Computer Security
[EN] securityvulns.ru no-pyccku


Barracuda mail filtering applications multiple security vulnerabilities
Published:17.12.2008
Source:
SecurityVulns ID:9522
Type:remote
Threat Level:
5/10
Description:Crossite scripting, SQL injection (in Barracuda Spam Firewall)
Affected:BARRACUDA : Barracuda Spam Firewall 3.5
 BARRACUDA : Barracuda Message Archiver 1.1
 BARRACUDA : Barracuda Web Filter 3.3
 BARRACUDA : Barracuda IM Firewall 3.1
 BARRACUDA : Barracuda Load Balancer 2.3
CVE:CVE-2008-1094
 CVE-2008-0971
Original documentdocumentMarian Ventuneac, CVE-2008-1094 - Barracuda Span Firewall SQL Injection Vulnerability (17.12.2008)

JasPer multiple security vulnerabilities
Published:17.12.2008
Source:
SecurityVulns ID:9523
Type:library
Threat Level:
5/10
Description:Multiple memory corruptions on JPEG parsing.
Affected:JASPER : JasPer 1.900
CVE:CVE-2008-3522 (Buffer overflow in the jas_stream_printf function in libjasper/base/jas_stream.c in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via vectors related to the mif_hdr_put function and use of vsprintf.)
Original documentdocumentGENTOO, [ GLSA 200812-18 ] JasPer: User-assisted execution of arbitrary code (17.12.2008)

Opera memory corruption
Published:17.12.2008
Source:
SecurityVulns ID:9524
Type:client
Threat Level:
7/10
Description:Heap corruption on HTML parsing.
Affected:OPERA : Opera 9.62
Original documentdocumentsecurity_(at)_nruns.com, n.runs-SA-2008.010 - Opera HTML parsing Code Execution (17.12.2008)

Microsoft Outlook Express / Outlook / Internet Explorer DoS
updated since 17.12.2008
Published:19.12.2008
Source:
SecurityVulns ID:9525
Type:remote
Threat Level:
6/10
Description:<dt><h1 style=width:1px><li></h1> in HTML part causes application to crash.
Affected:MICROSOFT : Windows 2000 Server
 MICROSOFT : Windows 2000 Professional
 MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
Original documentdocumentMustLive, New DoS vulnerability in Microsoft Outlook (19.12.2008)
 documentMustLive, New DoS vulnerability in Outlook Express (17.12.2008)
Files:DoS exploit N2 for Microsoft Outlook Express

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod