Computer Security
[EN] securityvulns.ru no-pyccku


NOD32 Antivirus multiple security vulnerabilities
Published:22.07.2007
Source:
SecurityVulns ID:7957
Type:remote
Threat Level:
6/10
Description:Race conditions on CAB parsing, division by zero on ASPACK and FSG parsing, infinite loop on ASPACK parsing.
Affected:ESET : NOD32 2.22
Original documentdocumentsecurity_(at)_nruns.com, 2007-07-20 - n.runs-SA-2007.017 - NOD32 Antivirus ASPACK parsing Infinite Loop Advisory (22.07.2007)
 documentsecurity_(at)_nruns.com, 202007-07-20 - n.runs-SA-2007.018 - NOD32 Antivirus ASPACK and FSG parsing Divide by Zero Advisory (22.07.2007)
 documentsecurity_(at)_nruns.com, 2007-07-20 - n.runs-SA-2007.016 - NOD32 Antivirus CAB parsing Arbitrary Code Execution Advisory (22.07.2007)

tcpdump buffer overflow
Published:22.07.2007
Source:
SecurityVulns ID:7959
Type:remote
Threat Level:
6/10
Description:Buffer overflow on BGP parsing.
Affected:TCPDUMP : tcpdump 3.9
CVE:CVE-2007-3798 (Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote attackers to execute arbitrary code via crafted TLVs in a BGP packet, related to an unchecked return value.)
Original documentdocumentRPATH, rPSA-2007-0147-1 tcpdump (22.07.2007)

Citrix Access Gateway Citrix EPA ActiveX code execution
Published:22.07.2007
Source:
SecurityVulns ID:7960
Type:client
Threat Level:
6/10
Description:ActiveX control allows to download and execute any executable module.
Affected:CITRIX : Access Gateway 4.5
CVE:CVE-2007-3679 (The Citrix EPA ActiveX control (aka the "endpoint checking control" or CCAOControl Object) before 4.5.0.0 in npCtxCAO.dll in Citrix Access Gateway Standard Edition before 4.5.5 and Advanced Edition before 4.5 HF1 allows remote attackers to download and execute arbitrary programs onto a client system.)
Original documentdocumentSYMANTEC, SYMSA-2007-006: Citrix EPA ActiveX Control Design Flaw (22.07.2007)

Panda Antivirus integer overflow
Published:22.07.2007
Source:
SecurityVulns ID:7958
Type:remote
Threat Level:
6/10
Description:Integer overflow leads to buffer overflow on PE (.EXE) files parsing.
Affected:PANDASOFTWARE : Panda Truprevent 2006
 PANDASOFTWARE : Panda Platinum Internet Security 2007 11.00
 PANDASOFTWARE : Panda Antivirus 2007
Original documentdocumentsecurity_(at)_nruns.com, 2007-07-20 - n.runs-SA-2007.019 - Panda Antivirus EXE parsing Arbitrary Code Execution Advisory (22.07.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod