Next Page >>
updated version
VIX API 1.x Linux patch pending
Workstation 7.x Windows not affected
Workstation 7.x Linux 7.1.4 build 385536 or later
Workstation 6.5.x Windows not affected
Workstation 6.5.x Linux updated version of vmrun *
Player any any not affected
AMS any any not affected
There is no known workaround at this time.
Resolution
==========
All wxGTK 2.6 users should upgrade to an updated version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=x11-libs/wxGTK-2.6.4.0-r5"
All wxGTK 2.8 users should upgrade to an updated version:
[2] that is no longer available.
. 2010-07-07:
Vendor acknowledges previous mail, and states that it will determine
with the product team how this fix could be included in the August
release. Vendor requests an updated version of the advisory, and to
include a vendor statement.
. 2010-07-22:
Core requests an update on the status of the vulnerability report; and
informs that publication of its advisory has been rescheduled to August
Cisco contacts Core stating that they have just discovered the WebEx
Meeting Center Vulnerability affects a new set of customers that where
not accounted for originally. These are customers running T27SP21 that
can not be upgraded to SP22. An emergency patch will be released for
SP21 in January 2011, and this sets back the date when all clients
should be running an updated version to the "end of January, beginning
of February."
. 2010-12-14:
Core proposes to split this advisory into two different advisories to
better accommodate the WebEx Meeting Center SaaS release cycle. On one
. 2010-06-01:
Core confirms time and date for the conference call.
. 2010-06-03:
Vendor requests from Core an updated version of the advisory draft.
. 2010-06-04:
Core sends the updated advisory.
. 2010-06-08:
Various CPU Registers are overwritten, which could potentially result in remote code execution.
===============
Fix Information
===============
Immunity Inc has released an updated version of the debugger, which can be downloaded from the following URL:
http://debugger.immunityinc.com/
NGS Secure Research
Fix Information
***************
Alcatel was altered to fix this flaw on 01.04.2008. Updated version can be downloaded here:
http://www1.alcatel-lucent.com/enterprise/en/products/ip_telephony/omnipcxenterprise/index.html
exploited in the wild.
. 2008-07-08: Vendor informs that they have binaries available to
pre-test the potential fixes.
. 2008-07-08: Core asks for the patches to pre-test and informs the
vendor that publication date of the advisory will be revisited.
. 2008-07-23: Core sends the vendor an updated version of the advisory
and PoC files.
. 2008-08-26: Core requests the vendor a more precise date for the
release of fixes in October.
. 2008-08-29: Vendor informs that they are tentatively targeting October
14th, and that patches will be sent to Core for inspection the following
The Ruby Security Team was very helpful in addressing this issue and
both CRuby and JRuby provide updates for this issue with a randomized
hash function (CRuby 1.8.7-p357, JRuby 1.6.5.1, CVE-2011-4815).
Oracle has decided there is nothing that needs to be fixed within Java
itself, but will release an updated version of Glassfish in a future CPU
(Oracle Security ticket S0104869).
Tomcat has released updates (7.0.23, 6.0.35) for this issue which limit
the number of request parameters using a configuration parameter. The
default value of 10.000 should provide sufficient protection.
Vendor fix this flaw in cvs on 10.10.2007.
http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/bgplg/bgplg.c
Updated version OpenBSD 4.2 which was released Nov 1, 2007 is NOT
vulnerable.
CS-Cart Cart is a full featured online ecommerce application written
in php that allows users to build, run and promote an online store.
There is unfortunately a fairly serious SQL Injection issue within
CS-Cart that can be used to easily take over user and administrator
accounts, as well as used to retrieve arbitrary data from the database.
The CS-Cart team have released an updated version of CS-Cart to resolve
this issue, and users should upgrade as soon as possible.
SQL Injection:
There is a fairly serious SQL Injection issue in CS-Cart that, as
======================================================================
6) Time Table
03/11/2008 - Vendor notified.
05/11/2008 - Vendor response with updated version.
06/11/2008 - Vendor informed that all but one vulnerabilities are
correctly fixed.
07/11/2008 - Vendor provides new version for testing.
07/11/2008 - Vendor informed that all vulnerabilities are now fixed.
31/03/2009 - Secunia notices that the latest version is not affected.
Application: Checkpoint VPN-1 Edge W Embedded NGX 7.0.48x
(patched in version 7.5.48)
Devices: Checkpoint VPN-1 UTM Edge
Attack type: Cross site scripting (non-persistent)
Risk: Low
Vendor Status: Vendor has released an updated version
References: http://www.louhi.fi/advisory/checkpoint_080306.txt
Overview:
Version:2 (rev.2) - 19 July 2008 Added BIND v9.2.0 depot information
Version:3 (rev.3) - 06 August 2008 Updated patch location, revised BIND v9.2.0 depot information,
added BIND v8.1.2
Version:4 (rev.4) - 08 August 2008 Updated manual actions to include named.conf and firewall configuration setings
Version:5 (rev.5) - 12 October 2010 Updated version for BIND v9.2.0 depot for B.11.11
Version:6 (rev.6) - 15 December 2010 Reformat v9.2.0 recommendation for clarity.
Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.
Support: For further information, contact normal HP Services support channel.
Fix Information
***************
Textpattern was altered to fix this flaw on 03.02.2008. Updated version (4.0.6) can be downloaded here:
http://textpattern.com/download
About
======================================================================
6) Time Table
03/11/2008 - Vendor notified.
05/11/2008 - Vendor response with updated version for testing.
06/11/2008 - Vendor informed that both vulnerabilities are fixed.
31/03/2009 - Secunia notices that the latest version is not affected.
Vendor contacted to receive confirmation that the
reported vulnerabilities are fixed in released version.
31/03/2009 - The vendor confirms having fixed the vulnerabilities.
CubeCart 4 Session Management Bypass
Release Date: 2009/10/29
Author: Bogdan Calin (bogdan [at] acunetix [dot] com)
Severity: Critical
Vendor Status: Vendor has released an updated version
I. Background
From Wikipedia: CubeCart is a free-to-use eCommerce software solution,
designed to allow individuals and businesses sell tangible and digital
Fix Information
***************
Vendor was altered to fix this flaw in svn on 10.10.2007. Updated version OpenBSD 4.2 which was released Nov 1, 2007. can be downloaded here:
http://openbsd.org
Please be advised that a security issue affecting the Apache XML Security
Library for C++ has been identified and an updated version released to
address the issue. The full text of the advisory is below, and a signed
version can be found at:
http://santuario.apache.org/secadv/CVE-2011-2516.txt
-- Scott Cantor
CVE-2011-2516: Apache Santuario XML Security for C++ contains buffer
A buffer overflow vulnerability has been found in the Torque server.
This was
reported to the EGI SVG (RT 1870) as well as to the Torque software
providers.
This has been fixed by the Torque Providers, and an updated version is
also
available in EPEL.
Torque server does not check the length of "job name" argument before
using it - this string is verified only on the client side. It is
will install corrected packages
The prebuilt modules update coincides with an ABI change in the 2.4.27
kernel in oldstable (see DSA 1503). If you are using the prebuilt modules
provided by one of the alsa-modules-i386 packages, you will need to update
your kernel to the new ABI before you can use the updated version of that
package. For more information about Debian kernel ABI changes, see:
http://wiki.debian.org/DebianKernelABIChanges
Any modules manually built from the alsa-source package will need to be
rebuilt against the updated alsa-source package to inherit this fix.
Solution:
The JamRoom developers were very prompt in addressing this issue, and
have released an updated version for download. All users are encouraged
to upgrade their JamRoom installation as soon as possible.
Credits:
a. reboot into single user mode
b. backup any data in /tmp to another location.
c. unmount /tmp
d. dd if=/dev/urandom of=<tmp partition device file>
(run the above several times depending on your level of paranoia.)
e. Remake your /tmp filesystem and remount.
B. (/tmp part of /) If you have a /tmp partition as part of your / partition.
a. Backup all your data on the hard drive. Do not image the
hard drive as this will preserve the data written to /tmp
that we're trying to remove.
Test it with 2.14.6... you are a little behind the must updated version...
the vulnerability, it does prevent the control from being loaded in
Internet Explorer.
VI. VENDOR RESPONSE
"An updated version of AOL Radio with enhanced security features is now
available. AOL recommends that you download and install the update to
get the best and most secure performance from AOL Radio. If you use AIM
or other AOL software, you will automatically receive a prompt to update
AOL Radio and you do not need to download and install this update now.
Otherwise, please download the update from the URL below and
> written in php that allows users to build, run and promote their
> own online store. Unfortunately there are multiple SQL Injection
> issues in Zen Cart that may allow an attacker to execute arbitrary
> SQL queries on the underlying database. This may allow for an attacker
> to gather username and password information, among other things. An
> updated version of Zen Cart has been released to address these
> issues and users are encouraged to upgrade as soon as possible.
>
>
> SQL Injection:
> There are a couple of SQL Injection issues within Zen Cart that may
CVE Identifier: CVE-2011-4143
This release addresses an environmental variable disclosure vulnerability. The vulnerability could allow an unauthenticated user to gain information about the web system setup.
Further information about this resolution and other fixes can be found in the Release Notes associated with RSA enVision 4.1 Patch 3 and enVision V4.0 Service Pack 4 Patch 5. The V4.0 SP4 P5 release notes have been updated; please download the updated version on SCOL.
Recommendation:
Vanilla is an open-source, standards-compliant, multi-lingual,
fully extensible web based discussion forum. Unfortunately there
are a couple of issues within Vanilla that allow for a malicious
user to steal client based credentials such as cookies. These
issues include both script injection and cross site scripting.
An updated version of Vanilla has been released and users should
upgrade their Vanilla installation as soon as possible.
Cross Site Scripting:
Solution:
The Pligg developers are aware of the issues mentioned in this advisory
and an updated version of Pligg should be available from their website.
All users are encouraged to upgrade their Pligg installations as soon
as possible.
Fix Information
***************
Blogcms was altered to fix this flaw on 16.01.2008. Updated version (4.2.1.c) can be downloaded here:
http://blogcms.com/?item=download
Changelog: http://blogcms.com/wiki/changelog
Next Page>>
|
