Next Page >>
Software Update
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c01439758
Version: 1
HPSBGN02333 SSRT080031 rev.1 - HP Software Update HPeDiag Running on Windows, Remote Disclosure of Information and Execution of Arbitrary Code
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2008-04-24
Last Updated: 2008-04-24
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c01311918
Version: 1
HPSBGN2301 SSRT071508 rev.1 - HP Software Update Running on Windows, Remote Execution of Arbitrary Code, Gain Privileged Access
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2007-12-21
Last Updated: 2007-12-21
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c01311918
Version: 2
HPSBGN02301 SSRT071508 rev.2 - HP Software Update Running on Windows, Remote Execution of Arbitrary Code, Gain Privileged Access
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2007-12-21
Last Updated: 2008-01-02
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c01439758
Version: 2
HPSBGN02333 SSRT080031 rev.2 - HP Software Update HPeDiag Running on Windows, Remote Disclosure of Information and Execution of Arbitrary Code
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2008-04-24
Last Updated: 2010-10-25
def initialize(info = {})
super(update_info(info,
'Name' => 'Apple OS X Software Update Command Execution',
'Description' => %q{
This module exploits a feature in the Distribution Packages,
which are used in the Apple Software Update mechanism. This feature
allows for arbitrary command execution through JavaScript. This exploit
provides the malicious update server. Requests must be redirected to
this server by other means for this exploit to work.
},
'Author' => [ 'Moritz Jodeit <moritz@jodeit.org>' ],
Advisory:
/////////
There is another remotely exploitable flaw within software preinstalled in HP notebook machines. This time, the culprit is automatic software update tool provided by the vendor.The Potential exploitation may lead to user files loss or altering vital system files (e.g. kernel), thus leaving PC unbootable.
Overview:
/////////
The following information was provided by the vendor:
Availability
Apple security updates are available via the Software Update mechanism:
http://support.apple.com/kb/HT1338
Apple security updates are also available for manual download via:
http://www.apple.com/support/downloads/
The following information was provided by the vendor:
Availability
Apple security updates are available via the Software Update mechanism:
http://support.apple.com/kb/HT1338
Apple security updates are also available for manual download via:
http://www.apple.com/support/downloads/
Software Purge Option : HP provides a script that is run by the switch manager using the show tech custom command. This script will delete the fi(s) and directory without exposing a personal computer to the files on the compact flash. The operation of the switch is not impacted. This option is best for customers wanting to maximize the uptime of their network.
Hardware Replacement Option : For those customers who have 5400 zl switch inventory that is not on their network and must be purged, this option allows for the Management Module to be replaced. Also, any customer that feels uncomfortable performing the Software Purge Option can choose the Hardware Replacement Option as well. An advanced replacement Management Module will be sent to the customer. Once it arrives, the original Management Module is returned to HP after the new one is installed. The downside to this option is that the 5400 zl switch must be powered down in order to replace the Management Module, resulting in downtime.
Software Update Option (recommended) : The following Early Availability software update K.15.08.00007 is available which will automatically delete the malware trojan contents on the compact flash card if present. The software update also contains many other features and functionality enhancements for the switch. Note that updating the switch software should always be done with care and with an analysis of any potential impacts. Please refer to the release notes provided with the software update location below.
For Options 1 or 2, please contact HP support:
For customers with an HP Passport account, a web case can be submitted here: https://h10145.www1.hp.com/help/help_questions.aspx?l2id=48&SelectedTab=3
VII. SOLUTION
-------------------------
Upgrade to Safari 4.0.3
Apple security updates are available via the Software Update mechanism:
http://support.apple.com/kb/HT1338
Apple security updates are also available for manual download via:
http://www.apple.com/support/downloads
Information on CVSS is documented
in HP Customer Notice: HPSN-2008-002
RESOLUTION
HP has provided the following software update, DreamScreen firmware v1.6.0.0 or subsequent. The update is available to a internet connected DreamScreen via the built-in automatic update method or by following the steps below:
1. Ensure the device is connected to the Internet
2. From the Home menu, select Setup
3. Highlight and select the Info tab
4. Highlight and select the Software Update button to start the update process
Two vulnerabilities exist in Cisco Unified Service Monitor and Cisco
Unified Operations Manager software that could allow an
unauthenticated, remote attacker to execute arbitrary code on
affected servers.
