cpe:/a:samba:samba:3.2.6 cpe:/a:samba:samba:3.2.5 cpe:/a:samba:samba:3.2.1 cpe:/a:samba:samba:3.2.2 cpe:/a:samba:samba:3.2.3 cpe:/a:samba:samba:3.2.4 cpe:/a:samba:samba:3.2.0 CVE-2009-0022 2009-01-05T15:30:02.390-05:00 2009-03-13T01:46:01.563-04:00 6.3 NETWORK MEDIUM SINGLE_INSTANCE COMPLETE NONE NONE http://nvd.nist.gov 2009-01-06T10:37:00.000-05:00 FEDORA FEDORA-2009-0268 XF samba-file-system-security-bypass(47733) UBUNTU USN-702-1 SECTRACK 1021513 BID 33118 CONFIRM http://www.samba.org/samba/security/CVE-2009-0022.html MANDRIVA MDVSA-2009:042 VUPEN ADV-2009-0017 SECUNIA 33431 SECUNIA 33392 SECUNIA 33379 OSVDB 51152 MISC http://master.samba.org/samba/ftp/patches/security/samba-3.2.6-CVE-2009-0022.patch Samba 3.2.0 through 3.2.6, when registry shares are enabled, allows remote authenticated users to access the root filesystem via a crafted connection request that specifies a blank share name. cpe:/a:ntp:ntp:4.2.0 cpe:/a:ntp:ntp:4.2.4p1 cpe:/a:ntp:ntp:4.2.2 cpe:/a:ntp:ntp:4.2.4p2 cpe:/a:ntp:ntp:4.2.4p3 cpe:/a:ntp:ntp:4.2.4p4 CVE-2009-0021 2009-01-07T12:30:00.360-05:00 2009-08-26T00:00:00.000-04:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-07T14:42:00.000-05:00 CERT TA09-133A VUPEN ADV-2009-0042 MLIST [announce] 20090108 NTP 4.2.4p6 Released VUPEN ADV-2009-1297 SECTRACK 1021533 REDHAT RHSA-2009:0046 MISC http://www.ocert.org/advisories/ocert-2008-016.html CONFIRM http://support.apple.com/kb/HT3549 SLACKWARE SSA:2009-014-03 SECUNIA 35074 SECUNIA 34642 SECUNIA 33648 SECUNIA 33558 SECUNIA 33406 SUSE SUSE-SR:2009:008 SUSE SUSE-SR:2009:005 APPLE APPLE-SA-2009-05-12 NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077. cpe:/a:isc:bind:9.2.1 cpe:/a:isc:bind:9.2.2 cpe:/a:isc:bind:9.2.3 cpe:/a:isc:bind:9.2.4 cpe:/a:isc:bind:9.2.5 cpe:/a:isc:bind:9.2.6 cpe:/a:isc:bind:9.3.5-p2-w1:windows cpe:/a:isc:bind:9.2.7 cpe:/a:isc:bind:9.2.9 cpe:/a:isc:bind:9.3.0 cpe:/a:isc:bind:9.3.1 cpe:/a:isc:bind:9.3.2 cpe:/a:isc:bind:9.3.3 cpe:/a:isc:bind:9.4.0 cpe:/a:isc:bind:9.4.2 cpe:/a:isc:bind:9.4.1 cpe:/a:isc:bind:9.4.3 cpe:/a:isc:bind:4.9.9 cpe:/a:isc:bind:4.9.8 cpe:/a:isc:bind:4.9.7 cpe:/a:isc:bind:4.9.6 cpe:/a:isc:bind:4.9.5 cpe:/a:isc:bind:4.9.4 cpe:/a:isc:bind:4.9.3 cpe:/a:isc:bind:8.2.3_t9b cpe:/a:isc:bind:4.9.2 cpe:/a:isc:bind:9.2.2:p3 cpe:/a:isc:bind:9.2.0 cpe:/a:isc:bind:8.2:p1 cpe:/a:isc:bind:9.4.0b4 cpe:/a:isc:bind:8.2.1 cpe:/a:isc:bind:9.4.0b3 cpe:/a:isc:bind:4.9.10 cpe:/a:isc:bind:9.4.0b2 cpe:/a:isc:bind:9.4.0b1 cpe:/a:isc:bind:8.3.0 cpe:/a:isc:bind:8.1.1 cpe:/a:isc:bind:8.1.2 cpe:/a:isc:bind:8.4.1 cpe:/a:isc:bind:9.0.1 cpe:/a:isc:bind:8.4.7 cpe:/a:isc:bind:8.4.4 cpe:/a:isc:bind:8.4.5 cpe:/a:isc:bind:9.1.1 cpe:/a:isc:bind:8.2.2:p1 cpe:/a:isc:bind:4.9 cpe:/a:isc:bind:8.2.2:p2 cpe:/a:isc:bind:4.9.5:p1 cpe:/a:isc:bind:8.2.2:p3 cpe:/a:isc:bind:8.2.2:p4 cpe:/a:isc:bind:8.2.2:p5 cpe:/a:isc:bind:8.2.2:p6 cpe:/a:isc:bind:8.2.2:p7 cpe:/a:isc:bind:9.4.0a5 cpe:/a:isc:bind:9.4.0a4 cpe:/a:isc:bind:9.4.0a6 cpe:/a:isc:bind:9.4.0a1 cpe:/a:isc:bind:9.1.2 cpe:/a:isc:bind:9.1.3 cpe:/a:isc:bind:9.4.0a3 cpe:/a:isc:bind:4 cpe:/a:isc:bind:9.4.0a2 cpe:/a:isc:bind cpe:/a:isc:bind:8.2 cpe:/a:isc:bind:8 cpe:/a:isc:bind:8.4 cpe:/a:isc:bind:8.1 cpe:/a:isc:bind:8.2.3_t1a cpe:/a:isc:bind:8.3.5 cpe:/a:isc:bind:8.3.6 cpe:/a:isc:bind:8.3.1 cpe:/a:isc:bind:8.3.2 cpe:/a:isc:bind:8.3.3 cpe:/a:isc:bind:8.3.4 cpe:/a:isc:bind:8.2.2 cpe:/a:isc:bind:9.4.0:rc1 cpe:/a:isc:bind:8.2.3 cpe:/a:isc:bind:8.2.4 cpe:/a:isc:bind:9.0 cpe:/a:isc:bind:8.2.5 cpe:/a:isc:bind:9.1 cpe:/a:isc:bind:8.2.6 cpe:/a:isc:bind:9.2 cpe:/a:isc:bind:8.2.7 cpe:/a:isc:bind:9.3 cpe:/a:isc:bind:9.4 CVE-2009-0025 2009-01-07T12:30:00.390-05:00 2009-05-16T01:28:42.717-04:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-07T14:58:00.000-05:00 CERT TA09-133A FEDORA FEDORA-2009-0350 CONFIRM https://www.isc.org/node/373 CONFIRM https://issues.rpath.com/browse/RPL-2938 VUPEN ADV-2009-1297 VUPEN ADV-2009-0904 CONFIRM http://www.vmware.com/security/advisories/VMSA-2009-0004.html BUGTRAQ 20090401 VMSA-2009-0004 ESX Service Console updates for openssl, bind, and vim BUGTRAQ 20090120 rPSA-2009-0009-1 bind bind-utils CONFIRM http://www.openbsd.org/errata44.html#008_bind MISC http://www.ocert.org/advisories/ocert-2008-016.html VUPEN ADV-2009-0366 VUPEN ADV-2009-0043 CONFIRM http://wiki.rpath.com/Advisories:rPSA-2009-0009 CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2009-045.htm CONFIRM http://support.apple.com/kb/HT3549 SUNALERT 250846 SLACKWARE SSA:2009-014-02 FREEBSD FreeBSD-SA-09:04 SECUNIA 35074 SECUNIA 33882 SECUNIA 33683 SECUNIA 33559 SECUNIA 33551 SECUNIA 33546 SECUNIA 33494 APPLE APPLE-SA-2009-05-12 MISC http://groups.google.com/group/comp.protocols.dns.bind/browse_thread/thread/49ef622c8329fd33 BIND 9.6.0, 9.5.1, 9.5.0, 9.4.3, and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077. cpe:/a:sun:grid_engine:5.3:beta1 cpe:/a:sun:grid_engine:5.3:beta2 cpe:/a:sun:grid_engine:5.3 CVE-2009-0046 2009-01-07T13:30:01.453-05:00 2009-01-28T00:00:00.000-05:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-07T15:07:00.000-05:00 MISC http://www.ocert.org/advisories/ocert-2008-016.html VUPEN ADV-2009-0045 Sun GridEngine 5.3 and earlier does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077. cpe:/a:gale:gale:0.99 cpe:/a:gale:gale:0.20a cpe:/a:gale:gale:0.19b cpe:/a:gale:gale:0.19a cpe:/a:gale:gale:0.18b cpe:/a:gale:gale:0.91b cpe:/a:gale:gale:0.90c cpe:/a:gale:gale:0.17a cpe:/a:gale:gale:0.90a cpe:/a:gale:gale:0.18c cpe:/a:gale:gale:0.90b cpe:/a:gale:gale:0.21 cpe:/a:gale:gale:0.16a cpe:/a:gale:gale:0.91a cpe:/a:gale:gale:0.91 cpe:/a:gale:gale:0.18 cpe:/a:gale:gale:0.17 cpe:/a:gale:gale:0.15c cpe:/a:gale:gale:0.15b cpe:/a:gale:gale:0.19 cpe:/a:gale:gale:0.16 cpe:/a:gale:gale:0.15 CVE-2009-0047 2009-01-07T13:30:13.280-05:00 2009-01-27T01:41:48.280-05:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-07T16:45:00.000-05:00 MISC http://www.ocert.org/advisories/ocert-2008-016.html VUPEN ADV-2009-0046 Gale 0.99 and earlier does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077. cpe:/a:openevidence:openevidence:1.0.6 cpe:/a:openevidence:openevidence:1.0.5 CVE-2009-0048 2009-01-07T13:30:15.827-05:00 2009-01-27T00:00:00.000-05:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-07T16:57:00.000-05:00 MISC http://www.ocert.org/advisories/ocert-2008-016.html VUPEN ADV-2009-0047 OpenEvidence 1.0.6 and earlier does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077. cpe:/a:eid:eidlib:2.6.0 CVE-2009-0049 2009-01-07T13:30:15.843-05:00 2009-03-13T01:46:06.000-04:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-07T17:01:00.000-05:00 MISC http://www.ocert.org/advisories/ocert-2008-016.html SECUNIA 34029 SUSE SUSE-SR:2009:005 Belgian eID middleware (eidlib) 2.6.0 and earlier does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077. cpe:/a:lasso:lasso:2.2.1-0 cpe:/a:lasso:lasso:2.0.0-1 cpe:/a:lasso:lasso:1.9.9.0 CVE-2009-0050 2009-01-07T13:30:15.860-05:00 2009-02-12T01:56:25.670-05:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-07T17:07:00.000-05:00 XF openssl-dsa-verify-security-bypass(47837) MISC http://www.ocert.org/advisories/ocert-2008-016.html Lasso 2.2.1 and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077. cpe:/a:zxid:zxid:0.22 cpe:/a:zxid:zxid:0.21 cpe:/a:zxid:zxid:0.20 cpe:/a:zxid:zxid:0.27 cpe:/a:zxid:zxid:0.26 cpe:/a:zxid:zxid:0.25 cpe:/a:zxid:zxid:0.28 cpe:/a:zxid:zxid:0.29 cpe:/a:zxid:zxid:0.6 cpe:/a:zxid:zxid:0.7 cpe:/a:zxid:zxid:0.8 cpe:/a:zxid:zxid:0.9 cpe:/a:zxid:zxid:0.2 cpe:/a:zxid:zxid:0.3 cpe:/a:zxid:zxid:0.4 cpe:/a:zxid:zxid:0.5 cpe:/a:zxid:zxid:0.14 cpe:/a:zxid:zxid:0.13 cpe:/a:zxid:zxid:0.16 cpe:/a:zxid:zxid:0.15 cpe:/a:zxid:zxid:0.10 cpe:/a:zxid:zxid:0.1 cpe:/a:zxid:zxid:0.12 cpe:/a:zxid:zxid:0.11 cpe:/a:zxid:zxid:0.17 cpe:/a:zxid:zxid:0.18 cpe:/a:zxid:zxid:0.19 CVE-2009-0051 2009-01-07T13:30:15.890-05:00 2009-02-12T00:00:00.000-05:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-07T17:28:00.000-05:00 XF openssl-dsa-verify-security-bypass(47837) MISC http://www.ocert.org/advisories/ocert-2008-016.html ZXID 0.29 and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077. cpe:/o:linux:kernel:2.6.25.8::x86_64 cpe:/o:linux:kernel:2.6.20.17 cpe:/o:linux:kernel:2.6.20.16 cpe:/o:linux:kernel:2.6.20.19 cpe:/o:linux:kernel:2.6.20.18 cpe:/o:linux:kernel:2.6.25.9 cpe:/o:linux:kernel:2.6.25.8 cpe:/o:linux:kernel:2.6.25.7 cpe:/o:linux:kernel:2.6.25.6 cpe:/o:linux:kernel:2.6.25.1 cpe:/o:linux:kernel:2.6.22_rc1 cpe:/o:linux:kernel:2.6.25::x86_64 cpe:/o:linux:kernel:2.6.25.5 cpe:/o:linux:kernel:2.6.25.4 cpe:/o:linux:kernel:2.6.25.3 cpe:/o:linux:kernel:2.6.25.2 cpe:/o:linux:kernel:2.6.23.17 cpe:/o:linux:kernel:2.6.22_rc7 cpe:/o:linux:kernel:2.6.23.10 cpe:/o:linux:kernel:2.6.23.11 cpe:/o:linux:kernel:2.6.20.20 cpe:/o:linux:kernel:2.6.23.12 cpe:/o:linux:kernel:2.6.23.13 cpe:/o:linux:kernel:2.6.20.21 cpe:/o:linux:kernel:2.6.23.15 cpe:/o:linux:kernel:2.6.23.16 cpe:/o:linux:kernel:2.6.22.1 cpe:/o:linux:kernel:2.6.22.2 cpe:/o:linux:kernel:2.6.23.8 cpe:/o:linux:kernel:2.6.18:rc2 cpe:/o:linux:kernel:2.6.23.9 cpe:/o:linux:kernel:2.6.18:rc1 cpe:/o:linux:kernel:2.6.18:rc4 cpe:/o:linux:kernel:2.6.18:rc3 cpe:/o:linux:kernel:2.6.22.8 cpe:/o:linux:kernel:2.6.18:rc6 cpe:/o:linux:kernel:2.6.22.9 cpe:/o:linux:kernel:2.6.18:rc5 cpe:/o:linux:kernel:2.6.18:rc7 cpe:/o:linux:kernel:2.6.25.10::x86_64 cpe:/o:linux:kernel:2.4.36.5 cpe:/o:linux:kernel:2.4.36.4 cpe:/o:linux:kernel:2.4.36.6 cpe:/o:linux:kernel:2.4.36.1 cpe:/o:linux:kernel:2.4.36.3 cpe:/o:linux:kernel:2.4.36.2 cpe:/o:linux:kernel:2.6.25.7::x86_64 cpe:/o:linux:kernel:2.6.25.17 cpe:/o:linux:kernel:2.6.25.16 cpe:/o:linux:kernel:2.6.25.15 cpe:/o:linux:kernel:2.6.25.14 cpe:/o:linux:kernel:2.6.25.9::x86_64 cpe:/o:linux:kernel:2.6.25.13 cpe:/o:linux:kernel:2.6 cpe:/o:linux:kernel:2.6.25.12 cpe:/o:linux:kernel:2.6.25.11 cpe:/o:linux:kernel:2.6.21.6 cpe:/o:linux:kernel:2.6.21.7 cpe:/o:linux:kernel:2.6.25.10 cpe:/o:linux:kernel:2.6.23_rc1 cpe:/o:linux:kernel:2.6.21.5 cpe:/o:linux:kernel:2.6.25.6::x86_64 cpe:/o:linux:kernel:2.6.25.11::x86_64 cpe:/o:linux:kernel:2.6.22.18 cpe:/o:linux:kernel:2.6.22.19 cpe:/o:linux:kernel:2.6.22.17 cpe:/o:linux:kernel:2.6.22.14 cpe:/o:linux:kernel:2.6.22.15 cpe:/o:linux:kernel:2.6.22.12 cpe:/o:linux:kernel:2.6.22.13 cpe:/o:linux:kernel:2.6.18 cpe:/o:linux:kernel:2.6.22.10 cpe:/o:linux:kernel:2.6.22.11 cpe:/o:linux:kernel:2.6.24_rc5 cpe:/o:linux:kernel:2.6.24_rc4 cpe:/o:linux:kernel:2.6.25.4::x86_64 cpe:/o:linux:kernel:2.6.25.3::x86_64 cpe:/o:linux:kernel:2.6.24_rc1 cpe:/o:linux:kernel:2.4.36 cpe:/o:linux:kernel:2.6.26.5 cpe:/o:linux:kernel:2.6.26.3 cpe:/o:linux:kernel:2.6.26.4 cpe:/o:linux:kernel:2.6.26.1 cpe:/o:linux:kernel:2.6.26.2 cpe:/o:linux:kernel:2.6.26 cpe:/o:linux:kernel:2.6.22.20 cpe:/o:linux:kernel:2.6.25 cpe:/o:linux:kernel:2.6.22.21 cpe:/o:linux:kernel:2.6.27 cpe:/o:linux:kernel:2.6.25.12::x86_64 cpe:/o:linux:kernel:2.6.25.2::x86_64 cpe:/o:linux:kernel:2.6.22.22 cpe:/o:linux:kernel:2.6.24.6 cpe:/o:linux:kernel:2.6.25.1::x86_64 cpe:/o:linux:kernel:2.6.22 cpe:/o:linux:kernel:2.2.27 cpe:/o:linux:kernel:2.6.24.5 cpe:/o:linux:kernel:2.6.23 cpe:/o:linux:kernel:2.6.24.4 cpe:/o:linux:kernel:2.6.24 cpe:/o:linux:kernel:2.6.24.3 cpe:/o:linux:kernel:2.6.24.2 cpe:/o:linux:kernel:2.6.24.1 cpe:/o:linux:kernel:2.6.24.7 cpe:/o:linux:kernel:2.6.19.4 cpe:/o:linux:kernel:2.6.19.5 cpe:/o:linux:kernel:2.6.19.6 cpe:/o:linux:kernel:2.6.19.7 cpe:/o:linux:kernel:2.6.25.5::x86_64 CVE-2009-0065 2009-01-07T14:30:00.280-05:00 2009-08-12T01:25:38.170-04:00 10.0 NETWORK LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-08T07:55:00.000-05:00 ALLOWS_ADMIN_ACCESS FEDORA FEDORA-2009-0816 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=478800 VUPEN ADV-2009-2193 UBUNTU USN-751-1 SECTRACK 1022698 BID 33113 REDHAT RHSA-2009:1055 REDHAT RHSA-2009:0331 REDHAT RHSA-2009:0053 MLIST [oss-security] 20090105 CVE request: kernel: sctp: memory overflow when FWD-TSN chunk is received with bad stream ID VUPEN ADV-2009-0029 DEBIAN DSA-1794 DEBIAN DSA-1787 DEBIAN DSA-1749 CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2009-114.htm SECUNIA 36191 SECUNIA 35394 SECUNIA 35390 SECUNIA 35174 SECUNIA 35011 SECUNIA 34981 SECUNIA 34762 SECUNIA 34680 SECUNIA 34394 SECUNIA 34252 SECUNIA 33858 SECUNIA 33854 SECUNIA 33674 REDHAT RHSA-2009:0264 CONFIRM http://patchwork.ozlabs.org/patch/15024/ SUSE SUSE-SA:2009:031 SUSE SUSE-SA:2009:030 SUSE SUSE-SA:2009:010 HP HPSBNS02449 HP HPSBNS02449 CONFIRM http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9fcb95a105758b81ef0131cd18e2db5149f13e95 Buffer overflow in net/sctp/sm_statefuns.c in the Stream Control Transmission Protocol (sctp) implementation in the Linux kernel before 2.6.28-git8 allows remote attackers to have an unknown impact via an FWD-TSN (aka FORWARD-TSN) chunk with a large stream ID. cpe:/a:intel:trusted_execution_technology:_nil_ CVE-2009-0066 2009-01-07T14:30:00.297-05:00 2009-01-08T00:00:00.000-05:00 7.6 NETWORK HIGH NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-08T08:52:00.000-05:00 ALLOWS_ADMIN_ACCESS BID 33119 MISC http://theinvisiblethings.blogspot.com/2009/01/attacking-intel-trusted-execution.html MISC http://invisiblethingslab.com/press/itl-press-2009-01.pdf MISC http://blackhat.com/html/bh-dc-09/bh-dc-09-speakers.html#Wojtczuk Multiple unspecified vulnerabilities in Intel system software for Trusted Execution Technology (TXT) allow attackers to bypass intended loader integrity protections, as demonstrated by exploitation of tboot. NOTE: as of 20090107, the only disclosure is a vague pre-advisory with no actionable information. However, because it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. cpe:/a:freedesktop:xdg-utils:1.0 CVE-2009-0068 2009-01-07T14:30:00.313-05:00 2009-02-10T01:59:42.920-05:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-08T08:38:00.000-05:00 ALLOWS_OTHER_ACCESS MISC https://bugs.freedesktop.org/show_bug.cgi?id=19377 BID 33137 MLIST [oss-security] 20090106 Fwd: Using xdg-open in /etc/mailcap causes hole in Firefox (Demonstration/Exploit included) Interaction error in xdg-open allows remote attackers to execute arbitrary code by sending a file with a dangerous MIME type but using a safe type that Firefox sends to xdg-open, which causes xdg-open to process the dangerous file type through automatic type detection, as demonstrated by overwriting the .desktop file. cpe:/o:sun:opensolaris:snv_65::sparc cpe:/o:sun:opensolaris:snv_15::x86 cpe:/o:sun:opensolaris:snv_41::sparc cpe:/o:sun:opensolaris:snv_91::x86 cpe:/o:sun:opensolaris:snv_48::sparc cpe:/o:sun:opensolaris:snv_101::x86 cpe:/o:sun:opensolaris:snv_22::sparc cpe:/o:sun:opensolaris:snv_30::x86 cpe:/o:sun:opensolaris:snv_58::x86 cpe:/o:sun:opensolaris:snv_53::sparc cpe:/o:sun:opensolaris:snv_36::sparc cpe:/o:sun:opensolaris:snv_22::x86 cpe:/o:sun:opensolaris:snv_81::sparc cpe:/o:sun:solaris:10::x86 cpe:/o:sun:opensolaris:snv_28::sparc cpe:/o:sun:opensolaris:snv_97::x86 cpe:/o:sun:opensolaris:snv_47::sparc cpe:/o:sun:opensolaris:snv_09::sparc cpe:/o:sun:opensolaris:snv_34::sparc cpe:/o:sun:opensolaris:snv_81::x86 cpe:/o:sun:opensolaris:snv_77::x86 cpe:/o:sun:opensolaris:snv_96::x86 cpe:/o:sun:opensolaris:snv_65::x86 cpe:/o:sun:opensolaris:snv_34::x86 cpe:/o:sun:opensolaris:snv_96::sparc cpe:/o:sun:opensolaris:snv_91::sparc cpe:/o:sun:opensolaris:snv_95::sparc cpe:/o:sun:opensolaris:snv_08::sparc cpe:/o:sun:opensolaris:snv_32::sparc cpe:/o:sun:opensolaris:snv_72::sparc cpe:/o:sun:opensolaris:snv_104::sparc cpe:/o:sun:opensolaris:snv_100::x86 cpe:/o:sun:opensolaris:snv_90::x86 cpe:/o:sun:opensolaris:snv_04::sparc cpe:/o:sun:opensolaris:snv_60::x86 cpe:/o:sun:opensolaris:snv_83::sparc cpe:/o:sun:opensolaris:snv_64::x86 cpe:/o:sun:opensolaris:snv_42::sparc cpe:/o:sun:opensolaris:snv_97::sparc cpe:/o:sun:opensolaris:snv_10::x86 cpe:/o:sun:opensolaris:snv_32::x86 cpe:/o:sun:opensolaris:snv_28::x86 cpe:/o:sun:opensolaris:snv_77::sparc cpe:/o:sun:opensolaris:snv_89::x86 cpe:/o:sun:opensolaris:snv_75::x86 cpe:/o:sun:opensolaris:snv_89::sparc cpe:/o:sun:solaris:10::sparc cpe:/o:sun:opensolaris:snv_16::sparc cpe:/o:sun:opensolaris:snv_30::sparc cpe:/o:sun:opensolaris:snv_87::sparc cpe:/o:sun:opensolaris:snv_71::x86 cpe:/o:sun:opensolaris:snv_58::sparc cpe:/o:sun:opensolaris:snv_85::sparc cpe:/o:sun:opensolaris:snv_79::x86 cpe:/o:sun:opensolaris:snv_90::sparc cpe:/o:sun:opensolaris:snv_20::x86 cpe:/o:sun:opensolaris:snv_67::sparc cpe:/o:sun:opensolaris:snv_43::sparc cpe:/o:sun:opensolaris:snv_40::x86 cpe:/o:sun:opensolaris:snv_56::x86 cpe:/o:sun:opensolaris:snv_07::sparc cpe:/o:sun:opensolaris:snv_41::x86 cpe:/o:sun:opensolaris:snv_29::sparc cpe:/o:sun:opensolaris:snv_08::x86 cpe:/o:sun:opensolaris:snv_17::sparc cpe:/o:sun:opensolaris:snv_75::sparc cpe:/o:sun:opensolaris:snv_57::sparc cpe:/o:sun:opensolaris:snv_52::sparc cpe:/o:sun:opensolaris:snv_19::x86 cpe:/o:sun:opensolaris:snv_66::x86 cpe:/o:sun:opensolaris:snv_95::x86 cpe:/o:sun:opensolaris:snv_51::sparc cpe:/o:sun:opensolaris:snv_15::sparc cpe:/o:sun:opensolaris:snv_80::x86 cpe:/o:sun:opensolaris:snv_76::sparc cpe:/o:sun:opensolaris:snv_04::x86 cpe:/o:sun:opensolaris:snv_38::x86 cpe:/o:sun:opensolaris:snv_61::sparc cpe:/o:sun:opensolaris:snv_54::x86 cpe:/o:sun:opensolaris:snv_36::x86 cpe:/o:sun:opensolaris:snv_52::x86 cpe:/o:sun:opensolaris:snv_59::sparc cpe:/o:sun:opensolaris:snv_06::x86 cpe:/o:sun:opensolaris:snv_42::x86 cpe:/o:sun:opensolaris:snv_84::x86 cpe:/o:sun:opensolaris:snv_21::x86 cpe:/o:sun:opensolaris:snv_26::x86 cpe:/o:sun:opensolaris:snv_02::x86 cpe:/o:sun:opensolaris:snv_63::sparc cpe:/o:sun:opensolaris:snv_12::x86 cpe:/o:sun:opensolaris:snv_49::sparc cpe:/o:sun:opensolaris:snv_23::sparc cpe:/o:sun:opensolaris:snv_47::x86 cpe:/o:sun:opensolaris:snv_88::x86 cpe:/o:sun:opensolaris:snv_39::sparc cpe:/o:sun:opensolaris:snv_72::x86 cpe:/o:sun:opensolaris:snv_11::sparc cpe:/o:sun:opensolaris:snv_24::sparc cpe:/o:sun:opensolaris:snv_27::x86 cpe:/o:sun:opensolaris:snv_73::x86 cpe:/o:sun:opensolaris:snv_69::sparc cpe:/o:sun:opensolaris:snv_50::sparc cpe:/o:sun:opensolaris:snv_92::sparc cpe:/o:sun:opensolaris:snv_25::sparc cpe:/o:sun:opensolaris:snv_20::sparc cpe:/o:sun:opensolaris:snv_94::sparc cpe:/o:sun:opensolaris:snv_29::x86 cpe:/o:sun:opensolaris:snv_33::sparc cpe:/o:sun:opensolaris:snv_68::sparc cpe:/o:sun:opensolaris:snv_93::sparc cpe:/o:sun:opensolaris:snv_05::sparc cpe:/o:sun:opensolaris:snv_14::x86 cpe:/o:sun:opensolaris:snv_37::x86 cpe:/o:sun:opensolaris:snv_06::sparc cpe:/o:sun:opensolaris:snv_35::sparc cpe:/o:sun:opensolaris:snv_48::x86 cpe:/o:sun:opensolaris:snv_13::sparc cpe:/o:sun:opensolaris:snv_18::x86 cpe:/o:sun:opensolaris:snv_93::x86 cpe:/o:sun:opensolaris:snv_37::sparc cpe:/o:sun:opensolaris:snv_62::x86 cpe:/o:sun:opensolaris:snv_21::sparc cpe:/o:sun:opensolaris:snv_80::sparc cpe:/o:sun:opensolaris:snv_46::x86 cpe:/o:sun:opensolaris:snv_82::x86 cpe:/o:sun:opensolaris:snv_44::sparc cpe:/o:sun:opensolaris:snv_50::x86 cpe:/o:sun:opensolaris:snv_31::sparc cpe:/o:sun:opensolaris:snv_19::sparc cpe:/o:sun:opensolaris:snv_99::sparc cpe:/o:sun:opensolaris:snv_61::x86 cpe:/o:sun:opensolaris:snv_13::x86 cpe:/o:sun:opensolaris:snv_25::x86 cpe:/o:sun:opensolaris:snv_98::sparc cpe:/o:sun:opensolaris:snv_74::x86 cpe:/o:sun:opensolaris:snv_86::x86 cpe:/o:sun:opensolaris:snv_82::sparc cpe:/o:sun:opensolaris:snv_84::sparc cpe:/o:sun:opensolaris:snv_74::sparc cpe:/o:sun:opensolaris:snv_78::x86 cpe:/o:sun:opensolaris:snv_63::x86 cpe:/o:sun:opensolaris:snv_101::sparc cpe:/o:sun:opensolaris:snv_62::sparc cpe:/o:sun:opensolaris:snv_55::sparc cpe:/o:sun:opensolaris:snv_70::sparc cpe:/o:sun:opensolaris:snv_45::sparc cpe:/o:sun:opensolaris:snv_94::x86 cpe:/o:sun:opensolaris:snv_01::sparc cpe:/o:sun:opensolaris:snv_55::x86 cpe:/o:sun:opensolaris:snv_86::sparc cpe:/o:sun:opensolaris:snv_73::sparc cpe:/o:sun:opensolaris:snv_88::sparc cpe:/o:sun:opensolaris:snv_01::x86 cpe:/o:sun:opensolaris:snv_98::x86 cpe:/o:sun:opensolaris:snv_35::x86 cpe:/o:sun:opensolaris:snv_54::sparc cpe:/o:sun:opensolaris:snv_69::x86 cpe:/o:sun:opensolaris:snv_76::x86 cpe:/o:sun:opensolaris:snv_83::x86 cpe:/o:sun:opensolaris:snv_51::x86 cpe:/o:sun:opensolaris:snv_66::sparc cpe:/o:sun:opensolaris:snv_67::x86 cpe:/o:sun:opensolaris:snv_40::sparc cpe:/o:sun:opensolaris:snv_68::x86 cpe:/o:sun:opensolaris:snv_64::sparc cpe:/o:sun:opensolaris:snv_23::x86 cpe:/o:sun:opensolaris:snv_09::x86 cpe:/o:sun:opensolaris:snv_07::x86 cpe:/o:sun:opensolaris:snv_71::sparc cpe:/o:sun:opensolaris:snv_78::sparc cpe:/o:sun:opensolaris:snv_79::sparc cpe:/o:sun:opensolaris:snv_14::sparc cpe:/o:sun:opensolaris:snv_16::x86 cpe:/o:sun:opensolaris:snv_53::x86 cpe:/o:sun:opensolaris:snv_70::x86 cpe:/o:sun:opensolaris:snv_24::x86 cpe:/o:sun:opensolaris:snv_27::sparc cpe:/o:sun:opensolaris:snv_31::x86 cpe:/o:sun:opensolaris:snv_99::x86 cpe:/o:sun:opensolaris:snv_26::sparc cpe:/o:sun:opensolaris:snv_39::x86 cpe:/o:sun:opensolaris:snv_12::sparc cpe:/o:sun:opensolaris:snv_92::x86 cpe:/o:sun:opensolaris:snv_11::x86 cpe:/o:sun:opensolaris:snv_85::x86 cpe:/o:sun:opensolaris:snv_49::x86 cpe:/o:sun:opensolaris:snv_10::sparc cpe:/o:sun:opensolaris:snv_46::sparc cpe:/o:sun:opensolaris:snv_03::sparc cpe:/o:sun:opensolaris:snv_57::x86 cpe:/o:sun:opensolaris:snv_59::x86 cpe:/o:sun:opensolaris:snv_87::x86 cpe:/o:sun:opensolaris:snv_43::x86 cpe:/o:sun:opensolaris:snv_05::x86 cpe:/o:sun:opensolaris:snv_100::sparc cpe:/o:sun:opensolaris:snv_33::x86 cpe:/o:sun:opensolaris:snv_03::x86 cpe:/o:sun:opensolaris:snv_45::x86 cpe:/o:sun:opensolaris:snv_17::x86 cpe:/o:sun:opensolaris:snv_44::x86 cpe:/o:sun:opensolaris:snv_60::sparc cpe:/o:sun:opensolaris:snv_56::sparc cpe:/o:sun:opensolaris:snv_02::sparc cpe:/o:sun:opensolaris:snv_38::sparc cpe:/o:sun:opensolaris:snv_18::sparc CVE-2009-0069 2009-01-07T15:30:00.467-05:00 2009-01-24T23:47:02.967-05:00 4.9 LOCAL LOW NONE NONE NONE COMPLETE http://nvd.nist.gov 2009-01-08T09:26:00.000-05:00 CONFIRM http://sunsolve.sun.com/search/document.do?assetkey=1-21-139466-02-1 XF solaris-nfs4client-dos(47750) SECTRACK 1021519 BID 33128 VUPEN ADV-2009-0030 SUNALERT 248566 SECUNIA 33361 MLIST [onnv-notify] 20081021 6300710 recursive mutex_enter in nfs4rename_persistent_fh() Unspecified vulnerability in the nfs4rename_persistent_fh function in the NFS 4 (aka NFSv4) client in the kernel in Sun Solaris 10 and OpenSolaris before snv_102 allows local users to cause a denial of service (recursive mutex_enter and panic) via unspecified vectors. cpe:/a:ca:service_metric_analysis:r11.1:sp1 cpe:/a:ca:service_level_management:3.5 cpe:/a:ca:service_metric_analysis:r11.1 cpe:/a:ca:service_metric_analysis:r11.0 CVE-2009-0043 2009-01-08T14:30:11.250-05:00 2009-02-12T01:56:24.920-05:00 10.0 NETWORK LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-09T08:47:00.000-05:00 ALLOWS_ADMIN_ACCESS CONFIRM https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=196148 BID 33161 BUGTRAQ 20090107 CA20090107-01: CA Service Metric Analysis and CA Service Level Management smmsnmpd Arbitrary Command Execution Vulnerability VUPEN ADV-2009-0053 SREASON 4887 CONFIRM http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/07.aspx The smmsnmpd service in CA Service Metric Analysis r11.0 through r11.1 SP1 and Service Level Management 3.5 does not properly restrict access, which allows remote attackers to execute arbitrary commands via unspecified vectors. cpe:/a:apple:safari CVE-2009-0070 2009-01-08T14:30:11.280-05:00 2009-01-29T02:00:57.390-05:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-09T09:01:00.000-05:00 ALLOWS_ADMIN_ACCESS XF safari-array-memory-disclosure(48214) MILW0RM 7673 Integer signedness error in Apple Safari allows remote attackers to read the contents of arbitrary memory locations, cause a denial of service (application crash), and probably have unspecified other impact via the array index of the arguments array in a JavaScript function, possibly a related issue to CVE-2008-2307. cpe:/a:mozilla:firefox:3.0:beta5 cpe:/a:mozilla:firefox:3.0 cpe:/a:mozilla:firefox:3.0:alpha cpe:/a:mozilla:firefox:3.0:beta2 cpe:/a:mozilla:firefox:3.0.1 cpe:/a:mozilla:firefox:3.0.4 cpe:/a:mozilla:firefox:3.0.5 cpe:/a:mozilla:firefox:3.0.2 cpe:/a:mozilla:firefox:3.0.3 CVE-2009-0071 2009-01-08T14:30:11.297-05:00 2009-03-25T01:49:27.267-04:00 2.6 NETWORK HIGH NONE NONE NONE PARTIAL http://nvd.nist.gov 2009-01-09T10:12:00.000-05:00 CONFIRM https://bugzilla.mozilla.org/show_bug.cgi?id=472507 CONFIRM https://bugzilla.mozilla.org/show_bug.cgi?id=456727 CONFIRM https://bugzilla.mozilla.org/show_bug.cgi?id=448329 BID 33154 MILW0RM 8219 MILW0RM 8091 FULLDISC 20090107 Re: Firefox 3.0.5 remote vulnerability via queryCommandState FULLDISC 20090107 Re: Firefox 3.0.5 remote vulnerability via queryCommandState FULLDISC 20090107 Firefox 3.0.5 remote vulnerability via queryCommandState Mozilla Firefox 3.0.5 and earlier 3.0.x versions, when designMode is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a certain (a) replaceChild or (b) removeChild call, followed by a (1) queryCommandValue, (2) queryCommandState, or (3) queryCommandIndeterm call. NOTE: it was later reported that 3.0.6 and 3.0.7 are also affected. cpe:/a:microsoft:internet_explorer:6:sp2 cpe:/a:microsoft:internet_explorer:6 cpe:/a:microsoft:internet_explorer:7 