Processing Integer
	Overflow Vulnerabilities
Message-ID: <201202072029.q17KThnc011153@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Hancom Office Hanword Image Processing Integer Overflow
Vulnerabilities

SECUNIA ADVISORY ID:
SA47386

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47386/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47386

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47386/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47386/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47386

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Tielei Wang has discovered two vulnerabilities in Hancom Office 2010
SE, which can be exploited by malicious people to compromise a user's
system.

1) An integer overflow error in the "ImportGR()" function within the
JPG image filter module (HncJpeg10.flt) when allocating memory can be
exploited to cause a heap-based buffer overflow via a specially
crafted JPG image within a document file using overly large image
dimension values.

2) An integer overflow error within the PNG image filter module
(HncPng10.flt) when allocating memory can be exploited to cause a
heap-based buffer overflow via a specially crafted PNG image within a
document file using overly large image dimension values.

Successful exploitation of the vulnerabilities may allow execution of
arbitrary code, but requires tricking a user into opening a malicious
file.

The vulnerabilities are confirmed in version 8.5.5. Other versions
may also be affected.

SOLUTION:
Do not open files from untrusted sources.

PROVIDED AND/OR DISCOVERED BY:
Tielei Wang via Secunia.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 13:29:30 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 7 Feb 2012 22:29:30 +0100
Subject: [SEC] [SA47362] IvanView JPEG2000 Image Processing Buffer Overflow
	Vulnerability
Message-ID: <201202072129.q17LTUip001475@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
IvanView JPEG2000 Image Processing Buffer Overflow Vulnerability

SECUNIA ADVISORY ID:
SA47362

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47362/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47362

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47362/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47362/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47362

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Parvez Anwar has discovered a vulnerability in IvanView, which can be
exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an error when processing the
Quantization Default (QCD) marker segment. This can be exploited to
cause a buffer overflow via a specially crafted JPEG2000 (JP2) file.

Successful exploitation may allow execution of arbitrary code, but
requires tricking a user into opening a malicious file.

The vulnerability is confirmed in version 1.2.15. Other versions may
also be affected.

SOLUTION:
Do not open files from untrusted sources.

PROVIDED AND/OR DISCOVERED BY:
Parvez Anwar via Secunia

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 14:26:09 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 7 Feb 2012 23:26:09 +0100
Subject: [SEC] [SA47874] Tube Ace "q" SQL Injection Vulnerability
Message-ID: <201202072226.q17MQ97P024272@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Tube Ace "q" SQL Injection Vulnerability

SECUNIA ADVISORY ID:
SA47874

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47874/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47874

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47874/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47874/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47874

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in Tube Ace, which can be
exploited by malicious people to conduct SQL injection attacks.

Input passed via the "q" parameter to mobile/search/index.php is not
properly sanitised before being used in a SQL query. This can be
exploited to manipulate SQL queries by injecting arbitrary SQL code.

The vulnerability is confirmed in version 1.6. Other versions may
also be affected.

SOLUTION:
Filter malicious characters and character sequences using a proxy.

PROVIDED AND/OR DISCOVERED BY:
Daniel Godoy

ORIGINAL ADVISORY:
http://packetstormsecurity.org/files/109485/Tube-Ace-SQL-Injection.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 14:44:07 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 7 Feb 2012 23:44:07 +0100
Subject: [SEC] [SA47871] Snort Report "dbtype" Local File Inclusion
	Vulnerability
Message-ID: <201202072244.q17Mi71u014040@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Snort Report "dbtype" Local File Inclusion Vulnerability

SECUNIA ADVISORY ID:
SA47871

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47871/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47871

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47871/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47871/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47871

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in Snort Report, which can be
exploited by malicious people to disclose potentially sensitive
information.

Input passed to the "dbtype" parameter in DB.php is not properly
verified before being used to include files. This can be exploited to
include arbitrary files from local resources via directory traversal
sequences and URL-encoded NULL bytes.

Successful exploitation requires that "register_globals" is enabled
and "magic_quotes_gpc" is disabled.

The vulnerability is confirmed in version 1.3.3. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly verified.

PROVIDED AND/OR DISCOVERED BY:
T0x!c

ORIGINAL ADVISORY:
http://packetstormsecurity.org/files/109482/Snort-Report-1.3.2-Local-File-Inclusion.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 15:11:22 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 00:11:22 +0100
Subject: [SEC] [SA47913] SUSE update for tomcat6
Message-ID: <201202072311.q17NBMQC003950@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
SUSE update for tomcat6

SECUNIA ADVISORY ID:
SA47913

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47913/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47913

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47913/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47913/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47913

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for tomcat6. This fixes multiple weaknesses
and a vulnerability, which can be exploited by malicious people to
bypass certain security restrictions.

For more information:
SA44981

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
SUSE-SU-2012:0155-1:
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00002.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 16:14:16 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 01:14:16 +0100
Subject: [SEC] [SA47900] SUSE update for kernel
Message-ID: <201202080014.q180EGT7026779@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
SUSE update for kernel

SECUNIA ADVISORY ID:
SA47900

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47900/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47900

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47900/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47900/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47900

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for the kernel. This fixes multiple
vulnerabilities, which can be exploited by malicious, local users to
cause a DoS (Denial of Service) and gain escalated privileges, by
malicious, local users in a guest virtual machine to gain escalated
privileges, and by malicious people to cause a DoS (Denial of
Service) and compromise a vulnerable system.

For more information:
SA42094
SA46584
SA46591
SA46802
SA46803
SA47296
SA47488

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
SUSE-SU-2012:0153-1:
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00000.html

SUSE-SU-2012:0153-2:
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00001.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 16:47:10 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 01:47:10 +0100
Subject: [SEC] [SA47887] ManageEngine ADManager Plus Two Cross-Site
	Scripting Vulnerabilities
Message-ID: <201202080047.q180lA5i016865@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
ManageEngine ADManager Plus Two Cross-Site Scripting Vulnerabilities

SECUNIA ADVISORY ID:
SA47887

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47887/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47887

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47887/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47887/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47887

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Gjoko Krstic has discovered two vulnerabilities in ManageEngine
ADManager Plus, which can be exploited by malicious people to conduct
cross-site scripting attacks.

Input passed to the "domainName" parameter in jsp/AddDC.jsp and
"operation" POST parameter in DomainConfig.do (when "methodToCall" is
set to "save") is not properly sanitised before being returned to the
user. This can be exploited to execute arbitrary HTML and script code
in a user's browser session in context of an affected site.

The vulnerabilities are confirmed in version 5.2 Build 5210. Other
versions may also be affected.

SOLUTION:
Filter malicious characters and character sequences using a proxy.

PROVIDED AND/OR DISCOVERED BY:
Gjoko Krstic, Zero Science Lab.

ORIGINAL ADVISORY:
ZSL-2012-5070:
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2012-5070.php

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 17:14:00 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 02:14:00 +0100
Subject: [SEC] [SA47906] Red Hat update for Red Hat Network Proxy
Message-ID: <201202080114.q181E0ma006765@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Red Hat update for Red Hat Network Proxy

SECUNIA ADVISORY ID:
SA47906

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47906/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47906

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47906/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47906/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47906

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for Red Hat Network Proxy. This fixes a
weakness, which can be exploited by malicious users to disclose
certain sensitive information.

For more information:
SA47644

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0102-1:
https://rhn.redhat.com/errata/RHSA-2012-0102.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 17:47:13 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 02:47:13 +0100
Subject: [SEC] [SA47905] Red Hat update for Red Hat Network Satellite Server
Message-ID: <201202080147.q181lDEk029140@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Red Hat update for Red Hat Network Satellite Server

SECUNIA ADVISORY ID:
SA47905

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47905/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47905

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47905/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47905/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47905

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for Red Hat Network Satellite Server.
This fixes a weakness, which can be exploited by malicious users to
disclose certain sensitive information.

For more information:
SA47644

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0101-01:
https://rhn.redhat.com/errata/RHSA-2012-0101.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 18:09:07 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 03:09:07 +0100
Subject: [SEC] [SA47909] Red Hat update for Red Hat Enterprise MRG
Message-ID: <201202080209.q182975b018953@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Red Hat update for Red Hat Enterprise MRG

SECUNIA ADVISORY ID:
SA47909

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47909/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47909

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47909/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47909/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47909

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for Red Hat Enterprise MRG. This fixes
some vulnerabilities, which can be exploited by malicious users to
potentially compromise a vulnerable system.

For more information:
SA47891

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0099-1:
https://rhn.redhat.com/errata/RHSA-2012-0099.html

RHSA-2012:0100-1:
https://rhn.redhat.com/errata/RHSA-2012-0100.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 18:24:21 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 03:24:21 +0100
Subject: [SEC] [SA47848] Apache CXF UsernameToken Policy Validation Security
	Bypass
Message-ID: <201202080224.q182OLjA008672@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Apache CXF UsernameToken Policy Validation Security Bypass

SECUNIA ADVISORY ID:
SA47848

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47848/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47848

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47848/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47848/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47848

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Apache CXF, which can be
exploited by malicious people to bypass certain security
restrictions.

The vulnerability is caused due to the framework not properly
validating the existence of a WS-Security UsernameToken within a SOAP
request, which can be exploited to bypass the UsernameToken policy and
e.g. access restricted services.

The vulnerability is reported in versions 2.4.5 and 2.5.1.

SOLUTION:
Update to version 2.4.6 or 2.5.2.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://cxf.apache.org/cve-2012-0803.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 18:44:23 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 03:44:23 +0100
Subject: [SEC] [SA47891] Condor Multiple Format String Vulnerabilities
Message-ID: <201202080244.q182iNgO030843@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Condor Multiple Format String Vulnerabilities

SECUNIA ADVISORY ID:
SA47891

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47891/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47891

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47891/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47891/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47891

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in Condor, which can be
exploited by malicious users to potentially compromise a vulnerable
system.

The vulnerabilities are caused due to format string errors within the
processing of e.g. certain log files containing format specifiers when
a user submits a job.

Successful exploitation may allow execution of arbitrary code.

The vulnerabilities are reported in versions 7.2.0 through 7.6.4.

SOLUTION:
Update to version 7.6.5.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Dan Bradley.

ORIGINAL ADVISORY:
http://research.cs.wisc.edu/condor/security/vulnerabilities/CONDOR-2012-0001.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 19:16:55 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 04:16:55 +0100
Subject: [SEC] [SA47853] OCaml Hash Collision Denial of Service Vulnerability
Message-ID: <201202080316.q183Gt5f021316@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
OCaml Hash Collision Denial of Service Vulnerability

SECUNIA ADVISORY ID:
SA47853

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47853/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47853

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47853/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47853/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47853

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in OCaml, which can be exploited by
malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an error within certain hash
functions and can be exploited to cause a hash collision resulting in
high CPU consumption.

The vulnerability is reported in version 3.12.1. Other version may
also be affected.

SOLUTION:
Currently there is no known workaround.

PROVIDED AND/OR DISCOVERED BY:
Gerd Stolpmann via a mailing list entry.

ORIGINAL ADVISORY:
http://www.mail-archive.com/caml-list at inria.fr/msg01477.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 19:44:15 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 04:44:15 +0100
Subject: [SEC] [SA47908] Mathopd Directory Traversal Vulnerability
Message-ID: <201202080344.q183iFK5011215@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Mathopd Directory Traversal Vulnerability

SECUNIA ADVISORY ID:
SA47908

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47908/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47908

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47908/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47908/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47908

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Mathopd, which can be exploited
by malicious people to disclose sensitive information.

The vulnerability is caused due to an input validation error within
the HTTP server when processing HTTP requests. This can be exploited
to access files outside of the document root via directory traversal
attacks.

Successful exploitation requires that the "*" construct for mass
virtual hosting is used.

The vulnerability is reported in versions prior to 1.5p8.

SOLUTION:
Update to version 1.5p8.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Mateusz Goik.

ORIGINAL ADVISORY:
http://www.mathopd.org/security.html
http://www.mail-archive.com/mathopd%40mathopd.org/msg00392.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 20:08:16 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 05:08:16 +0100
Subject: [SEC] [SA47896] RealPlayer Multiple Vulnerabilities
Message-ID: <201202080408.q1848GmN000991@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
RealPlayer Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47896

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47896/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47896

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47896/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47896/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47896

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in RealPlayer, which can
be exploited by malicious people to compromise a user's system.

1) An unspecified error exists in rvrender when processing RMFF
flags.

2) An unspecified error exists when processing RV20 frame size
array.

3) An unspecified error exists when processing VIDOBJ_START_CODE
segments.

4) An unspecified error exists when processing RV40 content.

5) An unspecified error exists when processing height and width
values within RV10 encoded content.

6) An unspecified error exists when processing RealAudio
coded_frame_size values.

Successful exploitation of the vulnerabilities may allow execution of
arbitrary code.

The vulnerabilities are reported in version 15.0.1.13 and prior.

SOLUTION:
Update to version 15.0.2.71.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits:
1 - 3, 6) Luigi Auriemma
4, 5) Dan Rosenberg, Virtual Security Research and Damian Put

ORIGINAL ADVISORY:
RealPlayer:
http://service.real.com/realplayer/security/02062012_player/en/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 20:22:09 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 05:22:09 +0100
Subject: [SEC] [SA47830] Ubuntu update for linux-ti-omap4
Message-ID: <201202080422.q184M9aX023138@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Ubuntu update for linux-ti-omap4

SECUNIA ADVISORY ID:
SA47830

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47830/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47830

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47830/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47830/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47830

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for linux-ti-omap4. This fixes some
vulnerabilities, which can be exploited by malicious, local user to
cause a DoS (Denial of Service) and potentially gain escalated
privileges and by malicious people to cause a DoS and compromise a
vulnerable system.

For more information:
SA47472
SA47486
SA47488

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1356-1:
http://www.ubuntu.com/usn/usn-1356-1/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb  7 20:43:18 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 05:43:18 +0100
Subject: [SEC] [SA47903] HP-UX Apache Web Server Suite Multiple Denial of
	Service Vulnerabilities
Message-ID: <201202080443.q184hI01012945@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
HP-UX Apache Web Server Suite Multiple Denial of Service
Vulnerabilities

SECUNIA ADVISORY ID:
SA47903

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47903/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47903

RELEASE DATE:
2012-02-07

DISCUSS ADVISORY:
http://secunia.com/advisories/47903/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47903/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47903

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
HP has acknowledged some vulnerabilities in HP-UX, which can be
exploited by malicious people to cause a DoS (Denial of Service).

For more information:
SA41724
SA47404
SA47411

The vulnerabilities are reported in HP-UX B.11.23 and B.11.31 running
HP-UX Apache Web Server Suite version 3.21 or earlier.

SOLUTION:
Apply patches.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
HPSBUX02741 SSRT100728:
http://h20565.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c03183543

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  8 10:29:39 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 19:29:39 +0100
Subject: [SEC] [SA47858] Horde IMP Multiple Vulnerabilities
Message-ID: <201202081829.q18ITdsk014983@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Horde IMP Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47858

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47858/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47858

RELEASE DATE:
2012-02-08

DISCUSS ADVISORY:
http://secunia.com/advisories/47858/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47858/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47858

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in Horde IMP, which can
be exploited by malicious people to conduct cross-site scripting and
script insertion attacks.

1) Input passed to the compose page and contacts popup window is not
properly sanitised before being returned to the user. This can be
exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

This vulnerability may be related to vulnerability #1 in:
SA47580

2) Certain input via IMAP mailbox names is not properly sanitised
before being used.

For more information see vulnerability #2 in:
SA47580

The vulnerabilities are reported in versions prior 4.3.11.

SOLUTION:
Update to version 4.3.11.

ORIGINAL ADVISORY:
http://lists.horde.org/archives/announce/2012/000745.html
http://cvs.horde.org/diff.php/imp/docs/CHANGES?rt=horde&r1=1.699.2.436&r2=1.699.2.440&ty=h

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  8 11:29:12 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 20:29:12 +0100
Subject: [SEC] [SA47828] Kaixin001 for Android Security Bypass Security Issue
Message-ID: <201202081929.q18JTCdE005370@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Kaixin001 for Android Security Bypass Security Issue

SECUNIA ADVISORY ID:
SA47828

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47828/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47828

RELEASE DATE:
2012-02-08

DISCUSS ADVISORY:
http://secunia.com/advisories/47828/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47828/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47828

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
AppSec has reported a security issue in Kaixin001 for Android, which
can be exploited by malicious people to bypass certain security
restrictions.

The security issue is caused due to an unspecified error and can be
exploited to disclose and manipulate certain sensitive information
like e.g. passwords, contacts, and personal information.

Successful exploitation requires that a malicious application is
installed.

The security issue is reported in versions 1.3.1 and 1.3.3. Other
versions may also be affected.

SOLUTION:
Reportedly fixed in version 1.3.4.

PROVIDED AND/OR DISCOVERED BY:
Daoyuan Wu, Xiapu Luo, and Rocky K. C. Chang, Department of
Computing, The Hong Kong Polytechnic University

ORIGINAL ADVISORY:
http://www4.comp.polyu.edu.hk/~appsec/bugs/CVE-2011-4866-vulnerability-in-Kaixin001.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  8 12:31:39 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 21:31:39 +0100
Subject: [SEC] [SA47587] GForge Advanced Server Multiple Vulnerabilities
Message-ID: <201202082031.q18KVdiP028192@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
GForge Advanced Server Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47587

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47587/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47587

RELEASE DATE:
2012-02-08

DISCUSS ADVISORY:
http://secunia.com/advisories/47587/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47587/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47587

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in GForge Advanced
Server, which can be exploited by malicious people to bypass certain
security restrictions and conduct cross-site scripting and SQL
injection attacks.

1) Input passed to the "startdate" and "enddate" parameters in
search/index.php is not properly sanitised before being returned to
the user. This can be exploited to execute arbitrary HTML and script
code in a user's browser session in context of an affected site.

2) Input passed to the "subdir" parameter in e.g.
project/test/docman/index.php (when "action" is set to
"DocmanFileAdd") is not properly sanitised before being returned to
the user. This can be exploited to execute arbitrary HTML and script
code in a user's browser session in context of an affected site.

3) Input passed to the "redirect_to" parameter in e.g.
project/test/forum/admin/index.php (when "action" is set to
"ForumEdit") is not properly sanitised before being returned to the
user. This can be exploited to execute arbitrary HTML and script code
in a user's browser session in context of an affected site.

4) Input passed to the "snippet_id" parameter in gf/snippet/index.php
(when "action" is set to "SnippetDelete") is not properly sanitised
before being returned to the user. This can be exploited to execute
arbitrary HTML and script code in a user's browser session in context
of an affected site.

5) Certain unspecified input is not properly sanitised before being
used in SQL queries. This can be exploited to manipulate SQL queries
by injecting arbitrary SQL code

6) An unspecified error can be exploited to log in to the application
without administrator approval. No further information is currently
available.

The vulnerabilities are reported in version 6.0.0. Prior versions may
also be affected.

SOLUTION:
Update to version 6.0.1.

PROVIDED AND/OR DISCOVERED BY:
1) Mateusz Krzeszowiec via Secunia.
2-6) Reported by the vendor

ORIGINAL ADVISORY:
GForge Advanced Server:
http://gforgegroup.wordpress.com/2012/02/03/gforge-as-6_0_1-release/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  8 13:29:16 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 22:29:16 +0100
Subject: [SEC] [SA47881] Flyspray Cross-Site Request Forgery Vulnerability
Message-ID: <201202082129.q18LTGl6018541@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Flyspray Cross-Site Request Forgery Vulnerability

SECUNIA ADVISORY ID:
SA47881

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47881/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47881

RELEASE DATE:
2012-02-08

DISCUSS ADVISORY:
http://secunia.com/advisories/47881/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47881/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47881

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in Flyspray, which can be
exploited by malicious people to conduct cross-site request forgery
attacks.

The application allows users to perform certain actions via HTTP
requests without performing any validity checks to verify the
requests. This can be exploited to e.g. create an arbitrary user with
administrative privileges if a logged-in administrative user visits a
malicious web site.

The vulnerability is confirmed in version 0.9.9.6. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
Vaibhav Gupta

ORIGINAL ADVISORY:
http://packetstormsecurity.org/files/109507/Flyspray-0.9.9.6-Cross-Site-Request-Forgery.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  8 14:26:42 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 23:26:42 +0100
Subject: [SEC] [SA47877] Simple Groupware "export" Cross-Site Scripting
	Vulnerability
Message-ID: <201202082226.q18MQgn4008909@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Simple Groupware "export" Cross-Site Scripting Vulnerability

SECUNIA ADVISORY ID:
SA47877

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47877/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47877

RELEASE DATE:
2012-02-08

DISCUSS ADVISORY:
http://secunia.com/advisories/47877/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47877/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47877

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Stefan Schurtz has discovered a vulnerability in Simple Groupware,
which can be exploited by malicious people to conduct cross-site
scripting attacks.

Input passed to e.g. the "export" parameter in bin/index.php is not
properly sanitised within the "sys_die()" function in
bin/core/functions.php before being returned to the user. This can be
exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

The vulnerability is confirmed in version 0.742. Prior versions may
also be affected.

SOLUTION:
Update to version 0.743.

PROVIDED AND/OR DISCOVERED BY:
Stefan Schurtz, Infoserve.

ORIGINAL ADVISORY:
Simple Groupware:
http://www.simple-groupware.de/cms/Release-0-743

Stefan Schurtz:
http://www.infoserve.de/system/files/advisories/INFOSERVE-ADV2012-01.txt

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  8 14:44:19 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 8 Feb 2012 23:44:19 +0100
Subject: [SEC] [SA47889] IBM Cognos TM1 Unspecified Cross-Site Scripting
	Vulnerability
Message-ID: <201202082244.q18MiJGB031038@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
IBM Cognos TM1 Unspecified Cross-Site Scripting Vulnerability

SECUNIA ADVISORY ID:
SA47889

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47889/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47889

RELEASE DATE:
2012-02-08

DISCUSS ADVISORY:
http://secunia.com/advisories/47889/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47889/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47889

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in IBM Cognos TM1, which can be
exploited by malicious people to conduct cross-site scripting
attacks.

Certain unspecified input is not properly sanitised before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

The vulnerability is reported in version 9.5.2.

SOLUTION:
Upgrade to version 10.1.0.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://www-01.ibm.com/support/docview.wss?uid=swg27023584
http://www.ibm.com/support/docview.wss?uid=swg1PM49009

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  8 15:11:45 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 9 Feb 2012 00:11:45 +0100
Subject: [SEC] [SA47879] Horde DIMP IMAP Mailbox Names Script Insertion
	Vulnerability
Message-ID: <201202082311.q18NBjV7020950@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Horde DIMP IMAP Mailbox Names Script Insertion Vulnerability

SECUNIA ADVISORY ID:
SA47879

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47879/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47879

RELEASE DATE:
2012-02-08

DISCUSS ADVISORY:
http://secunia.com/advisories/47879/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47879/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47879

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Horde DIMP, which can be
exploited by malicious people to conduct script insertion attacks.

Certain input passed via IMAP mailbox names is not properly sanitised
before being used.

For more information see vulnerability #2 in:
SA47580

The vulnerability is reported in versions prior to 1.1.8.

SOLUTION:
Update to version 1.1.8.

ORIGINAL ADVISORY:
http://lists.horde.org/archives/announce/2012/000746.html
http://git.horde.org/diff.php/dimp/docs/CHANGES?rt=horde&r1=1.69.2.93&r2=1.69.2.96&ty=h

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  8 16:14:43 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 9 Feb 2012 01:14:43 +0100
Subject: [SEC] [SA47892] zenon Two Code Execution Vulnerabilities
Message-ID: <201202090014.q190EhOX011403@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
zenon Two Code Execution Vulnerabilities

SECUNIA ADVISORY ID:
SA47892

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47892/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47892

RELEASE DATE:
2012-02-08

DISCUSS ADVISORY:
http://secunia.com/advisories/47892/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47892/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47892

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Two vulnerabilities have been reported in zenon, which can be
exploited by malicious people to potentially compromise a vulnerable
system.

1) An error in zenAdminSrv.exe when processing certain packets can be
exploited via a specially crafted packet sent to TCP port 50777.

2) An error in ZenSysSrv.exe when handling client connections can be
exploited by connecting and disconnecting multiple times on TCP port
1101.

Successful exploitation of the vulnerabilities may allow execution of
arbitrary code.

The vulnerabilities are reported in version 6.51 SP0.

SOLUTION:
Reportedly a patch has been released. Contact the vendor for further
information.

PROVIDED AND/OR DISCOVERED BY:
ICS-CERT credits Kuang-Chun Hung, Security Research and Service
Institute Information and Communication Security Technology Center
(ICST).

ORIGINAL ADVISORY:
ICS-CERT:
http://www.us-cert.gov/control_systems/pdf/ICSA-12-013-01.pdf

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  8 16:47:59 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 9 Feb 2012 01:47:59 +0100
Subject: [SEC] [SA47904] Horde Application Framework Email Validation
	Cross-Site Scripting Vulnerability
Message-ID: <201202090047.q190lx7f001418@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Horde Application Framework Email Validation Cross-Site Scripting
Vulnerability

SECUNIA ADVISORY ID:
SA47904

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47904/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47904

RELEASE DATE:
2012-02-08

DISCUSS ADVISORY:
http://secunia.com/advisories/47904/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47904/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47904

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Horde Application Framework,
which can be exploited by malicious people to conduct cross-site
scripting attacks.

Certain input related to the email validation is not properly
sanitised before being returned to the user. This can be exploited to
execute arbitrary HTML and script code in a user's browser session in
context of an affected site.

This may be related to vulnerability #1 in:
SA47592

The vulnerability is reported in versions prior to 3.3.13.

SOLUTION:
Update to version 3.3.13.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://lists.horde.org/archives/announce/2012/000744.html
http://git.horde.org/diff.php/horde/docs/CHANGES?rt=horde&r1=1.515.2.648&r2=1.515.2.653&ty=h

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  8 17:14:24 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 9 Feb 2012 02:14:24 +0100
Subject: [SEC] [SA47884] ISC BIND Deleted Domain Name Resolving Vulnerability
Message-ID: <201202090114.q191EOML023761@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
ISC BIND Deleted Domain Name Resolving Vulnerability

SECUNIA ADVISORY ID:
SA47884

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47884/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47884

RELEASE DATE:
2012-02-08

DISCUSS ADVISORY:
http://secunia.com/advisories/47884/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47884/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47884

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in ISC BIND, which can be exploited
by malicious people to bypass certain security restrictions.

The vulnerability is caused due to an error within the cache update
policy, which does not properly handle revoked domain names. This can
be exploited to keep the domain name resolvable after being deleted
from registration.

The vulnerability is reported in all 9.x versions.

SOLUTION:
The vendor is currently working a fix.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Haixin Duan, Tsinghua University.

ORIGINAL ADVISORY:
https://www.isc.org/software/bind/advisories/cve-2012-1033

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  8 17:47:07 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 9 Feb 2012 02:47:07 +0100
Subject: [SEC] [SA47886] Oracle Solaris Adobe Flash Player Multiple
	Vulnerabilities
Message-ID: <201202090147.q191l7Dj013754@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Oracle Solaris Adobe Flash Player Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47886

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47886/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47886

RELEASE DATE:
2012-02-08

DISCUSS ADVISORY:
http://secunia.com/advisories/47886/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47886/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47886

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Oracle has acknowledged multiple vulnerabilities in Adobe Flash
Player included in Solaris, which can be exploited by malicious
people to bypass certain security restrictions and compromise a
user's system.

For more information:
SA46818

SOLUTION:
Apply patches.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
http://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_adobe_flashplayer4

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb  8 18:10:28 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 9 Feb 2012 03:10:28 +0100
Subject: [SEC] [SA44063] Avaya Interaction Center ORB Service Buffer
	Overflow Vulnerability
Message-ID: <201202090210.q192ASiC003592@CRON-IX-2.intnet>

----------------------------------------------------------------------

SC Magazine awards the Secunia CSI a 5-Star rating
Top-level rating for ease of use, performance, documentation, support, and value for money. Read more and get a free trial here: http://secunia.com/blog/296 

----------------------------------------------------------------------

TITLE:
Avaya Interaction Center ORB Service Buffer Overflow Vulnerability

SECUNIA ADVISORY ID:
SA44063

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/44063/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=44063

RELEASE DATE:
2012-02-08

DISCUSS ADVISORY:
http://secunia.com/advisories/44063/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/44063/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=44063

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
AbdulAziz Hariri has discovered a vulnerability in Avaya Interaction
Center, which can be exploited by malicious people to compromise a
vulnerable system.

The vulnerability is caused due to an input validation error in the
vesporb.dll module within the Avaya IC ORB service when processing
certain packets. This can be exploited to cause a stack-based buffer
overflow via a specially crafted packet sent to TCP port 9001.

Successful exploitation allows execution of arbitrary code.

The vulnerability is confirmed in version 7.2.3. Other versions may
also be affected.

SOLUTION:
Update to version 7.2.4.

PROVIDED AND/OR DISCOVERED BY:
AbdulAziz Hariri via Secunia.

ORIGINAL ADVISORY:
Avaya:
https://support.avaya.com/css/P8/documents/100154707

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 10:29:56 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 9 Feb 2012 19:29:56 +0100
Subject: [SEC] [SA47836] QQPhoto for Android Security Bypass Security Issue
Message-ID: <201202091829.q19ITu0V004345@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
QQPhoto for Android Security Bypass Security Issue

SECUNIA ADVISORY ID:
SA47836

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47836/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47836

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47836/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47836/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47836

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
AppSec has reported a security issue in QQPhoto for Android, which
can be exploited by malicious people to bypass certain security
restrictions.

The security issue is caused due to an unspecified error and can be
exploited to disclose and manipulate certain sensitive information
like e.g. certain account information, draft messages, and search
keywords.

Successful exploitation requires that a malicious application is
installed.

The security issue is reported in version 0.97 released on the 29th
December 2011.

SOLUTION:
Reportedly the vendor has released updated version 0.97 on 4th
January 2012.

PROVIDED AND/OR DISCOVERED BY:
Daoyuan Wu, Xiapu Luo, and Rocky K. C. Chang, Department of
Computing, The Hong Kong Polytechnic University

ORIGINAL ADVISORY:
http://www4.comp.polyu.edu.hk/~appsec/bugs/CVE-2011-4867-vulnerability-in-QQPhoto.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 11:30:01 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 9 Feb 2012 20:30:01 +0100
Subject: [SEC] [SA47829] MobileQQ for Android Security Bypass Security Issue
Message-ID: <201202091930.q19JU1re027135@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
MobileQQ for Android Security Bypass Security Issue

SECUNIA ADVISORY ID:
SA47829

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47829/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47829

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47829/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47829/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47829

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
AppSec has reported a security issue in MobileQQ for Android, which
can be exploited by malicious people to bypass certain security
restrictions.

The security issue is caused due to an unspecified error and can be
exploited to disclose and manipulate certain sensitive information
like e.g. certain QQ account information, friends, and messages.

Successful exploitation requires that a malicious application is
installed.

The security issue is reported in version 2.2.

SOLUTION:
Reportedly fixed in version 2.3.

PROVIDED AND/OR DISCOVERED BY:
Daoyuan Wu, Xiapu Luo, and Rocky K. C. Chang, Department of
Computing, The Hong Kong Polytechnic University

ORIGINAL ADVISORY:
http://www4.comp.polyu.edu.hk/~appsec/bugs/CVE-2011-4864-vulnerability-in-MobileQQ.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 12:29:58 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 9 Feb 2012 21:29:58 +0100
Subject: [SEC] [SA47477] PhotoLine JPEG2000 Image Processing Buffer Overflow
	Vulnerability
Message-ID: <201202092029.q19KTw2m017523@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
PhotoLine JPEG2000 Image Processing Buffer Overflow Vulnerability

SECUNIA ADVISORY ID:
SA47477

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47477/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47477

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47477/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47477/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47477

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Parvez Anwar has discovered a vulnerability in PhotoLine, which can
be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an error when processing the
Quantization Default (QCD) marker segment. This can be exploited to
cause a heap-based buffer overflow via a specially crafted JPEG2000
(JP2) file.

Successful exploitation may allow execution of arbitrary code, but
requires tricking a user into opening a malicious file.

The vulnerability is confirmed in version 17.01. Other versions may
also be affected.

SOLUTION:
Update to version 17.02.

PROVIDED AND/OR DISCOVERED BY:
Parvez Anwar via Secunia.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 13:29:51 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 9 Feb 2012 22:29:51 +0100
Subject: [SEC] [SA47928] Red Hat update for mysql
Message-ID: <201202092129.q19LTp7q007923@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for mysql

SECUNIA ADVISORY ID:
SA47928

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47928/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47928

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47928/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47928/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47928

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for mysql. This fixes multiple
vulnerabilities, which can be exploited by malicious, local users to
gain knowledge of sensitive information and manipulate certain data,
by malicious users to gain knowledge of sensitive information,
manipulate certain data, or cause a DoS (Denial of Service), or by
malicious people to cause a DoS.

For more information:
SA47586

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0105-01:
https://rhn.redhat.com/errata/RHSA-2012-0105.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 14:27:21 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 9 Feb 2012 23:27:21 +0100
Subject: [SEC] [SA47944] HP System Management Homepage SSL/TLS
	Initialization Vector Selection Weakness
Message-ID: <201202092227.q19MRLkr030678@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
HP System Management Homepage SSL/TLS Initialization Vector Selection
Weakness

SECUNIA ADVISORY ID:
SA47944

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47944/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47944

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47944/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47944/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47944

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A weakness has been reported in HP System Management Homepage, which
can be exploited by malicious people to disclose potentially
sensitive information and hijack a user's session.

A design error exists within the implementation of SSL 3.0 and TLS
1.0 protocols.

For more information:
SA46168

The weakness is reported in all versions running on Linux and
Windows.

SOLUTION:
Edit configuration to prioritise RC4 encryption over CBC encryption
(default configuration) or ensure that clients use an updated browser
(please see the vendor's advisory for more information).

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
HPSBMU02742 SSRT100740:
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03164351

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 14:44:25 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 9 Feb 2012 23:44:25 +0100
Subject: [SEC] [SA47880] Debian update for icedove
Message-ID: <201202092244.q19MiPY5020423@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Debian update for icedove

SECUNIA ADVISORY ID:
SA47880

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47880/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47880

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47880/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47880/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47880

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for icedove. This fixes a weakness and
multiple vulnerabilities, which can be exploited by malicious people
to disclose certain sensitive information and compromise a user's
system.

For more information:
SA47839

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2406-1:
http://lists.debian.org/debian-security-announce/2012/msg00033.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 15:12:03 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 00:12:03 +0100
Subject: [SEC] [SA47930] Red Hat update for squirrelmail
Message-ID: <201202092312.q19NC3sc010340@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for squirrelmail

SECUNIA ADVISORY ID:
SA47930

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47930/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47930

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47930/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47930/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47930

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for squirrelmail. This fixes some
weaknesses and multiple vulnerabilities, which can be exploited by
malicious users to disclose certain system information and conduct
script insertion attacks and by malicious people to conduct script
insertion and cross-site scripting attacks, bypass certain security
restrictions, or cause a DoS (Denial of Service).

For more information:
SA40307
SA45197

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0103-01:
https://rhn.redhat.com/errata/RHSA-2012-0103.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 16:11:09 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 01:11:09 +0100
Subject: [SEC] [SA47931] Drupal Revisioning Module Revision Tags Script
	Insertion Vulnerability
Message-ID: <201202100011.q1A0B9u9000666@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Drupal Revisioning Module Revision Tags Script Insertion
Vulnerability

SECUNIA ADVISORY ID:
SA47931

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47931/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47931

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47931/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47931/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47931

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in the Revisioning module for
Drupal, which can be exploited by malicious users to conduct script
insertion attacks.

Input passed via the tags of submitted revisions is not properly
sanitised before being used. This can be exploited to insert
arbitrary HTML and script code, which will be executed in a user's
browser session in context of an affected site when the malicious
data is being viewed.

Successful exploitation requires "administer taxonomy" privileges or
that a vocabulary has been defined with the "Tags" setting enabled.

The vulnerability is reported in versions prior to 6.x-3.14.

SOLUTION:
Update to version 6.x-3.14.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Justin C. Klein Keane.

ORIGINAL ADVISORY:
SA-CONTRIB-2012-018:
http://drupal.org/node/1433550

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 16:47:15 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 01:47:15 +0100
Subject: [SEC] [SA47869] Debian update for cvs
Message-ID: <201202100047.q1A0lFOJ023255@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Debian update for cvs

SECUNIA ADVISORY ID:
SA47869

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47869/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47869

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47869/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47869/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47869

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for cvs. This fixes a vulnerability,
which can be exploited by malicious people to compromise a user's
system.

The vulnerability is caused due to a boundary error within the
"proxy_connect()" function (src/client.c) when reading the HTTP
version response from a proxy server and can be exploited to cause a
heap-based buffer overflow.

Successful exploitation may allow execution of arbitrary code, but
requires tricking the user into connecting to a malicious proxy
server.

SOLUTION:
Apply updated packages via the apt-get package manager.

PROVIDED AND/OR DISCOVERED BY:
Petr Sklenar in a Red Hat bug.

ORIGINAL ADVISORY:
DSA-2407-1:
http://lists.debian.org/debian-security-announce/2012/msg00034.html

https://bugzilla.redhat.com/show_bug.cgi?id=773699

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 17:15:05 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 02:15:05 +0100
Subject: [SEC] [SA47766] freelancerKit Script Insertion and SQL Injection
	Vulnerabilities
Message-ID: <201202100115.q1A1F5l8013167@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
freelancerKit Script Insertion and SQL Injection Vulnerabilities

SECUNIA ADVISORY ID:
SA47766

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47766/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47766

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47766/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47766/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47766

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Vulnerability Lab has reported multiple vulnerabilities in
freelancerKit, which can be exploited by malicious users to conduct
script insertion and SQL injection attacks.

1) Input passed via the "ticket" parameter to tickets.php when
creating a ticket is not properly sanitised before being used. This
can be exploited to insert arbitrary HTML and script code, which will
be executed in a user's browser session in context of an affected site
when the malicious data is being viewed.

2) Input passed via the "title" parameter to notes.php when creating
a note is not properly sanitised before being used. This can be
exploited to insert arbitrary HTML and script code, which will be
executed in a user's browser session in context of an affected site
when the malicious data is being viewed.

3) Input passed via the "task" parameter to todo.php when creating a
todo is not properly sanitised before being used. This can be
exploited to insert arbitrary HTML and script code, which will be
executed in a user's browser session in context of an affected site
when the malicious data is being viewed.

4) Certain unspecified input passed to the notes and tickets
components is not properly sanitised before being used in a SQL
query. This can be exploited to manipulate SQL queries by injecting
arbitrary SQL code.

