Security News Aggregator!

This page will contain the latest information tit-bits from the pages we normally refer. There are a lot more, which will be added eventually. Keep reading!

Security_Focus:

• 29 December 2012: Vuln: Pligg CMS 'status' Parameter SQL Injection Vulnerability - SecurityFocus Vulnerabilities
  
• 16 May 2012: Vuln: RETIRED: Apple QuickTime Prior To 7.7.2 Multiple Arbitrary Code Execution Vulnerabilities - SecurityFocus Vulnerabilities
  
• 16 May 2012: Vuln: Joomla! JCE Component 'file.php' Arbitrary File Upload Vulnerability - SecurityFocus Vulnerabilities
  
• 16 May 2012: Vuln: Advantech Studio ISSymbol ActiveX Control Multiple Buffer Overflow Vulnerabilities - SecurityFocus Vulnerabilities
  
• : Bugtraq: FlashPeak SlimBrowser TITLE Denial Of Service Vulnerability - SecurityFocus Vulnerabilities
  
• : Bugtraq: CVE-2012-2334 Vulnerabilities related to malformed Powerpoint files in OpenOffice.org 3.3.0 - SecurityFocus Vulnerabilities
  
• : Bugtraq: CVE-2012-2149 OpenOffice.org memory overwrite vulnerability - SecurityFocus Vulnerabilities
  
• : Bugtraq: CVE-2012-1149 OpenOffice.org integer overflow error in vclmi.dll module when allocating memory for an embedded image object - SecurityFocus Vulnerabilities
  
• : More rss feeds from SecurityFocus - SecurityFocus Vulnerabilities
  

Exploit_DB Updates:

• 16 May 2012: [dos] - Trigerring Java Code from a SVG Image - Exploit-DB updates
  
• 16 May 2012: [webapps] - Artiphp CMS 5.5.0 Database Backup Disclosure Exploit - Exploit-DB updates
  
• 16 May 2012: [webapps] - OpenKM Document Management System 5.1.7 Command Execution - Exploit-DB updates
  
• 16 May 2012: [webapps] - Axous 1.1.1 Multiple Vulnerabilities (CSRF - Persistent XSS) - Exploit-DB updates
  
• 15 May 2012: [webapps] - Serendipity 1.6 Backend XSS And SQLi Vulnerability - Exploit-DB updates
  
• 15 May 2012: [webapps] - Liferay Portal 6.1 - 6.0.x Privilege Escalation - Exploit-DB updates
  
• 15 May 2012: [dos] - Multimedia Builder 4.9.8 Malicious mef Crash - Exploit-DB updates
  
• 15 May 2012: [webapps] - b2ePMS 1.0 Authentication Bypass Vulnerability - Exploit-DB updates
  
• 14 May 2012: [dos] - FlexNet License Server Manager Stack Overflow In lmgrd - Exploit-DB updates
  
• 14 May 2012: [dos] - Pro-face Pro-Server EX WinGP PC Runtime Multiple Vulnerabilities - Exploit-DB updates
  

Packet_Storm_Security_Exploits:

• Artiphp CMS 5.5.0 Database Backup Disclosure - Artiphp CMS version 5.5.0 suffers from a database backup disclosure vulnerability.
• Artiphp CMS 5.5.0 Cross Site Scripting - Artiphp CMS version 5.5.0 suffers from multiple POST cross site scripting vulnerabilities.
• SiliSoftware backupDB() 1.2.7a Cross Site Scripting - SiliSoftware backupDB() version 1.2.7a suffers from a cross site scripting vulnerability.
• SiliSoftware phpThumb() 1.7.11 Cross Site Scripting - SiliSoftware phpThumb() version 1.7.11 suffers from a cross site scripting vulnerability.
• FlashPeak SlimBrowser 6.0.1.38 Denial Of Service - FlashPeak SlimBrowser version 6.0.1.38 suffers from a denial of service vulnerability.

Packet_Storm_Security_Tools:

• OpenDNSSEC 1.3.8 - OpenDNSSEC is software that manages the security of domain names on the Internet. The project intends to drive adoption of Domain Name System Security Extensions (DNSSEC) to further enhance Internet security.
• Bluelog Bluetooth Scanner/Logger 1.0.3 - Bluelog is a Bluetooth scanner/logger written with speed in mind. It is intended to be used as a site survey tool, concerned more about accurately detecting the number of discoverable Bluetooth devices than individual device specifics. Bluelog also includes the unique "Bluelog Live" mode, which puts discovered devices into a constantly updating live webpage which you can serve up with your HTTP daemon of choice.
• XCat 1.5 - XCat is a PHP web interface for scanning sites mined through bing.com.
• Cura 0.4.0 - Cura is a mobile phone application bundle of remote systems administration tools. It provides a personalized terminal emulator, a syslog module that allows for reading logs directly from a server, a SysMonitor module that visually graphs CPU and RAM usage percentages, access to Nmap, and Server Stats will offer general server information like its Vitals, Hardware information, Memory information, processes, and so on. A security feature will be implemented that allows users to have Cura's database completely wiped upon them sending the compromised phone a secret pattern of their choosing (e.g. send an SMS message containing "phone has been stolen!" to your Android phone to wipe Cura's database, and receive the location of the compromised phone as an SMS to your emergency phone number or as an email to your emergency email address).
• 360-FAAR Firewall Analysis Audit And Repair 0.2.3 - 360-FAAR Firewall Analysis Audit and Repair is an offline command line perl policy manipulation tool to filter, compare to logs, merge, translate and output firewall commands for new policies, in checkpoint dbedit or screenos commands.

