SANS @RISK

Syndicate content SANS RSS Feed
All Updates From Vol: 9 - Issue: 35
URL: http://www.sans.org/newsletters/risk/display.php
Updated: 51 min 9 sec ago

(1) HIGH: Adobe Acrobat and Reader Font Parsing Remote Code Execution Vulnerability

Tue, 2010-08-10 06:00

Category: Widely Deployed Software

Affected:

  • Adobe Reader 9.3.3 and prior
  • Adobe Acrobat 9.3.3 and prior
  • Adobe Reader 8.2.3 and prior
  • Acrobat 8.2.3 and prior

Categories: Security Alerts

(2) HIGH: Apple iOS Security Bypass and PDF File Processing Vulnerability

Tue, 2010-08-10 06:00

Category: Widely Deployed Software

Affected:

  • iOS versions 4.0.1 and prior

Categories: Security Alerts

(3) HIGH: Apple Webkit SVG Multiple Vulnerabilities

Tue, 2010-08-10 06:00

Category: Widely Deployed Software

Affected:

  • Apple Safari prior to 5.0.1
  • Apple Safari prior to 4.1.1

Categories: Security Alerts

10.32.22 Intel Math Kernel Library Insecure File Permissions issue

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Cross Platform

Categories: Security Alerts

10.32.23 Cisco CDS Internet Streamer Web Server Directory Traversal

Tue, 2010-08-10 06:00

CVEs: CVE: CVE-2010-1577

Platform: Cross Platform

Categories: Security Alerts

10.32.24 EasyMail Objects "SubmitToExpress()" Method Remote Stack Buffer Overflow

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Cross Platform

Categories: Security Alerts

10.32.25 ToutVirtual VirtualIQ Pro Multiple Security Vulnerabilities

Tue, 2010-08-10 06:00

CVEs: CVE: CVE-2009-4849, CVE-2009-4848, CVE-2009-4842

Platform: Cross Platform

Categories: Security Alerts

10.32.26 JBoss ESB Domain Validation Remote Privilege Escalation Issue

Tue, 2010-08-10 06:00

CVEs: CVE: CVE-2010-2474

Platform: Cross Platform

Categories: Security Alerts

10.32.27 Mandos Client Password Information Disclosure

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Cross Platform

Categories: Security Alerts

10.32.28 myPhile Empty Password Authentication Bypass

Tue, 2010-08-10 06:00

CVEs: CVE: CVE-2009-4095

Platform: Cross Platform

Categories: Security Alerts

10.32.29 GnuPG "GPGSM Tool" Certificate Importing Remote Code Execution

Tue, 2010-08-10 06:00

CVEs: CVE: CVE-2010-2547

Platform: Cross Platform

Categories: Security Alerts

10.32.30 libmspack Multiple Remote Denial of Service Issues

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Cross Platform

Categories: Security Alerts

10.32.31 KVIrc "r" Carriage Return in DCC Handshake Remote Command Execution

Tue, 2010-08-10 06:00

CVEs: CVE: CVE-2010-2785

Platform: Cross Platform

Categories: Security Alerts

10.32.33 Ortro Multiple Unspecified Vulnerabilities

Tue, 2010-08-10 06:00

CVEs: CVE: CVE-2009-4519

Platform: Cross Platform

Categories: Security Alerts

10.32.34 Mongoose Slash Character Remote File Disclosure Issue

Tue, 2010-08-10 06:00

CVEs: CVE: CVE-2009-4535

Platform: Cross Platform

Categories: Security Alerts

10.32.35 WM Downloader ".m3u" File Buffer Overflow

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Cross Platform

Categories: Security Alerts

10.32.36 UnrealIRCd User Authentication Buffer Overflow Issue

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Cross Platform

Categories: Security Alerts

10.32.37 IBM Tivoli Directory Server "DIGEST-MD5" Denial of Service

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Cross Platform

Categories: Security Alerts

10.32.38 JP1/Cm2/Network Node Manager Remote Code Execution and Denial of Service

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Cross Platform

Categories: Security Alerts

10.32.39 Hitachi HiRDB Unspecified Denial of Service

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Cross Platform

Categories: Security Alerts