SOLUTION:
Filter malicious characters and character sequences using a proxy.

PROVIDED AND/OR DISCOVERED BY:
Chokri B.A., Vulnerability Lab.

ORIGINAL ADVISORY:
http://www.vulnerability-lab.com/get_content.php?id=402

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 17:47:02 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 02:47:02 +0100
Subject: [SEC] [SA47838] 360 MobileSafe for Android Security Bypass Security
	Issue
Message-ID: <201202100147.q1A1l2Ev003102@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
360 MobileSafe for Android Security Bypass Security Issue

SECUNIA ADVISORY ID:
SA47838

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47838/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47838

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47838/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47838/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47838

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
AppSec has reported a security issue in 360 MobileSafe for Android,
which can be exploited by malicious people to bypass certain security
restrictions.

The security issue is caused due to an unspecified error and can be
exploited to disclose and manipulate certain sensitive information
like e.g. user's blacklists, certain SMS data, contacts information,
and call logs.

Successful exploitation requires that a malicious application is
installed.

The security issue is reported in versions 2.1.0 and 2.2.0. Other
versions may also be affected.

SOLUTION:
Reportedly fixed in version 2.3.0.

PROVIDED AND/OR DISCOVERED BY:
Daoyuan Wu, Xiapu Luo, and Rocky K. C. Chang, Department of
Computing, The Hong Kong Polytechnic University

ORIGINAL ADVISORY:
http://www4.comp.polyu.edu.hk/~appsec/bugs/CVE-2011-4769-vulnerability-in-360MobileSafe.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 18:11:43 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 03:11:43 +0100
Subject: [SEC] [SA47875] zenphoto Multiple Vulnerabilities
Message-ID: <201202100211.q1A2Bh1e025395@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
zenphoto Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47875

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47875/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47875

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47875/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47875/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47875

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
High-Tech Bridge SA has discovered multiple vulnerabilities in
zenphoto, which can be exploited by malicious users to conduct SQL
injection attacks and by malicious people to conduct cross-site
scripting attacks and compromise a vulnerable system.

1) Input passed via the "viewer_size_image_saved" cookie value when
viewing uploaded images is not properly sanitised before being used
in an "eval()" call. This can be exploited to execute arbitrary PHP
code.

Successful exploitation requires that the "viewer_size_image" plugin
is enabled.

2) Input passed via the "sortableList" POST parameter to
zp-core/admin-albumsort.php (when "XSRFToken" is valid) is not
properly sanitised before being used in a SQL query. This can be
exploited to manipulate SQL queries by injecting arbitrary SQL code.

Successful exploitation requires "Manage all albums" permissions or
that at least one album is selected in the "Managed albums" list.

3) Input passed to the "msg" parameter in zp-core/admin.php (when
"action" is set to "external") and "album" parameter in
zp-core/admin-edit.php (when "tab" is set to "imageinfo") is not
properly sanitised before being returned to the user. This can be
exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

4) Input passed via the URL to e.g. zp-core/admin.php is not properly
sanitised before being returned to the user. This can be exploited to
execute arbitrary HTML and script code in a user's browser session in
context of an affected site.

The vulnerabilities are confirmed in version 1.4.2. Prior versions
may also be affected.

SOLUTION:
Update to version 1.4.2.1.

PROVIDED AND/OR DISCOVERED BY:
High-Tech Bridge SA

ORIGINAL ADVISORY:
zenphoto:
http://www.zenphoto.org/news/zenphoto-1.4.2.1
http://www.zenphoto.org/trac/changeset/8994
http://www.zenphoto.org/trac/changeset/8995

HTB23070:
https://www.htbridge.ch/advisory/HTB23070

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 18:44:35 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 03:44:35 +0100
Subject: [SEC] [SA47867] Novell iPrint Client Multiple Vulnerabilities
Message-ID: <201202100244.q1A2iZ0A015378@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Novell iPrint Client Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47867

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47867/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47867

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47867/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47867/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47867

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in Novell iPrint Client,
which can be exploited by malicious people to compromise a user's
system.

1) An unspecified error exists in nipplib.dll within the
"GetDriverSettings()" function.

2) An unspecified error exists within the "GetPrinterURLList2()"
function of the Novell iPrint Client ActiveX Control.

3) An unspecified error exists in nipplib.dll when parsing the
"client-filename" parameter.

Successful exploitation of the vulnerabilities may allow execution of
arbitrary code.

The vulnerabilities are reported in versions prior to 5.78.

SOLUTION:
Update to version 5.78.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits:
1) gwslabs.com via ZDI
2) Brian Gorenc via ZDI
3) Ivan Rodriguez Almuina via ZDI

ORIGINAL ADVISORY:
http://www.novell.com/support/viewContent.do?externalId=7008708

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 19:13:23 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 04:13:23 +0100
Subject: [SEC] [SA47862] Apache APR Web Form Hash Collision Denial of
	Service Vulnerability
Message-ID: <201202100313.q1A3DNM0005832@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Apache APR Web Form Hash Collision Denial of Service Vulnerability

SECUNIA ADVISORY ID:
SA47862

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47862/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47862

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47862/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47862/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47862

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Apache APR, which can be
exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an error within a hash generation
function when hashing form posts and updating a hash table. This can
be exploited to cause a hash collision resulting in high CPU
consumption via a specially crafted form sent in a HTTP POST
request.

The vulnerability is reported in version 1.4.5. Other versions may
also be affected.

SOLUTION:
Currently there is no known workaround.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://www.mail-archive.com/dev%40apr.apache.org/msg24439.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 19:44:31 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 04:44:31 +0100
Subject: [SEC] [SA47921] SciTools Understand Insecure Library Loading
	Vulnerability
Message-ID: <201202100344.q1A3iVNZ028176@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SciTools Understand Insecure Library Loading Vulnerability

SECUNIA ADVISORY ID:
SA47921

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47921/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47921

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47921/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47921/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47921

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Zero Science Lab has reported a vulnerability in SciTools Understand,
which can be exploited by malicious people to compromise a user's
system.

The vulnerability is caused due to the application loading libraries
(e.g. wintab32.dll) in an insecure manner. This can be exploited to
load arbitrary libraries by tricking a user into e.g. opening an
Understand Project (.UDB) file located on a remote WebDAV or SMB
share.

The vulnerability is reported in version 2.6 build 598. Other
versions may also be affected.

SOLUTION:
Update to version 2.6 build 600.

PROVIDED AND/OR DISCOVERED BY:
Gjoko Krstic, Zero Science Lab.

ORIGINAL ADVISORY:
ZSL-2012-5071:
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2012-5071.php

SciTools:
http://www.scitools.com/support/buildLogs.php

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 20:09:13 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 05:09:13 +0100
Subject: [SEC] [SA47883] CA Total Defense Suite UNC Management Information
	Disclosure and SQL Injection
Message-ID: <201202100409.q1A49DrP018042@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
CA Total Defense Suite UNC Management Information Disclosure and SQL
Injection

SECUNIA ADVISORY ID:
SA47883

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47883/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47883

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47883/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47883/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47883

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in CA Total Defense,
which can be exploited by malicious people to disclose potentially
sensitive information and conduct SQL injection attacks.

1) Input passed via SOAP requests to management.asmx is not properly
sanitised before being used in a SQL query for the ExportReport and
uncsp_ViewReportsHomepage stored procedures. This can be exploited to
manipulate SQL queries by injecting arbitrary SQL code.

2) An error within the App_Code.dll service can be exploited to
disclose encrypted unsalted domain credentials.

The vulnerabilities are reported in versions prior to R12 SE3 (Build
831).

SOLUTION:
Update to version R12 SE3 (Build 831).

PROVIDED AND/OR DISCOVERED BY:
Andrea Micalizzi aka rgod via ZDI.

ORIGINAL ADVISORY:
http://www.zerodayinitiative.com/advisories/ZDI-12-022/
http://www.zerodayinitiative.com/advisories/ZDI-12-023/
http://www.zerodayinitiative.com/advisories/ZDI-12-024/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 20:23:56 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 05:23:56 +0100
Subject: [SEC] [SA47933] Wonderware HMI Reports Cross-Site Scripting and
	Code Execution Vulnerabilities
Message-ID: <201202100423.q1A4Nugo007751@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Wonderware HMI Reports Cross-Site Scripting and Code Execution
Vulnerabilities

SECUNIA ADVISORY ID:
SA47933

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47933/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47933

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47933/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47933/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47933

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Two vulnerabilities have been reported in Wonderware HMI Reports,
which can be exploited by malicious people to conduct cross-site
scripting attacks and compromise a user's system.

For more information:
SA47742

The vulnerabilities are reported in version 3.42.835.0304 and prior.

SOLUTION:
Reportedly a patch has been released. Contact the vendor for further
information.

PROVIDED AND/OR DISCOVERED BY:
ICS-CERT credits Billy Rios and Terry McCorkle.

ORIGINAL ADVISORY:
ICS-CERT:
http://www.us-cert.gov/control_systems/pdf/ICSA-12-039-01.pdf

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 20:45:07 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 05:45:07 +0100
Subject: [SEC] [SA47938] Google Chrome Multiple Vulnerabilities
Message-ID: <201202100445.q1A4j7sI029942@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Google Chrome Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47938

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47938/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47938

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47938/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47938/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47938

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in Google Chrome, where
some have an unknown impact and others can be exploited by malicious
people to bypass certain security restrictions, manipulate certain
data, and compromise a user's system.

1) An unspecified error exists within clipboard monitoring after a
paste event.

2) An unspecified error exists related to excessive database usage.

3) An unspecified error exists when aborting an IndexDB transaction.

4) An error exists when handling sandboxed origins inside
extensions.

5) A use-after-free error exists in PDF garbage collection.

6) A type cast error exists when handling column spans.

7) An error within locale handling can be exploited to cause a buffer
overflow.

8) An error within audio decoding can be exploited to cause an
out-of-bounds read.

9) An unspecified error exists due to a race condition after a crash
of a utility process.

10) An error within path clipping can be exploited to cause an
out-of-bounds read.

11) An error within PDF fax image handling can be exploited to cause
an out-of-bounds read.

12) An unspecified error when handling drag and drop may lead to URL
bar confusion.

13) An unspecified error exists within a signature check.

14) A use-after-free error exists within stylesheet error handling.

15) An unspecified error exists when handling unusual certificates.

16) A use-after-free error exists within CSS handling.

17) A use-after-free error exists within SVG layout handling.

18) An error within libxslt can be exploited to cause an
out-of-bounds read.

19) A use-after-free error exists when handling mousemove events.

20) An error within shader translator can be exploited to cause an
out-of-bounds read.

SOLUTION:
Upgrade to version 17.0.963.46.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits:
1) Daniel Cheng, Chromium development community
2) Collin Payne
3) David Grogan, Chromium development community
4) Devdatta Akhawe, UC Berkeley
5, 7, 8, 10, 14, 18) Aki Helin, OUSPG
6) miaubiz
9) Shawn Goertzen
11) Atte Kettunen, OUSPG
12) Code Audit Labs, VulnHunt.com
13) Slawomir Blazek
15) Ben Carrillo
16, 17, 19) Arthur Gerkis
20) Inferno, Google Chrome Security Team

ORIGINAL ADVISORY:
http://googlechromereleases.blogspot.com/2012/02/stable-channel-update.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 21:09:41 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 06:09:41 +0100
Subject: [SEC] [SA47939] Ubuntu update for thunderbird
Message-ID: <201202100509.q1A59fm0019808@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for thunderbird

SECUNIA ADVISORY ID:
SA47939

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47939/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47939

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47939/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47939/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47939

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for thunderbird. This fixes a weakness
and multiple vulnerabilities, which can be exploited by malicious
people to disclose certain sensitive information and compromise a
user's system.

For more information:
SA47839

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1350-1:
http://www.ubuntu.com/usn/usn-1350-1/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 21:23:39 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 06:23:39 +0100
Subject: [SEC] [SA47940] Ubuntu update for xulrunnner
Message-ID: <201202100523.q1A5Ndpr009515@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for xulrunnner

SECUNIA ADVISORY ID:
SA47940

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47940/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47940

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47940/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47940/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47940

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for xulrunnner. This fixes a weakness and
multiple vulnerabilities, which can be exploited by malicious people
to disclose certain sensitive information and compromise a user's
system.

For more information:
SA47839

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1353-1:
http://www.ubuntu.com/usn/usn-1353-1/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb  9 21:43:52 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 06:43:52 +0100
Subject: [SEC] [SA47894] MySQL Unspecified Code Execution Vulnerability
Message-ID: <201202100543.q1A5hqVi031689@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
MySQL Unspecified Code Execution Vulnerability

SECUNIA ADVISORY ID:
SA47894

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47894/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47894

RELEASE DATE:
2012-02-09

DISCUSS ADVISORY:
http://secunia.com/advisories/47894/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47894/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47894

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in MySQL, which can be exploited by
malicious people to compromise a vulnerable system.

The vulnerability is caused due to an unspecified error. No further
information is currently available.

Successful exploitation allows execution of arbitrary code.

The vulnerability is reported in version 5.5.20. Other versions may
also be affected.

SOLUTION:
An effective workaround cannot currently be provided due to limited
vulnerability details.

PROVIDED AND/OR DISCOVERED BY:
Reportedly a module for VulnDisco Pack.

ORIGINAL ADVISORY:
https://lists.immunityinc.com/pipermail/canvas/2012-February/000011.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 10:41:46 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 19:41:46 +0100
Subject: [SEC] [SA47967] Red Hat update for kernel
Message-ID: <201202101841.q1AIfk0D000524@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for kernel

SECUNIA ADVISORY ID:
SA47967

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47967/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47967

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47967/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47967/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47967

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for the kernel. This fixes some
vulnerabilities, which can be exploited by malicious, local users and
malicious, local users in a guest virtual machine to gain escalated
privileges and by malicious, local users and malicious people to
cause a DoS (Denial of Service).

For more information:
SA46489
SA47296
SA47472

1) An error within the "exit_robust_list()" function does not
properly clear the "robust_list" before making a call to the
"execve()" function, which can be exploited to gain escalated
privileges.

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
1) Petr Matousek in a Red Hat bug.

ORIGINAL ADVISORY:
RHSA-2012:0107-1:
https://rhn.redhat.com/errata/RHSA-2012-0107.html

https://bugzilla.redhat.com/show_bug.cgi?id=771764

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 11:29:46 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 20:29:46 +0100
Subject: [SEC] [SA47943] Drupal Finder Module Multiple Vulnerabilities
Message-ID: <201202101929.q1AJTj4V023204@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Drupal Finder Module Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47943

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47943/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47943

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47943/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47943/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47943

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in the Finder module for
Drupal, which can be exploited by malicious users to compromise a
vulnerable system and by malicious people to conduct script insertion
attacks.

For more information:
SA47915
SA47941

The vulnerabilities are reported in versions 7.x-1.6 and prior.

SOLUTION:
The script insertion vulnerabilities are fixed in version
7.x-2.0-alpha8. Edit the source code to ensure that input is properly
sanitised.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Justin C. Klein-Keane.

ORIGINAL ADVISORY:
SA-CONTRIB-2012-017:
http://drupal.org/node/1432970

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 12:29:40 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 21:29:40 +0100
Subject: [SEC] [SA47915] Drupal Finder Module Finder Import Code Execution
	Vulnerability
Message-ID: <201202102029.q1AKTegW013607@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Drupal Finder Module Finder Import Code Execution Vulnerability

SECUNIA ADVISORY ID:
SA47915

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47915/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47915

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47915/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47915/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47915

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in the Finder module for Drupal,
which can be exploited by malicious users to compromise a vulnerable
system.

Input passed via the finder import functionality is not properly
verified in the "finder_import" function in
modules/finder/finder.module before being used in an "eval()" call.
This can be exploited to execute arbitrary PHP code.

Successful exploitation requires "administer finder" privileges.

The vulnerability is confirmed in version 6.x-1.26. Other versions
may also be affected.

SOLUTION:
Edit the source code to ensure that input is properly verified.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Justin C. Klein-Keane.

ORIGINAL ADVISORY:
SA-CONTRIB-2012-017:
http://drupal.org/node/1432970

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 13:29:32 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 22:29:32 +0100
Subject: [SEC] [SA47941] Drupal Finder Module Multiple Script Insertion
	Vulnerabilities
Message-ID: <201202102129.q1ALTWbv004004@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Drupal Finder Module Multiple Script Insertion Vulnerabilities

SECUNIA ADVISORY ID:
SA47941

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47941/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47941

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47941/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47941/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47941

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in the Finder module for
Drupal, which can be exploited by malicious people to conduct script
insertion attacks.

Certain unspecified input related to the autocomplete, checkbox, and
radio button fields is not properly sanitised before being used. This
can be exploited to insert arbitrary HTML and script code, which will
be executed in a user's browser session in context of an affected
site when the malicious data is being viewed.

The vulnerabilities are reported in versions prior to 6.x-1.26.

SOLUTION:
Update to version 6.x-1.26.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Justin C. Klein-Keane.

ORIGINAL ADVISORY:
SA-CONTRIB-2012-017:
http://drupal.org/node/1432970

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 14:27:01 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 23:27:01 +0100
Subject: [SEC] [SA47878] Ubuntu update for php5
Message-ID: <201202102227.q1AMR1cd026757@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for php5

SECUNIA ADVISORY ID:
SA47878

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47878/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47878

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47878/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47878/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47878

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for php5. This fixes a security issue and
multiple vulnerabilities, which can be exploited by malicious people
to bypass certain security restrictions, cause a DoS (Denial of
Service), and compromise a vulnerable system.

For more information:
SA43449
SA46107
SA47404
SA47806

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1358-1:
http://www.ubuntu.com/usn/usn-1358-1

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 14:46:03 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 10 Feb 2012 23:46:03 +0100
Subject: [SEC] [SA47966] RabidHamster R2 Extreme File Disclosure and Buffer
	Overflow Vulnerabilities
Message-ID: <201202102246.q1AMk395016529@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
RabidHamster R2 Extreme File Disclosure and Buffer Overflow
Vulnerabilities

SECUNIA ADVISORY ID:
SA47966

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47966/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47966

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47966/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47966/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47966

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Luigi Auriemma has discovered two vulnerabilities in RabidHamster R2
Extreme, which can be exploited by malicious users to disclose
potentially sensitive information and compromise a vulnerable
system.

1) A boundary error when processing the "File" command can be
exploited to cause a stack-based buffer overflow via an overly long
parameter sent to TCP port 23.

Successful exploitation of this vulnerability allows execution of
arbitrary code, but requires the plugin to be enabled and running
(off by default).

2) Input passed to the "File" command within the telnet server is not
properly verified before being used to read files and can be exploited
to disclose arbitrary files via directory traversal attacks.

NOTE: Additionally, a weakness exists within the telnet server's
PIN-based authentication mechanism, which allows to trivially brute
force a valid PIN number.

The vulnerabilities are confirmed in version 1.65 Professional. Other
versions may also be affected.

SOLUTION:
Restrict access to trusted hosts only.

PROVIDED AND/OR DISCOVERED BY:
Luigi Auriemma

ORIGINAL ADVISORY:
http://aluigi.altervista.org/adv/r2_1-adv.txt

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 15:11:32 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 00:11:32 +0100
Subject: [SEC] [SA47947] Gazie Cross-Site Request Forgery Vulnerability
Message-ID: <201202102311.q1ANBW8j006417@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Gazie Cross-Site Request Forgery Vulnerability

SECUNIA ADVISORY ID:
SA47947

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47947/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47947

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47947/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47947/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47947

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in Gazie, which can be exploited
by malicious people to conduct cross-site request forgery attacks.

The application's web interface allows users to perform certain
actions via HTTP requests without performing any validity checks to
verify the requests. This can be exploited to e.g. change the
administrator's password by tricking a logged in administrator into
visiting a malicious web site.

The vulnerability is confirmed in version 5.20. Other versions may
also be affected.

SOLUTION:
Do not browse untrusted websites or follow untrusted links while
logged in to the application.

PROVIDED AND/OR DISCOVERED BY:
giudinvx.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 16:13:35 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 01:13:35 +0100
Subject: [SEC] [SA47882] MyBB Multiple Vulnerabilities
Message-ID: <201202110013.q1B0DZZh029246@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
MyBB Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47882

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47882/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47882

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47882/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47882/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47882

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in MyBB, which can be
exploited by malicious people to conduct cross-site scripting and
cross-site request forgery attacks.

1) The application allows users to perform certain actions via HTTP
requests without performing proper validity checks to verify the
requests. This can be exploited to e.g. log-out an administrative
user,  clear a stored password, remove a known buddy, approve join
requests, enable or disable group promotions, perform certain actions
related to "ACP Edit User", and activate a user when a logged-in user
visits a specially crafted web page.

2) Certain input via moving a calendar event is not properly
sanitised before being returned to the user. This can be exploited to
execute arbitrary HTML and script code in a user's browser session in
context of an affected site.

3) Certain input via the Akismet plugin is not properly sanitised
before being returned to the user. This can be exploited to execute
arbitrary HTML and script code in a user's browser session in context
of an affected site.

4) Certain input via forum subscriptions within the user control
panel is not properly sanitised before being returned to the user.
This can be exploited to execute arbitrary HTML and script code in a
user's browser session in context of an affected site.

5) Certain input via moderator logs within the moderator control
panel is not properly sanitised before being returned to the user.
This can be exploited to execute arbitrary HTML and script code in a
user's browser session in context of an affected site.

6) Certain input via edit post is not properly sanitised before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

7) Certain input via editing announcements within the moderator
control panel is not properly sanitised before being returned to the
user. This can be exploited to execute arbitrary HTML and script code
in a user's browser session in context of an affected site.

The vulnerabilities are reported in versions prior to 1.6.6.

SOLUTION:
Update to version 1.6.6.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Nathan Malcolm, SQA Team

ORIGINAL ADVISORY:
http://blog.mybb.com/2012/02/10/mybb-1-6-6-security-release/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 16:47:03 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 01:47:03 +0100
Subject: [SEC] [SA47918] GLPI "sub_type" File Inclusion Vulnerability
Message-ID: <201202110047.q1B0l33R019347@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
GLPI "sub_type" File Inclusion Vulnerability

SECUNIA ADVISORY ID:
SA47918

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47918/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47918

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47918/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47918/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47918

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Emilien Girault has discovered a vulnerability in GLPI, which can be
exploited by malicious users to compromise a vulnerable system.

Input passed to the "sub_type" parameter in front/popup.php (when
"popup" is set to "add_ruleparameter") is not properly verified
before being used to include files. This can be exploited to include
arbitrary files from local or external resources.

The vulnerability is confirmed in version 0.80.61. Prior versions may
also be affected.

SOLUTION:
Update to version 0.80.7.

PROVIDED AND/OR DISCOVERED BY:
Emilien Girault.

ORIGINAL ADVISORY:
GLPI:
https://forge.indepnet.net/issues/3338
https://forge.indepnet.net/projects/glpi/repository/revisions/17457/diff/branches/0.80-bugfixes/front/popup.php

Emilien Girault:
http://archives.neohapsis.com/archives/fulldisclosure/2012-02/0158.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 17:14:15 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 02:14:15 +0100
Subject: [SEC] [SA47942] XRay CMS "username" SQL Injection Vulnerability
Message-ID: <201202110114.q1B1EFMm009253@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
XRay CMS "username" SQL Injection Vulnerability

SECUNIA ADVISORY ID:
SA47942

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47942/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47942

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47942/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47942/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47942

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in XRay CMS, which can be
exploited by malicious people to conduct SQL injection attacks.

Input passed via the "username" parameter to data/login2.php is not
properly sanitised before being used in SQL queries. This can be
exploited to manipulate SQL queries by injecting arbitrary SQL code.

NOTE: This can further be exploited to bypass the authentication
mechanism.

Successful exploitation of this vulnerability requires that
"magic_quotes_gpc" is disabled.

The vulnerability is confirmed in version 1.1.1. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
chap0.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 17:47:17 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 02:47:17 +0100
Subject: [SEC] [SA47925] Ubuntu update for openssl
Message-ID: <201202110147.q1B1lHOg031634@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for openssl

SECUNIA ADVISORY ID:
SA47925

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47925/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47925

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47925/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47925/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47925

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for openssl. This fixes multiple
vulnerabilities, which can be exploited by malicious people to
disclose sensitive information, cause a DoS (Denial of Service), and
potentially compromise an application using the library.

For more information:
SA30405
SA44572
SA45914
SA47426
SA47631

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1357-1:
http://www.ubuntu.com/usn/usn-1357-1/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 18:10:21 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 03:10:21 +0100
Subject: [SEC] [SA47986] SUSE update for lighttpd
Message-ID: <201202110210.q1B2ALNJ021471@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for lighttpd

SECUNIA ADVISORY ID:
SA47986

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47986/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47986

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47986/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47986/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47986

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for lighttpd. This fixes a vulnerability,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

For more information:
SA46847

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0240-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00030.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 18:23:51 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 03:23:51 +0100
Subject: [SEC] [SA47988] SUSE update for curl
Message-ID: <201202110223.q1B2NpNO011177@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for curl

SECUNIA ADVISORY ID:
SA47988

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47988/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47988

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47988/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47988/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47988

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for curl. This fixes a weakness and two
vulnerabilities, which can be exploited by malicious people to bypass
certain security restrictions, disclose potentially sensitive
information, hijack a user's session, and manipulate certain data.

For more information:
SA42473
SA47690

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0229-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00032.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 18:44:20 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 03:44:20 +0100
Subject: [SEC] [SA47978] SUSE update for apache2
Message-ID: <201202110244.q1B2iKn9000901@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for apache2

SECUNIA ADVISORY ID:
SA47978

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47978/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47978

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47978/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47978/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47978

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for apache2. This fixes two weaknesses and
a vulnerability, which can be exploited by malicious, local users to
gain escalated privileges and by malicious people to bypass certain
security restrictions.

For more information:
SA45793
SA46288
SA46987

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0212-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00014.html

openSUSE-SU-2012:0248-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00044.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 19:16:54 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 04:16:54 +0100
Subject: [SEC] [SA47934] Pluck Cross-Site Request Forgery Vulnerability
Message-ID: <201202110316.q1B3GsIr023836@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Pluck Cross-Site Request Forgery Vulnerability

SECUNIA ADVISORY ID:
SA47934

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47934/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47934

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47934/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47934/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47934

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in Pluck, which can be exploited
by malicious people to conduct cross-site request forgery attacks.

The application allows users to perform certain actions via HTTP
requests without performing any validity checks to verify the
requests. This can be exploited to e.g. edit the content of arbitrary
pages by tricking the administrator into visiting a malicious web
site.

This can further be exploited to conduct script insertion attacks by
inserting script code into CMS pages.

The vulnerability is confirmed in version 4.7. Other versions may
also be affected.

SOLUTION:
Do not browse untrusted sites or follow untrusted links while being
logged-in to the application.

PROVIDED AND/OR DISCOVERED BY:
Gordon Security

ORIGINAL ADVISORY:
http://www.exploit-db.com/exploits/18474/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 19:44:29 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 04:44:29 +0100
Subject: [SEC] [SA47982] SUSE update for opera
Message-ID: <201202110344.q1B3iT61013742@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for opera

SECUNIA ADVISORY ID:
SA47982

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47982/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47982

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47982/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47982/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47982

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for opera. This fixes a weakness and a
vulnerability, which can be exploited by malicious people to disclose
potentially sensitive information and bypass certain security
restrictions.

For more information:
SA47686

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0247-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00043.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 20:09:22 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 05:09:22 +0100
Subject: [SEC] [SA47969] Dolibarr ERP/CRM "rowid" SQL Injection Vulnerability
Message-ID: <201202110409.q1B49MBT003616@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Dolibarr ERP/CRM "rowid" SQL Injection Vulnerability

SECUNIA ADVISORY ID:
SA47969

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47969/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47969

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47969/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47969/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47969

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Vulnerability-Lab has discovered a vulnerability in Dolibarr ERP/CRM,
which can be exploited by malicious users to conduct SQL injection
attacks.

Input passed via the "rowid" parameter to adherents/fiche.php not
properly sanitised before being used in a SQL query. This can be
exploited to manipulate SQL queries by injecting arbitrary SQL code.

Successful exploitation requires the "Members" module within the
"Human Resource Management" section to be enabled (disabled by
default) and "Read members" permissions.

The vulnerability is confirmed in version 3.1.0. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
Benjamin Kunz Mejri and Ucha Gobejishvili, Vulnerability-Lab

ORIGINAL ADVISORY:
http://www.vulnerability-lab.com/get_content.php?id=427

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 20:22:05 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 05:22:05 +0100
Subject: [SEC] [SA47965] Reflection Products SSL Information Disclosure
	Vulnerability
Message-ID: <201202110422.q1B4M5sl025691@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Reflection Products SSL Information Disclosure Vulnerability

SECUNIA ADVISORY ID:
SA47965

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47965/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47965

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47965/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47965/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47965

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Attachmate has acknowledged a vulnerability in multiple Reflection
products, which can be exploited by malicious people to disclose
potentially sensitive information.

For more information, see vulnerability #3 in:
SA47426

SOLUTION:
Install hotfix (please see the vendor's advisories for details).

ORIGINAL ADVISORY:
http://support.attachmate.com/techdocs/1708.html
http://support.attachmate.com/techdocs/2502.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 20:43:06 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 05:43:06 +0100
Subject: [SEC] [SA47926] ImageMagick Two Vulnerabilities
Message-ID: <201202110443.q1B4h6sa015498@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
ImageMagick Two Vulnerabilities

SECUNIA ADVISORY ID:
SA47926

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47926/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47926

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47926/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47926/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47926

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Two vulnerabilities have been reported in ImageMagick, which can be
exploited by malicious people to cause a DoS (Denial of Service) and
potentially compromise a vulnerable system.

1) An error when parsing offset and count values within the
ResolutionUnit tag in EXIF IFD0 can be exploited to corrupt memory
via a specially crafted image.

Successful exploitation of this vulnerability may allow execution of
arbitrary code.

2) An error when parsing an IFD with IOP tag offsets pointing to the
start of the IFD can be exploited to cause an infinite loop via a
specially crafted image.

The vulnerabilities are reported in versions prior to 6.7.5-1.

SOLUTION:
Update to version 6.7.5-1.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Mr. Joonas Kuorilehto and Mr. Aleksis Kauppinen,
Codenomicon CROSS project.

ORIGINAL ADVISORY:
http://www.imagemagick.org/discourse-server/viewtopic.php?f=4&t=20286

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 20:55:16 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 05:55:16 +0100
Subject: [SEC] [SA47895] Oracle Solaris Pidgin YMSG Denial of Service
	Weakness
Message-ID: <201202110455.q1B4tGkU005171@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Oracle Solaris Pidgin YMSG Denial of Service Weakness

SECUNIA ADVISORY ID:
SA47895

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47895/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47895

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47895/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47895/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47895

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Oracle has acknowledged a weakness in Pidgin included in Solaris,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

For more information:
SA43695

SOLUTION:
Apply patches.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
http://blogs.oracle.com/sunsecurity/entry/cve_2011_1091_denial_of

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 21:08:16 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 06:08:16 +0100
Subject: [SEC] [SA47927] IBM solidDB Redundant WHERE Clause Denial of
	Service Vulnerability
Message-ID: <201202110508.q1B58GeQ027249@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
IBM solidDB Redundant WHERE Clause Denial of Service Vulnerability

SECUNIA ADVISORY ID:
SA47927

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47927/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47927

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47927/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47927/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47927

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in IBM solidDB, which can be
exploited by malicious users to cause a DoS (Denial of Service).

The vulnerability is caused due to an unspecified error when handling
a redundant WHERE clause within e.g. a SELECT statement and can be
exploited to cause the server to shutdown.

The vulnerability is reported in versions prior to 6.5.0.8 Interim
Fix 6.

SOLUTION:
Update to version 6.5.0.8 Interim Fix 6.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
IBM (IC81244):
http://www.ibm.com/support/docview.wss?uid=swg27021052
http://www.ibm.com/support/docview.wss?uid=swg1IC81244

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 21:22:59 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 06:22:59 +0100
Subject: [SEC] [SA47901] RabidHamster R4 File Disclosure and Buffer Overflow
	Vulnerabilities
Message-ID: <201202110522.q1B5Mxuw016967@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
RabidHamster R4 File Disclosure and Buffer Overflow Vulnerabilities

SECUNIA ADVISORY ID:
SA47901

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47901/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47901

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47901/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47901/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47901

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Luigi Auriemma has discovered multiple vulnerabilities in
RabidHamster R4, which can be exploited by malicious people to
disclose potentially sensitive information and compromise a
vulnerable system.

1) A boundary error when creating a log entry can be exploited to
cause a stack-based buffer overflow via an overly long web request
sent to TCP port 8888.

2) A boundary error when processing a web request can be exploited to
cause a heap-based buffer overflow via an overly long request sent to
TCP port 8888.

3) Input passed to the "cmd" parameter in left_console.html via the
"loadfile()" script function is not properly verified before being
used to read files and can be exploited to disclose arbitrary files
via directory traversal attacks.

4) A boundary error when processing the "miniscreenshot" script
function can be exploited to cause a stack-based buffer overflow via
an overly long parameter sent in a web request to TCP port 8888.

Successful exploitation of vulnerabilities #1, #2, and #4 allows
execution of arbitrary code, but requires the "Network Access" option
to be enabled (disabled by default).

The vulnerabilities are confirmed in version 1.25. Other versions may
also be affected.

SOLUTION:
Restrict access to trusted hosts only.

PROVIDED AND/OR DISCOVERED BY:
Luigi Auriemma

ORIGINAL ADVISORY:
http://aluigi.altervista.org/adv/r4_1-adv.txt

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 21:43:02 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 06:43:02 +0100
Subject: [SEC] [SA47987] SUSE update for gnutls
Message-ID: <201202110543.q1B5h29F006762@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for gnutls

SECUNIA ADVISORY ID:
SA47987

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47987/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47987

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47987/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47987/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47987

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for gnutls. This fixes a vulnerability,
which can be exploited by malicious people to cause a DoS (Denial of
Service) and potentially compromise an application using the
library.

For more information:
SA46770

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0215-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00018.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 21:55:26 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 06:55:26 +0100
Subject: [SEC] [SA47992] SUSE update for kvm
Message-ID: <201202110555.q1B5tQAw028818@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for kvm

SECUNIA ADVISORY ID:
SA47992

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47992/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47992

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47992/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47992/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47992

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for kvm. This fixes a weakness and a
vulnerability, which can be exploited by malicious, local users in a
guest virtual machine to gain escalated privileges.

For more information:
SA45188
SA47741

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0207-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00009.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 10 22:08:22 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 07:08:22 +0100
Subject: [SEC] [SA47956] SUSE update for kernel
Message-ID: <201202110608.q1B68Mgs018512@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for kernel

SECUNIA ADVISORY ID:
SA47956

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47956/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47956

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47956/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47956/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47956

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for the kernel. This fixes multiple
weaknesses and vulnerabilities, which can be exploited by malicious,
local users to disclose certain system information, cause a DoS
(Denial of Service) and by malicious people to cause a DoS and
compromise a vulnerable system.

For more information:
SA40205
SA44754
SA44932
SA45253
SA45420
SA46584
SA47199

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0206-1:
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00004.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Sat Feb 11 10:30:29 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 19:30:29 +0100
Subject: [SEC] [SA47916] AjaXplorer "doc_file" Text File Disclosure Weakness
Message-ID: <201202111830.q1BIUTFb019265@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
AjaXplorer "doc_file" Text File Disclosure Weakness

SECUNIA ADVISORY ID:
SA47916

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47916/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47916

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47916/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47916/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47916

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Han Lee has discovered a weakness in AjaXplorer, which can be
exploited by malicious users to disclose certain sensitive
information.

Input passed via the "doc_file" parameter to index.php (when
"get_action" is set to "display_doc") is not properly verified before
being used to display files. This can be exploited to disclose the
contents of text files from local resources via directory traversal
sequences.

The weakness is confirmed in version 4.0.1. Other versions may also
be affected.

SOLUTION:
Update to version 4.0.2.

PROVIDED AND/OR DISCOVERED BY:
Han Lee

ORIGINAL ADVISORY:
AjaXplorer:
http://ajaxplorer.info/ajaxplorer-4-0-2/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Sat Feb 11 11:29:59 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 20:29:59 +0100
Subject: [SEC] [SA47979] SUSE update for kernel
Message-ID: <201202111929.q1BJTxQa009671@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for kernel

SECUNIA ADVISORY ID:
SA47979

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47979/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47979

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47979/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47979/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47979

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for the kernel. This fixes multiple
weaknesses and vulnerabilities, which can be exploited by malicious,
local users to disclose system information and cause a DoS (Denial of
Service) and by malicious people to cause a DoS (Denial of Service)
and compromise a vulnerable system.

For more information:
SA43537
SA43806
SA44625
SA44754
SA44932
SA45420
SA46584
SA47199

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0236-1:
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00010.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Sat Feb 11 12:29:32 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 21:29:32 +0100
Subject: [SEC] [SA47980] SUSE update for MozillaFirefox
Message-ID: <201202112029.q1BKTW9n032451@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for MozillaFirefox

SECUNIA ADVISORY ID:
SA47980

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47980/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47980

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47980/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47980/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47980

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for MozillaFirefox. This fixes a weakness,
a security issue, and multiple vulnerabilities, which can be
exploited by malicious, local users to disclose certain sensitive
information and by malicious people to bypass certain security
restrictions, disclose certain sensitive information, and compromise
a user's system.

For more information:
SA47816
SA47839

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0234-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00026.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Sat Feb 11 13:29:18 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 22:29:18 +0100
Subject: [SEC] [SA47989] SUSE update for ruby
Message-ID: <201202112129.q1BLTIdU022860@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for ruby

SECUNIA ADVISORY ID:
SA47989

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47989/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47989

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47989/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47989/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47989

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for ruby. This fixes a vulnerability, which
can be exploited by malicious people to cause a DoS (Denial of
Service).

For more information:
SA47405

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0228-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00024.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Sat Feb 11 14:27:13 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 23:27:13 +0100
Subject: [SEC] [SA47990] SUSE update for dovecot20
Message-ID: <201202112227.q1BMRDrQ013242@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for dovecot20

SECUNIA ADVISORY ID:
SA47990

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47990/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47990

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47990/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47990/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47990

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for dovecot20. This fixes a security issue,
which can be exploited by malicious people to conduct spoofing
attacks.

For more information:
SA46886

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0219-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00021.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Sat Feb 11 14:44:40 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 11 Feb 2012 23:44:40 +0100
Subject: [SEC] [SA47964] OfficeSIP Server SIP Request Handling Denial of
	Service
Message-ID: <201202112244.q1BMierU002951@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
OfficeSIP Server SIP Request Handling Denial of Service

SECUNIA ADVISORY ID:
SA47964

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47964/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47964

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47964/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47964/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47964

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Prabhu S Angadi has discovered a vulnerability in OfficeSIP Server,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

The vulnerability is caused due to an error when handling "To"
headers in SIP requests. This can be exploited to crash the OfficeSIP
Server service (UDP/TCP port 5060) via a specially crafted SIP INVITE
request containing an incomplete recipient address in the "To"
header.