cpe:/a:microsoft:internet_explorer:6:sp1 cpe:/a:microsoft:internet_explorer:8:beta2 cpe:/a:microsoft:internet_explorer:8:beta1 CVE-2009-0072 2009-01-08T14:30:11.313-05:00 2009-01-09T00:00:00.000-05:00 4.3 NETWORK MEDIUM NONE NONE NONE PARTIAL http://nvd.nist.gov 2009-01-09T10:49:00.000-05:00 XF ie-javascript-screen-dos(47788) BID 33149 MISC http://skypher.com/index.php/2009/01/07/msie-screen-null-ptr-dos-details/ Microsoft Internet Explorer 6.0 through 8.0 beta2 allows remote attackers to cause a denial of service (application crash) via an onload=screen[""] attribute value in a BODY element. cpe:/a:playsms:playsms:0.9.3 CVE-2009-0103 2009-01-09T13:30:03.047-05:00 2009-01-29T02:00:58.250-05:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-09T15:02:00.000-05:00 ALLOWS_OTHER_ACCESS BID 33138 MILW0RM 7687 SREASON 4888 SECUNIA 33386 Multiple PHP remote file inclusion vulnerabilities in playSMS 0.9.3 allow remote attackers to execute arbitrary PHP code via a URL in the (1) apps_path[plug] parameter to plugin/gateway/gnokii/init.php, the (2) apps_path[themes] parameter to plugin/themes/default/init.php, and the (3) apps_path[libs] parameter to lib/function.php. cpe:/a:se-ed:ezpack:4.2:beta2 CVE-2009-0104 2009-01-09T13:30:03.063-05:00 2009-01-29T02:00:58.390-05:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-09T15:04:00.000-05:00 ALLOWS_OTHER_ACCESS BID 33131 MILW0RM 7680 SREASON 4890 SQL injection vulnerability in index.php in EZpack 4.2b2 allows remote attackers to execute arbitrary SQL commands via the qType parameter in a webboard prog action. cpe:/a:se-ed:ezpack:4.2:beta2 CVE-2009-0105 2009-01-09T13:30:03.077-05:00 2009-01-29T02:00:58.610-05:00 4.3 NETWORK MEDIUM NONE NONE PARTIAL NONE http://nvd.nist.gov 2009-01-09T15:15:00.000-05:00 BID 33131 MILW0RM 7680 SREASON 4890 Cross-site scripting (XSS) vulnerability in index.php in EZpack 4.2b2 allows remote attackers to inject arbitrary web script or HTML via the mdfd parameter in a prog action. cpe:/a:phpauctions:phpauctions:_nil_ CVE-2009-0106 2009-01-09T13:30:03.093-05:00 2009-04-10T01:32:32.157-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-09T15:35:00.000-05:00 ALLOWS_OTHER_ACCESS XF phpauctions-profile-sql-injection(43264) BID 33115 SECUNIA 33331 OSVDB 51144 MILW0RM 7672 SQL injection vulnerability in profile.php in PHPAuctions (aka PHPAuctionSystem) allows remote attackers to execute arbitrary SQL commands via the user_id parameter. cpe:/a:phpauctions:phpauctions:_nil_ CVE-2009-0107 2009-01-09T13:30:03.127-05:00 2009-01-09T00:00:00.000-05:00 4.3 NETWORK MEDIUM NONE NONE PARTIAL NONE http://nvd.nist.gov 2009-01-09T15:47:00.000-05:00 BID 33115 SECUNIA 33331 OSVDB 51145 MILW0RM 7672 Cross-site scripting (XSS) vulnerability in profile.php in PHPAuctions (aka PHPAuctionSystem) allows remote attackers to inject arbitrary web script or HTML via the user_id parameter. cpe:/a:phpauctions:phpauctions:_nil_ CVE-2009-0108 2009-01-09T13:30:03.140-05:00 2009-01-29T00:00:00.000-05:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-09T16:10:00.000-05:00 ALLOWS_OTHER_ACCESS BID 33120 MILW0RM 7674 SREASON 4891 SECUNIA 33331 OSVDB 51146 PHPAuctions (aka PHPAuctionSystem) allows remote attackers to bypass authentication and gain administrative access via modified (1) PHPAUCTION_RM_ID, (2) PHPAUCTION_RM_NAME, (3) PHPAUCTION_RM_USERNAME, and (4) PHPAUCTION_RM_EMAIL cookies. cpe:/a:riotpix:riotpix:0.60 cpe:/a:riotpix:riotpix:0.52 cpe:/a:riotpix:riotpix:0.61 cpe:/a:riotpix:riotpix:0.5 cpe:/a:riotpix:riotpix:.05 cpe:/a:riotpix:riotpix:0.51:beta CVE-2009-0109 2009-01-09T13:30:03.157-05:00 2009-01-29T02:00:59.250-05:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-09T16:15:00.000-05:00 ALLOWS_OTHER_ACCESS BID 33132 MILW0RM 7682 SREASON 4892 SECUNIA 33395 SQL injection vulnerability in index.php in RiotPix 0.61 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: some of these details are obtained from third party information. cpe:/a:riotpix:riotpix:0.60 cpe:/a:riotpix:riotpix:0.52 cpe:/a:riotpix:riotpix:0.61 cpe:/a:riotpix:riotpix:0.5 cpe:/a:riotpix:riotpix:.05 cpe:/a:riotpix:riotpix:0.51:beta CVE-2009-0110 2009-01-09T13:30:03.170-05:00 2009-01-29T02:00:59.467-05:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-09T16:38:00.000-05:00 ALLOWS_OTHER_ACCESS BID 33129 MILW0RM 7679 SREASON 4893 SECUNIA 33395 SQL injection vulnerability in read.php in RiotPix 0.61 and earlier allows remote attackers to execute arbitrary SQL commands via the forumid parameter. cpe:/a:goople_cms:goople_cms:1.8.2 CVE-2009-0111 2009-01-09T13:30:03.203-05:00 2009-01-29T02:00:59.640-05:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-09T16:49:00.000-05:00 ALLOWS_OTHER_ACCESS BID 33135 MILW0RM 7683 SREASON 4894 SECUNIA 33393 SQL injection vulnerability in frontpage.php in Goople CMS 1.8.2 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter. cpe:/a:expinion:poll_pro:3.0 CVE-2009-0112 2009-01-09T13:30:03.217-05:00 2009-01-29T02:00:59.860-05:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-09T17:00:00.000-05:00 ALLOWS_OTHER_ACCESS XF pollpro-unspecified-csrf(47754) SREASON 4895 SECUNIA 33319 BUGTRAQ 20090103 PollPro 3.0 XSRF VuLn Cross-site request forgery (CSRF) vulnerability in admin/agent_edit.asp in PollPro 3.0 allows remote attackers to create or modify accounts as administrators via the username, password, and name parameters. cpe:/a:joomla:xstandard CVE-2009-0113 2009-01-09T13:30:03.233-05:00 2009-01-29T02:01:00.000-05:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-09T17:02:00.000-05:00 BID 33143 MILW0RM 7691 SREASON 4896 SECUNIA 33377 Directory traversal vulnerability in attachmentlibrary.php in the XStandard component for Joomla! 1.5.8 and earlier allows remote attackers to list arbitrary directories via a .. (dot dot) in the X_CMS_LIBRARY_PATH HTTP header. cpe:/o:linux:kernel:2.6.16.36 cpe:/o:linux:kernel:2.6.13.4 cpe:/o:linux:kernel:2.6.16.35 cpe:/o:linux:kernel:2.6.13.3 cpe:/o:linux:kernel:2.6.16.38 cpe:/o:linux:kernel:2.6.16.37 cpe:/o:linux:kernel:2.6.13.5 cpe:/o:linux:kernel:2.6.16.39 cpe:/o:linux:kernel:2.6.13.2 cpe:/o:linux:kernel:2.6.13.1 cpe:/o:linux:kernel:2.6.16.30 cpe:/o:linux:kernel:2.6.16.31 cpe:/o:linux:kernel:2.6.16.32 cpe:/o:linux:kernel:2.6.16.33 cpe:/o:linux:kernel:2.6.16.34 cpe:/o:linux:kernel:2.6.16.49 cpe:/o:linux:kernel:2.6.16.48 cpe:/o:linux:kernel:2.6.22_rc1 cpe:/o:linux:kernel:2.6.16.47 cpe:/o:linux:kernel:2.6.16.46 cpe:/o:linux:kernel:2.6.16.40 cpe:/o:linux:kernel:2.6.22_rc7 cpe:/o:linux:kernel:2.6.16.41 cpe:/o:linux:kernel:2.6.16.44 cpe:/o:linux:kernel:2.6.16.45 cpe:/o:linux:kernel:2.6.16.42 cpe:/o:linux:kernel:2.6.16.43 cpe:/o:linux:kernel:2.6.2 cpe:/o:linux:kernel:2.6.22.1 cpe:/o:linux:kernel:2.6.1 cpe:/o:linux:kernel:2.6.22.2 cpe:/o:linux:kernel:2.6.22.3 cpe:/o:linux:kernel:2.6.0 cpe:/o:linux:kernel:2.6.22.4 cpe:/o:linux:kernel:2.6.23.8 cpe:/o:linux:kernel:2.6.22.5 cpe:/o:linux:kernel:2.6.18:rc2 cpe:/o:linux:kernel:2.6.23.9 cpe:/o:linux:kernel:2.6.22.6 cpe:/o:linux:kernel:2.6.18:rc1 cpe:/o:linux:kernel:2.6.22.7 cpe:/o:linux:kernel:2.6.18:rc4 cpe:/o:linux:kernel:2.6.22.8 cpe:/o:linux:kernel:2.6.18:rc3 cpe:/o:linux:kernel:2.6.23.4 cpe:/o:linux:kernel:2.6.22.9 cpe:/o:linux:kernel:2.6.16.18 cpe:/o:linux:kernel:2.6.18:rc6 cpe:/o:linux:kernel:2.6.23.5 cpe:/o:linux:kernel:2.6.16.17 cpe:/o:linux:kernel:2.6.18:rc5 cpe:/o:linux:kernel:2.6.23.6 cpe:/o:linux:kernel:2.6.23.7 cpe:/o:linux:kernel:2.6.16.19 cpe:/o:linux:kernel:2.6.18:rc7 cpe:/o:linux:kernel:2.6.16.14 cpe:/o:linux:kernel:2.6.23.1 cpe:/o:linux:kernel:2.6.16.13 cpe:/o:linux:kernel:2.6.23.2 cpe:/o:linux:kernel:2.6.16.16 cpe:/o:linux:kernel:2.6.23.3 cpe:/o:linux:kernel:2.6.16.15 cpe:/o:linux:kernel:2.6.16.10 cpe:/o:linux:kernel:2.6.16.11 cpe:/o:linux:kernel:2.6.16.12 cpe:/o:linux:kernel:2.6.16.29 cpe:/o:linux:kernel:2.6.16.28 cpe:/o:linux:kernel:2.6.16.27 cpe:/o:linux:kernel:2.6.16.26 cpe:/o:linux:kernel:2.6.16.25 cpe:/o:linux:kernel:2.6.16.24 cpe:/o:linux:kernel:2.6.16.22 cpe:/o:linux:kernel:2.6.16.23 cpe:/o:linux:kernel:2.6.16.20 cpe:/o:linux:kernel:2.6.16.21 cpe:/o:linux:kernel:2.6.17.10 cpe:/o:linux:kernel:2.6.17.11 cpe:/o:linux:kernel:2.6.17.12 cpe:/o:linux:kernel:2.6.17.13 cpe:/o:linux:kernel:2.6.22.18 cpe:/o:linux:kernel:2.6.22.19 cpe:/o:linux:kernel:2.6.22.16 cpe:/o:linux:kernel:2.6.22.17 cpe:/o:linux:kernel:2.6.22.14 cpe:/o:linux:kernel:2.6.22.15 cpe:/o:linux:kernel:2.6.22.12 cpe:/o:linux:kernel:2.6.22.13 cpe:/o:linux:kernel:2.6.22.10 cpe:/o:linux:kernel:2.6.22.11 cpe:/o:linux:kernel:2.6.17.14 cpe:/o:linux:kernel:2.4.36 cpe:/o:linux:kernel:2.6.22.20 cpe:/o:linux:kernel:2.6.22.21 cpe:/o:linux:kernel:2.6.22.22 cpe:/o:linux:kernel:2.6.11.10 cpe:/o:linux:kernel:2.6.11.11 cpe:/o:linux:kernel:2.6.11.12 cpe:/o:linux:kernel:2.6.23:rc1 cpe:/o:linux:kernel:2.6.23:rc2 cpe:/o:linux:kernel:2.6.17.3 cpe:/o:linux:kernel:2.6.17.4 cpe:/o:linux:kernel:2.6.17.5 cpe:/o:linux:kernel:2.6.17.6 cpe:/o:linux:kernel:2.6.17.7 cpe:/o:linux:kernel:2.6.17.8 cpe:/o:linux:kernel:2.6.17.9 cpe:/o:linux:kernel:2.6.17.1 cpe:/o:linux:kernel:2.6.17.2 cpe:/o:linux:kernel:2.6.20.17 cpe:/o:linux:kernel:2.6.20.16 cpe:/o:linux:kernel:2.6.20.15 cpe:/o:linux:kernel:2.6.20.14 cpe:/o:linux:kernel:2.6.20.19 cpe:/o:linux:kernel:2.6.20.18 cpe:/o:linux:kernel:2.6.20.13 cpe:/o:linux:kernel:2.6.20.12 cpe:/o:linux:kernel:2.6.20.11 cpe:/o:linux:kernel:2.6.20.10 cpe:/o:linux:kernel:2.6.23.17 cpe:/o:linux:kernel:2.6.23.10 cpe:/o:linux:kernel:2.6.23.11 cpe:/o:linux:kernel:2.6.20.20 cpe:/o:linux:kernel:2.6.23.12 cpe:/o:linux:kernel:2.6.23.13 cpe:/o:linux:kernel:2.6.23.14 cpe:/o:linux:kernel:2.6.20.21 cpe:/o:linux:kernel:2.6.23.15 cpe:/o:linux:kernel:2.6.23.16 cpe:/o:linux:kernel:2.6.18.1 cpe:/o:linux:kernel:2.6.18.7 cpe:/o:linux:kernel:2.6.18.6 cpe:/o:linux:kernel:2.6.18.8 cpe:/o:linux:kernel:2.6.18.3 cpe:/o:linux:kernel:2.6.18.2 cpe:/o:linux:kernel:2.6.18.5 cpe:/o:linux:kernel:2.6.18.4 cpe:/o:linux:kernel:2.4.36.5 cpe:/o:linux:kernel:2.4.36.4 cpe:/o:linux:kernel:2.4.36.6 cpe:/o:linux:kernel:2.4.36.1 cpe:/o:linux:kernel:2.4.36.3 cpe:/o:linux:kernel:2.4.36.2 cpe:/o:linux:kernel:2.6.16.9 cpe:/o:linux:kernel:2.6.16.8 cpe:/o:linux:kernel:2.6.16.7 cpe:/o:linux:kernel:2.6.16.6 cpe:/o:linux:kernel:2.6.16.5 cpe:/o:linux:kernel:2.6.20.2 cpe:/o:linux:kernel:2.6.16.4 cpe:/o:linux:kernel:2.6.20.1 cpe:/o:linux:kernel:2.6.16.3 cpe:/o:linux:kernel:2.6.16.2 cpe:/o:linux:kernel:2.6.16.1 cpe:/o:linux:kernel:2.6.21.1 cpe:/o:linux:kernel:2.6 cpe:/o:linux:kernel:2.6.14.4 cpe:/o:linux:kernel:2.6.21.6 cpe:/o:linux:kernel:2.6.14.5 cpe:/o:linux:kernel:2.6.21.7 cpe:/o:linux:kernel:2.6.14.2 cpe:/o:linux:kernel:2.6.14.3 cpe:/o:linux:kernel:2.6.21.2 cpe:/o:linux:kernel:2.6.14.1 cpe:/o:linux:kernel:2.6.21.3 cpe:/o:linux:kernel:2.6.21.4 cpe:/o:linux:kernel:2.6.21.5 cpe:/o:linux:kernel:2.6.20.3 cpe:/o:linux:kernel:2.6.20.4 cpe:/o:linux:kernel:2.6.20.5 cpe:/o:linux:kernel:2.6.20.6 cpe:/o:linux:kernel:2.6.20.7 cpe:/o:linux:kernel:2.6.20.8 cpe:/o:linux:kernel:2.6.14.6 cpe:/o:linux:kernel:2.6.20.9 cpe:/o:linux:kernel:2.6.14.7 cpe:/o:linux:kernel:2.6.19 cpe:/o:linux:kernel:2.6.18 cpe:/o:linux:kernel:2.6.17 cpe:/o:linux:kernel:2.6.16 cpe:/o:linux:kernel:2.6.15 cpe:/o:linux:kernel:2.6.14 cpe:/o:linux:kernel:2.6.12 cpe:/o:linux:kernel:2.6.13 cpe:/o:linux:kernel:2.6.10 cpe:/o:linux:kernel:2.6.11 cpe:/o:linux:kernel:2.6.21 cpe:/o:linux:kernel:2.2.27 cpe:/o:linux:kernel:2.6.22 cpe:/o:linux:kernel:2.6.23 cpe:/o:linux:kernel:2.6.24 cpe:/o:linux:kernel:2.6.20 cpe:/o:linux:kernel:2.6.19.1 cpe:/o:linux:kernel:2.6.16.61 cpe:/o:linux:kernel:2.6.19.2 cpe:/o:linux:kernel:2.6.16.60 cpe:/o:linux:kernel:2.6.19.3 cpe:/o:linux:kernel:2.6.19.4 cpe:/o:linux:kernel:2.6.16.62 cpe:/o:linux:kernel:2.6.19.5 cpe:/o:linux:kernel:2.6.19.6 cpe:/o:linux:kernel:2.6.19.7 cpe:/o:linux:kernel:2.6.16.52 cpe:/o:linux:kernel:2.6.16.51 cpe:/o:linux:kernel:2.6.16.50 cpe:/o:linux:kernel:2.6.16.56 cpe:/o:linux:kernel:2.6.16.55 cpe:/o:linux:kernel:2.6.16.54 cpe:/o:linux:kernel:2.6.16.53 cpe:/o:linux:kernel:2.6.12.6 cpe:/o:linux:kernel:2.6.16.59 cpe:/o:linux:kernel:2.6.12.4 cpe:/o:linux:kernel:2.6.11.9 cpe:/o:linux:kernel:2.6.16.57 cpe:/o:linux:kernel:2.6.12.5 cpe:/o:linux:kernel:2.6.16.58 cpe:/o:linux:kernel:2.6.15.4 cpe:/o:linux:kernel:2.6.12.2 cpe:/o:linux:kernel:2.6.15.3 cpe:/o:linux:kernel:2.6.12.3 cpe:/o:linux:kernel:2.6.15.2 cpe:/o:linux:kernel:2.6.15.1 cpe:/o:linux:kernel:2.6.12.1 cpe:/o:linux:kernel:2.6.11.3 cpe:/o:linux:kernel:2.6.11.4 cpe:/o:linux:kernel:2.6.15.7 cpe:/o:linux:kernel:2.6.15.6 cpe:/o:linux:kernel:2.6.11.1 cpe:/o:linux:kernel:2.6.15.5 cpe:/o:linux:kernel:2.6.11.2 cpe:/o:linux:kernel:2.6.11.7 cpe:/o:linux:kernel:2.6.11.8 cpe:/o:linux:kernel:2.6.11.5 cpe:/o:linux:kernel:2.6.11.6 