Security Bulletin

RISK: High Risk

Opera Browser SVG Data Processing Remote Code Execution Vulnerability

A vulnerability has been identified in Opera Browser, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an error when processing SVG content nested within a frameset and can be exploited via a specially crafted web page...

Last Update Date: 17 Oct 2011 12:27 Release Date: 17 Oct 2011 4905 Views

RISK: High Risk

VMware ESX / ESXi Server Multiple Vulnerabilities

Multiple vulnerabilities have been identified in VMware ESX and ESXi Server, which can be exploited by malicious people to disclose sensitive information, gain escalated privileges, conduct spoofing attacks, bypass certain security features, cause a Denial of Service and compromise a vulnerable system.Multiple...

Last Update Date: 14 Oct 2011 11:53 Release Date: 14 Oct 2011 5658 Views

RISK: High Risk

Apple Safari Multiple Vulnerabilities

Multiple vulnerabilities have been identified in Apple Safari, which can be exploited to cause sensitive information disclosure, cross site scripting and remote code excution. These issues are caused by the errors in Safari and WebKit.

Last Update Date: 13 Oct 2011 12:45 Release Date: 13 Oct 2011 4943 Views

RISK: High Risk

Apple Mac OS X Multiple Vulnerabilities

Multiple vulnerabilities have been identified in Apple Mac OS X, which can be exploited to cause elevation of privilege, sensitive information disclosure, security bypass, data manipulation, cross site scripting and remote code excution. These issues are caused by the errors in the following components...

Last Update Date: 13 Oct 2011 12:44 Release Date: 13 Oct 2011 5603 Views

RISK: High Risk

Apple iOS Multiple Vulnerabilities

Multiple vulnerabilities have been identified in Apple iOS 5, which can be exploited to cause sensitive information disclosure, spoofing, cross site scripting and remote code excution. These issues are caused by the errors in the following components/functions: CalDAV Calendar CFNetwork ...

Last Update Date: 13 Oct 2011 12:43 Release Date: 13 Oct 2011 4924 Views

RISK: High Risk

Microsoft Windows Kernel-Mode Drivers Multiple Vulnerabilities

Win32k Null Pointer De-reference Vulnerability An elevation of privilege vulnerability exists in the way that Windows kernel-mode drivers validate data supplied from user mode to kernel mode. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode and take complete...

Last Update Date: 12 Oct 2011 15:28 Release Date: 12 Oct 2011 4906 Views

RISK: High Risk

Microsoft Windows Media Center Insecure Library Loading Vulnerability

A remote code execution vulnerability exists in the way that Windows Media Center handles the loading of DLL files. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data...

Last Update Date: 12 Oct 2011 15:25 Release Date: 12 Oct 2011 4735 Views

RISK: High Risk

Microsoft Forefront Unified Access Gateway Multiple Vulnerabilities

ExcelTable Response Splitting XSS Vulnerability An HTTP response splitting vulnerability exists in Microsoft Forefront Unified Access Gateway (UAG) server where JavaScript can be injected back to the user in the resulting page, effectively allowing attacker-controlled JavaScript to run in the context of the user clicking...

Last Update Date: 12 Oct 2011 11:53 Release Date: 12 Oct 2011 4852 Views

RISK: High Risk

Microsoft Active Accessibility Insecure Library Loading Vulnerability

A remote code execution vulnerability exists in the way that the Microsoft Active Accessibility component handles the loading of DLL files. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or...

Last Update Date: 12 Oct 2011 11:52 Release Date: 12 Oct 2011 4807 Views

RISK: High Risk

Microsoft Internet Explorer Multiple Vulnerabilities

Scroll Event Remote Code Execution Vulnerability A remote code execution vulnerability exists in the way that Internet Explorer accesses an object that has been deleted. The vulnerability may corrupt memory in such a way that an attacker could execute arbitrary code in the context of the logged-...

Last Update Date: 12 Oct 2011 11:51 Release Date: 12 Oct 2011 4542 Views