Skip to main content

Security Bulletin

Filter by:

RISK: Medium Risk

Medium Risk

Adobe Flash Player Unspecified Remote Code Execution Vulnerability

A vulnerability has been identified in Adobe Flash Player, which could be exploited by remote attackers to take complete control of an affected system. This issue is caused by an unspecified memory corruption error when processing a malformed SWF file, which could be exploited by attackers to...
Last Update Date: 28 Jan 2011 Release Date: 28 May 2008 4396 Views

RISK: Medium Risk

Medium Risk

FileZilla GnuTLS Multiple Vulnerabilities

Multiple vulnerabilities have been identified in FileZilla, which could be exploited by remote attackers to cause a denial of service or compromise an affected system.1. Due to a NULL pointer dereference error when processing TLS packets containing multiple "Client Hello" messages, which could...
Last Update Date: 28 Jan 2011 Release Date: 22 May 2008 4493 Views

RISK: Medium Risk

Medium Risk

CA Products Code Execution and File Manipulation Vulnerabilities

Multiple vulnerabilities have been identified in various CA products, which could be exploited by remote attackers to take complete control of an affected system.1. Due to insufficient path verification by the logging service (caloggerd), which could allow a remote attacker to append data to...
Last Update Date: 28 Jan 2011 Release Date: 21 May 2008 4402 Views

RISK: Medium Risk

Medium Risk

Debian/Ubuntu OpenSSL Random Number Generator Vulnerability

A vulnerabiliity exists in the random number generator used by the OpenSSL package included with the Debian GNU/Linux, Ubuntu, and other Debian-based operating systems. This vulnerability causes the generated numbers to be predictable.The result of this error is that certain encryption...
Last Update Date: 28 Jan 2011 Release Date: 19 May 2008 5038 Views

RISK: Medium Risk

Medium Risk

Microsoft Word Two Vulnerabilities( 14 May 2008 )

1. Object Parsing VulnerabilityA remote code execution vulnerability exists in the way that Microsoft Office handles specially crafted Rich Text Format (.rtf) files. The vulnerability could allow remote code execution if a user opens a specially crafted .rtf file with malformed strings in Word or...
Last Update Date: 28 Jan 2011 Release Date: 14 May 2008 4185 Views

RISK: Medium Risk

Medium Risk

Yahoo! Assistant "ynotifier" ActiveX Control Code Execution Vulnerability

A vulnerability has been identified in Yahoo! Assistant, which could be exploited by remote attackers to take complete control of an affected system. This issue is caused by a memory corruption error when instantiating the "ynotifier.dll" ActiveX control, which could be exploited...
Last Update Date: 28 Jan 2011 Release Date: 14 May 2008 4364 Views

RISK: Medium Risk

Medium Risk

Microsoft Publisher Object Handler Validation Vulnerability( 14 May 2008 )

A remote code execution vulnerability exists in the way Microsoft Publisher validates object header data. An attacker could exploit the vulnerability by sending a specially crafted Publisher file which could be included as an e-mail attachment, or hosted on a specially crafted or compromised Web site...
Last Update Date: 28 Jan 2011 Release Date: 14 May 2008 4156 Views

RISK: Medium Risk

Medium Risk

Microsoft Windows CE Image Processing Vulnerabilities

Multiple vulnerabilities have been identified in Microsoft Windows CE, which could be exploited by attackers to take complete control of an affected device. These issues are caused by unspecified errors when processing malformed JPEG (GDI+) and GIF images, which could be exploited by attackers to...
Last Update Date: 28 Jan 2011 Release Date: 14 May 2008 4203 Views

RISK: Medium Risk

Medium Risk

Microsoft Jet Engine MDB File Parsing Stack Overflow Vulnerability( 14 May 2008 )

A buffer overrun vulnerability exists in the Microsoft Jet Database Engine (Jet) that could allow remote code execution on an affected system. An attacker could exploit the vulnerability by creating a specially crafted database query and sending it through an application that is using Jet on an...
Last Update Date: 28 Jan 2011 Release Date: 14 May 2008 4203 Views

RISK: Medium Risk

Medium Risk

Novell GroupWise "mailto:" URI Remote Buffer Overflow Vulnerability

A vulnerability has been identified in Novell GroupWise, which could be exploited by remote attackers to cause a denial of service or take complete control of an affected system. This issue is caused by a buffer overflow error when processing overly long "mailto:" URIs, which...
Last Update Date: 28 Jan 2011 Release Date: 2 May 2008 4380 Views