CVE-2009-0024 2009-01-13T12:00:01.170-05:00 2009-01-13T00:00:00.000-05:00 7.2 LOCAL LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-13T14:16:00.000-05:00 ALLOWS_ADMIN_ACCESS BID 33211 CONFIRM http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.24.1 MLIST [oss-security] 20090112 CVE-2009-0024 kernel: local privilege escalation in sys_remap_file_pages CONFIRM http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.6.24.y.git;a=commit;h=8a459e44ad837018ea5c34a9efe8eb4ad27ded26 The sys_remap_file_pages function in mm/fremap.c in the Linux kernel before 2.6.24.1 allows local users to cause a denial of service or gain privileges via unspecified vectors, related to the vm_file structure member, and the mmap_region and do_munmap functions. cpe:/a:asterisk:open_source:1.2.12.1 cpe:/a:asterisk:open_source:1.2.0:beta1 cpe:/a:asterisk:open_source:1.2.0:beta2 cpe:/a:asterisk:open_source:1.2.15:netsec cpe:/a:asterisk:open_source:1.4.12.1 cpe:/a:asterisk:open_source:1.4.10.1 cpe:/a:asterisk:open_source:1.2.23:netsec cpe:/a:asterisk:asterisk_business_edition:c.1.0:beta8 cpe:/a:asterisk:open_source:1.4.16.2 cpe:/a:asterisk:asterisk_business_edition:c.1.0:beta7 cpe:/a:asterisk:open_source:1.4.19:rc4 cpe:/a:asterisk:open_source:1.4.19:rc3 cpe:/a:asterisk:open_source:1.4.19:rc2 cpe:/a:asterisk:open_source:1.4.19:rc1 cpe:/a:asterisk:open_source:1.2.14:netsec cpe:/a:asterisk:open_source:1.2.22:netsec cpe:/a:asterisk:open_source:1.4.16.1 cpe:/a:asterisk:open_source:1.4.19 cpe:/a:asterisk:open_source:1.4.18 cpe:/a:asterisk:open_source:1.4.17 cpe:/a:asterisk:open_source:1.4.16 cpe:/a:asterisk:open_source:1.4.20:rc2 cpe:/a:asterisk:open_source:1.2.17:netsec cpe:/a:asterisk:open_source:1.4.15 cpe:/a:asterisk:open_source:1.4.20:rc3 cpe:/a:asterisk:open_source:1.4.14 cpe:/a:asterisk:open_source:1.4.13 cpe:/a:asterisk:open_source:1.4.20:rc1 cpe:/a:asterisk:open_source:1.4.12 cpe:/a:asterisk:open_source:1.4.11 cpe:/a:asterisk:open_source:1.2.30 cpe:/a:asterisk:open_source:1.4.10 cpe:/a:asterisk:open_source:1.2.21.1:netsec cpe:/a:asterisk:open_source:1.6.0.3:rc1 cpe:/a:asterisk:open_source:1.2.10:netsec cpe:/a:asterisk:open_source:1.2.26.1:netsec cpe:/a:asterisk:open_source:1.2.0:rc2 cpe:/a:asterisk:asterisk_business_edition:b.2.2.0 cpe:/a:asterisk:open_source:1.2.30.3 cpe:/a:asterisk:open_source:1.4.0:beta4 cpe:/a:asterisk:asterisk_business_edition:b.2.2.1 cpe:/a:asterisk:open_source:1.2.30.2 cpe:/a:asterisk:open_source:1.2.16:netsec cpe:/a:asterisk:open_source:1.4.0:beta3 cpe:/a:asterisk:open_source:1.2.12.1:netsec cpe:/a:asterisk:open_source:1.4.23 cpe:/a:asterisk:open_source:1.2.30.4 cpe:/a:asterisk:open_source:1.2.0:rc1 cpe:/a:asterisk:open_source:1.4.20 cpe:/a:asterisk:open_source:1.2.21:netsec cpe:/a:asterisk:open_source:1.4.22 cpe:/a:asterisk:open_source:1.2.2:netsec cpe:/a:asterisk:open_source:1.4.21 cpe:/a:asterisk:open_source:1.4beta cpe:/a:asterisk:open_source:1.2.26.2:netsec cpe:/a:asterisk:open_source:1.2.3 cpe:/a:asterisk:open_source:1.2.2 cpe:/a:asterisk:open_source:1.2.1 cpe:/a:asterisk:open_source:1.2.0 cpe:/a:asterisk:open_source:1.2.26.1 cpe:/a:asterisk:open_source:1.2.26.2 cpe:/a:asterisk:open_source:1.4.0:beta2 cpe:/a:asterisk:open_source:1.2.19 cpe:/a:asterisk:open_source:1.2.18 cpe:/a:asterisk:open_source:1.4.0 cpe:/a:asterisk:open_source:1.4.1 cpe:/a:asterisk:open_source:1.4.2 cpe:/a:asterisk:open_source:1.2.11:netsec cpe:/a:asterisk:open_source:1.4.3 cpe:/a:asterisk:open_source:1.4.4 cpe:/a:asterisk:open_source:1.4.5 cpe:/a:asterisk:open_source:1.4.6 cpe:/a:asterisk:open_source:1.2.3:netsec cpe:/a:asterisk:open_source:1.2.18:netsec cpe:/a:asterisk:open_source:1.6.0:beta7.1 cpe:/a:asterisk:open_source:1.2.10 cpe:/a:asterisk:open_source:1.4.8 cpe:/a:asterisk:open_source:1.2.11 cpe:/a:asterisk:open_source:1.4.7 cpe:/a:asterisk:open_source:1.2.12 cpe:/a:asterisk:open_source:1.2.13 cpe:/a:asterisk:open_source:1.4.9 cpe:/a:asterisk:open_source:1.2.14 cpe:/a:asterisk:open_source:1.2.15 cpe:/a:asterisk:open_source:1.2.16 cpe:/a:asterisk:open_source:1.2.17 cpe:/a:asterisk:open_source:1.2.20:netsec cpe:/a:asterisk:open_source:1.2.29 cpe:/a:asterisk:open_source:1.2.26:netsec cpe:/a:asterisk:asterisk_business_edition:b.1.3.2 cpe:/a:asterisk:open_source:1.6.0.1 cpe:/a:asterisk:asterisk_business_edition:b.1.3.3 cpe:/a:asterisk:open_source:1.6.0.2 cpe:/a:asterisk:asterisk_business_edition:a cpe:/a:asterisk:open_source:1.6.0.3 cpe:/a:asterisk:open_source:1.4_revision_95946 cpe:/a:asterisk:open_source:1.2.20 cpe:/a:asterisk:open_source:1.2.23 cpe:/a:asterisk:open_source:1.2.24 cpe:/a:asterisk:open_source:1.2.21 cpe:/a:asterisk:open_source:1.2.22 cpe:/a:asterisk:open_source:1.4.21:rc2 cpe:/a:asterisk:open_source:1.2.27 cpe:/a:asterisk:open_source:1.4.21:rc1 cpe:/a:asterisk:open_source:1.2.28 cpe:/a:asterisk:open_source:1.2.25 cpe:/a:asterisk:open_source:1.2.26 cpe:/a:asterisk:open_source:1.6.0:beta9 cpe:/a:asterisk:asterisk_business_edition:b.2.5.2 cpe:/a:asterisk:open_source:1.4.7.1 cpe:/a:asterisk:asterisk_business_edition:b.2.5.1 cpe:/a:asterisk:open_source:1.2.13:netsec cpe:/a:asterisk:asterisk_business_edition:b.2.5.3 cpe:/a:asterisk:open_source:1.4.23:rc1 cpe:/a:asterisk:open_source:1.4.23:rc2 cpe:/a:asterisk:asterisk_business_edition:b.2.5.0 cpe:/a:asterisk:open_source:1.4.23:rc3 cpe:/a:asterisk:open_source:1.2.25:netsec cpe:/a:asterisk:open_source:1.6.0:rc4 cpe:/a:asterisk:open_source:1.6.0:rc5 cpe:/a:asterisk:open_source:1.6.0:rc6 cpe:/a:asterisk:open_source:1.4.22:rc4 cpe:/a:asterisk:open_source:1.4.22:rc3 cpe:/a:asterisk:open_source:1.4.19.1 cpe:/a:asterisk:open_source:1.4.19.2 cpe:/a:asterisk:open_source:1.2.12:netsec cpe:/a:asterisk:open_source:1.2.0beta1 cpe:/a:asterisk:open_source:1.2.0beta2 cpe:/a:asterisk:open_source:1.4.18.1 cpe:/a:asterisk:asterisk_business_edition:b.2.3.4 cpe:/a:asterisk:asterisk_business_edition:b.2.3.3 cpe:/a:asterisk:asterisk_business_edition:b.2.3.6 cpe:/a:asterisk:asterisk_business_edition:b.2.3.5 cpe:/a:asterisk:open_source:1.4.22.2 cpe:/a:asterisk:open_source:1.2.21.1 cpe:/a:asterisk:open_source:1.4.22.1 cpe:/a:asterisk:asterisk_business_edition:b.2.3.2 cpe:/a:asterisk:open_source:1.2.24:netsec cpe:/a:asterisk:asterisk_business_edition:b.2.3.1 cpe:/a:asterisk:open_source:1.6.0:beta7 cpe:/a:asterisk:open_source:1.2.19:netsec cpe:/a:asterisk:open_source:1.6.0:beta8 cpe:/a:asterisk:open_source:1.4.21.2 cpe:/a:asterisk:open_source:1.6.0:beta5 cpe:/a:asterisk:open_source:1.4.21.1 cpe:/h:asterisk:s800i_appliance:1.2 cpe:/a:asterisk:open_source:1.6.0:beta3 cpe:/a:asterisk:open_source:1.6.0:beta4 cpe:/a:asterisk:open_source:1.6.0:beta1 cpe:/a:asterisk:open_source:1.6.0:beta2 CVE-2009-0041 2009-01-14T18:30:00.187-05:00 2009-05-12T01:36:31.467-04:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-15T09:43:00.000-05:00 BID 33174 SECTRACK 1021549 BUGTRAQ 20090108 AST-2009-001: Information leak in IAX2 authentication VUPEN ADV-2009-0063 SREASON 4910 GENTOO GLSA-200905-01 SECUNIA 34982 SECUNIA 33453 CONFIRM http://downloads.digium.com/pub/security/AST-2009-001.html IAX2 in Asterisk Open Source 1.2.x before 1.2.31, 1.4.x before 1.4.23-rc4, and 1.6.x before 1.6.0.3-rc2; Business Edition A.x.x, B.x.x before B.2.5.7, C.1.x.x before C.1.10.4, and C.2.x.x before C.2.1.2.1; and s800i 1.2.x before 1.3.0 responds differently to a failed login attempt depending on whether the user account exists, which allows remote attackers to enumerate valid usernames. cpe:/o:microsoft:windows_xp::sp3 CVE-2009-0119 2009-01-14T18:30:04.377-05:00 2009-01-29T02:01:00.217-05:00 10.0 NETWORK LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-15T09:54:00.000-05:00 ALLOWS_ADMIN_ACCESS BID 33204 MILW0RM 7720 SREASON 4912 Buffer overflow in Microsoft Windows XP SP3 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .chm file. cpe:/h:ibm:websphere_datapower_xml_security_gateway_xs40:3.6.1.5 CVE-2009-0120 2009-01-14T19:30:00.280-05:00 2009-01-29T02:01:00.390-05:00 7.8 NETWORK LOW NONE NONE NONE COMPLETE http://nvd.nist.gov 2009-01-15T10:53:00.000-05:00 SECTRACK 1021547 BID 33169 BUGTRAQ 20090108 [IBM Datapower XS40] Denial of Service VUPEN ADV-2009-0111 SREASON 4911 The IBM WebSphere DataPower XML Security Gateway XS40 with firmware 3.6.1.5 allows remote attackers to cause a denial of service (device reboot) by sending data over an established SSL connection, as demonstrated by the abc\r\n\r\n string data. cpe:/a:goople_cms:goople_cms:1.8.2 CVE-2009-0121 2009-01-14T19:30:00.327-05:00 2009-01-15T00:00:00.000-05:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-15T11:05:00.000-05:00 ALLOWS_OTHER_ACCESS SECUNIA 33393 SQL injection vulnerability in frontpage.php in Goople CMS 1.8.2 allows remote attackers to execute arbitrary SQL commands via the password parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. cpe:/o:linux:kernel:2.6.25.8::x86_64 cpe:/o:linux:kernel:2.6.20.17 cpe:/o:linux:kernel:2.6.20.16 cpe:/o:linux:kernel:2.6.20.19 cpe:/o:linux:kernel:2.6.20.18 cpe:/o:linux:kernel:2.6.25.9 cpe:/o:linux:kernel:2.6.25.8 cpe:/o:linux:kernel:2.6.25.7 cpe:/o:linux:kernel:2.6.25.6 cpe:/o:linux:kernel:2.6.25.1 cpe:/o:linux:kernel:2.6.22_rc1 cpe:/o:linux:kernel:2.6.25::x86_64 cpe:/o:linux:kernel:2.6.25.5 cpe:/o:linux:kernel:2.6.25.4 cpe:/o:linux:kernel:2.6.25.3 cpe:/o:linux:kernel:2.6.25.2 cpe:/o:linux:kernel:2.6.23.17 cpe:/o:linux:kernel:2.6.22_rc7 cpe:/o:linux:kernel:2.6.23.10 cpe:/o:linux:kernel:2.6.23.11 cpe:/o:linux:kernel:2.6.20.20 cpe:/o:linux:kernel:2.6.23.12 cpe:/o:linux:kernel:2.6.23.13 cpe:/o:linux:kernel:2.6.20.21 cpe:/o:linux:kernel:2.6.23.15 cpe:/o:linux:kernel:2.6.23.16 cpe:/o:linux:kernel:2.6.22.1 cpe:/o:linux:kernel:2.6.22.2 cpe:/o:linux:kernel:2.6.23.8 cpe:/o:linux:kernel:2.6.18:rc2 cpe:/o:linux:kernel:2.6.23.9 cpe:/o:linux:kernel:2.6.18:rc1 cpe:/o:linux:kernel:2.6.18:rc4 cpe:/o:linux:kernel:2.6.18:rc3 cpe:/o:linux:kernel:2.6.22.8 cpe:/o:linux:kernel:2.6.18:rc6 cpe:/o:linux:kernel:2.6.22.9 cpe:/o:linux:kernel:2.6.18:rc5 cpe:/o:linux:kernel:2.6.18:rc7 cpe:/o:linux:kernel:2.6.25.10::x86_64 cpe:/o:linux:kernel:2.4.36.5 cpe:/o:linux:kernel:2.4.36.4 cpe:/o:linux:kernel:2.4.36.6 cpe:/o:linux:kernel:2.4.36.1 cpe:/o:linux:kernel:2.4.36.3 cpe:/o:linux:kernel:2.4.36.2 cpe:/o:linux:kernel:2.6.25.7::x86_64 cpe:/o:linux:kernel:2.6.25.17 cpe:/o:linux:kernel:2.6.25.16 cpe:/o:linux:kernel:2.6.25.15 cpe:/o:linux:kernel:2.6.25.14 cpe:/o:linux:kernel:2.6.25.9::x86_64 cpe:/o:linux:kernel:2.6.25.13 cpe:/o:linux:kernel:2.6 cpe:/o:linux:kernel:2.6.25.12 cpe:/o:linux:kernel:2.6.25.11 cpe:/o:linux:kernel:2.6.21.6 cpe:/o:linux:kernel:2.6.21.7 cpe:/o:linux:kernel:2.6.25.10 cpe:/o:linux:kernel:2.6.23_rc1 cpe:/o:linux:kernel:2.6.21.5 cpe:/o:linux:kernel:2.6.25.6::x86_64 cpe:/o:linux:kernel:2.6.25.11::x86_64 cpe:/o:linux:kernel:2.6.22.18 cpe:/o:linux:kernel:2.6.22.19 cpe:/o:linux:kernel:2.6.22.17 cpe:/o:linux:kernel:2.6.22.14 cpe:/o:linux:kernel:2.6.22.15 cpe:/o:linux:kernel:2.6.22.12 cpe:/o:linux:kernel:2.6.22.13 cpe:/o:linux:kernel:2.6.18 cpe:/o:linux:kernel:2.6.22.10 cpe:/o:linux:kernel:2.6.22.11 cpe:/o:linux:kernel:2.6.24_rc5 cpe:/o:linux:kernel:2.6.24_rc4 cpe:/o:linux:kernel:2.6.25.4::x86_64 cpe:/o:linux:kernel:2.6.25.3::x86_64 cpe:/o:linux:kernel:2.6.24_rc1 cpe:/o:linux:kernel:2.4.36 cpe:/o:linux:kernel:2.6.26.5 cpe:/o:linux:kernel:2.6.26.3 cpe:/o:linux:kernel:2.6.26.4 cpe:/o:linux:kernel:2.6.26.1 cpe:/o:linux:kernel:2.6.26.2 cpe:/o:linux:kernel:2.6.26 cpe:/o:linux:kernel:2.6.22.20 cpe:/o:linux:kernel:2.6.25 cpe:/o:linux:kernel:2.6.28 cpe:/o:linux:kernel:2.6.22.21 cpe:/o:linux:kernel:2.6.27 cpe:/o:linux:kernel:2.6.25.12::x86_64 cpe:/o:linux:kernel:2.6.25.2::x86_64 cpe:/o:linux:kernel:2.6.22.22 cpe:/o:linux:kernel:2.6.24.6 cpe:/o:linux:kernel:2.6.25.1::x86_64 cpe:/o:linux:kernel:2.6.22 cpe:/o:linux:kernel:2.2.27 cpe:/o:linux:kernel:2.6.24.5 cpe:/o:linux:kernel:2.6.23 cpe:/o:linux:kernel:2.6.24.4 cpe:/o:linux:kernel:2.6.24 cpe:/o:linux:kernel:2.6.24.3 cpe:/o:linux:kernel:2.6.24.2 cpe:/o:linux:kernel:2.6.24.1 cpe:/o:linux:kernel:2.6.24.7 cpe:/o:linux:kernel:2.6.19.4 cpe:/o:linux:kernel:2.6.19.5 cpe:/o:linux:kernel:2.6.19.6 cpe:/o:linux:kernel:2.6.19.7 cpe:/o:linux:kernel:2.6.25.5::x86_64 CVE-2009-0029 2009-01-15T12:30:00.467-05:00 2009-06-20T01:26:00.717-04:00 7.2 LOCAL LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-15T16:14:00.000-05:00 FEDORA FEDORA-2009-0816 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=479969 BID 33275 MANDRIVA MDVSA-2009:135 DEBIAN DSA-1794 DEBIAN DSA-1787 DEBIAN DSA-1749 SECUNIA 35011 SECUNIA 34981 SECUNIA 34394 SECUNIA 33674 SECUNIA 33477 MLIST [linux-kernel] 20090110 Re: [PATCH -v7][RFC]: mutex: implement adaptive spinning SUSE SUSE-SA:2009:010 