The vulnerability is confirmed in version 3.1. Other versions may
also be affected.

SOLUTION:
No effective workaround is currently available.

PROVIDED AND/OR DISCOVERED BY:
Prabhu S Angadi

ORIGINAL ADVISORY:
http://secpod.org/advisories/SecPod_Exploit_OfficeSIP_Server_DOS_Vuln.txt

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Sat Feb 11 15:11:48 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sun, 12 Feb 2012 00:11:48 +0100
Subject: [SEC] [SA47994] SUSE update for mozilla-xulrunner192
Message-ID: <201202112311.q1BNBmeY025297@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for mozilla-xulrunner192

SECUNIA ADVISORY ID:
SA47994

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47994/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47994

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47994/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47994/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47994

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for mozilla-xulrunner192. This fixes a
weakness and multiple vulnerabilities, which can be exploited by
malicious people to disclose certain sensitive information and
compromise a user's system.

For more information:
SA47839

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
SUSE-SU-2012:0198-1:
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00003.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Sat Feb 11 16:13:05 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sun, 12 Feb 2012 01:13:05 +0100
Subject: [SEC] [SA47957] SUSE update for curl
Message-ID: <201202120013.q1C0D5bZ015742@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for curl

SECUNIA ADVISORY ID:
SA47957

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47957/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47957

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47957/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47957/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47957

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for curl. This fixes a weakness, which can
be exploited by malicious people to conduct spoofing attacks.

For more information:
SA45067

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0199-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00001.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Sat Feb 11 16:47:39 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sun, 12 Feb 2012 01:47:39 +0100
Subject: [SEC] [SA47991] SUSE update for squid3
Message-ID: <201202120047.q1C0ld0B005859@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for squid3

SECUNIA ADVISORY ID:
SA47991

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47991/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47991

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47991/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47991/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47991

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for squid3. This fixes a vulnerability,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

For more information:
SA46609

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0213-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00015.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Sat Feb 11 17:14:18 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sun, 12 Feb 2012 02:14:18 +0100
Subject: [SEC] [SA47983] SUSE update for sysconfig
Message-ID: <201202120114.q1C1EIYC028149@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for sysconfig

SECUNIA ADVISORY ID:
SA47983

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47983/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47983

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47983/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47983/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47983

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for sysconfig. This fixes a vulnerability,
which can be exploited by malicious people to compromise a user's
system.

The vulnerability is caused due to certain shell meta-characters not
being stripped or escaped in the ifup-services script when connecting
to a wireless access point. This can be exploited to inject and
execute arbitrary shell commands via a specially crafted SSID.

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0242-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00035.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Sat Feb 11 17:47:19 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sun, 12 Feb 2012 02:47:19 +0100
Subject: [SEC] [SA47963] SUSE update for MozillaFirefox
Message-ID: <201202120147.q1C1lJRU018154@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for MozillaFirefox

SECUNIA ADVISORY ID:
SA47963

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47963/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47963

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47963/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47963/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47963

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for MozillaFirefox. This fixes a weakness
and multiple vulnerabilities, which can be exploited by malicious
people to disclose certain sensitive information and compromise a
user's system.

For more information:
SA47839

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
SUSE-SU-2012:0221-1:
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00007.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Sat Feb 11 18:09:40 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sun, 12 Feb 2012 03:09:40 +0100
Subject: [SEC] [SA47958] SUSE update for MozillaFirefox
Message-ID: <201202120209.q1C29ei7007982@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for MozillaFirefox

SECUNIA ADVISORY ID:
SA47958

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47958/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47958

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47958/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47958/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47958

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for MozillaFirefox. This fixes multiple
vulnerabilities, where one has an unknown impact and others can be
exploited by malicious people to disclose sensitive information and
compromise a user's system.

For more information:
SA47302

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0039-2:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00010.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Sat Feb 11 18:24:14 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sun, 12 Feb 2012 03:24:14 +0100
Subject: [SEC] [SA47924] surf Cookie Disclosure Security Issue
Message-ID: <201202120224.q1C2OEjt030089@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
surf Cookie Disclosure Security Issue

SECUNIA ADVISORY ID:
SA47924

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47924/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47924

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47924/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47924/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47924

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A security issue has been discovered in surf, which can be exploited
by malicious, local users to disclose sensitive information.

The security issue is caused due to the application creating the
cookie file (~/.surf/cookies.txt) with insecure world-readable
permissions. This can be exploited to disclose another user's session
information.

The security issue is confirmed in version 0.4.1. Other versions may
also be affected.

SOLUTION:
Change permissions on the cookie file (e.g. chmod 600
~/.surf/cookies.txt).

PROVIDED AND/OR DISCOVERED BY:
Reported by Jakub Wilk in a Debian bug report.

ORIGINAL ADVISORY:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=659296

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Sat Feb 11 18:44:15 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sun, 12 Feb 2012 03:44:15 +0100
Subject: [SEC] [SA47975] Red Hat update for jbosscache
Message-ID: <201202120244.q1C2iFSq019891@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for jbosscache

SECUNIA ADVISORY ID:
SA47975

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47975/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47975

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47975/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47975/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47975

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for jbossweb. This fixes a weakness,
which can be exploited by malicious, local users to disclose
potentially sensitive information.

For more information:
SA47521

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0108-1:
https://rhn.redhat.com/errata/RHSA-2012-0108.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Sat Feb 11 19:16:55 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sun, 12 Feb 2012 04:16:55 +0100
Subject: [SEC] [SA47893] NetBeans Plugins SSL Certificate Validation
	Security Issue
Message-ID: <201202120316.q1C3GtEH010384@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
NetBeans Plugins SSL Certificate Validation Security Issue

SECUNIA ADVISORY ID:
SA47893

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47893/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47893

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47893/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47893/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47893

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Carlos Pantelides has discovered a vulnerability in multiple NetBeans
plugins, which can be exploited by malicious people to conduct
spoofing attacks.

The security issue is caused due to the plugins not verifying the
validity of the SSL certificates presented when logging in to e.g. a
Bugzilla or JIRA bugtracker. This can be exploited to spoof a valid
server and e.g. conduct Man-in-the-Middle (MitM) attacks.

The security issue is confirmed in the following products:
* JIRA plugin for NetBeans version 1.2.1.
* Bugzilla plugin for NetBeans version 1.15.1.

SOLUTION:
Do not rely on the certificate checks.

PROVIDED AND/OR DISCOVERED BY:
Carlos Pantelides

ORIGINAL ADVISORY:
http://archives.neohapsis.com/archives/fulldisclosure/2012-02/0119.html
http://netbeans.org/bugzilla/show_bug.cgi?id=206848

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Sat Feb 11 19:44:28 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sun, 12 Feb 2012 04:44:28 +0100
Subject: [SEC] [SA47973] Apache MyFaces "javax.faces.resource" File
	Disclosure Vulnerability
Message-ID: <201202120344.q1C3iSD0030954@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Apache MyFaces "javax.faces.resource" File Disclosure Vulnerability

SECUNIA ADVISORY ID:
SA47973

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47973/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47973

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47973/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47973/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47973

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Apache MyFaces, which can be
exploited by malicious people to disclose certain sensitive
information.

Input appended to the URL or passed via the "ln" parameter to the
"javax.faces.resource" resource handler is not properly verified
before being used to display files. This can be exploited to disclose
the contents of certain files from local resources via directory
traversal sequences.

The vulnerability is reported in versions 2.0.1 through 2.0.11 and
versions 2.1.0 through 2.1.5.

SOLUTION:
Update to version 2.0.12 or 2.1.6.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits the IBM Security Team.

ORIGINAL ADVISORY:
http://mail-archives.apache.org/mod_mbox/myfaces-announce/201202.mbox/%3C4F33ED1F.4070007%40apache.org%3E

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Sat Feb 11 20:09:27 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sun, 12 Feb 2012 05:09:27 +0100
Subject: [SEC] [SA47995] SUSE update for powerdns
Message-ID: <201202120409.q1C49RCc020832@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for powerdns

SECUNIA ADVISORY ID:
SA47995

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47995/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47995

RELEASE DATE:
2012-02-10

DISCUSS ADVISORY:
http://secunia.com/advisories/47995/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47995/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47995

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for powerdns. This fixes a vulnerability,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

For more information:
SA47495

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0200-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00002.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 13 10:30:35 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 13 Feb 2012 19:30:35 +0100
Subject: [SEC] [SA47914] TWIDROYD Legacy for Twitter for Android Security
	Bypass Security Issue
Message-ID: <201202131830.q1DIUZ6g013585@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
TWIDROYD Legacy for Twitter for Android Security Bypass Security
Issue

SECUNIA ADVISORY ID:
SA47914

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47914/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47914

RELEASE DATE:
2012-02-13

DISCUSS ADVISORY:
http://secunia.com/advisories/47914/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47914/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47914

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
AppSec has reported a security issue in TWIDROYD Legacy for Twitter
for Android, which can be exploited by malicious people to bypass
certain security restrictions.

The security issue is caused due to an unspecified error and can be
exploited to disclose and manipulate certain sensitive information
like e.g. twitter contents and message details.

Successful exploitation requires that a malicious application is
installed.

The security issue is reported in version 4.3.11.

SOLUTION:
Reportedly fixed in version 4.3.12.

PROVIDED AND/OR DISCOVERED BY:
Daoyuan Wu, Xiapu Luo, and Rocky K. C. Chang, Department of
Computing, The Hong Kong Polytechnic University

ORIGINAL ADVISORY:
http://www4.comp.polyu.edu.hk/~appsec/bugs/CVE-2011-4699-vulnerability-in-Twidroyd.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 13 11:30:36 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 13 Feb 2012 20:30:36 +0100
Subject: [SEC] [SA47972] Horde Groupware Two Vulnerabilities
Message-ID: <201202131930.q1DJUaOB003992@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Horde Groupware Two Vulnerabilities

SECUNIA ADVISORY ID:
SA47972

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47972/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47972

RELEASE DATE:
2012-02-13

DISCUSS ADVISORY:
http://secunia.com/advisories/47972/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47972/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47972

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A security issue and a vulnerability have been reported in Horde
Groupware, which can be exploited by malicious people to conduct
cross-site scripting attacks and compromise a vulnerable system.

1) Certain Input passed to an email form field is not properly
sanitised before being returned to the user. This can be exploited to
execute arbitrary HTML and script code in a user's browser session in
context of an affected site.

This vulnerability may be related to vulnerability #1 in:
SA47592

This vulnerability is reported in versions prior to 1.2.11.

2) The security issue is caused due to the distribution of
compromised Horde Groupware source code packages containing a
backdoor, which can be exploited to e.g. execute arbitrary PHP code.

The compromised source file was distributed with version 1.2.10
between 9th November 2011 and 7th February 2012.

SOLUTION:
Update to version 1.2.11.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://lists.horde.org/archives/announce/2012/000749.html
http://lists.horde.org/archives/announce/2012/000751.html
http://git.horde.org/diff.php/groupware/docs/groupware/CHANGES?rt=horde&r1=1.38.2.16&r2=1.38.2.17&ty=h

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 13 12:29:45 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 13 Feb 2012 21:29:45 +0100
Subject: [SEC] [SA47845] UberSocial for Twitter for Android Security Bypass
	Security Issue
Message-ID: <201202132029.q1DKTjDW026766@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
UberSocial for Twitter for Android Security Bypass Security Issue

SECUNIA ADVISORY ID:
SA47845

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47845/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47845

RELEASE DATE:
2012-02-13

DISCUSS ADVISORY:
http://secunia.com/advisories/47845/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47845/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47845

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
AppSec has reported a security issue in UberSocial for Twitter for
Android, which can be exploited by malicious people to bypass certain
security restrictions.

The security issue is caused due to an unspecified error and can be
exploited to disclose and manipulate certain sensitive information
like e.g. twitter contents and message details.

Successful exploitation requires that a malicious application is
installed.

The security issue is reported in version 7.1.5 and 7.2.2.

SOLUTION:
Reportedly fixed in version 7.2.4.

PROVIDED AND/OR DISCOVERED BY:
Daoyuan Wu, Xiapu Luo, and Rocky K. C. Chang, Department of
Computing, The Hong Kong Polytechnic University

ORIGINAL ADVISORY:
http://www4.comp.polyu.edu.hk/~appsec/bugs/CVE-2011-4700-vulnerability-in-UberSocial.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 13 13:31:07 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 13 Feb 2012 22:31:07 +0100
Subject: [SEC] [SA48024] Horde Groupware Webmail Edition Multiple
	Vulnerabilities
Message-ID: <201202132131.q1DLV7WI017185@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Horde Groupware Webmail Edition Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA48024

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48024/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48024

RELEASE DATE:
2012-02-13

DISCUSS ADVISORY:
http://secunia.com/advisories/48024/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48024/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48024

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A security issue and some vulnerabilities have been reported in Horde
Groupware Webmail Edition, which can be exploited by malicious people
to conduct cross-site scripting and script insertion attacks and
compromise a vulnerable system.

1) Certain Input passed to an email form field is not properly
sanitised before being returned to the user. This can be exploited to
execute arbitrary HTML and script code in a user's browser session in
context of an affected site.

This vulnerability may be related to vulnerability #1 in:
SA47592

2) Input passed to the compose page and contacts popup window is not
properly sanitised before being returned to the user. This can be
exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

This vulnerability may be related to vulnerability #1 in:
SA47580

3) Certain input via IMAP mailbox names is not properly sanitised
before being used.

For more information see vulnerability #2 in:
SA47580

The vulnerabilities #1 through #3 are reported in versions prior
1.2.11.

4) The security issue is caused due to the distribution of
compromised Horde Groupware Webmail Edition source code packages
containing a backdoor, which can be exploited to e.g. execute
arbitrary PHP code.

The compromised source file was distributed with version 1.2.10
between 2nd November 2011 and 7th February 2012.

SOLUTION:
Update to version 1.2.11.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://lists.horde.org/archives/announce/2012/000750.html
http://lists.horde.org/archives/announce/2012/000751.html
http://git.horde.org/diff.php/groupware/docs/webmail/CHANGES?rt=horde&r1=1.35.2.17&r2=1.35.2.18&ty=h

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 13 14:36:06 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 13 Feb 2012 23:36:06 +0100
Subject: [SEC] [SA47798] D-Link DAP-1150 Cross-Site Request Forgery
	Vulnerability
Message-ID: <201202132236.q1DMa6Dw007670@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
D-Link DAP-1150 Cross-Site Request Forgery Vulnerability

SECUNIA ADVISORY ID:
SA47798

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47798/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47798

RELEASE DATE:
2012-02-13

DISCUSS ADVISORY:
http://secunia.com/advisories/47798/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47798/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47798

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
MustLive has reported a vulnerability in D-Link DAP-1150, which can
be exploited by malicious people to conduct cross-site request
forgery attacks.

The device's web interface allows users to perform certain actions
via HTTP requests without performing any validity checks to verify
the requests. This can be exploited to e.g. change the
administrator's password, reboot the device, or change the device
configuration by tricking a logged in administrator into visiting a
malicious web site.

The vulnerability is reported in firmware version 1.2.94. Other
versions may also be affected.

SOLUTION:
Do not browse untrusted websites or follow untrusted links while
logged in to the device.

PROVIDED AND/OR DISCOVERED BY:
MustLive

ORIGINAL ADVISORY:
http://websecurity.com.ua/5561/
http://websecurity.com.ua/5567/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 13 14:56:34 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 13 Feb 2012 23:56:34 +0100
Subject: [SEC] [SA48021] NetSurf Cookie Disclosure Security Issue
Message-ID: <201202132256.q1DMuYfr029859@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
NetSurf Cookie Disclosure Security Issue

SECUNIA ADVISORY ID:
SA48021

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48021/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48021

RELEASE DATE:
2012-02-13

DISCUSS ADVISORY:
http://secunia.com/advisories/48021/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48021/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48021

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A security issue has been discovered in NetSurf, which can be
exploited by malicious, local users to disclose sensitive
information.

The security issue is caused due to the application creating the
cookie file (~/.netsurf/Cookies) with insecure world-readable
permissions. This can be exploited to disclose another user's session
information.

The security issue is confirmed in version 2.8. Other versions may
also be affected.

SOLUTION:
Fixed in the SVN repository.

PROVIDED AND/OR DISCOVERED BY:
Reported by Jakub Wilk in a Debian bug report.

ORIGINAL ADVISORY:
Jakub Wilk:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=659376

NetSurf:
source.netsurf-browser.org/trunk/netsurf/gtk/gui.c?r1=13357&r2=13438

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 13 15:11:05 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 14 Feb 2012 00:11:05 +0100
Subject: [SEC] [SA47948] PBBoard Cross-Site Request Forgery Vulnerability
Message-ID: <201202132311.q1DNB4ao019574@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
PBBoard Cross-Site Request Forgery Vulnerability

SECUNIA ADVISORY ID:
SA47948

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47948/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47948

RELEASE DATE:
2012-02-13

DISCUSS ADVISORY:
http://secunia.com/advisories/47948/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47948/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47948

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in PBBoard, which can be
exploited by malicious people to conduct cross-site request forgery
attacks.

The application's web interface allows users to perform certain
actions via HTTP requests without performing any validity checks to
verify the requests. This can be exploited to e.g. change an
administrator's password by tricking a logged in administrator into
visiting a malicious web site.

The vulnerability is confirmed in version 2.1.4. Other versions may
also be affected.

SOLUTION:
Do not browse untrusted websites or follow untrusted links while
logged in to the application.

PROVIDED AND/OR DISCOVERED BY:
KedAns-Dz.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 13 16:02:06 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 14 Feb 2012 01:02:06 +0100
Subject: [SEC] [SA48017] Slackware update for proftpd
Message-ID: <201202140002.q1E026nZ009853@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Slackware update for proftpd

SECUNIA ADVISORY ID:
SA48017

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48017/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48017

RELEASE DATE:
2012-02-13

DISCUSS ADVISORY:
http://secunia.com/advisories/48017/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48017/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48017

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Slackware has issued an update for proftpd. This fixes a
vulnerability, which can be exploited by malicious users to
compromise a vulnerable system.

For more information:
SA46811

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
SSA:2012-041-04:
http://slackware.com/security/viewer.php?l=slackware-security&y=2012&m=slackware-security.509924

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 13 16:33:20 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 14 Feb 2012 01:33:20 +0100
Subject: [SEC] [SA47935] Zero Install Common Name Verification Security Issue
Message-ID: <201202140033.q1E0XKGv032302@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Zero Install Common Name Verification Security Issue

SECUNIA ADVISORY ID:
SA47935

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47935/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47935

RELEASE DATE:
2012-02-13

DISCUSS ADVISORY:
http://secunia.com/advisories/47935/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47935/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47935

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A security issue has been reported in Zero Install, which can be
exploited by malicious people to conduct spoofing attacks.

The security issue is caused due to the application not properly
checking if the "Common Name" field provided inside SSL server
certificates matches the requested hostname of a server. This can be
exploited to e.g. conduct Man-in-the-Middle (MitM) attacks.

The security issue is reported in versions prior to 1.6.

SOLUTION:
Update to version 1.6.

ORIGINAL ADVISORY:
http://sourceforge.net/mailarchive/message.php?msg_id=28823083

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 13 17:06:45 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 14 Feb 2012 02:06:45 +0100
Subject: [SEC] [SA48008] Mozilla Firefox / Thunderbird / SeaMonkey XBL
	Binding Use-After-Free Vulnerability
Message-ID: <201202140106.q1E16jQB022313@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Mozilla Firefox / Thunderbird / SeaMonkey XBL Binding Use-After-Free
Vulnerability

SECUNIA ADVISORY ID:
SA48008

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48008/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48008

RELEASE DATE:
2012-02-13

DISCUSS ADVISORY:
http://secunia.com/advisories/48008/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48008/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48008

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in multiple Mozilla products, which
can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to a use-after-free error in the
"nsXBLDocumentInfo::ReadPrototypeBindings()" method when handling XBL
bindings in a hash table and can be exploited to cause a cycle
collector to call an invalid virtual function.

Successful exploitation may allow execution of arbitrary code.

SOLUTION:
Update Firefox and Thunderbird to version 10.0.1 and SeaMonkey to
version 2.7.1

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Andrew McCreight and Olli Pettay, Mozilla
developers.

ORIGINAL ADVISORY:
http://www.mozilla.org/security/announce/2012/mfsa2012-10.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 13 17:26:03 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 14 Feb 2012 02:26:03 +0100
Subject: [SEC] [SA48027] ALFTP Insecure Executable Loading Vulnerability
Message-ID: <201202140126.q1E1Q3im012097@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
ALFTP Insecure Executable Loading Vulnerability

SECUNIA ADVISORY ID:
SA48027

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48027/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48027

RELEASE DATE:
2012-02-13

DISCUSS ADVISORY:
http://secunia.com/advisories/48027/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48027/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48027

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in ALFTP, which can be exploited by
malicious people to compromise a user's system.

The vulnerability is caused due to the application loading
executables (e.g. readme.exe) in an insecure manner. This can be
exploited to run an arbitrary program by tricking a user into e.g.
opening a file located on a remote WebDAV or SMB share.

Successful exploitation allows execution of arbitrary code.

The vulnerability is reported in versions 5.30.0.1 and prior.

SOLUTION:
Update to version 5.31.

PROVIDED AND/OR DISCOVERED BY:
JVN credits Fumihiko Sano.

ORIGINAL ADVISORY:
Altools:
http://www.altools.jp/ETC/NEWS.aspx?mid=231&vidx=141

JVN:
http://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000011.html
http://jvn.jp/en/jp/JVN85695061/index.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 10:30:45 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 14 Feb 2012 19:30:45 +0100
Subject: [SEC] [SA47937] Fork CMS "report" and "error" Cross-Site Scripting
	Vulnerabilities
Message-ID: <201202141830.q1EIUjks017692@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Fork CMS "report" and "error" Cross-Site Scripting Vulnerabilities

SECUNIA ADVISORY ID:
SA47937

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47937/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47937

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47937/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47937/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47937

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Two vulnerabilities have been discovered in Fork CMS, which can be
exploited by malicious people to conduct cross-site scripting
attacks.

Input passed via the "report" parameter to e.g. private/en/settings
or private/en/blog/settings and the "error" parameter to e.g.
private/en/users/index is not properly sanitised in the "execute()"
function in backend/core/engine/base.php before being returned to the
user. This can be exploited to execute arbitrary HTML and script code
in a user's browser session in context of an affected site.

The vulnerabilities are confirmed in version 3.2.4. Prior versions
may also be affected.

SOLUTION:
Update to version 3.2.5.

PROVIDED AND/OR DISCOVERED BY:
Avram Marius Gabriel.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 11:29:51 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 14 Feb 2012 20:29:51 +0100
Subject: [SEC] [SA47949] Microsoft Windows C Run-Time Library Buffer
	Overflow Vulnerability
Message-ID: <201202141929.q1EJTp0H008086@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Microsoft Windows C Run-Time Library Buffer Overflow Vulnerability

SECUNIA ADVISORY ID:
SA47949

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47949/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47949

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47949/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47949/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47949

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Microsoft Windows, which can be
exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an error in msvcrt.dll when
calculating the size of a buffer and can be exploited to cause a
buffer overflow by e.g. tricking a user into viewing a specially
crafted media file.

Successful exploitation allows execution of arbitrary code.

SOLUTION:
Apply patches.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Alexander Gavrun via ZDI.

ORIGINAL ADVISORY:
MS12-013 (KB2654428)
http://technet.microsoft.com/en-us/security/bulletin/ms12-013

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 12:31:04 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 14 Feb 2012 21:31:04 +0100
Subject: [SEC] [SA48029] Microsoft SharePoint Multiple Cross-Site Scripting
	Vulnerabilities
Message-ID: <201202142031.q1EKV4xv030898@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Microsoft SharePoint Multiple Cross-Site Scripting Vulnerabilities

SECUNIA ADVISORY ID:
SA48029

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48029/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48029

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/48029/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48029/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48029

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in Microsoft SharePoint
Server and Microsoft SharePoint Foundation, which can be exploited by
malicious people to conduct cross-site scripting attacks.

1) Input passed to inplview.aspx is not properly sanitised before
being returned to the user. This can be exploited to execute
arbitrary HTML and script code in a user's browser session in context
of an affected site.

2) Input passed to themeweb.aspx is not properly sanitised before
being returned to the user. This can be exploited to execute
arbitrary HTML and script code in a user's browser session in context
of an affected site.

3) Input passed to wizardlist.aspx is not properly sanitised before
being returned to the user. This can be exploited to execute
arbitrary HTML and script code in a user's browser session in context
of an affected site.

SOLUTION:
Apply patches.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
1) Reported by the vendor.
2) The vendor credits John Hollenberger
3) The vendor credits Rocco Calvi, stratsec

ORIGINAL ADVISORY:
MS12-011 (KB2553413, KB2597124):
http://technet.microsoft.com/en-us/security/bulletin/ms12-011

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 13:30:20 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 14 Feb 2012 22:30:20 +0100
Subject: [SEC] [SA48030] Microsoft .NET Framework / Silverlight Two
	Vulnerabilities
Message-ID: <201202142130.q1ELUKQB021294@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Microsoft .NET Framework / Silverlight Two Vulnerabilities

SECUNIA ADVISORY ID:
SA48030

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48030/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48030

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/48030/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48030/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48030

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Two vulnerabilities have been reported in Microsoft .NET Framework
and Microsoft Silverlight, which can be exploited by malicious people
to compromise a user's system.

1) An unspecified error when handling un-managed objects can be
exploited via e.g. a specially crafted XAML Browser Application
(XBAP).

2) An error when calculating certain buffer lengths can be exploited
to corrupt memory via e.g. a specially crafted XAML Browser
Application (XBAP).

Successful exploitation of the vulnerabilities allows execution of
arbitrary code, but requires a browser that can run a XAML Browser
Application (XBAP) or Silverlight application.

SOLUTION:
Apply patches.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
1) The vendor credits Jeroen Frijters, Sumatra.

ORIGINAL ADVISORY:
MS12-016 (KB2633870, KB2633873, KB2633874, KB2633879, KB2633880,
KB2668562):
http://technet.microsoft.com/en-us/security/bulletin/ms12-016

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 14:26:13 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 14 Feb 2012 23:26:13 +0100
Subject: [SEC] [SA48031] Microsoft Internet Explorer Copy and Paste Security
	Bypass Vulnerability
Message-ID: <201202142226.q1EMQDn0011639@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Microsoft Internet Explorer Copy and Paste Security Bypass
Vulnerability

SECUNIA ADVISORY ID:
SA48031

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48031/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48031

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/48031/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48031/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48031

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Microsoft Internet Explorer,
which can be exploited by malicious people to bypass certain security
restrictions.

The vulnerability is caused due to an input validation error when
handling copy and paste operations and can be exploited to gain
access to information in another domain or zone.

SOLUTION:
Apply patches.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Jan Schejbal.

ORIGINAL ADVISORY:
MS12-010 (KB2647516):
http://technet.microsoft.com/en-us/security/bulletin/ms12-010

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 14:45:49 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 14 Feb 2012 23:45:49 +0100
Subject: [SEC] [SA48028] Microsoft Internet Explorer Multiple Vulnerabilities
Message-ID: <201202142245.q1EMjnqv001359@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Microsoft Internet Explorer Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA48028

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48028/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48028

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/48028/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48028/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48028

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in Microsoft Internet
Explorer, which can be exploited by malicious people to bypass
certain security restrictions, disclose potentially sensitive
information, and compromise a user's system.

1) An error exists when handling copy and paste operations.

For more information:
SA48031

2) An error when accessing a deleted object within certain HTML
layout handling can be exploited to corrupt memory.

3) An error when handling NULL bytes during the creation and
initialisation of strings can be exploited to read process memory.

4) An error when accessing a deleted object within VML handling can
be exploited to corrupt memory.

Successful exploitation of vulnerabilities #2 and #4 allows execution
of arbitrary code.

SOLUTION:
Apply patches.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
2, 4) The vendor credits Stephen Fewer, Harmony Security via ZDI
3) The vendor credits Jason Hullinger, HP Cloud Services

ORIGINAL ADVISORY:
MS12-010 (KB2647516):
http://technet.microsoft.com/en-us/security/bulletin/ms12-010

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 15:11:54 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 00:11:54 +0100
Subject: [SEC] [SA47911] Windows Ancillary Function Driver Two Privilege
	Escalation Vulnerabilities
Message-ID: <201202142311.q1ENBsG2023722@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Windows Ancillary Function Driver Two Privilege Escalation
Vulnerabilities

SECUNIA ADVISORY ID:
SA47911

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47911/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47911

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47911/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47911/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47911

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Two vulnerabilities have been reported in Microsoft Windows, which
can be exploited by malicious, local users to gain escalated
privileges.

1) An unspecified error in the Ancillary Function Driver (afd.sys)
when handling input passed from user mode to the kernel can be
exploited via a specially crafted program.

2) An unspecified error in afd.sys when handling input passed from
user mode to the kernel can be exploited via a specially crafted
program.

Successful exploitation of the vulnerabilities allows execution of
arbitrary code with kernel-mode privileges.

SOLUTION:
Apply patches.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Tarjei Mandt, Azimuth Security.

ORIGINAL ADVISORY:
MS12-009 (KB2645640):
http://technet.microsoft.com/en-us/security/bulletin/ms12-009

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 16:11:34 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 01:11:34 +0100
Subject: [SEC] [SA47946] Microsoft Visio Viewer Multiple Vulnerabilities
Message-ID: <201202150011.q1F0BYp8014133@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Microsoft Visio Viewer Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47946

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47946/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47946

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47946/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47946/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47946

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in Microsoft Visio
Viewer, which can be exploited by malicious people to compromise a
user's system.

1) An unspecified error when validating certain attributes in Visio
files can be exploited to corrupt memory.

2) An unspecified error when validating certain attributes in Visio
files can be exploited to corrupt memory.

3) An unspecified error when validating certain attributes in Visio
files can be exploited to corrupt memory.

4) An unspecified error when validating certain attributes in Visio
files can be exploited to corrupt memory.

5) An unspecified error when validating certain attributes in Visio
files can be exploited to corrupt memory.

Successful exploitation of the vulnerabilities allows execution of
arbitrary code.

SOLUTION:
Apply patches.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Xin Ouyang, Palo Alto Networks.

ORIGINAL ADVISORY:
MS12-015 (KB2663510, KB2597170):
http://technet.microsoft.com/en-us/security/bulletin/ms12-015

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 16:47:48 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 01:47:48 +0100
Subject: [SEC] [SA47929] IBM Rational License Key Server JRE Information
	Disclosure Vulnerability
Message-ID: <201202150047.q1F0lmFj004280@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
IBM Rational License Key Server JRE Information Disclosure
Vulnerability

SECUNIA ADVISORY ID:
SA47929

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47929/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47929

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47929/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47929/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47929

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
IBM has acknowledged a vulnerability in IBM Rational License Key
Server, which can be exploited by malicious people to disclose
potentially sensitive information.

For more information:
SA46512

The vulnerability is reported in versions 8.1.2 and prior.

SOLUTION:
Update to version 8.1.1 or 8.1.2 and apply the iFix.

ORIGINAL ADVISORY:
IBM:
http://www.ibm.com/support/docview.wss?uid=swg21579415

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 17:14:05 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 02:14:05 +0100
Subject: [SEC] [SA47899] IBM Telelogic / Rational License Server License
	Manager JRE Information Disclosure Vulnerability
Message-ID: <201202150114.q1F1E5AD026567@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
IBM Telelogic / Rational License Server License Manager JRE
Information Disclosure Vulnerability

SECUNIA ADVISORY ID:
SA47899

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47899/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47899

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47899/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47899/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47899

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
IBM has acknowledged a vulnerability in IBM Telelogic License Server
and IBM Rational License Server, which can be exploited by malicious
people to disclose potentially sensitive information.

For more information:
SA46512

The vulnerability is reported in IBM Telelogic License Server version
2.0 and IBM Rational License Server versions 7.x.

SOLUTION:
Upgrade to version 8.1.2 and apply the iFix.

ORIGINAL ADVISORY:
IBM:
http://www.ibm.com/support/docview.wss?uid=swg21579415

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 17:47:23 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 02:47:23 +0100
Subject: [SEC] [SA47936] Adobe RoboHelp for Word Generated Output Cross-Site
	Scripting Vulnerability
Message-ID: <201202150147.q1F1lNAv016561@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Adobe RoboHelp for Word Generated Output Cross-Site Scripting
Vulnerability

SECUNIA ADVISORY ID:
SA47936

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47936/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47936

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47936/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47936/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47936

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Adobe RoboHelp, which can be
exploited by malicious people to conduct cross-site scripting
attacks.

Certain unspecified input related to generated web-based output is
not properly sanitised before being returned to the user. This can be
exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

The vulnerability is reported in version 8 and 9.

SOLUTION:
Apply patch.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
The vendor credits David Damstra, CU*Answers

ORIGINAL ADVISORY:
http://www.adobe.com/support/security/bulletins/apsb12-04.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 18:11:10 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 03:11:10 +0100
Subject: [SEC] [SA47932] Adobe Shockwave Player Multiple Vulnerabilities
Message-ID: <201202150211.q1F2BAuD006430@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Adobe Shockwave Player Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47932

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47932/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47932

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47932/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47932/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47932

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in Adobe Shockwave
Player, which can be exploited by malicious people to compromise a
user's system.

1) An unspecified error in the Shockwave 3D Asset can be exploited to
corrupt memory.

2) An unspecified error can be exploited to cause a heap-based buffer
overflow.

3) An unspecified error can be exploited to corrupt memory.

4) An unspecified error in the Shockwave 3D Asset can be exploited to
corrupt memory.

5) An unspecified error in the Shockwave 3D Asset can be exploited to
corrupt memory.

6) An unspecified error in the Shockwave 3D Asset can be exploited to
corrupt memory.

7) An unspecified error in the Shockwave 3D Asset can be exploited to
corrupt memory.

8) An unspecified error in the Shockwave 3D Asset can be exploited to
corrupt memory.

9) An unspecified error in the Shockwave 3D Asset can be exploited to
corrupt memory.

Successful exploitation of the vulnerabilities may allow execution of
arbitrary code.

The vulnerabilities are reported in versions 11.6.3.633 and prior for
Windows and Macintosh.

SOLUTION:
Update to version 11.6.4.634.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
1, 4-9) The vendor credits Honggang Ren, Fortinet's FortiGuard Labs
2, 3) The vendor credits instruder, Code Audit Labs of vulnhunt.com

ORIGINAL ADVISORY:
Adobe:
http://www.adobe.com/support/security/bulletins/apsb12-02.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 18:44:21 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 03:44:21 +0100
Subject: [SEC] [SA47961] Red Hat update for httpd
Message-ID: <201202150244.q1F2iLDg028816@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for httpd

SECUNIA ADVISORY ID:
SA47961

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47961/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47961

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47961/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47961/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47961

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for httpd. This fixes two weaknesses and
two vulnerabilities, which can be exploited by malicious, local users
to bypass certain security restrictions and gain escalated privileges
and by malicious people to disclose potentially sensitive information
and bypass certain security restrictions.

For more information:
SA45793
SA46987
SA47410
SA47779

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0128-01:
https://rhn.redhat.com/errata/RHSA-2012-0128.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 19:17:06 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 04:17:06 +0100
Subject: [SEC] [SA48018] Ubuntu update for kernel
Message-ID: <201202150317.q1F3H5mA019303@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for kernel

SECUNIA ADVISORY ID:
SA48018

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48018/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48018

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/48018/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48018/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48018

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for the kernel. This fixes multiple
vulnerabilities, which can be exploited by malicious, local users in
a guest virtual machine to cause a DoS (Denial of Service), by
malicious, local users to cause a DoS (Denial of Service) and
potentially gain escalated privileges, and by malicious people to
compromise a vulnerable system.

For more information:
SA45489
SA47293
SA47486
SA47488

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1361-1:
http://www.ubuntu.com/usn/usn-1361-1/

USN-1362-1:
http://www.ubuntu.com/usn/usn-1362-1/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 19:44:19 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 04:44:19 +0100
Subject: [SEC] [SA47976] WordPress Relocate Upload Plugin "abspath" File
	Inclusion Vulnerability
Message-ID: <201202150344.q1F3iJuA009214@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
WordPress Relocate Upload Plugin "abspath" File Inclusion
Vulnerability

SECUNIA ADVISORY ID:
SA47976

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47976/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47976

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47976/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47976/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47976

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in the Relocate Upload plugin for
WordPress, which can be exploited by malicious people to compromise a
vulnerable system.

Input passed via the "abspath" parameter to
wp-content/plugins/relocate_upload/relocate-upload.php (when
"ru_folder" is set) is not properly verified before being used to
include files. This can be exploited to include arbitrary files from
local or external resources.

The vulnerability is confirmed in version 0.14. Prior versions may
also be affected.

SOLUTION:
Update to version 0.20.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 20:08:33 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 05:08:33 +0100
Subject: [SEC] [SA47968] Semantic MediaWiki Halo Extension "target"
	Cross-Site Scripting Vulnerability
Message-ID: <201202150408.q1F48Xwo031460@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Semantic MediaWiki Halo Extension "target" Cross-Site Scripting
Vulnerability

SECUNIA ADVISORY ID:
SA47968

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47968/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47968

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47968/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47968/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47968

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in the Halo extension for
Semantic MediaWiki, which can be exploited by malicious people to
conduct cross-site scripting attacks.

Input passed via the e.g. "target" parameter to
index.php/Special:FormEdit is not properly sanitised in the
"smwfOnSfSetTargetName()" function
(extensions/SMWHalo/includes/SMW_Initialize.php) before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

Successful exploitation requires the Semantic Forms extension to be
installed and enabled.

The vulnerability is confirmed in version 1.6.0_2. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
Sony

ORIGINAL ADVISORY:
http://packetstormsecurity.org/files/109637/SMW-1.5.6-Cross-Site-Scripting.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 20:22:14 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 05:22:14 +0100
Subject: [SEC] [SA48015] Ubuntu update for kernel
Message-ID: <201202150422.q1F4MEGj021166@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for kernel

SECUNIA ADVISORY ID:
SA48015

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48015/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48015

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/48015/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48015/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48015

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for the kernel. This fixes multiple
vulnerabilities, which can be exploited by malicious, local users in
a guest virtual machine to cause a DoS (Denial of Service), by
malicious, local users to bypass certain security restrictions, and
by malicious people to cause a DoS (Denial of Service) and compromise
a vulnerable system.

For more information:
SA47293
SA47472
SA47488
SA47974

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1363-1:
http://www.ubuntu.com/usn/usn-1363-1/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 20:43:18 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 05:43:18 +0100
Subject: [SEC] [SA47810] Python SimpleXMLRPCServer Request Processing Denial
	of Service Vulnerability
Message-ID: <201202150443.q1F4hIIL010982@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Python SimpleXMLRPCServer Request Processing Denial of Service
Vulnerability

SECUNIA ADVISORY ID:
SA47810

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47810/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47810

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47810/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47810/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47810

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in Python, which can be exploited
by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to the
"SimpleXMLRPCRequestHandler.do_POST()" method not properly handling
an EOF when processing POST requests. This can be exploited to cause
high CPU consumption via a specially crafted HTTP POST request.

The vulnerability is confirmed in version 2.7.2 and also reported in
version 3.2.2. Other versions may also be affected.

SOLUTION:
Restrict access to trusted hosts only.

PROVIDED AND/OR DISCOVERED BY:
Dan Callaghan in a Red Hat bug report.

ORIGINAL ADVISORY:
https://bugzilla.redhat.com/show_bug.cgi?id=789790
http://bugs.python.org/issue14001

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 20:55:22 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 05:55:22 +0100
Subject: [SEC] [SA47954] WordPress s2Member Pro Plugin "Coupon Code"
	Cross-Site Scripting Vulnerability
Message-ID: <201202150455.q1F4tMwE000581@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
WordPress s2Member Pro Plugin "Coupon Code" Cross-Site Scripting
Vulnerability

SECUNIA ADVISORY ID:
SA47954

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47954/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47954

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47954/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47954/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47954

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Chris Martin has reported a vulnerability in the s2Member Pro plugin
for WordPress, which can be exploited by malicious people to conduct
cross-site scripting attacks.

Input passed via a Coupon Code is not properly sanitised before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

The vulnerability is reported in versions prior to 111220.

SOLUTION:
Update to version 111220.

PROVIDED AND/OR DISCOVERED BY:
Chris Martin.

ORIGINAL ADVISORY:
http://www.primothemes.com/forums/viewtopic.php?f=4&t=16173#p56982
http://wordpress.org/extend/plugins/s2member/changelog/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 21:08:39 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 06:08:39 +0100
Subject: [SEC] [SA47970] Red Hat update for glibc
Message-ID: <201202150508.q1F58dx3022747@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for glibc

SECUNIA ADVISORY ID:
SA47970

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47970/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47970

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47970/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47970/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47970

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for glibc. This fixes multiple
weaknesses, a security issue, and multiple vulnerabilities, which can
be exploited by malicious, local users to cause a DoS (Denial of
Service) and potentially gain escalated privileges, by malicious
users to potentially compromise a vulnerable system, and by malicious
people to cause a DoS (Denial of Service) and compromise a vulnerable
system.

For more information:
SA39900
SA43492
SA43976
SA44353
SA47064
SA47567

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0125-01:
https://rhn.redhat.com/errata/RHSA-2012-0125.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 21:22:22 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 06:22:22 +0100
Subject: [SEC] [SA47974] Ubuntu update for linux-ti-omap4
Message-ID: <201202150522.q1F5MMho012449@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for linux-ti-omap4

SECUNIA ADVISORY ID:
SA47974

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47974/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47974

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47974/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47974/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47974

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for the kernel. This fixes multiple
vulnerabilities, which can be exploited by malicious, local users to
bypass certain security restrictions and gain escalated privileges
and by malicious people to compromise a vulnerable system and cause a
DoS (Denial of Service).

For more information:
SA47378
SA47472
SA47488

1) The vulnerability is caused due to the Overlayfs filesystem not
properly checking extended permissions, which can be exploited to
gain access to otherwise restricted files.

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
1) Andy Whitcroft.

ORIGINAL ADVISORY:
USN-1364-1:
http://www.ubuntu.com/usn/usn-1364-1/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 21:43:08 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 06:43:08 +0100
Subject: [SEC] [SA47962] Red Hat update for glibc
Message-ID: <201202150543.q1F5h8gT002196@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for glibc

SECUNIA ADVISORY ID:
SA47962

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47962/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47962

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47962/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47962/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47962

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for glibc. This fixes a weakness, a
security issue, and multiple vulnerabilities, which can be exploited
by malicious, local users to cause a DoS (Denial of Service), by
malicious users to compromise a vulnerable system, and by malicious
people to cause a DoS (Denial of Service) and potentially compromise
a vulnerable system.

For more information:
SA39900
SA44353
SA47064
SA47567

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0126-01:
https://rhn.redhat.com/errata/RHSA-2012-0126.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 21:55:24 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 06:55:24 +0100
Subject: [SEC] [SA47996] Ubuntu update for tomcat6
Message-ID: <201202150555.q1F5tOUb024324@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for tomcat6

SECUNIA ADVISORY ID:
SA47996

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47996/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47996

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47996/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47996/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47996

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for tomcat6. This fixes a security issue
and two vulnerabilities, which can be exploited by malicious people
to bypass certain security restrictions and cause a DoS (Denial of
Service).

For more information:
SA47411
SA47554

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1359-1:
http://www.ubuntu.com/usn/usn-1359-1

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 14 22:08:01 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 07:08:01 +0100
Subject: [SEC] [SA47993] Ubuntu update for firefox
Message-ID: <201202150608.q1F681Qn014024@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for firefox

SECUNIA ADVISORY ID:
SA47993

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47993/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47993

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47993/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47993/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47993

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for firefox. This fixes a vulnerability,
which can be exploited by malicious people to compromise a user's
system.

For more information:
SA48008

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1360-1:
http://www.ubuntu.com/usn/usn-1360-1

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 15 10:31:09 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 19:31:09 +0100
Subject: [SEC] [SA47945] Zimbra Collaboration Suite Multiple Vulnerabilities
Message-ID: <201202151831.q1FIV9B8014820@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Zimbra Collaboration Suite Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47945

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47945/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47945

RELEASE DATE:
2012-02-15

DISCUSS ADVISORY:
http://secunia.com/advisories/47945/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47945/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47945

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in Zimbra Collaboration
Suite, where two have unknown impacts and one can be exploited by
malicious people to disclose potentially sensitive information and
hijack a user's session.

1) The application bundles a vulnerable version of JDK.

For more information, see vulnerability #1 in:
SA46512

2) The vulnerabilities are caused due to unspecified errors. No
further information is currently available.

The vulnerabilities are reported in versions prior to 7.1.4 P1.

SOLUTION:
Update to version 7.1.4 P1.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
Zimbra:
http://files.zimbra.com/website/docs/7.0/Zimbra%20OS%20Release%20Notes%207.1.4-2.pdf

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 15 11:30:34 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 20:30:34 +0100
Subject: [SEC] [SA47888] Sonexis ConferenceManager Access Restrictions
	Security Bypass Vulnerability
Message-ID: <201202151930.q1FJUYmr005227@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Sonexis ConferenceManager Access Restrictions Security Bypass
Vulnerability

SECUNIA ADVISORY ID:
SA47888

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47888/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47888

RELEASE DATE:
2012-02-15

DISCUSS ADVISORY:
http://secunia.com/advisories/47888/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47888/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47888

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Netragard has reported a vulnerability in Sonexis ConferenceManager,
which can be exploited by malicious people to bypass certain security
restrictions.

The vulnerability is caused due to missing access restrictions to the
admin/backup/settings.asp script. This can be exploited to e.g. read
and write user credentials for the Windows share used by the backup
functionality.

The vulnerability is reported in versions 8.x through 10.x.

SOLUTION:
Install fix. Please contact the vendor for more information.

PROVIDED AND/OR DISCOVERED BY:
Netragard.

ORIGINAL ADVISORY:
NETRAGARD-20120201:
http://seclists.org/fulldisclosure/2012/Feb/232

Netragard:
http://pentest.snosoft.com/2012/02/13/netragard-uncovers-0-days-in-sonexis-conferencemanager/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 15 12:29:42 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 21:29:42 +0100
Subject: [SEC] [SA47977] SUSE update for MozillaFirefox
Message-ID: <201202152029.q1FKTgZP028014@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for MozillaFirefox

SECUNIA ADVISORY ID:
SA47977

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47977/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47977

RELEASE DATE:
2012-02-15

DISCUSS ADVISORY:
http://secunia.com/advisories/47977/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47977/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47977

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for MozillaFirefox. This fixes a
vulnerability, which can be exploited by malicious people to
compromise a user's system.

For more information:
SA48008

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0258-1:
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00012.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 15 13:29:51 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 22:29:51 +0100
Subject: [SEC] [SA48011] Red Hat update for java-1.6.0-openjdk
Message-ID: <201202152129.q1FLTpAp018427@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for java-1.6.0-openjdk

SECUNIA ADVISORY ID:
SA48011

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48011/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48011

RELEASE DATE:
2012-02-15

DISCUSS ADVISORY:
http://secunia.com/advisories/48011/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48011/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48011

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for java-1.6.0-openjdk. This fixes
multiple vulnerabilities, which can be exploited by malicious people
to disclose potentially sensitive information, manipulate certain
data, cause a DoS (Denial of Service), and compromise a vulnerable
system.

For more information:
SA48009

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0135-01:
https://rhn.redhat.com/errata/RHSA-2012-0135.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 15 14:27:03 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 23:27:03 +0100
Subject: [SEC] [SA47985] Red Hat update for libvorbis
Message-ID: <201202152227.q1FMR307008799@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for libvorbis

SECUNIA ADVISORY ID:
SA47985

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47985/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47985

RELEASE DATE:
2012-02-15

DISCUSS ADVISORY:
http://secunia.com/advisories/47985/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47985/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47985

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for libvorbis. This fixes a
vulnerability, which can be exploited by malicious people to
compromise a user's system.

For more information see vulnerability #6 in:
SA47816

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0136-01:
https://rhn.redhat.com/errata/RHSA-2012-0136.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 15 14:46:28 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 15 Feb 2012 23:46:28 +0100
Subject: [SEC] [SA47666] Lenovo ThinkManagement Console Web Services Two
	Vulnerabilities
Message-ID: <201202152246.q1FMkSHB030984@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Lenovo ThinkManagement Console Web Services Two Vulnerabilities

SECUNIA ADVISORY ID:
SA47666

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47666/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47666

RELEASE DATE:
2012-02-15

DISCUSS ADVISORY:
http://secunia.com/advisories/47666/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47666/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47666

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Andrea Micalizzi has discovered a security issue and a vulnerability
in Lenovo ThinkManagement Console, which can be exploited by
malicious people to manipulate certain data and compromise a user's
system.

1) The ServerSetup web service
(/landesk/managementsuite/core/core.anonymous/ServerSetup.asmx)
allows unauthenticated access to certain SOAP-based operations and
can be exploited to upload an arbitrary file to the web root via the
"-PutUpdateFileCore" command in a "RunAMTCommand" operation.

Successful exploitation of this vulnerability allows execution of
arbitrary code.

2) An input validation error in the VulCore web service
(/WSVulnerabilityCore/VulCore.asmx) when processing certain
SOAP-based operations can be exploited to delete an arbitrary file
via directory traversal sequences passed in the "filename" parameter
to the "SetTaskLogByFile" operation.

The security issue and the vulnerability are confirmed in version
9.0.3. Other versions may also be affected.

SOLUTION:
Restrict access to trusted hosts only.

PROVIDED AND/OR DISCOVERED BY:
Andrea Micalizzi (rgod) via Secunia.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 15 15:11:36 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 16 Feb 2012 00:11:36 +0100
Subject: [SEC] [SA47951] Mumble Database File Insecure Permissions
Message-ID: <201202152311.q1FNBaIP020877@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Mumble Database File Insecure Permissions

SECUNIA ADVISORY ID:
SA47951

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47951/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47951

RELEASE DATE:
2012-02-15

DISCUSS ADVISORY:
http://secunia.com/advisories/47951/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47951/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47951

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A security issue has been reported in Mumble, which can be exploited
by malicious, local users to disclose sensitive information.

The security issue is caused due to the application creating a
database file (~/.local/share/data/Mumble/Mumble/.mumble.sqlite) with
insecure world-readable permissions. This can be exploited to disclose
password and configuration settings.

The security issue is reported in version 1.2.3. Other versions may
also be affected.

SOLUTION:
Fixed in the Git repository.

PROVIDED AND/OR DISCOVERED BY:
Reported by Tom Haddon in a Ubuntu bug report.

ORIGINAL ADVISORY:
https://bugs.launchpad.net/ubuntu/+source/mumble/+bug/783405

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 15 16:08:53 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 16 Feb 2012 01:08:53 +0100
Subject: [SEC] [SA47984] WordPress cformsII Plugin "rs" Cross-Site Scripting
	Vulnerability
Message-ID: <201202160008.q1G08rbr011260@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
WordPress cformsII Plugin "rs" Cross-Site Scripting Vulnerability

SECUNIA ADVISORY ID:
SA47984

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47984/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47984

RELEASE DATE:
2012-02-15

DISCUSS ADVISORY:
http://secunia.com/advisories/47984/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47984/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47984

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in the cformsII plugin for
WordPress, which can be exploited by malicious people to conduct
cross-site scripting attacks.

Input passed to the "rs" parameter in
wp-content/plugins/cforms/lib_ajax.php is not properly sanitised
before being returned to the user. This can be exploited to execute
arbitrary HTML and script code in a user's browser session in context
of an affected site.

The vulnerability is confirmed in version 13.1. Prior versions may
also be affected.

SOLUTION:
Update to version 13.2.

PROVIDED AND/OR DISCOVERED BY:
JVN credits Kousuke Ebihara and Yuya Watanabe, Tejimaya.inc

ORIGINAL ADVISORY:
cformsII:
http://www.deliciousdays.com/cforms-forum/?forum=2&topic=2&page=1

JVN:
http://jvn.jp/en/jp/JVN35256978/index.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 15 16:33:31 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 16 Feb 2012 01:33:31 +0100
Subject: [SEC] [SA48009] Oracle Java SE Multiple Vulnerabilities
Message-ID: <201202160033.q1G0XVqw001167@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Oracle Java SE Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA48009

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48009/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48009

RELEASE DATE:
2012-02-15

DISCUSS ADVISORY:
http://secunia.com/advisories/48009/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48009/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48009

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in Oracle Java SE, which
can be exploited by malicious people to disclose potentially
sensitive information, manipulate certain data, cause a DoS (Denial
of Service), and compromise a vulnerable system.

1) An error in the 2D component may allow execution of arbitrary code
in a client and server deployment via e.g untrusted applets or data
sent to APIs through a web service.

2) Another error in the 2D component may allow execution of arbitrary
code in a client and server deployment via e.g untrusted applets or
data sent to APIs through a web service.

3) Another error in the 2D component may allow execution of arbitrary
code in a client and server deployment via e.g untrusted applets or
data sent to APIs through a web service.

4) An error in the Deployment component may allow execution of
arbitrary code in a client deployment via e.g untrusted Web Start
applications or untrusted applets.

5) An error in the JavaFX component may allow execution of arbitrary
code in a client deployment.

6) An error in the Install component may allow execution of arbitrary
code in a client deployment via the update mechanism.

This may be related to:
SA47134

7) An error in the Concurrency component can be exploited to disclose
and manipulate certain data and to cause a DoS in a client deployment
via e.g. untrusted Web Start applications or untrusted applets.

8) An error in the I18n component can be exploited to disclose and
manipulate certain data and to cause a DoS in a client deployment via
e.g. untrusted Web Start applications or untrusted applets.

9) An error in the Serialization component can be exploited to
disclose and manipulate certain data and to cause a DoS in a client
deployment via e.g. untrusted Web Start applications or untrusted
applets.

10) An error in the AWT component can be exploited to disclose
certain data and cause a DoS in a client deployment via e.g.
untrusted Web Start applications or untrusted applets.

11) An error in the Sound component can be exploited to disclose
certain data and cause a DoS in a client deployment via e.g.
untrusted Web Start applications or untrusted applets.

12) An error in the Lightweight HTTP Server can be exploited to cause
a DoS.

For more information:
SA47819

13) An error in the Java Runtime Environment component can be
exploited to cause a DoS in a client and server deployment via e.g
untrusted applets or data sent to APIs through a web service.

14) An error in the CORBA component can be exploited to manipulate
certain data in a client deployment via e.g. untrusted Web Start
applications or untrusted applets.

SOLUTION:
Apply patches (please see the vendor's advisory for more
information).

PROVIDED AND/OR DISCOVERED BY:
It is currently unclear who reported the vulnerabilities as the
Oracle Java SE Critical Patch Update for February 2012 only provides
a bundled list of credits. This section will be updated when/if the
original reporter provides more information.

ORIGINAL ADVISORY:
http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 15 16:59:29 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 16 Feb 2012 01:59:29 +0100
Subject: [SEC] [SA47953] OpenVZ update for kernel
Message-ID: <201202160059.q1G0xTgb023519@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
OpenVZ update for kernel

SECUNIA ADVISORY ID:
SA47953

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47953/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47953

RELEASE DATE:
2012-02-15

DISCUSS ADVISORY:
http://secunia.com/advisories/47953/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47953/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47953

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
OpenVZ has issued an update for the kernel. This fixes a weakness and
multiple vulnerabilities, which can be exploited by malicious, local
users to bypass certain security restrictions, cause a DoS (Denial of
Service), and gain escalated privileges.

For more information:
SA47159
SA47332
SA47708

SOLUTION:
Update kernel branch RHEL6 to version 042stab049.6.

ORIGINAL ADVISORY:
http://wiki.openvz.org/Download/kernel/rhel6/042stab049.6

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 15 17:26:44 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 16 Feb 2012 02:26:44 +0100
Subject: [SEC] [SA47960] Red Hat update for mysql
Message-ID: <201202160126.q1G1QiRX013439@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for mysql

SECUNIA ADVISORY ID:
SA47960

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47960/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47960

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47960/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47960/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47960

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for mysql. This fixes multiple
vulnerabilities, which can be exploited by malicious, local users to
gain knowledge of sensitive information or manipulate certain data or
by malicious users to gain knowledge of sensitive information,
manipulate certain data, or cause a DoS (Denial of Service).

For more information:
SA47586

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0127-01:
https://rhn.redhat.com/errata/RHSA-2012-0127.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 15 17:47:12 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 16 Feb 2012 02:47:12 +0100
Subject: [SEC] [SA47890] Debian update for php5
Message-ID: <201202160147.q1G1lC01003226@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Debian update for php5

SECUNIA ADVISORY ID:
SA47890

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47890/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47890

RELEASE DATE:
2012-02-14

DISCUSS ADVISORY:
http://secunia.com/advisories/47890/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47890/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47890

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for php5. This fixes a security issue,
which can be exploited by malicious, local users to perform certain
actions with escalated privileges.

For more information:
SA43533

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2408-1 :
http://www.debian.org/security/2012/dsa-2408

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 16 10:29:48 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 16 Feb 2012 19:29:48 +0100
Subject: [SEC] [SA48039] Ubuntu update for devscripts
Message-ID: <201202161829.q1GITmki004465@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for devscripts

SECUNIA ADVISORY ID:
SA48039

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48039/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48039

RELEASE DATE:
2012-02-16

DISCUSS ADVISORY:
http://secunia.com/advisories/48039/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48039/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48039

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for devscripts. This fixes some
weaknesses, which potentially can be exploited by malicious people to
compromise a vulnerable system.

For more information:
SA47955

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1366-1:
http://www.ubuntu.com/usn/usn-1366-1/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 16 11:30:22 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 16 Feb 2012 20:30:22 +0100
Subject: [SEC] [SA47955] Debian update for devscripts
Message-ID: <201202161930.q1GJUMbK027279@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Debian update for devscripts

SECUNIA ADVISORY ID:
SA47955

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47955/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47955

RELEASE DATE:
2012-02-16

DISCUSS ADVISORY:
http://secunia.com/advisories/47955/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47955/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47955

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for devscripts. This fixes some
weaknesses, which potentially can be exploited by malicious people to
compromise a vulnerable system.

1) Certain input passed to the debdiff.pl script is not properly
sanitised when processing .dsc and .changes files. This can be
exploited to execute arbitrary code via a specially crafted source
packages.

2) Certain input passed via filenames within source packages to the
debdiff.pl script is not properly sanitised. This can be exploited to
execute arbitrary code via specially crafted source packages.

3) Certain input passed via filenames to the debdiff.pl script is not
properly sanitised. This can be exploited to execute arbitrary code
via specially crafted filenames.

Successful exploitation of the weaknesses may allow the execution of
arbitrary code, but requires to trick the user into using the
debdiff.pl script with malicious files.

SOLUTION:
Apply updated packages via the apt-get package manager.

PROVIDED AND/OR DISCOVERED BY:
1) The vendor credits Paul Wise.
2, 3) The vendor credits Raphael Geissert.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 16 12:30:19 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 16 Feb 2012 21:30:19 +0100
Subject: [SEC] [SA48007] Citrix XenServer Web Self Service Multiple
	Unspecified Vulnerabilities
Message-ID: <201202162030.q1GKUJei017701@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Citrix XenServer Web Self Service Multiple Unspecified
Vulnerabilities

SECUNIA ADVISORY ID:
SA48007

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48007/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48007

RELEASE DATE:
2012-02-16

DISCUSS ADVISORY:
http://secunia.com/advisories/48007/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48007/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48007

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Some vulnerabilities with an unknown impact have been reported in
Citrix XenServer.

The vulnerabilities are caused due to unspecified errors in the
management web interface of Web Self Service.

The vulnerabilities are reported in XenServer versions 5.5, 5.6, 5.6
FP 1, 5.6 SP 2, and 6 running Web Self Service prior to version
1.1.1.

SOLUTION:
Update Web Self Service to version 1.1.1.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Maxin Tsoy, Kirill Mosolov, and Ilya Smith,
Positive Research Center.

ORIGINAL ADVISORY:
http://support.citrix.com/article/CTX132219

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 16 13:29:48 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 16 Feb 2012 22:29:48 +0100
Subject: [SEC] [SA48026] libpng "png_decompress_chunk()" Integer Overflow
	Vulnerability
Message-ID: <201202162129.q1GLTmql008112@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
libpng "png_decompress_chunk()" Integer Overflow Vulnerability

SECUNIA ADVISORY ID:
SA48026

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48026/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48026

RELEASE DATE:
2012-02-16

DISCUSS ADVISORY:
http://secunia.com/advisories/48026/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48026/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48026

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in libpng, which can be exploited
by malicious people to potentially compromise an application using
the library.

The vulnerability is caused due to an integer overflow error within
the "png_decompress_chunk()" function (pngrutil.c) when uncompressing
certain chunks, which can be exploited to cause a heap-based buffer
overflow.

Successful exploitation may allow execution of arbitrary code but
requires tricking the user into opening a specially crafted PNG file.

SOLUTION:
Do not open PNG files from untrusted sources.

PROVIDED AND/OR DISCOVERED BY:
Originally reported by Juri Aedla in Google Chrome.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 16 14:35:49 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 16 Feb 2012 23:35:49 +0100
Subject: [SEC] [SA47917] Cisco Nexus Series Switches IP Stack Processing
	Denial of Service Vulnerability
Message-ID: <201202162235.q1GMZne9031009@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Cisco Nexus Series Switches IP Stack Processing Denial of Service
Vulnerability

SECUNIA ADVISORY ID:
SA47917

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47917/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47917

RELEASE DATE:
2012-02-16

DISCUSS ADVISORY:
http://secunia.com/advisories/47917/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47917/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47917

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Cisco NX-OS, which can be
exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an error within the IP stack
processing when obtaining layer 4 (UDP or TCP) information and can be
exploited to reload a device by sending a specially crafted IP
packet.

The vulnerability is reported in the following products:
* Cisco Nexus 1000v Series Switches versions 4.2.x prior to
4.2(1)SV1(5.1)
* Cisco Nexus 5000 Series Switches versions 5.0.x prior to
5.0(2)N1(1)
* Cisco Nexus 7000 Series Switches versions 4.2.x prior to 4.2.8,
versions 5.0.x prior to 5.0.5, and versions 5.1.x prior to 5.1.1

SOLUTION:
Apply update.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120215-nxos

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 16 15:02:25 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 00:02:25 +0100
Subject: [SEC] [SA48019] Drupal Faster Permissions Module Security Bypass
	Vulnerability
Message-ID: <201202162302.q1GN2PsI020927@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Drupal Faster Permissions Module Security Bypass Vulnerability

SECUNIA ADVISORY ID:
SA48019

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48019/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48019

RELEASE DATE:
2012-02-16

DISCUSS ADVISORY:
http://secunia.com/advisories/48019/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48019/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48019

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in the Faster Permissions module
for Drupal, which can be exploited by malicious people to bypass
certain security restrictions.

The vulnerability is caused due to the module not properly
restricting access to the permission administration, which can be
exploited to modify access permissions.

The vulnerability is reported in versions prior to 7.x-1.2.

SOLUTION:
Update to version 7.x-1.2.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Sascha Grossenbacher.

ORIGINAL ADVISORY:
SA-CONTRIB-2012-020:
http://drupal.org/node/1441448

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 16 15:26:30 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 00:26:30 +0100
Subject: [SEC] [SA47959] Cisco Nexus 5000 Series Switches IP Stack
	Processing Denial of Service Vulnerability
Message-ID: <201202162326.q1GNQUBZ010795@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Cisco Nexus 5000 Series Switches IP Stack Processing Denial of
Service Vulnerability

SECUNIA ADVISORY ID:
SA47959

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47959/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47959

RELEASE DATE:
2012-02-16

DISCUSS ADVISORY:
http://secunia.com/advisories/47959/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47959/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47959

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Cisco NX-OS, which can be
exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an error within the IP stack
processing.

For more information:
SA47917

The vulnerability is reported in Cisco Nexus 5000 Series Switches
versions 4.x.

SOLUTION:
Upgrade to version 5.x.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120215-nxos

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 16 16:07:32 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 01:07:32 +0100
Subject: [SEC] [SA47450] ACDSee BMP Image Processing Integer Overflow
	Vulnerability
Message-ID: <201202170007.q1H07WoC000862@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
ACDSee BMP Image Processing Integer Overflow Vulnerability

SECUNIA ADVISORY ID:
SA47450

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47450/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47450

RELEASE DATE:
2012-02-16

DISCUSS ADVISORY:
http://secunia.com/advisories/47450/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47450/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47450

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Tielei Wang has discovered a vulnerability in ACDSee, which can be
exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an integer overflow error in the
IDE_ACDStd.apl module when allocating memory using image dimension
values. This can be exploited to cause a heap-based buffer overflow
via a specially crafted BMP file.

Successful exploitation may allow execution of arbitrary code, but
requires tricking a user into opening a malicious file.

The vulnerability is confirmed in version 14.1 Build 137. Other
versions may also be affected.

SOLUTION:
Do not open files from untrusted sources.

PROVIDED AND/OR DISCOVERED BY:
Tielei Wang, Georgia Tech Information Security Center via Secunia.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 16 16:33:08 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 01:33:08 +0100
Subject: [SEC] [SA47923] Debian update for libpng
Message-ID: <201202170033.q1H0X8h6023327@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Debian update for libpng

SECUNIA ADVISORY ID:
SA47923

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47923/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47923

RELEASE DATE:
2012-02-16

DISCUSS ADVISORY:
http://secunia.com/advisories/47923/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47923/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47923

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has released an update for libpng. This fixes a vulnerability,
which can be exploited by malicious people to potentially compromise
an application using the library.

For more information:
SA48026

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2410-1:
http://lists.debian.org/debian-security-announce/2012/msg00037.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 16 17:00:02 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 02:00:02 +0100
Subject: [SEC] [SA48032] Drupal CDN Module Source Code Disclosure
	Vulnerability
Message-ID: <201202170100.q1H102o7013244@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Drupal CDN Module Source Code Disclosure Vulnerability

SECUNIA ADVISORY ID:
SA48032

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48032/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48032

RELEASE DATE:
2012-02-16

DISCUSS ADVISORY:
http://secunia.com/advisories/48032/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48032/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48032

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in the CDN module for Drupal, which
can be exploited by malicious people to disclose sensitive
information.

The vulnerability is caused due to an unspecified error and can be
exploited to disclose the source code of PHP files.

Successful exploitation requires that the "Far Future expiration"
option is enabled.

The vulnerability is reported in versions 6.x-2.2 and 7.x-2.2.

SOLUTION:
Update to the latest version.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Ivo Van Geertruyen, Drupal Security Team.

ORIGINAL ADVISORY:
SA-CONTRIB-2012-022:
http://drupal.org/node/1441502

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 16 17:26:39 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 02:26:39 +0100
Subject: [SEC] [SA48022] Drupal Link checker Module Security Bypass Security
	Issue
Message-ID: <201202170126.q1H1QdpM003119@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Drupal Link checker Module Security Bypass Security Issue

SECUNIA ADVISORY ID:
SA48022

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48022/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48022

RELEASE DATE:
2012-02-16

DISCUSS ADVISORY:
http://secunia.com/advisories/48022/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48022/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48022

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A security issue has been reported in the Link checker module for
Drupal, which can be exploited by malicious users to bypass certain
security restrictions.

The security issue is caused due to access permissions not being
enforced for broken links, which can be exploited to disclose
otherwise restricted links.

The vulnerability is reported in versions prior to 6.x-2.5.

SOLUTION:
Update to version 6.x-2.5.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Ivo Van Geertruyen, Dave Reid, and David Rothstein
of the Drupal Security Team and Alexander Hass.

ORIGINAL ADVISORY:
SA-CONTRIB-2012-019:
http://drupal.org/node/1441252

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 16 17:46:56 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 02:46:56 +0100
Subject: [SEC] [SA48035] 389 Directory Server "acllas__handle_group_entry()"
	Denial of Service Vulnerability
Message-ID: <201202170146.q1H1ku6W025365@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
389 Directory Server "acllas__handle_group_entry()" Denial of Service
Vulnerability

SECUNIA ADVISORY ID:
SA48035

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48035/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48035

RELEASE DATE:
2012-02-16

DISCUSS ADVISORY:
http://secunia.com/advisories/48035/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48035/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48035

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in 389 Directory Server, which can
be exploited by malicious users to cause a DoS (Denial of Service).

The vulnerability is caused due to an error within the
"acllas__handle_group_entry()" function
(servers/plugins/acl/acllas.c) when handling certain certificate
groups. This can be exploited to trigger an infinite loop and exhaust
CPU via specially created certificate groups.

SOLUTION:
Fixed in the GIT repository.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
https://fedorahosted.org/389/ticket/162
https://bugzilla.redhat.com/show_bug.cgi?id=787014

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 16 18:13:46 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 03:13:46 +0100
Subject: [SEC] [SA47981] LEPTON CMS Multiple Vulnerabilities
Message-ID: <201202170213.q1H2Dk4j015291@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
LEPTON CMS Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47981

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47981/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47981

RELEASE DATE:
2012-02-16

DISCUSS ADVISORY:
http://secunia.com/advisories/47981/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47981/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47981

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
High-Tech Bridge SA has discovered multiple vulnerabilities in LEPTON
CMS, which can be exploited by malicious users to disclose sensitive
information and conduct script insertion attacks and by malicious
people to conduct cross-site scripting and SQL injection attacks.

1) Input passed via the "message" parameter to
admins/login/forgot/index.php is not proerly sanitised before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

Successful exploitation of this vulnerability requires that
"register_globals" is enabled.

2) Input passed via the "display_name" and "email" parameters to
account/preferences.php is not properly sanitised before being used.
This can be exploited to insert arbitrary HTML and script code, which
will be executed in a user's browser session in context of an affected
site when the malicious data is being viewed.

3) Input passed via the "group_id" parameter to modules/news/rss.php
(when "page_id" is set) is not properly sanitised before being used
in SQL queries. This can be exploited to manipulate SQL queries by
injecting arbitrary SQL code.

4) Input passed via the "language" parameter to
account/preferences.php (when "save" is set to "account_settings") is
not properly verified before being used to include files. This can be
exploited to include arbitrary files from local resources via
directory traversal attacks and URL-encoded NULL bytes.

Successful exploitation of this vulnerability requires that
"magic_quotes_gpc" is disabled.

The vulnerabilities are confirmed in version 1.1.3. Prior versions
may also be affected.

SOLUTION:
Update to version 1.1.4.

PROVIDED AND/OR DISCOVERED BY:
High-Tech Bridge SA.

ORIGINAL ADVISORY:
HTB23072:
https://www.htbridge.ch/advisory/HTB23072

LEPTON:
http://www.lepton-cms.org/posts/security-release-lepton-1.1.4-52.php

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 16 18:46:21 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 03:46:21 +0100
Subject: [SEC] [SA47997] 11in1 Cross-Site Request Forgery and File Inclusion
	Vulnerabilities
Message-ID: <201202170246.q1H2kLhK005291@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
11in1 Cross-Site Request Forgery and File Inclusion Vulnerabilities

SECUNIA ADVISORY ID:
SA47997

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47997/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47997

RELEASE DATE:
2012-02-16

DISCUSS ADVISORY:
http://secunia.com/advisories/47997/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47997/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47997

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
High-Tech Bridge SA has discovered multiple vulnerabilities in 11in1,
which can be exploited by malicious people to conduct cross-site
request forgery attacks and disclose sensitive information.

1) The application's web interface allows users to perform certain
actions via HTTP requests without performing any validity checks to
verify the requests. This can be exploited to e.g. change an
administrator's password by tricking a logged in administrator into
visiting a malicious web site.

2) Input passed via the "class" parameter to index.php and
admin/index.php is not properly verified before being used to include
files. This can be exploited to include arbitrary files from local
resources via directory traversal attacks and URL-encoded NULL
bytes.

Successful exploitation of this vulnerability requires that
"magic_quotes_gpc" is disabled.

The vulnerabilities are confirmed in version 1.2.1. Other versions
may also be affected.

SOLUTION:
Edit the source code to ensure that input is properly verified. Do
not browse untrusted websites or follow untrusted links while logged
in to the application.

PROVIDED AND/OR DISCOVERED BY:
High-Tech Bridge SA.

ORIGINAL ADVISORY:
HTB23071:
https://www.htbridge.ch/advisory/HTB23071

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 16 19:15:31 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 04:15:31 +0100
Subject: [SEC] [SA48033] Adobe Flash Player Multiple Vulnerabilities
Message-ID: <201202170315.q1H3FVnm029278@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Adobe Flash Player Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA48033

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48033/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48033

RELEASE DATE:
2012-02-16

DISCUSS ADVISORY:
http://secunia.com/advisories/48033/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48033/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48033

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in Adobe Flash Player,
which can be exploited by malicious people to conduct cross-site
scripting attacks, bypass certain security restrictions, and
compromise a user's system.

1) An unspecified error in an ActiveX Control can be exploited to
corrupt memory.

2) A type confusion error can be exploited to corrupt memory.

3) An unspecified error related to MP4 parsing can be exploited to
corrupt memory.

4) An unspecified error can be exploited to corrupt memory.

5) An unspecified error can be exploited to bypass certain security
restrictions.

6) An unspecified error can be exploited to bypass certain security
restrictions.

Successful exploitation of the vulnerabilities #1 through #6 may
allow execution of arbitrary code.

7) Certain unspecified input is not properly sanitised before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

NOTE: This vulnerability is reportedly being actively exploited in
targeted attacks.

The vulnerabilities are reported in the following products:
* Adobe Flash Player versions 11.1.102.55 and prior for Windows,
Macintosh, Linux, and Solaris
* Adobe Flash Player versions 11.1.112.61 and prior for Android 4.x
* Adobe Flash Player versions 11.1.111.5 and prior for Android 3.x
and prior

SOLUTION:
Update to a fixed version.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
6) Reported by the vendor
7) Reported as a 0-day. The vendor additionally credits Google

The vendor also credits:
1) Xu Liu, Fortinet's FortiGuard Labs
2) Bo Qu, Palo Alto Networks
3, 4) Alexander Gavrun via ZDI
5) Eduardo Vela Nava, Google Security Team

ORIGINAL ADVISORY:
http://www.adobe.com/support/security/bulletins/apsb12-03.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 16 19:44:14 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 04:44:14 +0100
Subject: [SEC] [SA48016] Google Chrome Multiple Vulnerabilities
Message-ID: <201202170344.q1H3iEHn019232@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Google Chrome Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA48016

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48016/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48016

RELEASE DATE:
2012-02-16

DISCUSS ADVISORY:
http://secunia.com/advisories/48016/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48016/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48016

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in Google Chrome, where
some have an unknown impact and others can be exploited by malicious
people to compromise a user's system.

1) An integer overflow error exists in PDF codecs.

2) A use-after-free error exists within counter nodes.

3) A use-after-free error exists within database handling.

4) An error within path rendering can be exploited to cause a
heap-based buffer overflow.

5) An error within MKV handling can be exploited to cause a
heap-based buffer overflow.

6) An unspecified error exists within native client validator.

7) A use-after-free error exists in subframe loading.

8) An unspecified error exists when using HTTP for a translation
script.

9) A use-after-free error exists when performing drag and drop.

10) An error when parsing H.264 content can be exploited to cause an
out-of-bounds read.

11) An integer overflow and integer truncation error exists in
libpng.

12) A type casting error exists in column handling.

SOLUTION:
Update to version 17.0.963.56.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits:
1, 5) scarybeasts, Google Chrome Security Team
2, 3, 12) miaubiz
4) Aki Helin, OUSPG
5) Mateusz Jurczyk, Google Security Team
6) Nick Bray, Chromium development community
7) Arthur Gerkis
8) Jorge Obes, Google Chrome Security Team
9) pa_kt
10) Slawomir Blazek
11) Juri Aedla

ORIGINAL ADVISORY:
http://googlechromereleases.blogspot.com/2012/02/chrome-stable-update.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 16 20:08:23 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 05:08:23 +0100
Subject: [SEC] [SA48010] Piwik Cross-Site Scripting and Request Forgery
	Vulnerabilities
Message-ID: <201202170408.q1H48Nuv009106@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Piwik Cross-Site Scripting and Request Forgery Vulnerabilities

SECUNIA ADVISORY ID:
SA48010

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48010/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48010

RELEASE DATE:
2012-02-16

DISCUSS ADVISORY:
http://secunia.com/advisories/48010/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48010/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48010

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in Piwik, which can be
exploited by malicious people to conduct cross-site scripting and
forgery attacks.

1) Certain unspecified input is not properly sanitised before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

2) The application allows users to perform certain actions via HTTP
requests without performing any validity checks to verify the
requests. This can be exploited to perform certain unspecified
actions by tricking a user into clicking a specially crafted link via
clickjacking.

The vulnerabilities are reported in versions prior to 1.7.

SOLUTION:
Update to version 1.7.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Piotr Duszynski, Sergey Markov, and Mauro Gentile.

ORIGINAL ADVISORY:
http://piwik.org/blog/2012/02/7775/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 10:31:26 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 19:31:26 +0100
Subject: [SEC] [SA47950] swDesk Create Ticket Attachment Arbitrary File
	Upload Vulnerability
Message-ID: <201202171831.q1HIVQmN011733@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
swDesk Create Ticket Attachment Arbitrary File Upload Vulnerability

SECUNIA ADVISORY ID:
SA47950

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47950/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47950

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/47950/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47950/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47950

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in swDesk, which can be exploited
by malicious users to compromise a vulnerable system.

The vulnerability is caused due to the create ticket functionality
not properly validating uploaded files, which can be exploited to
execute arbitrary PHP code by uploading a PHP file.

SOLUTION:
Please contact the vendor for a workaround.

PROVIDED AND/OR DISCOVERED BY:
Red Security TEAM

ORIGINAL ADVISORY:
http://www.exploit-db.com/exploits/18443/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 11:30:19 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 20:30:19 +0100
Subject: [SEC] [SA48013] SQL Buddy Multiple Cross-Site Scripting
	Vulnerabilities
Message-ID: <201202171930.q1HJUJ3v002073@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SQL Buddy Multiple Cross-Site Scripting Vulnerabilities

SECUNIA ADVISORY ID:
SA48013

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48013/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48013

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48013/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48013/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48013

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Gjoko Krstic has discovered multiple vulnerabilities in SQL Buddy,
which can be exploited by malicious people to conduct cross-site
scripting attacks.

Input passed via the "HOST", "USER", and "DATABASE" parameters to
login.php and the "db" parameter to dboverview.php is not properly
sanitised before being returned to the user. This can be exploited to
execute arbitrary HTML and script code in a user's browser session in
context of an affected site.

The vulnerabilities are confirmed in version 1.3.3. Other versions
may also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
Gjoko Krstic, Zero Science Lab.

ORIGINAL ADVISORY:
ZSL-2012-5074:
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2012-5074.php

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 12:30:39 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 21:30:39 +0100
Subject: [SEC] [SA48012] Red Hat update for flash-plugin
Message-ID: <201202172030.q1HKUdV6024951@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for flash-plugin

SECUNIA ADVISORY ID:
SA48012

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48012/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48012

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48012/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48012/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48012

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for flash-plugin. This fixes multiple
vulnerabilities, which can be exploited by malicious people to
conduct cross-site scripting attacks, bypass certain security
restrictions, and compromise a user's system.

For more information:
SA48033

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0144-1:
https://rhn.redhat.com/errata/RHSA-2012-0144.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 13:30:08 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 22:30:08 +0100
Subject: [SEC] [SA48006] SUSE update for flash-player
Message-ID: <201202172130.q1HLU8fT015372@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for flash-player

SECUNIA ADVISORY ID:
SA48006

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48006/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48006

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48006/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48006/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48006

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for flash-player. This fixes multiple
vulnerabilities, which can be exploited by malicious people to
conduct cross-site scripting attacks, bypass certain security
restrictions, and compromise a user's system.

For more information:
SA48033

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0265-1:
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00014.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 14:27:24 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 23:27:24 +0100
Subject: [SEC] [SA48089] Mozilla Firefox / Thunderbird / Seamonkey libpng
	Integer Overflow
Message-ID: <201202172227.q1HMROTo005749@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Mozilla Firefox / Thunderbird / Seamonkey libpng Integer Overflow

SECUNIA ADVISORY ID:
SA48089

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48089/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48089

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48089/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48089/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48089

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Mozilla has acknowledged a vulnerability in Firefox, Thunderbird, and
Seamonkey, which can be exploited by malicious people to potentially
compromise a user's system.

For more information:
SA48026

SOLUTION:
Update to Firefox 10.0.2 or 3.6.27, Thunderbird 10.0.2 or 3.1.19, or
SeaMonkey 2.7.2.

ORIGINAL ADVISORY:
Mozilla:
http://www.mozilla.org/security/announce/2012/mfsa2012-11.html
http://blog.mozilla.com/security/2012/02/17/mozilla-releases-to-address-cve-2011-3026/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 14:45:05 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 17 Feb 2012 23:45:05 +0100
Subject: [SEC] [SA47835] swDesk "email" and "password" Command Injection
	Vulnerabilities
Message-ID: <201202172245.q1HMj51L027921@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
swDesk "email" and "password" Command Injection Vulnerabilities

SECUNIA ADVISORY ID:
SA47835

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47835/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47835

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/47835/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47835/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47835

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Two vulnerabilities have been reported in swDesk, which can be
exploited by malicious people to compromise a vulnerable system.

Input passed via the "email" and "password" parameters to signin.php
is not properly verified before being used. This can be exploited to
inject and execute arbitrary PHP commands.

SOLUTION:
Filter malicious characters and character sequences via a proxy.

PROVIDED AND/OR DISCOVERED BY:
Red Security TEAM

ORIGINAL ADVISORY:
http://www.exploit-db.com/exploits/18443/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 15:11:40 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 18 Feb 2012 00:11:40 +0100
Subject: [SEC] [SA48069] Red Hat update for xulrunner
Message-ID: <201202172311.q1HNBeJh017837@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for xulrunner

SECUNIA ADVISORY ID:
SA48069

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48069/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48069

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48069/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48069/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48069

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for xulrunner. This fixes a
vulnerability, which can be exploited by malicious people to
potentially compromise a user's system.

For more information:
SA48026

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0143-01:
https://rhn.redhat.com/errata/RHSA-2012-0143.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 16:10:17 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 18 Feb 2012 01:10:17 +0100
Subject: [SEC] [SA48070] Red Hat update for firefox and seamonkey
Message-ID: <201202180010.q1I0AHnQ008256@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for firefox and seamonkey

SECUNIA ADVISORY ID:
SA48070

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48070/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48070

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48070/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48070/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48070

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for firefox and seamonkey. This fixes a
vulnerability, which can be exploited by malicious people to
potentially compromise a user's system.

For more information:
SA48026

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0141-01:
https://rhn.redhat.com/errata/RHSA-2012-0141.html

RHSA-2012:0142-01:
https://rhn.redhat.com/errata/RHSA-2012-0142.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 16:48:25 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 18 Feb 2012 01:48:25 +0100
Subject: [SEC] [SA48074] Hitachi Cosminexus Products Java Multiple
	Vulnerabilities
Message-ID: <201202180048.q1I0mPZe030830@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Hitachi Cosminexus Products Java Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA48074

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48074/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48074

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48074/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48074/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48074

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Hitachi has acknowledged multiple vulnerabilities in Hitachi
Cosminexus products, which can be exploited by malicious people to
disclose potentially sensitive information, manipulate certain data,
cause a DoS (Denial of Service), and compromise a vulnerable system.

The vulnerabilities are caused due to vulnerabilities in the bundled
version of Cosminexus Developer's Kit for Java.

For more information:
SA48009

Please see the vendor's advisory for a list of affected products.

SOLUTION:
Update to a fixed version. Please contact the vendor for more
information.

ORIGINAL ADVISORY:
HS12-007:
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS12-007/index.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 17:14:32 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 18 Feb 2012 02:14:32 +0100
Subject: [SEC] [SA48025] SUSE update for openssl
Message-ID: <201202180114.q1I1EWX9020745@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for openssl

SECUNIA ADVISORY ID:
SA48025

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48025/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48025

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48025/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48025/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48025

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for openssl. This fixes a vulnerability,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

For more information:
SA47631

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0266-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00052.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 17:47:53 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 18 Feb 2012 02:47:53 +0100
Subject: [SEC] [SA48056] Jenkins "description" Script Insertion Vulnerability
Message-ID: <201202180147.q1I1lrCd010757@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Jenkins "description" Script Insertion Vulnerability

SECUNIA ADVISORY ID:
SA48056

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48056/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48056

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48056/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48056/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48056

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Sony has discovered a vulnerability in Jenkins, which can be
exploited by malicious users to conduct script insertion attacks.

Input passed via the "description" POST parameter to user/<user
name>/submitDescription is not properly sanitised before being used.
This can be exploited to insert arbitrary HTML and script code, which
will be executed in a user's browser session in context of an affected
site if malicious data is viewed.

The vulnerability is confirmed in version 1.4.51. Other versions may
also be affected.

SOLUTION:
Filter malicious characters and character sequences via a proxy.

PROVIDED AND/OR DISCOVERED BY:
Sony

ORIGINAL ADVISORY:
http://st2tea.blogspot.com/2012/02/jenkins-cross-site-scripting.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 18:11:59 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 18 Feb 2012 03:11:59 +0100
Subject: [SEC] [SA48020] Drupal Organic Groups Vocabulary Module Security
	Bypass Weakness
Message-ID: <201202180211.q1I2BxSn000571@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Drupal Organic Groups Vocabulary Module Security Bypass Weakness

SECUNIA ADVISORY ID:
SA48020

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48020/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48020

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48020/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48020/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48020

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A weakness has been reported in the Organic Groups Vocabulary module
for Drupal, which can be exploited by malicious users to bypass
certain security restrictions.

The weakness is caused due to the module not properly restricting
access to vocabularies, which can be exploited to modify vocabularies
of other groups.

Successful exploitation requires the "administer own group
vocabulary" permission and the "administer organic groups" permission
for another group.

The weakness is reported in versions prior to 6.x-1.2.

SOLUTION:
Update to version 6.x-1.2.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Amitai Burstein.

ORIGINAL ADVISORY:
SA-CONTRIB-2012-021:
http://drupal.org/node/1441450

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 18:45:16 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 18 Feb 2012 03:45:16 +0100
Subject: [SEC] [SA47998] IBM WebSphere DataPower SOA Appliances SSL/TLS
	Initialization Vector Selection Weakness
Message-ID: <201202180245.q1I2jG2O023052@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
IBM WebSphere DataPower SOA Appliances SSL/TLS Initialization Vector
Selection Weakness

SECUNIA ADVISORY ID:
SA47998

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47998/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47998

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/47998/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47998/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47998

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A weakness has been reported in WebSphere DataPower SOA Appliances,
which can be exploited by malicious people to disclose potentially
sensitive information and hijack a user's session.

A design error exists within the implementation of SSL 3.0 and TLS
1.0 protocols.

For more information:
SA46168

The weakness is reported in versions 3.8, 3.8.1, 3.8.2, 4.0, 4.0.1,
and 4.0.2.

SOLUTION:
As a workaround enable RC4 encryption (please see the vendor's
advisory for details).

PROVIDED AND/OR DISCOVERED BY:
Thai Duong and Juliano Rizzo.

ORIGINAL ADVISORY:
http://www.ibm.com/support/docview.wss?uid=swg21578730

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 19:14:52 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 18 Feb 2012 04:14:52 +0100
Subject: [SEC] [SA48072] Red Hat update for thunderbird
Message-ID: <201202180314.q1I3EqBA013495@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for thunderbird

SECUNIA ADVISORY ID:
SA48072

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48072/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48072

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48072/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48072/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48072

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for thunderbird. This fixes a
vulnerability, which can be exploited by malicious people to
potentially compromise a user's system.

For more information:
SA48026

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0140-01:
https://rhn.redhat.com/errata/RHSA-2012-0140.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 19:43:18 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 18 Feb 2012 04:43:18 +0100
Subject: [SEC] [SA48080] Ubuntu update for apache2
Message-ID: <201202180343.q1I3hIHM003432@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for apache2

SECUNIA ADVISORY ID:
SA48080

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48080/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48080

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48080/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48080/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48080

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for apache2. This fixes two weaknesses
and some vulnerabilities, which can be exploited by malicious, local
users to bypass certain security restrictions and gain escalated
privileges and by malicious people to bypass certain security
restrictions, disclose potentially sensitive information, and cause a
DoS (Denial of Service).

For more information:
SA45793
SA46987
SA47410
SA47779

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1368-1:
http://www.ubuntu.com/usn/usn-1368-1/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 19:55:29 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 18 Feb 2012 04:55:29 +0100
Subject: [SEC] [SA48002] TeX Live t1lib Font Parsing Two Vulnerabilities
Message-ID: <201202180355.q1I3tTJi025517@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
TeX Live t1lib Font Parsing Two Vulnerabilities

SECUNIA ADVISORY ID:
SA48002

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48002/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48002

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48002/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48002/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48002

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Two vulnerabilities have been reported in TeX Live, which can be
exploited by malicious people to compromise a user's system.

The application bundles a vulnerable version of t1lib.

For more information see vulnerabilities #1 and #2 in:
SA43491

The vulnerabilities are reported in versions prior to texlive-2011.0.

SOLUTION:
Update to version texlive-2011.0.

PROVIDED AND/OR DISCOVERED BY:
Originally reported in Evince by Jon Larimer, IBM X-Force and
rock-madrid.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 20:08:17 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 18 Feb 2012 05:08:17 +0100
Subject: [SEC] [SA48086] SecureSphere Web Application Firewall Username
	Script Insertion Vulnerability
Message-ID: <201202180408.q1I48HQu015235@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SecureSphere Web Application Firewall Username Script Insertion
Vulnerability

SECUNIA ADVISORY ID:
SA48086

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48086/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48086

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48086/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48086/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48086

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Roger Wemyss has reported a vulnerability in SecureSphere Web
Application Firewall, which can be exploited by malicious people to
conduct script insertion attacks.

Certain input passed to a web server protected by SecureSphere is not
properly sanitised before being displayed to the user. This can be
exploited to insert arbitrary HTML and script code, which will be
executed in an administrator's browser session in context of an
affected site when the administrator views the username field of the
violations table.

The vulnerability is reported in version 9.0.

SOLUTION:
Update to version 9.0 Patch 1.

PROVIDED AND/OR DISCOVERED BY:
Roger Wemyss, Dell SecureWorks

ORIGINAL ADVISORY:
SecureSphere:
http://www.imperva.com/resources/adc/adc_advisories_response_secureworks_CVE-2011-4887.html

Dell SecureWorks:
http://www.secureworks.com/research/advisories/SWRX-2012-002/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 20:22:22 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 18 Feb 2012 05:22:22 +0100
Subject: [SEC] [SA48001] TeX Live t1lib Font Parsing Multiple Vulnerabilities
Message-ID: <201202180422.q1I4MM7h004955@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
TeX Live t1lib Font Parsing Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA48001

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48001/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48001

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48001/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48001/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48001

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in TeX Live, which can be
exploited by malicious people to compromise a user's system.

The application bundles a vulnerable version of t1lib.

For more information see vulnerability #3 in:
SA43491

The vulnerabilities are reported in version texlive-2011.0. Other
versions may also be affected.

SOLUTION:
Do not open files from untrusted sources.

PROVIDED AND/OR DISCOVERED BY:
Jonathan Brossard

ORIGINAL ADVISORY:
Jonathan Brossard:
http://www.toucan-system.com/advisories/tssa-2011-01.txt

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 20:43:06 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 18 Feb 2012 05:43:06 +0100
Subject: [SEC] [SA48042] Red Hat update for texlive
Message-ID: <201202180443.q1I4h6ZC027158@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for texlive

SECUNIA ADVISORY ID:
SA48042

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48042/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48042

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48042/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48042/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48042

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for texlive. This fixes multiple
vulnerabilities, which can be exploited by malicious people to
compromise a user's system.

For more information:
SA48001
SA48002

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0137-01:
https://rhn.redhat.com/errata/RHSA-2012-0137.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 20:54:59 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 18 Feb 2012 05:54:59 +0100
Subject: [SEC] [SA48073] Red Hat update for java-1.6.0-sun
Message-ID: <201202180454.q1I4sxAm016852@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for java-1.6.0-sun

SECUNIA ADVISORY ID:
SA48073

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48073/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48073

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48073/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48073/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48073

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for java-1.6.0-sun. This fixes multiple
vulnerabilities, which can be exploited by malicious people to
disclose potentially sensitive information, manipulate certain data,
cause a DoS (Denial of Service), and compromise a vulnerable system.

For more information:
SA48009

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0139-1:
https://rhn.redhat.com/errata/RHSA-2012-0139.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 21:08:51 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 18 Feb 2012 06:08:51 +0100
Subject: [SEC] [SA47922] Cisco IronPort Encryption Appliance "header"
	Cross-Site Scripting Vulnerability
Message-ID: <201202180508.q1I58pRo006586@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Cisco IronPort Encryption Appliance "header" Cross-Site Scripting
Vulnerability

SECUNIA ADVISORY ID:
SA47922

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47922/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47922

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/47922/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47922/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47922

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Dell SecureWorks has reported a vulnerability in Cisco IronPort
Encryption Appliance, which can be exploited by malicious people to
conduct cross-site scripting attacks.

Input passed via the "header" parameter to admin/ is not properly
sanitised before being returned to the user. This can be exploited to
execute arbitrary HTML and script code in a user's browser session in
context of an affected site.

The vulnerability is reported in versions prior to 6.5.3.

SOLUTION:
Update to version 6.5.3.

PROVIDED AND/OR DISCOVERED BY:
Craig Lambert, Dell SecureWorks.

ORIGINAL ADVISORY:
Cisco:
http://tools.cisco.com/security/center/viewAlert.x?alertId=25045

Dell SecureWorks:
http://www.secureworks.com/research/advisories/SWRX-2012-001/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 21:22:48 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 18 Feb 2012 06:22:48 +0100
Subject: [SEC] [SA48085] SUSE update for jetty5
Message-ID: <201202180522.q1I5MmiK028685@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for jetty5

SECUNIA ADVISORY ID:
SA48085

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48085/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48085

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48085/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48085/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48085

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for jetty5. This fixes a vulnerability,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

For more information:
SA47408

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0262-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00050.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 17 21:43:23 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 18 Feb 2012 06:43:23 +0100
Subject: [SEC] [SA48078] Ubuntu update for libpng
Message-ID: <201202180543.q1I5hNPn018517@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for libpng

SECUNIA ADVISORY ID:
SA48078

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48078/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48078

RELEASE DATE:
2012-02-17

DISCUSS ADVISORY:
http://secunia.com/advisories/48078/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48078/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48078

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for libpng. This fixes a vulnerability,
which can be exploited by malicious people to potentially compromise
an application using the library.

For more information:
SA48026

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1367-1:
http://www.ubuntu.com/usn/usn-1367-1

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 10:30:55 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 20 Feb 2012 19:30:55 +0100
Subject: [SEC] [SA48053] SyndeoCMS Cross-Site Request Forgery Vulnerability
Message-ID: <201202201830.q1KIUtGq030684@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SyndeoCMS Cross-Site Request Forgery Vulnerability

SECUNIA ADVISORY ID:
SA48053

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48053/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48053

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/48053/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48053/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48053

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in SyndeoCMS, which can be
exploited by malicious people to conduct cross-site request forgery
attacks.

The application allows users to perform certain actions via HTTP
requests without performing any validity checks to verify the
requests.

For more information see vulnerability #3 in:
SA40769

The vulnerability is confirmed in version 3.0.01. Other versions may
also be affected.

SOLUTION:
Do not browse untrusted websites or follow untrusted links while
logged in to the application.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 11:30:23 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 20 Feb 2012 20:30:23 +0100
Subject: [SEC] [SA47971] F*EX Multiple Cross-Site Scripting Vulnerabilities
Message-ID: <201202201930.q1KJUNWi021104@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
F*EX Multiple Cross-Site Scripting Vulnerabilities

SECUNIA ADVISORY ID:
SA47971

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47971/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47971

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/47971/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47971/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47971

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in F*EX (Frams's Fast
File EXchange), which can be exploited by malicious people to conduct
cross-site scripting attacks.

1) Input passed via the "id" parameter to /fup is not properly
sanitised before being returned to the user. This can be exploited to
execute arbitrary HTML and script code in a user's browser session in
context of an affected site.

This vulnerability is reported in versions 20100208 and 20111129-2.

2) Input passed via the "to" and "from" POST parameters to /fup is
not properly sanitised before being returned to the user. This can be
exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

This vulnerability is reported in version 20100208.

SOLUTION:
Update to version 20120215.

PROVIDED AND/OR DISCOVERED BY:
muuratsalo

ORIGINAL ADVISORY:
http://seclists.org/oss-sec/2012/q1/att-441/FEX_20100208.txt
http://seclists.org/oss-sec/2012/q1/att-441/FEX_20111129-2.txt

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 12:30:10 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 20 Feb 2012 21:30:10 +0100
Subject: [SEC] [SA48040] WordPress Absolute Privacy Plugin Security Bypass
	Vulnerability
Message-ID: <201202202030.q1KKUAPK011535@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
WordPress Absolute Privacy Plugin Security Bypass Vulnerability

SECUNIA ADVISORY ID:
SA48040

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48040/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48040

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/48040/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48040/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48040

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
schaffnern has discovered a vulnerability in the Absolute Privacy
plugin for WordPress, which can be exploited by malicious people to
bypass certain security restrictions.

The vulnerability is caused due to an error within the
"abpr_authenticateUser()" function in
wp-content/plugins/absolute-privacy/functions.php, which prevents the
password from being verified. This can be exploited to bypass the
authentication mechanism and gain administrative access to the
application.

The vulnerability is confirmed in version 2.0.5. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly verified.

PROVIDED AND/OR DISCOVERED BY:
schaffnern.

ORIGINAL ADVISORY:
http://wordpress.org/support/topic/absolute-privacy-badly-broken

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 13:30:16 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 20 Feb 2012 22:30:16 +0100
Subject: [SEC] [SA48111] SUSE update for apache2
Message-ID: <201202202130.q1KLUGvV001893@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for apache2

SECUNIA ADVISORY ID:
SA48111

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48111/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48111

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/48111/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48111/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48111

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for apache2. This fixes a weakness and
multiple vulnerabilities, which can be exploited by malicious, local
users to bypass certain security restrictions and by malicious people
to disclose potentially sensitive information and cause a DoS (Denial
of Service).

For more information:
SA47410
SA47779

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
SUSE-SU-2012:0284-1:
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00016.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 14:43:13 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 20 Feb 2012 23:43:13 +0100
Subject: [SEC] [SA48057] Mitra National Iranian CMS Xinha File Upload
	Vulnerability
Message-ID: <201202202243.q1KMhDfY024978@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Mitra National Iranian CMS Xinha File Upload Vulnerability

SECUNIA ADVISORY ID:
SA48057

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48057/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48057

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/48057/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48057/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48057

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in Mitra National Iranian CMS,
which can be exploited by malicious people to compromise a vulnerable
system.

The vulnerability is caused due to a bundled, vulnerable version of
Xinha.

For more information see vulnerability #2 in:
SA40669

The vulnerability is confirmed in version 3.0.3. Other versions may
also be affected.

NOTE: The version 3.0.7 light is not affected by this vulnerability.

SOLUTION:
Restrict access to the
plugins/editors/xinha/plugins/ImageManager/demo_images folder (e.g.
via .htaccess).

PROVIDED AND/OR DISCOVERED BY:
Originally discovered by Russ McRee via Secunia and Hauser & Wenz in
Serendipity.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 14:57:40 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 20 Feb 2012 23:57:40 +0100
Subject: [SEC] [SA48075] Ubuntu update for thunderbird
Message-ID: <201202202257.q1KMve5N014718@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for thunderbird

SECUNIA ADVISORY ID:
SA48075

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48075/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48075

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/48075/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48075/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48075

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for thunderbird. This fixes multiple
vulnerabilities, which can be exploited by malicious people to bypass
certain security restrictions, disclose certain sensitive information,
and compromise a user's system.

For more information:
SA47816
SA48008
SA48089

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1369-1:
http://www.ubuntu.com/usn/usn-1369-1/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 15:25:44 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 00:25:44 +0100
Subject: [SEC] [SA48081] Ubuntu update for thunderbird
Message-ID: <201202202325.q1KNPiWZ004674@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for thunderbird

SECUNIA ADVISORY ID:
SA48081

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48081/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48081

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/48081/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48081/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48081

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for thunderbird. This fixes a
vulnerability, which can be exploited by malicious people to
potentially compromise a user's system.

For more information:
SA48089

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1367-3:
http://www.ubuntu.com/usn/usn-1367-3/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 15:59:13 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 00:59:13 +0100
Subject: [SEC] [SA48044] Debian update for mumble
Message-ID: <201202202359.q1KNxDZL027091@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Debian update for mumble

SECUNIA ADVISORY ID:
SA48044

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48044/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48044

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/48044/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48044/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48044

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for mumble. This fixes a security issue,
which can be exploited by malicious, local users to disclose
sensitive information.

For more information:
SA47951

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2411-1:
http://www.debian.org/security/2012/dsa-2411

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 16:36:05 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 01:36:05 +0100
Subject: [SEC] [SA48098] Ubuntu update for firefox
Message-ID: <201202210036.q1L0a5QC017281@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for firefox

SECUNIA ADVISORY ID:
SA48098

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48098/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48098

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/48098/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48098/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48098

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for firefox. This fixes a vulnerability,
which can be exploited by malicious people to potentially compromise
a user's system.

For more information:
SA48089

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1367-2:
http://www.ubuntu.com/usn/usn-1367-2/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 16:59:02 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 01:59:02 +0100
Subject: [SEC] [SA48059] Gentoo update for chromium
Message-ID: <201202210059.q1L0x2aY007156@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Gentoo update for chromium

SECUNIA ADVISORY ID:
SA48059

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48059/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48059

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/48059/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48059/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48059

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Gentoo has issued an update for chromium. This fixes multiple
vulnerabilities, where some have an unknown impact and others can be
exploited by malicious people to bypass certain security
restrictions, manipulate certain data, and compromise a user's
system.

For more information:
SA47938
SA48016

SOLUTION:
Update to version "www-client/chromium-17.0.963.56" or later.

ORIGINAL ADVISORY:
GLSA 201202-01:
http://security.gentoo.org/glsa/glsa-201202-01.xml

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 17:32:40 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 02:32:40 +0100
Subject: [SEC] [SA48043] Debian update for libvorbis
Message-ID: <201202210132.q1L1Weh0029577@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Debian update for libvorbis

SECUNIA ADVISORY ID:
SA48043

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48043/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48043

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/48043/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48043/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48043

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for libvorbis. This fixes a
vulnerability, which can be exploited by malicious people to
compromise an application using the library.

For more information see vulnerability #6 in:
SA47816

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2412-1:
http://www.us.debian.org/security/2012/dsa-2412

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 17:59:37 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 02:59:37 +0100
Subject: [SEC] [SA48102] Tiki Wiki CMS/Groupware "url" Cross-Site Scripting
	Vulnerability
Message-ID: <201202210159.q1L1xbAK019510@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Tiki Wiki CMS/Groupware "url" Cross-Site Scripting Vulnerability

SECUNIA ADVISORY ID:
SA48102

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48102/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48102

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/48102/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48102/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48102

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Sony has discovered a vulnerability in Tiki Wiki CMS/Groupware, which
can be exploited by malicious people to conduct cross-site scripting
attacks.

Input passed to the "url" parameter in tiki-featured_link.php is not
properly sanitised before being returned to the user. This can be
exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

Successful exploitation requires that the "featuredLinks" feature is
enabled.

The vulnerability is confirmed in version 8.3. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
Sony

ORIGINAL ADVISORY:
http://st2tea.blogspot.com/2012/02/tiki-wiki-cms-groupware-frame-injection.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 18:26:17 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 03:26:17 +0100
Subject: [SEC] [SA48093] 7-Technologies AQUIS / TERMIS Insecure Library
	Loading Vulnerability
Message-ID: <201202210226.q1L2QHbV009444@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
7-Technologies AQUIS / TERMIS Insecure Library Loading Vulnerability

SECUNIA ADVISORY ID:
SA48093

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48093/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48093

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/48093/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48093/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48093

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in AQUIS and TERMIS, which can be
exploited by malicious people to compromise a user's system.

The vulnerability is caused due to the application loading
unspecified libraries in an insecure manner. This can be exploited to
load arbitrary libraries by tricking a user into e.g. opening a
certain file located on a remote WebDAV or SMB share.

Successful exploitation allows execution of arbitrary code.

The vulnerability is reported in the following products:
* AQUIS version 1.5 dated October 13, 2011 and prior.
* TERMIS version 2.10 dated November 30, 2011 and prior.

SOLUTION:
Apply patches.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
ICS-CERT credits Kuang-Chun Hung, Security Research and Service
Institute&#8722;Information and Communication Security Technology
Center (ICST).

ORIGINAL ADVISORY:
ICS-CERT:
http://www.us-cert.gov/control_systems/pdf/ICSA-12-025-01.pdf
http://www.us-cert.gov/control_systems/pdf/ICSA-12-025-02.pdf

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 18:45:10 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 03:45:10 +0100
Subject: [SEC] [SA48047] SAP NetWeaver SAPHostControl Buffer Overflow
	Vulnerability
Message-ID: <201202210245.q1L2jA91031641@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SAP NetWeaver SAPHostControl Buffer Overflow Vulnerability

SECUNIA ADVISORY ID:
SA48047

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48047/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48047

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/48047/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48047/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48047

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Context Information Security has reported a vulnerability in SAP
NetWeaver, which can be exploited by malicious people to compromise a
vulnerable system.

The vulnerability is caused due to a boundary error within the
SAPHostControl service when handling certain commands wrapped in SOAP
messages and can be exploited to cause a stack-based buffer overflow
via an overly long command.

The vulnerability is reported in version 7.02. Other versions may
also be affected.

SOLUTION:
Apply SAP security note 1638811.

PROVIDED AND/OR DISCOVERED BY:
Nico Leidecker, Context Information Security.

ORIGINAL ADVISORY:
SAP:
https://service.sap.com/sap/support/notes/1638811 

Context Information Security:
http://archives.neohapsis.com/archives/fulldisclosure/2012-02/0269.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 19:15:34 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 04:15:34 +0100
Subject: [SEC] [SA48108] X3 CMS "search" Cross-Site Scripting Vulnerability
Message-ID: <201202210315.q1L3FYbP022118@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
X3 CMS "search" Cross-Site Scripting Vulnerability

SECUNIA ADVISORY ID:
SA48108

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48108/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48108

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/48108/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48108/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48108

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in X3 CMS, which can be exploited
by malicious people to conduct cross-site scripting attacks.

Input passed to the "search" POST parameter in e.g. en/search is not
properly sanitised in cms/controllers/public/search_controller.php
before being returned to the user. This can be exploited to execute
arbitrary HTML and script code in a user's browser session in context
of an affected site.

The vulnerability is confirmed in version 0.4.3.1-STABLE. Other
versions may also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
l20ot

ORIGINAL ADVISORY:
http://packetstormsecurity.org/files/109903/X3-CMS-0.4.3.1-Cross-Site-Scripting.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 19:43:48 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 04:43:48 +0100
Subject: [SEC] [SA48068] Ubuntu update for xulrunner
Message-ID: <201202210343.q1L3hmVm012067@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for xulrunner

SECUNIA ADVISORY ID:
SA48068

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48068/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48068

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/48068/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48068/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48068

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for xulrunner. This fixes a
vulnerability, which can be exploited by malicious people to
potentially compromise a user's system.

For more information:
SA48089

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1367-4:
http://www.ubuntu.com/usn/usn-1367-4/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 20:08:29 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 05:08:29 +0100
Subject: [SEC] [SA48109] MoniWiki "login_id" Cross-Site Scripting
	Vulnerability
Message-ID: <201202210408.q1L48Tv7001893@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
MoniWiki "login_id" Cross-Site Scripting Vulnerability

SECUNIA ADVISORY ID:
SA48109

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48109/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48109

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/48109/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48109/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48109

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Sony has discovered a vulnerability in MoniWiki, which can be
exploited by malicious people to conduct cross-site scripting
attacks.

Input passed to the "login_id" POST parameter in wiki.php (when
"action" is set to "userform") is not properly sanitised before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

The vulnerability is confirmed in version 1.1.5. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
Sony

ORIGINAL ADVISORY:
http://st2tea.blogspot.com/2012/02/moniwiki-cross-site-scripting.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 20 20:38:01 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 05:38:01 +0100
Subject: [SEC] [SA48003] SUSE update for qemu
Message-ID: <201202210438.q1L4c1ZH024321@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for qemu

SECUNIA ADVISORY ID:
SA48003

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48003/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48003

RELEASE DATE:
2012-02-20

DISCUSS ADVISORY:
http://secunia.com/advisories/48003/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48003/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48003

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for qemu. This fixes a vulnerability, which
can be exploited by malicious, local users in a guest virtual machine
to potentially gain escalated privileges.

For more information:
SA47740

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0267-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00053.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 10:31:48 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 19:31:48 +0100
Subject: [SEC] [SA47999] CPG Dragonfly CMS "meta" and URL Cross-Site
	Scripting Vulnerabilities
Message-ID: <201202211831.q1LIVmfl026520@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
CPG Dragonfly CMS "meta" and URL Cross-Site Scripting Vulnerabilities

SECUNIA ADVISORY ID:
SA47999

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47999/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47999

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/47999/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47999/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47999

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ariko-Security has discovered two vulnerabilities in CPG Dragonfly
CMS, which can be exploited by malicious people to conduct cross-site
scripting attacks.

1) Input passed via the "meta" parameter to index.php (when "name" is
set to "coppermine" and "file" is set to "thumbnails") is not properly
sanitised before being returned to the user. This can be exploited to
execute arbitrary HTML and script code in a user's browser session in
context of an affected site.

This vulnerability may be related to:
SA18940

2) Input passed via the URL to index.php (when "name" is set to
"coppermine") is not properly sanitised before being returned to the
user. This can be exploited to execute arbitrary HTML and script code
in a user's browser session in context of an affected site.

Successful exploitation of this vulnerability requires "Enable debug
mode" of the coppermine configuration to be enabled (enabled by
default).

The vulnerabilities are confirmed in version 9.3.3.0. Other versions
may also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.
Disable "Enable debug mode" within the coppermine configuration.

PROVIDED AND/OR DISCOVERED BY:
Ariko-Security

ORIGINAL ADVISORY:
Ariko-Security:
http://advisories.ariko-security.com/2012/audyt_bezpieczenstwa_1m2.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 11:30:11 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 20:30:11 +0100
Subject: [SEC] [SA48092] Symantec pcAnywhere Denial of Service Vulnerability
Message-ID: <201202211930.q1LJUBJE016939@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Symantec pcAnywhere Denial of Service Vulnerability

SECUNIA ADVISORY ID:
SA48092

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48092/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48092

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48092/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48092/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48092

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Symantec pcAnywhere, which can
be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an error in the awhost32 component
when processing certain network requests. This can be exploited to
temporarily prevent new connections from being established via a
specially crafted packet sent to TCP port 5631.

The vulnerability is reported in version 12.5 build 463. Other
versions may also be affected.

SOLUTION:
Restrict access to trusted hosts only.

PROVIDED AND/OR DISCOVERED BY:
Johnathan Norman

ORIGINAL ADVISORY:
http://www.exploit-db.com/exploits/18493/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 12:30:02 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 21:30:02 +0100
Subject: [SEC] [SA48034] Debian update for libarchive
Message-ID: <201202212030.q1LKU2jT007375@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Debian update for libarchive

SECUNIA ADVISORY ID:
SA48034

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48034/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48034

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48034/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48034/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48034

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for libarchive. This fixes two
vulnerabilities, which can be exploited by malicious people to
potentially compromise an application using the library.

For more information:
SA47049

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2413-1:
http://www.debian.org/security/2012/dsa-2413

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 13:30:10 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 22:30:10 +0100
Subject: [SEC] [SA48055] IBM WebSphere Lombardi Edition Coach Script
	Insertion Vulnerability
Message-ID: <201202212130.q1LLUAQp030200@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
IBM WebSphere Lombardi Edition Coach Script Insertion Vulnerability

SECUNIA ADVISORY ID:
SA48055

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48055/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48055

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48055/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48055/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48055

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in IBM WebSphere Lombardi Edition,
which can be exploited by malicious people to conduct script
insertion attacks.

Input passed via certain input controls within coaches is not
properly sanitised before being used. This can be exploited to insert
HTML and script code, which will be executed in a user's browser
session in context of an affected site if malicious data is viewed.

Successful exploitation requires a Document Attachment Control within
the coach.

The vulnerability is reported in version 7.2.

SOLUTION:
Apply APAR IC79890 or iFix (available via FixCentral).

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
IBM (IC79890):
http://www-01.ibm.com/support/docview.wss?uid=swg1IC79890

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 14:26:47 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 23:26:47 +0100
Subject: [SEC] [SA48045] Red Hat update for initscripts
Message-ID: <201202212226.q1LMQlOI020585@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for initscripts

SECUNIA ADVISORY ID:
SA48045

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48045/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48045

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48045/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48045/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48045

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for initscripts. This fixes a weakness,
which can be exploited by malicious people to potentially disclose
sensitive information.

The weakness is caused due to the racoon IKE key management daemon
using aggressive mode when negotiating keys. This can be exploited to
disclose the hash of the preshared key.

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0312-03:
https://rhn.redhat.com/errata/RHSA-2012-0312.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 14:45:47 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 21 Feb 2012 23:45:47 +0100
Subject: [SEC] [SA48083] Website Baker "Referer" Header Cross-Site Scripting
	Vulnerabilities
Message-ID: <201202212245.q1LMjlcJ010404@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Website Baker "Referer" Header Cross-Site Scripting Vulnerabilities

SECUNIA ADVISORY ID:
SA48083

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48083/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48083

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48083/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48083/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48083

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Stefan Schurtz has discovered two vulnerabilities in Website Baker,
which can be exploited by malicious people to conduct cross-site
scripting attacks.

Input passed via the "Referer" HTTP header to e.g. index.php is not
properly sanitised in templates/allcss/index.php and
templates/round/index.php before being returned to the user. This can
be exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

The vulnerabilities are confirmed in version 2.8.2 SP2. Prior
versions may also be affected.

SOLUTION:
Update to version 2.8.3.

PROVIDED AND/OR DISCOVERED BY:
Stefan Schurtz.

ORIGINAL ADVISORY:
SSCHADV2012-003:
http://www.darksecurity.de/advisories/2012/SSCHADV2012-003.txt

Website Baker:
http://project.websitebaker2.org/projects/wb28x/repository/revisions/1596

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 15:12:04 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 00:12:04 +0100
Subject: [SEC] [SA48126] Novell Messenger Client Contact File Processing
	Buffer Overflow Vulnerability
Message-ID: <201202212312.q1LNC46v032714@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Novell Messenger Client Contact File Processing Buffer Overflow
Vulnerability

SECUNIA ADVISORY ID:
SA48126

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48126/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48126

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48126/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48126/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48126

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Luigi Auriemma has discovered a vulnerability in Novell Messenger
Client, which can be exploited by malicious people to compromise a
user's system.

The vulnerability is caused due to a boundary error when processing
the "name" value of a "folder" tag. This can be exploited to cause a
stack-based buffer overflow via a specially crafted contact list
file.

Successful exploitation allows execution of arbitrary code, but
requires tricking a user into opening or importing a malicious file.

The vulnerability is confirmed in version 2.1.0. Other versions may
also be affected.

