 |
|
|
|
| Microsoft Windows JavaScript engine memory corruption | | Published: |  | 09.09.2009 | | Source: |  | MICROSOFT | | SecurityVulns ID: |  | 10212 | | Type: |  | client | | Level: |  | 8/10 | | Description: |  | Memory corruption on "arguments" keyword parsing. |
| Microsoft DHTML ActiveX code execution | | Published: | | 09.09.2009 | | Source: | | MICROSOFT | | SecurityVulns ID: | | 10213 | | Type: | | client | | Level: | | 7/10 |
| yTNEF и Evolution TNEF attachment decoder | | Published: | | 09.09.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 10217 | | Type: | | client | | Level: | | 6/10 | | Description: | | Buffer overflow, directory traversal. |
| Novell eDirectory DoS | | Published: | | 09.09.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 10218 | | Type: | | remote | | Level: | | 5/10 | | Description: | | CPU exhaustion on TCP/8028 requests processing. |
| Microsoft Windows Media formats security vulnerabilities | | Published: | | 09.09.2009 | | Source: | | MICROSOFT | | SecurityVulns ID: | | 10214 | | Type: | | library | | Level: | | 8/10 | | Description: | | Uninitialized pointer free() on ASF files parsing, memory corruption on MP3 files parsing. |
| CVE: |  | CVE-2009-2499 (Microsoft Windows Media Format Runtime 9.0, 9.5, and 11; and Microsoft Media Foundation on Windows Vista Gold, SP1, and SP2 and Server 2008; allows remote attackers to execute arbitrary code via an MP3 file with crafted metadata that triggers memory corruption, aka "Windows Media Playback Memory Corruption Vulnerability.") | | | | CVE-2009-2498 (Microsoft Windows Media Format Runtime 9.0, 9.5, and 11 and Windows Media Services 9.1 and 2008 do not properly parse malformed headers in Advanced Systems Format (ASF) files, which allows remote attackers to execute arbitrary code via a crafted (1) .asf, (2) .wmv, or (3) .wma file, aka "Windows Media Header Parsing Invalid Free Vulnerability.") |
| IBM Lotus Notes 8.5 RSS Widget crossite scripting | | Published: | | 09.09.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 10219 | | Type: | | client | | Level: | | 5/10 | | Description: | | Scripting in local host zone is possible. |
| Microsoft Windows Wireless LAN AutoConfig service buffer overflow | | Published: | | 09.09.2009 | | Source: | | MICROSOFT | | SecurityVulns ID: | | 10215 | | Type: | | client | | Level: | | 8/10 | | Description: | | Buffer overflow on access point frame parsing. |
| Affected: |  | MICROSOFT : Windows Vista | | | | MICROSOFT : Windows 2008 Server | | CVE: | | CVE-2009-1132 (Heap-based buffer overflow in the Wireless LAN AutoConfig Service (aka Wlansvc) in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 allows remote attackers to execute arbitrary code via a malformed wireless frame, aka "Wireless Frame Parsing Remote Code Execution Vulnerability.") |
| Nokia Trolltech Qt4 SSL certificate spoofing | | Published: | | 09.09.2009 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 10216 | | Type: | | library | | Level: | | 5/10 | | Description: | | certificate spoofing with \0 symbol in domain name. |
| Affected: | | QT : QT 4.5 | | CVE: | | CVE-2009-2700 (src/network/ssl/qsslcertificate.cpp in Nokia Trolltech Qt 4.x does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.) |
| Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) | | Published: | | 09.09.2009 | | Source: | | | | SecurityVulns ID: | | 10220 | | Type: | | remote | | Level: | | 5/10 | | Description: | | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. ALFcontact for |
Multiple TCP implementations different security vulnerabilities
updated since 09.09.2009 | | Published: | | 18.11.2009 | | Source: | | CVE | | SecurityVulns ID: | | 10211 | | Type: | | remote | | Level: | | 9/10 | | Description: | | Multiple security vulnerabilities in different operation sustems caused by resource exhaustions on maintaining TCP states table. |
| Affected: | | MICROSOFT : Windows 2000 Server | | | | MICROSOFT : Windows 2000 Professional | | | | CISCO : IOS 12.0 | | | | CISCO : IOS 12.1 | | | | CISCO : IOS 12.2 | | | | MICROSOFT : Windows XP | | | | MICROSOFT : Windows 2003 Server | | | | CISCO : IOS 12.3 | | | | CISCO : IOS 12.4 | | | | CISCO : PIX 7.0 | | | | CISCO : PIX 7.1 | | | | MICROSOFT : Windows Vista | | | | CISCO : PIX 7.2 | | | | CISCO : CatOS 7.6 | | | | MICROSOFT : Windows 2008 Server | | | | CISCO : PIX 8.0 | | | | CISCO : PIX 8.1 | | | | CISCO : IOS XE 2.1 | | | | CISCO : IOS XE 2.2 | | | | CISCO : CatOS 8.7 | | | | CISCO : Cisco Nexus 5000 | | | | CISCO : Cisco Nexus 7000 | | CVE: | | CVE-2009-1926 (Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allow remote attackers to cause a denial of service (TCP outage) via a series of TCP sessions that have pending data and a (1) small or (2) zero receive window size, and remain in the FIN-WAIT-1 or FIN-WAIT-2 state indefinitely, aka "TCP/IP Orphaned Connections Vulnerability.") | | | | CVE-2009-1925 (The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 does not properly manage state information, which allows remote attackers to execute arbitrary code by sending packets to a listening service, and thereby triggering misinterpretation of an unspecified field as a function pointer, aka "TCP/IP Timestamps Code Execution Vulnerability.") | | | | CVE-2008-4609 (The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of service (connection queue exhaustion) via multiple vectors that manipulate information in the TCP state table, as demonstrated by sockstress.) |
|
|
|
|
|
|
|
|
