Weekly Vulnerabilities Reports > August 9 to 15, 2004

Overview

7 new vulnerabilities reported during this period, including 2 critical vulnerabilities and 0 high severity vulnerabilities. This weekly summary report vulnerabilities in 9 products from 6 vendors including GNU, HP, SUN, ISS, and QNX. Vulnerabilities are notably categorized as .

  • 5 reported vulnerabilities are remotely exploitables.
  • 7 reported vulnerabilities are exploitable by an anonymous user.
  • GNU has the most reported vulnerabilities, with 2 reported vulnerabilities.
  • GNU has the most reported critical vulnerabilities, with 1 reported vulnerabilities.

TOTAL
VULNERABILITIES
CRITICAL RISK
VULNERABILITIES
HIGH RISK
VULNERABILITIES
MEDIUM RISK
VULNERABILITIES
LOW RISK
VULNERABILITIES
REMOTELY
EXPLOITABLE
LOCALLY
EXPLOITABLE
EXPLOIT
AVAILABLE
EXPLOITABLE
ANONYMOUSLY
AFFECTING
WEB APPLICATION

Vulnerability Details

The following table list reported vulnerabilities for the period covered by this report:

Expand/Hide

2 Critical Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2004-08-15 CVE-2004-1682 QNX Remote Security vulnerability in QNX RTP 6.1

Format string vulnerability in QNX 6.1 FTP client allows remote authenticated users to gain group bin privileges via format string specifiers in the QUOTE command.

10.0
2004-08-09 CVE-2004-1701 GNU Remote Heap Based Buffer Overrun vulnerability in GNU CFEngine AuthenticationDialogue

Heap-based buffer overflow in the AuthenticationDialogue function in cfservd for Cfengine 2.0.0 to 2.1.7p1 allows remote attackers to execute arbitrary code via a long SAUTH command during RSA authentication.

10.0

0 High Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS

3 Medium Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2004-08-11 CVE-2004-1715 Clearswift Directory Traversal vulnerability in Clearswift MIMEsweeper For web 4.0/5.0.1

Directory traversal vulnerability in MIMEsweeper for Web before 5.0.4 allows remote attackers or local users to read arbitrary files via "..\\", "..\", and similar dot dot sequences in the URL.

5.0
2004-08-10 CVE-2004-1347 SUN Denial Of Service vulnerability in Sun Solaris XDMCP

X Display Manager (XDM) on Solaris 8 allows remote attackers to cause a denial of service (XDM crash) via an invalid X Display Manager Control Protocol (XDMCP) request.

5.0
2004-08-09 CVE-2004-1702 GNU Remote Denial Of Service vulnerability in GNU CFEngine AuthenticationDialogue

The AuthenticationDialogue function in cfservd for Cfengine 2.0.0 to 2.1.7p1 does not properly check the return value of the ReceiveTransaction function, which leads to a failed malloc call and triggers to a null dereference, which allows remote attackers to cause a denial of service (crash).

5.0

2 Low Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2004-08-11 CVE-2004-1714 ISS Local Buffer Overrun vulnerability in ISS Blackice PC Protection and Blackice Server Protection

BlackICE PC Protection and Server Protection installs (1) firewall.ini, (2) blackice.ini, (3) sigs.ini and (4) protect.ini with Everyone Full Control permissions, which allows local users to cause a denial of service (crash) or modify configuration, as demonstrated by modifying firewall.ini to contain a large firewall rule.

2.1
2004-08-10 CVE-2004-1713 HP Unspecified vulnerability in HP Process Resource Manager and Workload Manager

Unknown vulnerability in HP Process Resource Manager (PRM) C.02.01[.01] and earlier, as used by HP-UX Workload Manager (WLM), allows local users to corrupt data files.

2.1