Packet_Storm_Security_Advisories:

• OpenOffice.org 3.3.0 Powerpoint Denial Of Service - A review of the code in filter/source/msfilter msdffimp.cxx in OpenOffice.org versions 3.3 and 3.4 Beta revealed some unchecked memory allocations, which could be exploited via malformed Powerpoint graphics records ("escher") to cause bad_alloc exceptions. From this vulnerability a denial of service attack is possible.
• Drupal Zen 6.x Cross Site Scripting - Drupal Zen third party module version 6.x suffers from a cross site scripting vulnerability.
• OpenOffice.org Memory Overwrite - OpenOffice.org versions 3.3 and 3.4 Beta suffer from a memory overwrite vulnerability.
• Debian Security Advisory 2473-1 - Debian Linux Security Advisory 2473-1 - Tielei Wang discovered that OpenOffice.org does not allocate a large enough memory region when processing a specially crafted JPEG object, leading to a heap-based buffer overflow and potentially arbitrary code execution.
• Drupal Aberdeen 6.x Cross Site Scripting - Drupal Aberdeen third party module version 6.x suffers from a cross site scripting vulnerability.

ZDI-Published-Advisories:

• 19 April 2012: ZDI-12-074: Oracle Forms Recognition CroScPlt.dll ActiveX Control Remote Code Execution Vulnerabilty - ZDI: Published Advisories
  
• 19 April 2012: ZDI-12-073: Oracle WebCenter Forms Recognition Sssplt30.ocx ActiveX Control Remote Code Execution Vulnerabilty - ZDI: Published Advisories
  
• 18 April 2012: ZDI-12-071: Samba ndr_ValidatePassword heap overflow Remote Code Execution Vulnerability - ZDI: Published Advisories
  
• 18 April 2012: ZDI-12-070: Samba lsa_LookupNames Heap Overflow Remote Code Execution Vulnerability - ZDI: Published Advisories
  
• 18 April 2012: ZDI-12-068: Samba GetAliasMembership SidArray Remote Code Execution Vulnerability - ZDI: Published Advisories
  
• 18 April 2012: ZDI-12-069: Samba SetInfoPolicy AuditEventsInfo Remote Code Execution Vulnerability - ZDI: Published Advisories
  
• 18 April 2012: ZDI-12-066: Internet Explorer CTagFactory Use-After-Free Remote Code Execution Vulnerability - ZDI: Published Advisories
  
• 18 April 2012: ZDI-12-067: WebKit.org Webkit Array.Splice Remote Code Execution Vulnerability - ZDI: Published Advisories
  
• 18 April 2012: ZDI-12-072: Samba ReportEventW Heap Overflow Remote Code Execution Vulnerability - ZDI: Published Advisories
  
• 18 April 2012: ZDI-12-065: Microsoft Internet Explorer selectAll Use-After-Free Remote Code Execution Vulnerability - ZDI: Published Advisories
  

CERT Advisories:

• 16 May 2012: Current Activity - Apple Releases QuickTime 7.7.2 - CERT Advisories
  
• 15 May 2012: Current Activity - Google Releases Google Chrome 19 - CERT Advisories
  
• 10 May 2012: Current Activity - Apple Releases Multiple Security Updates - CERT Advisories
  
• 9 May 2012: Alert TA12-129A -- Microsoft Updates for Multiple Vulnerabilities - CERT Advisories
  
• 8 May 2012: Current Activity - Microsoft Releases May Security Bulletin - CERT Advisories
  
• 4 May 2012: Current Activity - Adobe Releases Security Advisory for Adobe Flash Player - CERT Advisories
  
• 3 May 2012: Current Activity - Microsoft Releases Advance Notification for May Security Bulletin - CERT Advisories
  
• 1 May 2012: Current Activity - Google Releases Chrome 18.0.1025.168 - CERT Advisories
  
• 24 April 2012: Current Activity - RuggedCom Rugged Operating System Vulnerability - CERT Advisories
  
• 24 April 2012: Current Activity - DNSChanger Malware - CERT Advisories
  
• 18 April 2012: Current Activity - Oracle Releases Critical Patch Update for April 2012 - CERT Advisories
  
• 16 April 2012: Current Activity - Apple Releases Flashback Malware Security Updates - CERT Advisories
  