SOLUTION:
Do not open or import contact list files from untrusted sources.

PROVIDED AND/OR DISCOVERED BY:
Luigi Auriemma

ORIGINAL ADVISORY:
http://aluigi.altervista.org/adv/nim_1-adv.txt

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 16:05:23 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 01:05:23 +0100
Subject: [SEC] [SA48117] Red Hat update for busybox
Message-ID: <201202220005.q1M05NkK023067@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for busybox

SECUNIA ADVISORY ID:
SA48117

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48117/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48117

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48117/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48117/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48117

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for busybox. This fixes two
vulnerabilities, which can be exploited by malicious people to cause
a DoS (Denial of Service) and compromise a vulnerable system.

For more information:
SA45363
SA45702

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0308-03:
https://rhn.redhat.com/errata/RHSA-2012-0308.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 16:34:18 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 01:34:18 +0100
Subject: [SEC] [SA47861] SAP NetWeaver Multiple Vulnerabilities
Message-ID: <201202220034.q1M0YIc5013131@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SAP NetWeaver Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA47861

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47861/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47861

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/47861/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47861/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47861

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Digital Security Research Group has reported some vulnerabilities in
SAP NetWeaver, which can be exploited by malicious people to conduct
cross-site scripting attacks and by malicious users and malicious
people to disclose sensitive information.

1) Input passed via the "logfilename" parameter to
b2b/admin/log_view.jsp or b2b/admin/log.jsp in the Internet Sales
module is not properly verified before being used to display files.
This can be exploited to disclose the contents of arbitrary files via
directory traversal sequences.

2) Input passed via the "logfilename" parameter to ipc/admin/log.jsp
or ipc/admin/log_view.jsp is not properly verified before being used
to display files. This can be exploited to disclose the contents of
arbitrary files via directory traversal sequences.

Successful exploitation of vulnerabilities #1 and #2 may require
permission to view logs.

3) Input passed via the "_loadPage" parameter to
b2b/auction/container.jsp in the Internet Sales module is not
properly sanitised before being returned to the user. This can be
exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

4) An error within the com.sap.aii.mdt.amt.web.AMTPageProcessor
servlet can be exploited to disclose certain Adapter Monitor
information.

5) An error within the MessagingSystem servlet can be exploited to
disclose certain MessagingSystem Performance Data information.

The vulnerabilities are reported in version 7.0. Other versions may
also be affected.

SOLUTION:
Apply SAP Security Notes 1585527 and 1583300.

PROVIDED AND/OR DISCOVERED BY:
Dmitriy Chastukhin, Digital Security Research Group.

ORIGINAL ADVISORY:
Digital Security Research Group:
http://dsecrg.com/pages/vul/show.php?id=412
http://dsecrg.com/pages/vul/show.php?id=413
http://dsecrg.com/pages/vul/show.php?id=414
http://dsecrg.com/pages/vul/show.php?id=415
http://dsecrg.com/pages/vul/show.php?id=416

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 16:59:41 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 01:59:41 +0100
Subject: [SEC] [SA48077] Jamroom "user_action" Script Insertion Vulnerability
Message-ID: <201202220059.q1M0xfrW002997@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Jamroom "user_action" Script Insertion Vulnerability

SECUNIA ADVISORY ID:
SA48077

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48077/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48077

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48077/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48077/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48077

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Sony has discovered a vulnerability in Jamroom, which can be
exploited by malicious users to conduct script insertion attacks.

Input passed via the "user_action" parameter to user.php (when "mode"
is set to "user_action_save") is not properly sanitised before being
used. This can be exploited to insert arbitrary HTML and script code,
which will be executed in a user's browser session in context of an
affected site when the malicious data is being viewed.

The vulnerability is confirmed in version 4.2.6. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
Sony.

ORIGINAL ADVISORY:
http://st2tea.blogspot.com/2012/02/jamroom-cross-site-scripting.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 17:29:56 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 02:29:56 +0100
Subject: [SEC] [SA48041] Red Hat update for samba
Message-ID: <201202220129.q1M1TuMO025422@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for samba

SECUNIA ADVISORY ID:
SA48041

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48041/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48041

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48041/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48041/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48041

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for samba. This fixes a weakness, which
can be exploited by malicious people to bypass certain security
restrictions and disclose sensitive information.

For more information:
SA38454

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0313-03:
https://rhn.redhat.com/errata/RHSA-2012-0313.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 17:53:17 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 02:53:17 +0100
Subject: [SEC] [SA48099] Red Hat update for boost
Message-ID: <201202220153.q1M1rHXO015301@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for boost

SECUNIA ADVISORY ID:
SA48099

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48099/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48099

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48099/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48099/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48099

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for boost. This fixes some
vulnerabilities, which can be exploited by malicious people to cause
a DoS (Denial of Service).

For more information:
SA28511

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0305-03:
https://rhn.redhat.com/errata/RHSA-2012-0305.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 18:14:14 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 03:14:14 +0100
Subject: [SEC] [SA48100] Red Hat update for ImageMagick
Message-ID: <201202220214.q1M2EEZo005154@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for ImageMagick

SECUNIA ADVISORY ID:
SA48100

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48100/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48100

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48100/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48100/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48100

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for ImageMagick. This fixes a weakness,
which can be exploited by malicious, local users to gain escalated
privileges.

For more information:
SA42497

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0301-03:
https://rhn.redhat.com/errata/RHSA-2012-0301.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 18:46:01 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 03:46:01 +0100
Subject: [SEC] [SA48084] Hitachi Command Suite Products Unspecified
	Cross-Site Scripting Vulnerability
Message-ID: <201202220246.q1M2k19I027548@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Hitachi Command Suite Products Unspecified Cross-Site Scripting
Vulnerability

SECUNIA ADVISORY ID:
SA48084

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48084/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48084

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48084/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48084/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48084

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Hitachi Command Suite products,
which can be exploited by malicious people to conduct cross-site
scripting attacks.

Certain unspecified input is not properly sanitised before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

The vulnerability is reported in Hitachi Device Manager and Hitachi
Tiered Storage Manager Software versions 7.x prior to 7.2.1-00
running on Windows, Solaris, and Linux.

SOLUTION:
Update to version 7.2.1-00.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
HS12-008 (English):
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS12-008/index.html

HS12-008 (Japanese):
http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS12-008/index.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 19:22:44 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 04:22:44 +0100
Subject: [SEC] [SA48095] Ubuntu update for libvorbis
Message-ID: <201202220322.q1M3MirP018120@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for libvorbis

SECUNIA ADVISORY ID:
SA48095

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48095/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48095

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48095/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48095/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48095

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for libvorbis. This fixes a
vulnerability, which can be exploited by malicious people to
compromise an application using the library.

For more information see vulnerability #6 in:
SA47816

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1370-1:
http://www.ubuntu.com/usn/usn-1370-1

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 19:44:36 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 04:44:36 +0100
Subject: [SEC] [SA48105] Red Hat update for xorg-x11-server
Message-ID: <201202220344.q1M3iaJM007975@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for xorg-x11-server

SECUNIA ADVISORY ID:
SA48105

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48105/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48105

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48105/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48105/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48105

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for xorg-x11-server. This fixes a
weakness, which can be exploited by malicious, local users to
disclose system and sensitive information.

For more information:
SA46460

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0303-03:
https://rhn.redhat.com/errata/RHSA-2012-0303.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 20:09:14 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 05:09:14 +0100
Subject: [SEC] [SA48091] SUSE update for horde3-dimp
Message-ID: <201202220409.q1M49Eri030266@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for horde3-dimp

SECUNIA ADVISORY ID:
SA48091

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48091/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48091

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48091/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48091/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48091

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for horde3-dimp. This fixes multiple
vulnerabilities, which can be exploited by malicious people to
conduct cross-site scripting and script insertion attacks.

For more information:
SA47858
SA47879

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0287-1:
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00018.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 20:23:33 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 05:23:33 +0100
Subject: [SEC] [SA48104] Red Hat update for vixie-cron
Message-ID: <201202220423.q1M4NXj1020005@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for vixie-cron

SECUNIA ADVISORY ID:
SA48104

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48104/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48104

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48104/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48104/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48104

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for vixie-cron. This fixes a security
issue, which can be exploited by malicious, local users to perform
certain actions with escalated privileges.

For more information:
SA38700

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0304-03:
https://rhn.redhat.com/errata/RHSA-2012-0304.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 20:44:18 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 05:44:18 +0100
Subject: [SEC] [SA48101] Red Hat update for krb5
Message-ID: <201202220444.q1M4iI5f009849@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for krb5

SECUNIA ADVISORY ID:
SA48101

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48101/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48101

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48101/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48101/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48101

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for krb5. This fixes a security issue,
which can be exploited by malicious users to bypass certain security
restrictions.

For more information:
SA45145

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0306-03:
https://rhn.redhat.com/errata/RHSA-2012-0306.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 21:09:54 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 06:09:54 +0100
Subject: [SEC] [SA48115] Red Hat update for kernel
Message-ID: <201202220509.q1M59sm4032155@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for kernel

SECUNIA ADVISORY ID:
SA48115

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48115/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48115

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48115/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48115/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48115

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for the kernel. This fixes a
vulnerability, which can be exploited by malicious, local users to
cause a DoS (Denial of Service).

For more information:
SA43522

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0150-03:
https://rhn.redhat.com/errata/RHSA-2012-0150.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 21:23:45 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 06:23:45 +0100
Subject: [SEC] [SA48113] Red Hat update for nfs-utils
Message-ID: <201202220523.q1M5NjCA021884@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for nfs-utils

SECUNIA ADVISORY ID:
SA48113

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48113/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48113

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48113/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48113/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48113

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for nfs-utils. This fixes a security
issue, which can be exploited by malicious, local users to cause a
DoS (Denial of Service).

For more information:
SA44245

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0310-03:
https://rhn.redhat.com/errata/RHSA-2012-0310.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 21:44:19 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 06:44:19 +0100
Subject: [SEC] [SA48114] Red Hat update for util-linux
Message-ID: <201202220544.q1M5iJ8D011722@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for util-linux

SECUNIA ADVISORY ID:
SA48114

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48114/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48114

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48114/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48114/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48114

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for util-linux. This fixes a security
issue, which can be exploited by malicious, local users to cause a
DoS (Denial of Service).

For more information:
SA43596

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0307-03:
https://rhn.redhat.com/errata/RHSA-2012-0307.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 21 22:09:27 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 07:09:27 +0100
Subject: [SEC] [SA48119] Red Hat update for libpng
Message-ID: <201202220609.q1M69R3D001561@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for libpng

SECUNIA ADVISORY ID:
SA48119

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48119/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48119

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48119/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48119/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48119

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for libpng. This fixes a vulnerability,
which can be exploited by malicious people to potentially compromise
an application using the library.

For more information:
SA48026

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0317-01:
https://rhn.redhat.com/errata/RHSA-2012-0317.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 10:31:22 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 19:31:22 +0100
Subject: [SEC] [SA48082] SocialCMS Enterprise Cross-Site Scripting and SQL
	Injection Vulnerabilities
Message-ID: <201202221831.q1MIVMLu002358@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SocialCMS Enterprise Cross-Site Scripting and SQL Injection
Vulnerabilities

SECUNIA ADVISORY ID:
SA48082

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48082/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48082

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48082/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48082/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48082

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Two vulnerabilities have been reported in SocialCMS Enterprise, which
can be exploited by malicious people to conduct cross-site scripting
and SQL injection attacks.

1) Input passed via the "TR_name" POST parameter to
ajax/commentajax.php (when "TR_security_code" is set to an invalid
security code) is not properly sanitised before being returned to the
user. This can be exploited to execute arbitrary HTML and script code
in a user's browser session in context of an affected site.

2) Input passed via the "category" POST parameter to search.php is
not properly sanitised before being used in a SQL query. This can be
exploited to manipulate SQL queries by injecting arbitrary SQL code.

This may be related to vulnerability #2 in:
SA44313

The vulnerabilities are reported in version 1.0.5. Other versions may
also be affected.

SOLUTION:
Filter malicious characters or character sequences via a proxy.

PROVIDED AND/OR DISCOVERED BY:
Eyup CELIK

ORIGINAL ADVISORY:
http://packetstormsecurity.org/files/110043/SocialCMS-Cross-Site-Scripting-SQL-Injection.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 11:30:27 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 20:30:27 +0100
Subject: [SEC] [SA48124] EasyVista SSO Authentication Bypass Vulnerability
Message-ID: <201202221930.q1MJURwk025221@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
EasyVista SSO Authentication Bypass Vulnerability

SECUNIA ADVISORY ID:
SA48124

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48124/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48124

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48124/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48124/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48124

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in EasyVista, which can be
exploited by malicious people to bypass certain security
restrictions.

The vulnerability is caused due to an error within the SSO (Single
Sign-On) feature when using unencoded values and can be exploited to
bypass the authentication mechanism and login as other users via a
specially crafted HTTP request containing the log-in name.

The vulnerability is reported in versions prior to 2010.1.1.89.

SOLUTION:
Update to version 2010.1.1.89.

PROVIDED AND/OR DISCOVERED BY:
US-CERT credits ar1vr.

ORIGINAL ADVISORY:
US-CERT VU#273502:
http://www.kb.cert.org/vuls/id/273502

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 12:30:24 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 21:30:24 +0100
Subject: [SEC] [SA48051] LimeSurvey "fieldnames" SQL Injection Vulnerability
Message-ID: <201202222030.q1MKUO4L015658@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
LimeSurvey "fieldnames" SQL Injection Vulnerability

SECUNIA ADVISORY ID:
SA48051

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48051/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48051

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48051/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48051/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48051

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in LimeSurvey, which can be
exploited by malicious people to conduct SQL injection attacks.

Input passed via the "fieldnames" parameter to index.php is not
properly sanitised before being used in SQL queries. This can be
exploited to manipulate SQL queries by injecting arbitrary SQL code.

The vulnerability is confirmed in version 1.9.1+ Build
12416-20120209. Other versions may also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
TorTukiTu.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 13:30:20 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 22:30:20 +0100
Subject: [SEC] [SA48103] Unity Web Player File Processing Buffer Overflow
	Vulnerability
Message-ID: <201202222130.q1MLUK8n006098@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Unity Web Player File Processing Buffer Overflow Vulnerability

SECUNIA ADVISORY ID:
SA48103

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48103/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48103

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48103/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48103/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48103

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Luigi Auriemma has discovered a vulnerability in Unity Web Player,
which can be exploited by malicious people to compromise a user's
system.

The vulnerability is caused due to a boundary error when processing
Unity 3D files. This can be exploited to cause a heap-based buffer
overflow via a specially crafted file.

Successful exploitation may allow execution of arbitrary code.

The vulnerability is confirmed in version 3.5.0.43509. Other versions
may also be affected.

SOLUTION:
Disable the web player in a browser (e.g. in Internet Explorer set
the kill-bit for the affected ActiveX control).

PROVIDED AND/OR DISCOVERED BY:
Luigi Auriemma

ORIGINAL ADVISORY:
http://aluigi.altervista.org/adv/unity3d_1-adv.txt

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 14:28:03 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 23:28:03 +0100
Subject: [SEC] [SA48112] Chyrp "body" Cross-Site Scripting Vulnerability
Message-ID: <201202222228.q1MMS3N7028876@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Chyrp "body" Cross-Site Scripting Vulnerability

SECUNIA ADVISORY ID:
SA48112

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48112/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48112

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48112/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48112/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48112

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
High-Tech Bridge SA has discovered a vulnerability in Chyrp, which
can be exploited by malicious people to conduct cross-site scripting
attacks.

Input passed to the "body" POST parameter in includes/error.php is
not properly sanitised before being returned to the user. This can be
exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

The vulnerability is confirmed in version 2.1.2. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
High-Tech Bridge SA

ORIGINAL ADVISORY:
HTB23073:
https://www.htbridge.ch/advisory/HTB23073

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 14:46:12 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 22 Feb 2012 23:46:12 +0100
Subject: [SEC] [SA48054] TestLink Multiple SQL Injection Vulnerabilities
Message-ID: <201202222246.q1MMkCYZ018690@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
TestLink Multiple SQL Injection Vulnerabilities

SECUNIA ADVISORY ID:
SA48054

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48054/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48054

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48054/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48054/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48054

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been discovered in TestLink, which can
be exploited by malicious users and malicious people to conduct SQL
injection attacks.

1) Input passed via the "req_spec_id" parameter to
lib/requirements/reqSpecAnalyse.php,
lib/requirements/reqSpecPrint.php, and
lib/requirements/reqSpecView.php is not properly sanitised before
being used in SQL queries. This can be exploited to manipulate SQL
queries by injecting arbitrary SQL code.

Successful exploitation of this vulnerability requires the
"Requirement view" permission.

This vulnerability is confirmed in version 1.8.5b. Prior versions may
also be affected.

2) Input passed via the "root_node" and "node" parameters to
lib/ajax/getrequirementnodes.php and lib/ajax/gettprojectnodes.php is
not properly sanitised in the "display_children()" function in
lib/ajax/getrequirementnodes.php and lib/ajax/gettprojectnodes.php
before being used in SQL queries. This can be exploited to manipulate
SQL queries by injecting arbitrary SQL code.

3) Input passed via the "cfield_id" parameter to
lib/cfields/cfieldsEdit.php (when "do_action" is set to "edit") is
not properly sanitised before being used in SQL queries. This can be
exploited to manipulate SQL queries by injecting arbitrary SQL code.

Successful exploitation of this vulnerability requires the "Custom
field management" permission.

4) Input passed via the "tplan_id" parameter to
lib/plan/planMilestonesEdit.php (when "doAction" is set to "create")
and the "id" parameter to lib/plan/planMilestonesEdit.php (when
"doAction" is set to "edit") is not properly sanitised before being
used in SQL queries. This can be exploited to manipulate SQL queries
by injecting arbitrary SQL code.

Successful exploitation of this vulnerability requires the "Test Plan
planning" permission.

5) Input passed via the "req_spec_id" parameter to
lib/requirements/reqImport.php is not properly sanitised before being
used in SQL queries. This can be exploited to manipulate SQL queries
by injecting arbitrary SQL code.

Successful exploitation of this vulnerability requires the
"Requirement view" and "Requirement management" permissions.

Vulnerabilities #2 through #5 are confirmed in version 1.9.3. Prior
versions may also be affected.

SOLUTION:
Update to version 1.9.3 and install patch. Please see vendor's
advisory for more information.

PROVIDED AND/OR DISCOVERED BY:
Juan M. Natal, INTECO.

ORIGINAL ADVISORY:
http://archives.neohapsis.com/archives/bugtraq/2012-02/0104.html
http://mantis.testlink.org/view.php?id=4906

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 15:12:02 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 00:12:02 +0100
Subject: [SEC] [SA48116] BlackBerry Tablet OS Samba File Sharing
	Vulnerability
Message-ID: <201202222312.q1MNC2Xl008612@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
BlackBerry Tablet OS Samba File Sharing Vulnerability

SECUNIA ADVISORY ID:
SA48116

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48116/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48116

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48116/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48116/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48116

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in BlackBerry Tablet OS, which can
be exploited by malicious people and by malicious people with
physical access to the host computer to compromise a user's device.

The vulnerability is caused due to an unspecified error in the Samba
component related to file sharing. No further information is
currently available.

Successful exploitation may allow execution of arbitrary code, but
requires file sharing over Wi-Fi to be enabled (disabled by default)
or a USB connected tablet to a host computer.

The vulnerability is reported in versions 1.x.

SOLUTION:
Upgrade to version 2.0.0.7971.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Andy Davis, NGS Secure.

ORIGINAL ADVISORY:
BSRT-2012-001:
http://www.blackberry.com/btsc/KB29565

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 16:11:42 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 01:11:42 +0100
Subject: [SEC] [SA48076] WordPress SB Uploader Plugin Arbitrary File Upload
	Vulnerability
Message-ID: <201202230011.q1N0Bg96031445@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
WordPress SB Uploader Plugin Arbitrary File Upload Vulnerability

SECUNIA ADVISORY ID:
SA48076

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48076/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48076

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48076/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48076/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48076

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in the SB Uploader plugin for
WordPress, which can be exploited by malicious users to compromise a
vulnerable system.

The vulnerability is caused due to the
wp-content/plugins/sb-uploader/sb_uploader.php script not verifying
uploaded files. This can be exploited to execute arbitrary PHP code
by uploading a malicious PHP script.

Successful exploitation requires "Contributor" privileges.

The vulnerability is confirmed in version 3.2. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly verified.

PROVIDED AND/OR DISCOVERED BY:
JingoBD

ORIGINAL ADVISORY:
http://packetstormsecurity.org/files/110047/WordPress-SB-Uploader-Shell-Upload.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 16:48:41 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 01:48:41 +0100
Subject: [SEC] [SA48132] PowerDNS Recursor Deleted Domain Record Cache
	Persistence Vulnerability
Message-ID: <201202230048.q1N0mfMv021631@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
PowerDNS Recursor Deleted Domain Record Cache Persistence
Vulnerability

SECUNIA ADVISORY ID:
SA48132

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48132/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48132

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48132/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48132/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48132

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in PowerDNS Recursor, which can be
exploited by malicious people to conduct spoofing attacks.

For more information:
SA47884

The vulnerability is reported in version 3.3. Other versions may also
be affected.

SOLUTION:
As a workaround, clear the DNS cache periodically or enable DNSSEC.

PROVIDED AND/OR DISCOVERED BY:
Reported via the "Ghost Domain Names" presentation at the NDSS
conference.

ORIGINAL ADVISORY:
https://www.isc.org/files/imce/ghostdomain_camera.pdf

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 17:14:24 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 02:14:24 +0100
Subject: [SEC] [SA48067] Fork CMS Cross-Site Request Forgery Vulnerability
Message-ID: <201202230114.q1N1EOPo011566@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Fork CMS Cross-Site Request Forgery Vulnerability

SECUNIA ADVISORY ID:
SA48067

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48067/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48067

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48067/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48067/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48067

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ivano Binetti has discovered a vulnerability in Fork CMS, which can
be exploited by malicious people to conduct cross-site request
forgery attacks.

The application allows users to perform certain actions via HTTP
requests without performing proper validity checks to verify the
requests. This can be exploited to e.g. delete a user or a web page
when a logged-in administrative user visits a specially crafted web
page.

The vulnerability is confirmed in version 3.2.6. Other versions may
also be affected.

SOLUTION:
Do not browse untrusted sites or follow untrusted links while being
logged-in to the application.

PROVIDED AND/OR DISCOVERED BY:
Ivano Binetti

ORIGINAL ADVISORY:
http://ivanobinetti.blogspot.com/2012/02/forkcms-325-csrf-and-xss-0day.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 17:47:46 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 02:47:46 +0100
Subject: [SEC] [SA48125] Net4Switch ipswcom ActiveX Control Buffer Overflow
	Vulnerability
Message-ID: <201202230147.q1N1lkOp001522@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Net4Switch ipswcom ActiveX Control Buffer Overflow Vulnerability

SECUNIA ADVISORY ID:
SA48125

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48125/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48125

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48125/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48125/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48125

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Digital Security Research Group has discovered a vulnerability in
Net4Switch ipswcom ActiveX Control, which can be exploited by
malicious people to compromise a user's system.

The vulnerability is caused due to a boundary error within the
"CxDbgPrint()" function (cxcmrt.dll) when creating a debug message
string. This can be exploited to cause a stack-based buffer overflow
via an overly long string passed to the "Alert()" method.

Successful exploitation allows execution of arbitrary code.

The vulnerability is confirmed in version 1.0.0020 (ipswcom 1.0.0.1).
Other versions may also be affected.

SOLUTION:
Set the kill-bit for the affected ActiveX control.

PROVIDED AND/OR DISCOVERED BY:
Dmitriy Evdokimov, Digital Security Research Group

ORIGINAL ADVISORY:
DSECRG-12-017:
http://dsecrg.com/pages/vul/show.php?id=417

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 18:11:48 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 03:11:48 +0100
Subject: [SEC] [SA48097] Chyrp "content" Cross-Site Scripting Vulnerability
Message-ID: <201202230211.q1N2Bme2023883@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Chyrp "content" Cross-Site Scripting Vulnerability

SECUNIA ADVISORY ID:
SA48097

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48097/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48097

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48097/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48097/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48097

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
High-Tech Bridge SA has discovered a vulnerability in Chyrp, which
can be exploited by malicious people to conduct cross-site scripting
attacks.

Input passed to the "content" POST parameter in includes/ajax.php is
not properly sanitised before being returned to the user. This can be
exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

The vulnerability is confirmed in version 2.1.1. Prior versions may
also be affected.

SOLUTION:
Update to version 2.1.2.

PROVIDED AND/OR DISCOVERED BY:
High-Tech Bridge SA

ORIGINAL ADVISORY:
Chyrp:
http://chyrp.net/2012/02/02/heres-whats-been-going-on-recently/
https://github.com/vito/chyrp/commit/f69bd791c37e0b154c0bda16f9759ba19cc77f6c

HTB23073:
https://www.htbridge.ch/advisory/HTB23073

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 18:45:16 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 03:45:16 +0100
Subject: [SEC] [SA48058] Debian update for libmodplug
Message-ID: <201202230245.q1N2jG6Z013928@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Debian update for libmodplug

SECUNIA ADVISORY ID:
SA48058

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48058/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48058

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48058/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48058/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48058

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for libmodplug. This fixes multiple
vulnerabilities, which can be exploited by malicious people to cause
a DoS (Denial of Service) and compromise an application using the
library.

For more information:
SA44388
SA45131

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2415-1:
http://www.debian.org/security/2012/dsa-2415

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 19:15:52 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 04:15:52 +0100
Subject: [SEC] [SA48110] Pale Moon Two Vulnerabilities
Message-ID: <201202230315.q1N3Fq7q004407@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Pale Moon Two Vulnerabilities

SECUNIA ADVISORY ID:
SA48110

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48110/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48110

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48110/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48110/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48110

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Two vulnerabilities have been reported in Pale Moon, which can be
exploited by malicious people to compromise a user's system.

For more information:
SA48008
SA48089

SOLUTION:
Update to version 9.2.

ORIGINAL ADVISORY:
http://www.palemoon.org/releasenotes-ng.shtml

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 19:45:21 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 04:45:21 +0100
Subject: [SEC] [SA48128] Pale Moon libpng Integer Overflow Vulnerability
Message-ID: <201202230345.q1N3jLLM026774@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Pale Moon libpng Integer Overflow Vulnerability

SECUNIA ADVISORY ID:
SA48128

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48128/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48128

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48128/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48128/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48128

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Pale Moon, which can be
exploited by malicious people to potentially compromise a user's
system.

For more information:
SA48089

SOLUTION:
Update to version 3.6.30.

ORIGINAL ADVISORY:
http://www.palemoon.org/releasenotes.shtml

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 20:10:14 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 05:10:14 +0100
Subject: [SEC] [SA48046] Dolphin Privacy Settings Security Bypass
	Vulnerability
Message-ID: <201202230410.q1N4AEg9016685@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Dolphin Privacy Settings Security Bypass Vulnerability

SECUNIA ADVISORY ID:
SA48046

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48046/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48046

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48046/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48046/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48046

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Dolphin, which can be exploited
by malicious users to bypass certain security restrictions.

The vulnerability is caused due to the application not validating
permissions in pedit.php, which can be exploited to manipulate
another user's privacy settings via specially crafted HTTP requests.

Successful exploitation requires the profile ID of the target user to
be known.

The vulnerability is reported in versions prior to 7.0.9.

SOLUTION:
Update to version 7.0.9.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://www.boonex.com/n/dolphin-7-0-9-released

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 20:24:23 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 05:24:23 +0100
Subject: [SEC] [SA48062] Red Hat update for httpd
Message-ID: <201202230424.q1N4ONV3006429@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for httpd

SECUNIA ADVISORY ID:
SA48062

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48062/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48062

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48062/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48062/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48062

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for httpd. This fixes two weaknesses and
two vulnerabilities, which can be exploited by malicious, local users
to bypass certain security restrictions and gain escalated privileges
and by malicious people to disclose potentially sensitive information
and bypass certain security restrictions.

For more information:
SA45793
SA46987
SA47410
SA47779

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0323-01:
https://rhn.redhat.com/errata/RHSA-2012-0323.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 20:44:49 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 05:44:49 +0100
Subject: [SEC] [SA48066] Debian update for fex
Message-ID: <201202230444.q1N4inlc028653@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Debian update for fex

SECUNIA ADVISORY ID:
SA48066

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48066/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48066

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48066/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48066/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48066

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for fex. This fixes multiple
vulnerabilities, which can be exploited by malicious people to
conduct cross-site scripting attacks.

For more information:
SA47971

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2414-1:
http://www.debian.org/security/2012/dsa-2414

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 21:10:25 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 06:10:25 +0100
Subject: [SEC] [SA48060] Red Hat update for libxml2
Message-ID: <201202230510.q1N5APXT018583@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for libxml2

SECUNIA ADVISORY ID:
SA48060

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48060/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48060

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48060/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48060/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48060

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for libxml2. This fixes a vulnerability,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

For more information:
SA48000

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0324-01:
https://rhn.redhat.com/errata/RHSA-2012-0324.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 21:23:55 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 06:23:55 +0100
Subject: [SEC] [SA48000] libxml2 Hash Collision Denial of Service
	Vulnerability
Message-ID: <201202230523.q1N5Nt1g008312@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
libxml2 Hash Collision Denial of Service Vulnerability

SECUNIA ADVISORY ID:
SA48000

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48000/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48000

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48000/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48000/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48000

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in libxml2, which can be exploited
by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an error within certain hash
functions and can be exploited to cause a hash collision resulting in
high CPU consumption.

The vulnerability is reported in version 2.7.8. Other version may
also be affected.

SOLUTION:
Fixed in the GIT repository.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
Reported in a Red Hat bug report by Juraj Somorovsky

ORIGINAL ADVISORY:
https://bugzilla.redhat.com/show_bug.cgi?id=787067

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 21:45:14 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 06:45:14 +0100
Subject: [SEC] [SA48106] Gentoo update for quagga
Message-ID: <201202230545.q1N5jEwi030556@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Gentoo update for quagga

SECUNIA ADVISORY ID:
SA48106

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48106/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48106

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48106/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48106/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48106

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Gentoo has issued an update for quagga. This fixes multiple
vulnerabilities, which can be exploited by malicious people to cause
a DoS (Denial of Service) and potentially compromise a vulnerable
system.

For more information:
SA41038
SA43770
SA46139

SOLUTION:
Update to version "net-misc/quagga-0.99.20" or later.

ORIGINAL ADVISORY:
GLSA 201202-02:
http://www.gentoo.org/security/en/glsa/glsa-201202-02.xml

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 22 22:09:43 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 07:09:43 +0100
Subject: [SEC] [SA48038] Red Hat update for ibutils
Message-ID: <201202230609.q1N69huq020461@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for ibutils

SECUNIA ADVISORY ID:
SA48038

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48038/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48038

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48038/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48038/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48038

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for ibutils. This fixes a security
issue, which can be exploited by malicious, local users to gain
escalated privileges.

The security issue is caused due to the ibmssh component using a
relative RPATH value. This can be exploited by tricking a user into
running the ibmssh command in a directory where the attacker controls
the contents of the refix/lib subdirectory.

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0311-03:
https://rhn.redhat.com/errata/RHSA-2012-0311.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 10:31:36 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 19:31:36 +0100
Subject: [SEC] [SA48090] ABB Multiple Products RobNetScanHost.exe Buffer
	Overflow Vulnerability
Message-ID: <201202231831.q1NIVafK017204@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
ABB Multiple Products RobNetScanHost.exe Buffer Overflow
Vulnerability

SECUNIA ADVISORY ID:
SA48090

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48090/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48090

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48090/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48090/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48090

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in multiple ABB products, which can
be exploited by malicious people to compromise a vulnerable system.

The vulnerability is caused due to an error in RobNetScanHost.exe
when parsing network packages containing opcode 0xA or 0xE and can be
exploited to cause a stack-based buffer overflow via specially crafted
packets sent to port 5512.

The vulnerability is reported in the following versions:
* RobotStudio, Robot Communications Runtime, PC SDK, and IRC5 OPC
Server version 5.41.01 and prior.
* PickMaster 3 version 3.3 and prior.
* PickMaster 5 version 5.13 and prior.
* WebWare SDK and ABB Interlink Module versions 4.6 through 4.9.
* WebWare Server versions 4.6 through 4.91.

SOLUTION:
Update to a fixed version or apply patch (please see the vendor's
advisory for details).

PROVIDED AND/OR DISCOVERED BY:
Luigi Auriemma via ZDI.

ORIGINAL ADVISORY:
ABB:
http://www05.abb.com/global/scot/scot348.nsf/veritydisplay/f261be074480dc24c12579a00049ecd5/$file/si10227a1%20vulnerability%20security%20advisory.pdf

ZDI:
http://www.zerodayinitiative.com/advisories/ZDI-12-033/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 11:30:35 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 20:30:35 +0100
Subject: [SEC] [SA48064] Joomla! DT Register Component "list1" SQL Injection
	Vulnerability
Message-ID: <201202231930.q1NJUZ4g007640@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Joomla! DT Register Component "list1" SQL Injection Vulnerability

SECUNIA ADVISORY ID:
SA48064

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48064/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48064

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48064/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48064/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48064

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
the_cyber_nuxbie has reported a vulnerability in the DT Register
component for Joomla!, which can be exploited by malicious people to
conduct SQL injection attacks.

Input passed via the "list1" parameter to index.php (when "option" is
set to "com_dtregister" and "task" is set to "category") is not
properly sanitised before being used in SQL queries. This can be
exploited to manipulate SQL queries by injecting arbitrary SQL code.

The vulnerability is reported in version 2.7.13a. Other versions may
also be affected.

SOLUTION:
Filter malicious characters and character sequences using a proxy.

PROVIDED AND/OR DISCOVERED BY:
the_cyber_nuxbie.

ORIGINAL ADVISORY:
http://www.thecybernuxbie.com/archives-exploits/joomla-component-com_dtregister-categorylist1-sqlinjection-vulnerability.aspx

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 12:30:14 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 21:30:14 +0100
Subject: [SEC] [SA48096] WordPress Magn Drag and Drop Upload Plugin
	Arbitrary File Upload Vulnerability
Message-ID: <201202232030.q1NKUE9S030467@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
WordPress Magn Drag and Drop Upload Plugin Arbitrary File Upload
Vulnerability

SECUNIA ADVISORY ID:
SA48096

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48096/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48096

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48096/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48096/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48096

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in the Magn Drag and Drop Upload
plugin for WordPress, which can be exploited by malicious users to
compromise a vulnerable system.

The vulnerability is caused due to the
wp-content/plugins/magn-html5-drag-drop-media-uploader/dndupload.php
script improperly verifying uploaded files. This can be exploited to
execute arbitrary PHP code by uploading a malicious PHP script with
multiple extensions.

The vulnerability is confirmed in version 1.1.4. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly verified.

PROVIDED AND/OR DISCOVERED BY:
JingoBD

ORIGINAL ADVISORY:
http://packetstormsecurity.org/files/110103/WordPress-Magn-WP-Drag-And-Drop-Shell-Upload.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 13:45:05 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 22:45:05 +0100
Subject: [SEC] [SA48127] Movable Type Multiple Vulnerabilities
Message-ID: <201202232145.q1NLj56n021132@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Movable Type Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA48127

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48127/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48127

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48127/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48127/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48127

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in Movable Type, which
can be exploited by malicious users to compromise a vulnerable system
and by malicious people to conduct session hijacking, cross-site
scripting, and cross-site request forgery attacks.

1) Certain input passed via mt-wizard.cgi is not properly sanitised
before being returned to the user. This can be exploited to execute
arbitrary HTML and script code in a user's browser session in context
of an affected site.

2) Certain input passed via templates is not properly sanitised
before being returned to the user. This can be exploited to execute
arbitrary HTML and script code in a user's browser session in context
of an affected site.

3) The application allows users to perform certain actions via HTTP
requests without performing proper validity checks to verify the
requests. This can be exploited to e.g. execute arbitrary script code
when a logged-in user visits a specially crafted web page.

4) An error within the commenting and the community scripts can be
exploited to hijack another user's session

5) Certain input passed via the file management system is not
properly verified before being used. This can be exploited to inject
and execute arbitrary commands.

Successful exploitation of this vulnerability requires privileges to
upload files through the administrative interface.

Please see the vendor's advisory for a list of affected products and
versions.

SOLUTION:
Update to version 5.13, 5.07, or 4.38.

PROVIDED AND/OR DISCOVERED BY:
1) The vendor credits Trustwave.
2-5) Reported by the vendor.

ORIGINAL ADVISORY:
http://www.movabletype.org/documentation/appendices/release-notes/513.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 14:29:17 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 23:29:17 +0100
Subject: [SEC] [SA48052] TYPO3 Apache Solr Extension Cross-Site Scripting
	Vulnerability
Message-ID: <201202232229.q1NMTHb1011348@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
TYPO3 Apache Solr Extension Cross-Site Scripting Vulnerability

SECUNIA ADVISORY ID:
SA48052

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48052/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48052

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48052/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48052/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48052

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in the Apache Solr extension for
TYPO3, which can be exploited by malicious people to conduct
cross-site scripting attacks.

Certain unspecified input is not properly sanitised before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

The vulnerability is reported in versions prior to 1.3.1.

SOLUTION:
Update to version 1.3.1.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits the TYPO3 Security Code Sprint.

ORIGINAL ADVISORY:
TYPO3-EXT-SA-2012-003:
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-003/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 14:45:25 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 23 Feb 2012 23:45:25 +0100
Subject: [SEC] [SA48142] Ubuntu update for cvs
Message-ID: <201202232245.q1NMjPMf001057@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for cvs

SECUNIA ADVISORY ID:
SA48142

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48142/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48142

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48142/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48142/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48142

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for cvs. This fixes a vulnerability,
which can be exploited by malicious people to compromise a user's
system.

For more information:
SA47869

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1371-1:
http://www.ubuntu.com/usn/usn-1371-1

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 15:12:12 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 00:12:12 +0100
Subject: [SEC] [SA48136] Gentoo update for heimdal
Message-ID: <201202232312.q1NNCCQZ023461@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Gentoo update for heimdal

SECUNIA ADVISORY ID:
SA48136

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48136/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48136

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48136/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48136/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48136

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Gentoo has issued an update for heimdal. This fixes a vulnerability,
which can be exploited by malicious people to compromise a vulnerable
system.

For more information see vulnerability #1 in:
SA47399

SOLUTION:
Update to version "app-crypt/heimdal-1.5.1-r1" or later.