Cisco has released free software updates that address these
vulnerabilities.
There are no workarounds available to mitigate these vulnerabilities.
This advisory is posted at:
--------------
HTC has issued a fix that will typically be provided as an OTA update by
affected cell carriers. If the update has not automatically been installed, it
is possible to retrieve the update manually by navigating to Menu -> Settings
-> System Updates -> HTC Software Update -> Check Now.
The following software versions on Sprint are confirmed to resolve this issue:
HTC EVO 4G: 4.67.651.3
HTC EVO Design 4G: 2.12.651.5
Information on CVSS is documented
in HP Customer Notice: HPSN-2008-002
RESOLUTION
HP has made the following software updates available to resolve this vulnerability.
Note: Customers with support contracts can obtain the latest software via the Software Upgrade Manager (SUM). For more information on this process, visit the HP Software Releases & Media website at:
http://www.hp.com/softwarereleases/releases-media2/SUM/How_to_be_a_SUM_customer.htm
the 'covr' atom of an MP4/AAC file. This atom is normally used for the
storage of album cover art.
Fix Information:
----------------
This issue is fixed in iTunes 7.4, available via Software Update or
download at http://www.apple.com/itunes/download/.
Thanks to:
----------
The Apple product security team for a timely response to this issue.
http://support.apple.com/kb/HT1222
Patches can be downloaded from the following links.
Apple security updates are available via the Software Update mechanism:
http://support.apple.com/kb/HT1338
Apple security updates are also available for manual download via:
http://www.apple.com/support/downloads/
The information on this section was provided verbatim by the vendor.
6.1. *Availability*
Apple security updates are available via the Software Update mechanism:
http://support.apple.com/kb/HT1338
Apple security updates are also available for manual download via:
http://www.apple.com/support/downloads/
=======================
The memory corruption vulnerability occurs when handling HTML table elements. A remote attacker may craft a malicious webpage and lure an unsuspecting user. When the page is viewed and these elements are processed, arbitrary code execution may occur resulting in the victims machine being compromised.
Solutions:
==========
Apple security updates are available via their Software Update mechanism.
Apple security updates are available for manual download here.
The FortiGuard Global Security Research Team released a signature "DHTML.Malicious.Table.Elements", which covers this specific vulnerability.
Fortinet customers who subscribe to Fortinet's intrusion prevention (IPS) service should be protected against this memory corruption vulnerability. Fortinet's IPS service is one component of FortiGuard Subscription Services, which also offer comprehensive solutions such as antivirus, Web content filtering and antispam capabilities. These services enable protection against threats on both application and network layers. FortiGuard Services are continuously updated by the FortiGuard Global Security Research Team, which enables Fortinet to deliver a combination of multi-layered security intelligence and true zero-day protection from new and emerging threats. These updates are delivered to all FortiGate, FortiMail and FortiClient products. Fortinet strictly follows responsible disclosure guidelines to ensure optimum protection during a threat's lifecycle.
View section "Vendor Information, Solutions and Workarounds".
*Vendor Information, Solutions and Workarounds*
Apple security updates are available via the Software Update mechanism:
http://docs.info.apple.com/article.html?artnum=106704
Apple security updates are also available for manual download via:
"Manila_Twitter_version"="20101005-00"
NOTE: Extract your own conclusions about the hotfix version number. Hint: It looks like a date.
-- Security solutions, workarounds, and countermeasures:
We think HTC should release a software update to change the vulnerable behavior in the HTC Peep mobile application, solving both credentials disclosure issues: the usage of HTTP Basic authentication versus pure OAuth capabilities, and the usage of HTTP versus HTTPS during the authentication process (and preferably, for the whole HTTP(S) session).
HTC has just confirmed (February 3, 2011 - 6pm CET) that an update is available, although it has not been released publicly. It will be delivered under request to any interested customer. If you are interested on the fix, you must contact HTC directly.
