Skip to main content

Security Bulletin

Filter by:

RISK: Medium Risk

Medium Risk

Apple Safari for Windows Multiple Vulnerabilities

Multiple vulnerabilities have been identified in Apple Safari, which could be exploited by remote attackers to disclose sensitive information or compromise a vulnerable system.1. Due to an error when handling BMP and GIF images, which could cause an out-of-bounds memory read...
Last Update Date: 28 Jan 2011 Release Date: 23 Jun 2008 4386 Views

RISK: Medium Risk

Medium Risk

Mozilla Firefox Unspecified Remote Code Execution Vulnerability

A vulnerability has been identified in Mozilla Firefox, which could be exploited by remote attackers to compromise a vulnerable system. This issue is caused by an unspecified error when processing certain data, which could allow attackers to execute arbitrary code by tricking a user into visiting a...
Last Update Date: 28 Jan 2011 Release Date: 20 Jun 2008 4314 Views

RISK: Medium Risk

Medium Risk

VMware ESX Server Multiple Vulnerabilities

Multiple vulnerabilities have been identified in VMware ESX Server, which could be exploited by remote attackers to bypass security restrictions, disclose sensitive information, cause a denial of service, or execute arbitrary commands and scripting code. These issues are caused by errors in Tomcat and JRE...
Last Update Date: 28 Jan 2011 Release Date: 18 Jun 2008 4336 Views

RISK: Medium Risk

Medium Risk

OpenOffice "rtl_allocateMemory()" Integer Overflow Vulnerability

A vulnerability has been identified in OpenOffice.org, which could be exploited by attackers to cause a denial of service or compromise an affected system. This issue is caused by an integer overflow error in the custom memory allocation function "rtl_allocateMemory()" when processing malformed data...
Last Update Date: 28 Jan 2011 Release Date: 11 Jun 2008 4462 Views

RISK: Medium Risk

Medium Risk

SNMPv3 Authentication Bypass Vulnerability

A vulnerability has been identified in the way implementations of SNMPv3 handle specially crafted packets may allow authentication bypass.The Simple Network Management Protocol (SNMP) is a widely deployed protocol that is commonly used to monitor and manage network devices. SNMPv3 (RFC 3410) supports...
Last Update Date: 28 Jan 2011 Release Date: 11 Jun 2008 4522 Views

RISK: Medium Risk

Medium Risk

Microsoft Windows Pragmatic General Multicast (PGM) Multiple Vulnerabilities( 11 June 2008 )

1. PGM Invalid Length VulnerabilityA denial of service vulnerability exists in implementations of the Pragmatic General Multicast (PGM) protocol on Microsoft Windows XP and Windows Server 2003. The vulnerability is due to improper validation of specially crafted PGM packets. An attacker who successfully exploited this...
Last Update Date: 28 Jan 2011 Release Date: 11 Jun 2008 4388 Views

RISK: Medium Risk

Medium Risk

Microsoft Windows WINS Memory Overwrite Vulnerability( 11 June 2008 )

An elevation of privilege vulnerability exists in the Windows Internet Name Service (WINS) in the way that WINS does not sufficiently validate the data structures within specially crafted WINS network packets. The vulnerability could allow a local attacker to run code with elevated privileges. An attacker...
Last Update Date: 28 Jan 2011 Release Date: 11 Jun 2008 4250 Views

RISK: Medium Risk

Medium Risk

Microsoft Internet Explorer Multiple Vulnerabilities( 11 June 2008 )

1. HTML Objects Memory Corruption VulnerabilityA remote code execution vulnerability exists in the way Internet Explorer displays a Web page that contains certain unexpected method calls to HTML objects. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the...
Last Update Date: 28 Jan 2011 Release Date: 11 Jun 2008 4172 Views

RISK: Medium Risk

Medium Risk

Microsoft Windows Bluetooth Vulnerability( 11 June 2008 )

A remote code execution vulnerability exists in the Bluetooth stack in Microsoft Windows because the Bluetooth stack does not correctly handle a large number of service description requests. The vulnerability could allow an attacker to run code with elevated privileges. An attacker who successfully exploited this vulnerability could...
Last Update Date: 28 Jan 2011 Release Date: 11 Jun 2008 4106 Views

RISK: Medium Risk

Medium Risk

Microsoft Windows DirectX MJPEG/SAMI File Processing Vulnerabilities( 11 June 2008 )

1. MJPEG Decoder VulnerabilityA remote code execution vulnerability exists in the way that the Windows MJPEG Codec handles MJPEG streams in AVI or ASF files. A user would have to preview or play a specially crafted MJPEG file for the vulnerability to be exploited.2. SAMI...
Last Update Date: 28 Jan 2011 Release Date: 11 Jun 2008 4379 Views