The ABI in the Linux kernel 2.6.28 and earlier on s390, powerpc, sparc64, and mips 64-bit platforms requires that a 32-bit argument in a 64-bit register was properly sign extended when sent from a user-mode application, but cannot verify this, which allows local users to cause a denial of service (crash) or possibly gain privileges via a crafted system call. cpe:/a:hp:hplip:2.8.2 cpe:/a:hp:hplip:2.7.7 CVE-2009-0122 2009-01-15T12:30:00.483-05:00 2009-01-31T01:54:38.047-05:00 6.9 LOCAL MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-16T09:36:00.000-05:00 ALLOWS_ADMIN_ACCESS BID 33249 CONFIRM https://launchpad.net/bugs/191299 UBUNTU USN-708-1 SECUNIA 33539 hplip.postinst in HP Linux Imaging and Printing (HPLIP) 2.7.7 and 2.8.2 on Ubuntu allows local users to change the ownership of arbitrary files via unspecified manipulations in advance of an HPLIP installation or upgrade by an administrator, related to the product's attempt to correct the ownership of its configuration files within home directories. cpe:/a:apple:safari CVE-2009-0123 2009-01-15T12:30:00.500-05:00 2009-01-22T01:46:15.797-05:00 7.1 NETWORK MEDIUM NONE COMPLETE NONE NONE http://nvd.nist.gov 2009-01-16T09:51:00.000-05:00 XF safari-rss-feed-info-disclosure(47917) SECTRACK 1021581 BID 33234 SECUNIA 33458 MISC http://isc.sans.org/diary.html?storyid=5689 MISC http://brian.mastenbrook.net/display/27 Unspecified vulnerability in Apple Safari on Mac OS X 10.5 and Windows allows remote attackers to read arbitrary files on a client machine via vectors related to the association of Safari with the (1) feed, (2) feeds, and (3) feedsearch URL types for RSS feeds. NOTE: as of 20090114, the only disclosure is a vague pre-advisory. However, because it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. cpe:/a:arrl:tqsllib:2.0 CVE-2009-0124 2009-01-15T12:30:00.530-05:00 2009-02-06T02:05:51.000-05:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-16T10:14:00.000-05:00 FEDORA FEDORA-2009-0543 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=479650 SECUNIA 33543 MLIST [oss-security] 20090112 CVE Request -- tsqllib, slurm-llnl, libnasl, libcrypt-openssl-dsa-perl, erlang, boinc-client, m2crypto MISC http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=511509 The tqsl_verifyDataBlock function in openssl_cert.cpp in American Radio Relay League (ARRL) tqsllib 2.0 does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077. cpe:/a:finkproject:libnasl:2.2.11 CVE-2009-0125 2009-01-15T12:30:00.547-05:00 2009-02-10T00:00:00.000-05:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-16T10:42:00.000-05:00 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=479655 VIM 20090120 CVE-2009-0125 (fwd) MLIST [oss-security] 20090112 CVE Request -- tsqllib, slurm-llnl, libnasl, libcrypt-openssl-dsa-perl, erlang, boinc-client, m2crypto SUSE SUSE-SR:2009:003 CONFIRM http://cvs.fedoraproject.org/viewvc/rpms/libnasl/F-10/libnasl.spec?r1=1.16&r2=1.17 MISC http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=511517 ** DISPUTED ** NOTE: this issue has been disputed by the upstream vendor. nasl/nasl_crypto2.c in the Nessus Attack Scripting Language library (aka libnasl) 2.2.11 does not properly check the return value from the OpenSSL DSA_do_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077. NOTE: the upstream vendor has disputed this issue, stating "while we do misuse this function (this is a bug), it has absolutely no security ramification." cpe:/a:berkeley:boinc_client:6.4.5 cpe:/a:berkeley:boinc_client:6.2.14 CVE-2009-0126 2009-01-15T12:30:00.563-05:00 2009-03-06T01:49:14.547-05:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-16T10:51:00.000-05:00 FEDORA FEDORA-2009-0578 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=479664 SECUNIA 33828 SECUNIA 33806 MLIST [oss-security] 20090112 CVE Request -- tsqllib, slurm-llnl, libnasl, libcrypt-openssl-dsa-perl, erlang, boinc-client, m2crypto SUSE SUSE-SR:2009:003 CONFIRM http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=511521 CONFIRM http://boinc.berkeley.edu/trac/ticket/823 CONFIRM http://boinc.berkeley.edu/trac/changeset/16883 The decrypt_public function in lib/crypt.cpp in the client in Berkeley Open Infrastructure for Network Computing (BOINC) 6.2.14 and 6.4.5 does not check the return value from the OpenSSL RSA_public_decrypt function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077. cpe:/a:heikkitoivonen:m2crypto:_nil_ CVE-2009-0127 2009-01-15T12:30:00.577-05:00 2009-01-16T00:00:00.000-05:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-16T11:21:00.000-05:00 MISC https://bugzilla.redhat.com/show_bug.cgi?id=479676 MLIST [oss-security] 20090112 CVE Request -- tsqllib, slurm-llnl, libnasl, libcrypt-openssl-dsa-perl, erlang, boinc-client, m2crypto MISC http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=511515 ** DISPUTED ** M2Crypto does not properly check the return value from the OpenSSL EVP_VerifyFinal, DSA_verify, ECDSA_verify, DSA_do_verify, and ECDSA_do_verify functions, which might allow remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077. NOTE: a Linux vendor disputes the relevance of this report to the M2Crypto product because "these functions are not used anywhere in m2crypto." cpe:/a:llnl:slurm:_nil_ CVE-2009-0128 2009-01-15T12:30:00.610-05:00 2009-01-16T00:00:00.000-05:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-16T11:26:00.000-05:00 MLIST [oss-security] 20090112 CVE Request -- tsqllib, slurm-llnl, libnasl, libcrypt-openssl-dsa-perl, erlang, boinc-client, m2crypto MISC http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=511511 plugins/crypto/openssl/crypto_openssl.c in Simple Linux Utility for Resource Management (aka SLURM or slurm-llnl) does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077. cpe:/a:perl-openssl:libcrypt-openssl-dsa-perl:_nil_ CVE-2009-0129 2009-01-15T12:30:00.627-05:00 2009-01-16T00:00:00.000-05:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-16T11:33:00.000-05:00 MLIST [oss-security] 20090112 CVE Request -- tsqllib, slurm-llnl, libnasl, libcrypt-openssl-dsa-perl, erlang, boinc-client, m2crypto CONFIRM http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=511519 libcrypt-openssl-dsa-perl does not properly check the return value from the OpenSSL DSA_verify and DSA_do_verify functions, which might allow remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077. cpe:/a:erlang:erlang:_nil_ CVE-2009-0130 2009-01-15T12:30:00.640-05:00 2009-01-16T00:00:00.000-05:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-16T11:37:00.000-05:00 MLIST [oss-security] 20090112 CVE Request -- tsqllib, slurm-llnl, libnasl, libcrypt-openssl-dsa-perl, erlang, boinc-client, m2crypto MISC http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=511520 ** DISPUTED ** lib/crypto/c_src/crypto_drv.c in erlang does not properly check the return value from the OpenSSL DSA_do_verify function, which might allow remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077. NOTE: a package maintainer disputes this issue, reporting that there is a proper check within the only code that uses the applicable part of crypto_drv.c, and thus "this report is invalid." cpe:/o:sun:opensolaris:snv_69::sparc cpe:/o:sun:opensolaris:snv_50::sparc cpe:/o:sun:opensolaris:snv_65::sparc cpe:/o:sun:opensolaris:snv_41::sparc cpe:/o:sun:opensolaris:snv_29::x86 cpe:/o:sun:opensolaris:snv_48::sparc cpe:/o:sun:opensolaris:snv_33::sparc cpe:/o:sun:opensolaris:snv_68::sparc cpe:/o:sun:opensolaris:snv_37::x86 cpe:/o:sun:opensolaris:snv_35::sparc cpe:/o:sun:opensolaris:snv_48::x86 cpe:/o:sun:opensolaris:snv_30::x86 cpe:/o:sun:opensolaris:snv_58::x86 cpe:/o:sun:opensolaris:snv_53::sparc cpe:/o:sun:opensolaris:snv_36::sparc cpe:/o:sun:opensolaris:snv_62::x86 cpe:/o:sun:opensolaris:snv_37::sparc cpe:/o:sun:opensolaris:snv_81::sparc cpe:/o:sun:opensolaris:snv_80::sparc cpe:/o:sun:opensolaris:snv_47::sparc cpe:/o:sun:opensolaris:snv_34::sparc cpe:/o:sun:opensolaris:snv_81::x86 cpe:/o:sun:opensolaris:snv_77::x86 cpe:/o:sun:opensolaris:snv_46::x86 cpe:/o:sun:opensolaris:snv_82::x86 cpe:/o:sun:opensolaris:snv_65::x86 cpe:/o:sun:opensolaris:snv_44::sparc cpe:/o:sun:opensolaris:snv_34::x86 cpe:/o:sun:opensolaris:snv_50::x86 cpe:/o:sun:opensolaris:snv_32::sparc cpe:/o:sun:opensolaris:snv_72::sparc cpe:/o:sun:opensolaris:snv_31::sparc cpe:/o:sun:opensolaris:snv_90::x86 cpe:/o:sun:opensolaris:snv_60::x86 cpe:/o:sun:opensolaris:snv_61::x86 cpe:/o:sun:opensolaris:snv_64::x86 cpe:/o:sun:opensolaris:snv_83::sparc cpe:/o:sun:opensolaris:snv_42::sparc cpe:/o:sun:opensolaris:snv_74::x86 cpe:/o:sun:opensolaris:snv_86::x86 cpe:/o:sun:opensolaris:snv_82::sparc cpe:/o:sun:opensolaris:snv_84::sparc cpe:/o:sun:opensolaris:snv_78::x86 cpe:/o:sun:opensolaris:snv_74::sparc cpe:/o:sun:opensolaris:snv_32::x86 cpe:/o:sun:opensolaris:snv_77::sparc cpe:/o:sun:opensolaris:snv_89::x86 cpe:/o:sun:opensolaris:snv_63::x86 cpe:/o:sun:opensolaris:snv_75::x86 cpe:/o:sun:opensolaris:snv_62::sparc cpe:/o:sun:opensolaris:snv_55::sparc cpe:/o:sun:opensolaris:snv_89::sparc cpe:/o:sun:opensolaris:snv_30::sparc cpe:/o:sun:opensolaris:snv_71::x86 cpe:/o:sun:opensolaris:snv_70::sparc cpe:/o:sun:opensolaris:snv_87::sparc cpe:/o:sun:opensolaris:snv_58::sparc cpe:/o:sun:opensolaris:snv_45::sparc cpe:/o:sun:opensolaris:snv_85::sparc cpe:/o:sun:opensolaris:snv_55::x86 cpe:/o:sun:opensolaris:snv_86::sparc cpe:/o:sun:opensolaris:snv_73::sparc cpe:/o:sun:opensolaris:snv_79::x86 cpe:/o:sun:opensolaris:snv_90::sparc cpe:/o:sun:opensolaris:snv_67::sparc cpe:/o:sun:opensolaris:snv_88::sparc cpe:/o:sun:opensolaris:snv_43::sparc cpe:/o:sun:opensolaris:snv_40::x86 cpe:/o:sun:opensolaris:snv_56::x86 cpe:/o:sun:opensolaris:snv_41::x86 cpe:/o:sun:opensolaris:snv_35::x86 cpe:/o:sun:opensolaris:snv_29::sparc cpe:/o:sun:opensolaris:snv_69::x86 cpe:/o:sun:opensolaris:snv_54::sparc cpe:/o:sun:opensolaris:snv_76::x86 cpe:/o:sun:opensolaris:snv_75::sparc cpe:/o:sun:opensolaris:snv_57::sparc cpe:/o:sun:opensolaris:snv_83::x86 cpe:/o:sun:opensolaris:snv_52::sparc cpe:/o:sun:opensolaris:snv_66::x86 cpe:/o:sun:opensolaris:snv_51::x86 cpe:/o:sun:opensolaris:snv_66::sparc cpe:/o:sun:opensolaris:snv_80::x86 cpe:/o:sun:opensolaris:snv_51::sparc cpe:/o:sun:opensolaris:snv_67::x86 cpe:/o:sun:opensolaris:snv_40::sparc cpe:/o:sun:opensolaris:snv_68::x86 cpe:/o:sun:opensolaris:snv_64::sparc cpe:/o:sun:opensolaris:snv_76::sparc cpe:/o:sun:opensolaris:snv_38::x86 cpe:/o:sun:opensolaris:snv_61::sparc cpe:/o:sun:opensolaris:snv_54::x86 cpe:/o:sun:opensolaris:snv_71::sparc cpe:/o:sun:opensolaris:snv_78::sparc cpe:/o:sun:opensolaris:snv_36::x86 cpe:/o:sun:opensolaris:snv_52::x86 cpe:/o:sun:opensolaris:snv_79::sparc cpe:/o:sun:opensolaris:snv_53::x86 cpe:/o:sun:opensolaris:snv_59::sparc cpe:/o:sun:opensolaris:snv_70::x86 cpe:/o:sun:opensolaris:snv_42::x86 cpe:/o:sun:opensolaris:snv_31::x86 cpe:/o:sun:opensolaris:snv_84::x86 cpe:/o:sun:opensolaris:snv_39::x86 cpe:/o:sun:opensolaris:snv_85::x86 cpe:/o:sun:opensolaris:snv_49::x86 cpe:/o:sun:opensolaris:snv_63::sparc cpe:/o:sun:opensolaris:snv_46::sparc cpe:/o:sun:opensolaris:snv_57::x86 cpe:/o:sun:opensolaris:snv_59::x86 cpe:/o:sun:opensolaris:snv_87::x86 cpe:/o:sun:opensolaris:snv_49::sparc cpe:/o:sun:opensolaris:snv_43::x86 cpe:/o:sun:opensolaris:snv_47::x86 cpe:/o:sun:opensolaris:snv_88::x86 cpe:/o:sun:opensolaris:snv_39::sparc cpe:/o:sun:opensolaris:snv_72::x86 cpe:/o:sun:opensolaris:snv_33::x86 cpe:/o:sun:opensolaris:snv_45::x86 cpe:/o:sun:opensolaris:snv_44::x86 cpe:/o:sun:opensolaris:snv_60::sparc cpe:/o:sun:opensolaris:snv_56::sparc cpe:/o:sun:opensolaris:snv_38::sparc cpe:/o:sun:opensolaris:snv_73::x86 CVE-2009-0131 2009-01-15T12:30:00.657-05:00 2009-02-05T01:53:13.453-05:00 4.9 LOCAL LOW NONE NONE NONE COMPLETE http://nvd.nist.gov 2009-01-16T13:17:00.000-05:00 SECTRACK 1021600 BID 33267 SUNALERT 239188 CONFIRM http://bugs.opensolaris.org/view_bug.do?bug_id=6711995 The UFS implementation in the kernel in Sun OpenSolaris snv_29 through snv_90 allows local users to cause a denial of service (panic) via the single posix_fallocate test in the SUSv3 POSIX test suite, related to an F_ALLOCSP fcntl call. cpe:/o:sun:solaris:10::x86 cpe:/o:sun:opensolaris:::sparc cpe:/o:sun:solaris:9::x86 cpe:/o:sun:solaris:8::x86 cpe:/o:sun:solaris:8::sparc cpe:/o:sun:opensolaris:::x86 cpe:/o:sun:solaris:9::sparc cpe:/o:sun:solaris:10::sparc CVE-2009-0132 2009-01-15T12:30:00.687-05:00 2009-01-31T01:54:40.280-05:00 4.9 LOCAL LOW NONE NONE NONE COMPLETE http://nvd.nist.gov 2009-01-16T14:04:00.000-05:00 BID 33188 CONFIRM http://sunsolve.sun.com/search/document.do?assetkey=1-21-117350-59-1 MISC http://www.trapkit.de/advisories/TKADV2009-001.txt SECTRACK 1021553 VUPEN ADV-2009-0099 SUNALERT 247986 SECUNIA 33516 Integer overflow in the aio_suspend function in Sun Solaris 8 through 10 and OpenSolaris, when 32-bit mode is enabled, allows local users to cause a denial of service (panic) via a large integer value in the second argument (aka nent argument). cpe:/a:microsoft:html_help_workshop:4.74 CVE-2009-0133 2009-01-15T12:30:00.703-05:00 2009-01-29T02:01:03.547-05:00 10.0 NETWORK LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-16T14:07:00.000-05:00 MILW0RM 7727 SREASON 4914 Buffer overflow in Microsoft HTML Help Workshop 4.74 and earlier allows context-dependent attackers to execute arbitrary code via a .hhp file with a long "Index file" field, possibly a related issue to CVE-2006-0564. cpe:/a:share2:easy_grid_control:3.51 CVE-2009-0134 2009-01-16T13:30:00.203-05:00 2009-01-29T02:01:03.767-05:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-16T16:29:00.000-05:00 XF easygrid-activex-dosavefile-file-overwrite(47946) BID 33272 MILW0RM 7779 SREASON 4913 SECUNIA 33537 Insecure method vulnerability in the EasyGrid.SGCtrl.32 ActiveX control in EasyGrid.ocx 1.0.0.1 in AAA EasyGrid ActiveX 3.51 allows remote attackers to create and overwrite arbitrary files via the (1) DoSaveFile or (2) DoSaveHtmlFile method. NOTE: vector 1 could be leveraged for code execution by creating executable files in Startup folders or by accessing files using hcp:// URLs. NOTE: some of these details are obtained from third party information. cpe:/a:amarok:amarok:2.0 cpe:/a:amarok:amarok:2.0.1 cpe:/a:amarok:amarok:1.4.10 CVE-2009-0135 2009-01-16T13:30:00.233-05:00 2009-04-02T01:44:04.360-04:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-19T10:40:00.000-05:00 ALLOWS_ADMIN_ACCESS FEDORA FEDORA-2009-0715 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=479946 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=479560 UBUNTU USN-739-1 SECTRACK 1021558 BID 33210 BUGTRAQ 20090111 [TKADV2009-002] Amarok Integer Overflow and Unchecked Allocation Vulnerabilities MANDRIVA MDVSA-2009:030 VUPEN ADV-2009-0100 DEBIAN DSA-1706 CONFIRM http://websvn.kde.org/?view=rev&revision=908415 CONFIRM http://websvn.kde.org/?view=rev&revision=908401 CONFIRM http://websvn.kde.org/?view=rev&revision=908391 MISC http://trapkit.de/advisories/TKADV2009-002.txt SREASON 4915 GENTOO GLSA-200903-34 SECUNIA 34407 SECUNIA 34315 SECUNIA 33819 SECUNIA 33640 SECUNIA 33522 SECUNIA 33505 MLIST [oss-security] 20090114 CVE Request -- amarok SUSE SUSE-SR:2009:003 CONFIRM http://bugs.gentoo.org/show_bug.cgi?id=254896 CONFIRM http://amarok.kde.org/en/releases/2.0.1.1 Multiple integer overflows in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp in Amarok 1.4.10 through 2.0.1 allow remote attackers to execute arbitrary code via an Audible Audio (.aa) file with a large (1) nlen or (2) vlen Tag value, each of which triggers a heap-based buffer overflow. cpe:/a:amarok:amarok:2.0 cpe:/a:amarok:amarok:2.0.1 cpe:/a:amarok:amarok:1.4.10 CVE-2009-0136 2009-01-16T13:30:00.250-05:00 2009-04-02T01:44:04.483-04:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-19T10:52:00.000-05:00 ALLOWS_ADMIN_ACCESS FEDORA FEDORA-2009-0715 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=479946 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=479560 UBUNTU USN-739-1 SECTRACK 1021558 BID 33210 BUGTRAQ 20090111 [TKADV2009-002] Amarok Integer Overflow and Unchecked Allocation Vulnerabilities MANDRIVA MDVSA-2009:030 VUPEN ADV-2009-0100 DEBIAN DSA-1706 CONFIRM http://websvn.kde.org/?view=rev&revision=908415 CONFIRM http://websvn.kde.org/?view=rev&revision=908401 CONFIRM http://websvn.kde.org/?view=rev&revision=908391 MISC http://trapkit.de/advisories/TKADV2009-002.txt SREASON 4915 GENTOO GLSA-200903-34 SECUNIA 34407 SECUNIA 34315 SECUNIA 33819 SECUNIA 33640 SECUNIA 33522 SECUNIA 33505 MLIST [oss-security] 20090114 CVE Request -- amarok SUSE SUSE-SR:2009:003 CONFIRM http://bugs.gentoo.org/show_bug.cgi?id=254896 CONFIRM http://amarok.kde.org/en/releases/2.0.1.1 Multiple array index errors in the Audible::Tag::readTag function in metadata/audible/audibletag.cpp in Amarok 1.4.10 through 2.0.1 allow remote attackers to cause a denial of service (application crash) or execute arbitrary code via an Audible Audio (.aa) file with a crafted (1) nlen or (2) vlen Tag value, each of which can lead to an invalid pointer dereference, or the writing of a 0x00 byte to an arbitrary memory location, after an allocation failure. cpe:/h:cisco:ironport_encryption_appliance:6.2.7.4 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.5 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.2 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.3 cpe:/h:cisco:ironport_postx:6.2.2.2 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.1 cpe:/h:cisco:ironport_postx:6.2.2.1 cpe:/h:cisco:ironport_encryption_appliance:6.2.4.1 cpe:/h:cisco:ironport_postx:6.2.2 cpe:/h:cisco:ironport_postx:6.2.1 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.6 cpe:/h:cisco:ironport_encryption_appliance:6.2.7 cpe:/h:cisco:ironport_encryption_appliance:6.3 cpe:/h:cisco:ironport_encryption_appliance:6.5 cpe:/h:cisco:ironport_encryption_appliance:6.2.4 cpe:/h:cisco:ironport_encryption_appliance:6.3.0.1 cpe:/h:cisco:ironport_encryption_appliance:6.3.0.2 cpe:/h:cisco:ironport_encryption_appliance:6.2.5 cpe:/h:cisco:ironport_encryption_appliance:6.3.0.3 cpe:/h:cisco:ironport_encryption_appliance:6.2.6 cpe:/h:cisco:ironport_encryption_appliance:6.5.0.1 CVE-2009-0053 2009-01-16T16:30:03.407-05:00 2009-02-05T01:53:06.687-05:00 4.3 NETWORK MEDIUM NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-19T15:04:00.000-05:00 BID 33268 VUPEN ADV-2009-0140 CISCO 20090114 IronPort Encryption Appliance / PostX and PXE Encryption Vulnerabilities SECTRACK 1021593 SECUNIA 33479 OSVDB 51395 PXE Encryption in Cisco IronPort Encryption Appliance 6.2.4 before 6.2.4.1.1, 6.2.5, 6.2.6, 6.2.7 before 6.2.7.7, 6.3 before 6.3.0.4, and 6.5 before 6.5.0.2; and Cisco IronPort PostX 6.2.1 before 6.2.1.1 and 6.2.2 before 6.2.2.3; allows remote attackers to obtain the decryption key via unspecified vectors, related to a "logic error." cpe:/h:cisco:ironport_encryption_appliance:6.2.7.4 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.5 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.2 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.3 cpe:/h:cisco:ironport_postx:6.2.2.2 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.1 cpe:/h:cisco:ironport_postx:6.2.2.1 cpe:/h:cisco:ironport_encryption_appliance:6.2.4.1 cpe:/h:cisco:ironport_postx:6.2.2 cpe:/h:cisco:ironport_postx:6.2.1 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.6 cpe:/h:cisco:ironport_encryption_appliance:6.2.7 cpe:/h:cisco:ironport_encryption_appliance:6.3 cpe:/h:cisco:ironport_encryption_appliance:6.5 cpe:/h:cisco:ironport_encryption_appliance:6.2.4 cpe:/h:cisco:ironport_encryption_appliance:6.3.0.1 cpe:/h:cisco:ironport_encryption_appliance:6.3.0.2 cpe:/h:cisco:ironport_encryption_appliance:6.2.5 cpe:/h:cisco:ironport_encryption_appliance:6.3.0.3 cpe:/h:cisco:ironport_encryption_appliance:6.2.6 cpe:/h:cisco:ironport_encryption_appliance:6.5.0.1 CVE-2009-0054 2009-01-16T16:30:03.437-05:00 2009-02-05T01:53:06.860-05:00 4.3 NETWORK MEDIUM NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-01-19T15:18:00.000-05:00 BID 33268 VUPEN ADV-2009-0140 CISCO 20090114 IronPort Encryption Appliance / PostX and PXE Encryption Vulnerabilities SECTRACK 1021593 SECUNIA 33479 OSVDB 51396 PXE Encryption in Cisco IronPort Encryption Appliance 6.2.4 before 6.2.4.1.1, 6.2.5, 6.2.6, 6.2.7 before 6.2.7.7, 6.3 before 6.3.0.4, and 6.5 before 6.5.0.2; and Cisco IronPort PostX 6.2.1 before 6.2.1.1 and 6.2.2 before 6.2.2.3; allows remote attackers to capture credentials by tricking a user into reading a modified or crafted e-mail message. cpe:/h:cisco:ironport_encryption_appliance:6.2.7.4 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.5 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.2 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.3 cpe:/h:cisco:ironport_postx:6.2.2.2 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.1 cpe:/h:cisco:ironport_postx:6.2.2.1 cpe:/h:cisco:ironport_encryption_appliance:6.2.4.1 cpe:/h:cisco:ironport_postx:6.2.2 cpe:/h:cisco:ironport_postx:6.2.1 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.6 cpe:/h:cisco:ironport_encryption_appliance:6.2.7 cpe:/h:cisco:ironport_encryption_appliance:6.3 cpe:/h:cisco:ironport_encryption_appliance:6.5 cpe:/h:cisco:ironport_encryption_appliance:6.2.4 cpe:/h:cisco:ironport_encryption_appliance:6.3.0.1 cpe:/h:cisco:ironport_encryption_appliance:6.3.0.2 cpe:/h:cisco:ironport_encryption_appliance:6.2.5 cpe:/h:cisco:ironport_encryption_appliance:6.3.0.3 cpe:/h:cisco:ironport_encryption_appliance:6.2.6 cpe:/h:cisco:ironport_encryption_appliance:6.5.0.1 CVE-2009-0055 2009-01-16T16:30:03.453-05:00 2009-02-05T01:53:07.093-05:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-19T15:27:00.000-05:00 BID 33268 VUPEN ADV-2009-0140 CISCO 20090114 IronPort Encryption Appliance / PostX and PXE Encryption Vulnerabilities SECTRACK 1021594 SECUNIA 33479 OSVDB 51397 Cross-site request forgery (CSRF) vulnerability in the administration interface in Cisco IronPort Encryption Appliance 6.2.4 before 6.2.4.1.1, 6.2.5, 6.2.6, 6.2.7 before 6.2.7.7, 6.3 before 6.3.0.4, and 6.5 before 6.5.0.2; and Cisco IronPort PostX 6.2.1 before 6.2.1.1 and 6.2.2 before 6.2.2.3; allows remote attackers to modify appliance preferences as arbitrary users via unspecified vectors. cpe:/h:cisco:ironport_encryption_appliance:6.2.7.4 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.5 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.2 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.3 cpe:/h:cisco:ironport_postx:6.2.2.2 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.1 cpe:/h:cisco:ironport_postx:6.2.2.1 cpe:/h:cisco:ironport_encryption_appliance:6.2.4.1 cpe:/h:cisco:ironport_postx:6.2.2 cpe:/h:cisco:ironport_postx:6.2.1 cpe:/h:cisco:ironport_encryption_appliance:6.2.7.6 cpe:/h:cisco:ironport_encryption_appliance:6.2.7 cpe:/h:cisco:ironport_encryption_appliance:6.3 cpe:/h:cisco:ironport_encryption_appliance:6.5 cpe:/h:cisco:ironport_encryption_appliance:6.2.4 cpe:/h:cisco:ironport_encryption_appliance:6.3.0.1 cpe:/h:cisco:ironport_encryption_appliance:6.3.0.2 cpe:/h:cisco:ironport_encryption_appliance:6.2.5 cpe:/h:cisco:ironport_encryption_appliance:6.3.0.3 cpe:/h:cisco:ironport_encryption_appliance:6.2.6 cpe:/h:cisco:ironport_encryption_appliance:6.5.0.1 CVE-2009-0056 2009-01-16T16:30:03.467-05:00 2009-02-05T01:53:07.280-05:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-19T15:30:00.000-05:00 BID 33268 VUPEN ADV-2009-0140 CISCO 20090114 IronPort Encryption Appliance / PostX and PXE Encryption Vulnerabilities SECTRACK 1021594 SECUNIA 33479 OSVDB 51398 Cross-site request forgery (CSRF) vulnerability in the administration interface in Cisco IronPort Encryption Appliance 6.2.4 before 6.2.4.1.1, 6.2.5, 6.2.6, 6.2.7 before 6.2.7.7, 6.3 before 6.3.0.4, and 6.5 before 6.5.0.2; and Cisco IronPort PostX 6.2.1 before 6.2.1.1 and 6.2.2 before 6.2.2.3; allows remote attackers to execute commands and modify appliance preferences as arbitrary users via a logout action. cpe:/o:sun:opensolaris:snv_105::x86 cpe:/o:sun:opensolaris:snv_86::sparc cpe:/o:sun:opensolaris:snv_73::sparc cpe:/o:sun:opensolaris:snv_79::x86 cpe:/o:sun:opensolaris:snv_90::sparc cpe:/o:sun:opensolaris:snv_69::sparc cpe:/o:sun:opensolaris:snv_67::sparc cpe:/o:sun:opensolaris:snv_88::sparc cpe:/o:sun:opensolaris:snv_65::sparc cpe:/o:sun:opensolaris:snv_92::sparc cpe:/o:sun:opensolaris:snv_94::sparc cpe:/o:sun:opensolaris:snv_91::x86 cpe:/o:sun:opensolaris:snv_98::x86 cpe:/o:sun:opensolaris:snv_69::x86 cpe:/o:sun:opensolaris:snv_93::sparc cpe:/o:sun:opensolaris:snv_68::sparc cpe:/o:sun:opensolaris:snv_76::x86 cpe:/o:sun:opensolaris:snv_75::sparc cpe:/o:sun:opensolaris:snv_101::x86 cpe:/o:sun:opensolaris:snv_83::x86 cpe:/o:sun:opensolaris:snv_66::x86 cpe:/o:sun:opensolaris:snv_103::x86 cpe:/o:sun:opensolaris:snv_93::x86 cpe:/o:sun:opensolaris:snv_62::x86 cpe:/o:sun:opensolaris:snv_95::x86 cpe:/o:sun:opensolaris:snv_66::sparc cpe:/o:sun:opensolaris:snv_80::x86 cpe:/o:sun:opensolaris:snv_81::sparc cpe:/o:sun:opensolaris:snv_67::x86 cpe:/o:sun:opensolaris:snv_68::x86 cpe:/o:sun:opensolaris:snv_97::x86 cpe:/o:sun:opensolaris:snv_80::sparc cpe:/o:sun:opensolaris:snv_81::x86 cpe:/o:sun:opensolaris:snv_64::sparc cpe:/o:sun:solaris:10.0::sparc cpe:/o:sun:opensolaris:snv_76::sparc cpe:/o:sun:opensolaris:snv_77::x86 cpe:/o:sun:opensolaris:snv_82::x86 cpe:/o:sun:opensolaris:snv_106::x86 cpe:/o:sun:opensolaris:snv_96::x86 cpe:/o:sun:opensolaris:snv_65::x86 cpe:/o:sun:opensolaris:snv_61::sparc cpe:/o:sun:opensolaris:snv_71::sparc cpe:/o:sun:opensolaris:snv_78::sparc cpe:/o:sun:opensolaris:snv_96::sparc cpe:/o:sun:opensolaris:snv_79::sparc cpe:/o:sun:opensolaris:snv_95::sparc cpe:/o:sun:opensolaris:snv_91::sparc cpe:/o:sun:opensolaris:snv_104::sparc cpe:/o:sun:opensolaris:snv_72::sparc cpe:/o:sun:opensolaris:snv_70::x86 cpe:/o:sun:opensolaris:snv_99::sparc cpe:/o:sun:opensolaris:snv_100::x86 cpe:/o:sun:opensolaris:snv_90::x86 cpe:/o:sun:opensolaris:snv_61::x86 cpe:/o:sun:opensolaris:snv_99::x86 cpe:/o:sun:opensolaris:snv_84::x86 cpe:/o:sun:opensolaris:snv_64::x86 cpe:/o:sun:opensolaris:snv_83::sparc cpe:/o:sun:opensolaris:snv_98::sparc cpe:/o:sun:opensolaris:snv_106::sparc cpe:/o:sun:opensolaris:snv_74::x86 cpe:/o:sun:opensolaris:snv_105::sparc cpe:/o:sun:opensolaris:snv_86::x86 cpe:/o:sun:opensolaris:snv_82::sparc cpe:/o:sun:opensolaris:snv_84::sparc cpe:/o:sun:opensolaris:snv_97::sparc cpe:/o:sun:opensolaris:snv_92::x86 cpe:/o:sun:opensolaris:snv_85::x86 cpe:/o:sun:opensolaris:snv_74::sparc cpe:/o:sun:opensolaris:snv_78::x86 cpe:/o:sun:opensolaris:snv_63::sparc cpe:/o:sun:opensolaris:snv_77::sparc cpe:/o:sun:opensolaris:snv_89::x86 cpe:/o:sun:opensolaris:snv_87::x86 cpe:/o:sun:opensolaris:snv_63::x86 cpe:/o:sun:opensolaris:snv_88::x86 cpe:/o:sun:opensolaris:snv_102::sparc cpe:/o:sun:opensolaris:snv_101::sparc cpe:/o:sun:opensolaris:snv_100::sparc cpe:/o:sun:opensolaris:snv_72::x86 cpe:/o:sun:opensolaris:snv_75::x86 cpe:/o:sun:opensolaris:snv_62::sparc cpe:/o:sun:opensolaris:snv_89::sparc cpe:/o:sun:opensolaris:snv_87::sparc cpe:/o:sun:opensolaris:snv_71::x86 cpe:/o:sun:opensolaris:snv_70::sparc cpe:/o:sun:solaris:10.0::x86 cpe:/o:sun:opensolaris:snv_104::x86 cpe:/o:sun:opensolaris:snv_103::sparc cpe:/o:sun:opensolaris:snv_94::x86 cpe:/o:sun:opensolaris:snv_85::sparc cpe:/o:sun:opensolaris:snv_102::x86 cpe:/o:sun:opensolaris:snv_73::x86 CVE-2009-0167 2009-01-16T16:30:03.483-05:00 2009-03-04T01:48:33.077-05:00 4.7 LOCAL MEDIUM NONE NONE NONE COMPLETE http://nvd.nist.gov 2009-01-19T16:01:00.000-05:00 CONFIRM http://sunsolve.sun.com/search/document.do?assetkey=1-21-139390-01-1 SECTRACK 1021601 BID 33269 VUPEN ADV-2009-0155 CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2009-026.htm SUNALERT 249306 SECUNIA 33705 SECUNIA 33488 MISC http://opensolaris.org/os/bug_reports/request_sponsor/ Unspecified vulnerability in lpadmin in Sun Solaris 10 and OpenSolaris snv_61 through snv_106 allows local users to cause a denial of service via unspecified vectors, related to enumeration of "wrong printers," aka a "Temporary file vulnerability." cpe:/o:sun:opensolaris:snv_86::sparc cpe:/o:sun:opensolaris:snv_105::x86 cpe:/o:sun:opensolaris:snv_73::sparc cpe:/o:sun:opensolaris:snv_79::x86 cpe:/o:sun:opensolaris:snv_90::sparc cpe:/o:sun:opensolaris:snv_69::sparc cpe:/o:sun:opensolaris:snv_67::sparc cpe:/o:sun:opensolaris:snv_88::sparc cpe:/o:sun:opensolaris:snv_65::sparc cpe:/o:sun:opensolaris:snv_92::sparc cpe:/o:sun:opensolaris:snv_94::sparc cpe:/o:sun:opensolaris:snv_91::x86 cpe:/o:sun:opensolaris:snv_98::x86 cpe:/o:sun:opensolaris:snv_69::x86 cpe:/o:sun:opensolaris:snv_93::sparc cpe:/o:sun:opensolaris:snv_68::sparc cpe:/o:sun:opensolaris:snv_76::x86 cpe:/o:sun:opensolaris:snv_75::sparc cpe:/o:sun:opensolaris:snv_83::x86 cpe:/o:sun:opensolaris:snv_101::x86 cpe:/o:sun:opensolaris:snv_66::x86 cpe:/o:sun:opensolaris:snv_103::x86 cpe:/o:sun:opensolaris:snv_62::x86 cpe:/o:sun:opensolaris:snv_93::x86 cpe:/o:sun:opensolaris:snv_66::sparc cpe:/o:sun:opensolaris:snv_95::x86 cpe:/o:sun:opensolaris:snv_81::sparc cpe:/o:sun:opensolaris:snv_80::x86 cpe:/o:sun:solaris:10::x86 cpe:/o:sun:opensolaris:snv_67::x86 cpe:/o:sun:opensolaris:snv_68::x86 cpe:/o:sun:opensolaris:snv_80::sparc cpe:/o:sun:opensolaris:snv_97::x86 cpe:/o:sun:opensolaris:snv_81::x86 cpe:/o:sun:opensolaris:snv_64::sparc cpe:/o:sun:opensolaris:snv_76::sparc cpe:/o:sun:opensolaris:snv_77::x86 cpe:/o:sun:opensolaris:snv_82::x86 cpe:/o:sun:opensolaris:snv_106::x86 cpe:/o:sun:opensolaris:snv_65::x86 cpe:/o:sun:opensolaris:snv_96::x86 cpe:/o:sun:opensolaris:snv_61::sparc cpe:/o:sun:opensolaris:snv_71::sparc cpe:/o:sun:opensolaris:snv_78::sparc cpe:/o:sun:opensolaris:snv_96::sparc cpe:/o:sun:opensolaris:snv_79::sparc cpe:/o:sun:opensolaris:snv_95::sparc cpe:/o:sun:opensolaris:snv_91::sparc cpe:/o:sun:opensolaris:snv_72::sparc cpe:/o:sun:opensolaris:snv_104::sparc cpe:/o:sun:opensolaris:snv_70::x86 cpe:/o:sun:opensolaris:snv_99::sparc cpe:/o:sun:opensolaris:snv_100::x86 cpe:/o:sun:opensolaris:snv_90::x86 cpe:/o:sun:opensolaris:snv_61::x86 cpe:/o:sun:opensolaris:snv_99::x86 cpe:/o:sun:opensolaris:snv_84::x86 cpe:/o:sun:opensolaris:snv_83::sparc cpe:/o:sun:opensolaris:snv_64::x86 cpe:/o:sun:opensolaris:snv_98::sparc cpe:/o:sun:opensolaris:snv_106::sparc cpe:/o:sun:opensolaris:snv_74::x86 cpe:/o:sun:opensolaris:snv_105::sparc cpe:/o:sun:opensolaris:snv_84::sparc cpe:/o:sun:opensolaris:snv_82::sparc cpe:/o:sun:opensolaris:snv_86::x86 cpe:/o:sun:opensolaris:snv_97::sparc cpe:/o:sun:opensolaris:snv_92::x86 cpe:/o:sun:opensolaris:snv_74::sparc cpe:/o:sun:opensolaris:snv_78::x86 cpe:/o:sun:opensolaris:snv_85::x86 cpe:/o:sun:opensolaris:snv_63::sparc cpe:/o:sun:opensolaris:snv_77::sparc cpe:/o:sun:opensolaris:snv_87::x86 cpe:/o:sun:opensolaris:snv_89::x86 cpe:/o:sun:opensolaris:snv_63::x86 cpe:/o:sun:opensolaris:snv_88::x86 cpe:/o:sun:opensolaris:snv_101::sparc cpe:/o:sun:opensolaris:snv_102::sparc cpe:/o:sun:opensolaris:snv_100::sparc cpe:/o:sun:opensolaris:snv_75::x86 cpe:/o:sun:opensolaris:snv_72::x86 cpe:/o:sun:opensolaris:snv_62::sparc cpe:/o:sun:opensolaris:snv_89::sparc cpe:/o:sun:solaris:10::sparc cpe:/o:sun:opensolaris:snv_87::sparc cpe:/o:sun:opensolaris:snv_70::sparc cpe:/o:sun:opensolaris:snv_71::x86 cpe:/o:sun:opensolaris:snv_104::x86 cpe:/o:sun:opensolaris:snv_85::sparc cpe:/o:sun:opensolaris:snv_103::sparc cpe:/o:sun:opensolaris:snv_94::x86 cpe:/o:sun:opensolaris:snv_73::x86 cpe:/o:sun:opensolaris:snv_102::x86 CVE-2009-0168 2009-01-16T16:30:03.517-05:00 2009-03-04T01:48:33.203-05:00 4.9 LOCAL LOW NONE NONE NONE COMPLETE http://nvd.nist.gov 2009-01-19T16:41:00.000-05:00 SUNALERT 249306 CONFIRM http://sunsolve.sun.com/search/document.do?assetkey=1-21-139390-01-1 XF solaris-ppdmgr-dos(48143) SECTRACK 1021601 BID 33269 VUPEN ADV-2009-0155 CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2009-026.htm SECUNIA 33705 SECUNIA 33488 MISC http://opensolaris.org/os/bug_reports/request_sponsor/ Unspecified vulnerability in ppdmgr in Sun Solaris 10 and OpenSolaris snv_61 through snv_106 allows local users to cause a denial of service via unspecified vectors, related to a failure to "include all cache files," and improper handling of temporary files. cpe:/a:sun:java_system_access_manager:7.1::solaris_sparc cpe:/a:sun:java_system_access_manager:7.1::linux cpe:/a:sun:java_system_access_manager:7.1::solaris_x86 cpe:/a:sun:java_system_access_manager:7.1::windows CVE-2009-0169 2009-01-16T16:30:03.530-05:00 2009-01-29T02:01:04.640-05:00 9.0 NETWORK LOW SINGLE_INSTANCE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-19T16:36:00.000-05:00 ALLOWS_ADMIN_ACCESS BID 33266 CONFIRM http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-02-1 XF sun-jsam-subrealm-privilege-escalation(47944) SECTRACK 1021604 VUPEN ADV-2009-0157 SUNALERT 249106 Sun Java System Access Manager 7.1 allows remote authenticated sub-realm administrators to gain privileges, as demonstrated by creating the amadmin account in the sub-realm, and then logging in as amadmin in the root realm. cpe:/a:sun:java_system_access_manager:7.0_2005q4 cpe:/a:sun:java_system_access_manager:7.1 cpe:/a:sun:java_system_access_manager:6.3_2005q4 CVE-2009-0170 2009-01-16T16:30:03.547-05:00 2009-02-05T01:53:15.233-05:00 6.0 NETWORK MEDIUM SINGLE_INSTANCE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-19T14:12:00.000-05:00 BID 33265 SUNALERT 242166 CONFIRM http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-02-1 XF sun-jsam-password-info-disclosure(47942) SECTRACK 1021605 VUPEN ADV-2009-0156 Sun Java System Access Manager 6.3 2005Q1, 7 2005Q4, and 7.1 allows remote authenticated users with console privileges to discover passwords, and obtain unspecified other "access to resources," by visiting the Configuration Items component in the console. cpe:/h:sun:sparc_enterprise_server:m5000 cpe:/h:sun:sparc_enterprise_server:m4000 CVE-2009-0171 2009-01-16T16:30:03.563-05:00 2009-02-05T00:00:00.000-05:00 10.0 NETWORK LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-19T13:34:00.000-05:00 ALLOWS_ADMIN_ACCESS SECTRACK 1021602 BID 33280 VUPEN ADV-2009-0207 SUNALERT 249126 The Sun SPARC Enterprise M4000 and M5000 Server, within a certain range of serial numbers, allows remote attackers to use the manufacturing root password, perform a root login to the eXtended System Control Facility Unit (aka XSCFU or Service Processor), and have unspecified other impact. cpe:/a:ibm:db2_universal_database:9.1:fp2:linux cpe:/a:ibm:db2_universal_database:9.5:fp1:linux cpe:/a:ibm:db2_universal_database:9.1:fp4:aix cpe:/a:ibm:db2_universal_database:9.1:fp4:linux cpe:/a:ibm:db2_universal_database:9.5 cpe:/a:ibm:db2_universal_database:9.1:fp4a:linux cpe:/a:ibm:db2_universal_database:9.5::windows cpe:/a:ibm:db2_universal_database:9.5:fp1:solaris cpe:/a:ibm:db2_universal_database:9.1::hp-ux cpe:/a:ibm:db2_universal_database:9.1:fp4 cpe:/a:ibm:db2_universal_database:9.1:fp2 cpe:/a:ibm:db2_universal_database:9.1::windows cpe:/a:ibm:db2_universal_database:9.1::solaris cpe:/a:ibm:db2_universal_database:9.1:fp4a:windows cpe:/a:ibm:db2_universal_database:9.5:fp1:aix cpe:/a:ibm:db2_universal_database:9.1:fp2:aix cpe:/a:ibm:db2_universal_database:9.1:fp4:hp-ux cpe:/a:ibm:db2_universal_database:9.1:ga cpe:/a:ibm:db2_universal_database:9.1:fp2:hp-ux cpe:/a:ibm:db2_universal_database:9.1:fp3:solaris cpe:/a:ibm:db2_universal_database:9.5:fp1:windows cpe:/a:ibm:db2_universal_database:9.1:fp2:windows cpe:/a:ibm:db2_universal_database:9.5::hp-ux cpe:/a:ibm:db2_universal_database:9.1::aix cpe:/a:ibm:db2_universal_database:9.1:fp4a cpe:/a:ibm:db2_universal_database:9.5:fp1:hp-ux cpe:/a:ibm:db2_universal_database:9.1:fp4:windows cpe:/a:ibm:db2_universal_database:9.5::solaris cpe:/a:ibm:db2_universal_database:9.5::linux cpe:/a:ibm:db2_universal_database:9.5::aix cpe:/a:ibm:db2_universal_database:9.1:fp2:solaris cpe:/a:ibm:db2_universal_database:9.1:fp3:hp-ux cpe:/a:ibm:db2_universal_database:9.1::linux cpe:/a:ibm:db2_universal_database:9.1:fp3:aix cpe:/a:ibm:db2_universal_database:9.1:fp4a:hp-ux CVE-2009-0172 2009-01-16T16:30:03.593-05:00 2009-06-05T01:26:09.390-04:00 5.0 NETWORK LOW NONE NONE NONE PARTIAL http://nvd.nist.gov 2009-01-19T13:25:00.000-05:00 BID 33258 CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21363936 XF ibm-db2-connect-stream-dos(47931) VUPEN ADV-2009-0137 AIXAPAR IZ37696 SECTRACK 1021591 SECUNIA 33529 CONFIRM ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TXT CONFIRM ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v91/APARLIST.TXT CONFIRM ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v82/APARLIST.TXT Unspecified vulnerability in IBM DB2 8 before FP17a, 9.1 before FP6a, and 9.5 before FP3a allows remote attackers to cause a denial of service (infinite loop) via a crafted CONNECT data stream. cpe:/a:ibm:db2_universal_database:9.1:fp2:linux cpe:/a:ibm:db2_universal_database:9.5:fp1:linux cpe:/a:ibm:db2_universal_database:9.1:fp4:aix cpe:/a:ibm:db2_universal_database:9.1:fp4:linux cpe:/a:ibm:db2_universal_database:9.5 cpe:/a:ibm:db2_universal_database:9.1:fp4a:linux cpe:/a:ibm:db2_universal_database:9.5::windows cpe:/a:ibm:db2_universal_database:9.5:fp1:solaris cpe:/a:ibm:db2_universal_database:9.1::hp-ux cpe:/a:ibm:db2_universal_database:9.1:fp4 cpe:/a:ibm:db2_universal_database:9.1:fp2 cpe:/a:ibm:db2_universal_database:9.1::windows cpe:/a:ibm:db2_universal_database:9.1::solaris cpe:/a:ibm:db2_universal_database:9.1:fp4a:windows cpe:/a:ibm:db2_universal_database:9.5:fp1:aix cpe:/a:ibm:db2_universal_database:9.1:fp2:aix cpe:/a:ibm:db2_universal_database:9.1:fp4:hp-ux cpe:/a:ibm:db2_universal_database:9.1:ga cpe:/a:ibm:db2_universal_database:9.1:fp2:hp-ux cpe:/a:ibm:db2_universal_database:9.1:fp3:solaris cpe:/a:ibm:db2_universal_database:9.5:fp1:windows cpe:/a:ibm:db2_universal_database:9.1:fp2:windows cpe:/a:ibm:db2_universal_database:9.5::hp-ux cpe:/a:ibm:db2_universal_database:9.1::aix cpe:/a:ibm:db2_universal_database:9.1:fp4a cpe:/a:ibm:db2_universal_database:9.5:fp1:hp-ux cpe:/a:ibm:db2_universal_database:9.1:fp4:windows cpe:/a:ibm:db2_universal_database:9.5::solaris cpe:/a:ibm:db2_universal_database:9.5::linux cpe:/a:ibm:db2_universal_database:9.5::aix cpe:/a:ibm:db2_universal_database:9.1:fp2:solaris cpe:/a:ibm:db2_universal_database:9.1:fp3:hp-ux cpe:/a:ibm:db2_universal_database:9.1::linux cpe:/a:ibm:db2_universal_database:9.1:fp3:aix cpe:/a:ibm:db2_universal_database:9.1:fp4a:hp-ux CVE-2009-0173 2009-01-16T16:30:03.610-05:00 2009-06-05T01:26:09.517-04:00 5.0 NETWORK LOW NONE NONE NONE PARTIAL http://nvd.nist.gov 2009-01-19T13:09:00.000-05:00 CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21363936 XF ibm-db2-datastream-dos(47934) BID 33258 VUPEN ADV-2009-0137 AIXAPAR IZ39652 SECTRACK 1021591 SECUNIA 33529 CONFIRM ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TXT CONFIRM ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v91/APARLIST.TXT CONFIRM ftp://ftp.software.