Feb 26, 2008
I. BACKGROUND
Symantec Scan Engine is a standalone Anti-Virus Engine that exposes a
scanning Application Programming Interface (API) directly to developers
who wish to integrate protection into their own custom applications.
More information is available on the vendor's site at the following
URL.
http://www.symantec.com/enterprise/products/overview.jsp?pcid=1008&pvid=836_1
traffic (including passwords) to effectively eliminate eavesdropping,
connection hijacking, and other attacks. Additionally, OpenSSH
provides secure tunneling capabilities and several authentication
methods, and supports all SSH protocol versions.
The Generic Security Services Application Program Interface (GSSAPI,
also GSS-API) is an application programming interface for programs
to access security services.
The GSSAPI, by itself, does not provide any security. Instead,
security service vendors provide GSSAPI implementations usually
in the form of libraries installed with their security software.
ESX 2.5.5 ESX not affected
ESX 2.5.4 ESX not affected
NOTE: VMware hosted products are not affected by this issue.
d. VMware VIX Application Programming Interface (API) Memory Overflow
Vulnerabilities
The VIX API (also known as "Vix") is an API that lets users write scripts
and programs to manipulate virtual machines.
Feb 26, 2008
I. BACKGROUND
Symantec Scan Engine is a standalone Anti-Virus Engine that exposes a
scanning Application Programming Interface (API) directly to developers
who wish to integrate protection into their own custom applications.
More information is available on the vendor's site at the following
URL.
http://www.symantec.com/enterprise/products/overview.jsp?pcid=1008&pvid=836_1
+-------------------------------------------------
Cisco Unified Communications Manager software versions 5.x, 6.x, and
7.x store user information as a part of the internal Cisco Unified
Communications Manager configuration database. The IP Phone PAB
Synchronizer client uses the AXL application programming interface
(API) to perform address book synchronization. After a client
successfully authenticates, the Cisco Unified Communications Manager
returns credentials for a database user account named TabSyncSysUser
that will be used by the client to synchronize an user's address
book. The TabSyncSysUser account has full read and write privileges
vulnerability exists in command-line interface of the the tech support
diagnostic shell that may allow an authenticated user to obtain complete
administrative access to vulnerable Cisco AXP module. The tech support shell is
accessed using the "techsupport support shell" command.
Authenticated Cisco AXP users can use an application programming interface
(API) to execute commands on the Cisco ISR that is hosting the AXP module. It
may be possible for an AXP user to obtain sensitive configuration information
that allows the user to gain access to the ISR device. Cisco AXP version 1.5
requires that a user be configured in the ISR configuration before the AXP user
can execute commands using the API.
contain ToolTalk objects.
File and ToolTalk object information is stored in a records database managed
by rpc.ttdbserverd.
* libtt is the ToolTalk application programming interface (API) library.
Applications include the API library in their program and call the ToolTalk
functions in the library.
The ToolTalk service uses the Remote Procedure Call (RPC) to communicate between
ESX any ESX not affected
b. VMware ISAPI Extension Denial of Service
The Internet Server Application Programming Interface (ISAPI) is
an API that extends the functionality of Internet Information
Server (IIS). VMware uses ISAPI extensions in its Server product.
One of the ISAPI extensions provided by VMware is vulnerable to a
remote denial of service. By sending a malformed request, IIS
Debian Bug : 582261
Shawn Emery discovered that in MIT Kerberos 5 (krb5), a system for
authenticating users and services on a network, a null pointer
dereference flaw in the Generic Security Service Application Program
Interface (GSS-API) library could allow an authenticated remote attacker
to crash any server application using the GSS-API authentication
mechanism, by sending a specially-crafted GSS-API token with a missing
checksum field.
For the stable distribution (lenny), this problem has been fixed in
Debian Bug : 582261
Shawn Emery discovered that in MIT Kerberos 5 (krb5), a system for
authenticating users and services on a network, a null pointer
dereference flaw in the Generic Security Service Application Program
Interface (GSS-API) library could allow an authenticated remote attacker
to crash any server application using the GSS-API authentication
mechanism, by sending a specially-crafted GSS-API token with a missing
checksum field.
For the stable distribution (lenny), this problem has been fixed in
