Computer Security
[EN] securityvulns.ru no-pyccku


libgc integer overflows
Published:29.08.2012
Source:
SecurityVulns ID:12549
Type:library
Threat Level:
6/10
Description:Multiple integer overflows in malloc / calloc implementations.
Affected:LIBGC : libgc 7.1
CVE:CVE-2012-2673 (Multiple integer overflows in the (1) GC_generic_malloc and (2) calloc funtions in malloc.c, and the (3) GC_generic_malloc_ignore_off_page function in mallocx.c in Boehm-Demers-Weiser GC (libgc) before 7.2 make it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large size value, which causes less memory to be allocated than expected.)

EMC Cloud Tiering Appliance authentication bypass
Published:29.08.2012
Source:
SecurityVulns ID:12550
Type:remote
Threat Level:
6/10
Description:Authentication bypass is possible.
Affected:EMC : Cloud Tiering Appliance 7.4
 EMC : Cloud Tiering Appliance 9.0
CVE:CVE-2012-2285 (EMC Cloud Tiering Appliance (aka CTA, formerly FMA) 9.0 and earlier, and Cloud Tiering Appliance Virtual Edition (CTA/VE) 9.0 and earlier, allows remote attackers to obtain GUI administrative access by sending a crafted file during the authentication phase.)
Original documentdocumentEMC, ESA-2012-034: EMC Cloud Tiering Appliance (CTA) Authentication Bypass Vulnerability (29.08.2012)

OpenOffice security vulnerabilities
updated since 06.08.2012
Published:29.08.2012
Source:
SecurityVulns ID:12497
Type:local
Threat Level:
5/10
Description:Multiple buffer overflows.
Affected:OPENOFFICE : OpenOffice 3.5
CVE:CVE-2012-2665 (Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Open Document Text (.odt) file with (1) a child tag within an incorrect parent tag, (2) duplicate tags, or (3) a Base64 ChecksumAttribute whose length is not evenly divisible by four.)
Original documentdocumentAPACHE, CVE-2012-2665 Manifest-processing errors in Apache OpenOffice 3.4.0 (29.08.2012)
 documentTimo Warns, [PRE-SA-2012-05] Multiple heap-based buffer overflows in LibreOffice / OpenOffice (13.08.2012)
 documentDEBIAN, [SECURITY] [DSA 2520-1] openoffice.org security update (06.08.2012)

Java environment limitations bypass
updated since 29.08.2012
Published:02.09.2012
Source:
SecurityVulns ID:12548
Type:library
Threat Level:
8/10
Description:There are few ways to bypass limitations and execute privileged code from the applet.
Affected:ORACLE : JDK 7
 ORACLE : JRE 7
CVE:CVE-2012-4681 (Multiple vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allow remote attackers to execute arbitrary code via a crafted applet that bypasses SecurityManager restrictions by (1) using com.sun.beans.finder.ClassFinder.findClass and leveraging an exception with the forName method to access restricted classes from arbitrary packages such as sun.awt.SunToolkit, then (2) using "reflection with a trusted immediate caller" to leverage the getField method to access and modify private fields, as exploited in the wild in August 2012 using Gondzz.class and Gondvv.class.)
Original documentdocumentSecurity Explorations, [SE-2012-01] New security issue affecting Java SE 7 Update 7 (02.09.2012)
 documentCERT, US-CERT Alert TA12-240A - Oracle Java 7 Security Manager Bypass Vulnerability (29.08.2012)
 documentSecurity Explorations, [SE-2012-01] information regarding recently discovered Java 7 attack (29.08.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod