Next Page >>
critical
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c00727143
Version: 9
HPSBMA02133 SSRT061201 rev.9 - HP Oracle for OpenView (OfO) Critical Patch Update
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2006-07-19
Last Updated: 2008-07-15
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c00727143
Version: 8
HPSBMA02133 SSRT061201 rev.8 - HP Oracle for OpenView (OfO) Critical Patch Update
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2006-07-19
Last Updated: 2008-04-16
Jeroen
-----Original Message-----
From: Andrew Barkley <barkley@usa.net>
To: Jeroen <nowhereman@moenen.org>
Subject: Re: Circumventing Critical Security in Windows XP
Date: Sat, 20 Feb 2010 04:20:46 -0000
Hi,
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c00727143
Version: 7
HPSBMA02133 SSRT061201 rev.7 - HP Oracle for OpenView (OfO) Critical Patch Update
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2006-07-19
Last Updated: 2008-01-16
SUPPORT COMMUNICATION - SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c00727143
Version: 6
HPSBMA02133 SSRT061201 rev.6 - HP Oracle for OpenView (OfO) Critical Patch Update
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2006-07-19
Last Updated: 2007-10-24
SEC Consult Security Advisory < 20101021-0 >
=======================================================================
title: Multiple critical vulnerabilities
product: Sawmill - Universal Log File Analysis
vulnerable version: Sawmill Enterprise < v8.1.7.3
fixed version: v8.1.7.3
impact: critical
homepage: http://www.sawmill.net
found: 2010-07-20
by: J. Greil / SEC Consult / www.sec-consult.com
Hi,
I've detailed below just how easy (too easy) it is to circumvent the security of the following critical security services. Thus can't now become can!
It goes without saying that malware on entering a system by whichever means, and on detecting critical security services, can now even more easily (automated/scripted) disarm critical security services, just by modifying unprotected registry entries, for whatever malevolent purposes.
I've created registry entries (I can send these to you should you be interested) to demonstrate just how easy it is to circumvent the security of these critical security services, which unfortunately is all too easily a very effective way of immobilising critical security functions i.e. firewall, antivirus etc. This in my opinion is certainly not a vulnerability nor a flaw so to speak, but rather a functional design oversight?
I've verified this against the following with success. After these registry modifications have been effected and the system rebooted, these critical services will be disarmed.
On 2010-02-17 barkley@usa.net wrote:
> I've detailed below just how easy (too easy) it is to circumvent the
> security of the following critical security services. Thus can't now
> become can!
>
> It goes without saying that malware on entering a system by whichever
> means, and on detecting critical security services, can now even more
> easily (automated/scripted) disarm critical security services, just by
> modifying unprotected registry entries, for whatever malevolent
> purposes.
From the post:
> Checkmarx Research Labs has identified a new critical vulnerability in
> Internet Explorer (other browsers are probably exposed the same way) that
> would allow hackers to easily compromise web applications.
I'm sorry if this response sounds harsh, but phrases such as "critical
vulnerability" and "compromise web applications" caught my eye.
The paper seems to focus on collecting information by navigating to
By exploiting this vulnerability, a remote unauthenticated attacker might be able to access or modify all the business information processed by the
ERP system.
This would result in the total compromise of the ERP infrastructure.
- -- Risk Level: Critical
2. Advisory Information
=======================
1. Impact on Business
=====================
By exploiting this vulnerability, an unauthenticated attacker would be able to remotely block certain functions of the JD Edwards server.
This would result in the unavailability of certain services running in the JD Edwards server. These services are not critical for the common operation
of the system.
- - Risk Level: Low
5. Vulnerability Details
========================
Due to the significant risk of this vulnerability to critical business solutions, Onapsis is not distributing technical details about it to the
general public at this moment in order to provide enough time to affected customers to patch their systems and protect against the exploitation of the
described vulnerability.
6. Solution
ISOTF Critical Internet Infrastructure WG is now open to public
participation.
The group holds top experts on internet technology, critical
infrastructure, and internet governance, from around the globe.
Together, we discuss definitions, problems, challenges and solutions in
securing and assuring the reliability of the global internet
infrastructure, which is critical infrastructure for a growing number of
nations, corporations and indeed, individuals -- world wide.
ECHO_ADV_105$2009
-----------------------------------------------------------------------------------------
[ECHO_ADV_105$2009] chaozzDB <= 1.2 Critical File Disclosure Vulnerability
-----------------------------------------------------------------------------------------
Author : K-159
Date : March, 16 th 2009
Location : Jakarta, Indonesia
Web : http://e-rdc.org/v1/news.php?readmore=129
ECHO_ADV_106$2009
-----------------------------------------------------------------------------------------
[ECHO_ADV_106$2009] FireAnt <= 1.3 Critical File Disclosure Vulnerability
-----------------------------------------------------------------------------------------
Author : K-159
Date : March, 16 th 2009
Location : Jakarta, Indonesia
Web : http://e-rdc.org/v1/news.php?readmore=130
update services pointed at their own servers and is a very widely-deployed
application.
Any vendor or provider hosting the FLEXNet update services should also be
concerned of this issue. As a result of this flaw, the security of their
servers is critical as it could impact the of all client systems, and thus
represents a liability to any customers dependant on their services.
Due to the broad reach of these products, there are many software vendors that
must be informed of this issue and provide some form of remediation to protect
their installed customer base from these issues. Unfortunately it was
ECHO_ADV_107$2009
-----------------------------------------------------------------------------------------
[ECHO_ADV_107$2009] FubarForum <= 1.6 Critical File Disclosure Vulnerability
-----------------------------------------------------------------------------------------
Author : K-159
Date : March, 16 th 2009
Location : Jakarta, Indonesia
Web : http://e-rdc.org/v1/news.php?readmore=131
6. Solution
===========
Apply Oracle Critical Patch Update October – 2010. More information available on http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html
Onapsis strongly recommends Oracle customers to download the related security fixes and apply them to the affected components in order to reduce
business risks.
6. Solution
===========
Apply Oracle Critical Patch Update October – 2010. More information available on http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html
Onapsis strongly recommends Oracle customers to download the related security fixes and apply them to the affected components in order to reduce
business risks.
6. Solution
===========
Apply Oracle Critical Patch Update October – 2010. More information available on http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html
Onapsis strongly recommends Oracle customers to download the related security fixes and apply them to the affected components in order to reduce
business risks.
33446
Struts2 and XWork remote command execution Vulnerability
CVE-2010-1870
alert
critical
33605
Microsoft Office Memory Corruption Vulnerability
CVE-2008-0118
MS08-016
alert
6. Solution
===========
Apply Oracle Critical Patch update April ? 2010. More information available on http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html
Onapsis strongly recommends Oracle customers to download the related security fixes and apply them to the affected components in order to reduce
business risks.
6. Solution
===========
Apply Oracle Critical Patch update April ? 2010. More information available on http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html
Onapsis strongly recommends Oracle customers to download the related security fixes and apply them to the affected components in order to reduce
business risks.
7. Report Timeline
described vulnerability.
6. Solution
===========
Apply Oracle Critical Patch update April ? 2010. More information available on http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html
Onapsis strongly recommends Oracle customers to download the related security fixes and apply them to the affected components in order to reduce
business risks.
7. Report Timeline
6. Solution
===========
Apply Oracle Critical Patch update April ? 2010. More information available on http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html
Onapsis strongly recommends Oracle customers to download the related security fixes and apply them to the affected components in order to reduce
business risks.
7. Report Timeline
6. Solution
===========
Apply Oracle Critical Patch update April ? 2010. More information available on http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html
Onapsis strongly recommends Oracle customers to download the related security fixes and apply them to the affected components in order to reduce
business risks.
7. Report Timeline
6. Solution
===========
Apply Oracle Critical Patch update April ? 2010. More information available on http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html
Onapsis strongly recommends Oracle customers to download the related security fixes and apply them to the affected components in order to reduce
business risks.
7. Report Timeline
SEC Consult Vulnerability Lab Security Advisory < 20120104-0 >
=======================================================================
title: Multiple critical vulnerabilities in Apache Struts2
product: Apache Struts2
* OpenSymphony XWork
* OpenSymphony OGNL
vulnerable version: 2.3.1 and below
fixed version: 2.3.1.1
impact: critical
homepage: http://struts.apache.org/
Regards
DokFLeed
====================================================
Advisory No.: ISNSC-0910
=============
ChartDirector Critical File Access
Information
======
Author: DokFLeed
Program Affected: http://www.chartdir.com for .NET
The Zero Day Initiative advisory ZDI-08-088 has several inaccuracies.
Oracle actually fixed this vulnerability as part of the April 2007 Critical
Patch Update and subsequently in ATG_PF.H RUP5 and later. The vulnerability
is a serious SQL injection bug in a Self-Service Web Application database
package that is called and accessible through mod_plsql. Mod_plsql is an
Apache module and part of an Oracle web framework which allows database
packages to dynamically generate web pages. The vulnerable
schema.package.procedure name is APPS.ICXSUPWF.DISPLAYCONTACTS and all
versions 115.6 and prior are vulnerable. When creating intrusion
detection/prevention rules for this vulnerability, the URL will normally
Next Page>>
|