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v82/APARLIST.TXT Unspecified vulnerability in the server in IBM DB2 8 before FP17a, 9.1 before FP6a, and 9.5 before FP3a allows remote authenticated users to cause a denial of service (trap) via a crafted data stream. cpe:/a:vuplayer:vuplayer:2.49 CVE-2009-0174 2009-01-20T11:00:08.967-05:00 2009-01-29T02:01:05.547-05:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-20T12:11:00.000-05:00 ALLOWS_ADMIN_ACCESS XF vuplayer-asx-bo(47851) BID 33185 MILW0RM 7715 MILW0RM 7714 MILW0RM 7713 MILW0RM 7709 SREASON 4918 Stack-based buffer overflow in VUPlayer 2.49 allows remote attackers to execute arbitrary code via a long .asf URI in the HREF attribute of a REF element in a .asx file. cpe:/a:heathcosoft:mp3_trackmaker:1.5 CVE-2009-0175 2009-01-20T11:00:08.983-05:00 2009-01-29T02:01:05.750-05:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-20T12:15:00.000-05:00 XF mp3trackmaker-mp3-bo(47852) BID 33183 MILW0RM 7708 SREASON 4920 Heap-based buffer overflow in Heathco Software MP3 TrackMaker 1.5 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long string in an invalid .mp3 file. cpe:/a:research_in_motion_limited:blackberry_enterprise_server:4.1.3 cpe:/a:research_in_motion_limited:blackberry_enterprise_server:4.1.4 cpe:/a:research_in_motion_limited:blackberry_professional_software:4.1.4 cpe:/a:research_in_motion_limited:blackberry_unite:1.0.1 cpe:/a:research_in_motion_limited:blackberry_unite:1.0.2 cpe:/a:research_in_motion_limited:blackberry_unite:1.0.3 cpe:/a:research_in_motion_limited:blackberry_unite:1.0 cpe:/a:research_in_motion_limited:blackberry_enterprise_server:4.1.5 cpe:/a:research_in_motion_limited:blackberry_enterprise_server:4.1.6 CVE-2009-0176 2009-01-20T11:00:09.000-05:00 2009-05-18T00:00:00.000-04:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-20T12:34:00.000-05:00 BID 33224 CONFIRM http://www.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB17119 CONFIRM http://www.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB17118 SECUNIA 33534 IDEFENSE 20090113 RIM BlackBerry Enterprise Server Attachment Service PDF Distiller 'bitmaps' Heap Overflow Vulnerability IDEFENSE 20090113 RIM BlackBerry Enterprise Server Attachment Service PDF Distiller 'symWidths' Heap Overflow Vulnerability Multiple heap-based buffer overflows in the PDF distiller in the Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 allow user-assisted remote attackers to execute arbitrary code via (1) a crafted stream in a .pdf file, related to "symWidths"; or (2) a crafted data stream in a .pdf file, related to "bitmaps." cpe:/a:vmware:vmware_workstation:5.5.8 cpe:/a:vmware:vmware_workstation:4.5.3 cpe:/a:vmware:vmware_player:2.5 cpe:/a:vmware:vmware_workstation:6.0.4 cpe:/a:vmware:vmware_workstation:6.0.5 cpe:/a:vmware:vmware_player:2.0 cpe:/a:vmware:vmware_player:1.05 cpe:/a:vmware:vmware_workstation:5.5.5 cpe:/a:vmware:vmware_workstation:5.5.4 cpe:/a:vmware:vmware_workstation:5.5.7 cpe:/a:vmware:vmware_workstation:5.5.6 cpe:/a:vmware:vmware_workstation:5.5.1 cpe:/a:vmware:vmware_workstation:6.0.2 cpe:/a:vmware:vmware_workstation:5.5.0 cpe:/a:vmware:vmware_workstation:6.0.3 cpe:/a:vmware:vmware_workstation:5.5.3 cpe:/a:vmware:vmware_workstation:5.5.2 cpe:/a:vmware:vmware_workstation:6.0.1 cpe:/a:vmware:vmware_player:2.0.1 cpe:/a:vmware:vmware_workstation:5.0 cpe:/a:vmware:vmware_player:2.5.1 cpe:/a:vmware:vmware_player:2.0.3 cpe:/a:vmware:vmware_player:2.0.2 cpe:/a:vmware:vmware_workstation:6.5 cpe:/a:vmware:vmware_player:2.0.5 cpe:/a:vmware:vmware_player:2.0.4 cpe:/a:vmware:vmware_workstation:6.0 cpe:/a:vmware:vmware_player:1.0.6 cpe:/a:vmware:vmware_player:1.0.8 cpe:/a:vmware:vmware_player:1.0.7 cpe:/a:vmware:vmware_player:1.0.9 cpe:/a:vmware:vmware_player:1.0.0 cpe:/a:vmware:vmware_player:1.0.2 cpe:/a:vmware:vmware_player:1.0.1 cpe:/a:vmware:vmware_workstation:6.51 cpe:/a:vmware:vmware_player:1.0.4 cpe:/a:vmware:vmware_player:1.0.3 CVE-2009-0177 2009-01-20T11:00:09.030-05:00 2009-04-23T00:00:00.000-04:00 5.0 NETWORK LOW NONE NONE NONE PARTIAL http://nvd.nist.gov 2009-01-20T12:37:00.000-05:00 CONFIRM http://www.vmware.com/security/advisories/VMSA-2009-0005.html VUPEN ADV-2009-0024 FULLDISC 20090403 VMSA-2009-0005 VMware Hosted products, VI Client and patches for ESX and ESXi resolve multiple security issues MLIST [security-announce] 20090403 VMSA-2009-0005 VMware Hosted products, VI Client and patches for ESX and ESXi resolve multiple security issues VUPEN ADV-2009-0944 SECTRACK 1021512 BID 34373 SECUNIA 34601 SECUNIA 33372 OSVDB 51180 MILW0RM 7647 vmwarebase.dll, as used in the vmware-authd service (aka vmware-authd.exe), in VMware Workstation 6.5.1 build 126130, 6.5.1 and earlier; VMware Player 2.5.1 build 126130, 2.5.1 and earlier; VMware ACE 2.5.1 and earlier; VMware Server 2.0.x before 2.0.1 build 156745; and VMware Fusion before 2.0.2 build 147997 allows remote attackers to cause a denial of service (daemon crash) via a long (1) USER or (2) PASS command. cpe:/a:ibm:hardware_management_console:7.3.2.0:sp1 CVE-2009-0178 2009-01-20T11:30:00.420-05:00 2009-01-26T14:24:26.807-05:00 10.0 NETWORK LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-21T09:36:00.000-05:00 XF ibm-hmc-unspecified(48010) CONFIRM http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=4521 BID 33293 VUPEN ADV-2009-0158 SECUNIA 33518 OSVDB 51432 Unspecified vulnerability in IBM Hardware Management Console (HMC) 7 release 3.2.0 SP1 has unknown impact and attack vectors. cpe:/a:igno_saitz:libmikmod:3.1.9-5 cpe:/a:igno_saitz:libmikmod:3.1.9-6 cpe:/a:igno_saitz:libmikmod:3.1.9-3 cpe:/a:igno_saitz:libmikmod:3.1.12 cpe:/a:igno_saitz:libmikmod:3.1.9-4 cpe:/a:igno_saitz:libmikmod:3.1.10-5 cpe:/a:igno_saitz:libmikmod:3.1.9-1 cpe:/a:igno_saitz:libmikmod:3.1.10-4 cpe:/a:igno_saitz:libmikmod:3.1.9-2 cpe:/a:igno_saitz:libmikmod:3.1.10-3 cpe:/a:igno_saitz:libmikmod:3.1.11-1 cpe:/a:igno_saitz:libmikmod:3.1.10-2 cpe:/a:igno_saitz:libmikmod:3.1.11-2 cpe:/a:igno_saitz:libmikmod:3.1.11-3 cpe:/a:igno_saitz:libmikmod:3.1.10-1 cpe:/a:igno_saitz:libmikmod:3.1.11-4 cpe:/a:igno_saitz:libmikmod:3.1.11-5 cpe:/a:igno_saitz:libmikmod:3.1.11-6 cpe:/a:igno_saitz:libmikmod:3.2.0 CVE-2009-0179 2009-01-20T11:30:00.453-05:00 2009-09-02T01:20:21.140-04:00 4.3 NETWORK MEDIUM NONE NONE NONE PARTIAL http://nvd.nist.gov 2009-01-21T09:44:00.000-05:00 FEDORA FEDORA-2009-9112 FEDORA FEDORA-2009-9095 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=479833 BID 33240 SECUNIA 34259 MLIST [oss-security] 20090113 CVE Request -- libmikmod SUSE SUSE-SR:2009:006 MISC http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=476339 libmikmod 3.1.11 through 3.2.0, as used by MikMod and possibly other products, allows user-assisted attackers to cause a denial of service (application crash) by loading an XM file. cpe:/a:nfs:nfs-utils:1.0.10 cpe:/a:nfs:nfs-utils:1.0.11 cpe:/a:nfs:nfs-utils:1.0.8:rc-3 cpe:/a:nfs:nfs-utils:1.1.1 cpe:/a:nfs:nfs-utils:1.0.8:rc-4 cpe:/a:nfs:nfs-utils:1.1.0 cpe:/a:nfs:nfs-utils:1.1.3 cpe:/a:nfs:nfs-utils:1.0.8:rc-1 cpe:/a:nfs:nfs-utils:1.1.2 cpe:/a:nfs:nfs-utils:1.0.8:rc-2 cpe:/a:nfs:nfs-utils:1.0.12 cpe:/a:nfs:nfs-utils:1.1.4 cpe:/a:nfs:nfs-utils:1.0 cpe:/a:nfs:nfs-utils:1.0.7:pre-1 cpe:/a:nfs:nfs-utils:0.3.3 cpe:/a:nfs:nfs-utils:0.3.1 cpe:/a:nfs:nfs-utils:0.2.1 cpe:/a:nfs:nfs-utils:1.1.0:rc-1 cpe:/a:nfs:nfs-utils:1.0.7:pre-2 cpe:/a:nfs:nfs-utils:0.2 cpe:/a:nfs:nfs-utils:1.0.6 cpe:/a:nfs:nfs-utils:1.0.3 cpe:/a:nfs:nfs-utils:1.0.4 cpe:/a:nfs:nfs-utils:1.0.1 cpe:/a:nfs:nfs-utils:1.0.2 cpe:/a:nfs:nfs-utils:1.0.9 cpe:/a:nfs:nfs-utils:1.0.7 cpe:/a:nfs:nfs-utils:1.0.8 CVE-2009-0180 2009-01-20T11:30:00.467-05:00 2009-01-21T00:00:00.000-05:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-01-21T09:49:00.000-05:00 ALLOWS_OTHER_ACCESS FEDORA FEDORA-2009-0297 FEDORA FEDORA-2009-0266 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=477864 XF nfsutils-tcpwrapper-security-bypass(48058) BID 33294 SECUNIA 33545 Certain Fedora build scripts for nfs-utils before 1.1.2-9.fc9 on Fedora 9, and before 1.1.4-6.fc10 on Fedora 10, omit TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions, possibly a related issue to CVE-2008-1376. cpe:/a:vuplayer:vuplayer CVE-2009-0181 2009-01-20T11:30:00.483-05:00 2009-01-29T02:01:06.877-05:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-21T09:55:00.000-05:00 XF vuplayer-file-bo(48169) BUGTRAQ 20090106 VUPLAYER BufferOver flow POC SREASON 4921 Buffer overflow in VUPlayer allows user-assisted attackers to have an unknown impact via a long file, as demonstrated by a file composed entirely of 'A' characters. cpe:/a:vuplayer:vuplayer:2.11 cpe:/a:vuplayer:vuplayer:1.04 cpe:/a:vuplayer:vuplayer:1.01 cpe:/a:vuplayer:vuplayer:1.7 cpe:/a:vuplayer:vuplayer:1.8 cpe:/a:vuplayer:vuplayer:1.9 cpe:/a:vuplayer:vuplayer:1.3 cpe:/a:vuplayer:vuplayer:1.4 cpe:/a:vuplayer:vuplayer:1.5 cpe:/a:vuplayer:vuplayer:2.1 cpe:/a:vuplayer:vuplayer:2.0 cpe:/a:vuplayer:vuplayer:1.6 cpe:/a:vuplayer:vuplayer:2.3 cpe:/a:vuplayer:vuplayer:1.0 cpe:/a:vuplayer:vuplayer:2.2 cpe:/a:vuplayer:vuplayer:1.1 cpe:/a:vuplayer:vuplayer:1.2 cpe:/a:vuplayer:vuplayer:2.4 cpe:/a:vuplayer:vuplayer:0.1 cpe:/a:vuplayer:vuplayer:2.22 cpe:/a:vuplayer:vuplayer:2.41 cpe:/a:vuplayer:vuplayer:2.23 cpe:/a:vuplayer:vuplayer:0.3 cpe:/a:vuplayer:vuplayer:2.02 cpe:/a:vuplayer:vuplayer:0.2 cpe:/a:vuplayer:vuplayer:2.21 cpe:/a:vuplayer:vuplayer:2.03 cpe:/a:vuplayer:vuplayer:0.5 cpe:/a:vuplayer:vuplayer:0.4 cpe:/a:vuplayer:vuplayer:2.01 cpe:/a:vuplayer:vuplayer:0.7 cpe:/a:vuplayer:vuplayer:0.6 cpe:/a:vuplayer:vuplayer:0.9 cpe:/a:vuplayer:vuplayer:2.49 cpe:/a:vuplayer:vuplayer:0.8 cpe:/a:vuplayer:vuplayer:2.48 cpe:/a:vuplayer:vuplayer:2.47 cpe:/a:vuplayer:vuplayer:2.46 cpe:/a:vuplayer:vuplayer:2.45 cpe:/a:vuplayer:vuplayer:2.44 cpe:/a:vuplayer:vuplayer:2.43 cpe:/a:vuplayer:vuplayer:2.42 cpe:/a:vuplayer:vuplayer:1.05 CVE-2009-0182 2009-01-20T11:30:00.500-05:00 2009-01-29T02:01:07.063-05:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-21T09:59:00.000-05:00 XF vuplayer-fileline-bo(48170) MILW0RM 7695 SREASON 4923 Buffer overflow in VUPlayer 2.49 and earlier allows user-assisted attackers to execute arbitrary code via a long URL in a File line in a .pls file, as demonstrated by an http URL on a File1 line. cpe:/a:research_in_motion_limited:blackberry_enterprise_server:4.1.3 cpe:/a:research_in_motion_limited:blackberry_enterprise_server:4.1.4 cpe:/a:research_in_motion_limited:blackberry_professional_software:4.1.4 cpe:/a:research_in_motion_limited:blackberry_unite:1.0.1 cpe:/a:research_in_motion_limited:blackberry_unite:1.0.2 cpe:/a:research_in_motion_limited:blackberry_unite:1.0.3 cpe:/a:research_in_motion_limited:blackberry_unite:1.0 cpe:/a:research_in_motion_limited:blackberry_enterprise_server:4.1.5 cpe:/a:research_in_motion_limited:blackberry_enterprise_server:4.1.6 CVE-2009-0219 2009-01-20T20:30:00.343-05:00 2009-02-05T01:53:18.063-05:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-01-21T09:34:00.000-05:00 SECTRACK 1021559 BID 33250 CONFIRM http://www.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB17119 CONFIRM http://www.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB17118 SECUNIA 33534 IDEFENSE 20090113 RIM BlackBerry Enterprise Server Attachment Service PDF Distiller Uninitialized Memory Vulnerability The PDF distiller in the Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 performs delete operations on uninitialized pointers, which allows user-assisted remote attackers to execute arbitrary code via a crafted data stream in a .pdf file.