Skip to main content

Security Bulletin

Filter by:

RISK: Medium Risk

Medium Risk

HP Software Update HPeDiag ActiveX Control Multiple Vulnerabilities

Multiple vulnerabilities have been identified in HP Software Update, which could be exploited by remote attackers to gain knowledge of sensitive information or take complete control of an affected system.1. Due to a buffer overflow error in the HPeDiag ActiveX control when handling malformed data passed...
Last Update Date: 28 Jan 2011 Release Date: 28 Apr 2008 5685 Views

RISK: Medium Risk

Medium Risk

Cisco Network Admission Control Shared Secret Vulnerability

A vulnerability has been identified in the Cisco Network Admission Control (NAC) Appliance, which could allow an attacker to obtain the shared secret that is used between the Cisco Clean Access Server (CAS) and the Cisco Clean Access Manager (CAM).
Last Update Date: 28 Jan 2011 Release Date: 25 Apr 2008 5693 Views

RISK: Medium Risk

Medium Risk

Adobe Products BMP Handling Buffer Overflow Vulnerability

A vulnerability has been identified in multiple Adobe products, which could be exploited by remote attackers to cause a denial of service or take complete control of an affected system. This issue is caused by a buffer overflow error when parsing malformed BMP images, which could be...
Last Update Date: 28 Jan 2011 Release Date: 23 Apr 2008 5601 Views

RISK: Medium Risk

Medium Risk

ICQ Personal Status Manager Vulnerability

A vulnerability has been identified in ICQ, which could be exploited by attackers to cause a denial of service or compromise an affected system. This issue is caused by a buffer overflow error in the Personal Status Manager feature when processing a specially crafted status message, which...
Last Update Date: 28 Jan 2011 Release Date: 22 Apr 2008 5630 Views

RISK: Medium Risk

Medium Risk

Mozilla JavaScript Garbage Collector Vulnerability

A vulnerability has been identified in Mozilla Firefox, Thunderbird and SeaMonkey, which could be exploited by remote attackers to cause a denial of service or compromise a vulnerable system. This issue is caused by memory corruption errors in the JavaScript Garbage Collector when processing malformed data, ...
Last Update Date: 28 Jan 2011 Release Date: 18 Apr 2008 5689 Views

RISK: Medium Risk

Medium Risk

OpenOffice Multiple Vulnerabilities

Multiple vulnerabilities have been identified in OpenOffice.org, which could be exploited by attackers to cause a denial of service or compromise an affected system. These issues are caused by heap overflow and corruption errors when processing specially crafted ODF text documents with XForms, or when...
Last Update Date: 28 Jan 2011 Release Date: 18 Apr 2008 5871 Views

RISK: Medium Risk

Medium Risk

CA Products DSM "gui_cm_ctrls" ActiveX Vulnerability

A vulnerability has been identified in various CA products, which could be exploited by remote attackers to cause a denial of service or take complete control of an affected system. This issue is caused by input validation errors in the DSM "gui_cm_ctrls" ActiveX control when handling...
Last Update Date: 28 Jan 2011 Release Date: 18 Apr 2008 5759 Views

RISK: Medium Risk

Medium Risk

Safari Multiple Vulnerabilities

Multiple vulnerabilities have been identified in Apple Safari, which could be exploited by remote attackers to disclose sensitive information, cause a denial of service or execute arbitrary code.1. An error in WebKit when handling URLs containing a colon character in the host name, which...
Last Update Date: 28 Jan 2011 Release Date: 18 Apr 2008 5596 Views

RISK: Medium Risk

Medium Risk

DivX Player Subtitle Parsing Client-Side Buffer Overflow Vulnerability

A vulnerability has been identified in DivX Player, which could be exploited by remote attackers to cause a denial of service or take complete control of an affected system. This issue is caused by a buffer overflow error when parsing overly long subtitles, which could be exploited...
Last Update Date: 28 Jan 2011 Release Date: 17 Apr 2008 5600 Views

RISK: Medium Risk

Medium Risk

ClamAV PeSpin and Archives Processing Multiple Vulnerabilities

Multiple vulnerabilities have been identified in ClamAV (Clam AntiVirus), which could be exploited by attackers or malware to cause a denial of service or compromise a vulnerable system.1. Due to a heap overflow error in "libclamav/spin.c" when processing malformed...
Last Update Date: 28 Jan 2011 Release Date: 16 Apr 2008 5626 Views