ORIGINAL ADVISORY:
GLSA 201202-05:
http://www.gentoo.org/security/en/glsa/glsa-201202-05.xml

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 16:08:16 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 01:08:16 +0100
Subject: [SEC] [SA48137] Gentoo update for asterisk
Message-ID: <201202240008.q1O08Gw5013860@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Gentoo update for asterisk

SECUNIA ADVISORY ID:
SA48137

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48137/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48137

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48137/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48137/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48137

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Gentoo has issued an update for asterisk. This fixes a vulnerability,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

For more information:
SA47630

SOLUTION:
Update to version "net-misc/asterisk-1.8.8.2" or later.

ORIGINAL ADVISORY:
GLSA 201202-06:
http://www.gentoo.org/security/en/glsa/glsa-201202-06.xml

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 16:33:08 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 01:33:08 +0100
Subject: [SEC] [SA48134] Gentoo update for pdns
Message-ID: <201202240033.q1O0X8gt003878@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Gentoo update for pdns

SECUNIA ADVISORY ID:
SA48134

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48134/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48134

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48134/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48134/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48134

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Gentoo has issued an update for pdns. This fixes a vulnerability,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

For more information:
SA47495

SOLUTION:
Update to version "net-dns/pdns-3.0.1" or later.

ORIGINAL ADVISORY:
GLSA 201202-04:
http://www.gentoo.org/security/en/glsa/glsa-201202-04.xml

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 17:00:25 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 02:00:25 +0100
Subject: [SEC] [SA48135] Gentoo update for maradns
Message-ID: <201202240100.q1O10PKB026211@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Gentoo update for maradns

SECUNIA ADVISORY ID:
SA48135

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48135/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48135

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48135/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48135/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48135

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Gentoo has issued an update for maradns. This fixes a vulnerability,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

For more information:
SA47425

SOLUTION:
Update to version "net-dns/maradns-1.4.09" or later.

ORIGINAL ADVISORY:
GLSA 201202-03:
http://www.gentoo.org/security/en/glsa/glsa-201202-03.xml

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 17:26:43 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 02:26:43 +0100
Subject: [SEC] [SA48130] Debian update for libxml2
Message-ID: <201202240126.q1O1QhPC016159@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Debian update for libxml2

SECUNIA ADVISORY ID:
SA48130

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48130/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48130

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48130/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48130/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48130

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for libxml2. This fixes a vulnerability,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

For more information:
SA48000

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2417-1:
http://www.debian.org/security/2012/dsa-2417

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 17:47:44 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 02:47:44 +0100
Subject: [SEC] [SA48140] OpenVZ update for kernel
Message-ID: <201202240147.q1O1li8V006016@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
OpenVZ update for kernel

SECUNIA ADVISORY ID:
SA48140

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48140/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48140

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48140/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48140/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48140

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
OpenVZ has issued an update for the kernel. This fixes two weaknesses
and multiple vulnerabilities, which can be exploited by malicious,
local users in a guest virtual machine to gain escalated privileges,
by malicious, local users to disclose potentially sensitive
information, bypass certain security restrictions, cause a DoS
(Denial of Service), and potentially gain escalated privileges, and
by malicious people to cause a DoS.

For more information:
SA47008
SA47512
SA47967

SOLUTION:
Update kernel branch RHEL5 to version 028stab098.1.

ORIGINAL ADVISORY:
http://wiki.openvz.org/Download/kernel/rhel5/028stab098.1

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 18:13:02 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 03:13:02 +0100
Subject: [SEC] [SA48143] TYPO3 JW Player Extension Cross-Site Scripting and
	SQL Injection Vulnerabilities
Message-ID: <201202240213.q1O2D2Ke028323@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
TYPO3 JW Player Extension Cross-Site Scripting and SQL Injection
Vulnerabilities

SECUNIA ADVISORY ID:
SA48143

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48143/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48143

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48143/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48143/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48143

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Two vulnerabilities have been reported in the JW Player extension for
TYPO3, which can be exploited by malicious users to conduct SQL
injection attacks and by malicious people to conduct cross-site
scripting attacks.

1) Certain unspecified input is not properly sanitised before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

2) Certain unspecified input is not properly sanitised before being
used in a SQL query. This can be exploited to manipulate SQL queries
by injecting arbitrary SQL code.

The vulnerabilities are reported in versions prior to 1.2.5.

SOLUTION:
Update to version 1.2.5.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Andreas Grunwald.

ORIGINAL ADVISORY:
TYPO3-EXT-SA-2012-003:
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-003/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 18:44:48 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 03:44:48 +0100
Subject: [SEC] [SA48133] Bugzilla Cross-Site Request Forgery Vulnerability
Message-ID: <201202240244.q1O2imT2018347@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Bugzilla Cross-Site Request Forgery Vulnerability

SECUNIA ADVISORY ID:
SA48133

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48133/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48133

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48133/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48133/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48133

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Bugzilla, which can be exploited
by malicious people to conduct cross-site request forgery attacks.

The application's web interface allows users to perform certain
actions via HTTP requests without performing any validity checks to
verify the requests. This can be exploited to e.g. change certain bug
data or execute certain administrative tasks by tricking a logged in
user into visiting a malicious web site.

The vulnerability is reported in versions 4.0.2 through 4.0.4 and
4.1.1 through 4.2rc2.

SOLUTION:
Update to version 4.0.5 or 4.2.

PROVIDED AND/OR DISCOVERED BY:
Mario Gomes via a bug report.

ORIGINAL ADVISORY:
http://www.bugzilla.org/security/4.0.4/
https://bugzilla.mozilla.org/show_bug.cgi?id=725663

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 19:16:43 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 04:16:43 +0100
Subject: [SEC] [SA47585] Csound Two Buffer Overflow Vulnerabilities
Message-ID: <201202240316.q1O3Gh2n008895@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Csound Two Buffer Overflow Vulnerabilities

SECUNIA ADVISORY ID:
SA47585

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47585/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47585

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/47585/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47585/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47585

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Secunia Research has discovered two vulnerabilities in Csound, which
can be exploited by malicious people to compromise a user's system.

1) A boundary error in the "getnum()" function (util/heti_main.c) can
be exploited to cause a stack-based buffer overflow via a specially
crafted hetro file.

2) A boundary error in the "getnum()" function (util/pv_import.c) can
be exploited to cause a stack-based buffer overflow via a specially
crafted PVOC file.

Successful exploitation allows execution of arbitrary code, but
requires tricking a user into converting a malicious file.

The vulnerabilities are confirmed in version 5.13.0. Other versions
may also be affected.

SOLUTION:
Update to version 5.16.6.

PROVIDED AND/OR DISCOVERED BY:
Secunia Research

ORIGINAL ADVISORY:
Secunia Research:
http://secunia.com/secunia_research/2012-3/

Csound:
http://sourceforge.net/projects/csound/files/csound5/csound5.16/Version5.16_Notes/view

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 19:44:41 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 04:44:41 +0100
Subject: [SEC] [SA48131] Drupal FAQ Module Script Insertion Vulnerability
Message-ID: <201202240344.q1O3ifkQ031246@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Drupal FAQ Module Script Insertion Vulnerability

SECUNIA ADVISORY ID:
SA48131

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48131/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48131

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48131/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48131/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48131

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in the FAQ module for Drupal, which
can be exploited by malicious users to conduct script insertion
attacks.

Certain input when creating question and answer pairs is not properly
sanitised before being used. This can be exploited to insert arbitrary
HTML and script code, which will be executed in a user's browser
session in context of an affected site when the malicious data is
being viewed.

Successful exploitation requires the "administer faq", "create faq",
"edit faq", or "edit own faq" permissions or the "ask question"
permission if the FAQ Ask module is also used.

The vulnerability is reported in versions 6.x-1.x prior to 6.x-1.13.

SOLUTION:
Update to version 6.x-1.13.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
The vendor credits phdruplover.

ORIGINAL ADVISORY:
SA-CONTRIB-2012-023:
http://drupal.org/node/1451194

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 20:09:27 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 05:09:27 +0100
Subject: [SEC] [SA48123] OneForum "id" SQL Injection Vulnerability
Message-ID: <201202240409.q1O49Ri9021167@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
OneForum "id" SQL Injection Vulnerability

SECUNIA ADVISORY ID:
SA48123

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48123/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48123

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48123/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48123/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48123

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Security TEAM has discovered a vulnerability in OneForum, which
can be exploited by malicious people to conduct SQL injection
attacks.

Input passed via the "id" parameter to topic.php is not properly
sanitised before being used in a SQL query. This can be exploited to
manipulate SQL queries by injecting arbitrary SQL code.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
Red Security TEAM

ORIGINAL ADVISORY:
http://redsecurity.com/vuln12.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 20:23:45 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 05:23:45 +0100
Subject: [SEC] [SA48037] UTC Fire & Security GE-MC100-NTP/GPS-ZB Master
	Clock Default Account Security Issue
Message-ID: <201202240423.q1O4Njxn010922@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
UTC Fire & Security GE-MC100-NTP/GPS-ZB Master Clock Default Account
Security Issue

SECUNIA ADVISORY ID:
SA48037

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48037/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48037

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48037/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48037/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48037

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A security issue has been reported in UTC Fire & Security
GE-MC100-NTP/GPS-ZB Master Clock, which can be exploited by malicious
people to bypass certain security restrictions.

The security issue is caused due to the appliance containing
unchangeable hardcoded credentials, which can be exploited to gain
access to the device.

SOLUTION:
Restrict access to trusted hosts only.

PROVIDED AND/OR DISCOVERED BY:
US-CERT credits Temple Murphy

ORIGINAL ADVISORY:
US-CERT (VU#707254):
http://www.kb.cert.org/vuls/id/707254

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 20:44:37 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 05:44:37 +0100
Subject: [SEC] [SA48118] Elefant CMS Multiple Cross-Site Scripting
	Vulnerabilities
Message-ID: <201202240444.q1O4ib1p000710@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Elefant CMS Multiple Cross-Site Scripting Vulnerabilities

SECUNIA ADVISORY ID:
SA48118

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48118/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48118

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48118/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48118/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48118

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been discovered in Elefant CMS, which
can be exploited by malicious people to conduct cross-site scripting
attacks.

Input passed to the "layout", "title", "window_title", and "body"
POST parameters in admin/preview is not properly sanitised in
apps/admin/handlers/preview.php before being returned to the user.
This can be exploited to execute arbitrary HTML and script code in a
user's browser session in context of an affected site.

The vulnerabilities are confirmed in version 1.0.2. Other versions
may also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
Disclosed in a GIT commit.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 21:09:43 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 06:09:43 +0100
Subject: [SEC] [SA48023] YVS Image Gallery "album_id" SQL Injection
	Vulnerability
Message-ID: <201202240509.q1O59hTa023097@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
YVS Image Gallery "album_id" SQL Injection Vulnerability

SECUNIA ADVISORY ID:
SA48023

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48023/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48023

RELEASE DATE:
2012-02-23

DISCUSS ADVISORY:
http://secunia.com/advisories/48023/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48023/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48023

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Corrado Liotta has discovered a vulnerability in YVS Image Gallery,
which can be exploited by malicious people to conduct SQL injection
attacks.

Input passed via the "album_id" parameter to view_album.php is not
properly sanitised in gallery_pages/view_album.php before being used
in SQL queries. This can be exploited to manipulate SQL queries by
injecting arbitrary SQL code.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
Corrado Liotta.

ORIGINAL ADVISORY:
http://seclists.org/fulldisclosure/2012/Feb/373

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 21:24:22 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 06:24:22 +0100
Subject: [SEC] [SA48063] Red Hat update for cvs
Message-ID: <201202240524.q1O5OMMd012859@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for cvs

SECUNIA ADVISORY ID:
SA48063

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48063/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48063

RELEASE DATE:
2012-02-22

DISCUSS ADVISORY:
http://secunia.com/advisories/48063/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48063/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48063

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for cvs. This fixes a vulnerability,
which can be exploited by malicious people to compromise a user's
system.

For more information:
SA47869

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0321-01:
https://rhn.redhat.com/errata/RHSA-2012-0321.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 21:44:38 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 06:44:38 +0100
Subject: [SEC] [SA48071] Psycle Multiple Vulnerabilities
Message-ID: <201202240544.q1O5ic5q002662@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Psycle Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA48071

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48071/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48071

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48071/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48071/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48071

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Luigi Auriemma has discovered multiple vulnerabilities in Psycle,
which can be exploited by malicious people to compromise a user's
system.

1) A boundary error when processing song files can be exploited to
cause a heap-based buffer overflow via a specially crafted PSY file.

2) An indexing error when processing song files can be exploited to
reference an arbitrary memory location as a virtual function table
via a specially crafted PSY file.

3) An error when allocating memory to process certain content within
song files can be exploited to cause a heap-based buffer overflow via
a specially crafted PSY file.

Successful exploitation of the vulnerabilities allows execution of
arbitrary code, but requires tricking a user into opening a malicious
file.

The vulnerabilities are confirmed in version 1.10.0. Other versions
may also be affected.

SOLUTION:
Do not open files from untrusted sources.

PROVIDED AND/OR DISCOVERED BY:
Luigi Auriemma

ORIGINAL ADVISORY:
http://aluigi.altervista.org/adv/psycle_1-adv.txt

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Thu Feb 23 22:10:05 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 07:10:05 +0100
Subject: [SEC] [SA48121] SUSE update for horde3
Message-ID: <201202240610.q1O6A5pP025030@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for horde3

SECUNIA ADVISORY ID:
SA48121

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48121/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48121

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48121/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48121/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48121

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for horde3. This fixes a vulnerability,
which can be exploited by malicious people to conduct cross-site
scripting attacks.

For more information see vulnerability #1 in:
SA47904

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0286-1:
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00017.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 24 10:31:08 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 19:31:08 +0100
Subject: [SEC] [SA48014] ELBA "account group name" SQL Injection
	Vulnerability
Message-ID: <201202241831.q1OIV83d025818@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
ELBA "account group name" SQL Injection Vulnerability

SECUNIA ADVISORY ID:
SA48014

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48014/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48014

RELEASE DATE:
2012-02-24

DISCUSS ADVISORY:
http://secunia.com/advisories/48014/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48014/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48014

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SEC Consult has reported a vulnerability in ELBA, which can be
exploited by malicious users to conduct SQL injection attacks.

Input passed via the account group name when creating an account
group is not properly sanitised before being used in SQL queries.
This can be exploited to manipulate SQL queries by injecting
arbitrary SQL code.

The vulnerability is reported in versions 5.4.1 through 5.5.0 R4.

SOLUTION:
Update to version 5.5.0 R5.

PROVIDED AND/OR DISCOVERED BY:
Povilas Tumenas, SEC Consult.

ORIGINAL ADVISORY:
https://www.sec-consult.com/files/20120220-1_ELBA5_multiple_vulnerabilities.txt

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 24 11:31:34 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 20:31:34 +0100
Subject: [SEC] [SA48129] Cisco Small Business SRP520 / SRP540 Series
	Multiple Vulnerabilities
Message-ID: <201202241931.q1OJVYoC016277@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Cisco Small Business SRP520 / SRP540 Series Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA48129

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48129/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48129

RELEASE DATE:
2012-02-24

DISCUSS ADVISORY:
http://secunia.com/advisories/48129/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48129/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48129

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Some vulnerabilities have been reported in Cisco Small Business
SRP520 / SRP540 series, which can be exploited by malicious users to
compromise a vulnerable system and by malicious people to bypass
certain security restrictions.

1) An error when processing certain HTTP requests via the web
interface can be exploited to inject and execute arbitrary commands.

2) An error due to missing authentication checks when processing
certain web requests can be exploited to upload a configuration
file.

3) An error within the Local TFTP application when handling file
upload requests can be exploited to upload files to arbitrary
directories via directory traversal attacks.

The vulnerabilities are reported in the following products and
versions:
* Cisco Small Business SRP521W, SRP526W, and SRP527W running firmware
versions prior to 1.1.26.
* Cisco Small Business SRP521W-U, SRP526W-U, and SRP527W-U running
firmware versions prior to 1.2.4.
* Cisco Small Business SRP541W, SRP546W, and SRP547W running firmware
versions prior to 1.2.4.

SOLUTION:
Update to version 1.1.26 or 1.2.4.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Michal Sajdak of Securitum, Poland.

ORIGINAL ADVISORY:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120223-srp500

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 24 14:00:04 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 23:00:04 +0100
Subject: [SEC] [SA48141] The Uploader "username" SQL Injection Vulnerability
Message-ID: <201202242200.q1OM04fu018634@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
The Uploader "username" SQL Injection Vulnerability

SECUNIA ADVISORY ID:
SA48141

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48141/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48141

RELEASE DATE:
2012-02-24

DISCUSS ADVISORY:
http://secunia.com/advisories/48141/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48141/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48141

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in The Uploader, which can be
exploited by malicious people to conduct SQL injection attacks.

Input passed via the "username" parameter to login.php is not
properly sanitised before being used in SQL queries. This can be
exploited to manipulate SQL queries by injecting arbitrary SQL code.

NOTE: This can further be exploited to bypass the authentication
mechanism.

The vulnerability is confirmed in version 2.0.4. Prior versions may
also be affected.

SOLUTION:
Update to version 2.0.5.

PROVIDED AND/OR DISCOVERED BY:
Danny Moules.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 24 14:00:05 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 23:00:05 +0100
Subject: [SEC] [SA48122] TYPO 3 TC BE User Admin Extension Script Insertion
	Vulnerability
Message-ID: <201202242200.q1OM05I1018665@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
TYPO 3 TC BE User Admin Extension Script Insertion Vulnerability

SECUNIA ADVISORY ID:
SA48122

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48122/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48122

RELEASE DATE:
2012-02-24

DISCUSS ADVISORY:
http://secunia.com/advisories/48122/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48122/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48122

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in the TC BE User Admin extension
for TYPO3, which can be exploited by malicious users to conduct
script insertion attacks.

Certain unspecified input is not properly sanitised before being
used. This can be exploited to insert arbitrary HTML and script code,
which will be executed in a user's browser session in context of an
affected site if malicious data is being viewed.

The vulnerability is reported in versions prior to 1.0.5.

SOLUTION:
Update to version 1.0.5.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Georg Ringer, TYPO3 Security Team.

ORIGINAL ADVISORY:
TYPO3-EXT-SA-2012-003:
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-003/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 24 14:00:01 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 23:00:01 +0100
Subject: [SEC] [SA48144] Ubuntu update for openjdk-6
Message-ID: <201202242200.q1OM01dO018534@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for openjdk-6

SECUNIA ADVISORY ID:
SA48144

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48144/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48144

RELEASE DATE:
2012-02-24

DISCUSS ADVISORY:
http://secunia.com/advisories/48144/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48144/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48144

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for openjdk-6. This fixes multiple
vulnerabilities, which can be exploited by malicious people to
disclose potentially sensitive information, manipulate certain data,
cause a DoS (Denial of Service), and compromise a vulnerable system.

For more information:
SA48009

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1373-1:
http://www.ubuntu.com/usn/usn-1373-1/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 24 13:59:56 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 22:59:56 +0100
Subject: [SEC] [SA48139] Notmuch Emacs MML Tag Information Disclosure
	Vulnerability
Message-ID: <201202242159.q1OLxu8U018426@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Notmuch Emacs MML Tag Information Disclosure Vulnerability

SECUNIA ADVISORY ID:
SA48139

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48139/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48139

RELEASE DATE:
2012-02-24

DISCUSS ADVISORY:
http://secunia.com/advisories/48139/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48139/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48139

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Notmuch, which can be exploited
by malicious people to potentially disclose sensitive information.

Certain input passed via MML tags is not properly sanitised in
/emacs/notmuch-mua.el before being used. This can be exploited to
attach local files to outgoing messages, if a user is tricked into
replying to a message containing a specially crafted MML tag.

The vulnerability is reported in versions prior to 0.11.1.

SOLUTION:
Update to version 0.11.1.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://notmuchmail.org/news/release-0.11.1/
http://git.notmuchmail.org/git/notmuch/blobdiff/3f2050ac221a4c940c12442f156f12fff11600c6..ae438ccd8c77831158c7c30f19710d798ee4a6b4:/emacs/notmuch-mua.el

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 24 14:00:02 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 23:00:02 +0100
Subject: [SEC] [SA48161] Ubuntu update for puppet
Message-ID: <201202242200.q1OM02Gl018551@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Ubuntu update for puppet

SECUNIA ADVISORY ID:
SA48161

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48161/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48161

RELEASE DATE:
2012-02-24

DISCUSS ADVISORY:
http://secunia.com/advisories/48161/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48161/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48161

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for puppet. This fixes a security issue
and a vulnerability, which can be exploited by malicious, local users
to gain escalated privileges.

For more information:
SA48166

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1372-1:
http://www.ubuntu.com/usn/usn-1372-1

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 24 13:59:53 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 22:59:53 +0100
Subject: [SEC] [SA48155] Red Hat update for kernel-rt
Message-ID: <201202242159.q1OLxrkc018315@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for kernel-rt

SECUNIA ADVISORY ID:
SA48155

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48155/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48155

RELEASE DATE:
2012-02-24

DISCUSS ADVISORY:
http://secunia.com/advisories/48155/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48155/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48155

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for kernel-rt. This fixes multiple
vulnerabilities, which can be exploited by malicious, local users in
a guest virtual machine to gain escalated privileges, by malicious,
local users to cause a DoS (Denial of Service) and gain escalated
privileges, and by malicious people to cause a DoS and compromise a
vulnerable system.

For more information:
SA46802
SA46803
SA47296
SA47472
SA47486
SA47488

1) An integer overflow error in the "oom_badness()" function
(mm/oom_kill.c) can be exploited to prevent a certain process from
getting terminated during OOM (Out Of Memory) condition handling and
may terminate another process.

2) An error within the software interrupt handler when preemption is
enabled can lead to CPU debug stack corruption and cause a kernel
panic.

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
1) The vendor credits Shubham Goyal.
2) Reported by the vendor.

ORIGINAL ADVISORY:
RHSA-2012:0333-1:
https://rhn.redhat.com/errata/RHSA-2012-0333.html

Red Hat Bug#750399:
https://bugzilla.redhat.com/show_bug.cgi?id=750399

Red Hat Bug#794557:
https://bugzilla.redhat.com/show_bug.cgi?id=794557

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 24 14:31:15 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 23:31:15 +0100
Subject: [SEC] [SA48145] phpDenora Multiple File Disclosure and SQL
	Injection Vulnerabilities
Message-ID: <201202242231.q1OMVFia010607@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
phpDenora Multiple File Disclosure and SQL Injection Vulnerabilities

SECUNIA ADVISORY ID:
SA48145

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48145/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48145

RELEASE DATE:
2012-02-24

DISCUSS ADVISORY:
http://secunia.com/advisories/48145/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48145/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48145

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been discovered in phpDenora, which can
be exploited by malicious people to disclose sensitive information and
conduct SQL injection attacks.

1) Input passed via the "sy", "sm", "sd", "ey", "em", and "ed"
parameters to libs/phpdenora/graphs/line.php is not properly
sanitised before being used in SQL queries. This can be exploited to
manipulate SQL queries by injecting arbitrary SQL code.

Successful exploitation of this vulnerability requires that
"magic_quotes_gpc" is disabled.

2) Input passed via the "param" parameter to remote.php is not
properly sanitised before being used in SQL queries. This can be
exploited to manipulate SQL queries by injecting arbitrary SQL code.

3) Input passed via the "theme" and "lang" parameters to
libs/phpdenora/graphs/pie.php, libs/phpdenora/graphs/bar.php, and
libs/phpdenora/graphs/line.php is not properly verified before being
used to include files. This can be exploited to include arbitrary
files from local resources via directory traversal attacks and
URL-encoded NULL bytes.

Successful exploitation of this vulnerability requires that
"magic_quotes_gpc" is disabled.

The vulnerabilities are confirmed in version 1.4.6. Prior versions
may also be affected.

SOLUTION:
Update to version 1.4.7.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Stephen Shkardoon.

ORIGINAL ADVISORY:
http://www.denorastats.org/news/51/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 24 14:47:06 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Fri, 24 Feb 2012 23:47:06 +0100
Subject: [SEC] [SA48146] PHP Live! Multiple Unspecified Vulnerabilities
Message-ID: <201202242247.q1OMl6mr000309@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
PHP Live! Multiple Unspecified Vulnerabilities

SECUNIA ADVISORY ID:
SA48146

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48146/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48146

RELEASE DATE:
2012-02-24

DISCUSS ADVISORY:
http://secunia.com/advisories/48146/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48146/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48146

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities with unknown impacts have been reported in
PHP Live!.

The vulnerabilities are caused due to unspecified errors. No further
information is currently available.

The vulnerabilities are reported in versions prior to 4.2.99-7.

SOLUTION:
Update to version 4.2.99-7.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://freecode.com/projects/phplive/releases/341915

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 24 15:11:13 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 25 Feb 2012 00:11:13 +0100
Subject: [SEC] [SA48154] Red Hat update for samba
Message-ID: <201202242311.q1ONBD9D022695@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Red Hat update for samba

SECUNIA ADVISORY ID:
SA48154

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48154/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48154

RELEASE DATE:
2012-02-24

DISCUSS ADVISORY:
http://secunia.com/advisories/48154/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48154/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48154

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Red Hat has issued an update for samba. This fixes a vulnerability,
which can be exploited by malicious people to compromise a vulnerable
system.

For more information:
SA48152

SOLUTION:
Updated packages are available via Red Hat Network.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
RHSA-2012:0332-01:
https://rhn.redhat.com/errata/RHSA-2012-0332.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 24 16:01:36 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 25 Feb 2012 01:01:36 +0100
Subject: [SEC] [SA48164] SUSE update for wireshark
Message-ID: <201202250001.q1P01awb013016@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
SUSE update for wireshark

SECUNIA ADVISORY ID:
SA48164

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48164/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48164

RELEASE DATE:
2012-02-24

DISCUSS ADVISORY:
http://secunia.com/advisories/48164/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48164/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48164

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for wireshark. This fixes multiple
vulnerabilities, which can be exploited by malicious people to cause
a DoS (Denial of Service) and compromise a user's system.

For more information:
SA47494

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0295-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00058.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 24 16:35:47 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 25 Feb 2012 01:35:47 +0100
Subject: [SEC] [SA48152] Samba Any Batched Request Handling Buffer Overflow
	Vulnerability
Message-ID: <201202250035.q1P0Zl99003134@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Samba Any Batched Request Handling Buffer Overflow Vulnerability

SECUNIA ADVISORY ID:
SA48152

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48152/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48152

RELEASE DATE:
2012-02-24

DISCUSS ADVISORY:
http://secunia.com/advisories/48152/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48152/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48152

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Samba, which can be exploited by
malicious people to compromise a vulnerable system.

The vulnerability is caused due to an error in process.c when
handling Any Batched (AndX) request packets and can be exploited to
cause a heap-based buffer overflow.

Successful exploitation may allow execution of arbitrary code.

The vulnerability is reported in versions prior to 3.4.0.

SOLUTION:
Update to version 3.4.0 or later or apply patch.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
Originally reported in BlackBerry Tablet OS by Andy Davis, NGS
Secure.

ORIGINAL ADVISORY:
http://www.samba.org/samba/security/CVE-2012-0870

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 24 17:00:11 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 25 Feb 2012 02:00:11 +0100
Subject: [SEC] [SA48156] Debian update for notmuch
Message-ID: <201202250100.q1P10BJ1025475@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Debian update for notmuch

SECUNIA ADVISORY ID:
SA48156

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48156/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48156

RELEASE DATE:
2012-02-24

DISCUSS ADVISORY:
http://secunia.com/advisories/48156/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48156/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48156

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for notmuch. This fixes a vulnerability,
which can be exploited by malicious people to potentially disclose
sensitive information.

For more information:
SA48139

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2416-1:
http://www.us.debian.org/security/2012/dsa-2416

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 24 17:27:23 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 25 Feb 2012 02:27:23 +0100
Subject: [SEC] [SA48166] Puppet Group Privileges Security Issue and K5login
	Privilege Escalation Vulnerability
Message-ID: <201202250127.q1P1RNu4015437@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
Puppet Group Privileges Security Issue and K5login Privilege
Escalation Vulnerability

SECUNIA ADVISORY ID:
SA48166

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48166/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48166

RELEASE DATE:
2012-02-24

DISCUSS ADVISORY:
http://secunia.com/advisories/48166/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48166/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48166

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A security issue and a vulnerability have been reported in Puppet,
which can be exploited by malicious, local users to gain escalated
privileges.

1) A security issue due to the application not properly dropping
group permissions when a process is forked may result in exec
resources to inherit parent's GID (e.g. root).

2) An error in k5login type when managing a user's login file can be
exploited to gain another user's permissions by symlinking the
".k5login" file to the target user's file.

The security issue and the vulnerability are reported in the
following versions:
* Puppet versions prior to 2.6.14 and prior to 2.7.11.
* Puppet Enterprise versions prior to 2.0.3.
* Puppet Enterprise versions 1.0, 1.1, and 1.2.x.

SOLUTION:
Update to a fixed version or apply hotfixes.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://puppetlabs.com/security/cve/CVE-2012-1053/
http://puppetlabs.com/security/cve/CVE-2012-1054/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Fri Feb 24 17:47:52 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Sat, 25 Feb 2012 02:47:52 +0100
Subject: [SEC] [SA48094] IP.Board Admin Login Details Script Insertion
	Vulnerability
Message-ID: <201202250147.q1P1lq3G005286@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
IP.Board Admin Login Details Script Insertion Vulnerability

SECUNIA ADVISORY ID:
SA48094

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48094/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48094

RELEASE DATE:
2012-02-21

DISCUSS ADVISORY:
http://secunia.com/advisories/48094/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48094/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48094

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in IP.Board, which can be exploited
by malicious people to conduct script insertion attacks.

Certain input passed when logging in to the administrative interface
is not properly sanitised before being displayed to the user. This
can be exploited to insert arbitrary HTML and script code, which will
be executed in a user's browser session in context of an affected site
when viewing details of failed admin login attempts.

The vulnerability is reported in all 3.x versions.

SOLUTION:
Apply patch.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://community.invisionpower.com/topic/357387-ipboard-security-update/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 27 10:30:48 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 27 Feb 2012 19:30:48 +0100
Subject: [SEC] [SA48087] WordPress Video Embed & Thumbnail Generator Plugin
	Code Execution Vulnerabilities
Message-ID: <201202271830.q1RIUmPp021610@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
WordPress Video Embed & Thumbnail Generator Plugin Code Execution
Vulnerabilities

SECUNIA ADVISORY ID:
SA48087

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48087/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48087

RELEASE DATE:
2012-02-27

DISCUSS ADVISORY:
http://secunia.com/advisories/48087/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48087/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48087

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Some vulnerabilities have been discovered in the Video Embed &
Thumbnail Generator plugin for WordPress, which can be exploited by
malicious people to compromise a vulnerable system.

Input passed to various functions in the
wp-content/plugins/video-embed-thumbnail-generator/kg_callffmpeg.php
script is not properly sanitised before being used in an "exec()"
call. This can be exploited to inject and execute arbitrary shell
commands.

The vulnerabilities are confirmed in version 1.1. Other versions may
also be affected.

SOLUTION:
Upgrade to version 2.0.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
Video Embed & Thumbnail Generator:
http://wordpress.org/extend/plugins/video-embed-thumbnail-generator/changelog/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 27 11:29:52 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 27 Feb 2012 20:29:52 +0100
Subject: [SEC] [SA48173] idev-BusinessDirectory "SEARCH" Cross-Site
	Scripting Vulnerability
Message-ID: <201202271929.q1RJTqAX012074@CRON-IX-2.intnet>

----------------------------------------------------------------------

Secunia presentations @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March
Listen to our Chief Security Specialist, Research Analyst Director, and Director Product Management & Quality Assurance discuss the industry's key topics. Also, visit the Secunia stand #817. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm

----------------------------------------------------------------------

TITLE:
idev-BusinessDirectory "SEARCH" Cross-Site Scripting Vulnerability

SECUNIA ADVISORY ID:
SA48173

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48173/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48173

RELEASE DATE:
2012-02-27

DISCUSS ADVISORY:
http://secunia.com/advisories/48173/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48173/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48173

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in idev-BusinessDirectory, which
can be exploited by malicious people to conduct cross-site scripting
attacks.

Input passed via the "SEARCH" POST parameter to index.php is not
properly sanitised before being returned to the user. This can be
exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

The vulnerability is reported in version 3.0. Other versions may also
be affected.

SOLUTION:
Filter malicious characters and character sequences using a proxy.

PROVIDED AND/OR DISCOVERED BY:
Red Security TEAM

ORIGINAL ADVISORY:
http://packetstormsecurity.org/files/110212/idev-BusinessDirectory-3.0-Cross-Site-Scripting.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 27 12:30:18 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 27 Feb 2012 21:30:18 +0100
Subject: [SEC] [SA48180] Contao Cross-Site Request Forgery Vulnerability
Message-ID: <201202272030.q1RKUIPY002539@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Contao Cross-Site Request Forgery Vulnerability

SECUNIA ADVISORY ID:
SA48180

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48180/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48180

RELEASE DATE:
2012-02-27

DISCUSS ADVISORY:
http://secunia.com/advisories/48180/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48180/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48180

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ivano Binetti has discovered a vulnerability in Contao, which can be
exploited by malicious people to conduct cross-site request forgery
attacks.

The vulnerability is caused due to the application allowing users to
perform certain actions via HTTP requests without performing proper
validity checks to verify the requests. This can be exploited to e.g.
delete a user, delete news, or delete a newsletter when a logged-in
administrative user visits a specially crafted web page.

The vulnerability is confirmed in version 2.11.0. Other versions may
also be affected.

SOLUTION:
Do not browse untrusted websites or follow untrusted links while
logged in to the application.

PROVIDED AND/OR DISCOVERED BY:
Ivano Binetti

ORIGINAL ADVISORY:
http://ivanobinetti.blogspot.com/2012/02/contaocms-fka-typolight-211-csrf-delete.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 27 13:30:50 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 27 Feb 2012 22:30:50 +0100
Subject: [SEC] [SA48065] Cookpad for Android / Cookpad Noseru for Android
	Security Bypass Security Issue
Message-ID: <201202272130.q1RLUo2q025462@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Cookpad for Android / Cookpad Noseru for Android Security Bypass
Security Issue

SECUNIA ADVISORY ID:
SA48065

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48065/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48065

RELEASE DATE:
2012-02-27

DISCUSS ADVISORY:
http://secunia.com/advisories/48065/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48065/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48065

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A security issue has been reported in Cookpad for Android and Cookpad
Noseru for Android, which can be exploited by malicious people to
bypass certain security restrictions.

The security issue is caused due to an unspecified error and can be
exploited to disclose potentially sensitive information.

Successful exploitation requires that a malicious application is
installed.

The security issue is reported in the following products and
versions:
* Cookpad for Android version 1.5.16 and prior.
* Cookpad Noseru for Android version 1.1.1 and prior.

SOLUTION:
Update to a fixed version.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

PROVIDED AND/OR DISCOVERED BY:
JVN credits Gaku Mochizuki, Mitsui Bussan Secure Directions, Inc.

ORIGINAL ADVISORY:
Cookpad (Japanese):
http://cookpad.typepad.jp/help/2012/02/23oshirase.html

JVN:
http://jvn.jp/en/jp/JVN25731073/index.html
http://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000014.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 27 14:25:40 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 27 Feb 2012 23:25:40 +0100
Subject: [SEC] [SA48147] Dropbear SSH Server Use-After-Free Vulnerability
Message-ID: <201202272225.q1RMPeHD015864@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Dropbear SSH Server Use-After-Free Vulnerability

SECUNIA ADVISORY ID:
SA48147

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48147/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48147

RELEASE DATE:
2012-02-27

DISCUSS ADVISORY:
http://secunia.com/advisories/48147/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48147/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48147

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Danny Fullerton has reported a vulnerability in Dropbear SSH Server,
which can be exploited by malicious users to gain escalated
privileges.

The vulnerability is caused due to a use-after-free error within the
daemon when managing certain channels concurrency and can be
exploited by sending multiple command requests.

Successful exploitation may allow execution of arbitrary code with
root privileges, but requires the server to be configured for public
key authentication and the "command" option to be used within the
"authorized_keys" file.

The vulnerability is reported in version 0.52 through 2011.54.

SOLUTION:
Update to version 2012.55

PROVIDED AND/OR DISCOVERED BY:
Danny Fullerton, Mantor Organization

ORIGINAL ADVISORY:
Dropbear:
http://matt.ucc.asn.au/dropbear/CHANGES

Danny Fullerton:
http://archives.neohapsis.com/archives/fulldisclosure/2012-02/0404.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 27 14:45:48 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Mon, 27 Feb 2012 23:45:48 +0100
Subject: [SEC] [SA48186] Ubuntu update for samba
Message-ID: <201202272245.q1RMjmlY005741@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Ubuntu update for samba

SECUNIA ADVISORY ID:
SA48186

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48186/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48186

RELEASE DATE:
2012-02-27

DISCUSS ADVISORY:
http://secunia.com/advisories/48186/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48186/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48186

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for samba. This fixes a vulnerability,
which can be exploited by malicious people to compromise a vulnerable
system.

For more information:
SA48152

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1374-1:
https://lists.ubuntu.com/archives/ubuntu-security-announce/2012-February/001603.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 27 15:11:08 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 28 Feb 2012 00:11:08 +0100
Subject: [SEC] [SA48169] MyJobList "eid" SQL Injection Vulnerability
Message-ID: <201202272311.q1RNB8eK028095@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
MyJobList "eid" SQL Injection Vulnerability

SECUNIA ADVISORY ID:
SA48169

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48169/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48169

RELEASE DATE:
2012-02-27

DISCUSS ADVISORY:
http://secunia.com/advisories/48169/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48169/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48169

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been discovered in MyJobList, which can be
exploited by malicious people to conduct SQL injection attacks.

Input passed via the "eid" parameter to index.php (when "loc" is set
to "profile") is not properly sanitised before being used in a SQL
query. This can be exploited to manipulate SQL queries by injecting
arbitrary SQL code.

The vulnerability is confirmed in version 0.1.3. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
Red Security TEAM

ORIGINAL ADVISORY:
http://packetstormsecurity.org/files/110225/MyJobList-0.1.3-SQL-Injection.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 27 15:59:02 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 28 Feb 2012 00:59:02 +0100
Subject: [SEC] [SA48149] IBM AIX ICMP Packet Handling Denial of Service
	Vulnerability
Message-ID: <201202272359.q1RNx2Kg018386@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
IBM AIX ICMP Packet Handling Denial of Service Vulnerability

SECUNIA ADVISORY ID:
SA48149

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48149/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48149

RELEASE DATE:
2012-02-27

DISCUSS ADVISORY:
http://secunia.com/advisories/48149/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48149/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48149

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in IBM AIX, which can be exploited
by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an unspecified error when handling
ICMP packets and can be exploited by sending a specially crafted ICMP
packet.

The vulnerability is reported in versions 5.3, 6.1, and 7.1.