Due to the absence of a public software update at this time (5 months since the initial notification), we strongly recommend users not to use HTC Peep to connect to Twitter. Users must evaluate the usage of HTC Peep as their preferred mobile Twitter client, and use other Twitter clients available for their HTC mobile device instead. There are multiple third-party Twitter clients for Windows Mobile (available through a simple Google search: "windows mobile twitter app (or client)") such as: ceTwit, GPS Twit, Jitter, Locify with Twitter, Pocket Tweet, PocketTwit, Quakk, SQIJ, TinyTwitter, Twibble, Twikini, TwitToday, Twitter2Go, Twitter Answers, Twitter deBolsillo, Twitula, Twobile, Viigo, or direct access to the official Twitter Mobile homepage (https://moblie.twitter.com/login) from a mobile web browser.
Disclaimer: These mobile Twitter applications have not been analyzed against these, similar, or other security vulnerabilities.
RESOLUTION
The vulnerability can be resolved by updating affected versions of HP Storage Essentials to HP Storage Essentials v6.3.0 or subsequent.
Downloads are available from the HP Software Support Online portal at http://support.openview.hp.com/ please use the Software Update Manager.
PRODUCT SPECIFIC INFORMATION
None
HISTORY
An unauthenticated remote attacker can use this vulnerability to retrieve arbitrary files that are located outside the root of the web server.
Solution Description
--------------------
PacketVideo has addressed the issue. Contact the vendor for the software update.
Tested Systems / Software
-------------------------
Twonky 7.0 Special on Windows Vista
TwonkyManager 3.0 on Windows Vista
Solution:
/////////
- Wait for the apropriate software update from the vendor
- Do not launch web site links from the untrusted sources
- Install Non-Microsoft internet browser not allowing ActiveX (Firefox, Opera, Safari)
- Manualy set kill-bit for a vulnerable ActiveX control
- Launch the "harakiri" exploit listed on links section, which shuts the vulnerable control down
using the vulnerability itself
subsequently escalate privileges.
Solution Description
--------------------
Cisco has released a patch for this vulnerability. Information
regarding the software update which addresses this issue is available at:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111026-uccx
Tested Systems / Software
-------------------------
RESOLUTION
The vulnerability can be resolved by updating affected versions of HP Storage Essentials to HP Storage Essentials v6.3.0 or subsequent.
Downloads are available from the HP Software Support Online portal at http://support.openview.hp.com/ please use the Software Update Manager.
PRODUCT SPECIFIC INFORMATION
None
HISTORY
and use any aplication.
[History]
- Advisory sent to vendor on 08/30/2010.
- No reply
- Nokia sends correction by software update 09/13/2010
- Personal Version: 051.018.C00_850.01 not vulnerable
[Impact]
- Medium
Information on CVSS is documented
in HP Customer Notice: HPSN-2008-002
RESOLUTION
HP has made the following software update available to resolve this vulnerability.
HP ProCurve Switch 1800-24G (J9028A/B) Software Release PB.03.04
HP ProCurve Switch 1800-8G (J9029A) Software Release PA.03.04
The updates are available from the following location:
=======
Cisco Secure Desktop contains a vulnerable ActiveX control that could
allow an attacker to execute arbitrary code with the privileges of
the user who is currently logged into the affected system. Cisco has
released a free software update that addresses this vulnerability.
There is a workaround that mitigates this vulnerability.
This advisory is posted at:
http://www.cisco.com/warp/public/707/cisco-sa-20100414-csd.shtml
Information on CVSS is documented
in HP Customer Notice: HPSN-2008-002
RESOLUTION
HP has made the following software update available to resolve the vulnerabilities.
The update is available from http://www.hp.com/rnd/software/network_security.htm
Product
Version
Information on CVSS is documented
in HP Customer Notice: HPSN-2008-002
RESOLUTION
HP has made the following software update available to resolve this vulnerability.
Product Version: R.11.30 or later.
The updates are available from the following location:
Next Page>>
|
