beta version
2009-02-13: vulnerability report and patch received
2009-02-16: contacted littlecms maintainer
2009-02-16: oCERT investigated for other potential affected projects
2009-02-20: maintainer provides updated patch
2009-02-20: reporter provides new patch fixing memory leak
2009-02-21: maintainer provides fixed beta version
2009-02-23: reporter confirms fixes
2009-02-24: contacted affected vendors providing combined security patch
and beta version, recommending the latter
2009-03-02: patch found to break functionality, contacted affected vendors
advising to use only beta version
Risk: service disruption
Remote: Yes
Discovered by: Joo Antunes (AJECT -- Attack Injection Tool) on 05/Jun/
2008
Exploit: Not Available
Solution: upgrade to beta version 4.4.2 (Build 279)
Status: Developers were contacted and released a beta version
correcting the resource exhaustion vulnerability.
----------------------------------------
2009-12-09 Preliminary notice to TANDBERG. TANDBERG responded immediately.
2009-12-22 VSR provided TANDBERG a draft advisory.
2009-12-28 TANDBERG provided VSR with a beta version of the x5.0 firmware,
but this did not appear to correct the issue (based on PHP code
analysis alone).
2010-01-22 TANDBERG provided VSR with a beta version of the x5.1 firmware
for testing which appeared to correct the vulnerability.
probabilistic algorithm to identify the version of the Microsoft SQL Server.
The "Microsoft SQL Server Fingerprint Tool" can also be used to identify
vulnerable versions of Microsoft SQL Server.
.:[ Software Release Life Cycle:
The initial public release will be the Version 1.00.0006, and will follow the
stages:
1. January 4th, 2010: Community Technology Preview (CTP)
2009-12-09 Preliminary notice to TANDBERG. TANDBERG responded immediately.
2009-12-22 VSR provided TANDBERG a draft advisory.
2009-12-28 TANDBERG provided VSR with a beta version of the x5.0 firmware,
but this did not appear to correct the issue.
2010-01-22 TANDBERG provided VSR with a beta version of the x5.1 firmware,
but this did not appear to correct the issue for existing
installations, since old vulnerable keys would be preserved.
. 2010-01-13:
Core replies, reassuring that the release date can be moved if Cisco
can't meet it.
. 2010-01-13:
Cisco updates, pointing to a beta version of Cisco Secure Desktop that
contains a fix for the vulnerability.
. 2010-01-13:
Cisco describes the fix and the non-vulnerable versions of the package.
Luigi Auriemma
Application: RPM Remote Print Manager
http://lpd.brooksnet.com
Versions: <= 4.5.1.11 (tested both the Elite and Select versions)
the beta version 5.0.38.0 does NOT seem vulnerable
Platforms: Windows
Bug: unicode buffer-overflow
Exploitation: remote
Date: 11 Feb 2008
Author: Luigi Auriemma
- ------------------------------------------------------------------------
VMware Security Advisory
Advisory ID: VMSA-2009-0011
Synopsis: VMware Studio 2.0 addresses a security issue in the
public beta version of Studio 2.0
Issue date: 2009-08-31
Updated on: 2009-08-31 (initial release of advisory)
CVE numbers: CVE-2009-2968
- ------------------------------------------------------------------------
* Norman Security Suite PRO 8.0
* Norton Internet Security 2010 17.5.0.127
* Online Armor Premium 4.0.0.35
* Online Solutions Security Suite 1.5.14905.0
* Outpost Security Suite Pro 6.7.3.3063.452.0726
* Outpost Security Suite Pro 7.0.3330.505.1221 BETA VERSION
* Panda Internet Security 2010 15.01.00
* PC Tools Firewall Plus 6.0.0.88
* PrivateFirewall 7.0.20.37
* Security Shield 2010 13.0.16.313
* Sophos Endpoint Security and Control 9.0.5
is important to take some countermeasures as soon as possible.
VI. SYSTEMS AFFECTED
-------------------------
Most likely all of the wordpress releases contain this bug. Including the current hardened stable
release 2.8.5 and the beta version.
VII. SOLUTION
-------------------------
Vendor has been informed about the bug. Currently wordpress developers and contributors are in
the process of bug hunting and fixing reported bugs in beta versions before the new stable release,
--- END ADVISORY ---
--
Collin R. Mulliner <collin@betaversion.net>
BETAVERSiON Systems [www.betaversion.net]
info/pgp: finger collin@betaversion.net
Don't ask me! I don't use windoze!
from base64 import *
print b64decode("MTIzNDU2Nzg5MDEyMzQ1Njc4OTA=")
Reported by:
Collin Mulliner <collin(AT)betaversion.net >
Collin's Advisories: http://www.mulliner.org/security/advisories/
Collin
--
Collin R. Mulliner <collin@betaversion.net>
BETAVERSiON Systems [www.betaversion.net]
info/pgp: finger collin@betaversion.net
weblog: http://www.mulliner.org/blog/
Tabs are for indentation space is for astronauts.
Producer files from untrusted sources.
. Remove the Movie Maker .MSWMM file association and/or remove the
Microsoft Producer 2003 .MSProducer, .MSProducerZ, and .MSProducerBF
file associations.
. Replace Microsoft Producer with a new version when it comes out or
with the current Beta version.
Refer to the Microsoft Security Bulletin MS10-016 [2] for more
information.
|