• 12 April 2012: Current Activity - HP ProCurve 5400 zl Switches Security Bulletin - CERT Advisories
  
• 11 April 2012: Current Activity - Samba Releases Updates for 3.0.x - 3.6.3 - CERT Advisories
  
• 11 April 2012: Alert TA12-101B -- Adobe Reader and Acrobat Security Updates and Architectural Improvements - CERT Advisories
  

Bugtraq:

• 16 May 2012: FlashPeak SlimBrowser TITLE Denial Of Service Vulnerability - Bugtraq
  
• 16 May 2012: [PRE-SA-2012-03] Linux kernel: Buffer overflow in HFS plus filesystem - Bugtraq
  
• 16 May 2012: The story of the Linux kernel 3.x... - Bugtraq
  
• 16 May 2012: CVE-2012-2334 Vulnerabilities related to malformed Powerpoint files in OpenOffice.org 3.3.0 - Bugtraq
  
• 16 May 2012: CVE-2012-2149 OpenOffice.org memory overwrite vulnerability - Bugtraq
  
• 16 May 2012: CVE-2012-1149 OpenOffice.org integer overflow error in vclmi.dll module when allocating memory for an embedded image object - Bugtraq
  
• 16 May 2012: Re: Trigerring Java code from a SVG image - Bugtraq
  
• 16 May 2012: [SECURITY] [DSA 2472-1] gridengine security update - Bugtraq
  
• 16 May 2012: Apple Quicktime Memory Corruption (CVE-2012-0671) - Bugtraq
  
• 16 May 2012: APPLE-SA-2012-05-15-1 QuickTime 7.7.2 - Bugtraq
  
• 15 May 2012: Liferay 6.1 json webservices are subject to cross-site request forgery attacks - Bugtraq
  
• 15 May 2012: [ MDVSA-2012:075 ] ffmpeg - Bugtraq
  
• 15 May 2012: Liferay 6.1 can be compromised without having an account on the portal - Bugtraq
  
• 15 May 2012: Guests can view names and emailadresses of all Liferay users in liferay 6.1 - Bugtraq
  
• 15 May 2012: Multiple xss issues in Liferay - Bugtraq
  

CA Security Advisor Newly Discovered Viruses:

• Trojan.Gen (Symantec) -
• Win32/FakeSysdef (Microsoft) -
• Win32/FakeAV.VKM -
• UDS:DangerousObject.Multi.Generic (Kaspersky) -
• Win32/Zbot.FPW -
• WS.Reputation.1 (Symantec) -
• Win32/Alureon.EQ (Microsoft) -
• UDS:DangerousObject.Multi.Generic (Kaspersky) -
• Win32/Alureon.DIF -
• Win32/Alureon.EQ (Microsoft) -
• Win32/Alureon.DIG -
• Win32/Zbot.FPX -
• Trojan.Gen.2 (Symantec) -
• Win32/Alureon.FE (Microsoft) -
• Win32/Alureon.DIH -

NVD:

• CVE-2012-0668 (quicktime) - Buffer overflow in Apple QuickTime before 7.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with RLE encoding.
• CVE-2012-0669 (quicktime) - Buffer overflow in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with Sorenson encoding.
• CVE-2012-0667 (quicktime) - Integer signedness error in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted QTVR movie file.
• CVE-2012-0265 (quicktime) - Stack-based buffer overflow in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted pathname for a file.
• CVE-2012-0670 (quicktime) - Integer overflow in Apple QuickTime before 7.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted sean atom in a movie file.
• CVE-2012-0666 (quicktime) - Stack-based buffer overflow in the plugin in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted QTMovie object.
• CVE-2012-0663 (quicktime) - Multiple stack-based buffer overflows in Apple QuickTime before 7.7.2 on Windows allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TeXML file.
• CVE-2012-0664 (quicktime) - Heap-based buffer overflow in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted text track in a movie file.
• CVE-2012-0671 (quicktime) - Apple QuickTime before 7.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted .pict file.
• CVE-2012-0665 (quicktime) - Heap-based buffer overflow in Apple QuickTime before 7.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.264 encoding.
• CVE-2011-3090 (chrome) - Race condition in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to worker processes.
• CVE-2011-3096 (chrome) - Use-after-free vulnerability in Google Chrome before 19.0.1084.46 on Linux allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging an error in the GTK implementation of the omnibox.
• CVE-2011-3094 (chrome) - Google Chrome before 19.0.1084.46 does not properly handle Tibetan text, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
• CVE-2011-3100 (chrome) - Google Chrome before 19.0.1084.46 does not properly draw dash paths, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
• CVE-2011-3097 (chrome) - The PDF functionality in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging an out-of-bounds write error in the implementation of sampled functions.

Searches leading to this post:
Powered by Tradingeye 2009 Tradingeye v6 demo, 360-FAAR, 360-FAAR Firewall Analysis Audit And Repair 0 2 3, shodan cisco small business ip phones