Weekly Vulnerabilities Reports > August 9 to 15, 2004
Overview
7 new vulnerabilities reported during this period, including 2 critical vulnerabilities and 1 high severity vulnerabilities. This weekly summary report vulnerabilities in 9 products from 6 vendors including GNU, HP, SUN, ISS, and QNX. Vulnerabilities are notably categorized as and "Incorrect Permission Assignment for Critical Resource".
- 5 reported vulnerabilities are remotely exploitables.
- 6 reported vulnerabilities are exploitable by an anonymous user.
- GNU has the most reported vulnerabilities, with 2 reported vulnerabilities.
- GNU has the most reported critical vulnerabilities, with 1 reported vulnerabilities.
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
EXPLOITABLE
EXPLOITABLE
AVAILABLE
ANONYMOUSLY
WEB APPLICATION
Vulnerability Details
The following table list reported vulnerabilities for the period covered by this report:
2 Critical Vulnerabilities
| DATE | CVE | VENDOR | VULNERABILITY | CVSS |
|---|---|---|---|---|
| 2004-08-15 | CVE-2004-1682 | QNX | Remote Security vulnerability in QNX RTP 6.1 Format string vulnerability in QNX 6.1 FTP client allows remote authenticated users to gain group bin privileges via format string specifiers in the QUOTE command. | 10.0 |
| 2004-08-09 | CVE-2004-1701 | GNU | Remote Heap Based Buffer Overrun vulnerability in GNU CFEngine AuthenticationDialogue Heap-based buffer overflow in the AuthenticationDialogue function in cfservd for Cfengine 2.0.0 to 2.1.7p1 allows remote attackers to execute arbitrary code via a long SAUTH command during RSA authentication. | 10.0 |
1 High Vulnerabilities
| DATE | CVE | VENDOR | VULNERABILITY | CVSS |
|---|---|---|---|---|
| 2004-08-11 | CVE-2004-1714 | ISS | Incorrect Permission Assignment for Critical Resource vulnerability in ISS Blackice PC Protection and Blackice Server Protection BlackICE PC Protection and Server Protection installs (1) firewall.ini, (2) blackice.ini, (3) sigs.ini and (4) protect.ini with Everyone Full Control permissions, which allows local users to cause a denial of service (crash) or modify configuration, as demonstrated by modifying firewall.ini to contain a large firewall rule. | 7.1 |
3 Medium Vulnerabilities
| DATE | CVE | VENDOR | VULNERABILITY | CVSS |
|---|---|---|---|---|
| 2004-08-11 | CVE-2004-1715 | Clearswift | Directory Traversal vulnerability in Clearswift MIMEsweeper For web 4.0/5.0.1 Directory traversal vulnerability in MIMEsweeper for Web before 5.0.4 allows remote attackers or local users to read arbitrary files via "..\\", "..\", and similar dot dot sequences in the URL. | 5.0 |
| 2004-08-10 | CVE-2004-1347 | SUN | Denial Of Service vulnerability in Sun Solaris XDMCP X Display Manager (XDM) on Solaris 8 allows remote attackers to cause a denial of service (XDM crash) via an invalid X Display Manager Control Protocol (XDMCP) request. | 5.0 |
| 2004-08-09 | CVE-2004-1702 | GNU | Remote Denial Of Service vulnerability in GNU CFEngine AuthenticationDialogue The AuthenticationDialogue function in cfservd for Cfengine 2.0.0 to 2.1.7p1 does not properly check the return value of the ReceiveTransaction function, which leads to a failed malloc call and triggers to a null dereference, which allows remote attackers to cause a denial of service (crash). | 5.0 |
1 Low Vulnerabilities
| DATE | CVE | VENDOR | VULNERABILITY | CVSS |
|---|---|---|---|---|
| 2004-08-10 | CVE-2004-1713 | HP | Unspecified vulnerability in HP Process Resource Manager and Workload Manager Unknown vulnerability in HP Process Resource Manager (PRM) C.02.01[.01] and earlier, as used by HP-UX Workload Manager (WLM), allows local users to corrupt data files. | 2.1 |