SOLUTION:
Apply fix (Please see vendor's advisory for details).

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor

ORIGINAL ADVISORY:
http://aix.software.ibm.com/aix/efixes/security/icmp_advisory.asc

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 27 16:35:37 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 28 Feb 2012 01:35:37 +0100
Subject: [SEC] [SA48160] SUSE update for MozillaFirefox
Message-ID: <201202280035.q1S0Zbem008620@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
SUSE update for MozillaFirefox

SECUNIA ADVISORY ID:
SA48160

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48160/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48160

RELEASE DATE:
2012-02-27

DISCUSS ADVISORY:
http://secunia.com/advisories/48160/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48160/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48160

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for MozillaFirefox. This fixes a
vulnerability, which can be exploited by malicious people to
potentially compromise a user's system.

For more information:
SA48089

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
SUSE-SU-2012:0303-1:
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00023.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 27 16:59:51 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 28 Feb 2012 01:59:51 +0100
Subject: [SEC] [SA48179] SUSE update for mozilla-xulrunner192
Message-ID: <201202280059.q1S0xpJ0030942@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
SUSE update for mozilla-xulrunner192

SECUNIA ADVISORY ID:
SA48179

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48179/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48179

RELEASE DATE:
2012-02-27

DISCUSS ADVISORY:
http://secunia.com/advisories/48179/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48179/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48179

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for mozilla-xulrunner192. This fixes a
vulnerability, which can be exploited by malicious people to
potentially compromise a user's system.

For more information:
SA48089

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0297-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00059.html

SUSE-SU-2012:0298-1:
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00021.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 27 17:26:28 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 28 Feb 2012 02:26:28 +0100
Subject: [SEC] [SA48171] phpFox "val[description]" Script Insertion
	Vulnerability
Message-ID: <201202280126.q1S1QSit020929@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
phpFox "val[description]" Script Insertion Vulnerability

SECUNIA ADVISORY ID:
SA48171

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48171/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48171

RELEASE DATE:
2012-02-27

DISCUSS ADVISORY:
http://secunia.com/advisories/48171/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48171/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48171

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in phpFox, which can be exploited
by malicious users to conduct script insertion attacks.

Input passed via the "val[description]" parameter to e.g.
marketplace/add/id_195 when creating a listing is not properly
sanitised before being used. This can be exploited to insert
arbitrary HTML and script code, which will be executed in a user's
browser session in context of an affected site when the malicious
data is being viewed.

The vulnerability is reported in version 3.0.1. Other versions may
also be affected.

SOLUTION:
Filter malicious characters and character sequences using a proxy.

PROVIDED AND/OR DISCOVERED BY:
tRipLeZiX

ORIGINAL ADVISORY:
http://packetstormsecurity.org/files/110193/PHPFox-Cross-Site-Scripting.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Mon Feb 27 20:08:36 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 28 Feb 2012 05:08:36 +0100
Subject: [SEC] [SA48107] PostgreSQL Multiple Vulnerabilities
Message-ID: <201202280408.q1S48apu013483@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
PostgreSQL Multiple Vulnerabilities

SECUNIA ADVISORY ID:
SA48107

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48107/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48107

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48107/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48107/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48107

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in PostgreSQL, which can
be exploited by malicious users to bypass certain security
restrictions and by malicious people to conduct spoofing attacks and
manipulate certain data.

1) An error due to CREATE TRIGGER not performing permission checks on
a trigger function can be exploited by marking a trigger function as
SECURITY DEFINER, which would grant EXECUTE permissions.

2) An error when verifying the common name within SSL certificates
incorrectly truncates the name to 32 characters, which may result in
successful verification of spoofed certificates.

3) An input sanitisation error in pg_dump when inserting object names
into comments can be exploited to escape the comment via linefeed
characters and insert a SQL command into a dump script.

The vulnerabilities are reported in versions prior to 9.1.3, 9.0.7,
8.4.11 and 8.3.18.

SOLUTION:
Update to version 9.1.3, 9.0.7, 8.4.11 or 8.3.18.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://www.postgresql.org/about/news/1377/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 10:30:25 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 28 Feb 2012 19:30:25 +0100
Subject: [SEC] [SA48153] OpenSSL ASN.1 MIME Header Parsing NULL Pointer
	Dereference Vulnerability
Message-ID: <201202281830.q1SIUPww016161@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
OpenSSL ASN.1 MIME Header Parsing NULL Pointer Dereference
Vulnerability

SECUNIA ADVISORY ID:
SA48153

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48153/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48153

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48153/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48153/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48153

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in OpenSSL, which can be exploited
by malicious people to cause a DoS (Denial of Service) of the
application using the library.

The vulnerability is caused due to a NULL-pointer dereference error
in the "mime_hdr_cmp()" function (crypto/asn1/asn_mime.c) when
parsing certain MIME headers and can be exploited to cause a crash.

The vulnerability is reported in versions 0.9.7i, 0.9.8t, and 1.0.0g.
Other versions may also be affected.

SOLUTION:
Fixed in the CVS repository.

PROVIDED AND/OR DISCOVERED BY:
Reported by Mats Nilsson to the openssl-dev mailing list.

ORIGINAL ADVISORY:
Mats Nilsson:
http://marc.info/?l=openssl-dev&m=115685408414194&w=2

OpenSSL:
http://cvs.openssl.org/chngview?cn=22144

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 11:30:35 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 28 Feb 2012 20:30:35 +0100
Subject: [SEC] [SA48162] Kadu Two Script Insertion Vulnerabilities
Message-ID: <201202281930.q1SJUZg1006651@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Kadu Two Script Insertion Vulnerabilities

SECUNIA ADVISORY ID:
SA48162

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48162/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48162

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48162/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48162/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48162

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Two vulnerabilities have been reported in Kadu, which can be
exploited by malicious users to conduct script insertion attacks.

Input passed via SMS or user status messages is not properly
sanitised before being displayed in the chat history. This can be
exploited to insert arbitrary HTML and script code, which will be
executed when the malicious data is being viewed.

The vulnerabilities are reported in version 0.11.0. Other versions
may also be affected.

SOLUTION:
Fixed in the GIT repository.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Mateusz Goik.

ORIGINAL ADVISORY:
https://gitorious.org/kadu/kadu/commit/0dc47123478654fc01308b60c8aae2455939cb8f
https://bugzilla.novell.com/show_bug.cgi?id=749036

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 12:30:19 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 28 Feb 2012 21:30:19 +0100
Subject: [SEC] [SA48061] Snom VoIP Phone Firmware Password Reset Security
	Issue
Message-ID: <201202282030.q1SKUJkF029513@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Snom VoIP Phone Firmware Password Reset Security Issue

SECUNIA ADVISORY ID:
SA48061

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48061/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48061

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48061/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48061/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48061

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Sense of Security has reported a security issue in Snom VoIP Phone
Firmware, which can be exploited by malicious people to bypass
certain security restrictions.

The security issue is caused due to an error when handling password
resets.

For more information:
SA48048

SOLUTION:
Upgrade to version 8.4.35.

PROVIDED AND/OR DISCOVERED BY:
Nathaniel Carew, Sense of Security Labs

ORIGINAL ADVISORY:
SOS-12-001:
http://www.senseofsecurity.com.au/advisories/SOS-12-001.pdf

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 13:30:12 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 28 Feb 2012 22:30:12 +0100
Subject: [SEC] [SA48158] Snom VoIP Phone Firmware Two Vulnerabilities
Message-ID: <201202282130.q1SLUCkS019995@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Snom VoIP Phone Firmware Two Vulnerabilities

SECUNIA ADVISORY ID:
SA48158

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48158/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48158

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48158/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48158/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48158

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Sense of Security has reported a security issue and a vulnerability
in Snom VoIP Phone Firmware, which can be exploited by malicious
people to bypass certain security restrictions and conduct cross-site
request forgery attacks.

1) The security issue is caused due to an error when handling
password resets.

For more information:
SA48048

2) The web interface allows users to perform certain actions via HTTP
requests without performing proper validity checks to verify the
requests. This can be exploited to e.g. reset a password when a
logged-in user visits a specially crafted web page.

SOLUTION:
Upgrade to version 8.4.35.

PROVIDED AND/OR DISCOVERED BY:
Nathaniel Carew, Sense of Security Labs

ORIGINAL ADVISORY:
SOS-12-001:
http://www.senseofsecurity.com.au/advisories/SOS-12-001.pdf

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 14:27:46 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 28 Feb 2012 23:27:46 +0100
Subject: [SEC] [SA48168] NetDecision Source Code Disclosure and Buffer
	Overflow Vulnerabilities
Message-ID: <201202282227.q1SMRk6u010442@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
NetDecision Source Code Disclosure and Buffer Overflow
Vulnerabilities

SECUNIA ADVISORY ID:
SA48168

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48168/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48168

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48168/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48168/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48168

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SecPod Research Team has discovered two vulnerabilities in
NetDecision, which can be exploited by malicious people to disclose
potentially sensitive information and potentially compromise a
vulnerable system.

1) A boundary error in the HTTP server when handling web requests can
be exploited to cause a stack-based buffer overflow via an overly-long
URL.

Successful exploitation of this vulnerability may allow execution of
arbitrary code, but requires the web server to be enabled (disabled
by default).

2) An error in the Traffic Grapher server when processing web
requests can be exploited to disclose the source code of NetDecision
script files (".nd") via a specially crafted GET header.

NOTE: Additionally, a weakness exists in the Dashboard server when
handling web requests for non-existent resources, which may disclose
the absolute path of the web directory.

The vulnerabilities are confirmed in version 4.5.1. Other versions
may also be affected.

SOLUTION:
Update to version 4.6.1.

PROVIDED AND/OR DISCOVERED BY:
Prabhu S Angadi, SecPod Research Team

ORIGINAL ADVISORY:
NetDecision:
http://www.netmechanica.com/news/?news_id=26

SecPod Research Team:
http://secpod.org/blog/?p=484
http://secpod.org/blog/?p=481
http://secpod.org/blog/?p=478

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 14:46:19 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Tue, 28 Feb 2012 23:46:19 +0100
Subject: [SEC] [SA48088] Sagem F@st 2604 Cross-Site Request Forgery
	Vulnerability
Message-ID: <201202282246.q1SMkJuw032685@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Sagem F at st 2604 Cross-Site Request Forgery Vulnerability

SECUNIA ADVISORY ID:
SA48088

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48088/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48088

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48088/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48088/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48088

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in Sagem F at st 2604, which can be
exploited by malicious people to conduct cross-site request forgery
attacks.

The management interface allows users to perform certain actions via
HTTP requests without performing any validity checks to verify the
requests. This can be exploited to e.g. change an administrator's
password by tricking a logged in administrator into visiting a
malicious web site.

SOLUTION:
Do not browse untrusted sites or follow untrusted links while being
logged-in to the application.

PROVIDED AND/OR DISCOVERED BY:
KinG Of PiraTeS

ORIGINAL ADVISORY:
http://www.exploit-db.com/exploits/18504/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 15:11:39 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 00:11:39 +0100
Subject: [SEC] [SA48187] SUSE update for java-1_6_0-openjdk
Message-ID: <201202282311.q1SNBdiN022653@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
SUSE update for java-1_6_0-openjdk

SECUNIA ADVISORY ID:
SA48187

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48187/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48187

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48187/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48187/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48187

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for java-1_6_0-openjdk. This fixes multiple
vulnerabilities, which can be exploited by malicious people to
disclose potentially sensitive information, manipulate certain data,
cause a DoS (Denial of Service), and compromise a vulnerable system.

For more information:
SA48009

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0309-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00063.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 15:55:36 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 00:55:36 +0100
Subject: [SEC] [SA48175] Ubuntu update for ruby
Message-ID: <201202282355.q1SNtaRT012893@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Ubuntu update for ruby

SECUNIA ADVISORY ID:
SA48175

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48175/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48175

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48175/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48175/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48175

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for ruby. This fixes a security issue and
multiple vulnerabilities, which can be exploited by malicious, local
users to perform certain actions with escalated privileges and by
malicious people to bypass certain security restrictions, conduct
cross-site scripting attacks, cause a DoS (Denial of Service), and
potentially compromise a vulnerable system.

For more information:
SA41003
SA43420
SA43434
SA44638
SA47405

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1377-1:
http://www.ubuntu.com/usn/usn-1377-1

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 16:30:01 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 01:30:01 +0100
Subject: [SEC] [SA48174] Debian update for postgresql-8.4
Message-ID: <201202290030.q1T0U1wE002951@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Debian update for postgresql-8.4

SECUNIA ADVISORY ID:
SA48174

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48174/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48174

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48174/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48174/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48174

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for postgresql-8.4. This fixes multiple
vulnerabilities, which can be exploited by malicious users to bypass
certain security restrictions and by malicious people to conduct
spoofing attacks and manipulate certain data.

For more information:
SA48107

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2418-1:
http://www.debian.org/security/2012/dsa-2418

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 16:48:36 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 01:48:36 +0100
Subject: [SEC] [SA48178] Ubuntu update for libxml2
Message-ID: <201202290048.q1T0ma7j025332@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Ubuntu update for libxml2

SECUNIA ADVISORY ID:
SA48178

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48178/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48178

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48178/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48178/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48178

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for libxml2. This fixes a vulnerability,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

For more information:
SA48000

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1376-1:
http://www.ubuntu.com/usn/usn-1376-1

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 17:14:28 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 02:14:28 +0100
Subject: [SEC] [SA48151] lknSupport URL Cross-Site Scripting Vulnerability
Message-ID: <201202290114.q1T1ESBk015307@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
lknSupport URL Cross-Site Scripting Vulnerability

SECUNIA ADVISORY ID:
SA48151

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48151/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48151

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48151/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48151/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48151

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in lknSupport, which can be
exploited by malicious people to conduct cross-site scripting
attacks.

Input appended to the URL after module/kb/search_word/ is not
properly sanitised before being returned to the user. This can be
exploited to execute arbitrary HTML and script code in a user's
browser session in context of an affected site.

The vulnerability is reported in version 1.1. Other versions may also
be affected.

SOLUTION:
Filter malicious characters and character sequences using a proxy.

PROVIDED AND/OR DISCOVERED BY:
Red Security TEAM.

ORIGINAL ADVISORY:
http://dl.packetstormsecurity.net/1202-exploits/iknsupport-xss.txt

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 17:47:36 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 02:47:36 +0100
Subject: [SEC] [SA48048] Snom VoIP Phone Firmware Password Reset Security
	Issue
Message-ID: <201202290147.q1T1laJO005387@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Snom VoIP Phone Firmware Password Reset Security Issue

SECUNIA ADVISORY ID:
SA48048

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48048/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48048

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48048/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48048/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48048

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Sense of Security has reported a security issue in Snom VoIP Phone
Firmware, which can be exploited by malicious people to bypass
certain security restrictions.

The security issue is caused due to an error when handling password
resets via a network settings web page (e.g. advanced_network.htm)
and can be exploited to change the password of the administrative
user.

The security issue is reported in versions prior to 8.4.35.

SOLUTION:
Update to version 8.4.35.

PROVIDED AND/OR DISCOVERED BY:
Nathaniel Carew, Sense of Security Labs

ORIGINAL ADVISORY:
SOS-12-001:
http://www.senseofsecurity.com.au/advisories/SOS-12-001.pdf

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 18:12:45 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 03:12:45 +0100
Subject: [SEC] [SA48157] Debian update for puppet
Message-ID: <201202290212.q1T2CjT4027734@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Debian update for puppet

SECUNIA ADVISORY ID:
SA48157

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48157/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48157

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48157/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48157/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48157

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Debian has issued an update for puppet. This fixes a security issue
and a vulnerability, which can be exploited by malicious, local users
to gain escalated privileges.

For more information:
SA48166

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2419-1:
http://www.debian.org/security/2012/dsa-2419

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 18:45:27 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 03:45:27 +0100
Subject: [SEC] [SA48049] Webglimpse Multiple Cross-Site Scripting
	Vulnerabilities
Message-ID: <201202290245.q1T2jRcM017804@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Webglimpse Multiple Cross-Site Scripting Vulnerabilities

SECUNIA ADVISORY ID:
SA48049

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48049/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48049

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48049/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48049/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48049

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
MustLive has discovered multiple vulnerabilities in Webglimpse, which
can be exploited by malicious people to conduct cross-site scripting
attacks.

Input passed via the "URL", "FILE", and "DOMAIN" parameters to
wgarcmin.cgi (when "NEXTPAGE" is set to "T") is not properly
sanitised before being returned to the user. This can be exploited to
execute arbitrary HTML and script code in a user's browser session in
context of an affected site.

The vulnerabilities are confirmed in version 2.20.0. Other versions
may also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
MustLive.

ORIGINAL ADVISORY:
http://websecurity.com.ua/3089/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 19:17:18 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 04:17:18 +0100
Subject: [SEC] [SA48177] Gentoo update for libvirt
Message-ID: <201202290317.q1T3HIT1008349@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Gentoo update for libvirt

SECUNIA ADVISORY ID:
SA48177

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48177/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48177

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48177/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48177/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48177

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Gentoo has issued an update for libvirt. This fixes a security issue
and multiple vulnerabilities, which can be exploited by malicious,
local users in a guest system to bypass certain security
restrictions, by malicious users to cause a DoS (Denial of Service)
and potentially compromise a vulnerable system, and by malicious
people to bypass certain security restrictions and cause a DoS
(Denial of Service).

For more information:
SA40758
SA43670
SA44988

SOLUTION:
Update to version "app-emulation/libvirt-0.9.3-r1" or later.

ORIGINAL ADVISORY:
GLSA 201202-07:
http://www.gentoo.org/security/en/glsa/glsa-201202-07.xml

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 19:45:00 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 04:45:00 +0100
Subject: [SEC] [SA48150] SUSE update for cvs
Message-ID: <201202290345.q1T3j0MO030727@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
SUSE update for cvs

SECUNIA ADVISORY ID:
SA48150

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48150/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48150

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48150/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48150/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48150

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for cvs. This fixes a vulnerability, which
can be exploited by malicious people to compromise a user's system.

For more information:
SA47869

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0310-1:
http://lists.opensuse.org/opensuse-updates/2012-02/msg00064.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 20:11:05 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 05:11:05 +0100
Subject: [SEC] [SA48167] WonderDesk SQL Multiple Cross-Site Scripting and
	Script Insertion Vulnerabilities
Message-ID: <201202290411.q1T4B5bO020710@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
WonderDesk SQL Multiple Cross-Site Scripting and Script Insertion
Vulnerabilities

SECUNIA ADVISORY ID:
SA48167

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48167/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48167

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48167/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48167/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48167

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Sony has reported multiple vulnerabilities in WonderDesk SQL, which
can be exploited by malicious users to conduct script insertion
attacks and by malicious people to conduct cross-site scripting
attacks.

1) Input passed via the "cus_email" parameter to wonderdesk.cgi (when
"do" is set to "cust_lostpw") is not properly sanitised before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

2) Input passed via the "help_name", "help_email", "help_website",
and "help_example_url" parameters to wonderdesk.cgi (when "do" is set
to "hd_modify_record") is not properly sanitised before being used.
This can be exploited to insert arbitrary HTML and script code, which
will be executed in a user's browser session in context of an affected
site when the malicious data is being viewed.

The vulnerabilities are reported in version 4.14. Other versions may
also be affected.

SOLUTION:
Filter malicious characters and character sequences using a proxy.

PROVIDED AND/OR DISCOVERED BY:
Sony.

ORIGINAL ADVISORY:
http://st2tea.blogspot.com/2012/02/wonderdesk-cross-site-scripting.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Tue Feb 28 20:45:00 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 05:45:00 +0100
Subject: [SEC] [SA48200] Avaya CMS Solaris Information Disclosure and Denial
	of Service Vulnerabilities
Message-ID: <201202290445.q1T4j0Fk010792@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Avaya CMS Solaris Information Disclosure and Denial of Service
Vulnerabilities

SECUNIA ADVISORY ID:
SA48200

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48200/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48200

RELEASE DATE:
2012-02-28

DISCUSS ADVISORY:
http://secunia.com/advisories/48200/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48200/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48200

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Avaya has acknowledged two vulnerabilities in Avaya Call Management
System, which can be exploited by malicious, local users to disclose
system information and cause a DoS (Denial of Service) and by
malicious people to cause a DoS (Denial of Service).

For more information:
SA47611

The vulnerabilities are reported in versions R16, R16.1, R16.2, and
R16.3.

SOLUTION:
Update to version R16.3ef.j.

ORIGINAL ADVISORY:
ASA-2012-028:
https://support.avaya.com/css/P8/documents/100155617

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 29 10:31:57 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 19:31:57 +0100
Subject: [SEC] [SA48182] ImgPals Photo Host "u" SQL Injection Vulnerability
Message-ID: <201202291831.q1TIVv0J012933@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
ImgPals Photo Host "u" SQL Injection Vulnerability

SECUNIA ADVISORY ID:
SA48182

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48182/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48182

RELEASE DATE:
2012-02-29

DISCUSS ADVISORY:
http://secunia.com/advisories/48182/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48182/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48182

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Corrado Liotta has discovered a vulnerability in ImgPals Photo Host,
which can be exploited by malicious people to conduct SQL injection
attacks.

Input passed via the "u" parameter to approve.php (when "a" is set to
"app0" or "app1) is not properly sanitised before being used in SQL
queries. This can be exploited to manipulate SQL queries by injecting
arbitrary SQL code.

Successful exploitation requires that "magic_quotes_gpc" is
disabled.

The vulnerability is confirmed in version 1.0. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
Corrado Liotta.

ORIGINAL ADVISORY:
http://seclists.org/fulldisclosure/2012/Feb/448

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 29 11:30:07 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 20:30:07 +0100
Subject: [SEC] [SA48188] Sysax Multi Server Two Buffer Overflow
	Vulnerabilities
Message-ID: <201202291930.q1TJU7Os003363@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Sysax Multi Server Two Buffer Overflow Vulnerabilities

SECUNIA ADVISORY ID:
SA48188

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48188/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48188

RELEASE DATE:
2012-02-29

DISCUSS ADVISORY:
http://secunia.com/advisories/48188/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48188/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48188

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Craig Freyman has reported two vulnerabilities in Sysax Multi Server,
which can be exploited by malicious users and malicious people to
compromise a vulnerable system.

1) A boundary error in the SSH component when handling authentication
requests can be exploited to cause a stack-based buffer overflow by
sending an authentication request with an overly long username.

2) A boundary error in the SFTP component when handling requests to
retrieve files can be exploited by an authenticated user to cause a
stack-based buffer overflow by sending a request with an overly long
filename.

Successful exploitation of the vulnerabilities allows execution of
arbitrary code with SYSTEM privileges.

The vulnerabilities are reported in version 5.53. Prior versions may
also be affected.

SOLUTION:
Update to version 5.55.

PROVIDED AND/OR DISCOVERED BY:
Craig Freyman

ORIGINAL ADVISORY:
Craig Freyman:
http://www.pwnag3.com/2012/02/sysax-multi-server-ssh-username-exploit.html
http://www.pwnag3.com/2012/02/sysax-multi-server-553-sftp-exploit.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 29 12:29:53 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 21:29:53 +0100
Subject: [SEC] [SA48201] Hitachi JP1/Cm2/Network Node Manager Multiple
	Unspecified Vulnerabilities
Message-ID: <201202292029.q1TKTrnG026243@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Hitachi JP1/Cm2/Network Node Manager Multiple Unspecified
Vulnerabilities

SECUNIA ADVISORY ID:
SA48201

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48201/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48201

RELEASE DATE:
2012-02-29

DISCUSS ADVISORY:
http://secunia.com/advisories/48201/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48201/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48201

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been reported in Hitachi
JP1/Cm2/Network Node Manager, where some have an unknown impact and
others can be exploited by malicious people to cause a DoS (Denial of
Service).

The vulnerabilities are caused due to unspecified errors. No further
information is currently available.

Please see the vendor's advisory for a list of affected versions.

SOLUTION:
Apply updates (please see the vendor's advisory for details).

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
Hitachi (English):
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/./vuls/HS12-009/index.html

Hitachi (Japanese):
http://www.hitachi.co.jp/Prod/comp/soft1/security/info/./vuls/HS12-009/index.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 29 13:31:27 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 22:31:27 +0100
Subject: [SEC] [SA48195] Kongreg8 Script Insertion and SQL Injection
	Vulnerabilities
Message-ID: <201202292131.q1TLVR82016754@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Kongreg8 Script Insertion and SQL Injection Vulnerabilities

SECUNIA ADVISORY ID:
SA48195

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48195/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48195

RELEASE DATE:
2012-02-29

DISCUSS ADVISORY:
http://secunia.com/advisories/48195/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48195/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48195

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Multiple vulnerabilities have been discovered in Kongreg8, which can
be exploited by malicious users to conduct script insertion and SQL
injection attacks.

1) Input passed via the "groupname" and "groupdescription" parameters
to index.php (when "pageAction" is set to "252" and "passthru" is set
to "1") is not properly sanitised before being used. This can be
exploited to insert arbitrary HTML and script code, which will be
executed in a user's browser session in context of an affected site
when the malicious data is being viewed.

2) Input passed via the "groupname" and "groupdescription" parameters
to index.php (when "pageAction" is set to "252" and "passthru" is set
to "1") is not properly sanitised before being used in a SQL query.
This can be exploited to manipulate SQL queries by injecting
arbitrary SQL code.

Successful exploitation of the vulnerabilities #1 and #2 requires
permissions to add a group.

3) Input passed via the "firstname" and "surname" parameters to
index.php (when "pageAction" is set to "101") is not properly
sanitised before being used. This can be exploited to insert
arbitrary HTML and script code, which will be executed in a user's
browser session in context of an affected site when the malicious
data is being viewed.

4) Input passed via "firstname" and "surname" parameters to index.php
(when "pageAction" is set to "101") is not properly sanitised before
being used in a SQL query. This can be exploited to manipulate SQL
queries by injecting arbitrary SQL code.

Successful exploitation of the vulnerabilities #3 and #4 requires
permissions to add a member.

The vulnerabilities are confirmed in version 1.7.3. Other versions
may also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
1, 3) G13 within a bug report
2, 4) Ly Tin Wheedle

ORIGINAL ADVISORY:
Kongreg8 Bug#3489402:
http://sourceforge.net/tracker/?func=detail&aid=3489402&group_id=340116&atid=1424111

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 29 14:27:43 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 23:27:43 +0100
Subject: [SEC] [SA48189] Ubuntu update for kernel
Message-ID: <201202292227.q1TMRhcY007178@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Ubuntu update for kernel

SECUNIA ADVISORY ID:
SA48189

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48189/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48189

RELEASE DATE:
2012-02-29

DISCUSS ADVISORY:
http://secunia.com/advisories/48189/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48189/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48189

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for the kernel. This fixes some
vulnerabilities, which can be exploited by malicious, local users and
by malicious people to cause a DoS (Denial of Service).

For more information:
SA43594
SA44625
SA46423

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1379-1:
http://www.ubuntu.com/usn/usn-1379-1/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 29 14:57:19 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 23:57:19 +0100
Subject: [SEC] [SA47681] Ubuntu update for kernel
Message-ID: <201202292257.q1TMvJX5018693@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Ubuntu update for kernel

SECUNIA ADVISORY ID:
SA47681

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47681/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47681

RELEASE DATE:
2012-02-29

DISCUSS ADVISORY:
http://secunia.com/advisories/47681/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47681/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47681

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for the kernel. This fixes some
vulnerabilities, which can be exploited by malicious, local users and
malicious people to cause a DoS (Denial of Service).

For more information:
SA44625
SA47472
SA48155

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1380-1:
http://www.ubuntu.com/usn/usn-1380-1/

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 29 14:57:24 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Wed, 29 Feb 2012 23:57:24 +0100
Subject: [SEC] [SA48185] IBM Personal Communications WS File Processing
	Buffer Overflow Vulnerability
Message-ID: <201202292257.q1TMvO2K018795@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
IBM Personal Communications WS File Processing Buffer Overflow
Vulnerability

SECUNIA ADVISORY ID:
SA48185

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48185/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48185

RELEASE DATE:
2012-02-29

DISCUSS ADVISORY:
http://secunia.com/advisories/48185/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48185/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48185

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
A vulnerability has been reported in IBM Personal Communications,
which can be exploited by malicious people to compromise a user's
system.

The vulnerability is caused due to a boundary error in pcspref.dll
when processing WorkStation profiles and can be exploited to cause a
stack-based buffer overflow via a specially crafted ".ws" file.

Successful exploitation may allow execution of arbitrary code, but
requires tricking a user into opening a malicious file.

The vulnerability is reported in versions 5.9.0 through 5.9.7 and
6.0.0 through 6.0.3.

SOLUTION:
Apply APAR IC81539 or update to version 6.0.4.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Rocco Calvi, stratsec.

ORIGINAL ADVISORY:
IBM:
http://www.ibm.com/support/docview.wss?uid=swg21586166

ISS X-Force:
http://xforce.iss.net/xforce/xfdb/73127

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 29 15:26:57 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 1 Mar 2012 00:26:57 +0100
Subject: [SEC] [SA48184] LimeSurvey Script Insertion and SQL Injection
	Vulnerabilities
Message-ID: <201202292326.q1TNQv2w009188@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
LimeSurvey Script Insertion and SQL Injection Vulnerabilities

SECUNIA ADVISORY ID:
SA48184

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48184/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48184

RELEASE DATE:
2012-02-29

DISCUSS ADVISORY:
http://secunia.com/advisories/48184/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48184/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48184

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Two vulnerabilities have been discovered in LimeSurvey, which can be
exploited by malicious users to conduct script insertion and SQL
injection attacks.

1) Input passed via the "full_name" parameter to admin/admin.php
(when "action" is set to "moduser") is not properly sanitised in
admin/userrighthandling.php before being used. This can be exploited
to insert arbitrary HTML and script code, which will be executed in a
user's browser session in context of an affected site when the
malicious data is being viewed.

2) Input passed via the "id" parameter to admin/admin.php (when
"action" is set to "browse") is not properly sanitised in
admin/browse.php before being used in SQL queries. This can be
exploited to manipulate SQL queries by injecting arbitrary SQL code.

Successful exploitation of this vulnerability requires the "Create
survey" permission or the "View/read Responses" permission for a
survey.

The vulnerabilities are confirmed in version 1.91+ Build 12416. Prior
versions may also be affected.

SOLUTION:
Update to version 1.91+ Build 120224.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://www.limesurvey.org/en/stable-release
http://freecode.com/projects/limesurvey/releases/342070

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 29 16:09:42 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 1 Mar 2012 01:09:42 +0100
Subject: [SEC] [SA48190] Webfolio CMS Cross-Site Request Forgery
	Vulnerability
Message-ID: <201203010009.q2109gOc031789@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Webfolio CMS Cross-Site Request Forgery Vulnerability

SECUNIA ADVISORY ID:
SA48190

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48190/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48190

RELEASE DATE:
2012-02-29

DISCUSS ADVISORY:
http://secunia.com/advisories/48190/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48190/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48190

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ivano Binetti has discovered a vulnerability in Webfolio CMS, which
can be exploited by malicious people to conduct cross-site request
forgery attacks.

The application allows users to perform certain actions via HTTP
requests without performing proper validity checks to verify the
requests. This can be exploited to e.g. create an administrative user
or edit a web page when a logged-in administrative user visits a
specially crafted web page.

The vulnerability is confirmed in version 1.1.4. Other versions may
also be affected.

SOLUTION:
Do not browse untrusted sites or follow untrusted links while being
logged-in to the application.

PROVIDED AND/OR DISCOVERED BY:
Ivano Binetti

ORIGINAL ADVISORY:
http://ivanobinetti.blogspot.com/2012/02/webfoliocms-114-csrf-add-adminmodify.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 29 16:34:33 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 1 Mar 2012 01:34:33 +0100
Subject: [SEC] [SA48205] SUSE update for libpng
Message-ID: <201203010034.q210YXtI021840@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
SUSE update for libpng

SECUNIA ADVISORY ID:
SA48205

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48205/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48205

RELEASE DATE:
2012-02-29

DISCUSS ADVISORY:
http://secunia.com/advisories/48205/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48205/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48205

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for libpng. This fixes a vulnerability,
which can be exploited by malicious people to potentially compromise
an application using the library.

For more information:
SA48026

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
SUSE-SU-2012:0318-1:
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00029.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 29 17:00:11 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 1 Mar 2012 02:00:11 +0100
Subject: [SEC] [SA47912] Ricoh DC Software DL-10 FTP Server Buffer Overflow
	Vulnerability
Message-ID: <201203010100.q2110BeE011801@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Ricoh DC Software DL-10 FTP Server Buffer Overflow Vulnerability

SECUNIA ADVISORY ID:
SA47912

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/47912/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=47912

RELEASE DATE:
2012-03-01

DISCUSS ADVISORY:
http://secunia.com/advisories/47912/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/47912/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=47912

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Julien Ahrens has discovered a vulnerability in Ricoh DC Software
DL-10, which can be exploited by malicious people to compromise a
user's system.

The vulnerability is caused due to a boundary error in the SR10 FTP
server when logging FTP commands. This can be exploited to cause a
stack-based buffer overflow via e.g. an overly long "USER" FTP
command.

Successful exploitation allows execution of arbitrary code, but
requires the "Log file name" option to be enabled (disabled by
default).

The vulnerability is confirmed in version 4.5.0.1 (SR10.exe 1.1.0.6).
Other versions may also be affected.

SOLUTION:
Restrict access to trusted hosts only or disable the "Log file name"
option.

PROVIDED AND/OR DISCOVERED BY:
Julien Ahrens via Secunia.

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 29 17:27:04 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 1 Mar 2012 02:27:04 +0100
Subject: [SEC] [SA48181] Debian update for openjdk-6
Message-ID: <201203010127.q211R4sD001717@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Debian update for openjdk-6

SECUNIA ADVISORY ID:
SA48181

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48181/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48181

RELEASE DATE:
2012-02-29

DISCUSS ADVISORY:
http://secunia.com/advisories/48181/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48181/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48181

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for openjdk-6. This fixes a security
issue and multiple vulnerabilities, which can be exploited by
malicious people to disclose potentially sensitive information,
bypass certain security restrictions, manipulate certain data, cause
a DoS (Denial of Service), and compromise a vulnerable system.

For more information:
SA46789
SA48009

SOLUTION:
Apply updated packages via the apt-get package manager.

ORIGINAL ADVISORY:
DSA-2420-1:
http://www.debian.org/security/2012/dsa-2420

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 29 17:48:29 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 1 Mar 2012 02:48:29 +0100
Subject: [SEC] [SA48206] SUSE update for libpng12
Message-ID: <201203010148.q211mTWU024063@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
SUSE update for libpng12

SECUNIA ADVISORY ID:
SA48206

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48206/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48206

RELEASE DATE:
2012-02-29

DISCUSS ADVISORY:
http://secunia.com/advisories/48206/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48206/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48206

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for libpng12. This fixes a vulnerability,
which can be exploited by malicious people to potentially compromise
an application using the library.

For more information:
SA48026

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0316-1:
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00028.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 29 18:14:52 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 1 Mar 2012 03:14:52 +0100
Subject: [SEC] [SA48207] SUSE update for csound
Message-ID: <201203010214.q212EqxN014040@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
SUSE update for csound

SECUNIA ADVISORY ID:
SA48207

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48207/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48207

RELEASE DATE:
2012-02-29

DISCUSS ADVISORY:
http://secunia.com/advisories/48207/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48207/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48207

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
SUSE has issued an update for csound. This fixes two vulnerabilities,
which can be exploited by malicious people to compromise a user's
system.

For more information:
SA47585

SOLUTION:
Apply updated packages via the zypper package manager.

ORIGINAL ADVISORY:
openSUSE-SU-2012:0315-1:
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00027.html

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 29 18:51:45 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 1 Mar 2012 03:51:45 +0100
Subject: [SEC] [SA48198] Ubuntu update for postgresql
Message-ID: <201203010251.q212pjio004173@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Ubuntu update for postgresql

SECUNIA ADVISORY ID:
SA48198

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48198/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48198

RELEASE DATE:
2012-02-29

DISCUSS ADVISORY:
http://secunia.com/advisories/48198/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48198/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48198

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Ubuntu has issued an update for postgresql. This fixes multiple
vulnerabilities, which can be exploited by malicious users to bypass
certain security restrictions and by malicious people to conduct
spoofing attacks and manipulate certain data.

For more information:
SA48107

SOLUTION:
Apply updated packages.

Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

ORIGINAL ADVISORY:
USN-1378-1:
http://www.ubuntu.com/usn/usn-1378-1

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------

From sec-adv at secunia.com  Wed Feb 29 19:13:53 2012
From: sec-adv at secunia.com (Secunia Security Advisories)
Date: Thu, 1 Mar 2012 04:13:53 +0100
Subject: [SEC] [SA48191] Anchor CMS "real_name" Script Insertion
	Vulnerability
Message-ID: <201203010313.q213DrP9026943@CRON-IX-2.intnet>

----------------------------------------------------------------------

Become a PSI 3.0 beta tester!
Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface.
Download it here!
http://secunia.com/psi_30_beta_launch

----------------------------------------------------------------------

TITLE:
Anchor CMS "real_name" Script Insertion Vulnerability

SECUNIA ADVISORY ID:
SA48191

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/48191/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=48191

RELEASE DATE:
2012-02-29

DISCUSS ADVISORY:
http://secunia.com/advisories/48191/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA:
 * Last Update
 * Popularity
 * Comments
 * Criticality Level
 * Impact
 * Where
 * Solution Status
 * Operating System / Software
 * CVE Reference(s)

http://secunia.com/advisories/48191/

ONLY AVAILABLE IN CUSTOMER AREA:
 * Authentication Level
 * Report Reliability
 * Secunia PoC
 * Secunia Analysis
 * Systems Affected
 * Approve Distribution
 * Remediation Status
 * Secunia CVSS Score
 * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=48191

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:
 * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION:
Vulnerability Research Laboratory has discovered a vulnerability in
Anchor CMS, which can be exploited by malicious users to conduct
script insertion attacks.

Input passed via the "real_name" POST parameter to e.g.
index.php/admin/users/edit/2 when editing an existing user is not
properly sanitised before being used. This can be exploited to insert
arbitrary HTML and script code, which will be executed in a user's
browser session in context of an affected site when the malicious
data is being viewed.

The vulnerability is confirmed in version 0.6. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

PROVIDED AND/OR DISCOVERED BY:
Vulnerability Research Laboratory

ORIGINAL ADVISORY:
http://www.vulnerability-lab.com/get_content.php?id=453

OTHER REFERENCES:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

DEEP LINKS:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

EXPLOIT:
Further details available in Customer Area:
http://secunia.com/vulnerability_intelligence/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=caos-secbox%40lists.infiscale.org

----------------------------------------------------------------------